npm - @stacksjs/ts-cloud-core - Versions diffs - 0.1.1 - Mend

@stacksjs/ts-cloud-core 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (251) hide show

package/LICENSE.md +21 -0
package/README.md +321 -0
package/package.json +31 -0
package/src/advanced-features.test.ts +465 -0
package/src/aws/cloudformation.ts +421 -0
package/src/aws/cloudfront.ts +158 -0
package/src/aws/credentials.test.ts +132 -0
package/src/aws/credentials.ts +545 -0
package/src/aws/index.ts +87 -0
package/src/aws/s3.test.ts +188 -0
package/src/aws/s3.ts +1088 -0
package/src/aws/signature.test.ts +670 -0
package/src/aws/signature.ts +1155 -0
package/src/backup/disaster-recovery.test.ts +726 -0
package/src/backup/disaster-recovery.ts +500 -0
package/src/backup/index.ts +34 -0
package/src/backup/manager.test.ts +498 -0
package/src/backup/manager.ts +432 -0
package/src/cicd/circleci.ts +430 -0
package/src/cicd/github-actions.ts +424 -0
package/src/cicd/gitlab-ci.ts +255 -0
package/src/cicd/index.ts +8 -0
package/src/cli/history.ts +396 -0
package/src/cli/index.ts +10 -0
package/src/cli/progress.ts +458 -0
package/src/cli/repl.ts +454 -0
package/src/cli/suggestions.ts +327 -0
package/src/cli/table.test.ts +319 -0
package/src/cli/table.ts +332 -0
package/src/cloudformation/builder.test.ts +327 -0
package/src/cloudformation/builder.ts +378 -0
package/src/cloudformation/builders/api-gateway.ts +449 -0
package/src/cloudformation/builders/cache.ts +334 -0
package/src/cloudformation/builders/cdn.ts +278 -0
package/src/cloudformation/builders/compute.ts +485 -0
package/src/cloudformation/builders/database.ts +392 -0
package/src/cloudformation/builders/functions.ts +343 -0
package/src/cloudformation/builders/messaging.ts +140 -0
package/src/cloudformation/builders/monitoring.ts +300 -0
package/src/cloudformation/builders/network.ts +264 -0
package/src/cloudformation/builders/queue.ts +147 -0
package/src/cloudformation/builders/security.ts +399 -0
package/src/cloudformation/builders/storage.ts +285 -0
package/src/cloudformation/index.ts +30 -0
package/src/cloudformation/types.ts +173 -0
package/src/compliance/aws-config.ts +543 -0
package/src/compliance/cloudtrail.ts +376 -0
package/src/compliance/compliance.test.ts +423 -0
package/src/compliance/guardduty.ts +446 -0
package/src/compliance/index.ts +66 -0
package/src/compliance/security-hub.ts +456 -0
package/src/containers/build-optimization.ts +416 -0
package/src/containers/containers.test.ts +508 -0
package/src/containers/image-scanning.ts +360 -0
package/src/containers/index.ts +9 -0
package/src/containers/registry.ts +293 -0
package/src/containers/service-mesh.ts +520 -0
package/src/database/database.test.ts +762 -0
package/src/database/index.ts +9 -0
package/src/database/migrations.ts +444 -0
package/src/database/performance.ts +528 -0
package/src/database/replicas.ts +534 -0
package/src/database/users.ts +494 -0
package/src/dependency-graph.ts +143 -0
package/src/deployment/ab-testing.ts +582 -0
package/src/deployment/blue-green.ts +452 -0
package/src/deployment/canary.ts +500 -0
package/src/deployment/deployment.test.ts +526 -0
package/src/deployment/index.ts +61 -0
package/src/deployment/progressive.ts +62 -0
package/src/dns/dns.test.ts +641 -0
package/src/dns/dnssec.ts +315 -0
package/src/dns/index.ts +8 -0
package/src/dns/resolver.ts +496 -0
package/src/dns/routing.ts +593 -0
package/src/email/advanced/analytics.ts +445 -0
package/src/email/advanced/index.ts +11 -0
package/src/email/advanced/rules.ts +465 -0
package/src/email/advanced/scheduling.ts +352 -0
package/src/email/advanced/search.ts +412 -0
package/src/email/advanced/shared-mailboxes.ts +404 -0
package/src/email/advanced/templates.ts +455 -0
package/src/email/advanced/threading.ts +281 -0
package/src/email/analytics.ts +467 -0
