@usebetterdev/contract 0.5.0

package/dist/config-types-audit.d.ts

@@ -0,0 +1,18 @@
+import type { PluginDefinition } from "@usebetterdev/plugin";
+/** Retention policy controlling automatic and CLI-driven purge of old audit logs. */
+export interface RetentionPolicy {
+    /** Purge entries older than this many days. Must be a positive integer. */
+    days: number;
+    /** When set, only purge logs for these specific tables. */
+    tables?: string[];
+}
+/** Static configuration for @usebetterdev/audit. */
+export interface BetterAuditStaticConfig {
+    auditTables: string[];
+    asyncWrite?: boolean;
+    maxQueryLimit?: number;
+    retention?: RetentionPolicy;
+    /** Plugins to load. Uses the full PluginDefinition type; the runtime BetterAuditConfig uses the simpler plugin shape. */
+    plugins?: PluginDefinition[];
+}
+//# sourceMappingURL=config-types-audit.d.ts.map

package/dist/config-types-audit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-types-audit.d.ts","sourceRoot":"","sources":["../src/config-types-audit.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAE7D,qFAAqF;AACrF,MAAM,WAAW,eAAe;IAC9B,2EAA2E;IAC3E,IAAI,EAAE,MAAM,CAAC;IACb,2DAA2D;IAC3D,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,oDAAoD;AACpD,MAAM,WAAW,uBAAuB;IACtC,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,SAAS,CAAC,EAAE,eAAe,CAAC;IAC5B,yHAAyH;IACzH,OAAO,CAAC,EAAE,gBAAgB,EAAE,CAAC;CAC9B"}

package/dist/config-types-console.d.ts

@@ -0,0 +1,28 @@
+/** Static magic link config — serializable subset with no callbacks. */
+export interface StaticMagicLinkConfig {
+    allowedEmails: string | string[];
+    /**
+     * Required when `allowedEmails` contains a `*` wildcard in production.
+     * Explicitly acknowledges that any email address can initiate a magic link session.
+     */
+    allowUnauthenticatedEmails?: boolean;
+    /** Maximum failed code verification attempts before lockout. Default: 5. */
+    maxAttempts?: number;
+}
+/** Static session config — serializable subset with no callbacks. */
+export interface StaticConsoleSessionConfig {
+    magicLink?: StaticMagicLinkConfig;
+    autoApprove?: boolean;
+    /** Token lifetime as a duration string, e.g. "24h", "8h", "1h". Default: "24h". */
+    tokenLifetime?: string;
+    refreshEnabled?: boolean;
+}
+/** Static configuration for @usebetterdev/console. */
+export interface BetterConsoleStaticConfig {
+    /** Origins allowed for CORS. Default: ["https://console.usebetter.dev"]. */
+    allowedOrigins?: string[];
+    sessions?: StaticConsoleSessionConfig;
+    /** Permission levels granted to sessions. Default: ["read", "write", "admin"]. */
+    allowedActions?: Array<"read" | "write" | "admin">;
+}
+//# sourceMappingURL=config-types-console.d.ts.map

package/dist/config-types-console.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-types-console.d.ts","sourceRoot":"","sources":["../src/config-types-console.ts"],"names":[],"mappings":"AAAA,wEAAwE;AACxE,MAAM,WAAW,qBAAqB;IACpC,aAAa,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACjC;;;OAGG;IACH,0BAA0B,CAAC,EAAE,OAAO,CAAC;IACrC,4EAA4E;IAC5E,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,qEAAqE;AACrE,MAAM,WAAW,0BAA0B;IACzC,SAAS,CAAC,EAAE,qBAAqB,CAAC;IAClC,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,mFAAmF;IACnF,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,sDAAsD;AACtD,MAAM,WAAW,yBAAyB;IACxC,4EAA4E;IAC5E,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,QAAQ,CAAC,EAAE,0BAA0B,CAAC;IACtC,kFAAkF;IAClF,cAAc,CAAC,EAAE,KAAK,CAAC,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC,CAAC;CACpD"}

