npm - @sonicjs-cms/core - Versions diffs - 2.17.0 → 2.17.2 - Mend

@sonicjs-cms/core 2.17.0 → 2.17.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (47) hide show

package/dist/{chunk-J5MYHM6Z.cjs → chunk-2VY2G7OR.cjs} +125 -127
package/dist/chunk-2VY2G7OR.cjs.map +1 -0
package/dist/{chunk-4HCUJ3MG.cjs → chunk-FXWF5D5V.cjs} +2 -2
package/dist/{chunk-4HCUJ3MG.cjs.map → chunk-FXWF5D5V.cjs.map} +1 -1
package/dist/{chunk-6F57Z6SD.js → chunk-I2Z72YTD.js} +54 -3
package/dist/chunk-I2Z72YTD.js.map +1 -0
package/dist/{chunk-NMJT6BJR.js → chunk-ITGOUYVN.js} +2 -2
package/dist/{chunk-NMJT6BJR.js.map → chunk-ITGOUYVN.js.map} +1 -1
package/dist/{chunk-S7K4FRJ2.js → chunk-K6QVIOTA.js} +4 -4
package/dist/{chunk-S7K4FRJ2.js.map → chunk-K6QVIOTA.js.map} +1 -1
package/dist/{chunk-LZJLWW7E.js → chunk-KJSZMIBF.js} +11 -13
package/dist/chunk-KJSZMIBF.js.map +1 -0
package/dist/{chunk-FSWP4FBW.cjs → chunk-LVGB5UU5.cjs} +2 -2
package/dist/{chunk-FSWP4FBW.cjs.map → chunk-LVGB5UU5.cjs.map} +1 -1
package/dist/{chunk-FDXNIZ6N.js → chunk-NAYUXSNR.js} +2 -2
package/dist/{chunk-FDXNIZ6N.js.map → chunk-NAYUXSNR.js.map} +1 -1
package/dist/{chunk-RE3NVA23.cjs → chunk-P4RAIX7B.cjs} +8 -8
package/dist/{chunk-RE3NVA23.cjs.map → chunk-P4RAIX7B.cjs.map} +1 -1
package/dist/{chunk-QBLBIAVZ.cjs → chunk-Q3W6LCEN.cjs} +54 -3
package/dist/chunk-Q3W6LCEN.cjs.map +1 -0
package/dist/index.cjs +140 -140
package/dist/index.d.cts +1 -1
package/dist/index.d.ts +1 -1
package/dist/index.js +9 -9
package/dist/middleware.cjs +32 -32
package/dist/middleware.js +3 -3
package/dist/migrations-IFZLGVV3.js +4 -0
package/dist/{migrations-HQI62CAO.js.map → migrations-IFZLGVV3.js.map} +1 -1
package/dist/migrations-Q7C6F2RM.cjs +13 -0
package/dist/{migrations-ZYPYVSXI.cjs.map → migrations-Q7C6F2RM.cjs.map} +1 -1
package/dist/routes.cjs +28 -28
package/dist/routes.js +5 -5
package/dist/services.cjs +23 -23
package/dist/services.js +2 -2
package/dist/utils.cjs +11 -11
package/dist/utils.d.cts +1 -1
package/dist/utils.d.ts +1 -1
package/dist/utils.js +1 -1
package/dist/{version-ChpccWQ1.d.cts → version-DFTyGfIH.d.cts} +9 -1
package/dist/{version-ChpccWQ1.d.ts → version-DFTyGfIH.d.ts} +9 -1
package/package.json +1 -1
package/dist/chunk-6F57Z6SD.js.map +0 -1
package/dist/chunk-J5MYHM6Z.cjs.map +0 -1
package/dist/chunk-LZJLWW7E.js.map +0 -1
package/dist/chunk-QBLBIAVZ.cjs.map +0 -1
package/dist/migrations-HQI62CAO.js +0 -4
package/dist/migrations-ZYPYVSXI.cjs +0 -13

package/dist/{chunk-J5MYHM6Z.cjs → chunk-2VY2G7OR.cjs} RENAMED Viewed

@@ -1,13 +1,13 @@
 'use strict';
 var chunkWAEQXGCX_cjs = require('./chunk-WAEQXGCX.cjs');
-var chunkRE3NVA23_cjs = require('./chunk-RE3NVA23.cjs');
-var chunk4HCUJ3MG_cjs = require('./chunk-4HCUJ3MG.cjs');
-var chunkFSWP4FBW_cjs = require('./chunk-FSWP4FBW.cjs');
+var chunkP4RAIX7B_cjs = require('./chunk-P4RAIX7B.cjs');
+var chunkFXWF5D5V_cjs = require('./chunk-FXWF5D5V.cjs');
+var chunkLVGB5UU5_cjs = require('./chunk-LVGB5UU5.cjs');
 var chunkOHYBNCVL_cjs = require('./chunk-OHYBNCVL.cjs');
 var chunkUYJ6TJHX_cjs = require('./chunk-UYJ6TJHX.cjs');
 var chunk635JAMSE_cjs = require('./chunk-635JAMSE.cjs');
-var chunkQBLBIAVZ_cjs = require('./chunk-QBLBIAVZ.cjs');
+var chunkQ3W6LCEN_cjs = require('./chunk-Q3W6LCEN.cjs');
 var chunkRCQ2HIQD_cjs = require('./chunk-RCQ2HIQD.cjs');
 var chunkMNWKYY5E_cjs = require('./chunk-MNWKYY5E.cjs');
 var hono = require('hono');
@@ -189,7 +189,7 @@ apiContentCrudRoutes.get("/:id", async (c) => {
     }, 500);
   }
 });
-apiContentCrudRoutes.post("/", chunkRE3NVA23_cjs.requireAuth(), chunkRE3NVA23_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
+apiContentCrudRoutes.post("/", chunkP4RAIX7B_cjs.requireAuth(), chunkP4RAIX7B_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
   try {
     const db = c.env.DB;
     const user = c.get("user");
@@ -255,7 +255,7 @@ apiContentCrudRoutes.post("/", chunkRE3NVA23_cjs.requireAuth(), chunkRE3NVA23_cj
     }, 500);
   }
 });
-apiContentCrudRoutes.put("/:id", chunkRE3NVA23_cjs.requireAuth(), chunkRE3NVA23_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
+apiContentCrudRoutes.put("/:id", chunkP4RAIX7B_cjs.requireAuth(), chunkP4RAIX7B_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
   try {
     const id = c.req.param("id");
     const db = c.env.DB;
@@ -319,7 +319,7 @@ apiContentCrudRoutes.put("/:id", chunkRE3NVA23_cjs.requireAuth(), chunkRE3NVA23_
     }, 500);
   }
 });
-apiContentCrudRoutes.delete("/:id", chunkRE3NVA23_cjs.requireAuth(), chunkRE3NVA23_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
