@usebetterdev/audit-core 0.6.0 → 0.7.0

package/dist/index.cjs

@@ -22,20 +22,33 @@ var index_exports = {};
 __export(index_exports, {
   AUDIT_LOG_SCHEMA: () => AUDIT_LOG_SCHEMA,
   AuditQueryBuilder: () => AuditQueryBuilder,
+  VALID_OPERATIONS: () => VALID_OPERATIONS2,
+  VALID_SEVERITIES: () => VALID_SEVERITIES2,
+  assembleStats: () => assembleStats,
   betterAudit: () => betterAudit,
   createAuditApi: () => createAuditApi,
   createAuditConsoleEndpoints: () => createAuditConsoleEndpoints,
   createExportResponse: () => createExportResponse,
+  decodeCursor: () => decodeCursor,
+  defaultExtractor: () => defaultExtractor,
+  encodeCursor: () => encodeCursor,
+  escapeLikePattern: () => escapeLikePattern,
   fromBearerToken: () => fromBearerToken,
   fromCookie: () => fromCookie,
   fromHeader: () => fromHeader,
   getAuditContext: () => getAuditContext,
   handleMiddleware: () => handleMiddleware,
+  interpretFilters: () => interpretFilters,
+  isAuditOperation: () => isAuditOperation,
+  isAuditSeverity: () => isAuditSeverity,
   mergeAuditContext: () => mergeAuditContext,
   normalizeInput: () => normalizeInput,
   parseDuration: () => parseDuration,
+  resolveTimeFilter: () => resolveTimeFilter,
   runExport: () => runExport,
-  runWithAuditContext: () => runWithAuditContext
+  runWithAuditContext: () => runWithAuditContext,
+  safeExtract: () => safeExtract,
+  toCount: () => toCount
 });
 module.exports = __toCommonJS(index_exports);
 
@@ -1509,6 +1522,171 @@ var AUDIT_LOG_SCHEMA = {
   }
 };
 