package/dist/config-types-tenant.d.ts

@@ -0,0 +1,38 @@
+import type { PluginDefinition } from "@usebetterdev/plugin";
+/** Telemetry options. On by default; set enabled: false to opt out. */
+export interface TelemetryConfig {
+    enabled?: boolean;
+    debug?: boolean;
+}
+/** Path resolver: pattern e.g. "/t/:tenantId/*" or "/t/:tenantId". */
+export interface PathResolverConfig {
+    pattern: string;
+    /** Segment index for :tenantId (default derived from pattern). */
+    segmentIndex?: number;
+}
+/** Subdomain resolver: use segment index (default 0 = first segment). */
+export type SubdomainResolverConfig = boolean | {
+    segmentIndex?: number;
+};
+/** Static JWT resolver config (no runtime callbacks). */
+export interface StaticJwtResolverConfig {
+    claim: string;
+}
+/** Static tenant resolver config — serializable subset with no callbacks. */
+export interface StaticTenantResolverConfig {
+    header?: string;
+    path?: string | PathResolverConfig;
+    subdomain?: SubdomainResolverConfig;
+    jwt?: string | StaticJwtResolverConfig;
+}
+/** Static configuration for @usebetterdev/tenant. */
+export interface BetterTenantStaticConfig {
+    tenantResolver?: StaticTenantResolverConfig;
+    tenantTables: string[];
+    /** Plugins to load. Uses the full PluginDefinition type; the runtime BetterTenantConfig uses the simpler BetterTenantPlugin shape. */
+    plugins?: PluginDefinition[];
+    basePath?: string;
+    loadTenant?: boolean;
+    telemetry?: TelemetryConfig;
+}
+//# sourceMappingURL=config-types-tenant.d.ts.map

package/dist/config-types-tenant.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-types-tenant.d.ts","sourceRoot":"","sources":["../src/config-types-tenant.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAE7D,uEAAuE;AACvE,MAAM,WAAW,eAAe;IAC9B,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,KAAK,CAAC,EAAE,OAAO,CAAC;CACjB;AAED,sEAAsE;AACtE,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,MAAM,CAAC;IAChB,kEAAkE;IAClE,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED,yEAAyE;AACzE,MAAM,MAAM,uBAAuB,GAAG,OAAO,GAAG;IAAE,YAAY,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC;AAE1E,yDAAyD;AACzD,MAAM,WAAW,uBAAuB;IACtC,KAAK,EAAE,MAAM,CAAC;CACf;AAED,6EAA6E;AAC7E,MAAM,WAAW,0BAA0B;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,GAAG,kBAAkB,CAAC;IACnC,SAAS,CAAC,EAAE,uBAAuB,CAAC;IACpC,GAAG,CAAC,EAAE,MAAM,GAAG,uBAAuB,CAAC;CACxC;AAED,qDAAqD;AACrD,MAAM,WAAW,wBAAwB;IACvC,cAAc,CAAC,EAAE,0BAA0B,CAAC;IAC5C,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,sIAAsI;IACtI,OAAO,CAAC,EAAE,gBAAgB,EAAE,CAAC;IAC7B,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,SAAS,CAAC,EAAE,eAAe,CAAC;CAC7B"}

package/dist/config-types.cjs

@@ -0,0 +1,19 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/config-types.ts
+var config_types_exports = {};
+module.exports = __toCommonJS(config_types_exports);
+//# sourceMappingURL=config-types.cjs.map

package/dist/config-types.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/config-types.ts"],"sourcesContent":["// ── Tenant config types ──────────────────────────────────────────────────────\n\nexport type {\n  TelemetryConfig,\n  PathResolverConfig,\n  SubdomainResolverConfig,\n  StaticJwtResolverConfig,\n  StaticTenantResolverConfig,\n  BetterTenantStaticConfig,\n} from \"./config-types-tenant.js\";\n\n// ── Audit config types ───────────────────────────────────────────────────────\n\nexport type {\n  RetentionPolicy,\n  BetterAuditStaticConfig,\n} from \"./config-types-audit.js\";\n\n// ── Console config types ─────────────────────────────────────────────────────\n\nexport type {\n  StaticMagicLinkConfig,\n  StaticConsoleSessionConfig,\n  BetterConsoleStaticConfig,\n} from \"./config-types-console.js\";\n\n// ── Top-level config ─────────────────────────────────────────────────────────\n\nimport type { BetterTenantStaticConfig } from \"./config-types-tenant.js\";\nimport type { BetterAuditStaticConfig } from \"./config-types-audit.js\";\nimport type { BetterConsoleStaticConfig } from \"./config-types-console.js\";\n\n/** Top-level static config object for a Better* application. */\nexport interface BetterConfig {\n  tenant?: BetterTenantStaticConfig;\n  audit?: BetterAuditStaticConfig;\n  console?: BetterConsoleStaticConfig;\n}\n"],"mappings":";;;;;;;;;;;;;;;;AAAA;AAAA;","names":[]}

