@unifiedcommerce/core 0.0.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/adapters/console-email.d.ts +23 -0
- package/dist/adapters/console-email.d.ts.map +1 -0
- package/dist/adapters/console-email.js +38 -0
- package/dist/auth/access.d.ts +101 -0
- package/dist/auth/access.d.ts.map +1 -0
- package/dist/auth/access.js +128 -0
- package/dist/auth/auth-schema.d.ts +1383 -0
- package/dist/auth/auth-schema.d.ts.map +1 -0
- package/dist/auth/auth-schema.js +117 -0
- package/dist/auth/middleware.d.ts +5 -0
- package/dist/auth/middleware.d.ts.map +1 -0
- package/dist/auth/middleware.js +91 -0
- package/dist/auth/org.d.ts +22 -0
- package/dist/auth/org.d.ts.map +1 -0
- package/dist/auth/org.js +36 -0
- package/dist/auth/permissions.d.ts +4 -0
- package/dist/auth/permissions.d.ts.map +1 -0
- package/dist/auth/permissions.js +24 -0
- package/dist/auth/pos.d.ts +3 -0
- package/dist/auth/pos.d.ts.map +1 -0
- package/dist/auth/pos.js +62 -0
- package/dist/auth/setup.d.ts +31 -0
- package/dist/auth/setup.d.ts.map +1 -0
- package/dist/auth/setup.js +106 -0
- package/dist/auth/system-actor.d.ts +7 -0
- package/dist/auth/system-actor.d.ts.map +1 -0
- package/dist/auth/system-actor.js +17 -0
- package/dist/auth/types.d.ts +11 -0
- package/dist/auth/types.d.ts.map +1 -0
- package/dist/auth/types.js +1 -0
- package/dist/config/defaults.d.ts +3 -0
- package/dist/config/defaults.d.ts.map +1 -0
- package/dist/config/defaults.js +80 -0
- package/dist/config/define-config.d.ts +9 -0
- package/dist/config/define-config.d.ts.map +1 -0
- package/dist/config/define-config.js +44 -0
- package/dist/config/types.d.ts +299 -0
- package/dist/config/types.d.ts.map +1 -0
- package/dist/config/types.js +1 -0
- package/dist/generated/plugin-manifest.d.ts +48 -0
- package/dist/generated/plugin-manifest.d.ts.map +1 -0
- package/dist/generated/plugin-manifest.js +20 -0
- package/dist/hooks/checkout-completion.d.ts +58 -0
- package/dist/hooks/checkout-completion.d.ts.map +1 -0
- package/dist/hooks/checkout-completion.js +137 -0
- package/dist/hooks/checkout.d.ts +99 -0
- package/dist/hooks/checkout.d.ts.map +1 -0
- package/dist/hooks/checkout.js +317 -0
- package/dist/hooks/order-emails.d.ts +16 -0
- package/dist/hooks/order-emails.d.ts.map +1 -0
- package/dist/hooks/order-emails.js +44 -0
- package/dist/index.d.ts +82 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +13381 -0
- package/dist/index.js.map +156 -0
- package/dist/interfaces/graphql/index.d.ts +4 -0
- package/dist/interfaces/graphql/index.d.ts.map +1 -0
- package/dist/interfaces/graphql/index.js +415 -0
- package/dist/interfaces/mcp/agent-prompt.d.ts +16 -0
- package/dist/interfaces/mcp/agent-prompt.d.ts.map +1 -0
- package/dist/interfaces/mcp/agent-prompt.js +172 -0
- package/dist/interfaces/mcp/context-enrichment.d.ts +39 -0
- package/dist/interfaces/mcp/context-enrichment.d.ts.map +1 -0
- package/dist/interfaces/mcp/context-enrichment.js +119 -0
- package/dist/interfaces/mcp/server.d.ts +7 -0
- package/dist/interfaces/mcp/server.d.ts.map +1 -0
- package/dist/interfaces/mcp/server.js +515 -0
- package/dist/interfaces/mcp/transport.d.ts +5 -0
- package/dist/interfaces/mcp/transport.d.ts.map +1 -0
- package/dist/interfaces/mcp/transport.js +52 -0
- package/dist/interfaces/rest/customer-portal.d.ts +5 -0
- package/dist/interfaces/rest/customer-portal.d.ts.map +1 -0
- package/dist/interfaces/rest/customer-portal.js +206 -0
- package/dist/interfaces/rest/index.d.ts +5 -0
- package/dist/interfaces/rest/index.d.ts.map +1 -0
- package/dist/interfaces/rest/index.js +68 -0
- package/dist/interfaces/rest/router.d.ts +164 -0
- package/dist/interfaces/rest/router.d.ts.map +1 -0
- package/dist/interfaces/rest/router.js +259 -0
- package/dist/interfaces/rest/routes/admin-jobs.d.ts +5 -0
- package/dist/interfaces/rest/routes/admin-jobs.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/admin-jobs.js +48 -0
- package/dist/interfaces/rest/routes/audit.d.ts +5 -0
- package/dist/interfaces/rest/routes/audit.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/audit.js +43 -0
- package/dist/interfaces/rest/routes/carts.d.ts +5 -0
- package/dist/interfaces/rest/routes/carts.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/carts.js +55 -0
- package/dist/interfaces/rest/routes/catalog.d.ts +5 -0
- package/dist/interfaces/rest/routes/catalog.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/catalog.js +256 -0
- package/dist/interfaces/rest/routes/checkout.d.ts +5 -0
- package/dist/interfaces/rest/routes/checkout.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/checkout.js +216 -0
- package/dist/interfaces/rest/routes/inventory.d.ts +5 -0
- package/dist/interfaces/rest/routes/inventory.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/inventory.js +59 -0
- package/dist/interfaces/rest/routes/media.d.ts +5 -0
- package/dist/interfaces/rest/routes/media.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/media.js +65 -0
- package/dist/interfaces/rest/routes/orders.d.ts +5 -0
- package/dist/interfaces/rest/routes/orders.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/orders.js +64 -0
- package/dist/interfaces/rest/routes/payments.d.ts +5 -0
- package/dist/interfaces/rest/routes/payments.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/payments.js +45 -0
- package/dist/interfaces/rest/routes/pricing.d.ts +5 -0
- package/dist/interfaces/rest/routes/pricing.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/pricing.js +48 -0
- package/dist/interfaces/rest/routes/promotions.d.ts +5 -0
- package/dist/interfaces/rest/routes/promotions.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/promotions.js +75 -0
- package/dist/interfaces/rest/routes/search.d.ts +5 -0
- package/dist/interfaces/rest/routes/search.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/search.js +60 -0
- package/dist/interfaces/rest/routes/webhooks.d.ts +5 -0
- package/dist/interfaces/rest/routes/webhooks.d.ts.map +1 -0
- package/dist/interfaces/rest/routes/webhooks.js +39 -0
- package/dist/interfaces/rest/schemas/admin-jobs.d.ts +327 -0
- package/dist/interfaces/rest/schemas/admin-jobs.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/admin-jobs.js +37 -0
- package/dist/interfaces/rest/schemas/audit.d.ts +59 -0
- package/dist/interfaces/rest/schemas/audit.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/audit.js +43 -0
- package/dist/interfaces/rest/schemas/carts.d.ts +1446 -0
- package/dist/interfaces/rest/schemas/carts.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/carts.js +109 -0
- package/dist/interfaces/rest/schemas/catalog.d.ts +5416 -0
- package/dist/interfaces/rest/schemas/catalog.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/catalog.js +397 -0
- package/dist/interfaces/rest/schemas/checkout.d.ts +160 -0
- package/dist/interfaces/rest/schemas/checkout.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/checkout.js +60 -0
- package/dist/interfaces/rest/schemas/customer-portal.d.ts +2197 -0
- package/dist/interfaces/rest/schemas/customer-portal.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/customer-portal.js +177 -0
- package/dist/interfaces/rest/schemas/inventory.d.ts +469 -0
- package/dist/interfaces/rest/schemas/inventory.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/inventory.js +128 -0
- package/dist/interfaces/rest/schemas/media.d.ts +303 -0
- package/dist/interfaces/rest/schemas/media.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/media.js +69 -0
- package/dist/interfaces/rest/schemas/orders.d.ts +1782 -0
- package/dist/interfaces/rest/schemas/orders.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/orders.js +93 -0
- package/dist/interfaces/rest/schemas/pricing.d.ts +256 -0
- package/dist/interfaces/rest/schemas/pricing.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/pricing.js +72 -0
- package/dist/interfaces/rest/schemas/promotions.d.ts +363 -0
- package/dist/interfaces/rest/schemas/promotions.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/promotions.js +98 -0
- package/dist/interfaces/rest/schemas/responses.d.ts +4062 -0
- package/dist/interfaces/rest/schemas/responses.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/responses.js +63 -0
- package/dist/interfaces/rest/schemas/search.d.ts +245 -0
- package/dist/interfaces/rest/schemas/search.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/search.js +55 -0