package/src/email/bounce-handling.ts +425 -0
package/src/email/email.test.ts +431 -0
package/src/email/handlers/__tests__/inbound.test.ts +38 -0
package/src/email/handlers/__tests__/outbound.test.ts +37 -0
package/src/email/handlers/converter.ts +227 -0
package/src/email/handlers/feedback.ts +228 -0
package/src/email/handlers/inbound.ts +169 -0
package/src/email/handlers/outbound.ts +178 -0
package/src/email/index.ts +15 -0
package/src/email/reputation.ts +303 -0
package/src/email/templates.ts +352 -0
package/src/errors/index.test.ts +434 -0
package/src/errors/index.ts +416 -0
package/src/health-checks/index.ts +40 -0
package/src/index.ts +360 -0
package/src/intrinsic-functions.ts +118 -0
package/src/lambda/concurrency.ts +330 -0
package/src/lambda/destinations.ts +345 -0
package/src/lambda/dlq.ts +425 -0
package/src/lambda/index.ts +11 -0
package/src/lambda/lambda.test.ts +840 -0
package/src/lambda/layers.ts +263 -0
package/src/lambda/versions.ts +376 -0
package/src/lambda/vpc.ts +399 -0
package/src/local/config.ts +114 -0
package/src/local/index.ts +6 -0
package/src/local/mock-aws.ts +351 -0
package/src/modules/ai.ts +340 -0
package/src/modules/api.ts +478 -0
package/src/modules/auth.ts +805 -0
package/src/modules/cache.ts +417 -0
package/src/modules/cdn.ts +1062 -0
package/src/modules/communication.ts +1094 -0
package/src/modules/compute.ts +3348 -0
package/src/modules/database.ts +554 -0
package/src/modules/deployment.ts +1079 -0
package/src/modules/dns.ts +337 -0
package/src/modules/email.ts +1538 -0
package/src/modules/filesystem.ts +515 -0
package/src/modules/index.ts +32 -0
package/src/modules/messaging.ts +486 -0
package/src/modules/monitoring.ts +2086 -0
package/src/modules/network.ts +664 -0
package/src/modules/parameter-store.ts +325 -0
package/src/modules/permissions.ts +1081 -0
package/src/modules/phone.ts +494 -0
package/src/modules/queue.ts +1260 -0
package/src/modules/redirects.ts +464 -0
package/src/modules/registry.ts +699 -0
package/src/modules/search.ts +401 -0
package/src/modules/secrets.ts +416 -0
package/src/modules/security.ts +731 -0
package/src/modules/sms.ts +389 -0
package/src/modules/storage.ts +1120 -0
package/src/modules/workflow.ts +680 -0
package/src/multi-account/config.ts +521 -0
package/src/multi-account/index.ts +7 -0
package/src/multi-account/manager.ts +427 -0
package/src/multi-region/cross-region.ts +410 -0
package/src/multi-region/index.ts +8 -0
package/src/multi-region/manager.ts +483 -0
package/src/multi-region/regions.ts +435 -0
package/src/network-security/index.ts +48 -0
package/src/observability/index.ts +9 -0
package/src/observability/logs.ts +522 -0
package/src/observability/metrics.ts +460 -0
package/src/observability/observability.test.ts +782 -0
package/src/observability/synthetics.ts +568 -0
package/src/observability/xray.ts +358 -0
package/src/phone/advanced/analytics.ts +349 -0
package/src/phone/advanced/callbacks.ts +428 -0
package/src/phone/advanced/index.ts +8 -0
package/src/phone/advanced/ivr-builder.ts +504 -0
package/src/phone/advanced/recording.ts +310 -0
package/src/phone/handlers/__tests__/incoming-call.test.ts +40 -0
package/src/phone/handlers/incoming-call.ts +117 -0
package/src/phone/handlers/missed-call.ts +116 -0
package/src/phone/handlers/voicemail.ts +179 -0
package/src/phone/index.ts +9 -0
package/src/presets/api-backend.ts +134 -0
package/src/presets/data-pipeline.ts +204 -0
package/src/presets/extend.test.ts +295 -0
package/src/presets/extend.ts +297 -0
package/src/presets/fullstack-app.ts +144 -0
package/src/presets/index.ts +27 -0
package/src/presets/jamstack.ts +135 -0
package/src/presets/microservices.ts +167 -0
package/src/presets/ml-api.ts +208 -0
package/src/presets/nodejs-server.ts +104 -0
package/src/presets/nodejs-serverless.ts +114 -0
package/src/presets/realtime-app.ts +184 -0
