npm - @thebookingkit/server - Versions diffs - 0.1.1 - Mend

@thebookingkit/server 0.1.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (126) hide show

package/.turbo/turbo-build.log +6 -0
package/.turbo/turbo-test.log +20 -0
package/CHANGELOG.md +9 -0
package/dist/__tests__/api.test.d.ts +2 -0
package/dist/__tests__/api.test.d.ts.map +1 -0
package/dist/__tests__/api.test.js +280 -0
package/dist/__tests__/api.test.js.map +1 -0
package/dist/__tests__/auth.test.d.ts +2 -0
package/dist/__tests__/auth.test.d.ts.map +1 -0
package/dist/__tests__/auth.test.js +78 -0
package/dist/__tests__/auth.test.js.map +1 -0
package/dist/__tests__/concurrent-booking.test.d.ts +2 -0
package/dist/__tests__/concurrent-booking.test.d.ts.map +1 -0
package/dist/__tests__/concurrent-booking.test.js +111 -0
package/dist/__tests__/concurrent-booking.test.js.map +1 -0
package/dist/__tests__/multi-tenancy.test.d.ts +2 -0
package/dist/__tests__/multi-tenancy.test.d.ts.map +1 -0
package/dist/__tests__/multi-tenancy.test.js +196 -0
package/dist/__tests__/multi-tenancy.test.js.map +1 -0
package/dist/__tests__/serialization-retry.test.d.ts +2 -0
package/dist/__tests__/serialization-retry.test.d.ts.map +1 -0
package/dist/__tests__/serialization-retry.test.js +53 -0
package/dist/__tests__/serialization-retry.test.js.map +1 -0
package/dist/__tests__/webhooks.test.d.ts +2 -0
package/dist/__tests__/webhooks.test.d.ts.map +1 -0
package/dist/__tests__/webhooks.test.js +286 -0
package/dist/__tests__/webhooks.test.js.map +1 -0
package/dist/__tests__/workflows.test.d.ts +2 -0
package/dist/__tests__/workflows.test.d.ts.map +1 -0
package/dist/__tests__/workflows.test.js +299 -0
package/dist/__tests__/workflows.test.js.map +1 -0
package/dist/adapters/calendar-adapter.d.ts +47 -0
package/dist/adapters/calendar-adapter.d.ts.map +1 -0
package/dist/adapters/calendar-adapter.js +2 -0
package/dist/adapters/calendar-adapter.js.map +1 -0
package/dist/adapters/email-adapter.d.ts +65 -0
package/dist/adapters/email-adapter.d.ts.map +1 -0
package/dist/adapters/email-adapter.js +40 -0
package/dist/adapters/email-adapter.js.map +1 -0
package/dist/adapters/index.d.ts +9 -0
package/dist/adapters/index.d.ts.map +1 -0
package/dist/adapters/index.js +3 -0
package/dist/adapters/index.js.map +1 -0
package/dist/adapters/job-adapter.d.ts +26 -0
package/dist/adapters/job-adapter.d.ts.map +1 -0
package/dist/adapters/job-adapter.js +13 -0
package/dist/adapters/job-adapter.js.map +1 -0
package/dist/adapters/payment-adapter.d.ts +106 -0
package/dist/adapters/payment-adapter.d.ts.map +1 -0
package/dist/adapters/payment-adapter.js +8 -0
package/dist/adapters/payment-adapter.js.map +1 -0
package/dist/adapters/sms-adapter.d.ts +33 -0
package/dist/adapters/sms-adapter.d.ts.map +1 -0
package/dist/adapters/sms-adapter.js +8 -0
