@synth-deploy/server 0.1.0

package/dist/api/auth.js

@@ -0,0 +1,280 @@
+import crypto from "node:crypto";
+import bcrypt from "bcryptjs";
+import { jwtVerify } from "jose";
+import { generateTokens } from "../middleware/auth.js";
+import { LoginSchema, RegisterSchema, RefreshTokenSchema } from "./schemas.js";
+function toPublicUser(user) {
+    return {
+        id: user.id,
+        email: user.email,
+        name: user.name,
+        authSource: user.authSource ?? "local",
+        createdAt: user.createdAt,
+        updatedAt: user.updatedAt,
+    };
+}
+export function registerAuthRoutes(app, userStore, roleStore, userRoleStore, sessionStore, jwtSecret) {
+    // --- GET /api/auth/status ---
+    // Returns whether setup is required (no users exist yet)
+    app.get("/api/auth/status", async () => {
+        const userCount = userStore.count();
+        return { needsSetup: userCount === 0 };
+    });
+    // --- POST /api/auth/register ---
+    // First-user registration only. Creates the initial admin user.
+    app.post("/api/auth/register", async (request, reply) => {
+        const parsed = RegisterSchema.safeParse(request.body);
+        if (!parsed.success) {
+            return reply.status(400).send({ error: "Validation failed", details: parsed.error.flatten() });
+        }
+        const userCount = userStore.count();
+        if (userCount > 0) {
+            return reply.status(403).send({ error: "Registration is closed. Users already exist." });
+        }
+        const { email, name, password } = parsed.data;
+        const passwordHash = await bcrypt.hash(password, 10);
+        const userId = crypto.randomUUID();
+        const now = new Date();
+        const user = userStore.create({
+            id: userId,
+            email,
+            name,
+            passwordHash,
+            createdAt: now,
+            updatedAt: now,
+        });
+        // Assign Admin role
+        const adminRole = roleStore.getByName("Admin");
+        if (adminRole) {
+            userRoleStore.assign(userId, adminRole.id, userId);
+        }
+        // Create session
+        const tokens = await generateTokens(userId, jwtSecret);
+        sessionStore.create({
+            id: crypto.randomUUID(),
+            userId,
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            expiresAt: tokens.expiresAt,
+            createdAt: now,
+            userAgent: request.headers["user-agent"] ?? undefined,
+            ipAddress: request.ip ?? undefined,
+        });
+        const permissions = userRoleStore.getUserPermissions(userId);
+        return {
+            user: toPublicUser(user),
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            permissions,
+        };
+    });
+    // --- POST /api/auth/login ---
+    app.post("/api/auth/login", async (request, reply) => {
+        const parsed = LoginSchema.safeParse(request.body);
+        if (!parsed.success) {
+            return reply.status(400).send({ error: "Validation failed", details: parsed.error.flatten() });
+        }
+        const { email, password } = parsed.data;
+        const user = userStore.getByEmail(email);
+        if (!user) {
+            return reply.status(401).send({ error: "Invalid email or password" });
+        }
+        const valid = await bcrypt.compare(password, user.passwordHash);
+        if (!valid) {
+            return reply.status(401).send({ error: "Invalid email or password" });
+        }
+        const tokens = await generateTokens(user.id, jwtSecret);
+        sessionStore.create({
+            id: crypto.randomUUID(),
+            userId: user.id,
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            expiresAt: tokens.expiresAt,
+            createdAt: new Date(),
+            userAgent: request.headers["user-agent"] ?? undefined,
+            ipAddress: request.ip ?? undefined,
+        });
+        const permissions = userRoleStore.getUserPermissions(user.id);
+        return {
+            user: toPublicUser(user),
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            permissions,
+        };
+    });
+    // --- POST /api/auth/refresh ---
+    app.post("/api/auth/refresh", async (request, reply) => {
+        const parsed = RefreshTokenSchema.safeParse(request.body);
+        if (!parsed.success) {
+            return reply.status(400).send({ error: "Validation failed", details: parsed.error.flatten() });
+        }
+        const { refreshToken } = parsed.data;
+        // Verify the refresh token JWT
+        try {
+            await jwtVerify(refreshToken, jwtSecret);
+        }
+        catch {
+            return reply.status(401).send({ error: "Invalid refresh token" });
+        }
+        const session = sessionStore.getByRefreshToken(refreshToken);
+        if (!session) {