package/src/presets/static-site.ts +64 -0
package/src/presets/traditional-web-app.ts +339 -0
package/src/presets/wordpress.ts +138 -0
package/src/preview/github.test.ts +249 -0
package/src/preview/github.ts +297 -0
package/src/preview/index.ts +37 -0
package/src/preview/manager.test.ts +440 -0
package/src/preview/manager.ts +326 -0
package/src/preview/notifications.test.ts +582 -0
package/src/preview/notifications.ts +341 -0
package/src/queue/batch-processing.ts +402 -0
package/src/queue/dlq-monitoring.ts +402 -0
package/src/queue/fifo.ts +342 -0
package/src/queue/index.ts +9 -0
package/src/queue/management.ts +428 -0
package/src/queue/queue.test.ts +429 -0
package/src/resource-mgmt/index.ts +39 -0
package/src/resource-naming.ts +62 -0
package/src/s3/index.ts +523 -0
package/src/schema/cloud-config.schema.json +554 -0
package/src/schema/index.ts +68 -0
package/src/security/certificate-manager.ts +492 -0
package/src/security/index.ts +9 -0
package/src/security/scanning.ts +545 -0
package/src/security/secrets-manager.ts +476 -0
package/src/security/secrets-rotation.ts +456 -0
package/src/security/security.test.ts +738 -0
package/src/sms/advanced/ab-testing.ts +389 -0
package/src/sms/advanced/analytics.ts +336 -0
package/src/sms/advanced/campaigns.ts +523 -0
package/src/sms/advanced/chatbot.ts +224 -0
package/src/sms/advanced/index.ts +10 -0
package/src/sms/advanced/link-tracking.ts +248 -0
package/src/sms/advanced/mms.ts +308 -0
package/src/sms/handlers/__tests__/send.test.ts +40 -0
package/src/sms/handlers/delivery-status.ts +133 -0
package/src/sms/handlers/receive.ts +162 -0
package/src/sms/handlers/send.ts +174 -0
package/src/sms/index.ts +9 -0
package/src/stack-diff.ts +389 -0
package/src/static-site/index.ts +85 -0
package/src/template-builder.ts +110 -0
package/src/template-validator.ts +574 -0
package/src/utils/cache.ts +291 -0
package/src/utils/diff.ts +269 -0
package/src/utils/hash.ts +227 -0
package/src/utils/index.ts +8 -0
package/src/utils/parallel.ts +294 -0
package/src/validators/credentials.test.ts +274 -0
package/src/validators/credentials.ts +233 -0
package/src/validators/quotas.test.ts +434 -0
package/src/validators/quotas.ts +217 -0
package/test/ai.test.ts +327 -0
package/test/api.test.ts +511 -0
package/test/auth.test.ts +632 -0
package/test/cache.test.ts +406 -0
package/test/cdn.test.ts +247 -0
package/test/compute.test.ts +861 -0
package/test/database.test.ts +523 -0
package/test/deployment.test.ts +499 -0
package/test/dns.test.ts +270 -0
package/test/email.test.ts +439 -0
package/test/filesystem.test.ts +382 -0
package/test/integration.test.ts +350 -0
package/test/messaging.test.ts +514 -0
package/test/monitoring.test.ts +634 -0
package/test/network.test.ts +425 -0
package/test/permissions.test.ts +488 -0
package/test/queue.test.ts +484 -0
package/test/registry.test.ts +306 -0
package/test/security.test.ts +462 -0
package/test/storage.test.ts +463 -0
package/test/template-validator.test.ts +559 -0
package/test/workflow.test.ts +592 -0
package/tsconfig.json +16 -0
package/tsconfig.tsbuildinfo +1 -0

package/src/database/users.ts ADDED Viewed

@@ -0,0 +1,494 @@
+/**
+ * Database User Management
+ * User creation, permissions, and access control
+ */
+export interface DatabaseUser {
+  id: string
+  username: string
+  database: string
+  privileges: DatabasePrivilege[]
+  passwordSecretArn?: string
+  createdAt: Date
+  lastRotated?: Date
+  rotationEnabled?: boolean
+  rotationDays?: number
+}
+export interface DatabasePrivilege {
+  database?: string
+  table?: string
+  privileges: PrivilegeType[]
+}
+export type PrivilegeType =
+  | 'SELECT'
+  | 'INSERT'
+  | 'UPDATE'
+  | 'DELETE'
+  | 'CREATE'
+  | 'DROP'
+  | 'ALTER'
+  | 'INDEX'
+  | 'EXECUTE'
+  | 'ALL'
+export interface UserRole {