package/dist/adapters/sms-adapter.js.map +1 -0
package/dist/adapters/storage-adapter.d.ts +12 -0
package/dist/adapters/storage-adapter.d.ts.map +1 -0
package/dist/adapters/storage-adapter.js +2 -0
package/dist/adapters/storage-adapter.js.map +1 -0
package/dist/api.d.ts +223 -0
package/dist/api.d.ts.map +1 -0
package/dist/api.js +271 -0
package/dist/api.js.map +1 -0
package/dist/auth.d.ts +71 -0
package/dist/auth.d.ts.map +1 -0
package/dist/auth.js +81 -0
package/dist/auth.js.map +1 -0
package/dist/booking-tokens.d.ts +23 -0
package/dist/booking-tokens.d.ts.map +1 -0
package/dist/booking-tokens.js +52 -0
package/dist/booking-tokens.js.map +1 -0
package/dist/email-templates.d.ts +36 -0
package/dist/email-templates.d.ts.map +1 -0
package/dist/email-templates.js +112 -0
package/dist/email-templates.js.map +1 -0
package/dist/index.d.ts +13 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +22 -0
package/dist/index.js.map +1 -0
package/dist/multi-tenancy.d.ts +132 -0
package/dist/multi-tenancy.d.ts.map +1 -0
package/dist/multi-tenancy.js +188 -0
package/dist/multi-tenancy.js.map +1 -0
package/dist/notification-jobs.d.ts +143 -0
package/dist/notification-jobs.d.ts.map +1 -0
package/dist/notification-jobs.js +278 -0
package/dist/notification-jobs.js.map +1 -0
package/dist/serialization-retry.d.ts +28 -0
package/dist/serialization-retry.d.ts.map +1 -0
package/dist/serialization-retry.js +71 -0
package/dist/serialization-retry.js.map +1 -0
package/dist/webhooks.d.ts +164 -0
package/dist/webhooks.d.ts.map +1 -0
package/dist/webhooks.js +228 -0
package/dist/webhooks.js.map +1 -0
package/dist/workflows.d.ts +169 -0
package/dist/workflows.d.ts.map +1 -0
package/dist/workflows.js +251 -0
package/dist/workflows.js.map +1 -0
package/package.json +32 -0
package/src/__tests__/api.test.ts +354 -0
package/src/__tests__/auth.test.ts +111 -0
package/src/__tests__/concurrent-booking.test.ts +170 -0
package/src/__tests__/multi-tenancy.test.ts +267 -0
package/src/__tests__/serialization-retry.test.ts +76 -0
package/src/__tests__/webhooks.test.ts +412 -0
package/src/__tests__/workflows.test.ts +422 -0
package/src/adapters/calendar-adapter.ts +49 -0
package/src/adapters/email-adapter.ts +108 -0
package/src/adapters/index.ts +36 -0
package/src/adapters/job-adapter.ts +26 -0
package/src/adapters/payment-adapter.ts +118 -0
package/src/adapters/sms-adapter.ts +35 -0
package/src/adapters/storage-adapter.ts +11 -0
package/src/api.ts +446 -0
package/src/auth.ts +146 -0
package/src/booking-tokens.ts +61 -0
package/src/email-templates.ts +140 -0
package/src/index.ts +192 -0
package/src/multi-tenancy.ts +301 -0
package/src/notification-jobs.ts +428 -0
package/src/serialization-retry.ts +94 -0
package/src/webhooks.ts +378 -0
package/src/workflows.ts +441 -0
package/tsconfig.json +9 -0
package/vitest.config.ts +7 -0