- package/dist/interfaces/rest/schemas/shared.d.ts +95 -0
- package/dist/interfaces/rest/schemas/shared.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/shared.js +51 -0
- package/dist/interfaces/rest/schemas/webhooks.d.ts +221 -0
- package/dist/interfaces/rest/schemas/webhooks.d.ts.map +1 -0
- package/dist/interfaces/rest/schemas/webhooks.js +62 -0
- package/dist/interfaces/rest/utils.d.ts +45 -0
- package/dist/interfaces/rest/utils.d.ts.map +1 -0
- package/dist/interfaces/rest/utils.js +71 -0
- package/dist/interfaces/rest/webhook-router.d.ts +41 -0
- package/dist/interfaces/rest/webhook-router.d.ts.map +1 -0
- package/dist/interfaces/rest/webhook-router.js +36 -0
- package/dist/kernel/compensation/executor.d.ts +21 -0
- package/dist/kernel/compensation/executor.d.ts.map +1 -0
- package/dist/kernel/compensation/executor.js +36 -0
- package/dist/kernel/compensation/types.d.ts +25 -0
- package/dist/kernel/compensation/types.d.ts.map +1 -0
- package/dist/kernel/compensation/types.js +1 -0
- package/dist/kernel/database/adapter.d.ts +10 -0
- package/dist/kernel/database/adapter.d.ts.map +1 -0
- package/dist/kernel/database/adapter.js +3 -0
- package/dist/kernel/database/drizzle-db.d.ts +49 -0
- package/dist/kernel/database/drizzle-db.d.ts.map +1 -0
- package/dist/kernel/database/drizzle-db.js +20 -0
- package/dist/kernel/database/migrate.d.ts +38 -0
- package/dist/kernel/database/migrate.d.ts.map +1 -0
- package/dist/kernel/database/migrate.js +61 -0
- package/dist/kernel/database/plugin-types.d.ts +32 -0
- package/dist/kernel/database/plugin-types.d.ts.map +1 -0
- package/dist/kernel/database/plugin-types.js +10 -0
- package/dist/kernel/database/schema.d.ts +24 -0
- package/dist/kernel/database/schema.d.ts.map +1 -0
- package/dist/kernel/database/schema.js +36 -0
- package/dist/kernel/database/scoped-db.d.ts +20 -0
- package/dist/kernel/database/scoped-db.d.ts.map +1 -0
- package/dist/kernel/database/scoped-db.js +62 -0
- package/dist/kernel/database/tx-context.d.ts +15 -0
- package/dist/kernel/database/tx-context.d.ts.map +1 -0
- package/dist/kernel/database/tx-context.js +19 -0
- package/dist/kernel/error-mapper.d.ts +3 -0
- package/dist/kernel/error-mapper.d.ts.map +1 -0
- package/dist/kernel/error-mapper.js +12 -0
- package/dist/kernel/errors.d.ts +38 -0
- package/dist/kernel/errors.d.ts.map +1 -0
- package/dist/kernel/errors.js +69 -0
- package/dist/kernel/factory/in-memory-repository-factory.d.ts +20 -0
- package/dist/kernel/factory/in-memory-repository-factory.d.ts.map +1 -0
- package/dist/kernel/factory/in-memory-repository-factory.js +83 -0
- package/dist/kernel/factory/repository-factory.d.ts +71 -0
- package/dist/kernel/factory/repository-factory.d.ts.map +1 -0
- package/dist/kernel/factory/repository-factory.js +136 -0
- package/dist/kernel/hooks/create-context.d.ts +25 -0
- package/dist/kernel/hooks/create-context.d.ts.map +1 -0
- package/dist/kernel/hooks/create-context.js +22 -0
- package/dist/kernel/hooks/executor.d.ts +12 -0
- package/dist/kernel/hooks/executor.d.ts.map +1 -0
- package/dist/kernel/hooks/executor.js +50 -0
- package/dist/kernel/hooks/registry.d.ts +28 -0
- package/dist/kernel/hooks/registry.d.ts.map +1 -0
- package/dist/kernel/hooks/registry.js +58 -0
- package/dist/kernel/hooks/types.d.ts +37 -0
- package/dist/kernel/hooks/types.d.ts.map +1 -0
- package/dist/kernel/hooks/types.js +1 -0
- package/dist/kernel/http-error.d.ts +30 -0
- package/dist/kernel/http-error.d.ts.map +1 -0
- package/dist/kernel/http-error.js +35 -0
- package/dist/kernel/jobs/adapter.d.ts +25 -0
- package/dist/kernel/jobs/adapter.d.ts.map +1 -0
- package/dist/kernel/jobs/adapter.js +9 -0
- package/dist/kernel/jobs/drizzle-adapter.d.ts +15 -0
- package/dist/kernel/jobs/drizzle-adapter.d.ts.map +1 -0
- package/dist/kernel/jobs/drizzle-adapter.js +42 -0
- package/dist/kernel/jobs/runner.d.ts +24 -0
- package/dist/kernel/jobs/runner.d.ts.map +1 -0
- package/dist/kernel/jobs/runner.js +114 -0
- package/dist/kernel/jobs/schema.d.ts +280 -0
- package/dist/kernel/jobs/schema.d.ts.map +1 -0
- package/dist/kernel/jobs/schema.js +37 -0
- package/dist/kernel/jobs/types.d.ts +30 -0
- package/dist/kernel/jobs/types.d.ts.map +1 -0
- package/dist/kernel/jobs/types.js +1 -0
- package/dist/kernel/local-api.d.ts +103 -0
- package/dist/kernel/local-api.d.ts.map +1 -0
- package/dist/kernel/local-api.js +87 -0
- package/dist/kernel/plugin/capability-registry.d.ts +9 -0
- package/dist/kernel/plugin/capability-registry.d.ts.map +1 -0
- package/dist/kernel/plugin/capability-registry.js +28 -0
- package/dist/kernel/plugin/dependency-graph.d.ts +6 -0
- package/dist/kernel/plugin/dependency-graph.d.ts.map +1 -0
- package/dist/kernel/plugin/dependency-graph.js +55 -0
- package/dist/kernel/plugin/manifest.d.ts +90 -0
- package/dist/kernel/plugin/manifest.d.ts.map +1 -0
- package/dist/kernel/plugin/manifest.js +140 -0
- package/dist/kernel/query/executor.d.ts +21 -0
- package/dist/kernel/query/executor.d.ts.map +1 -0
- package/dist/kernel/query/executor.js +128 -0
- package/dist/kernel/query/registry.d.ts +33 -0
- package/dist/kernel/query/registry.d.ts.map +1 -0
- package/dist/kernel/query/registry.js +20 -0
- package/dist/kernel/result.d.ts +36 -0
- package/dist/kernel/result.d.ts.map +1 -0
- package/dist/kernel/result.js +16 -0
- package/dist/kernel/schema/extra-columns.d.ts +23 -0
- package/dist/kernel/schema/extra-columns.d.ts.map +1 -0
- package/dist/kernel/schema/extra-columns.js +10 -0
- package/dist/kernel/service-registry.d.ts +109 -0
- package/dist/kernel/service-registry.d.ts.map +1 -0
- package/dist/kernel/service-registry.js +26 -0
- package/dist/kernel/service-timing.d.ts +25 -0
- package/dist/kernel/service-timing.d.ts.map +1 -0
- package/dist/kernel/service-timing.js +62 -0
- package/dist/kernel/state-machine/machine.d.ts +24 -0
- package/dist/kernel/state-machine/machine.d.ts.map +1 -0
- package/dist/kernel/state-machine/machine.js +70 -0
- package/dist/modules/analytics/cubes.d.ts +19 -0
- package/dist/modules/analytics/cubes.d.ts.map +1 -0
- package/dist/modules/analytics/cubes.js +187 -0
- package/dist/modules/analytics/drizzle-adapter.d.ts +13 -0
- package/dist/modules/analytics/drizzle-adapter.d.ts.map +1 -0
- package/dist/modules/analytics/drizzle-adapter.js +358 -0
- package/dist/modules/analytics/hooks.d.ts +13 -0
- package/dist/modules/analytics/hooks.d.ts.map +1 -0
- package/dist/modules/analytics/hooks.js +12 -0
- package/dist/modules/analytics/models.d.ts +14 -0
- package/dist/modules/analytics/models.d.ts.map +1 -0
- package/dist/modules/analytics/models.js +118 -0
- package/dist/modules/analytics/repository/index.d.ts +5 -0
- package/dist/modules/analytics/repository/index.d.ts.map +1 -0
- package/dist/modules/analytics/repository/index.js +1 -0
- package/dist/modules/analytics/service.d.ts +45 -0
- package/dist/modules/analytics/service.d.ts.map +1 -0
- package/dist/modules/analytics/service.js +196 -0
- package/dist/modules/analytics/types.d.ts +119 -0
- package/dist/modules/analytics/types.d.ts.map +1 -0
- package/dist/modules/analytics/types.js +25 -0
- package/dist/modules/audit/hooks.d.ts +7 -0
- package/dist/modules/audit/hooks.d.ts.map +1 -0
- package/dist/modules/audit/hooks.js +67 -0
- package/dist/modules/audit/schema.d.ts +178 -0
- package/dist/modules/audit/schema.d.ts.map +1 -0
- package/dist/modules/audit/schema.js +21 -0
- package/dist/modules/audit/service.d.ts +38 -0
- package/dist/modules/audit/service.d.ts.map +1 -0
- package/dist/modules/audit/service.js +109 -0
- package/dist/modules/cart/access.d.ts +11 -0
- package/dist/modules/cart/access.d.ts.map +1 -0
- package/dist/modules/cart/access.js +18 -0
- package/dist/modules/cart/matcher.d.ts +20 -0
- package/dist/modules/cart/matcher.d.ts.map +1 -0
- package/dist/modules/cart/matcher.js +2 -0
- package/dist/modules/cart/repository/in-memory.d.ts +30 -0
- package/dist/modules/cart/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/cart/repository/in-memory.js +159 -0
- package/dist/modules/cart/repository/index.d.ts +45 -0
- package/dist/modules/cart/repository/index.d.ts.map +1 -0
- package/dist/modules/cart/repository/index.js +158 -0
- package/dist/modules/cart/schema.d.ts +359 -0
- package/dist/modules/cart/schema.d.ts.map +1 -0
- package/dist/modules/cart/schema.js +40 -0
- package/dist/modules/cart/schemas.d.ts +29 -0
- package/dist/modules/cart/schemas.d.ts.map +1 -0