+  id: string
+  name: string
+  description?: string
+  privileges: DatabasePrivilege[]
+  users: string[] // user IDs
+}
+export interface AccessAudit {
+  id: string
+  username: string
+  action: 'LOGIN' | 'QUERY' | 'MODIFY' | 'GRANT' | 'REVOKE'
+  database?: string
+  table?: string
+  query?: string
+  timestamp: Date
+  success: boolean
+  ipAddress?: string
+}
+/**
+ * Database user manager
+ */
+export class DatabaseUserManager {
+  private users: Map<string, DatabaseUser> = new Map()
+  private roles: Map<string, UserRole> = new Map()
+  private audits: Map<string, AccessAudit> = new Map()
+  private userCounter = 0
+  private roleCounter = 0
+  private auditCounter = 0
+  /**
+   * Create database user
+   */
+  createUser(user: Omit<DatabaseUser, 'id' | 'createdAt'>): DatabaseUser {
+    const id = `db-user-${Date.now()}-${this.userCounter++}`
+    const dbUser: DatabaseUser = {
+      id,
+      createdAt: new Date(),
+      ...user,
+    }
+    this.users.set(id, dbUser)
+    return dbUser
+  }
+  /**
+   * Create read-only user
+   */
+  createReadOnlyUser(options: {
+    username: string
+    database: string
+    passwordSecretArn?: string
+    tables?: string[]
+  }): DatabaseUser {
+    const privileges: DatabasePrivilege[] = options.tables
+      ? options.tables.map(table => ({
+          database: options.database,
+          table,
+          privileges: ['SELECT' as PrivilegeType],
+        }))
+      : [
+          {
+            database: options.database,
+            privileges: ['SELECT' as PrivilegeType],
+          },
+        ]
+    return this.createUser({
+      username: options.username,
+      database: options.database,
+      privileges,
+      passwordSecretArn: options.passwordSecretArn,
+      rotationEnabled: true,
+      rotationDays: 90,
+    })
+  }
+  /**
+   * Create read-write user
+   */
+  createReadWriteUser(options: {
+    username: string
+    database: string
+    passwordSecretArn?: string
+    tables?: string[]
+  }): DatabaseUser {
+    const privileges: DatabasePrivilege[] = options.tables
+      ? options.tables.map(table => ({
+          database: options.database,
+          table,
+          privileges: ['SELECT', 'INSERT', 'UPDATE', 'DELETE'] as PrivilegeType[],
+        }))
+      : [
+          {
+            database: options.database,
+            privileges: ['SELECT', 'INSERT', 'UPDATE', 'DELETE'] as PrivilegeType[],
+          },
+        ]
+    return this.createUser({
+      username: options.username,
+      database: options.database,
+      privileges,
+      passwordSecretArn: options.passwordSecretArn,
+      rotationEnabled: true,
+      rotationDays: 60,
+    })
+  }
+  /**
+   * Create admin user
+   */
+  createAdminUser(options: {
+    username: string
+    database: string
+    passwordSecretArn?: string
+  }): DatabaseUser {
+    return this.createUser({
+      username: options.username,
+      database: options.database,
+      privileges: [
+        {
+          database: options.database,
+          privileges: ['ALL' as PrivilegeType],
+        },
+      ],
+      passwordSecretArn: options.passwordSecretArn,
+      rotationEnabled: true,
+      rotationDays: 30,
+    })
+  }
+  /**
+   * Create application user with specific table access
+   */
+  createApplicationUser(options: {
+    username: string
+    database: string
+    tables: { name: string; privileges: PrivilegeType[] }[]
+    passwordSecretArn?: string
+  }): DatabaseUser {
+    const privileges: DatabasePrivilege[] = options.tables.map(table => ({
+      database: options.database,
+      table: table.name,
+      privileges: table.privileges,
+    }))
+    return this.createUser({
+      username: options.username,
+      database: options.database,
+      privileges,