package/dist/adapters/payment-adapter.d.ts ADDED Viewed

@@ -0,0 +1,106 @@
+/**
+ * Abstract interface for payment processing.
+ *
+ * Default implementation: Stripe via `stripe` npm package.
+ * Alternatives: Square, PayPal, or mock for testing.
+ */
+/** Result of creating a payment intent */
+export interface CreatePaymentIntentResult {
+    /** Stripe PaymentIntent ID (or equivalent) */
+    paymentIntentId: string;
+    /** Client secret for confirming payment on the frontend */
+    clientSecret: string;
+    /** Current status of the payment intent */
+    status: "requires_payment_method" | "requires_confirmation" | "requires_action" | "processing" | "succeeded" | "canceled";
+}
+/** Result of creating a setup intent for card authorization */
+export interface CreateSetupIntentResult {
+    /** Stripe SetupIntent ID (or equivalent) */
+    setupIntentId: string;
+    /** Client secret for confirming setup on the frontend */
+    clientSecret: string;
+}
+/** Result of capturing a held payment */
+export interface CaptureResult {
+    /** Whether the capture was successful */
+    captured: boolean;
+    /** The payment intent ID that was captured */
+    paymentIntentId: string;
+}
+/** Result of a refund operation */
+export interface RefundResult {
+    /** Refund ID from the payment provider */
+    refundId: string;
+    /** Amount refunded in cents */
+    amountCents: number;
+    /** Status of the refund */
+    status: "succeeded" | "pending" | "failed";
+}
+/** Options for creating a payment intent */
+export interface CreatePaymentIntentOptions {
+    /** Amount in smallest currency unit (e.g., cents for USD) */
+    amountCents: number;
+    /** ISO 4217 currency code */
+    currency: string;
+    /** Connected account ID (for Stripe Connect) */
+    connectedAccountId?: string;
+    /** Whether to use manual capture (for holds) */
+    captureMethod?: "automatic" | "manual";
+    /** Metadata to attach to the payment */
+    metadata?: Record<string, string>;
+    /** Customer email for receipt */
+    customerEmail?: string;
+}
+/** Options for creating a setup intent */
+export interface CreateSetupIntentOptions {
+    /** Connected account ID (for Stripe Connect) */
+    connectedAccountId?: string;
+    /** Customer email */
+    customerEmail?: string;
+    /** Metadata */
+    metadata?: Record<string, string>;
+}
+/**
+ * Payment processing adapter interface.
+ *
+ * Implementations handle creating payment intents, capturing holds,
+ * processing refunds, and managing Stripe Connect onboarding.
+ */
+export interface PaymentAdapter {
+    /**
+     * Create a payment intent for collecting payment.
+     * Use `captureMethod: 'manual'` for no-show fee holds.
+     */
+    createPaymentIntent(options: CreatePaymentIntentOptions): Promise<CreatePaymentIntentResult>;
+    /**
+     * Create a setup intent for authorizing a card without charging.
+     */
+    createSetupIntent(options: CreateSetupIntentOptions): Promise<CreateSetupIntentResult>;
+    /**
+     * Capture a previously authorized (manual capture) payment intent.
+     * Used when marking a booking as no-show.
+     */
+    capturePaymentIntent(paymentIntentId: string, amountCents?: number): Promise<CaptureResult>;
+    /**
+     * Cancel a payment intent (release a hold).
+     * Used when a booking completes normally and the no-show hold should be released.
+     */
+    cancelPaymentIntent(paymentIntentId: string): Promise<void>;
+    /**
+     * Refund a payment intent (full or partial).
+     */
+    refund(paymentIntentId: string, amountCents?: number): Promise<RefundResult>;
+    /**
+     * Generate a Stripe Connect onboarding URL for a provider.
+     * Returns the URL the provider should be redirected to.
+     */
+    createConnectOnboardingUrl(options: {
+        returnUrl: string;
+        refreshUrl: string;
+    }): Promise<string>;
+    /**
+     * Disconnect a Stripe Connect account.
+     */
+    disconnectAccount(connectedAccountId: string): Promise<void>;
+}
+//# sourceMappingURL=payment-adapter.d.ts.map