package/dist/config-types.d.cts

@@ -0,0 +1,92 @@
+import { PluginDefinition } from '@usebetterdev/plugin';
+
+/** Telemetry options. On by default; set enabled: false to opt out. */
+interface TelemetryConfig {
+    enabled?: boolean;
+    debug?: boolean;
+}
+/** Path resolver: pattern e.g. "/t/:tenantId/*" or "/t/:tenantId". */
+interface PathResolverConfig {
+    pattern: string;
+    /** Segment index for :tenantId (default derived from pattern). */
+    segmentIndex?: number;
+}
+/** Subdomain resolver: use segment index (default 0 = first segment). */
+type SubdomainResolverConfig = boolean | {
+    segmentIndex?: number;
+};
+/** Static JWT resolver config (no runtime callbacks). */
+interface StaticJwtResolverConfig {
+    claim: string;
+}
+/** Static tenant resolver config — serializable subset with no callbacks. */
+interface StaticTenantResolverConfig {
+    header?: string;
+    path?: string | PathResolverConfig;
+    subdomain?: SubdomainResolverConfig;
+    jwt?: string | StaticJwtResolverConfig;
+}
+/** Static configuration for @usebetterdev/tenant. */
+interface BetterTenantStaticConfig {
+    tenantResolver?: StaticTenantResolverConfig;
+    tenantTables: string[];
+    /** Plugins to load. Uses the full PluginDefinition type; the runtime BetterTenantConfig uses the simpler BetterTenantPlugin shape. */
+    plugins?: PluginDefinition[];
+    basePath?: string;
+    loadTenant?: boolean;
+    telemetry?: TelemetryConfig;
+}
+
+/** Retention policy controlling automatic and CLI-driven purge of old audit logs. */
+interface RetentionPolicy {
+    /** Purge entries older than this many days. Must be a positive integer. */
+    days: number;
+    /** When set, only purge logs for these specific tables. */
+    tables?: string[];
+}
+/** Static configuration for @usebetterdev/audit. */
+interface BetterAuditStaticConfig {
+    auditTables: string[];
+    asyncWrite?: boolean;
+    maxQueryLimit?: number;
+    retention?: RetentionPolicy;
+    /** Plugins to load. Uses the full PluginDefinition type; the runtime BetterAuditConfig uses the simpler plugin shape. */
+    plugins?: PluginDefinition[];
+}
+
+/** Static magic link config — serializable subset with no callbacks. */
+interface StaticMagicLinkConfig {
+    allowedEmails: string | string[];
+    /**
+     * Required when `allowedEmails` contains a `*` wildcard in production.
+     * Explicitly acknowledges that any email address can initiate a magic link session.
+     */
+    allowUnauthenticatedEmails?: boolean;
+    /** Maximum failed code verification attempts before lockout. Default: 5. */
+    maxAttempts?: number;
+}
+/** Static session config — serializable subset with no callbacks. */
+interface StaticConsoleSessionConfig {
+    magicLink?: StaticMagicLinkConfig;
+    autoApprove?: boolean;
+    /** Token lifetime as a duration string, e.g. "24h", "8h", "1h". Default: "24h". */
+    tokenLifetime?: string;
+    refreshEnabled?: boolean;
+}
+/** Static configuration for @usebetterdev/console. */
+interface BetterConsoleStaticConfig {
+    /** Origins allowed for CORS. Default: ["https://console.usebetter.dev"]. */
+    allowedOrigins?: string[];
+    sessions?: StaticConsoleSessionConfig;
+    /** Permission levels granted to sessions. Default: ["read", "write", "admin"]. */
+    allowedActions?: Array<"read" | "write" | "admin">;
+}
+
+/** Top-level static config object for a Better* application. */
+interface BetterConfig {
+    tenant?: BetterTenantStaticConfig;
+    audit?: BetterAuditStaticConfig;
+    console?: BetterConsoleStaticConfig;
+}
+
+export type { BetterAuditStaticConfig, BetterConfig, BetterConsoleStaticConfig, BetterTenantStaticConfig, PathResolverConfig, RetentionPolicy, StaticConsoleSessionConfig, StaticJwtResolverConfig, StaticMagicLinkConfig, StaticTenantResolverConfig, SubdomainResolverConfig, TelemetryConfig };

