@shophost/rest-api 2.0.34 → 2.0.35

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@shophost/rest-api",
-  "version": "2.0.34",
+  "version": "2.0.35",
   "type": "module",
   "bin": {
     "shophost-rest-api": "./scripts/shophost-rest-api.mjs"

package/scripts/minify-dist.mjs

@@ -0,0 +1,45 @@
+import { transform } from "esbuild";
+import { readdirSync, readFileSync, writeFileSync } from "node:fs";
+import path from "node:path";
+
+const distRoot = path.resolve("dist/packages/rest-api/src");
+let count = 0;
+let savedBytes = 0;
+
+async function walk(dir) {
+  for (const entry of readdirSync(dir, { withFileTypes: true })) {
+    const full = path.join(dir, entry.name);
+    if (entry.isDirectory()) {
+      await walk(full);
+      continue;
+    }
+    if (!entry.name.endsWith(".js")) continue;
+
+    const source = readFileSync(full, "utf8");
+
+    // Preserve "use client" / "use server" directives
+    const directiveMatch = source.match(
+      /^(?:["']use (?:client|server)["'];?\s*\n?)+/
+    );
+    const directive = directiveMatch ? directiveMatch[0].trim() + "\n" : "";
+    const code = directive
+      ? source.slice(directiveMatch[0].length)
+      : source;
+
+    const result = await transform(code, {
+      minify: true,
+      loader: "js",
+      target: "es2020",
+    });
+
+    const output = directive + result.code;
+    savedBytes += source.length - output.length;
+    writeFileSync(full, output);
+    count++;
+  }
+}
+
+await walk(distRoot);
+console.log(
+  `✓ Minified ${count} files (saved ${(savedBytes / 1024).toFixed(0)} KB)`
+);