package/dist/adapters/payment-adapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"payment-adapter.d.ts","sourceRoot":"","sources":["../../src/adapters/payment-adapter.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,0CAA0C;AAC1C,MAAM,WAAW,yBAAyB;IACxC,8CAA8C;IAC9C,eAAe,EAAE,MAAM,CAAC;IACxB,2DAA2D;IAC3D,YAAY,EAAE,MAAM,CAAC;IACrB,2CAA2C;IAC3C,MAAM,EAAE,yBAAyB,GAAG,uBAAuB,GAAG,iBAAiB,GAAG,YAAY,GAAG,WAAW,GAAG,UAAU,CAAC;CAC3H;AAED,+DAA+D;AAC/D,MAAM,WAAW,uBAAuB;IACtC,4CAA4C;IAC5C,aAAa,EAAE,MAAM,CAAC;IACtB,yDAAyD;IACzD,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,yCAAyC;AACzC,MAAM,WAAW,aAAa;IAC5B,yCAAyC;IACzC,QAAQ,EAAE,OAAO,CAAC;IAClB,8CAA8C;IAC9C,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,mCAAmC;AACnC,MAAM,WAAW,YAAY;IAC3B,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,+BAA+B;IAC/B,WAAW,EAAE,MAAM,CAAC;IACpB,2BAA2B;IAC3B,MAAM,EAAE,WAAW,GAAG,SAAS,GAAG,QAAQ,CAAC;CAC5C;AAED,4CAA4C;AAC5C,MAAM,WAAW,0BAA0B;IACzC,6DAA6D;IAC7D,WAAW,EAAE,MAAM,CAAC;IACpB,6BAA6B;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,gDAAgD;IAChD,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,gDAAgD;IAChD,aAAa,CAAC,EAAE,WAAW,GAAG,QAAQ,CAAC;IACvC,wCAAwC;IACxC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,iCAAiC;IACjC,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED,0CAA0C;AAC1C,MAAM,WAAW,wBAAwB;IACvC,gDAAgD;IAChD,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,qBAAqB;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,eAAe;IACf,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACnC;AAED;;;;;GAKG;AACH,MAAM,WAAW,cAAc;IAC7B;;;OAGG;IACH,mBAAmB,CAAC,OAAO,EAAE,0BAA0B,GAAG,OAAO,CAAC,yBAAyB,CAAC,CAAC;IAE7F;;OAEG;IACH,iBAAiB,CAAC,OAAO,EAAE,wBAAwB,GAAG,OAAO,CAAC,uBAAuB,CAAC,CAAC;IAEvF;;;OAGG;IACH,oBAAoB,CAAC,eAAe,EAAE,MAAM,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;IAE5F;;;OAGG;IACH,mBAAmB,CAAC,eAAe,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE5D;;OAEG;IACH,MAAM,CAAC,eAAe,EAAE,MAAM,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;IAE7E;;;OAGG;IACH,0BAA0B,CAAC,OAAO,EAAE;QAClC,SAAS,EAAE,MAAM,CAAC;QAClB,UAAU,EAAE,MAAM,CAAC;KACpB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAEpB;;OAEG;IACH,iBAAiB,CAAC,kBAAkB,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC9D"}

package/dist/adapters/payment-adapter.js ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * Abstract interface for payment processing.
+ *
+ * Default implementation: Stripe via `stripe` npm package.
+ * Alternatives: Square, PayPal, or mock for testing.
+ */
+export {};
+//# sourceMappingURL=payment-adapter.js.map

package/dist/adapters/payment-adapter.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"payment-adapter.js","sourceRoot":"","sources":["../../src/adapters/payment-adapter.ts"],"names":[],"mappings":"AAAA;;;;;GAKG"}

package/dist/adapters/sms-adapter.d.ts ADDED Viewed

@@ -0,0 +1,33 @@
+/**
+ * Abstract interface for SMS delivery.
+ *
+ * Default implementation: Twilio.
+ * Alternatives: AWS SNS, Vonage, or mock for testing.
+ */
+/** Options for sending an SMS */
+export interface SendSmsOptions {
+    /** Recipient phone number (E.164 format) */
+    to: string;
+    /** SMS body text */
+    body: string;
+    /** Sender phone number or alphanumeric sender ID */
+    from?: string;
+}
+/** Result of an SMS send operation */
+export interface SmsResult {
+    /** Message ID from the SMS provider */
+    messageId: string;
+    /** Delivery status */
+    status: "queued" | "sent" | "delivered" | "failed";
+}
+/**
+ * SMS delivery adapter interface.
+ *
+ * Implementations handle sending SMS messages via a provider
+ * (e.g., Twilio, AWS SNS).
+ */
+export interface SmsAdapter {
+    /** Send an SMS message */
+    send(options: SendSmsOptions): Promise<SmsResult>;
+}
+//# sourceMappingURL=sms-adapter.d.ts.map