- package/dist/modules/cart/schemas.js +14 -0
- package/dist/modules/cart/service.d.ts +63 -0
- package/dist/modules/cart/service.d.ts.map +1 -0
- package/dist/modules/cart/service.js +339 -0
- package/dist/modules/catalog/repository/in-memory.d.ts +82 -0
- package/dist/modules/catalog/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/catalog/repository/in-memory.js +444 -0
- package/dist/modules/catalog/repository/index.d.ts +106 -0
- package/dist/modules/catalog/repository/index.d.ts.map +1 -0
- package/dist/modules/catalog/repository/index.js +455 -0
- package/dist/modules/catalog/schema.d.ts +1193 -0
- package/dist/modules/catalog/schema.d.ts.map +1 -0
- package/dist/modules/catalog/schema.js +149 -0
- package/dist/modules/catalog/schemas.d.ts +81 -0
- package/dist/modules/catalog/schemas.d.ts.map +1 -0
- package/dist/modules/catalog/schemas.js +62 -0
- package/dist/modules/catalog/service.d.ts +160 -0
- package/dist/modules/catalog/service.d.ts.map +1 -0
- package/dist/modules/catalog/service.js +759 -0
- package/dist/modules/customers/repository/in-memory.d.ts +37 -0
- package/dist/modules/customers/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/customers/repository/in-memory.js +278 -0
- package/dist/modules/customers/repository/index.d.ts +47 -0
- package/dist/modules/customers/repository/index.d.ts.map +1 -0
- package/dist/modules/customers/repository/index.js +206 -0
- package/dist/modules/customers/schema.d.ts +560 -0
- package/dist/modules/customers/schema.d.ts.map +1 -0
- package/dist/modules/customers/schema.js +60 -0
- package/dist/modules/customers/service.d.ts +25 -0
- package/dist/modules/customers/service.d.ts.map +1 -0
- package/dist/modules/customers/service.js +91 -0
- package/dist/modules/fulfillment/repository/in-memory.d.ts +53 -0
- package/dist/modules/fulfillment/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/fulfillment/repository/in-memory.js +327 -0
- package/dist/modules/fulfillment/repository/index.d.ts +63 -0
- package/dist/modules/fulfillment/repository/index.d.ts.map +1 -0
- package/dist/modules/fulfillment/repository/index.js +268 -0
- package/dist/modules/fulfillment/schema.d.ts +655 -0
- package/dist/modules/fulfillment/schema.d.ts.map +1 -0
- package/dist/modules/fulfillment/schema.js +83 -0
- package/dist/modules/fulfillment/service.d.ts +58 -0
- package/dist/modules/fulfillment/service.d.ts.map +1 -0
- package/dist/modules/fulfillment/service.js +338 -0
- package/dist/modules/fulfillment/types.d.ts +44 -0
- package/dist/modules/fulfillment/types.d.ts.map +1 -0
- package/dist/modules/fulfillment/types.js +1 -0
- package/dist/modules/inventory/repository/in-memory.d.ts +51 -0
- package/dist/modules/inventory/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/inventory/repository/in-memory.js +281 -0
- package/dist/modules/inventory/repository/index.d.ts +81 -0
- package/dist/modules/inventory/repository/index.d.ts.map +1 -0
- package/dist/modules/inventory/repository/index.js +310 -0
- package/dist/modules/inventory/schema.d.ts +570 -0
- package/dist/modules/inventory/schema.d.ts.map +1 -0
- package/dist/modules/inventory/schema.js +69 -0
- package/dist/modules/inventory/schemas.d.ts +31 -0
- package/dist/modules/inventory/schemas.d.ts.map +1 -0
- package/dist/modules/inventory/schemas.js +28 -0
- package/dist/modules/inventory/service.d.ts +65 -0
- package/dist/modules/inventory/service.d.ts.map +1 -0
- package/dist/modules/inventory/service.js +271 -0
- package/dist/modules/media/adapter.d.ts +16 -0
- package/dist/modules/media/adapter.d.ts.map +1 -0
- package/dist/modules/media/adapter.js +1 -0
- package/dist/modules/media/repository/in-memory.d.ts +26 -0
- package/dist/modules/media/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/media/repository/in-memory.js +145 -0
- package/dist/modules/media/repository/index.d.ts +35 -0
- package/dist/modules/media/repository/index.d.ts.map +1 -0
- package/dist/modules/media/repository/index.js +176 -0
- package/dist/modules/media/schema.d.ts +289 -0
- package/dist/modules/media/schema.d.ts.map +1 -0
- package/dist/modules/media/schema.js +35 -0
- package/dist/modules/media/service.d.ts +42 -0
- package/dist/modules/media/service.d.ts.map +1 -0
- package/dist/modules/media/service.js +89 -0
- package/dist/modules/orders/repository/in-memory.d.ts +40 -0
- package/dist/modules/orders/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/orders/repository/in-memory.js +245 -0
- package/dist/modules/orders/repository/index.d.ts +48 -0
- package/dist/modules/orders/repository/index.d.ts.map +1 -0
- package/dist/modules/orders/repository/index.js +199 -0
- package/dist/modules/orders/schema.d.ts +672 -0
- package/dist/modules/orders/schema.d.ts.map +1 -0
- package/dist/modules/orders/schema.js +63 -0
- package/dist/modules/orders/service.d.ts +85 -0
- package/dist/modules/orders/service.d.ts.map +1 -0
- package/dist/modules/orders/service.js +313 -0
- package/dist/modules/orders/stale-order-cleanup.d.ts +27 -0
- package/dist/modules/orders/stale-order-cleanup.d.ts.map +1 -0
- package/dist/modules/orders/stale-order-cleanup.js +55 -0
- package/dist/modules/organization/service.d.ts +53 -0
- package/dist/modules/organization/service.d.ts.map +1 -0
- package/dist/modules/organization/service.js +151 -0
- package/dist/modules/payments/adapter.d.ts +42 -0
- package/dist/modules/payments/adapter.d.ts.map +1 -0
- package/dist/modules/payments/adapter.js +1 -0
- package/dist/modules/payments/repository/index.d.ts +5 -0
- package/dist/modules/payments/repository/index.d.ts.map +1 -0
- package/dist/modules/payments/repository/index.js +1 -0
- package/dist/modules/payments/service.d.ts +23 -0
- package/dist/modules/payments/service.d.ts.map +1 -0
- package/dist/modules/payments/service.js +72 -0
- package/dist/modules/pricing/repository/in-memory.d.ts +25 -0
- package/dist/modules/pricing/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/pricing/repository/in-memory.js +288 -0
- package/dist/modules/pricing/repository/index.d.ts +34 -0
- package/dist/modules/pricing/repository/index.d.ts.map +1 -0
- package/dist/modules/pricing/repository/index.js +176 -0
- package/dist/modules/pricing/schema.d.ts +565 -0
- package/dist/modules/pricing/schema.d.ts.map +1 -0
- package/dist/modules/pricing/schema.js +57 -0
- package/dist/modules/pricing/schemas.d.ts +37 -0
- package/dist/modules/pricing/schemas.d.ts.map +1 -0
- package/dist/modules/pricing/schemas.js +30 -0
- package/dist/modules/pricing/service.d.ts +62 -0
- package/dist/modules/pricing/service.d.ts.map +1 -0
- package/dist/modules/pricing/service.js +308 -0
- package/dist/modules/promotions/repository/in-memory.d.ts +32 -0
- package/dist/modules/promotions/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/promotions/repository/in-memory.js +227 -0
- package/dist/modules/promotions/repository/index.d.ts +41 -0
- package/dist/modules/promotions/repository/index.d.ts.map +1 -0
- package/dist/modules/promotions/repository/index.js +204 -0
- package/dist/modules/promotions/schema.d.ts +427 -0
- package/dist/modules/promotions/schema.d.ts.map +1 -0
- package/dist/modules/promotions/schema.js +52 -0
- package/dist/modules/promotions/schemas.d.ts +33 -0
- package/dist/modules/promotions/schemas.d.ts.map +1 -0
- package/dist/modules/promotions/schemas.js +32 -0
- package/dist/modules/promotions/service.d.ts +80 -0
- package/dist/modules/promotions/service.d.ts.map +1 -0
- package/dist/modules/promotions/service.js +347 -0
- package/dist/modules/search/adapter.d.ts +51 -0
- package/dist/modules/search/adapter.d.ts.map +1 -0
- package/dist/modules/search/adapter.js +1 -0
- package/dist/modules/search/hooks.d.ts +8 -0
- package/dist/modules/search/hooks.d.ts.map +1 -0
- package/dist/modules/search/hooks.js +6 -0
- package/dist/modules/search/repository/index.d.ts +5 -0
- package/dist/modules/search/repository/index.d.ts.map +1 -0
- package/dist/modules/search/repository/index.js +1 -0
- package/dist/modules/search/service.d.ts +24 -0
- package/dist/modules/search/service.d.ts.map +1 -0
- package/dist/modules/search/service.js +217 -0
- package/dist/modules/shipping/calculator.d.ts +42 -0
- package/dist/modules/shipping/calculator.d.ts.map +1 -0
- package/dist/modules/shipping/calculator.js +91 -0
- package/dist/modules/shipping/repository/index.d.ts +5 -0