+apiContentCrudRoutes.delete("/:id", chunkP4RAIX7B_cjs.requireAuth(), chunkP4RAIX7B_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
   try {
     const id = c.req.param("id");
     const db = c.env.DB;
@@ -355,7 +355,7 @@ apiRoutes.use("*", async (c, next) => {
   c.header("X-Response-Time", `${totalTime}ms`);
 });
 apiRoutes.use("*", async (c, next) => {
-  const cacheEnabled = await chunkRE3NVA23_cjs.isPluginActive(c.env.DB, "core-cache");
+  const cacheEnabled = await chunkP4RAIX7B_cjs.isPluginActive(c.env.DB, "core-cache");
   c.set("cacheEnabled", cacheEnabled);
   await next();
 });
@@ -846,7 +846,7 @@ apiRoutes.get("/collections", async (c) => {
     return c.json({ error: "Failed to fetch collections" }, 500);
   }
 });
-apiRoutes.get("/content", chunkRE3NVA23_cjs.optionalAuth(), async (c) => {
+apiRoutes.get("/content", chunkP4RAIX7B_cjs.optionalAuth(), async (c) => {
   const executionStart = Date.now();
   try {
     const db = c.env.DB;
@@ -869,13 +869,13 @@ apiRoutes.get("/content", chunkRE3NVA23_cjs.optionalAuth(), async (c) => {
         });
       }
     }
-    const filter = chunkQBLBIAVZ_cjs.QueryFilterBuilder.parseFromQuery(queryParams);
+    const filter = chunkQ3W6LCEN_cjs.QueryFilterBuilder.parseFromQuery(queryParams);
     const normalizedFilter = normalizePublicContentFilter(filter, c.get("user")?.role);
     if (!normalizedFilter.limit) {
       normalizedFilter.limit = 50;
     }
     normalizedFilter.limit = Math.min(normalizedFilter.limit, 1e3);
-    const builder3 = new chunkQBLBIAVZ_cjs.QueryFilterBuilder();
+    const builder3 = new chunkQ3W6LCEN_cjs.QueryFilterBuilder();
     const queryResult = builder3.build("content", normalizedFilter);
     if (queryResult.errors.length > 0) {
       return c.json({
@@ -947,7 +947,7 @@ apiRoutes.get("/content", chunkRE3NVA23_cjs.optionalAuth(), async (c) => {
     }, 500);
   }
 });
-apiRoutes.get("/collections/:collection/content", chunkRE3NVA23_cjs.optionalAuth(), async (c) => {
+apiRoutes.get("/collections/:collection/content", chunkP4RAIX7B_cjs.optionalAuth(), async (c) => {
   const executionStart = Date.now();
   try {
     const collection = c.req.param("collection");
@@ -958,7 +958,7 @@ apiRoutes.get("/collections/:collection/content", chunkRE3NVA23_cjs.optionalAuth
     if (!collectionResult) {
       return c.json({ error: "Collection not found" }, 404);
     }
-    const filter = chunkQBLBIAVZ_cjs.QueryFilterBuilder.parseFromQuery(queryParams);
+    const filter = chunkQ3W6LCEN_cjs.QueryFilterBuilder.parseFromQuery(queryParams);
     const normalizedFilter = normalizePublicContentFilter(filter, c.get("user")?.role);
     if (!normalizedFilter.where) {
       normalizedFilter.where = { and: [] };
@@ -975,7 +975,7 @@ apiRoutes.get("/collections/:collection/content", chunkRE3NVA23_cjs.optionalAuth
       normalizedFilter.limit = 50;
     }
     normalizedFilter.limit = Math.min(normalizedFilter.limit, 1e3);
-    const builder3 = new chunkQBLBIAVZ_cjs.QueryFilterBuilder();
+    const builder3 = new chunkQ3W6LCEN_cjs.QueryFilterBuilder();
     const queryResult = builder3.build("content", normalizedFilter);
     if (queryResult.errors.length > 0) {
       return c.json({
@@ -1096,7 +1096,7 @@ var fileValidationSchema = zod.z.object({
   // 50MB max
 });
 var apiMediaRoutes = new hono.Hono();
-apiMediaRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+apiMediaRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 apiMediaRoutes.post("/upload", async (c) => {
   try {
     const user = c.get("user");
@@ -1840,8 +1840,8 @@ apiSystemRoutes.get("/env", (c) => {
 });
 var api_system_default = apiSystemRoutes;
 var adminApiRoutes = new hono.Hono();
-adminApiRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
-adminApiRoutes.use("*", chunkRE3NVA23_cjs.requireRole(["admin", "editor"]));
+adminApiRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
+adminApiRoutes.use("*", chunkP4RAIX7B_cjs.requireRole(["admin", "editor"]));
 adminApiRoutes.get("/stats", async (c) => {
   try {
     const db = c.env.DB;
@@ -2353,7 +2353,7 @@ adminApiRoutes.delete("/collections/:id", async (c) => {
 });
 adminApiRoutes.get("/migrations/status", async (c) => {
   try {
-    const { MigrationService: MigrationService2 } = await import('./migrations-ZYPYVSXI.cjs');
+    const { MigrationService: MigrationService2 } = await import('./migrations-Q7C6F2RM.cjs');
     const db = c.env.DB;
     const migrationService = new MigrationService2(db);
     const status = await migrationService.getMigrationStatus();
@@ -2378,7 +2378,7 @@ adminApiRoutes.post("/migrations/run", async (c) => {
         error: "Unauthorized. Admin access required."