package/dist/config-types.d.ts

@@ -0,0 +1,13 @@
+export type { TelemetryConfig, PathResolverConfig, SubdomainResolverConfig, StaticJwtResolverConfig, StaticTenantResolverConfig, BetterTenantStaticConfig, } from "./config-types-tenant.js";
+export type { RetentionPolicy, BetterAuditStaticConfig, } from "./config-types-audit.js";
+export type { StaticMagicLinkConfig, StaticConsoleSessionConfig, BetterConsoleStaticConfig, } from "./config-types-console.js";
+import type { BetterTenantStaticConfig } from "./config-types-tenant.js";
+import type { BetterAuditStaticConfig } from "./config-types-audit.js";
+import type { BetterConsoleStaticConfig } from "./config-types-console.js";
+/** Top-level static config object for a Better* application. */
+export interface BetterConfig {
+    tenant?: BetterTenantStaticConfig;
+    audit?: BetterAuditStaticConfig;
+    console?: BetterConsoleStaticConfig;
+}
+//# sourceMappingURL=config-types.d.ts.map

package/dist/config-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"config-types.d.ts","sourceRoot":"","sources":["../src/config-types.ts"],"names":[],"mappings":"AAEA,YAAY,EACV,eAAe,EACf,kBAAkB,EAClB,uBAAuB,EACvB,uBAAuB,EACvB,0BAA0B,EAC1B,wBAAwB,GACzB,MAAM,0BAA0B,CAAC;AAIlC,YAAY,EACV,eAAe,EACf,uBAAuB,GACxB,MAAM,yBAAyB,CAAC;AAIjC,YAAY,EACV,qBAAqB,EACrB,0BAA0B,EAC1B,yBAAyB,GAC1B,MAAM,2BAA2B,CAAC;AAInC,OAAO,KAAK,EAAE,wBAAwB,EAAE,MAAM,0BAA0B,CAAC;AACzE,OAAO,KAAK,EAAE,uBAAuB,EAAE,MAAM,yBAAyB,CAAC;AACvE,OAAO,KAAK,EAAE,yBAAyB,EAAE,MAAM,2BAA2B,CAAC;AAE3E,gEAAgE;AAChE,MAAM,WAAW,YAAY;IAC3B,MAAM,CAAC,EAAE,wBAAwB,CAAC;IAClC,KAAK,CAAC,EAAE,uBAAuB,CAAC;IAChC,OAAO,CAAC,EAAE,yBAAyB,CAAC;CACrC"}

package/dist/config-types.js

@@ -0,0 +1 @@
+//# sourceMappingURL=config-types.js.map

package/dist/config-types.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/index.cjs

@@ -0,0 +1,19 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/index.ts
+var index_exports = {};
+module.exports = __toCommonJS(index_exports);
+//# sourceMappingURL=index.cjs.map