+            return reply.status(401).send({ error: "Session not found" });
+        }
+        // Delete old session
+        sessionStore.deleteByToken(session.token);
+        // Generate new tokens — preserve UA/IP from the original session
+        const tokens = await generateTokens(session.userId, jwtSecret);
+        sessionStore.create({
+            id: crypto.randomUUID(),
+            userId: session.userId,
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            expiresAt: tokens.expiresAt,
+            createdAt: new Date(),
+            userAgent: session.userAgent,
+            ipAddress: session.ipAddress,
+        });
+        return {
+            token: tokens.token,
+            refreshToken: tokens.refreshToken,
+            expiresAt: tokens.expiresAt.toISOString(),
+        };
+    });
+    // --- POST /api/auth/logout ---
+    app.post("/api/auth/logout", async (request, reply) => {
+        const authHeader = request.headers.authorization;
+        if (authHeader?.startsWith("Bearer ")) {
+            const token = authHeader.slice(7);
+            sessionStore.deleteByToken(token);
+        }
+        return reply.status(204).send();
+    });
+    // --- GET /api/auth/me ---
+    app.get("/api/auth/me", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const fullUser = userStore.getById(user.id);
+        if (!fullUser) {
+            return reply.status(401).send({ error: "User not found" });
+        }
+        return {
+            user: toPublicUser(fullUser),
+            permissions: user.permissions,
+        };
+    });
+    // --- PUT /api/auth/me ---
+    // Update the authenticated user's name and/or email.
+    app.put("/api/auth/me", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const body = request.body;
+        const updates = { updatedAt: new Date() };
+        if (typeof body.name === "string" && body.name.trim()) {
+            updates.name = body.name.trim();
+        }
+        if (typeof body.email === "string" && body.email.trim()) {
+            updates.email = body.email.trim().toLowerCase();
+        }
+        try {
+            const updated = userStore.update(user.id, updates);
+            return { user: toPublicUser(updated) };
+        }
+        catch (err) {
+            const message = err instanceof Error ? err.message : "Update failed";
+            return reply.status(400).send({ error: message });
+        }
+    });
+    // --- GET /api/auth/sessions ---
+    // List current user's active sessions (without token/refreshToken fields).
+    app.get("/api/auth/sessions", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const authHeader = request.headers.authorization;
+        const currentToken = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
+        const sessions = sessionStore.listByUserId(user.id);
+        return {
+            sessions: sessions.map(s => ({
+                id: s.id,
+                createdAt: s.createdAt.toISOString(),
+                expiresAt: s.expiresAt.toISOString(),
+                current: currentToken ? s.token === currentToken : false,
+                userAgent: s.userAgent ?? null,
+                ipAddress: s.ipAddress ?? null,
+            })),
+        };
+    });
+    // --- DELETE /api/auth/sessions/:id ---
+    // Revoke a specific session (cannot revoke current session).
+    app.delete("/api/auth/sessions/:id", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const { id } = request.params;
+        const authHeader = request.headers.authorization;
+        const currentToken = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
+        const sessions = sessionStore.listByUserId(user.id);
+        const target = sessions.find(s => s.id === id);
+        if (!target) {
+            return reply.status(404).send({ error: "Session not found" });
+        }
+        if (currentToken && target.token === currentToken) {
+            return reply.status(400).send({ error: "Cannot revoke current session" });
+        }
+        sessionStore.deleteById(id);
+        return reply.status(204).send();
+    });
+    // --- DELETE /api/auth/sessions ---
+    // Revoke all other sessions (keep current).
+    app.delete("/api/auth/sessions", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const authHeader = request.headers.authorization;
+        const currentToken = authHeader?.startsWith("Bearer ") ? authHeader.slice(7) : null;
+        const sessions = sessionStore.listByUserId(user.id);
+        for (const s of sessions) {
+            if (!currentToken || s.token !== currentToken) {
+                sessionStore.deleteById(s.id);
+            }
+        }
+        return reply.status(204).send();
+    });
+    // --- POST /api/auth/me/password ---
+    // Change the authenticated user's password (local accounts only).