package/dist/adapters/sms-adapter.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sms-adapter.d.ts","sourceRoot":"","sources":["../../src/adapters/sms-adapter.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,iCAAiC;AACjC,MAAM,WAAW,cAAc;IAC7B,4CAA4C;IAC5C,EAAE,EAAE,MAAM,CAAC;IACX,oBAAoB;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,oDAAoD;IACpD,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,sCAAsC;AACtC,MAAM,WAAW,SAAS;IACxB,uCAAuC;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,sBAAsB;IACtB,MAAM,EAAE,QAAQ,GAAG,MAAM,GAAG,WAAW,GAAG,QAAQ,CAAC;CACpD;AAED;;;;;GAKG;AACH,MAAM,WAAW,UAAU;IACzB,0BAA0B;IAC1B,IAAI,CAAC,OAAO,EAAE,cAAc,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;CACnD"}

package/dist/adapters/sms-adapter.js ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * Abstract interface for SMS delivery.
+ *
+ * Default implementation: Twilio.
+ * Alternatives: AWS SNS, Vonage, or mock for testing.
+ */
+export {};
+//# sourceMappingURL=sms-adapter.js.map

package/dist/adapters/sms-adapter.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"sms-adapter.js","sourceRoot":"","sources":["../../src/adapters/sms-adapter.ts"],"names":[],"mappings":"AAAA;;;;;GAKG"}

package/dist/adapters/storage-adapter.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+/**
+ * Storage/encryption adapter interface.
+ * Default implementation uses an environment variable encryption key.
+ * Swap to AWS KMS, GCP KMS, or HashiCorp Vault by implementing this interface.
+ */
+export interface StorageAdapter {
+    /** Encrypt a plaintext value */
+    encrypt(plaintext: string): Promise<string>;
+    /** Decrypt an encrypted value */
+    decrypt(ciphertext: string): Promise<string>;
+}
+//# sourceMappingURL=storage-adapter.d.ts.map

package/dist/adapters/storage-adapter.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"storage-adapter.d.ts","sourceRoot":"","sources":["../../src/adapters/storage-adapter.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,WAAW,cAAc;IAC7B,gCAAgC;IAChC,OAAO,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;IAC5C,iCAAiC;IACjC,OAAO,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC9C"}

package/dist/adapters/storage-adapter.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=storage-adapter.js.map

package/dist/adapters/storage-adapter.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"storage-adapter.js","sourceRoot":"","sources":["../../src/adapters/storage-adapter.ts"],"names":[],"mappings":""}