package/dist/index.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/index.ts"],"sourcesContent":["/** Permission levels for console access. */\nexport type ConsolePermission = \"read\" | \"write\" | \"admin\";\n\n/** Minimal session info exposed to product handlers. */\nexport interface ConsoleProductSession {\n  id: string;\n  email: string;\n  permissions: ConsolePermission;\n}\n\n/**\n * Request object passed to product endpoint handlers.\n * Constructed by the console after authentication — session is always present.\n */\nexport interface ConsoleProductRequest {\n  params: Record<string, string>;\n  query: Record<string, string>;\n  body: unknown;\n  session: ConsoleProductSession;\n}\n\n/** Standardized response from endpoint handlers. */\nexport interface ConsoleResponse {\n  status: number;\n  body: unknown;\n  headers?: Record<string, string>;\n}\n\n/** A single endpoint registered by a product. */\nexport interface ConsoleProductEndpoint {\n  method: \"GET\" | \"POST\" | \"PATCH\" | \"DELETE\";\n  /** Path relative to the product mount, e.g. \"/tenants\" or \"/logs/:id\". */\n  path: string;\n  handler: (request: ConsoleProductRequest) => Promise<ConsoleResponse>;\n  requiredPermission?: ConsolePermission;\n}\n\n/** Product definition registered with the console. */\nexport interface ConsoleProduct {\n  /** Short identifier, e.g. \"tenant\", \"audit\". */\n  id: string;\n  /** Display name, e.g. \"Better Tenant\". */\n  name: string;\n  endpoints: ConsoleProductEndpoint[];\n}\n\n/** Interface products use to register with the console. */\nexport interface ConsoleRegistration {\n  registerProduct(product: ConsoleProduct): void;\n}\n\n// Re-export well-known endpoint types\nexport type {\n  HealthResponse,\n  CapabilitiesResponse,\n  SessionInitRequest,\n  SessionInitResponse,\n  SessionVerifyRequest,\n  SessionVerifyResponse,\n  SessionPollRequest,\n  SessionPollResponse,\n  SessionClaimRequest,\n  SessionClaimResponse,\n} from \"./wellknown-types.js\";\n\n// Re-export wire-format types for product endpoints\nexport type {\n  ConsoleErrorResponse,\n  AuditLogWire,\n  AuditLogsResponse,\n  AuditLogResponse,\n  AuditStatsResponse,\n  AuditEnrichmentSummary,\n  AuditEnrichmentsResponse,\n  AuditPurgeResponse,\n  AuditPurgeRequest,\n  AuditLogsQuery,\n  AuditStatsQuery,\n  TenantWire,\n  TenantsResponse,\n  TenantResponse,\n  CreateTenantRequest,\n  UpdateTenantRequest,\n  TenantStatsResponse,\n  TenantsQuery,\n} from \"./product-types.js\";\n\n// Re-export shared config types\nexport type {\n  TelemetryConfig,\n  PathResolverConfig,\n  SubdomainResolverConfig,\n  RetentionPolicy,\n  StaticJwtResolverConfig,\n  StaticTenantResolverConfig,\n  BetterTenantStaticConfig,\n  BetterAuditStaticConfig,\n  StaticMagicLinkConfig,\n  StaticConsoleSessionConfig,\n  BetterConsoleStaticConfig,\n  BetterConfig,\n} from \"./config-types.js\";\n"],"mappings":";;;;;;;;;;;;;;;;AAAA;AAAA;","names":[]}

package/dist/index.d.cts

@@ -0,0 +1,3 @@
+export { AuditEnrichmentSummary, AuditEnrichmentsResponse, AuditLogResponse, AuditLogWire, AuditLogsQuery, AuditLogsResponse, AuditPurgeRequest, AuditPurgeResponse, AuditStatsQuery, AuditStatsResponse, C as CapabilitiesResponse, ConsoleErrorResponse, ConsolePermission, a as ConsoleProduct, b as ConsoleProductEndpoint, c as ConsoleProductRequest, d as ConsoleProductSession, e as ConsoleRegistration, f as ConsoleResponse, CreateTenantRequest, H as HealthResponse, S as SessionClaimRequest, g as SessionClaimResponse, h as SessionInitRequest, i as SessionInitResponse, j as SessionPollRequest, k as SessionPollResponse, l as SessionVerifyRequest, m as SessionVerifyResponse, TenantResponse, TenantStatsResponse, TenantWire, TenantsQuery, TenantsResponse, UpdateTenantRequest } from './product-types.cjs';
+export { BetterAuditStaticConfig, BetterConfig, BetterConsoleStaticConfig, BetterTenantStaticConfig, PathResolverConfig, RetentionPolicy, StaticConsoleSessionConfig, StaticJwtResolverConfig, StaticMagicLinkConfig, StaticTenantResolverConfig, SubdomainResolverConfig, TelemetryConfig } from './config-types.cjs';
+import '@usebetterdev/plugin';