       }, 403);
     }
-    const { MigrationService: MigrationService2 } = await import('./migrations-ZYPYVSXI.cjs');
+    const { MigrationService: MigrationService2 } = await import('./migrations-Q7C6F2RM.cjs');
     const db = c.env.DB;
     const migrationService = new MigrationService2(db);
     const result = await migrationService.runPendingMigrations();
@@ -2400,7 +2400,7 @@ adminApiRoutes.post("/migrations/run", async (c) => {
 });
 adminApiRoutes.get("/migrations/validate", async (c) => {
   try {
-    const { MigrationService: MigrationService2 } = await import('./migrations-ZYPYVSXI.cjs');
+    const { MigrationService: MigrationService2 } = await import('./migrations-Q7C6F2RM.cjs');
     const db = c.env.DB;
     const migrationService = new MigrationService2(db);
     const validation = await migrationService.validateSchema();
@@ -5153,8 +5153,8 @@ var JWT_SECRET_FALLBACK = "your-super-secret-jwt-key-change-in-production";
 async function setCsrfCookie(c, maxAge) {
   const secret = c.env?.JWT_SECRET || JWT_SECRET_FALLBACK;
   const isDev = c.env?.ENVIRONMENT === "development" || !c.env?.ENVIRONMENT;
-  const csrfToken = await chunkRE3NVA23_cjs.generateCsrfToken(secret);
-  const cookieMaxAge = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env?.DB, c.env);
+  const csrfToken = await chunkP4RAIX7B_cjs.generateCsrfToken(secret);
+  const cookieMaxAge = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env?.DB, c.env);
   cookie.setCookie(c, "csrf_token", csrfToken, {
     httpOnly: false,
     secure: !isDev,
@@ -5211,7 +5211,7 @@ var loginSchema = zod.z.object({
 });
 authRoutes.post(
   "/register",
-  chunkRE3NVA23_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "register" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "register" }),
   async (c) => {
     try {
       const db = c.env.DB;
@@ -5248,7 +5248,7 @@ authRoutes.post(
       if (existingUser) {
         return c.json({ error: "User with this email or username already exists" }, 400);
       }
-      const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+      const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
       const userId = crypto.randomUUID();
       const now = /* @__PURE__ */ new Date();
       await db.prepare(`
@@ -5282,8 +5282,8 @@ authRoutes.post(
           await saveCustomData(db, userId, sanitized);
         }
       }
-      const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
-      const token = await chunkRE3NVA23_cjs.AuthManager.generateToken(userId, normalizedEmail, "viewer", c.env.JWT_SECRET, tokenTtl);
+      const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
+      const token = await chunkP4RAIX7B_cjs.AuthManager.generateToken(userId, normalizedEmail, "viewer", c.env.JWT_SECRET, tokenTtl);
       cookie.setCookie(c, "auth_token", token, {
         httpOnly: true,
         secure: true,
@@ -5316,7 +5316,7 @@ authRoutes.post(
 );
 authRoutes.post(
   "/login",
-  chunkRE3NVA23_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "login" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "login" }),
   async (c) => {
     try {
       const body = await c.req.json();
@@ -5339,20 +5339,20 @@ authRoutes.post(
       if (!user) {
         return c.json({ error: "Invalid email or password" }, 401);
       }
-      const isValidPassword = await chunkRE3NVA23_cjs.AuthManager.verifyPassword(password, user.password_hash);
+      const isValidPassword = await chunkP4RAIX7B_cjs.AuthManager.verifyPassword(password, user.password_hash);
       if (!isValidPassword) {
         return c.json({ error: "Invalid email or password" }, 401);
       }
-      if (chunkRE3NVA23_cjs.AuthManager.isLegacyHash(user.password_hash)) {
+      if (chunkP4RAIX7B_cjs.AuthManager.isLegacyHash(user.password_hash)) {
         try {
-          const newHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+          const newHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
           await db.prepare("UPDATE users SET password_hash = ?, updated_at = ? WHERE id = ?").bind(newHash, Date.now(), user.id).run();
         } catch (rehashError) {
           console.error("Password rehash failed (non-fatal):", rehashError);
         }
       }
-      const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
-      const token = await chunkRE3NVA23_cjs.AuthManager.generateToken(user.id, user.email, user.role, c.env.JWT_SECRET, tokenTtl);
+      const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
+      const token = await chunkP4RAIX7B_cjs.AuthManager.generateToken(user.id, user.email, user.role, c.env.JWT_SECRET, tokenTtl);
       cookie.setCookie(c, "auth_token", token, {
         httpOnly: true,
         secure: true,
@@ -5404,7 +5404,7 @@ authRoutes.get("/logout", (c) => {
   clearCsrfCookie(c);
   return c.redirect("/auth/login?message=You have been logged out successfully");
 });
-authRoutes.get("/me", chunkRE3NVA23_cjs.requireAuth(), async (c) => {
+authRoutes.get("/me", chunkP4RAIX7B_cjs.requireAuth(), async (c) => {
   try {
     const user = c.get("user");
     if (!user) {
@@ -5423,7 +5423,7 @@ authRoutes.get("/me", chunkRE3NVA23_cjs.requireAuth(), async (c) => {
 });
 authRoutes.post(
   "/refresh",
-  chunkRE3NVA23_cjs.rateLimit({ max: 60, windowMs: 60 * 1e3, keyPrefix: "refresh" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 60, windowMs: 60 * 1e3, keyPrefix: "refresh" }),
   async (c) => {
     try {
       let token = c.req.header("Authorization")?.replace("Bearer ", "");
@@ -5432,8 +5432,8 @@ authRoutes.post(
         return c.json({ error: "Authentication required" }, 401);
       }
       const db = c.env.DB;
-      const grace = await chunkRE3NVA23_cjs.getJwtRefreshGraceSecondsFromDb(db, c.env);
-      const payload = await chunkRE3NVA23_cjs.AuthManager.verifyToken(token, c.env.JWT_SECRET, grace);
+      const grace = await chunkP4RAIX7B_cjs.getJwtRefreshGraceSecondsFromDb(db, c.env);
+      const payload = await chunkP4RAIX7B_cjs.AuthManager.verifyToken(token, c.env.JWT_SECRET, grace);
       if (!payload) {