package/dist/api.d.ts ADDED Viewed

@@ -0,0 +1,223 @@
+/**
+ * REST API utilities for SlotKit.
+ *
+ * Provides standardized response formatting, API key management,
+ * rate limiting, pagination, and request validation helpers
+ * for Next.js API routes.
+ */
+/** Standard API error */
+export interface ApiError {
+    code: string;
+    message: string;
+    details?: Record<string, unknown>;
+}
+/** Standard error response envelope */
+export interface ApiErrorResponse {
+    error: ApiError;
+}
+/** Standard success response envelope */
+export interface ApiSuccessResponse<T> {
+    data: T;
+    meta?: ApiMeta;
+}
+/** Pagination metadata */
+export interface ApiMeta {
+    total?: number;
+    nextCursor?: string | null;
+    prevCursor?: string | null;
+    hasMore?: boolean;
+}
+/** Paginated list response */
+export interface PaginatedResponse<T> {
+    data: T[];
+    meta: {
+        nextCursor: string | null;
+        hasMore: boolean;
+        total?: number;
+    };
+}
+/** Standard API error codes */
+export declare const API_ERROR_CODES: {
+    readonly NOT_FOUND: "NOT_FOUND";
+    readonly UNAUTHORIZED: "UNAUTHORIZED";
+    readonly FORBIDDEN: "FORBIDDEN";
+    readonly VALIDATION_ERROR: "VALIDATION_ERROR";
+    readonly CONFLICT: "CONFLICT";
+    readonly RATE_LIMITED: "RATE_LIMITED";
+    readonly INTERNAL_ERROR: "INTERNAL_ERROR";
+    readonly PAYMENT_REQUIRED: "PAYMENT_REQUIRED";
+};
+export type ApiErrorCode = (typeof API_ERROR_CODES)[keyof typeof API_ERROR_CODES];
+/**
+ * Create a standardized API error response.
+ *
+ * @param code - Error code from API_ERROR_CODES
+ * @param message - Human-readable error message
+ * @param details - Optional additional details
+ * @returns Standardized error response object
+ */
+export declare function createErrorResponse(code: ApiErrorCode | string, message: string, details?: Record<string, unknown>): ApiErrorResponse;
+/**
+ * Create a standardized API success response.
+ *
+ * @param data - The response data
+ * @param meta - Optional pagination metadata
+ * @returns Standardized success response object
+ */
+export declare function createSuccessResponse<T>(data: T, meta?: ApiMeta): ApiSuccessResponse<T>;
+/**
+ * Create a paginated list response.
+ *
+ * @param items - The page of items
+ * @param nextCursor - Cursor for the next page (null if last page)
+ * @param total - Optional total count
+ * @returns Paginated response
+ */
+export declare function createPaginatedResponse<T>(items: T[], nextCursor: string | null, total?: number): PaginatedResponse<T>;
+/** An API key record */
+export interface ApiKeyRecord {
+    id: string;
+    name: string;
+    keyHash: string;
+    keyPrefix: string;
+    providerId?: string;
+    teamId?: string;
+    scopes: ApiKeyScope[];
+    rateLimit: number;
+    createdAt: Date;
+    expiresAt?: Date;
+    lastUsedAt?: Date;
+}
+/** API key scope */
+export type ApiKeyScope = "read:bookings" | "write:bookings" | "read:availability" | "write:availability" | "read:event-types" | "write:event-types" | "read:webhooks" | "write:webhooks" | "read:analytics" | "admin";
+/** Result of generating a new API key */
+export interface GeneratedApiKey {
+    /** The full key (only shown once) */
+    key: string;
+    /** The prefix for display (e.g., "sk_live_abc123...") */
+    prefix: string;
+    /** The hash stored in the database */
+    hash: string;
+}
+/**
+ * Generate a new API key.
+ *
+ * The full key is only returned once and should be displayed to the user.
+ * Only the hash is stored in the database.
+ *
+ * @param prefix - Key prefix (e.g., "sk_live_" or "sk_test_")