- package/dist/modules/shipping/repository/index.d.ts.map +1 -0
- package/dist/modules/shipping/repository/index.js +1 -0
- package/dist/modules/shipping/service.d.ts +28 -0
- package/dist/modules/shipping/service.d.ts.map +1 -0
- package/dist/modules/shipping/service.js +20 -0
- package/dist/modules/tax/adapter.d.ts +58 -0
- package/dist/modules/tax/adapter.d.ts.map +1 -0
- package/dist/modules/tax/adapter.js +1 -0
- package/dist/modules/tax/repository/index.d.ts +5 -0
- package/dist/modules/tax/repository/index.d.ts.map +1 -0
- package/dist/modules/tax/repository/index.js +1 -0
- package/dist/modules/tax/service.d.ts +19 -0
- package/dist/modules/tax/service.d.ts.map +1 -0
- package/dist/modules/tax/service.js +34 -0
- package/dist/modules/webhooks/hook.d.ts +13 -0
- package/dist/modules/webhooks/hook.d.ts.map +1 -0
- package/dist/modules/webhooks/hook.js +29 -0
- package/dist/modules/webhooks/repository/in-memory.d.ts +31 -0
- package/dist/modules/webhooks/repository/in-memory.d.ts.map +1 -0
- package/dist/modules/webhooks/repository/in-memory.js +187 -0
- package/dist/modules/webhooks/repository/index.d.ts +40 -0
- package/dist/modules/webhooks/repository/index.d.ts.map +1 -0
- package/dist/modules/webhooks/repository/index.js +175 -0
- package/dist/modules/webhooks/schema.d.ts +404 -0
- package/dist/modules/webhooks/schema.d.ts.map +1 -0
- package/dist/modules/webhooks/schema.js +40 -0
- package/dist/modules/webhooks/service.d.ts +23 -0
- package/dist/modules/webhooks/service.d.ts.map +1 -0
- package/dist/modules/webhooks/service.js +92 -0
- package/dist/modules/webhooks/signing.d.ts +2 -0
- package/dist/modules/webhooks/signing.d.ts.map +1 -0
- package/dist/modules/webhooks/signing.js +5 -0
- package/dist/modules/webhooks/ssrf-guard.d.ts +19 -0
- package/dist/modules/webhooks/ssrf-guard.d.ts.map +1 -0
- package/dist/modules/webhooks/ssrf-guard.js +79 -0
- package/dist/modules/webhooks/tasks.d.ts +16 -0
- package/dist/modules/webhooks/tasks.d.ts.map +1 -0
- package/dist/modules/webhooks/tasks.js +35 -0
- package/dist/modules/webhooks/worker.d.ts +21 -0
- package/dist/modules/webhooks/worker.d.ts.map +1 -0
- package/dist/modules/webhooks/worker.js +113 -0
- package/dist/runtime/commerce.d.ts +110 -0
- package/dist/runtime/commerce.d.ts.map +1 -0
- package/dist/runtime/commerce.js +37 -0
- package/dist/runtime/kernel.d.ts +72 -0
- package/dist/runtime/kernel.d.ts.map +1 -0
- package/dist/runtime/kernel.js +298 -0
- package/dist/runtime/logger.d.ts +11 -0
- package/dist/runtime/logger.d.ts.map +1 -0
- package/dist/runtime/logger.js +32 -0
- package/dist/runtime/server.d.ts +28 -0
- package/dist/runtime/server.d.ts.map +1 -0
- package/dist/runtime/server.js +277 -0
- package/dist/runtime/shutdown.d.ts +15 -0
- package/dist/runtime/shutdown.d.ts.map +1 -0
- package/dist/runtime/shutdown.js +34 -0
- package/dist/runtime/state-manager.d.ts +14 -0
- package/dist/runtime/state-manager.d.ts.map +1 -0
- package/dist/runtime/state-manager.js +84 -0
- package/dist/runtime/state-repository.d.ts +13 -0
- package/dist/runtime/state-repository.d.ts.map +1 -0
- package/dist/runtime/state-repository.js +160 -0
- package/dist/runtime/state.d.ts +382 -0
- package/dist/runtime/state.d.ts.map +1 -0
- package/dist/runtime/state.js +37 -0
- package/dist/runtime/store.d.ts +382 -0
- package/dist/runtime/store.d.ts.map +1 -0
- package/dist/runtime/store.js +37 -0
- package/dist/test-utils/create-pglite-adapter.d.ts +32 -0
- package/dist/test-utils/create-pglite-adapter.d.ts.map +1 -0
- package/dist/test-utils/create-pglite-adapter.js +106 -0
- package/dist/test-utils/create-plugin-test-app.d.ts +50 -0
- package/dist/test-utils/create-plugin-test-app.d.ts.map +1 -0
- package/dist/test-utils/create-plugin-test-app.js +74 -0
- package/dist/test-utils/create-repository-test-harness.d.ts +8 -0
- package/dist/test-utils/create-repository-test-harness.d.ts.map +1 -0
- package/dist/test-utils/create-repository-test-harness.js +7 -0
- package/dist/test-utils/create-test-config.d.ts +18 -0
- package/dist/test-utils/create-test-config.d.ts.map +1 -0
- package/dist/test-utils/create-test-config.js +174 -0
- package/dist/test-utils/create-test-kernel.d.ts +3 -0
- package/dist/test-utils/create-test-kernel.d.ts.map +1 -0
- package/dist/test-utils/create-test-kernel.js +5 -0
- package/dist/test-utils/create-test-plugin-context.d.ts +42 -0
- package/dist/test-utils/create-test-plugin-context.d.ts.map +1 -0
- package/dist/test-utils/create-test-plugin-context.js +46 -0
- package/dist/test-utils/rest-api-test-utils.d.ts +64 -0
- package/dist/test-utils/rest-api-test-utils.d.ts.map +1 -0
- package/dist/test-utils/rest-api-test-utils.js +207 -0
- package/dist/test-utils/test-actors.d.ts +15 -0
- package/dist/test-utils/test-actors.d.ts.map +1 -0
- package/dist/test-utils/test-actors.js +57 -0
- package/dist/test-utils/typed-hooks.d.ts +43 -0
- package/dist/test-utils/typed-hooks.d.ts.map +1 -0
- package/dist/test-utils/typed-hooks.js +35 -0
- package/dist/tsconfig.tsbuildinfo +1 -0
- package/dist/types/commerce-types.d.ts +34 -0
- package/dist/types/commerce-types.d.ts.map +1 -0
- package/dist/types/commerce-types.js +1 -0
- package/dist/utils/id.d.ts +2 -0
- package/dist/utils/id.d.ts.map +1 -0
- package/dist/utils/id.js +3 -0
- package/dist/utils/logger.d.ts +3 -0
- package/dist/utils/logger.d.ts.map +1 -0
- package/dist/utils/logger.js +16 -0
- package/dist/utils/pagination.d.ts +11 -0
- package/dist/utils/pagination.d.ts.map +1 -0
- package/dist/utils/pagination.js +15 -0
- package/package.json +63 -0
- package/src/adapters/console-email.ts +43 -0
- package/src/auth/access.ts +187 -0
- package/src/auth/auth-schema.ts +131 -0
- package/src/auth/middleware.ts +115 -0
- package/src/auth/org.ts +41 -0
- package/src/auth/permissions.ts +28 -0
- package/src/auth/setup.ts +160 -0
- package/src/auth/system-actor.ts +19 -0
- package/src/auth/types.ts +10 -0
- package/src/config/defaults.ts +82 -0
- package/src/config/define-config.ts +53 -0
- package/src/config/types.ts +299 -0
- package/src/generated/plugin-capabilities.d.ts +20 -0
- package/src/generated/plugin-manifest.ts +23 -0
- package/src/generated/plugin-repositories.d.ts +20 -0
- package/src/hooks/checkout-completion.ts +262 -0
- package/src/hooks/checkout.ts +677 -0
- package/src/hooks/order-emails.ts +62 -0
- package/src/index.ts +214 -0
- package/src/interfaces/mcp/agent-prompt.ts +174 -0
- package/src/interfaces/mcp/context-enrichment.ts +177 -0
- package/src/interfaces/mcp/server.ts +617 -0
- package/src/interfaces/mcp/transport.ts +68 -0
- package/src/interfaces/rest/customer-portal.ts +299 -0
- package/src/interfaces/rest/index.ts +74 -0
- package/src/interfaces/rest/router.ts +334 -0
- package/src/interfaces/rest/routes/admin-jobs.ts +58 -0
- package/src/interfaces/rest/routes/audit.ts +50 -0
- package/src/interfaces/rest/routes/carts.ts +89 -0
- package/src/interfaces/rest/routes/catalog.ts +493 -0
- package/src/interfaces/rest/routes/checkout.ts +283 -0
- package/src/interfaces/rest/routes/inventory.ts +70 -0
- package/src/interfaces/rest/routes/media.ts +86 -0
- package/src/interfaces/rest/routes/orders.ts +78 -0
- package/src/interfaces/rest/routes/payments.ts +60 -0
- package/src/interfaces/rest/routes/pricing.ts +57 -0
- package/src/interfaces/rest/routes/promotions.ts +92 -0
- package/src/interfaces/rest/routes/search.ts +71 -0
- package/src/interfaces/rest/routes/webhooks.ts +46 -0
- package/src/interfaces/rest/schemas/admin-jobs.ts +40 -0
- package/src/interfaces/rest/schemas/audit.ts +46 -0
- package/src/interfaces/rest/schemas/carts.ts +125 -0
- package/src/interfaces/rest/schemas/catalog.ts +450 -0
- package/src/interfaces/rest/schemas/checkout.ts +66 -0
- package/src/interfaces/rest/schemas/customer-portal.ts +195 -0
- package/src/interfaces/rest/schemas/inventory.ts +138 -0
- package/src/interfaces/rest/schemas/media.ts +75 -0
- package/src/interfaces/rest/schemas/orders.ts +104 -0
- package/src/interfaces/rest/schemas/pricing.ts +80 -0
- package/src/interfaces/rest/schemas/promotions.ts +110 -0
- package/src/interfaces/rest/schemas/responses.ts +85 -0
- package/src/interfaces/rest/schemas/search.ts +58 -0
- package/src/interfaces/rest/schemas/shared.ts +62 -0
- package/src/interfaces/rest/schemas/webhooks.ts +68 -0
- package/src/interfaces/rest/utils.ts +104 -0
- package/src/interfaces/rest/webhook-router.ts +50 -0