         return c.json({ error: "Invalid or expired token" }, 401);
       }
@@ -5441,8 +5441,8 @@ authRoutes.post(
       if (!row || !row.is_active) {
         return c.json({ error: "User is not active" }, 401);
       }
-      const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(db, c.env);
-      const newToken = await chunkRE3NVA23_cjs.AuthManager.generateToken(row.id, row.email, row.role, c.env.JWT_SECRET, tokenTtl);
+      const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(db, c.env);
+      const newToken = await chunkP4RAIX7B_cjs.AuthManager.generateToken(row.id, row.email, row.role, c.env.JWT_SECRET, tokenTtl);
       cookie.setCookie(c, "auth_token", newToken, {
         httpOnly: true,
         secure: true,
@@ -5462,7 +5462,7 @@ authRoutes.post(
 );
 authRoutes.post(
   "/register/form",
-  chunkRE3NVA23_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "register" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "register" }),
   async (c) => {
     try {
       const db = c.env.DB;
@@ -5509,7 +5509,7 @@ authRoutes.post(
         </div>
       `);
       }
-      const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+      const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
       const role = isFirstUser ? "admin" : "viewer";
       const userId = crypto.randomUUID();
       const now = /* @__PURE__ */ new Date();
@@ -5544,8 +5544,8 @@ authRoutes.post(
           await saveCustomData(db, userId, sanitized);
         }
       }
-      const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
-      const token = await chunkRE3NVA23_cjs.AuthManager.generateToken(userId, normalizedEmail, role, c.env.JWT_SECRET, tokenTtl);
+      const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
+      const token = await chunkP4RAIX7B_cjs.AuthManager.generateToken(userId, normalizedEmail, role, c.env.JWT_SECRET, tokenTtl);
       cookie.setCookie(c, "auth_token", token, {
         httpOnly: true,
         secure: false,
@@ -5577,7 +5577,7 @@ authRoutes.post(
 );
 authRoutes.post(
   "/login/form",
-  chunkRE3NVA23_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "login" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 30, windowMs: 60 * 1e3, keyPrefix: "login" }),
   async (c) => {
     try {
       const formData = await c.req.formData();
@@ -5601,7 +5601,7 @@ authRoutes.post(
         </div>
       `);
       }
-      const isValidPassword = await chunkRE3NVA23_cjs.AuthManager.verifyPassword(password, user.password_hash);
+      const isValidPassword = await chunkP4RAIX7B_cjs.AuthManager.verifyPassword(password, user.password_hash);
       if (!isValidPassword) {
         return c.html(html.html`
         <div class="bg-red-100 border border-red-400 text-red-700 px-4 py-3 rounded">
@@ -5609,16 +5609,16 @@ authRoutes.post(
         </div>
       `);
       }
-      if (chunkRE3NVA23_cjs.AuthManager.isLegacyHash(user.password_hash)) {
+      if (chunkP4RAIX7B_cjs.AuthManager.isLegacyHash(user.password_hash)) {
         try {
-          const newHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+          const newHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
           await db.prepare("UPDATE users SET password_hash = ?, updated_at = ? WHERE id = ?").bind(newHash, Date.now(), user.id).run();
         } catch (rehashError) {
           console.error("Password rehash failed (non-fatal):", rehashError);
         }
       }
-      const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
-      const token = await chunkRE3NVA23_cjs.AuthManager.generateToken(user.id, user.email, user.role, c.env.JWT_SECRET, tokenTtl);
+      const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
+      const token = await chunkP4RAIX7B_cjs.AuthManager.generateToken(user.id, user.email, user.role, c.env.JWT_SECRET, tokenTtl);
       cookie.setCookie(c, "auth_token", token, {
         httpOnly: true,
         secure: false,
@@ -5659,7 +5659,7 @@ authRoutes.post(
 );
 authRoutes.post(
   "/seed-admin",
-  chunkRE3NVA23_cjs.rateLimit({ max: 10, windowMs: 60 * 1e3, keyPrefix: "seed-admin" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 10, windowMs: 60 * 1e3, keyPrefix: "seed-admin" }),
   async (c) => {
     try {
       const db = c.env.DB;
@@ -5681,7 +5681,7 @@ authRoutes.post(
     `).run();
       const existingAdmin = await db.prepare("SELECT id FROM users WHERE email = ? OR username = ?").bind("admin@sonicjs.com", "admin").first();
       if (existingAdmin) {
-        const passwordHash2 = await chunkRE3NVA23_cjs.AuthManager.hashPassword("sonicjs!");
+        const passwordHash2 = await chunkP4RAIX7B_cjs.AuthManager.hashPassword("sonicjs!");
         await db.prepare("UPDATE users SET password_hash = ?, updated_at = ? WHERE id = ?").bind(passwordHash2, Date.now(), existingAdmin.id).run();
         return c.json({
           message: "Admin user already exists (password updated)",
@@ -5693,7 +5693,7 @@ authRoutes.post(
           }
         });
       }
-      const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword("sonicjs!");
+      const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword("sonicjs!");
       const userId = "admin-user-id";
       const now = Date.now();
       const adminEmail = "admin@sonicjs.com".toLowerCase();
@@ -5914,7 +5914,7 @@ authRoutes.post("/accept-invitation", async (c) => {
     if (existingUsername) {
       return c.json({ error: "Username is already taken" }, 400);
     }
-    const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+    const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
     const updateStmt = db.prepare(`
       UPDATE users SET
         username = ?,
@@ -5933,8 +5933,8 @@ authRoutes.post("/accept-invitation", async (c) => {
       Date.now(),
       invitedUser.id
     ).run();
-    const tokenTtl = await chunkRE3NVA23_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
-    const authToken = await chunkRE3NVA23_cjs.AuthManager.generateToken(invitedUser.id, invitedUser.email, invitedUser.role, c.env.JWT_SECRET, tokenTtl);