package/dist/index.d.ts

@@ -0,0 +1,48 @@
+/** Permission levels for console access. */
+export type ConsolePermission = "read" | "write" | "admin";
+/** Minimal session info exposed to product handlers. */
+export interface ConsoleProductSession {
+    id: string;
+    email: string;
+    permissions: ConsolePermission;
+}
+/**
+ * Request object passed to product endpoint handlers.
+ * Constructed by the console after authentication — session is always present.
+ */
+export interface ConsoleProductRequest {
+    params: Record<string, string>;
+    query: Record<string, string>;
+    body: unknown;
+    session: ConsoleProductSession;
+}
+/** Standardized response from endpoint handlers. */
+export interface ConsoleResponse {
+    status: number;
+    body: unknown;
+    headers?: Record<string, string>;
+}
+/** A single endpoint registered by a product. */
+export interface ConsoleProductEndpoint {
+    method: "GET" | "POST" | "PATCH" | "DELETE";
+    /** Path relative to the product mount, e.g. "/tenants" or "/logs/:id". */
+    path: string;
+    handler: (request: ConsoleProductRequest) => Promise<ConsoleResponse>;
+    requiredPermission?: ConsolePermission;
+}
+/** Product definition registered with the console. */
+export interface ConsoleProduct {
+    /** Short identifier, e.g. "tenant", "audit". */
+    id: string;
+    /** Display name, e.g. "Better Tenant". */
+    name: string;
+    endpoints: ConsoleProductEndpoint[];
+}
+/** Interface products use to register with the console. */
+export interface ConsoleRegistration {
+    registerProduct(product: ConsoleProduct): void;
+}
+export type { HealthResponse, CapabilitiesResponse, SessionInitRequest, SessionInitResponse, SessionVerifyRequest, SessionVerifyResponse, SessionPollRequest, SessionPollResponse, SessionClaimRequest, SessionClaimResponse, } from "./wellknown-types.js";
+export type { ConsoleErrorResponse, AuditLogWire, AuditLogsResponse, AuditLogResponse, AuditStatsResponse, AuditEnrichmentSummary, AuditEnrichmentsResponse, AuditPurgeResponse, AuditPurgeRequest, AuditLogsQuery, AuditStatsQuery, TenantWire, TenantsResponse, TenantResponse, CreateTenantRequest, UpdateTenantRequest, TenantStatsResponse, TenantsQuery, } from "./product-types.js";
+export type { TelemetryConfig, PathResolverConfig, SubdomainResolverConfig, RetentionPolicy, StaticJwtResolverConfig, StaticTenantResolverConfig, BetterTenantStaticConfig, BetterAuditStaticConfig, StaticMagicLinkConfig, StaticConsoleSessionConfig, BetterConsoleStaticConfig, BetterConfig, } from "./config-types.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,4CAA4C;AAC5C,MAAM,MAAM,iBAAiB,GAAG,MAAM,GAAG,OAAO,GAAG,OAAO,CAAC;AAE3D,wDAAwD;AACxD,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,WAAW,EAAE,iBAAiB,CAAC;CAChC;AAED;;;GAGG;AACH,MAAM,WAAW,qBAAqB;IACpC,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC/B,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC9B,IAAI,EAAE,OAAO,CAAC;IACd,OAAO,EAAE,qBAAqB,CAAC;CAChC;AAED,oDAAoD;AACpD,MAAM,WAAW,eAAe;IAC9B,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE,OAAO,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC;AAED,iDAAiD;AACjD,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,KAAK,GAAG,MAAM,GAAG,OAAO,GAAG,QAAQ,CAAC;IAC5C,0EAA0E;IAC1E,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,EAAE,CAAC,OAAO,EAAE,qBAAqB,KAAK,OAAO,CAAC,eAAe,CAAC,CAAC;IACtE,kBAAkB,CAAC,EAAE,iBAAiB,CAAC;CACxC;AAED,sDAAsD;AACtD,MAAM,WAAW,cAAc;IAC7B,gDAAgD;IAChD,EAAE,EAAE,MAAM,CAAC;IACX,0CAA0C;IAC1C,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,sBAAsB,EAAE,CAAC;CACrC;AAED,2DAA2D;AAC3D,MAAM,WAAW,mBAAmB;IAClC,eAAe,CAAC,OAAO,EAAE,cAAc,GAAG,IAAI,CAAC;CAChD;AAGD,YAAY,EACV,cAAc,EACd,oBAAoB,EACpB,kBAAkB,EAClB,mBAAmB,EACnB,oBAAoB,EACpB,qBAAqB,EACrB,kBAAkB,EAClB,mBAAmB,EACnB,mBAAmB,EACnB,oBAAoB,GACrB,MAAM,sBAAsB,CAAC;AAG9B,YAAY,EACV,oBAAoB,EACpB,YAAY,EACZ,iBAAiB,EACjB,gBAAgB,EAChB,kBAAkB,EAClB,sBAAsB,EACtB,wBAAwB,EACxB,kBAAkB,EAClB,iBAAiB,EACjB,cAAc,EACd,eAAe,EACf,UAAU,EACV,eAAe,EACf,cAAc,EACd,mBAAmB,EACnB,mBAAmB,EACnB,mBAAmB,EACnB,YAAY,GACb,MAAM,oBAAoB,CAAC;AAG5B,YAAY,EACV,eAAe,EACf,kBAAkB,EAClB,uBAAuB,EACvB,eAAe,EACf,uBAAuB,EACvB,0BAA0B,EAC1B,wBAAwB,EACxB,uBAAuB,EACvB,qBAAqB,EACrB,0BAA0B,EAC1B,yBAAyB,EACzB,YAAY,GACb,MAAM,mBAAmB,CAAC"}

package/dist/index.js

@@ -0,0 +1 @@
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/product-types.cjs