- package/src/kernel/compensation/executor.ts +61 -0
- package/src/kernel/compensation/types.ts +26 -0
- package/src/kernel/database/adapter.ts +13 -0
- package/src/kernel/database/drizzle-db.ts +56 -0
- package/src/kernel/database/migrate.ts +76 -0
- package/src/kernel/database/plugin-types.ts +34 -0
- package/src/kernel/database/schema.ts +49 -0
- package/src/kernel/database/scoped-db.ts +68 -0
- package/src/kernel/database/tx-context.ts +46 -0
- package/src/kernel/error-mapper.ts +15 -0
- package/src/kernel/errors.ts +89 -0
- package/src/kernel/factory/repository-factory.ts +242 -0
- package/src/kernel/hooks/create-context.ts +43 -0
- package/src/kernel/hooks/executor.ts +88 -0
- package/src/kernel/hooks/registry.ts +74 -0
- package/src/kernel/hooks/types.ts +52 -0
- package/src/kernel/http-error.ts +44 -0
- package/src/kernel/jobs/adapter.ts +36 -0
- package/src/kernel/jobs/drizzle-adapter.ts +58 -0
- package/src/kernel/jobs/runner.ts +153 -0
- package/src/kernel/jobs/schema.ts +46 -0
- package/src/kernel/jobs/types.ts +30 -0
- package/src/kernel/local-api.ts +185 -0
- package/src/kernel/plugin/manifest.ts +253 -0
- package/src/kernel/query/executor.ts +184 -0
- package/src/kernel/query/registry.ts +46 -0
- package/src/kernel/result.ts +33 -0
- package/src/kernel/schema/extra-columns.ts +37 -0
- package/src/kernel/service-registry.ts +76 -0
- package/src/kernel/service-timing.ts +89 -0
- package/src/kernel/state-machine/machine.ts +101 -0
- package/src/modules/analytics/drizzle-adapter.ts +426 -0
- package/src/modules/analytics/hooks.ts +11 -0
- package/src/modules/analytics/models.ts +125 -0
- package/src/modules/analytics/repository/index.ts +6 -0
- package/src/modules/analytics/service.ts +245 -0
- package/src/modules/analytics/types.ts +180 -0
- package/src/modules/audit/hooks.ts +78 -0
- package/src/modules/audit/schema.ts +33 -0
- package/src/modules/audit/service.ts +151 -0
- package/src/modules/cart/access.ts +27 -0
- package/src/modules/cart/matcher.ts +26 -0
- package/src/modules/cart/repository/index.ts +234 -0
- package/src/modules/cart/schema.ts +42 -0
- package/src/modules/cart/schemas.ts +38 -0
- package/src/modules/cart/service.ts +541 -0
- package/src/modules/catalog/repository/index.ts +772 -0
- package/src/modules/catalog/schema.ts +203 -0
- package/src/modules/catalog/schemas.ts +104 -0
- package/src/modules/catalog/service.ts +1544 -0
- package/src/modules/customers/repository/index.ts +327 -0
- package/src/modules/customers/schema.ts +64 -0
- package/src/modules/customers/service.ts +171 -0
- package/src/modules/fulfillment/repository/index.ts +426 -0
- package/src/modules/fulfillment/schema.ts +101 -0
- package/src/modules/fulfillment/service.ts +555 -0
- package/src/modules/fulfillment/types.ts +59 -0
- package/src/modules/inventory/repository/index.ts +509 -0
- package/src/modules/inventory/schema.ts +94 -0
- package/src/modules/inventory/schemas.ts +38 -0
- package/src/modules/inventory/service.ts +490 -0
- package/src/modules/media/adapter.ts +17 -0
- package/src/modules/media/repository/index.ts +274 -0
- package/src/modules/media/schema.ts +41 -0
- package/src/modules/media/service.ts +151 -0
- package/src/modules/orders/repository/index.ts +287 -0
- package/src/modules/orders/schema.ts +66 -0
- package/src/modules/orders/service.ts +619 -0
- package/src/modules/orders/stale-order-cleanup.ts +76 -0
- package/src/modules/organization/service.ts +191 -0
- package/src/modules/payments/adapter.ts +47 -0
- package/src/modules/payments/repository/index.ts +6 -0
- package/src/modules/payments/service.ts +107 -0
- package/src/modules/pricing/repository/index.ts +291 -0
- package/src/modules/pricing/schema.ts +71 -0
- package/src/modules/pricing/schemas.ts +38 -0
- package/src/modules/pricing/service.ts +494 -0
- package/src/modules/promotions/repository/index.ts +325 -0
- package/src/modules/promotions/schema.ts +62 -0
- package/src/modules/promotions/schemas.ts +38 -0
- package/src/modules/promotions/service.ts +598 -0
- package/src/modules/search/adapter.ts +57 -0
- package/src/modules/search/hooks.ts +12 -0
- package/src/modules/search/repository/index.ts +6 -0
- package/src/modules/search/service.ts +315 -0
- package/src/modules/shipping/calculator.ts +188 -0
- package/src/modules/shipping/repository/index.ts +6 -0
- package/src/modules/shipping/service.ts +51 -0
- package/src/modules/tax/adapter.ts +60 -0
- package/src/modules/tax/repository/index.ts +6 -0
- package/src/modules/tax/service.ts +53 -0
- package/src/modules/webhooks/hook.ts +34 -0
- package/src/modules/webhooks/repository/index.ts +278 -0
- package/src/modules/webhooks/schema.ts +56 -0
- package/src/modules/webhooks/service.ts +117 -0
- package/src/modules/webhooks/signing.ts +6 -0
- package/src/modules/webhooks/ssrf-guard.ts +71 -0
- package/src/modules/webhooks/tasks.ts +52 -0
- package/src/modules/webhooks/worker.ts +134 -0
- package/src/runtime/commerce.ts +145 -0
- package/src/runtime/kernel.ts +419 -0
- package/src/runtime/logger.ts +36 -0
- package/src/runtime/server.ts +345 -0
- package/src/runtime/shutdown.ts +43 -0
- package/src/test-utils/create-pglite-adapter.ts +129 -0
- package/src/test-utils/create-plugin-test-app.ts +128 -0
- package/src/test-utils/create-repository-test-harness.ts +16 -0
- package/src/test-utils/create-test-config.ts +190 -0
- package/src/test-utils/create-test-kernel.ts +7 -0
- package/src/test-utils/create-test-plugin-context.ts +75 -0
- package/src/test-utils/rest-api-test-utils.ts +265 -0
- package/src/test-utils/test-actors.ts +62 -0
- package/src/test-utils/typed-hooks.ts +54 -0
- package/src/types/commerce-types.ts +34 -0
- package/src/utils/id.ts +3 -0
- package/src/utils/logger.ts +18 -0
- package/src/utils/pagination.ts +22 -0
|
@@ -0,0 +1,34 @@
|
|
|
1
|
+
import type { AfterHook } from "../../kernel/hooks/types";
|
|
2
|
+
|
|
3
|
+
/**
|
|
4
|
+
* Webhook delivery hook — enqueues delivery jobs instead of blocking.
|
|
5
|
+
*
|
|
6
|
+
* Previously, this hook made synchronous HTTP calls to each webhook endpoint
|
|
7
|
+
* inside the request handler, blocking the response for seconds if endpoints
|
|
8
|
+
* were slow or down.
|
|
9
|
+
*
|
|
10
|
+
* Now it enqueues a background job per endpoint. The job runner delivers
|
|
11
|
+
* asynchronously with retries. The HTTP response returns immediately.
|
|
12
|
+
*/
|
|
13
|
+
export const deliverWebhooks: AfterHook<unknown> = async ({ result, operation, context }) => {
|
|
14
|
+
const eventName = `${String(context.context.moduleName ?? "unknown")}.${operation}`;
|
|
15
|
+
const webhooksService = context.services.webhooks as {
|
|
16
|
+
getEndpointsForEvent(event: string): Promise<{ ok: boolean; value: Array<{ id: string; url: string; secret: string }> }>;
|
|
17
|
+
};
|
|
18
|
+
|
|
19
|
+
const endpoints = await webhooksService.getEndpointsForEvent(eventName);
|
|
20
|
+
if (!endpoints.ok) return;
|
|
21
|
+
|
|
22
|
+
for (const endpoint of endpoints.value) {
|
|
23
|
+
await context.jobs.enqueue("webhooks/deliver", {
|
|
24
|
+
endpointId: endpoint.id,
|
|
25
|
+
endpointUrl: endpoint.url,
|
|
26
|
+
endpointSecret: endpoint.secret,
|
|
27
|
+
eventName,
|
|
28
|
+
payload: result,
|
|
29
|
+
}, {
|
|
30
|
+
maxAttempts: 5,
|
|
31
|
+
queue: "webhooks",
|
|
32
|
+
});
|
|
33
|
+
}
|
|
34
|
+
};
|
|
@@ -0,0 +1,278 @@
|
|
|
1
|
+
import { eq, and, lte, isNull, or, desc, sql } from "drizzle-orm";
|
|
2
|
+
import type { TxContext } from "../../../kernel/database/tx-context";
|
|
3
|
+
import type {
|
|
4
|
+
DrizzleDatabase,
|
|
5
|
+
DbOrTx,
|
|
6
|
+
} from "../../../kernel/database/drizzle-db";
|
|
7
|
+
import { webhookEndpoints, webhookDeliveries } from "../schema";
|
|
8
|
+
|
|
9
|
+
// Infer types from Drizzle schema
|
|
10
|
+
export type WebhookEndpoint = typeof webhookEndpoints.$inferSelect;
|
|
11
|
+
export type WebhookEndpointInsert = typeof webhookEndpoints.$inferInsert;
|
|
12
|
+
export type WebhookDelivery = typeof webhookDeliveries.$inferSelect;
|
|
13
|
+
export type WebhookDeliveryInsert = typeof webhookDeliveries.$inferInsert;
|
|
14
|
+
|
|
15
|
+
/**
|
|
16
|
+
* WebhooksRepository provides type-safe database operations for webhooks.
|
|
17
|
+
*
|
|
18
|
+
* This repository manages webhook endpoints and their delivery tracking.
|
|
19
|
+
* All methods support an optional TxContext parameter for transaction participation.