+    const tokenTtl = await chunkP4RAIX7B_cjs.getJwtExpirySecondsFromDb(c.env.DB, c.env);
+    const authToken = await chunkP4RAIX7B_cjs.AuthManager.generateToken(invitedUser.id, invitedUser.email, invitedUser.role, c.env.JWT_SECRET, tokenTtl);
     cookie.setCookie(c, "auth_token", authToken, {
       httpOnly: true,
       secure: true,
@@ -5950,7 +5950,7 @@ authRoutes.post("/accept-invitation", async (c) => {
 });
 authRoutes.post(
   "/request-password-reset",
-  chunkRE3NVA23_cjs.rateLimit({ max: 3, windowMs: 15 * 60 * 1e3, keyPrefix: "password-reset" }),
+  chunkP4RAIX7B_cjs.rateLimit({ max: 3, windowMs: 15 * 60 * 1e3, keyPrefix: "password-reset" }),
   async (c) => {
     try {
       const formData = await c.req.formData();
@@ -6168,7 +6168,7 @@ authRoutes.post("/reset-password", async (c) => {
     if (Date.now() > user.password_reset_expires) {
       return c.json({ error: "Reset token has expired" }, 400);
     }
-    const newPasswordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+    const newPasswordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
     try {
       const historyStmt = db.prepare(`
         INSERT INTO password_history (id, user_id, password_hash, created_at)
@@ -9544,9 +9544,9 @@ function parseFieldValue(field, formData, options = {}) {
   const { skipValidation = false } = options;
   const value = formData.get(field.field_name);
   const errors = [];
-  const blocksConfig = chunkQBLBIAVZ_cjs.getBlocksFieldConfig(field.field_options);
+  const blocksConfig = chunkQ3W6LCEN_cjs.getBlocksFieldConfig(field.field_options);
   if (blocksConfig) {
-    const parsed = chunkQBLBIAVZ_cjs.parseBlocksValue(value, blocksConfig);
+    const parsed = chunkQ3W6LCEN_cjs.parseBlocksValue(value, blocksConfig);
     if (!skipValidation && field.is_required && parsed.value.length === 0) {
       parsed.errors.push(`${field.field_label} is required`);
     }
@@ -9656,7 +9656,7 @@ function extractFieldData(fields, formData, options = {}) {
   }
   return { data, errors };
 }
-adminContentRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+adminContentRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 async function getCollectionFields(db, collectionId) {
   const cache = chunkWAEQXGCX_cjs.getCacheService(chunkWAEQXGCX_cjs.CACHE_CONFIGS.collection);
   return cache.getOrSet(
@@ -9933,21 +9933,21 @@ adminContentRoutes.get("/new", async (c) => {
     const tinymceEnabled = await isPluginActive2(db, "tinymce-plugin");
     let tinymceSettings;
     if (tinymceEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const tinymcePlugin2 = await pluginService.getPlugin("tinymce-plugin");
       tinymceSettings = tinymcePlugin2?.settings;
     }
     const quillEnabled = await isPluginActive2(db, "quill-editor");
     let quillSettings;
     if (quillEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const quillPlugin = await pluginService.getPlugin("quill-editor");
       quillSettings = quillPlugin?.settings;
     }
     const mdxeditorEnabled = await isPluginActive2(db, "easy-mdx");
     let mdxeditorSettings;
     if (mdxeditorEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const mdxeditorPlugin = await pluginService.getPlugin("easy-mdx");
       mdxeditorSettings = mdxeditorPlugin?.settings;
     }
@@ -10038,21 +10038,21 @@ adminContentRoutes.get("/:id/edit", async (c) => {
     const tinymceEnabled = await isPluginActive2(db, "tinymce-plugin");
     let tinymceSettings;
     if (tinymceEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const tinymcePlugin2 = await pluginService.getPlugin("tinymce-plugin");
       tinymceSettings = tinymcePlugin2?.settings;
     }
     const quillEnabled = await isPluginActive2(db, "quill-editor");
     let quillSettings;
     if (quillEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const quillPlugin = await pluginService.getPlugin("quill-editor");
       quillSettings = quillPlugin?.settings;
     }
     const mdxeditorEnabled = await isPluginActive2(db, "easy-mdx");
     let mdxeditorSettings;
     if (mdxeditorEnabled) {
-      const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+      const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
       const mdxeditorPlugin = await pluginService.getPlugin("easy-mdx");
       mdxeditorSettings = mdxeditorPlugin?.settings;
     }
@@ -10347,7 +10347,7 @@ adminContentRoutes.put("/:id", async (c) => {
     `);
   }
 });
-adminContentRoutes.post("/preview", chunkRE3NVA23_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
+adminContentRoutes.post("/preview", chunkP4RAIX7B_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
   try {
     const formData = await c.req.formData();
     const collectionId = formData.get("collection_id");
@@ -10725,7 +10725,7 @@ adminContentRoutes.post("/:id/restore/:version", async (c) => {
     return c.json({ success: false, error: "Failed to restore version" });
   }
 });
-adminContentRoutes.get("/:id/version/:version/preview", chunkRE3NVA23_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
+adminContentRoutes.get("/:id/version/:version/preview", chunkP4RAIX7B_cjs.requireRole(["admin", "editor", "author"]), async (c) => {
   try {
     const id = c.req.param("id");
     const version = parseInt(c.req.param("version") || "0");
@@ -11648,7 +11648,6 @@ function renderUserEditPage(data) {
                       type="text"
                       name="first_name"
                       value="${chunkMNWKYY5E_cjs.escapeHtml(data.userToEdit.firstName || "")}"
-                      required
                       class="w-full rounded-lg bg-white dark:bg-zinc-800 px-3 py-2 text-sm text-zinc-950 dark:text-white shadow-sm ring-1 ring-inset ring-zinc-950/10 dark:ring-white/10 placeholder:text-zinc-400 dark:placeholder:text-zinc-500 focus:outline-none focus:ring-2 focus:ring-zinc-950 dark:focus:ring-white transition-shadow"
                     />
                   </div>
@@ -11659,7 +11658,6 @@ function renderUserEditPage(data) {
                       type="text"
                       name="last_name"