package/src/app.js

@@ -1,53 +1 @@
-import { __awaiter } from "tslib";
-import { cors } from "hono/cors";
-import { createApiRouter, createUnavailableAuth, handleAppError, } from "./core/hono/hono";
-import { buildAccessHandler, buildCartHandler, buildFileHandler, buildHealthHandler, buildLocationHandler, buildManufacturerHandler, buildOrderHandler, buildOrganizationHandler, buildPaymentHandler, buildProductCategoryHandler, buildProductHandler, buildReservationHandler, buildShippingHandler, buildShippingMethodHandler, buildWebhookHandler, } from "./features";
-const defaultCorsOptions = {
-    allowHeaders: [
-        "Content-Type",
-        "Authorization",
-        "X-Requested-With",
-        "Accept",
-        "Origin",
-        "X-CSRF-Token",
-    ],
-    allowMethods: ["GET", "POST", "PUT", "DELETE", "OPTIONS", "PATCH"],
-    credentials: true,
-    exposeHeaders: ["Content-Length", "X-Kuma-Revision"],
-    origin: ["http://localhost:3000"],
-};
-export const buildApiApp = ({ corsOptions, maps, payment, prisma, resolveAuth = () => createUnavailableAuth(), } = {}) => {
-    var _a, _b, _c, _d, _e;
-    const app = createApiRouter();
-    // cors
-    app.use("*", cors(Object.assign(Object.assign({}, defaultCorsOptions), corsOptions)));
-    // auth
-    app.use("*", (c, next) => __awaiter(void 0, void 0, void 0, function* () {
-        const auth = resolveAuth(c.req.raw, c.req.path);
-        c.set("auth", auth);
-        Object.assign(c.req.raw, { auth });
-        yield next();
-    }));
-    // error handler
-    app.onError((error) => handleAppError(error));
-    // routes
-    app.route("/", buildHealthHandler());
-    app.route("/", buildManufacturerHandler(prisma));
-    app.route("/", buildOrganizationHandler(prisma, (_b = (_a = maps === null || maps === void 0 ? void 0 : maps.google) === null || _a === void 0 ? void 0 : _a.key) !== null && _b !== void 0 ? _b : ""));
-    app.route("/", buildFileHandler(prisma));
-    app.route("/", buildProductCategoryHandler(prisma));
-    app.route("/", buildProductHandler(prisma));
-    app.route("/", buildAccessHandler(prisma));
-    app.route("/", buildShippingMethodHandler(prisma));
-    app.route("/", buildOrderHandler(prisma, payment !== null && payment !== void 0 ? payment : {}));
-    app.route("/", buildCartHandler(prisma));
-    app.route("/", buildShippingHandler(prisma, (_d = (_c = maps === null || maps === void 0 ? void 0 : maps.google) === null || _c === void 0 ? void 0 : _c.key) !== null && _d !== void 0 ? _d : ""));
-    app.route("/", buildLocationHandler(maps !== null && maps !== void 0 ? maps : {}));
-    app.route("/", buildPaymentHandler(prisma, payment !== null && payment !== void 0 ? payment : {}));
-    app.route("/", buildWebhookHandler(prisma, payment !== null && payment !== void 0 ? payment : {}));
-    if ((_e = payment === null || payment === void 0 ? void 0 : payment.stripe) === null || _e === void 0 ? void 0 : _e.resendApiKey) {
-        app.route("/", buildReservationHandler(prisma, payment.stripe.resendApiKey));
-    }
-    return app;
-};
-//# sourceMappingURL=app.js.map
+import{__awaiter as h}from"tslib";import{cors as g}from"hono/cors";import{createApiRouter as s,createUnavailableAuth as A,handleAppError as O}from"./core/hono/hono";import{buildAccessHandler as f,buildCartHandler as T,buildFileHandler as C,buildHealthHandler as P,buildLocationHandler as _,buildManufacturerHandler as E,buildOrderHandler as w,buildOrganizationHandler as R,buildPaymentHandler as S,buildProductCategoryHandler as k,buildProductHandler as q,buildReservationHandler as j,buildShippingHandler as K,buildShippingMethodHandler as L,buildWebhookHandler as M}from"./features";const X={allowHeaders:["Content-Type","Authorization","X-Requested-With","Accept","Origin","X-CSRF-Token"],allowMethods:["GET","POST","PUT","DELETE","OPTIONS","PATCH"],credentials:!0,exposeHeaders:["Content-Length","X-Kuma-Revision"],origin:["http://localhost:3000"]};export const buildApiApp=({corsOptions:a,maps:r,payment:e,prisma:l,resolveAuth:c=()=>A()}={})=>{var i,u,t,n,v;const o=s();return o.use("*",g(Object.assign(Object.assign({},X),a))),o.use("*",(d,H)=>h(void 0,void 0,void 0,function*(){const b=c(d.req.raw,d.req.path);d.set("auth",b),Object.assign(d.req.raw,{auth:b}),yield H()})),o.onError(d=>O(d)),o.route("/",P()),o.route("/",E(l)),o.route("/",R(l,(u=(i=r?.google)===null||i===void 0?void 0:i.key)!==null&&u!==void 0?u:"")),o.route("/",C(l)),o.route("/",k(l)),o.route("/",q(l)),o.route("/",f(l)),o.route("/",L(l)),o.route("/",w(l,e??{})),o.route("/",T(l)),o.route("/",K(l,(n=(t=r?.google)===null||t===void 0?void 0:t.key)!==null&&n!==void 0?n:"")),o.route("/",_(r??{})),o.route("/",S(l,e??{})),o.route("/",M(l,e??{})),!((v=e?.stripe)===null||v===void 0)&&v.resendApiKey&&o.route("/",j(l,e.stripe.resendApiKey)),o};