@@ -0,0 +1,19 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/product-types.ts
+var product_types_exports = {};
+module.exports = __toCommonJS(product_types_exports);
+//# sourceMappingURL=product-types.cjs.map

package/dist/product-types.cjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/product-types.ts"],"sourcesContent":["/**\n * Wire-format types for product endpoints.\n *\n * These represent the JSON shapes that flow over HTTP between customer apps\n * and the console web app. Server-side types use `Date` objects; wire-format\n * types use `string` (ISO-8601) since JSON serialization converts dates.\n */\n\nimport type { ConsolePermission } from \"./index.js\";\n\n// Re-export so consumers can use a single import path\nexport type { ConsolePermission } from \"./index.js\";\n\n// ---------------------------------------------------------------------------\n// Shared\n// ---------------------------------------------------------------------------\n\n/** Standard error envelope returned by all error responses. */\nexport interface ConsoleErrorResponse {\n  error: string;\n  code?: string;\n}\n\n// ---------------------------------------------------------------------------\n// Audit — wire types\n// ---------------------------------------------------------------------------\n\n/** Serialized audit log entry (Date fields become ISO-8601 strings). */\nexport interface AuditLogWire {\n  id: string;\n  /** ISO-8601 timestamp (serialized from Date). */\n  timestamp: string;\n  tableName: string;\n  operation: \"INSERT\" | \"UPDATE\" | \"DELETE\";\n  recordId: string;\n  beforeData?: Record<string, unknown>;\n  afterData?: Record<string, unknown>;\n  diff?: { changedFields: string[] };\n  actorId?: string;\n  label?: string;\n  description?: string;\n  severity?: \"low\" | \"medium\" | \"high\" | \"critical\";\n  compliance?: string[];\n  notify?: boolean;\n  reason?: string;\n  metadata?: Record<string, unknown>;\n  redactedFields?: string[];\n}\n\n/** GET /audit/logs response body. */\nexport interface AuditLogsResponse {\n  entries: AuditLogWire[];\n  nextCursor?: string;\n  hasNextPage: boolean;\n}\n\n/** GET /audit/logs/:id response body. */\nexport type AuditLogResponse = AuditLogWire;\n\n/** GET /audit/stats response body. */\nexport interface AuditStatsResponse {\n  totalLogs: number;\n  tablesAudited: number;\n  eventsPerDay: Array<{ date: string; count: number }>;\n  topActors: Array<{ actorId: string; count: number }>;\n  topTables: Array<{ tableName: string; count: number }>;\n  operationBreakdown: Record<string, number>;\n  severityBreakdown: Record<string, number>;\n}\n\n/** GET /audit/enrichments response body (single item). */\nexport interface AuditEnrichmentSummary {\n  table: string;\n  operation: string;\n  label?: string;\n  severity?: \"low\" | \"medium\" | \"high\" | \"critical\";\n  compliance?: string[];\n  notify?: boolean;\n  redact?: string[];\n  include?: string[];\n}\n\n/** GET /audit/enrichments response body. */\nexport type AuditEnrichmentsResponse = AuditEnrichmentSummary[];\n\n/** DELETE /audit/logs response body. */\nexport interface AuditPurgeResponse {\n  deletedCount: number;\n}\n\n/** DELETE /audit/logs request body. */\nexport interface AuditPurgeRequest {\n  /** ISO-8601 date string. */\n  before: string;\n  tableName?: string;\n}\n\n/** GET /audit/logs query parameters. All values are strings (URL params). */\nexport interface AuditLogsQuery {\n  tableName?: string;\n  operation?: string;\n  actorId?: string;\n  severity?: string;\n  compliance?: string;\n  /** ISO-8601 date string. */\n  since?: string;\n  /** ISO-8601 date string. */\n  until?: string;\n  search?: string;\n  /** Stringified positive integer. */\n  limit?: string;\n  cursor?: string;\n}\n\n/** GET /audit/stats query parameters. */\nexport interface AuditStatsQuery {\n  /** ISO-8601 date string. */\n  since?: string;\n}\n\n// ---------------------------------------------------------------------------\n// Tenant — wire types\n// ---------------------------------------------------------------------------\n\n/** Serialized tenant record (Date fields become ISO-8601 strings). */\nexport interface TenantWire {\n  id: string;\n  name: string;\n  slug: string;\n  /** ISO-8601 timestamp (serialized from Date | string). */\n  createdAt: string;\n  [key: string]: unknown;\n}\n\n/** GET /tenant/tenants response body. */\nexport type TenantsResponse = TenantWire[];\n\n/** GET /tenant/tenants/:id response body. */\nexport type TenantResponse = TenantWire;\n\n/** POST /tenant/tenants request body. */\nexport interface CreateTenantRequest {\n  name: string;\n  slug: string;\n}\n\n/** PATCH /tenant/tenants/:id request body. */\nexport interface UpdateTenantRequest {\n  name?: string;\n  slug?: string;\n}\n\n/** GET /tenant/stats response body. */\nexport interface TenantStatsResponse {\n  tenantCount: number;\n}\n\n/** GET /tenant/tenants query parameters. All values are strings (URL params). */\nexport interface TenantsQuery {\n  /** Stringified positive integer. */\n  limit?: string;\n  /** Stringified non-negative integer. */\n  offset?: string;\n}\n"],"mappings":";;;;;;;;;;;;;;;;AAAA;AAAA;","names":[]}