                       value="${chunkMNWKYY5E_cjs.escapeHtml(data.userToEdit.lastName || "")}"
-                      required
                       class="w-full rounded-lg bg-white dark:bg-zinc-800 px-3 py-2 text-sm text-zinc-950 dark:text-white shadow-sm ring-1 ring-inset ring-zinc-950/10 dark:ring-white/10 placeholder:text-zinc-400 dark:placeholder:text-zinc-500 focus:outline-none focus:ring-2 focus:ring-zinc-950 dark:focus:ring-white transition-shadow"
                     />
                   </div>
@@ -12726,14 +12724,14 @@ function renderUsersListPage(data) {
 // src/routes/admin-users.ts
 var userRoutes = new hono.Hono();
-userRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
-userRoutes.use("/users/*", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/users", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/invite-user", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/resend-invitation/*", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/cancel-invitation/*", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/activity-logs", chunkRE3NVA23_cjs.requireRole(["admin"]));
-userRoutes.use("/activity-logs/*", chunkRE3NVA23_cjs.requireRole(["admin"]));
+userRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
+userRoutes.use("/users/*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/users", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/invite-user", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/resend-invitation/*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/cancel-invitation/*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/activity-logs", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+userRoutes.use("/activity-logs/*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
 userRoutes.get("/", (c) => {
   return c.redirect("/admin/dashboard");
 });
@@ -12903,7 +12901,7 @@ userRoutes.put("/profile", async (c) => {
       }
       await saveCustomData(db, user.userId, sanitized);
     }
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "profile.update",
@@ -12966,7 +12964,7 @@ userRoutes.post("/profile/avatar", async (c) => {
       SELECT first_name, last_name FROM users WHERE id = ?
     `);
     const userData = await userStmt.bind(user.userId).first();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "profile.avatar_update",
@@ -13037,7 +13035,7 @@ userRoutes.post("/profile/password", async (c) => {
         dismissible: true
       }));
     }
-    const validPassword = await chunkRE3NVA23_cjs.AuthManager.verifyPassword(currentPassword, userData.password_hash);
+    const validPassword = await chunkP4RAIX7B_cjs.AuthManager.verifyPassword(currentPassword, userData.password_hash);
     if (!validPassword) {
       return c.html(renderAlert2({
         type: "error",
@@ -13045,7 +13043,7 @@ userRoutes.post("/profile/password", async (c) => {
         dismissible: true
       }));
     }
-    const newPasswordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(newPassword);
+    const newPasswordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(newPassword);
     const historyStmt = db.prepare(`
       INSERT INTO password_history (id, user_id, password_hash, created_at)
       VALUES (?, ?, ?, ?)
@@ -13061,7 +13059,7 @@ userRoutes.post("/profile/password", async (c) => {
       WHERE id = ?
     `);
     await updateStmt.bind(newPasswordHash, Date.now(), user.userId).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "profile.password_change",
@@ -13128,7 +13126,7 @@ userRoutes.get("/users", async (c) => {
     `);
     const countResult = await countStmt.bind(...params).first();
     const totalUsers = countResult?.total || 0;
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "users.list_view",
@@ -13286,7 +13284,7 @@ userRoutes.post("/users/new", async (c) => {
         dismissible: true
       }));
     }
-    const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(password);
+    const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(password);
     const userId = crypto.randomUUID();
     const createStmt = db.prepare(`
       INSERT INTO users (
@@ -13309,7 +13307,7 @@ userRoutes.post("/users/new", async (c) => {
       Date.now(),
       Date.now()
     ).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user!.create",
@@ -13348,7 +13346,7 @@ userRoutes.get("/users/:id", async (c) => {
     if (!userRecord) {
       return c.json({ error: "User not found" }, 404);
     }
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user!.view",
@@ -13500,10 +13498,10 @@ userRoutes.put("/users/:id", async (c) => {
       const merged = { ...existingCustom, ...sanitized };
       customDataJson = JSON.stringify(merged);
     }
-    if (!firstName || !lastName || !username || !email) {
+    if (!username || !email) {
       return c.html(renderAlert2({
         type: "error",
-        message: "First name, last name, username, and email are required.",
+        message: "Username and email are required.",
         dismissible: true
       }));
     }
@@ -13574,7 +13572,7 @@ userRoutes.put("/users/:id", async (c) => {
       userId
     ).run();
     if (newPassword) {
-      const passwordHash = await chunkRE3NVA23_cjs.AuthManager.hashPassword(newPassword);
+      const passwordHash = await chunkP4RAIX7B_cjs.AuthManager.hashPassword(newPassword);
       const updatePasswordStmt = db.prepare(`
         UPDATE users SET password_hash = ?, updated_at = ? WHERE id = ?
       `);
@@ -13628,7 +13626,7 @@ userRoutes.put("/users/:id", async (c) => {
         ).run();
       }
     }
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user.update",
@@ -13673,7 +13671,7 @@ userRoutes.post("/users/:id/toggle", async (c) => {
       UPDATE users SET is_active = ?, updated_at = ? WHERE id = ?
     `);
     await toggleStmt.bind(active ? 1 : 0, Date.now(), userId).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       active ? "user.activate" : "user.deactivate",
@@ -13714,7 +13712,7 @@ userRoutes.delete("/users/:id", async (c) => {
         DELETE FROM users WHERE id = ?