+      passwordSecretArn: options.passwordSecretArn,
+      rotationEnabled: true,
+      rotationDays: 90,
+    })
+  }
+  /**
+   * Create user role
+   */
+  createRole(role: Omit<UserRole, 'id' | 'users'>): UserRole {
+    const id = `role-${Date.now()}-${this.roleCounter++}`
+    const userRole: UserRole = {
+      id,
+      users: [],
+      ...role,
+    }
+    this.roles.set(id, userRole)
+    return userRole
+  }
+  /**
+   * Assign user to role
+   */
+  assignUserToRole(userId: string, roleId: string): void {
+    const user = this.users.get(userId)
+    const role = this.roles.get(roleId)
+    if (!user) {
+      throw new Error(`User not found: ${userId}`)
+    }
+    if (!role) {
+      throw new Error(`Role not found: ${roleId}`)
+    }
+    role.users.push(userId)
+    // Merge role privileges with user privileges
+    for (const privilege of role.privileges) {
+      const existingPrivilege = user.privileges.find(
+        p => p.database === privilege.database && p.table === privilege.table
+      )
+      if (existingPrivilege) {
+        // Merge privileges
+        existingPrivilege.privileges = Array.from(
+          new Set([...existingPrivilege.privileges, ...privilege.privileges])
+        )
+      } else {
+        user.privileges.push({ ...privilege })
+      }
+    }
+  }
+  /**
+   * Grant privileges to user
+   */
+  grantPrivileges(
+    userId: string,
+    privileges: DatabasePrivilege[]
+  ): { success: boolean; message: string } {
+    const user = this.users.get(userId)
+    if (!user) {
+      return { success: false, message: 'User not found' }
+    }
+    for (const privilege of privileges) {
+      const existing = user.privileges.find(
+        p => p.database === privilege.database && p.table === privilege.table
+      )
+      if (existing) {
+        existing.privileges = Array.from(new Set([...existing.privileges, ...privilege.privileges]))
+      } else {
+        user.privileges.push(privilege)
+      }
+    }
+    this.auditAccess({
+      username: user.username,
+      action: 'GRANT',
+      database: privileges[0]?.database,
+      table: privileges[0]?.table,
+      success: true,
+    })
+    return { success: true, message: 'Privileges granted successfully' }
+  }
+  /**
+   * Revoke privileges from user
+   */
+  revokePrivileges(
+    userId: string,
+    privileges: DatabasePrivilege[]
+  ): { success: boolean; message: string } {
+    const user = this.users.get(userId)
+    if (!user) {
+      return { success: false, message: 'User not found' }
+    }
+    for (const privilege of privileges) {
+      const existingIndex = user.privileges.findIndex(
+        p => p.database === privilege.database && p.table === privilege.table
+      )
+      if (existingIndex !== -1) {
+        const existing = user.privileges[existingIndex]
+        existing.privileges = existing.privileges.filter(
+          p => !privilege.privileges.includes(p)
+        )
+        // Remove privilege entry if no privileges left
+        if (existing.privileges.length === 0) {
+          user.privileges.splice(existingIndex, 1)
+        }
+      }
+    }
+    this.auditAccess({
+      username: user.username,
+      action: 'REVOKE',
+      database: privileges[0]?.database,
+      table: privileges[0]?.table,
+      success: true,
+    })
+    return { success: true, message: 'Privileges revoked successfully' }
+  }
+  /**
+   * Rotate user password
+   */
+  rotatePassword(userId: string): { success: boolean; newSecretArn?: string } {
+    const user = this.users.get(userId)
+    if (!user) {
+      return { success: false }
+    }
+    // In production, this would trigger Secrets Manager rotation
+    const newSecretArn = `arn:aws:secretsmanager:us-east-1:123456789012:secret:db-${user.username}-${Date.now()}`