+ * @returns Generated key with hash for storage
+ */
+export declare function generateApiKey(prefix?: string): GeneratedApiKey;
+/**
+ * Hash an API key for secure storage.
+ *
+ * Uses HMAC-SHA256 with a secret from the SLOTKIT_API_KEY_SECRET
+ * environment variable. Throws if the secret is not configured.
+ *
+ * @param key - The full API key
+ * @param secret - Optional HMAC secret (defaults to SLOTKIT_API_KEY_SECRET env var)
+ * @returns The hex-encoded hash
+ */
+export declare function hashApiKey(key: string, secret?: string): string;
+/**
+ * Verify an API key against a stored hash.
+ *
+ * @param key - The key to verify
+ * @param storedHash - The hash stored in the database
+ * @returns Whether the key is valid
+ */
+export declare function verifyApiKey(key: string, storedHash: string): boolean;
+/**
+ * Check if an API key has a required scope.
+ *
+ * Admin scope grants all permissions.
+ *
+ * @param keyScopes - The scopes granted to the API key
+ * @param requiredScope - The scope to check for
+ * @returns Whether the key has the required scope
+ */
+export declare function hasScope(keyScopes: ApiKeyScope[], requiredScope: ApiKeyScope): boolean;
+/**
+ * Check if an API key has expired.
+ *
+ * @param expiresAt - Optional expiry timestamp
+ * @returns Whether the key is expired
+ */
+export declare function isKeyExpired(expiresAt: Date | undefined | null): boolean;
+/** Rate limit state for a key */
+export interface RateLimitState {
+    count: number;
+    windowStartMs: number;
+}
+/** Rate limit check result */
+export interface RateLimitResult {
+    allowed: boolean;
+    remaining: number;
+    resetMs: number;
+    limit: number;
+}
+/**
+ * Check if a request should be allowed under rate limiting.
+ *
+ * Uses a fixed 1-minute window.
+ *
+ * @param state - Current rate limit state
+ * @param limit - Maximum requests per minute
+ * @param nowMs - Current timestamp in milliseconds
+ * @returns Rate limit check result
+ */
+export declare function checkRateLimit(state: RateLimitState | null, limit: number, nowMs?: number): {
+    result: RateLimitResult;
+    newState: RateLimitState;
+};
+/**
+ * Encode a cursor for pagination (base64 JSON).
+ *
+ * @param data - The cursor data to encode
+ * @returns Base64-encoded cursor string
+ */
+export declare function encodeCursor(data: Record<string, unknown>): string;
+/**
+ * Decode a pagination cursor.
+ *
+ * @param cursor - The base64-encoded cursor string
+ * @returns The decoded cursor data, or null if invalid
+ */
+export declare function decodeCursor(cursor: string): Record<string, unknown> | null;
+/** Validation error detail */
+export interface ValidationDetail {
+    field: string;
+    message: string;
+}
+/** Result of input validation */
+export interface ValidationResult {
+    valid: boolean;
+    errors: ValidationDetail[];
+}
+/**
+ * Validate API request parameters for slot queries.
+ *
+ * @param params - Query parameters
+ * @returns Validation result
+ */
+export declare function validateSlotQueryParams(params: {
+    providerId?: string;
+    teamId?: string;
+    eventTypeId?: string;
+    start?: string;
+    end?: string;
+    timezone?: string;
+}): ValidationResult;
+/**
+ * Parse and validate a sort parameter.
+ *
+ * @param sortParam - Sort string (e.g., "-createdAt" or "startsAt")
+ * @param allowedFields - Fields that can be sorted by
+ * @returns Parsed sort field and direction
+ */
+export declare function parseSortParam(sortParam: string | undefined, allowedFields: string[]): {
+    field: string;
+    direction: "asc" | "desc";
+} | null;
+//# sourceMappingURL=api.d.ts.map