       `);
       await deleteStmt.bind(userId).run();
-      await chunkRE3NVA23_cjs.logActivity(
+      await chunkP4RAIX7B_cjs.logActivity(
         db,
         user.userId,
         "user!.hard_delete",
@@ -13733,7 +13731,7 @@ userRoutes.delete("/users/:id", async (c) => {
         UPDATE users SET is_active = 0, updated_at = ? WHERE id = ?
       `);
       await deleteStmt.bind(Date.now(), userId).run();
-      await chunkRE3NVA23_cjs.logActivity(
+      await chunkP4RAIX7B_cjs.logActivity(
         db,
         user.userId,
         "user!.soft_delete",
@@ -13799,7 +13797,7 @@ userRoutes.post("/invite-user", async (c) => {
       Date.now(),
       Date.now()
     ).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user!.invite_sent",
@@ -13856,7 +13854,7 @@ userRoutes.post("/resend-invitation/:id", async (c) => {
       Date.now(),
       userId
     ).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user!.invitation_resent",
@@ -13892,7 +13890,7 @@ userRoutes.delete("/cancel-invitation/:id", async (c) => {
     }
     const deleteStmt = db.prepare(`DELETE FROM users WHERE id = ?`);
     await deleteStmt.bind(userId).run();
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "user!.invitation_cancelled",
@@ -13975,7 +13973,7 @@ userRoutes.get("/activity-logs", async (c) => {
       ...log,
       details: log.details ? JSON.parse(log.details) : null
     }));
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "activity.logs_viewed",
@@ -14082,7 +14080,7 @@ userRoutes.get("/activity-logs/export", async (c) => {
       csvRows.push(row.join(","));
     }
     const csvContent = csvRows.join("\n");
-    await chunkRE3NVA23_cjs.logActivity(
+    await chunkP4RAIX7B_cjs.logActivity(
       db,
       user.userId,
       "activity.logs_exported",
@@ -15421,7 +15419,7 @@ var fileValidationSchema2 = zod.z.object({
   // 50MB max
 });
 var adminMediaRoutes = new hono.Hono();
-adminMediaRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+adminMediaRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 adminMediaRoutes.get("/", async (c) => {
   try {
     const user = c.get("user");
@@ -16007,7 +16005,7 @@ adminMediaRoutes.put("/:id", async (c) => {
     `);
   }
 });
-adminMediaRoutes.delete("/cleanup", chunkRE3NVA23_cjs.requireRole("admin"), async (c) => {
+adminMediaRoutes.delete("/cleanup", chunkP4RAIX7B_cjs.requireRole("admin"), async (c) => {
   try {
     const db = c.env.DB;
     const allMediaStmt = db.prepare("SELECT id, r2_key, filename FROM media WHERE deleted_at IS NULL");
@@ -18232,8 +18230,8 @@ function renderEmailSettingsContent(plugin, settings) {
 // src/routes/admin-plugins.ts
 var adminPluginRoutes = new hono.Hono();
-adminPluginRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
-var AVAILABLE_PLUGINS = Object.values(chunk4HCUJ3MG_cjs.PLUGIN_REGISTRY).map((p) => ({
+adminPluginRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
+var AVAILABLE_PLUGINS = Object.values(chunkFXWF5D5V_cjs.PLUGIN_REGISTRY).map((p) => ({
   id: p.id,
   name: p.codeName,
   display_name: p.displayName,
@@ -18253,7 +18251,7 @@ adminPluginRoutes.get("/", async (c) => {
     if (user?.role !== "admin") {
       return c.text("Access denied", 403);
     }
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     let installedPlugins = [];
     let stats = { total: 0, active: 0, inactive: 0, errors: 0, uninstalled: 0 };
     try {
@@ -18325,7 +18323,7 @@ adminPluginRoutes.get("/:id", async (c) => {
     if (user?.role !== "admin") {
       return c.redirect("/admin/plugins");
     }
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     const plugin = await pluginService.getPlugin(pluginId);
     if (!plugin) {
       return c.text("Plugin not found", 404);
@@ -18401,7 +18399,7 @@ adminPluginRoutes.post("/:id/activate", async (c) => {
     if (user?.role !== "admin") {
       return c.json({ error: "Access denied" }, 403);
     }
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     await pluginService.activatePlugin(pluginId);
     return c.json({ success: true });
   } catch (error) {
@@ -18418,7 +18416,7 @@ adminPluginRoutes.post("/:id/deactivate", async (c) => {
     if (user?.role !== "admin") {
       return c.json({ error: "Access denied" }, 403);
     }
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     await pluginService.deactivatePlugin(pluginId);
     return c.json({ success: true });
   } catch (error) {
@@ -18435,8 +18433,8 @@ adminPluginRoutes.post("/install", async (c) => {
       return c.json({ error: "Access denied" }, 403);
     }
     const body = await c.req.json();
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
-    const registryEntry = chunk4HCUJ3MG_cjs.findPluginByCodeName(body.name) || chunk4HCUJ3MG_cjs.PLUGIN_REGISTRY[body.name] || chunk4HCUJ3MG_cjs.PLUGIN_REGISTRY[body.id];
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
+    const registryEntry = chunkFXWF5D5V_cjs.findPluginByCodeName(body.name) || chunkFXWF5D5V_cjs.PLUGIN_REGISTRY[body.name] || chunkFXWF5D5V_cjs.PLUGIN_REGISTRY[body.id];
     if (!registryEntry) {
       return c.json({ error: "Plugin not found in registry" }, 404);
     }
@@ -18469,7 +18467,7 @@ adminPluginRoutes.post("/:id/uninstall", async (c) => {
     if (user?.role !== "admin") {
       return c.json({ error: "Access denied" }, 403);
     }