+    user.passwordSecretArn = newSecretArn
+    user.lastRotated = new Date()
+    console.log(`Password rotated for user: ${user.username}`)
+    return { success: true, newSecretArn }
+  }
+  /**
+   * Check if password rotation needed
+   */
+  needsPasswordRotation(userId: string): boolean {
+    const user = this.users.get(userId)
+    if (!user || !user.rotationEnabled || !user.lastRotated || !user.rotationDays) {
+      return false
+    }
+    const daysSinceRotation =
+      (Date.now() - user.lastRotated.getTime()) / (1000 * 60 * 60 * 24)
+    return daysSinceRotation >= user.rotationDays
+  }
+  /**
+   * Audit access
+   */
+  auditAccess(audit: Omit<AccessAudit, 'id' | 'timestamp'>): AccessAudit {
+    const id = `audit-${Date.now()}-${this.auditCounter++}`
+    const accessAudit: AccessAudit = {
+      id,
+      timestamp: new Date(),
+      ...audit,
+    }
+    this.audits.set(id, accessAudit)
+    return accessAudit
+  }
+  /**
+   * Get user access history
+   */
+  getUserAccessHistory(username: string, limit: number = 100): AccessAudit[] {
+    return Array.from(this.audits.values())
+      .filter(audit => audit.username === username)
+      .sort((a, b) => b.timestamp.getTime() - a.timestamp.getTime())
+      .slice(0, limit)
+  }
+  /**
+   * Get failed login attempts
+   */
+  getFailedLoginAttempts(username: string, hours: number = 24): AccessAudit[] {
+    const cutoffTime = Date.now() - hours * 60 * 60 * 1000
+    return Array.from(this.audits.values()).filter(
+      audit =>
+        audit.username === username &&
+        audit.action === 'LOGIN' &&
+        !audit.success &&
+        audit.timestamp.getTime() > cutoffTime
+    )
+  }
+  /**
+   * Generate SQL for user creation
+   */
+  generateCreateUserSQL(user: DatabaseUser, engine: 'postgres' | 'mysql' = 'postgres'): string {
+    const statements: string[] = []
+    if (engine === 'postgres') {
+      statements.push(`CREATE USER ${user.username} WITH PASSWORD '${user.passwordSecretArn}';`)
+      for (const privilege of user.privileges) {
+        if (privilege.privileges.includes('ALL')) {
+          statements.push(`GRANT ALL PRIVILEGES ON DATABASE ${privilege.database} TO ${user.username};`)
+        } else {
+          const privs = privilege.privileges.join(', ')
+          if (privilege.table) {
+            statements.push(
+              `GRANT ${privs} ON ${privilege.database}.${privilege.table} TO ${user.username};`
+            )
+          } else {
+            statements.push(`GRANT ${privs} ON DATABASE ${privilege.database} TO ${user.username};`)
+          }
+        }
+      }
+    } else {
+      // MySQL
+      statements.push(
+        `CREATE USER '${user.username}'@'%' IDENTIFIED BY '${user.passwordSecretArn}';`
+      )
+      for (const privilege of user.privileges) {
+        const privs = privilege.privileges.includes('ALL')
+          ? 'ALL PRIVILEGES'
+          : privilege.privileges.join(', ')
+        const target = privilege.table
+          ? `${privilege.database}.${privilege.table}`
+          : `${privilege.database}.*`
+        statements.push(`GRANT ${privs} ON ${target} TO '${user.username}'@'%';`)
+      }
+      statements.push('FLUSH PRIVILEGES;')
+    }
+    return statements.join('\n')
+  }
+  /**
+   * Get user
+   */
+  getUser(id: string): DatabaseUser | undefined {
+    return this.users.get(id)
+  }
+  /**
+   * List users
+   */
+  listUsers(): DatabaseUser[] {
+    return Array.from(this.users.values())
+  }
+  /**
+   * Get role
+   */
+  getRole(id: string): UserRole | undefined {
+    return this.roles.get(id)
+  }
+  /**
+   * List roles
+   */
+  listRoles(): UserRole[] {
+    return Array.from(this.roles.values())
+  }
+  /**
+   * Clear all data
+   */
+  clear(): void {
+    this.users.clear()