|
|
20
|
+
*/
|
|
21
|
+
export class WebhooksRepository {
|
|
22
|
+
constructor(private readonly db: DrizzleDatabase) {}
|
|
23
|
+
|
|
24
|
+
private getDb(ctx?: TxContext): DbOrTx {
|
|
25
|
+
return (ctx?.tx as DbOrTx | undefined) ?? this.db;
|
|
26
|
+
}
|
|
27
|
+
|
|
28
|
+
// ─────────────────────────────────────────────────────────────────────────────
|
|
29
|
+
// Webhook Endpoints
|
|
30
|
+
// ─────────────────────────────────────────────────────────────────────────────
|
|
31
|
+
|
|
32
|
+
async findEndpointById(
|
|
33
|
+
id: string,
|
|
34
|
+
ctx?: TxContext,
|
|
35
|
+
): Promise<WebhookEndpoint | undefined> {
|
|
36
|
+
const db = this.getDb(ctx);
|
|
37
|
+
const rows = await db
|
|
38
|
+
.select()
|
|
39
|
+
.from(webhookEndpoints)
|
|
40
|
+
.where(eq(webhookEndpoints.id, id));
|
|
41
|
+
return rows[0];
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
async findAllEndpoints(ctx?: TxContext): Promise<WebhookEndpoint[]> {
|
|
45
|
+
const db = this.getDb(ctx);
|
|
46
|
+
return db.select().from(webhookEndpoints);
|
|
47
|
+
}
|
|
48
|
+
|
|
49
|
+
async findActiveEndpoints(ctx?: TxContext): Promise<WebhookEndpoint[]> {
|
|
50
|
+
const db = this.getDb(ctx);
|
|
51
|
+
return db
|
|
52
|
+
.select()
|
|
53
|
+
.from(webhookEndpoints)
|
|
54
|
+
.where(eq(webhookEndpoints.isActive, true));
|
|
55
|
+
}
|
|
56
|
+
|
|
57
|
+
async findEndpointsForEvent(
|
|
58
|
+
eventName: string,
|
|
59
|
+
ctx?: TxContext,
|
|
60
|
+
): Promise<WebhookEndpoint[]> {
|
|
61
|
+
const active = await this.findActiveEndpoints(ctx);
|
|
62
|
+
// Filter endpoints that subscribe to this event
|
|
63
|
+
return active.filter((endpoint) => {
|
|
64
|
+
const events = endpoint.events as string[];
|
|
65
|
+
return events.includes(eventName) || events.includes("*");
|
|
66
|
+
});
|
|
67
|
+
}
|
|
68
|
+
|
|
69
|
+
async createEndpoint(
|
|
70
|
+
data: WebhookEndpointInsert,
|
|
71
|
+
ctx?: TxContext,
|
|
72
|
+
): Promise<WebhookEndpoint> {
|
|
73
|
+
const db = this.getDb(ctx);
|
|
74
|
+
const rows = await db.insert(webhookEndpoints).values(data).returning();
|
|
75
|
+
return rows[0]!;
|
|
76
|
+
}
|
|
77
|
+
|
|
78
|
+
async updateEndpoint(
|
|
79
|
+
id: string,
|
|
80
|
+
data: Partial<Omit<WebhookEndpointInsert, "id">>,
|
|
81
|
+
ctx?: TxContext,
|
|
82
|
+
): Promise<WebhookEndpoint | undefined> {
|
|
83
|
+
const db = this.getDb(ctx);
|
|
84
|
+
const rows = await db
|
|
85
|
+
.update(webhookEndpoints)
|
|
86
|
+
.set(data)
|
|
87
|
+
.where(eq(webhookEndpoints.id, id))
|
|
88
|
+
.returning();
|
|
89
|
+
return rows[0];
|
|
90
|
+
}
|
|
91
|
+
|
|
92
|
+
async deleteEndpoint(id: string, ctx?: TxContext): Promise<boolean> {
|
|
93
|
+
const db = this.getDb(ctx);
|
|
94
|
+
const result = await db
|
|
95
|
+
.delete(webhookEndpoints)
|
|
96
|
+
.where(eq(webhookEndpoints.id, id))
|
|
97
|
+
.returning();
|
|
98
|
+
return result.length > 0;
|
|
99
|
+
}
|
|
100
|
+
|
|
101
|
+
async activateEndpoint(
|
|
102
|
+
id: string,
|
|
103
|
+
ctx?: TxContext,
|
|
104
|
+
): Promise<WebhookEndpoint | undefined> {
|
|
105
|
+
return this.updateEndpoint(id, { isActive: true }, ctx);
|
|
106
|
+
}
|
|
107
|
+
|
|
108
|
+
async deactivateEndpoint(
|
|
109
|
+
id: string,
|
|
110
|
+
ctx?: TxContext,
|
|
111
|
+
): Promise<WebhookEndpoint | undefined> {
|
|
112
|
+
return this.updateEndpoint(id, { isActive: false }, ctx);
|
|
113
|
+
}
|
|
114
|
+
|
|
115
|
+
// ─────────────────────────────────────────────────────────────────────────────
|
|
116
|
+
// Webhook Deliveries
|
|
117
|
+
// ─────────────────────────────────────────────────────────────────────────────
|
|
118
|
+
|
|
119
|
+
async findDeliveryById(
|
|
120
|
+
id: string,
|
|
121
|
+
ctx?: TxContext,
|
|
122
|
+
): Promise<WebhookDelivery | undefined> {
|
|
123
|
+
const db = this.getDb(ctx);
|
|
124
|
+
const rows = await db
|
|
125
|
+
.select()
|
|
126
|
+
.from(webhookDeliveries)
|
|
127
|
+
.where(eq(webhookDeliveries.id, id));
|
|
128
|
+
return rows[0];
|
|
129
|
+
}
|
|
130
|
+
|
|
131
|
+
async findDeliveriesByEndpointId(
|
|
132
|
+
endpointId: string,
|
|
133
|
+
options?: { limit?: number },
|
|
134
|
+
ctx?: TxContext,
|
|
135
|
+
): Promise<WebhookDelivery[]> {
|
|
136
|
+
const db = this.getDb(ctx);
|
|
137
|
+
let query = db
|
|
138
|
+
.select()
|
|
139
|
+
.from(webhookDeliveries)
|
|
140
|
+
.where(eq(webhookDeliveries.endpointId, endpointId))
|
|
141
|
+
.orderBy(desc(webhookDeliveries.createdAt))
|
|
142
|
+
.$dynamic();
|
|
143
|
+
|
|
144
|
+
if (options?.limit !== undefined) {
|
|
145
|
+
query = query.limit(options.limit);
|
|
146
|
+
}
|
|
147
|
+
|
|
148
|
+
return query;
|
|
149
|
+
}
|
|
150
|
+
|
|
151
|
+
async findPendingDeliveries(ctx?: TxContext): Promise<WebhookDelivery[]> {
|
|
152
|
+
const db = this.getDb(ctx);
|
|
153
|
+
const now = new Date();
|
|
154
|
+
|
|
155
|
+
return db
|
|
156
|
+
.select()
|
|
157
|
+
.from(webhookDeliveries)
|
|
158
|
+
.where(
|
|
159
|
+
and(
|
|
160
|
+
isNull(webhookDeliveries.deliveredAt),
|
|
161
|
+
isNull(webhookDeliveries.failedAt),
|
|
162
|
+
or(
|
|
163
|
+
isNull(webhookDeliveries.nextRetryAt),
|
|
164
|
+
lte(webhookDeliveries.nextRetryAt, now),
|
|
165
|
+
),
|
|
166
|
+
),
|
|
167
|
+
)
|
|
168
|
+
.orderBy(webhookDeliveries.createdAt);
|
|
169
|
+
}
|
|
170
|
+
|
|
171
|
+
async findFailedDeliveries(
|
|
172
|
+
endpointId?: string,
|
|
173
|
+
ctx?: TxContext,
|
|
174
|
+
): Promise<WebhookDelivery[]> {
|
|
175
|
+
const db = this.getDb(ctx);
|
|
176
|
+
|
|
177
|
+
if (endpointId) {
|
|
178
|
+
return db
|
|
179
|
+
.select()
|
|
180
|
+
.from(webhookDeliveries)
|
|
181
|
+
.where(
|
|
182
|
+
and(
|
|
183
|
+
eq(webhookDeliveries.endpointId, endpointId),
|
|
184
|
+
sql`${webhookDeliveries.failedAt} IS NOT NULL`,
|
|
185
|
+
),
|
|
186
|
+
)
|
|
187
|
+
.orderBy(desc(webhookDeliveries.failedAt));
|
|
188
|
+
}
|
|
189
|
+
|
|
190
|
+
return db
|
|
191
|
+
.select()
|
|
192
|
+
.from(webhookDeliveries)
|
|
193
|
+
.where(sql`${webhookDeliveries.failedAt} IS NOT NULL`)
|
|
194
|
+
.orderBy(desc(webhookDeliveries.failedAt));
|
|
195
|
+
}
|
|
196
|
+
|
|
197
|
+
async createDelivery(
|
|
198
|
+
data: WebhookDeliveryInsert,
|
|
199
|
+
ctx?: TxContext,
|
|
200
|
+
): Promise<WebhookDelivery> {
|
|
201
|
+
const db = this.getDb(ctx);
|
|
202
|
+
const rows = await db.insert(webhookDeliveries).values(data).returning();
|
|
203
|
+
return rows[0]!;
|
|
204
|
+
}
|
|
205
|
+
|
|
206
|
+
async updateDelivery(
|
|
207
|
+
id: string,
|
|
208
|
+
data: Partial<Omit<WebhookDeliveryInsert, "id">>,
|
|
209
|
+
ctx?: TxContext,
|
|
210
|
+
): Promise<WebhookDelivery | undefined> {
|
|
211
|
+
const db = this.getDb(ctx);
|
|
212
|
+
const rows = await db
|
|
213
|
+
.update(webhookDeliveries)
|
|
214
|
+
.set(data)
|
|
215
|
+
.where(eq(webhookDeliveries.id, id))
|
|
216
|
+
.returning();
|
|
217
|
+
return rows[0];
|
|
218
|
+
}
|
|
219
|
+
|
|
220
|
+
async markDelivered(
|
|
221
|
+
id: string,
|
|
222
|
+
statusCode: number,
|
|
223
|
+
ctx?: TxContext,
|
|
224
|
+
): Promise<WebhookDelivery | undefined> {
|
|
225
|
+
return this.updateDelivery(
|