package/src/core/auth/auth.schema.js

@@ -1,41 +1 @@
-import { z } from "@hono/zod-openapi";
-export const SignUpSchema = z.object({
-    email: z
-        .string()
-        .min(1, "Email is required")
-        .email("Invalid email")
-        .openapi({
-        example: "user@example.com",
-        description: "User's email address",
-    }),
-    password: z
-        .string()
-        .min(1, "Password is required")
-        .min(8, "Password must be more than 8 characters")
-        .max(32, "Password must be less than 32 characters")
-        .openapi({
-        example: "password123",
-        description: "User's password",
-    }),
-    firstname: z
-        .string()
-        .min(1, "First name is required")
-        .max(32, "First name must be less than 32 characters")
-        .openapi({
-        example: "John",
-        description: "User's first name",
-    }),
-    lastname: z
-        .string()
-        .min(1, "Last name is required")
-        .max(32, "Last name must be less than 32 characters")
-        .openapi({
-        example: "Doe",
-        description: "User's last name",
-    }),
-}).openapi("SignUp");
-export const SignInSchema = SignUpSchema.pick({
-    email: true,
-    password: true,
-}).openapi("SignIn");
-//# sourceMappingURL=auth.schema.js.map
+import{z as e}from"@hono/zod-openapi";export const SignUpSchema=e.object({email:e.string().min(1,"Email is required").email("Invalid email").openapi({example:"user@example.com",description:"User's email address"}),password:e.string().min(1,"Password is required").min(8,"Password must be more than 8 characters").max(32,"Password must be less than 32 characters").openapi({example:"password123",description:"User's password"}),firstname:e.string().min(1,"First name is required").max(32,"First name must be less than 32 characters").openapi({example:"John",description:"User's first name"}),lastname:e.string().min(1,"Last name is required").max(32,"Last name must be less than 32 characters").openapi({example:"Doe",description:"User's last name"})}).openapi("SignUp"),SignInSchema=SignUpSchema.pick({email:!0,password:!0}).openapi("SignIn");

package/src/core/auth/auth.util.js

@@ -1,44 +1 @@
-import { __awaiter } from "tslib";
-import { HttpException } from "../exceptions/http-exception";
-import { logger } from "../logging/pino";
-export const getCurrentUser = (auth) => (headers) => __awaiter(void 0, void 0, void 0, function* () {
-    const session = yield auth.api.getSession({
-        headers: headers,
-    });
-    if (!(session === null || session === void 0 ? void 0 : session.user)) {
-        throw new HttpException(401, "Unauthorized");
-    }
-    return session.user;
-});
-export const isGranted = (auth) => (headers, organizationId, accessLevel) => __awaiter(void 0, void 0, void 0, function* () {
-    if (!accessLevel) {
-        throw new Error("Resource and access level are required");
-    }
-    const session = yield auth.api.getSession({
-        headers: headers,
-    });
-    if (!(session === null || session === void 0 ? void 0 : session.user)) {
-        throw new HttpException(401, "Unauthorized");
-    }
-    const hasPermission = yield auth.api.hasPermission({
-        headers,
-        body: {
-            organizationId,
-            permissions: {
-                project: [accessLevel],
-            },
-        },
-    });
-    if (!hasPermission.success) {
-        logger.error({
-            organizationId,
-            accessLevel,
-            message: "User does not have permission",
-            userId: session.user.id,
-            hasPermission,
-        });
-        throw new HttpException(403, "Forbidden");
-    }
-    return session.user;
-});
-//# sourceMappingURL=auth.util.js.map
+import{__awaiter as d}from"tslib";import{HttpException as n}from"../exceptions/http-exception";import{logger as u}from"../logging/pino";export const getCurrentUser=r=>i=>d(void 0,void 0,void 0,function*(){const e=yield r.api.getSession({headers:i});if(!e?.user)throw new n(401,"Unauthorized");return e.user}),isGranted=r=>(i,e,s)=>d(void 0,void 0,void 0,function*(){if(!s)throw new Error("Resource and access level are required");const o=yield r.api.getSession({headers:i});if(!o?.user)throw new n(401,"Unauthorized");const t=yield r.api.hasPermission({headers:i,body:{organizationId:e,permissions:{project:[s]}}});if(!t.success)throw u.error({organizationId:e,accessLevel:s,message:"User does not have permission",userId:o.user.id,hasPermission:t}),new n(403,"Forbidden");return o.user});