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     await pluginService.uninstallPlugin(pluginId);
     return c.json({ success: true });
   } catch (error) {
@@ -18487,7 +18485,7 @@ adminPluginRoutes.post("/:id/settings", async (c) => {
       return c.json({ error: "Access denied" }, 403);
     }
     const settings = await c.req.json();
-    const pluginService = new chunk4HCUJ3MG_cjs.PluginService(db);
+    const pluginService = new chunkFXWF5D5V_cjs.PluginService(db);
     await pluginService.updatePluginSettings(pluginId, settings);
     if (pluginId === "core-auth") {
       try {
@@ -19295,7 +19293,7 @@ function renderLogConfigPage(data) {
 // src/routes/admin-logs.ts
 var adminLogsRoutes = new hono.Hono();
-adminLogsRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+adminLogsRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 adminLogsRoutes.get("/", async (c) => {
   try {
     const user = c.get("user");
@@ -21623,9 +21621,9 @@ function renderStorageUsage(databaseSizeBytes, mediaSizeBytes) {
 }
 // src/routes/admin-dashboard.ts
-var VERSION = chunkQBLBIAVZ_cjs.getCoreVersion();
+var VERSION = chunkQ3W6LCEN_cjs.getCoreVersion();
 var router = new hono.Hono();
-router.use("*", chunkRE3NVA23_cjs.requireAuth());
+router.use("*", chunkP4RAIX7B_cjs.requireAuth());
 router.get("/", async (c) => {
   const user = c.get("user");
   try {
@@ -23444,10 +23442,10 @@ function renderCollectionFormPage(data) {
 // src/routes/admin-collections.ts
 var adminCollectionsRoutes = new hono.Hono();
-adminCollectionsRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
-adminCollectionsRoutes.post("*", chunkRE3NVA23_cjs.requireRole(["admin"]));
-adminCollectionsRoutes.put("*", chunkRE3NVA23_cjs.requireRole(["admin"]));
-adminCollectionsRoutes.delete("*", chunkRE3NVA23_cjs.requireRole(["admin"]));
+adminCollectionsRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
+adminCollectionsRoutes.post("*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+adminCollectionsRoutes.put("*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
+adminCollectionsRoutes.delete("*", chunkP4RAIX7B_cjs.requireRole(["admin"]));
 adminCollectionsRoutes.get("/", async (c) => {
   try {
     const user = c.get("user");
@@ -25742,7 +25740,7 @@ function renderDatabaseToolsSettings(settings) {
 // src/routes/admin-settings.ts
 var adminSettingsRoutes = new hono.Hono();
-adminSettingsRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+adminSettingsRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 function getMockSettings(user) {
   return {
     general: {
@@ -25919,7 +25917,7 @@ adminSettingsRoutes.get("/database-tools", (c) => {
 adminSettingsRoutes.get("/api/migrations/status", async (c) => {
   try {
     const db = c.env.DB;
-    const migrationService = new chunkFSWP4FBW_cjs.MigrationService(db);
+    const migrationService = new chunkLVGB5UU5_cjs.MigrationService(db);
     const status = await migrationService.getMigrationStatus();
     return c.json({
       success: true,
@@ -25943,7 +25941,7 @@ adminSettingsRoutes.post("/api/migrations/run", async (c) => {
       }, 403);
     }
     const db = c.env.DB;
-    const migrationService = new chunkFSWP4FBW_cjs.MigrationService(db);
+    const migrationService = new chunkLVGB5UU5_cjs.MigrationService(db);
     const result = await migrationService.runPendingMigrations();
     return c.json({
       success: result.success,
@@ -25961,7 +25959,7 @@ adminSettingsRoutes.post("/api/migrations/run", async (c) => {
 adminSettingsRoutes.get("/api/migrations/validate", async (c) => {
   try {
     const db = c.env.DB;
-    const migrationService = new chunkFSWP4FBW_cjs.MigrationService(db);
+    const migrationService = new chunkLVGB5UU5_cjs.MigrationService(db);
     const validation = await migrationService.validateSchema();
     return c.json({
       success: true,
@@ -27900,7 +27898,7 @@ function renderFormCreatePage(data) {
 // src/routes/admin-forms.ts
 var adminFormsRoutes = new hono.Hono();
-adminFormsRoutes.use("*", chunkRE3NVA23_cjs.requireAuth());
+adminFormsRoutes.use("*", chunkP4RAIX7B_cjs.requireAuth());
 adminFormsRoutes.get("/", async (c) => {
   try {
     const user = c.get("user");
@@ -28705,7 +28703,7 @@ publicFormsRoutes.post("/:identifier/submit", async (c) => {
     `).bind(now, form.id).run();
     let contentId = null;
     try {
-      contentId = await chunk4HCUJ3MG_cjs.createContentFromSubmission(
+      contentId = await chunkFXWF5D5V_cjs.createContentFromSubmission(
         db,
         sanitizedData,
         { id: form.id, name: form.name, display_name: form.display_name },
@@ -29073,9 +29071,9 @@ function renderAPIReferencePage(data) {
 }
 // src/routes/admin-api-reference.ts
-var VERSION2 = chunkQBLBIAVZ_cjs.getCoreVersion();
+var VERSION2 = chunkQ3W6LCEN_cjs.getCoreVersion();
 var router2 = new hono.Hono();
-router2.use("*", chunkRE3NVA23_cjs.requireAuth());
+router2.use("*", chunkP4RAIX7B_cjs.requireAuth());
 router2.get("/", async (c) => {
   const user = c.get("user");
   try {
@@ -29166,5 +29164,5 @@ exports.router2 = router2;
 exports.test_cleanup_default = test_cleanup_default;
 exports.userProfilesPlugin = userProfilesPlugin;
 exports.userRoutes = userRoutes;
-//# sourceMappingURL=chunk-J5MYHM6Z.cjs.map
-//# sourceMappingURL=chunk-J5MYHM6Z.cjs.map
+//# sourceMappingURL=chunk-2VY2G7OR.cjs.map
+//# sourceMappingURL=chunk-2VY2G7OR.cjs.map