package/dist/api.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"api.d.ts","sourceRoot":"","sources":["../src/api.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAQH,yBAAyB;AACzB,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAED,uCAAuC;AACvC,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,QAAQ,CAAC;CACjB;AAED,yCAAyC;AACzC,MAAM,WAAW,kBAAkB,CAAC,CAAC;IACnC,IAAI,EAAE,CAAC,CAAC;IACR,IAAI,CAAC,EAAE,OAAO,CAAC;CAChB;AAED,0BAA0B;AAC1B,MAAM,WAAW,OAAO;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,8BAA8B;AAC9B,MAAM,WAAW,iBAAiB,CAAC,CAAC;IAClC,IAAI,EAAE,CAAC,EAAE,CAAC;IACV,IAAI,EAAE;QACJ,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;QAC1B,OAAO,EAAE,OAAO,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,CAAC;CACH;AAMD,+BAA+B;AAC/B,eAAO,MAAM,eAAe;;;;;;;;;CASlB,CAAC;AAEX,MAAM,MAAM,YAAY,GAAG,CAAC,OAAO,eAAe,CAAC,CAAC,MAAM,OAAO,eAAe,CAAC,CAAC;AAMlF;;;;;;;GAOG;AACH,wBAAgB,mBAAmB,CACjC,IAAI,EAAE,YAAY,GAAG,MAAM,EAC3B,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAChC,gBAAgB,CAQlB;AAED;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CAAC,CAAC,EACrC,IAAI,EAAE,CAAC,EACP,IAAI,CAAC,EAAE,OAAO,GACb,kBAAkB,CAAC,CAAC,CAAC,CAKvB;AAED;;;;;;;GAOG;AACH,wBAAgB,uBAAuB,CAAC,CAAC,EACvC,KAAK,EAAE,CAAC,EAAE,EACV,UAAU,EAAE,MAAM,GAAG,IAAI,EACzB,KAAK,CAAC,EAAE,MAAM,GACb,iBAAiB,CAAC,CAAC,CAAC,CAStB;AAMD,wBAAwB;AACxB,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,WAAW,EAAE,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,IAAI,CAAC;IAChB,SAAS,CAAC,EAAE,IAAI,CAAC;IACjB,UAAU,CAAC,EAAE,IAAI,CAAC;CACnB;AAED,oBAAoB;AACpB,MAAM,MAAM,WAAW,GACnB,eAAe,GACf,gBAAgB,GAChB,mBAAmB,GACnB,oBAAoB,GACpB,kBAAkB,GAClB,mBAAmB,GACnB,eAAe,GACf,gBAAgB,GAChB,gBAAgB,GAChB,OAAO,CAAC;AAEZ,yCAAyC;AACzC,MAAM,WAAW,eAAe;IAC9B,qCAAqC;IACrC,GAAG,EAAE,MAAM,CAAC;IACZ,yDAAyD;IACzD,MAAM,EAAE,MAAM,CAAC;IACf,sCAAsC;IACtC,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;;;;;;;GAQG;AACH,wBAAgB,cAAc,CAAC,MAAM,GAAE,MAAmB,GAAG,eAAe,CAO3E;AAED;;;;;;;;;GASG;AACH,wBAAgB,UAAU,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAU/D;AAED;;;;;;GAMG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,GAAG,OAAO,CAerE;AAED;;;;;;;;GAQG;AACH,wBAAgB,QAAQ,CACtB,SAAS,EAAE,WAAW,EAAE,EACxB,aAAa,EAAE,WAAW,GACzB,OAAO,CAET;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,SAAS,EAAE,IAAI,GAAG,SAAS,GAAG,IAAI,GAAG,OAAO,CAGxE;AAMD,iCAAiC;AACjC,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,aAAa,EAAE,MAAM,CAAC;CACvB;AAED,8BAA8B;AAC9B,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;;;;;;;;GASG;AACH,wBAAgB,cAAc,CAC5B,KAAK,EAAE,cAAc,GAAG,IAAI,EAC5B,KAAK,EAAE,MAAM,EACb,KAAK,GAAE,MAAmB,GACzB;IAAE,MAAM,EAAE,eAAe,CAAC;IAAC,QAAQ,EAAE,cAAc,CAAA;CAAE,CA6BvD;AAMD;;;;;GAKG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAElE;AAED;;;;;GAKG;AACH,wBAAgB,YAAY,CAC1B,MAAM,EAAE,MAAM,GACb,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAOhC;AAMD,8BAA8B;AAC9B,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,iCAAiC;AACjC,MAAM,WAAW,gBAAgB;IAC/B,KAAK,EAAE,OAAO,CAAC;IACf,MAAM,EAAE,gBAAgB,EAAE,CAAC;CAC5B;AAED;;;;;GAKG;AACH,wBAAgB,uBAAuB,CAAC,MAAM,EAAE;IAC9C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,GAAG,gBAAgB,CAkCnB;AAED;;;;;;GAMG;AACH,wBAAgB,cAAc,CAC5B,SAAS,EAAE,MAAM,GAAG,SAAS,EAC7B,aAAa,EAAE,MAAM,EAAE,GACtB;IAAE,KAAK,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,KAAK,GAAG,MAAM,CAAA;CAAE,GAAG,IAAI,CASrD"}