+    app.post("/api/auth/me/password", async (request, reply) => {
+        const user = request.user;
+        if (!user) {
+            return reply.status(401).send({ error: "Authentication required" });
+        }
+        const fullUser = userStore.getById(user.id);
+        if (!fullUser) {
+            return reply.status(401).send({ error: "User not found" });
+        }
+        if (fullUser.authSource !== "local") {
+            return reply.status(400).send({ error: "Password change is only available for local accounts" });
+        }
+        const body = request.body;
+        if (!body.currentPassword || !body.newPassword) {
+            return reply.status(400).send({ error: "currentPassword and newPassword are required" });
+        }
+        if (body.newPassword.length < 8) {
+            return reply.status(400).send({ error: "New password must be at least 8 characters" });
+        }
+        const valid = await bcrypt.compare(body.currentPassword, fullUser.passwordHash);
+        if (!valid) {
+            return reply.status(401).send({ error: "Current password is incorrect" });
+        }
+        const passwordHash = await bcrypt.hash(body.newPassword, 10);
+        userStore.update(user.id, { passwordHash, updatedAt: new Date() });
+        return reply.status(204).send();
+    });
+}
+//# sourceMappingURL=auth.js.map

package/dist/api/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../src/api/auth.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,aAAa,CAAC;AAEjC,OAAO,MAAM,MAAM,UAAU,CAAC;AAC9B,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AAEjC,OAAO,EAAE,cAAc,EAAE,MAAM,uBAAuB,CAAC;AACvD,OAAO,EAAE,WAAW,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,cAAc,CAAC;AAE/E,SAAS,YAAY,CAAC,IAA6H;IACjJ,OAAO;QACL,EAAE,EAAE,IAAI,CAAC,EAAE;QACX,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,UAAU,EAAG,IAAI,CAAC,UAAuC,IAAI,OAAO;QACpE,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,SAAS,EAAE,IAAI,CAAC,SAAS;KAC1B,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,kBAAkB,CAChC,GAAoB,EACpB,SAAqB,EACrB,SAAqB,EACrB,aAA6B,EAC7B,YAA2B,EAC3B,SAAqB;IAGrB,+BAA+B;IAC/B,yDAAyD;IACzD,GAAG,CAAC,GAAG,CAAC,kBAAkB,EAAE,KAAK,IAAI,EAAE;QACrC,MAAM,SAAS,GAAG,SAAS,CAAC,KAAK,EAAE,CAAC;QACpC,OAAO,EAAE,UAAU,EAAE,SAAS,KAAK,CAAC,EAAE,CAAC;IACzC,CAAC,CAAC,CAAC;IAEH,kCAAkC;IAClC,gEAAgE;IAChE,GAAG,CAAC,IAAI,CAAC,oBAAoB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACtD,MAAM,MAAM,GAAG,cAAc,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACtD,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACjG,CAAC;QAED,MAAM,SAAS,GAAG,SAAS,CAAC,KAAK,EAAE,CAAC;QACpC,IAAI,SAAS,GAAG,CAAC,EAAE,CAAC;YAClB,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,8CAA8C,EAAE,CAAC,CAAC;QAC3F,CAAC;QAED,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QAC9C,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;QACrD,MAAM,MAAM,GAAG,MAAM,CAAC,UAAU,EAAY,CAAC;QAC7C,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QAEvB,MAAM,IAAI,GAAG,SAAS,CAAC,MAAM,CAAC;YAC5B,EAAE,EAAE,MAAM;YACV,KAAK;YACL,IAAI;YACJ,YAAY;YACZ,SAAS,EAAE,GAAG;YACd,SAAS,EAAE,GAAG;SACf,CAAC,CAAC;QAEH,oBAAoB;QACpB,MAAM,SAAS,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC;QAC/C,IAAI,SAAS,EAAE,CAAC;YACd,aAAa,CAAC,MAAM,CAAC,MAAM,EAAE,SAAS,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QACrD,CAAC;QAED,iBAAiB;QACjB,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QACvD,YAAY,CAAC,MAAM,CAAC;YAClB,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,MAAM;YACN,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,GAAG;YACd,SAAS,EAAE,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,SAAS;YACrD,SAAS,EAAE,OAAO,CAAC,EAAE,IAAI,SAAS;SACnC,CAAC,CAAC;QAEH,MAAM,WAAW,GAAG,aAAa,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;QAE7D,OAAO;YACL,IAAI,EAAE,YAAY,CAAC,IAAI,CAAC;YACxB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,WAAW;SACZ,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,+BAA+B;IAC/B,GAAG,CAAC,IAAI,CAAC,iBAAiB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACnD,MAAM,MAAM,GAAG,WAAW,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACnD,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACjG,CAAC;QAED,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QACxC,MAAM,IAAI,GAAG,SAAS,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;QAChE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