package/src/core/auth/better-auth.lib.js

@@ -1,100 +1 @@
-import { betterAuth } from "better-auth";
-import { prismaAdapter } from "better-auth/adapters/prisma";
-import { nextCookies } from "better-auth/next-js";
-import { openAPI, organization } from "better-auth/plugins";
-import { createAccessControl } from "better-auth/plugins/access";
-import { getCurrentUser, isGranted } from "./auth.util";
-const statement = {
-    project: ["create", "read", "update", "delete"],
-    organization: ["create", "read", "update", "delete"],
-};
-const ac = createAccessControl(statement);
-const readOnly = ac.newRole({
-    project: ["read"],
-});
-const member = ac.newRole({
-    project: ["read"],
-});
-const manager = ac.newRole({
-    project: ["create", "read", "update", "delete"],
-});
-const admin = ac.newRole({
-    project: ["create", "read", "update", "delete"],
-    organization: ["update"],
-});
-const owner = ac.newRole({
-    project: ["create", "read", "update", "delete"],
-    organization: ["update", "delete"],
-});
-export const createAuthClient = ({ prisma, baseURL, domain, trustedOrigins, socialProviders, }) => {
-    const auth = betterAuth({
-        baseURL,
-        database: prismaAdapter(prisma, {
-            provider: "postgresql",
-        }),
-        trustedOrigins,
-        user: {
-            additionalFields: {
-                firstname: {
-                    type: "string",
-                    required: true,
-                },
-                lastname: {
-                    type: "string",
-                    required: true,
-                },
-            },
-        },
-        advanced: {
-            crossSubDomainCookies: {
-                enabled: true,
-                domain: domain,
-            },
-            useSecureCookies: domain !== "localhost",
-            defaultCookieAttributes: {
-                path: "/",
-                sameSite: "lax", // Use "none" if you need cross-site requests, but requires secure: true
-                httpOnly: true, // Prevents JavaScript access to cookies
-                secure: domain !== "localhost",
-            },
-        },
-        emailAndPassword: {
-            enabled: true,
-        },
-        socialProviders: Object.assign({}, ((socialProviders === null || socialProviders === void 0 ? void 0 : socialProviders.google)
-            ? {
-                google: {
-                    prompt: "select_account",
-                    clientId: socialProviders.google.clientId,
-                    clientSecret: socialProviders.google.clientSecret,
-                    mapProfileToUser: (profile) => {
-                        return {
-                            firstname: profile.given_name,
-                            lastname: profile.family_name,
-                        };
-                    },
-                },
-            }
-            : {})),
-        plugins: [
-            openAPI(),
-            nextCookies(),
-            organization({
-                ac,
-                roles: {
-                    member,
-                    readOnly,
-                    manager,
-                    admin,
-                    owner,
-                },
-            }),
-        ],
-    });
-    return {
-        auth,
-        getCurrentUser: getCurrentUser(auth),
-        isGranted: isGranted(auth),
-    };
-};
-//# sourceMappingURL=better-auth.lib.js.map
+import{betterAuth as l}from"better-auth";import{prismaAdapter as d}from"better-auth/adapters/prisma";import{nextCookies as c}from"better-auth/next-js";import{openAPI as p,organization as u}from"better-auth/plugins";import{createAccessControl as m}from"better-auth/plugins/access";import{getCurrentUser as g,isGranted as f}from"./auth.util";const b={project:["create","read","update","delete"],organization:["create","read","update","delete"]},e=m(b),C=e.newRole({project:["read"]}),h=e.newRole({project:["read"]}),j=e.newRole({project:["create","read","update","delete"]}),w=e.newRole({project:["create","read","update","delete"],organization:["update"]}),A=e.newRole({project:["create","read","update","delete"],organization:["update","delete"]});export const createAuthClient=({prisma:n,baseURL:s,domain:r,trustedOrigins:i,socialProviders:t})=>{const o=l({baseURL:s,database:d(n,{provider:"postgresql"}),trustedOrigins:i,user:{additionalFields:{firstname:{type:"string",required:!0},lastname:{type:"string",required:!0}}},advanced:{crossSubDomainCookies:{enabled:!0,domain:r},useSecureCookies:r!=="localhost",defaultCookieAttributes:{path:"/",sameSite:"lax",httpOnly:!0,secure:r!=="localhost"}},emailAndPassword:{enabled:!0},socialProviders:Object.assign({},t?.google?{google:{prompt:"select_account",clientId:t.google.clientId,clientSecret:t.google.clientSecret,mapProfileToUser:a=>({firstname:a.given_name,lastname:a.family_name})}}:{}),plugins:[p(),c(),u({ac:e,roles:{member:h,readOnly:C,manager:j,admin:w,owner:A}})]});return{auth:o,getCurrentUser:g(o),isGranted:f(o)}};