+// src/cursor.ts
+var UUID_PATTERN = /^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i;
+function encodeCursor(timestamp, id) {
+  const payload = JSON.stringify({ t: timestamp.toISOString(), i: id });
+  return btoa(payload);
+}
+function decodeCursor(cursor) {
+  let parsed;
+  try {
+    parsed = JSON.parse(atob(cursor));
+  } catch {
+    throw new Error("Invalid cursor: failed to decode");
+  }
+  if (typeof parsed !== "object" || parsed === null || !("t" in parsed) || !("i" in parsed)) {
+    throw new Error("Invalid cursor: missing required fields");
+  }
+  const record = parsed;
+  const t = record["t"];
+  const i = record["i"];
+  if (typeof t !== "string" || typeof i !== "string") {
+    throw new Error("Invalid cursor: fields must be strings");
+  }
+  const timestamp = new Date(t);
+  if (isNaN(timestamp.getTime())) {
+    throw new Error("Invalid cursor: invalid timestamp");
+  }
+  if (!UUID_PATTERN.test(i)) {
+    throw new Error("Invalid cursor: id must be a valid UUID");
+  }
+  return { timestamp, id: i };
+}
+
+// src/escape.ts
+function escapeLikePattern(input) {
+  return input.replace(/[%_\\]/g, "\\$&");
+}
+
+// src/time-filter.ts
+function resolveTimeFilter(filter) {
+  if ("date" in filter && filter.date !== void 0) {
+    return filter.date;
+  }
+  if ("duration" in filter && filter.duration !== void 0) {
+    return parseDuration(filter.duration);
+  }
+  throw new Error("TimeFilter must have either date or duration");
+}
+
+// src/filter-builder.ts
+function interpretFilters(filters, options) {
+  const conditions = [];
+  if (filters.resource !== void 0) {
+    conditions.push({ kind: "eq", field: "tableName", value: filters.resource.tableName });
+    if (filters.resource.recordId !== void 0) {
+      conditions.push({ kind: "eq", field: "recordId", value: filters.resource.recordId });
+    }
+  }
+  pushArrayFilter(conditions, "actorId", filters.actorIds);
+  pushArrayFilter(conditions, "severity", filters.severities);
+  pushArrayFilter(conditions, "operation", filters.operations);
+  if (filters.since !== void 0) {
+    conditions.push({ kind: "timestampGte", value: resolveTimeFilter(filters.since) });
+  }
+  if (filters.until !== void 0) {
+    conditions.push({ kind: "timestampLte", value: resolveTimeFilter(filters.until) });
+  }
+  if (filters.searchText !== void 0 && filters.searchText.length > 0) {
+    const escaped = escapeLikePattern(filters.searchText);
+    conditions.push({ kind: "search", pattern: `%${escaped}%` });
+  }
+  if (filters.compliance !== void 0 && filters.compliance.length > 0) {
+    conditions.push({ kind: "compliance", tags: [...filters.compliance] });
+  }
+  if (options?.cursor !== void 0) {
+    conditions.push({
+      kind: "cursor",
+      timestamp: options.cursor.timestamp,
+      id: options.cursor.id,
+      sortOrder: options.sortOrder ?? "desc"
+    });
+  }
+  return conditions;
+}
+function pushArrayFilter(conditions, field, values) {
+  if (values === void 0 || values.length === 0) {
+    return;
+  }
+  if (values.length === 1) {
+    const first = values[0];
+    if (first !== void 0) {
+      conditions.push({ kind: "eq", field, value: first });
+    }
+  } else {
+    conditions.push({ kind: "in", field, values: [...values] });
+  }
+}
+
+// src/stats.ts
+function toCount(value) {
+  if (typeof value === "number") {
+    return value;
+  }
+  if (typeof value === "string") {
+    const n = Number(value);
+    return Number.isNaN(n) ? 0 : n;
+  }
+  if (typeof value === "bigint") {
+    return Number(value);
+  }
+  return 0;
+}
+function assembleStats(summaryRows, eventsPerDayRows, topActorsRows, topTablesRows, operationRows, severityRows) {
+  const summary = summaryRows[0];
+  const totalLogs = summary !== void 0 ? toCount(summary.totalLogs) : 0;
+  const tablesAudited = summary !== void 0 ? toCount(summary.tablesAudited) : 0;
+  const eventsPerDay = eventsPerDayRows.map((row) => ({
+    date: row.date instanceof Date ? row.date.toISOString().split("T")[0] ?? "" : String(row.date),
+    count: toCount(row.count)
+  }));
+  const topActors = topActorsRows.map((row) => ({
+    actorId: String(row.actorId),
+    count: toCount(row.count)
+  }));
+  const topTables = topTablesRows.map((row) => ({
+    tableName: String(row.tableName),
+    count: toCount(row.count)
+  }));
+  const operationBreakdown = {};
+  for (const row of operationRows) {
+    operationBreakdown[String(row.operation)] = toCount(row.count);
+  }
+  const severityBreakdown = {};
+  for (const row of severityRows) {
+    severityBreakdown[String(row.severity)] = toCount(row.count);
+  }
+  return {
+    totalLogs,
+    tablesAudited,
+    eventsPerDay,
+    topActors,
+    topTables,
+    operationBreakdown,
+    severityBreakdown
+  };
+}
+
+// src/validation.ts
+var VALID_OPERATIONS2 = /* @__PURE__ */ new Set([
+  "INSERT",
+  "UPDATE",
+  "DELETE"
+]);
+var VALID_SEVERITIES2 = /* @__PURE__ */ new Set([
+  "low",
+  "medium",
+  "high",
+  "critical"
+]);
+function isAuditOperation(value) {
+  return VALID_OPERATIONS2.has(value);
+}
+function isAuditSeverity(value) {
+  return VALID_SEVERITIES2.has(value);
+}
+
 // src/context-extractor.ts
 function decodeJwtPayload(token) {
   try {
@@ -1586,6 +1764,9 @@ function fromHeader(headerName) {
     return value.trim();
   };
 }
+var defaultExtractor = {
+  actor: fromBearerToken("sub")
+};
 async function safeExtract(extractor, request, onError) {
   if (!extractor) {
     return void 0;
@@ -1612,19 +1793,32 @@ async function handleMiddleware(extractor, request, next, options = {}) {
 0 && (module.exports = {
   AUDIT_LOG_SCHEMA,
   AuditQueryBuilder,
+  VALID_OPERATIONS,
+  VALID_SEVERITIES,
+  assembleStats,
   betterAudit,
   createAuditApi,
   createAuditConsoleEndpoints,
   createExportResponse,
+  decodeCursor,
+  defaultExtractor,
+  encodeCursor,
+  escapeLikePattern,
   fromBearerToken,
   fromCookie,
   fromHeader,
   getAuditContext,
   handleMiddleware,
+  interpretFilters,
+  isAuditOperation,
+  isAuditSeverity,
   mergeAuditContext,
   normalizeInput,
   parseDuration,
+  resolveTimeFilter,
   runExport,
-  runWithAuditContext
+  runWithAuditContext,
+  safeExtract,
+  toCount
 });
 //# sourceMappingURL=index.cjs.map