,2BAA2B,EAAE,CAAC,CAAC;QACxE,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,IAAI,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;QACxD,YAAY,CAAC,MAAM,CAAC;YAClB,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,SAAS,EAAE,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,SAAS;YACrD,SAAS,EAAE,OAAO,CAAC,EAAE,IAAI,SAAS;SACnC,CAAC,CAAC;QAEH,MAAM,WAAW,GAAG,aAAa,CAAC,kBAAkB,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAE9D,OAAO;YACL,IAAI,EAAE,YAAY,CAAC,IAAI,CAAC;YACxB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,WAAW;SACZ,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,iCAAiC;IACjC,GAAG,CAAC,IAAI,CAAC,mBAAmB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACrD,MAAM,MAAM,GAAG,kBAAkB,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAC1D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;QACjG,CAAC;QAED,MAAM,EAAE,YAAY,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC;QAErC,+BAA+B;QAC/B,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,YAAY,EAAE,SAAS,CAAC,CAAC;QAC3C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;QACpE,CAAC;QAED,MAAM,OAAO,GAAG,YAAY,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAC;QAC7D,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,CAAC;QAChE,CAAC;QAED,qBAAqB;QACrB,YAAY,CAAC,aAAa,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;QAE1C,iEAAiE;QACjE,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,MAAM,EAAE,SAAS,CAAC,CAAC;QAC/D,YAAY,CAAC,MAAM,CAAC;YAClB,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,MAAM,EAAE,OAAO,CAAC,MAAM;YACtB,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,SAAS,EAAE,MAAM,CAAC,SAAS;YAC3B,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;SAC7B,CAAC,CAAC;QAEH,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,KAAK;YACnB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,SAAS,EAAE,MAAM,CAAC,SAAS,CAAC,WAAW,EAAE;SAC1C,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,gCAAgC;IAChC,GAAG,CAAC,IAAI,CAAC,kBAAkB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACpD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,IAAI,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACtC,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAClC,YAAY,CAAC,aAAa,CAAC,KAAK,CAAC,CAAC;QACpC,CAAC;QACD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,2BAA2B;IAC3B,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC/C,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,QAAQ,GAAG,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAC7D,CAAC;QACD,OAAO;YACL,IAAI,EAAE,YAAY,CAAC,QAAQ,CAAC;YAC5B,WAAW,EAAE,IAAI,CAAC,WAAW;SAC9B,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,2BAA2B;IAC3B,qDAAqD;IACrD,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC/C,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAyC,CAAC;QAC/D,MAAM,OAAO,GAAuD,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC;QAC9F,IAAI,OAAO,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;YACtD,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QAClC,CAAC;QACD,IAAI,OAAO,IAAI,CAAC,KAAK,KAAK,QAAQ,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,EAAE,CAAC;YACxD,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAClD,CAAC;QACD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,OAAO,CAAC,CAAC;YACnD,OAAO,EAAE,IAAI,EAAE,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;QACzC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;YACrE,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;QACpD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,iCAAiC;IACjC,2EAA2E;IAC3E,GAAG,CAAC,GAAG,CAAC,oBAAoB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACrD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,MAAM,YAAY,GAAG,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAEpF,MAAM,QAAQ,GAAG,YAAY,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACpD,OAAO;YACL,QAAQ,EAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBAC3B,EAAE,EAAE,CAAC,CAAC,EAAE;gBACR,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,WAAW,EAAE;gBACpC,SAAS,EAAE,CAAC,CAAC,SAAS,CAAC,WAAW,EAAE;gBACpC,OAAO,EAAE,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,KAAK,KAAK,YAAY,CAAC,CAAC,CAAC,KAAK;gBACxD,SAAS,EAAE,CAAC,CAAC,SAAS,IAAI,IAAI;gBAC9B,SAAS,EAAE,CAAC,CAAC,SAAS,IAAI,IAAI;aAC/B,CAAC,CAAC;SACJ,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,wCAAwC;IACxC,6DAA6D;IAC7D,GAAG,CAAC,MAAM,CAAC,wBAAwB