|
226
|
+
id,
|
|
227
|
+
{
|
|
228
|
+
statusCode,
|
|
229
|
+
deliveredAt: new Date(),
|
|
230
|
+
nextRetryAt: null,
|
|
231
|
+
},
|
|
232
|
+
ctx,
|
|
233
|
+
);
|
|
234
|
+
}
|
|
235
|
+
|
|
236
|
+
async markFailed(
|
|
237
|
+
id: string,
|
|
238
|
+
statusCode: number | null,
|
|
239
|
+
nextRetryAt?: Date,
|
|
240
|
+
ctx?: TxContext,
|
|
241
|
+
): Promise<WebhookDelivery | undefined> {
|
|
242
|
+
const delivery = await this.findDeliveryById(id, ctx);
|
|
243
|
+
if (!delivery) return undefined;
|
|
244
|
+
|
|
245
|
+
const data: Partial<WebhookDeliveryInsert> = {
|
|
246
|
+
statusCode: statusCode ?? undefined,
|
|
247
|
+
attemptCount: delivery.attemptCount + 1,
|
|
248
|
+
};
|
|
249
|
+
|
|
250
|
+
if (nextRetryAt) {
|
|
251
|
+
data.nextRetryAt = nextRetryAt;
|
|
252
|
+
} else {
|
|
253
|
+
data.failedAt = new Date();
|
|
254
|
+
data.nextRetryAt = null;
|
|
255
|
+
}
|
|
256
|
+
|
|
257
|
+
return this.updateDelivery(id, data, ctx);
|
|
258
|
+
}
|
|
259
|
+
|
|
260
|
+
async deleteDelivery(id: string, ctx?: TxContext): Promise<boolean> {
|
|
261
|
+
const db = this.getDb(ctx);
|
|
262
|
+
const result = await db
|
|
263
|
+
.delete(webhookDeliveries)
|
|
264
|
+
.where(eq(webhookDeliveries.id, id))
|
|
265
|
+
.returning();
|
|
266
|
+
return result.length > 0;
|
|
267
|
+
}
|
|
268
|
+
|
|
269
|
+
async deleteDeliveriesByEndpointId(
|
|
270
|
+
endpointId: string,
|
|
271
|
+
ctx?: TxContext,
|
|
272
|
+
): Promise<void> {
|
|
273
|
+
const db = this.getDb(ctx);
|
|
274
|
+
await db
|
|
275
|
+
.delete(webhookDeliveries)
|
|
276
|
+
.where(eq(webhookDeliveries.endpointId, endpointId));
|
|
277
|
+
}
|
|
278
|
+
}
|
|
@@ -0,0 +1,56 @@
|
|
|
1
|
+
import {
|
|
2
|
+
boolean,
|
|
3
|
+
index,
|
|
4
|
+
integer,
|
|
5
|
+
jsonb,
|
|
6
|
+
pgTable,
|
|
7
|
+
text,
|
|
8
|
+
timestamp,
|
|
9
|
+
uuid,
|
|
10
|
+
} from "drizzle-orm/pg-core";
|
|
11
|
+
import { organization } from "../../auth/auth-schema";
|
|
12
|
+
|
|
13
|
+
export const webhookEndpoints = pgTable(
|
|
14
|
+
"webhook_endpoints",
|
|
15
|
+
{
|
|
16
|
+
id: uuid("id").defaultRandom().primaryKey(),
|
|
17
|
+
organizationId: text("organization_id")
|
|
18
|
+
.notNull()
|
|
19
|
+
.references(() => organization.id, { onDelete: "cascade" }),
|
|
20
|
+
url: text("url").notNull(),
|
|
21
|
+
secret: text("secret").notNull(),
|
|
22
|
+
events: jsonb("events").$type<string[]>().notNull(),
|
|
23
|
+
isActive: boolean("is_active").notNull().default(true),
|
|
24
|
+
metadata: jsonb("metadata").$type<Record<string, unknown>>().default({}),
|
|
25
|
+
},
|
|
26
|
+
(table) => ({
|
|
27
|
+
orgIdx: index("idx_webhook_endpoints_org").on(table.organizationId),
|
|
28
|
+
}),
|
|
29
|
+
);
|
|
30
|
+
|
|
31
|
+
/**
|
|
32
|
+
* Tracks processed incoming webhook events for idempotency.
|
|
33
|
+
* Prevents double-processing when Stripe (or other providers) retry delivery.
|
|
34
|
+
*/
|
|
35
|
+
export const processedWebhookEvents = pgTable("processed_webhook_events", {
|
|
36
|
+
id: uuid("id").defaultRandom().primaryKey(),
|
|
37
|
+
eventId: text("event_id").notNull().unique(),
|
|
38
|
+
provider: text("provider").notNull(), // "stripe", "paypal", etc.
|
|
39
|
+
eventType: text("event_type").notNull(),
|
|
40
|
+
processedAt: timestamp("processed_at", { withTimezone: true }).defaultNow().notNull(),
|
|
41
|
+
});
|
|
42
|
+
|
|
43
|
+
export const webhookDeliveries = pgTable("webhook_deliveries", {
|
|
44
|
+
id: uuid("id").defaultRandom().primaryKey(),
|
|
45
|
+
endpointId: uuid("endpoint_id")
|
|
46
|
+
.references(() => webhookEndpoints.id)
|
|
47
|
+
.notNull(),
|
|
48
|
+
eventName: text("event_name").notNull(),
|
|
49
|
+
payload: jsonb("payload").notNull(),
|
|
50
|
+
statusCode: integer("status_code"),
|
|
51
|
+
attemptCount: integer("attempt_count").notNull().default(0),
|
|
52
|
+
nextRetryAt: timestamp("next_retry_at", { withTimezone: true }),
|
|
53
|
+
deliveredAt: timestamp("delivered_at", { withTimezone: true }),
|
|
54
|
+
failedAt: timestamp("failed_at", { withTimezone: true }),
|
|
55
|
+
createdAt: timestamp("created_at", { withTimezone: true }).defaultNow().notNull(),
|
|
56
|
+
});
|
|
@@ -0,0 +1,117 @@
|
|
|
1
|
+
import { resolveOrgId } from "../../auth/org";
|
|
2
|
+
import type { Actor } from "../../auth/types";
|
|
3
|
+
import { CommerceNotFoundError, CommerceValidationError } from "../../kernel/errors";
|
|
4
|
+
import { Err, Ok, type Result } from "../../kernel/result";
|
|
5
|
+
import type { TxContext } from "../../kernel/database/tx-context";
|
|
6
|
+
import type { WebhooksRepository, WebhookEndpoint } from "./repository";
|
|
7
|
+
|
|
8
|
+
/**
|
|
9
|
+
* Checks whether a URL points to a private/internal IP address.
|
|
10
|
+
* Blocks: loopback (127.x), link-local (169.254.x), private (10.x, 172.16-31.x, 192.168.x),
|
|
11
|
+
* cloud metadata (169.254.169.254, metadata.google.internal), and localhost.
|
|
12
|
+
*/
|
|
13
|
+
function isPrivateUrl(urlStr: string): boolean {
|
|
14
|
+
try {
|
|
15
|
+
const parsed = new URL(urlStr);
|
|
16
|
+
// Strip IPv6 brackets: URL.hostname returns "[::1]" not "::1"
|
|
17
|
+
const hostname = parsed.hostname.toLowerCase().replace(/^\[|\]$/g, "");
|
|
18
|
+
|
|
19
|
+
// Loopback (IPv4 + IPv6)
|
|
20
|
+
if (hostname === "localhost" || hostname === "127.0.0.1" || hostname === "::1") return true;
|
|
21
|
+
if (hostname.endsWith(".localhost")) return true;
|
|
22
|
+
|
|
23
|
+
// IPv6 loopback and link-local patterns
|
|
24
|
+
if (hostname.startsWith("::ffff:")) return true; // IPv6-mapped IPv4 (e.g., ::ffff:127.0.0.1)
|
|
25
|
+
if (hostname.startsWith("fe80:")) return true; // IPv6 link-local
|
|
26
|
+
if (hostname === "::") return true; // Unspecified address
|
|
27
|
+
|
|
28
|
+
// Cloud metadata endpoints
|
|
29
|
+
if (hostname === "169.254.169.254") return true;
|
|
30
|
+
if (hostname === "metadata.google.internal") return true;
|
|
31
|
+
|
|
32
|
+
// Private IP ranges (RFC 1918 + link-local)
|
|
33
|
+
const parts = hostname.split(".").map(Number);
|
|
34
|
+
if (parts.length === 4 && parts.every((n) => !isNaN(n))) {
|
|
35
|
+
const [a, b] = parts;
|
|
36
|
+
if (a === 10) return true;
|
|
37
|
+
if (a === 172 && b !== undefined && b >= 16 && b <= 31) return true;
|
|
38
|
+
if (a === 192 && b === 168) return true;
|
|
39
|
+
if (a === 169 && b === 254) return true;
|
|
40
|
+
if (a === 127) return true; // Full 127.0.0.0/8 range
|
|
41
|
+
if (a === 0) return true;
|
|
42
|
+
}
|
|
43
|
+
|
|
44
|
+
return false;
|
|
45
|
+
} catch {
|
|
46
|
+
return true; // Invalid URLs are blocked
|
|
47
|
+
}
|
|
48
|
+
}
|
|
49
|
+
|
|
50
|
+
interface WebhookServiceDeps {
|
|
51
|
+
repository: WebhooksRepository;
|
|
52
|
+
}
|
|
53
|
+
|
|
54
|
+
export class WebhookService {
|
|
55
|
+
private readonly repo: WebhooksRepository;
|
|
56
|
+
|
|
57
|
+
constructor(private deps: WebhookServiceDeps) {
|
|
58
|
+
this.repo = deps.repository;
|
|
59
|
+
}
|
|
60
|
+
|
|
61
|
+
async createEndpoint(
|
|
62
|
+
input: {
|
|
63
|
+
url: string;
|
|
64
|
+
secret: string;
|
|
65
|
+
events: string[];
|
|
66
|
+