package/src/core/auth/generate-password-hash.util.js

@@ -1,30 +1 @@
-import { __awaiter } from "tslib";
-import crypto from "crypto";
-/**
- * Generate a random salt using crypto.
- */
-function randomBytes() {
-    return new Promise((resolve, reject) => crypto.randomBytes(32, (err, saltBuffer) => err ? reject(err) : resolve(saltBuffer)));
-}
-/**
- * Generate a hash using PBKDF2.
- */
-function pbkdf2Promisified(password, salt) {
-    return new Promise((resolve, reject) => crypto.pbkdf2(password, salt, 25000, // Number of iterations
-    512, // Key length
-    "sha256", // Digest algorithm
-    (err, hashRaw) => (err ? reject(err) : resolve(hashRaw))));
-}
-/**
- * Generate a salt and hash for the password.
- */
-export function generatePasswordSaltHash(password) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const saltBuffer = yield randomBytes();
-        const salt = saltBuffer.toString("hex");
-        const hashRaw = yield pbkdf2Promisified(password, salt);
-        const hash = hashRaw.toString("hex");
-        return { hash, salt };
-    });
-}
-//# sourceMappingURL=generate-password-hash.util.js.map
+import{__awaiter as a}from"tslib";import e from"crypto";function f(){return new Promise((o,n)=>e.randomBytes(32,(t,r)=>t?n(t):o(r)))}function h(o,n){return new Promise((t,r)=>e.pbkdf2(o,n,25e3,512,"sha256",(s,i)=>s?r(s):t(i)))}export function generatePasswordSaltHash(o){return a(this,void 0,void 0,function*(){const t=(yield f()).toString("hex");return{hash:(yield h(o,t)).toString("hex"),salt:t}})}

package/src/core/auth/headers.schema.js

@@ -1,22 +1 @@
-import { z } from "@hono/zod-openapi";
-export const HeaderSchema = z
-    .object({
-    "accept-language": z.string().optional().openapi({
-        example: "en-US",
-        description: "Accept-Language header",
-        param: {
-            in: "header",
-            name: "accept-language",
-        },
-    }),
-    cookie: z.string().optional().openapi({
-        example: "session=1234567890",
-        description: "Cookie header",
-        param: {
-            in: "header",
-            name: "cookie",
-        },
-    }),
-})
-    .openapi("Headers");
-//# sourceMappingURL=headers.schema.js.map
+import{z as e}from"@hono/zod-openapi";export const HeaderSchema=e.object({"accept-language":e.string().optional().openapi({example:"en-US",description:"Accept-Language header",param:{in:"header",name:"accept-language"}}),cookie:e.string().optional().openapi({example:"session=1234567890",description:"Cookie header",param:{in:"header",name:"cookie"}})}).openapi("Headers");