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QAC5D,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,EAAE,EAAE,EAAE,GAAG,OAAO,CAAC,MAAwB,CAAC;QAChD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,MAAM,YAAY,GAAG,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAEpF,MAAM,QAAQ,GAAG,YAAY,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACpD,MAAM,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,CAAC;QAC/C,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,CAAC;QAChE,CAAC;QACD,IAAI,YAAY,IAAI,MAAM,CAAC,KAAK,KAAK,YAAY,EAAE,CAAC;YAClD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;QAC5E,CAAC;QACD,YAAY,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;QAC5B,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,oCAAoC;IACpC,4CAA4C;IAC5C,GAAG,CAAC,MAAM,CAAC,oBAAoB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACxD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,MAAM,YAAY,GAAG,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAEpF,MAAM,QAAQ,GAAG,YAAY,CAAC,YAAY,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACpD,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;YACzB,IAAI,CAAC,YAAY,IAAI,CAAC,CAAC,KAAK,KAAK,YAAY,EAAE,CAAC;gBAC9C,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAChC,CAAC;QACH,CAAC;QACD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,qCAAqC;IACrC,kEAAkE;IAClE,GAAG,CAAC,IAAI,CAAC,uBAAuB,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACzD,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAC1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;QACtE,CAAC;QACD,MAAM,QAAQ,GAAG,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;QAC7D,CAAC;QACD,IAAI,QAAQ,CAAC,UAAU,KAAK,OAAO,EAAE,CAAC;YACpC,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,sDAAsD,EAAE,CAAC,CAAC;QACnG,CAAC;QACD,MAAM,IAAI,GAAG,OAAO,CAAC,IAA0D,CAAC;QAChF,IAAI,CAAC,IAAI,CAAC,eAAe,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC;YAC/C,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,8CAA8C,EAAE,CAAC,CAAC;QAC3F,CAAC;QACD,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,4CAA4C,EAAE,CAAC,CAAC;QACzF,CAAC;QACD,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,eAAe,EAAE,QAAQ,CAAC,YAAY,CAAC,CAAC;QAChF,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;QAC5E,CAAC;QACD,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;QAC7D,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,CAAC;QACnE,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC,CAAC,CAAC;AACL,CAAC"}

package/dist/api/deployments.d.ts

@@ -0,0 +1,11 @@
+import type { FastifyInstance } from "fastify";
+import type { LlmClient, IPartitionStore, IEnvironmentStore, IArtifactStore, ISettingsStore, IDeploymentStore, ITelemetryStore, DebriefWriter, DebriefReader } from "@synth-deploy/core";
+import type { ProgressEventStore } from "./progress-event-store.js";
+import { EnvoyClient } from "../agent/envoy-client.js";
+import type { EnvoyRegistry } from "../agent/envoy-registry.js";
+/**
+ * REST API routes for deployments. These are the traditional (non-MCP) interface
+ * for the web UI and integrations.
+ */
+export declare function registerDeploymentRoutes(app: FastifyInstance, deployments: IDeploymentStore, debrief: DebriefWriter & DebriefReader, partitions: IPartitionStore, environments: IEnvironmentStore, artifactStore: IArtifactStore, settings: ISettingsStore, telemetry: ITelemetryStore, progressStore?: ProgressEventStore, envoyClient?: EnvoyClient, envoyRegistry?: EnvoyRegistry, llm?: LlmClient): void;
+//# sourceMappingURL=deployments.d.ts.map

package/dist/api/deployments.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deployments.d.ts","sourceRoot":"","sources":["../../src/api/deployments.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAE/C,OAAO,KAAK,EAAE,SAAS,EAAE,eAAe,EAAE,iBAAiB,EAAE,cAAc,EAAE,cAAc,EAAE,gBAAgB,EAAE,eAAe,EAAE,aAAa,EAAE,aAAa,EAA+C,MAAM,oBAAoB,CAAC;AAatO,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AACpE,OAAO,EAAE,WAAW,EAAE,MAAM,0BAA0B,CAAC;AACvD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAEhE;;;GAGG;AACH,wBAAgB,wBAAwB,CACtC,GAAG,EAAE,eAAe,EACpB,WAAW,EAAE,gBAAgB,EAC7B,OAAO,EAAE,aAAa,GAAG,aAAa,EACtC,UAAU,EAAE,eAAe,EAC3B,YAAY,EAAE,iBAAiB,EAC/B,aAAa,EAAE,cAAc,EAC7B,QAAQ,EAAE,cAAc,EACxB,SAAS,EAAE,eAAe,EAC1B,aAAa,CAAC,EAAE,kBAAkB,EAClC,WAAW,CAAC,EAAE,WAAW,EACzB,aAAa,CAAC,EAAE,aAAa,EAC7B,GAAG,CAAC,EAAE,SAAS,GACd,IAAI,CAitCN"}