metadata?: Record<string, unknown>;
|
|
67
|
+
},
|
|
68
|
+
actor?: Actor | null,
|
|
69
|
+
ctx?: TxContext,
|
|
70
|
+
): Promise<Result<WebhookEndpoint>> {
|
|
71
|
+
if (isPrivateUrl(input.url)) {
|
|
72
|
+
return Err(
|
|
73
|
+
new CommerceValidationError(
|
|
74
|
+
"Webhook URL must not point to a private or internal address.",
|
|
75
|
+
),
|
|
76
|
+
);
|
|
77
|
+
}
|
|
78
|
+
|
|
79
|
+
const orgId = resolveOrgId(actor ?? ctx?.actor ?? null);
|
|
80
|
+
|
|
81
|
+
const endpoint = await this.repo.createEndpoint(
|
|
82
|
+
{
|
|
83
|
+
organizationId: orgId,
|
|
84
|
+
url: input.url,
|
|
85
|
+
secret: input.secret,
|
|
86
|
+
events: input.events,
|
|
87
|
+
isActive: true,
|
|
88
|
+
metadata: input.metadata ?? {},
|
|
89
|
+
},
|
|
90
|
+
ctx,
|
|
91
|
+
);
|
|
92
|
+
return Ok(endpoint);
|
|
93
|
+
}
|
|
94
|
+
|
|
95
|
+
async listEndpoints(ctx?: TxContext): Promise<Result<WebhookEndpoint[]>> {
|
|
96
|
+
const endpoints = await this.repo.findAllEndpoints(ctx);
|
|
97
|
+
return Ok(endpoints);
|
|
98
|
+
}
|
|
99
|
+
|
|
100
|
+
async deleteEndpoint(id: string, ctx?: TxContext): Promise<Result<void>> {
|
|
101
|
+
const existing = await this.repo.findEndpointById(id, ctx);
|
|
102
|
+
if (!existing) {
|
|
103
|
+
return Err(new CommerceNotFoundError("Webhook endpoint not found."));
|
|
104
|
+
}
|
|
105
|
+
|
|
106
|
+
await this.repo.deleteEndpoint(id, ctx);
|
|
107
|
+
return Ok(undefined);
|
|
108
|
+
}
|
|
109
|
+
|
|
110
|
+
async getEndpointsForEvent(
|
|
111
|
+
eventName: string,
|
|
112
|
+
ctx?: TxContext,
|
|
113
|
+
): Promise<Result<WebhookEndpoint[]>> {
|
|
114
|
+
const endpoints = await this.repo.findEndpointsForEvent(eventName, ctx);
|
|
115
|
+
return Ok(endpoints);
|
|
116
|
+
}
|
|
117
|
+
}
|
|
@@ -0,0 +1,6 @@
|
|
|
1
|
+
import { createHmac } from "node:crypto";
|
|
2
|
+
|
|
3
|
+
export function signWebhookPayload(secret: string, payload: unknown): string {
|
|
4
|
+
const body = typeof payload === "string" ? payload : JSON.stringify(payload);
|
|
5
|
+
return createHmac("sha256", secret).update(body).digest("hex");
|
|
6
|
+
}
|
|
@@ -0,0 +1,71 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Shared SSRF prevention utilities.
|
|
3
|
+
*
|
|
4
|
+
* Used by both webhook delivery (DNS rebinding check) and connector URL
|
|
5
|
+
* validation (store URL check) to reject private/internal IP addresses.
|
|
6
|
+
*/
|
|
7
|
+
|
|
8
|
+
/**
|
|
9
|
+
* Returns true if the given IP address falls within a private, loopback,
|
|
10
|
+
* link-local, or otherwise non-routable range.
|
|
11
|
+
*/
|
|
12
|
+
export function isPrivateIp(ip: string): boolean {
|
|
13
|
+
// IPv6 loopback / link-local / mapped
|
|
14
|
+
if (ip === "::1" || ip === "::") return true;
|
|
15
|
+
if (ip.startsWith("fe80:")) return true;
|
|
16
|
+
|
|
17
|
+
// IPv6-mapped IPv4 (e.g. ::ffff:127.0.0.1) — extract the IPv4 portion
|
|
18
|
+
const mappedMatch = ip.match(/^::ffff:(\d+\.\d+\.\d+\.\d+)$/i);
|
|
19
|
+
if (mappedMatch) {
|
|
20
|
+
return isPrivateIpv4(mappedMatch[1]!);
|
|
21
|
+
}
|
|
22
|
+
|
|
23
|
+
return isPrivateIpv4(ip);
|
|
24
|
+
}
|
|
25
|
+
|
|
26
|
+
function isPrivateIpv4(ip: string): boolean {
|
|
27
|
+
const parts = ip.split(".").map(Number);
|
|
28
|
+
if (parts.length !== 4 || parts.some((n) => isNaN(n))) return false;
|
|
29
|
+
|
|
30
|
+
const [a, b] = parts;
|
|
31
|
+
if (a === undefined || b === undefined) return false;
|
|
32
|
+
|
|
33
|
+
if (a === 127) return true; // loopback 127.0.0.0/8
|
|
34
|
+
if (a === 10) return true; // RFC 1918 class A
|
|
35
|
+
if (a === 172 && b >= 16 && b <= 31) return true; // RFC 1918 class B
|
|
36
|
+
if (a === 192 && b === 168) return true; // RFC 1918 class C
|
|
37
|
+
if (a === 169 && b === 254) return true; // link-local / AWS IMDS
|
|
38
|
+
if (a === 0) return true; // unspecified
|
|
39
|
+
|
|
40
|
+
return false;
|
|
41
|
+
}
|
|
42
|
+
|
|
43
|
+
/**
|
|
44
|
+
* Checks whether a URL string points to a private/internal IP address or
|
|
45
|
+
* hostname. This performs a string-level check only (no DNS resolution).
|
|
46
|
+
*
|
|
47
|
+
* For DNS rebinding protection, use `isPrivateIp` after resolving the hostname.
|
|
48
|
+
*/
|
|
49
|
+
export function isPrivateUrl(urlStr: string): boolean {
|
|
50
|
+
try {
|
|
51
|
+
const parsed = new URL(urlStr);
|
|
52
|
+
const hostname = parsed.hostname.toLowerCase().replace(/^\[|\]$/g, "");
|
|
53
|
+
|
|
54
|
+
// Direct hostname matches
|
|
55
|
+
if (hostname === "localhost" || hostname.endsWith(".localhost")) return true;
|
|
56
|
+
if (hostname === "::1" || hostname === "::") return true;
|
|
57
|
+
if (hostname.startsWith("::ffff:")) return true;
|
|
58
|
+
if (hostname.startsWith("fe80:")) return true;
|
|
59
|
+
if (hostname.endsWith(".local")) return true;
|
|
60
|
+
if (hostname.endsWith(".internal")) return true;
|
|
61
|
+
|
|
62
|
+
// Cloud metadata endpoints
|
|
63
|
+
if (hostname === "169.254.169.254") return true;
|
|
64
|
+
if (hostname === "metadata.google.internal") return true;
|
|
65
|
+
|
|
66
|
+
// Check if hostname is a raw IP in private ranges
|
|
67
|
+
return isPrivateIpv4(hostname);
|
|
68
|
+
} catch {
|
|
69
|
+
return true; // Invalid URLs are blocked
|
|
70
|
+
}
|
|
71
|
+
}
|
|
@@ -0,0 +1,52 @@
|
|
|
1
|
+
import type { TaskDefinition } from "../../kernel/jobs/types";
|
|
2
|
+
import { WebhookDeliveryWorker } from "./worker";
|
|
3
|
+
import type { WebhooksRepository } from "./repository";
|
|
4
|
+
|
|
5
|
+
/**
|
|
6
|
+
* Background task for async webhook delivery.
|
|
7
|
+
*
|
|
8
|
+
* Instead of blocking the HTTP response with inline webhook HTTP calls,
|
|
9
|
+
* the deliverWebhooks hook enqueues this task. The job runner picks it up
|
|
10
|
+
* and delivers asynchronously with retries.
|
|
11
|
+
*/
|
|
12
|
+
export const webhookDeliveryTask: TaskDefinition<{
|
|
13
|
+
endpointId: string;
|
|
14
|
+
endpointUrl: string;
|
|
15
|
+
endpointSecret: string;
|
|
16
|
+
eventName: string;
|
|
17
|
+
payload: unknown;
|
|
18
|
+
}> = {
|
|
19
|
+
slug: "webhooks/deliver",
|
|
20
|
+
|
|
21
|
+
async handler({ input, ctx }) {
|
|
22
|
+
const webhooksService = ctx.services.webhooks as {
|
|
23
|
+
repository?: WebhooksRepository;
|
|
24
|
+
};
|
|
25
|
+
|
|
26
|
+
// Build a minimal worker — the repository is needed for delivery tracking
|
|
27
|
+
const repository = webhooksService?.repository;
|
|
28
|
+
if (!repository) {
|
|
29
|
+
ctx.logger.warn("Webhook delivery skipped: no webhooks repository available");
|
|
30
|
+
return { output: {} };
|
|
31
|
+
}
|
|
32
|
+
|
|
33
|
+
const worker = new WebhookDeliveryWorker({ repository });
|
|
34
|
+
|
|
35
|
+
await worker.deliver({
|
|
36
|
+
endpoint: {
|
|
37
|
+
id: input.endpointId,
|
|
38
|
+
url: input.endpointUrl,
|
|
39
|
+
secret: input.endpointSecret,
|
|
40
|
+
},
|
|
41
|
+
eventName: input.eventName,
|
|
42
|
+
payload: input.payload,
|
|
43
|
+
});
|
|
44
|
+
|
|
45
|
+
return { output: {} };
|
|
46
|
+
},
|
|
47
|
+
|
|
48
|
+
retries: {
|
|
49
|
+
attempts: 5,
|
|
50
|
+
backoff: { type: "exponential", delay: 2000 },
|
|
51
|
+
},
|
|
52
|
+
};
|