package/src/core/auth/user.schema.js

@@ -1,30 +1 @@
-import { z } from "@hono/zod-openapi";
-export const UserSchema = z
-    .object({
-    id: z.string().openapi({
-        example: "clm1234567890abcdef",
-        description: "User's ID",
-    }),
-    email: z.string().openapi({
-        example: "user@example.com",
-        description: "User's email address",
-        format: "email",
-    }),
-    firstname: z.string().openapi({
-        example: "John",
-        description: "User's first name",
-    }),
-    lastname: z.string().openapi({
-        example: "Doe",
-        description: "User's last name",
-    }),
-    image: z.string().nullable().optional().openapi({
-        example: "https://example.com/image.jpg",
-        description: "User's profile image",
-    }),
-    name: z.string().nullable().optional().openapi({
-        description: "User's full name (optional)",
-    }),
-})
-    .openapi("User");
-//# sourceMappingURL=user.schema.js.map
+import{z as e}from"@hono/zod-openapi";export const UserSchema=e.object({id:e.string().openapi({example:"clm1234567890abcdef",description:"User's ID"}),email:e.string().openapi({example:"user@example.com",description:"User's email address",format:"email"}),firstname:e.string().openapi({example:"John",description:"User's first name"}),lastname:e.string().openapi({example:"Doe",description:"User's last name"}),image:e.string().nullable().optional().openapi({example:"https://example.com/image.jpg",description:"User's profile image"}),name:e.string().nullable().optional().openapi({description:"User's full name (optional)"})}).openapi("User");

package/src/core/db/__generated__/client/browser.js

@@ -1,18 +1 @@
-/* !!! This is code generated by Prisma. Do not edit directly. !!! */
-/* eslint-disable */
-// biome-ignore-all lint: generated file
-// @ts-nocheck 
-/*
- * This file should be your main import to use Prisma-related types and utilities in a browser.
- * Use it to get access to models, enums, and input types.
- *
- * This file does not contain a `PrismaClient` class, nor several other helpers that are intended as server-side only.
- * See `client.ts` for the standard, server-side entry point.
- *
- * 🟢 You can import this file directly.
- */
-import * as Prisma from './internal/prismaNamespaceBrowser';
-export { Prisma };
-export * as $Enums from './enums';
-export * from './enums';
-//# sourceMappingURL=browser.js.map
+import*as r from"./internal/prismaNamespaceBrowser";export{r as Prisma};export*as $Enums from"./enums";export*from"./enums";

package/src/core/db/__generated__/client/client.js

@@ -1,35 +1 @@
-/* !!! This is code generated by Prisma. Do not edit directly. !!! */
-/* eslint-disable */
-// biome-ignore-all lint: generated file
-// @ts-nocheck 
-/*
- * This file should be your main import to use Prisma. Through it you get access to all the models, enums, and input types.
- * If you're looking for something you can import in the client-side of your application, please refer to the `browser.ts` file instead.
- *
- * 🟢 You can import this file directly.
- */
-import * as path from 'node:path';
-import { fileURLToPath } from 'node:url';
-globalThis['__dirname'] = path.dirname(fileURLToPath(import.meta.url));
-import * as $Class from "./internal/class";
-import * as Prisma from "./internal/prismaNamespace";
-export * as $Enums from './enums';
-export * from "./enums";
-/**
- * ## Prisma Client
- *
- * Type-safe database client for TypeScript
- * @example
- * ```
- * const prisma = new PrismaClient({
- *   adapter: new PrismaPg({ connectionString: process.env.DATABASE_URL })
- * })
- * // Fetch zero or more Users
- * const users = await prisma.user.findMany()
- * ```
- *
- * Read more in our [docs](https://pris.ly/d/client).
- */
-export const PrismaClient = $Class.getPrismaClientClass();
-export { Prisma };
-//# sourceMappingURL=client.js.map
+import*as r from"node:path";import{fileURLToPath as m}from"node:url";globalThis.__dirname=r.dirname(m(import.meta.url));import*as o from"./internal/class";import*as t from"./internal/prismaNamespace";export*as $Enums from"./enums";export*from"./enums";export const PrismaClient=o.getPrismaClientClass();export{t as Prisma};

package/src/core/db/__generated__/client/commonInputTypes.js

@@ -1,11 +1 @@
-/* !!! This is code generated by Prisma. Do not edit directly. !!! */
-/* eslint-disable */
-// biome-ignore-all lint: generated file
-// @ts-nocheck 
-/*
- * This file exports various common sort, input & filter types that are not directly linked to a particular model.
- *
- * 🟢 You can import this file directly.
- */
-export {};
-//# sourceMappingURL=commonInputTypes.js.map
+export{};