+    this.roles.clear()
+    this.audits.clear()
+    this.userCounter = 0
+    this.roleCounter = 0
+    this.auditCounter = 0
+  }
+}
+/**
+ * Global database user manager instance
+ */
+export const databaseUserManager: DatabaseUserManager = new DatabaseUserManager()

package/src/dependency-graph.ts ADDED Viewed

@@ -0,0 +1,143 @@
+import type { CloudFormationResource } from '@stacksjs/ts-cloud-aws-types'
+export interface ResourceNode {
+  logicalId: string
+  resource: CloudFormationResource
+  dependencies: Set<string>
+}
+/**
+ * Dependency Graph for CloudFormation resources
+ * Ensures resources are created in the correct order
+ */
+export class DependencyGraph {
+  private nodes: Map<string, ResourceNode> = new Map()
+  /**
+   * Add a resource to the dependency graph
+   */
+  addResource(logicalId: string, resource: CloudFormationResource): void {
+    const dependencies = this.extractDependencies(resource)
+    this.nodes.set(logicalId, {
+      logicalId,
+      resource,
+      dependencies,
+    })
+  }
+  /**
+   * Extract dependencies from a resource
+   */
+  private extractDependencies(resource: CloudFormationResource): Set<string> {
+    const dependencies = new Set<string>()
+    // Add explicit DependsOn
+    if (resource.DependsOn) {
+      if (Array.isArray(resource.DependsOn)) {
+        resource.DependsOn.forEach(dep => dependencies.add(dep))
+      }
+      else {
+        dependencies.add(resource.DependsOn)
+      }
+    }
+    // Extract Ref dependencies
+    this.findReferences(resource.Properties || {}, dependencies)
+    return dependencies
+  }
+  /**
+   * Find all Ref references in an object
+   */
+  private findReferences(obj: any, dependencies: Set<string>): void {
+    if (!obj || typeof obj !== 'object')
+      return
+    if ('Ref' in obj && typeof obj.Ref === 'string') {
+      // Ignore pseudo parameters
+      if (!obj.Ref.startsWith('AWS::')) {
+        dependencies.add(obj.Ref)
+      }
+    }
+    if ('Fn::GetAtt' in obj && Array.isArray(obj['Fn::GetAtt'])) {
+      dependencies.add(obj['Fn::GetAtt'][0])
+    }
+    // Recursively search
+    for (const value of Object.values(obj)) {
+      if (typeof value === 'object') {
+        this.findReferences(value, dependencies)
+      }
+    }
+  }
+  /**
+   * Perform topological sort to determine resource creation order
+   */
+  topologicalSort(): string[] {
+    const sorted: string[] = []
+    const visited = new Set<string>()
+    const visiting = new Set<string>()
+    const visit = (nodeId: string): void => {
+      if (visited.has(nodeId))
+        return
+      if (visiting.has(nodeId)) {
+        throw new Error(`Circular dependency detected: ${nodeId}`)
+      }
+      visiting.add(nodeId)
+      const node = this.nodes.get(nodeId)
+      if (node) {
+        for (const dep of node.dependencies) {
+          visit(dep)
+        }
+      }
+      visiting.delete(nodeId)
+      visited.add(nodeId)
+      sorted.push(nodeId)
+    }
+    for (const nodeId of this.nodes.keys()) {
+      visit(nodeId)
+    }
+    return sorted
+  }
+  /**
+   * Validate that all dependencies exist
+   */
+  validate(): void {
+    for (const [nodeId, node] of this.nodes.entries()) {
+      for (const dep of node.dependencies) {
+        if (!this.nodes.has(dep)) {
+          throw new Error(
+            `Resource "${nodeId}" depends on "${dep}" which does not exist`,
+          )
+        }
+      }
+    }
+  }
+  /**
+   * Get resources that depend on a given resource
+   */
+  getDependents(logicalId: string): string[] {
+    const dependents: string[] = []
+    for (const [nodeId, node] of this.nodes.entries()) {
+      if (node.dependencies.has(logicalId)) {
+        dependents.push(nodeId)
+      }
+    }
+    return dependents
+  }
+}