package/dist/product-types.d.cts

@@ -0,0 +1,246 @@
+import './config-types.cjs';
+import '@usebetterdev/plugin';
+
+/**
+ * Wire-format types for console well-known endpoints.
+ *
+ * These represent the JSON request/response shapes for the
+ * `/.well-known/better/console/*` HTTP endpoints.
+ */
+
+interface HealthResponse {
+    status: "ok";
+}
+interface CapabilitiesResponse {
+    products: string[];
+    authMethods: string[];
+    permissions: ConsolePermission[];
+}
+interface SessionInitRequest {
+    email?: string;
+    appName?: string;
+    baseUrl?: string;
+}
+type SessionInitResponse = {
+    method: "auto_approve";
+    sessionToken: string;
+    expiresIn: number;
+} | {
+    method: "magic_link";
+    sessionId: string;
+} | {
+    method: "redirect";
+    redirectUrl: string;
+};
+interface SessionVerifyRequest {
+    code: string;
+    session_id: string;
+}
+interface SessionVerifyResponse {
+    status: "verified";
+}
+interface SessionPollRequest {
+    session_id: string;
+}
+interface SessionPollResponse {
+    status: "pending" | "verified" | "expired";
+}
+interface SessionClaimRequest {
+    session_id: string;
+}
+type SessionClaimResponse = {
+    status: "claimed";
+    sessionToken: string;
+    expiresIn: number;
+} | {
+    status: "already_claimed";
+};
+
+/**
+ * Wire-format types for product endpoints.
+ *
+ * These represent the JSON shapes that flow over HTTP between customer apps
+ * and the console web app. Server-side types use `Date` objects; wire-format
+ * types use `string` (ISO-8601) since JSON serialization converts dates.
+ */
+
+/** Standard error envelope returned by all error responses. */
+interface ConsoleErrorResponse {
+    error: string;
+    code?: string;
+}
+/** Serialized audit log entry (Date fields become ISO-8601 strings). */
+interface AuditLogWire {
+    id: string;
+    /** ISO-8601 timestamp (serialized from Date). */
+    timestamp: string;
+    tableName: string;
+    operation: "INSERT" | "UPDATE" | "DELETE";
+    recordId: string;
+    beforeData?: Record<string, unknown>;
+    afterData?: Record<string, unknown>;
+    diff?: {
+        changedFields: string[];
+    };
+    actorId?: string;
+    label?: string;
+    description?: string;
+    severity?: "low" | "medium" | "high" | "critical";
+    compliance?: string[];
+    notify?: boolean;
+    reason?: string;
+    metadata?: Record<string, unknown>;
+    redactedFields?: string[];
+}
+/** GET /audit/logs response body. */
+interface AuditLogsResponse {
+    entries: AuditLogWire[];
+    nextCursor?: string;
+    hasNextPage: boolean;
+}
+/** GET /audit/logs/:id response body. */
+type AuditLogResponse = AuditLogWire;
+/** GET /audit/stats response body. */
+interface AuditStatsResponse {
+    totalLogs: number;
+    tablesAudited: number;
+    eventsPerDay: Array<{
+        date: string;
+        count: number;
+    }>;
+    topActors: Array<{
+        actorId: string;
+        count: number;
+    }>;
+    topTables: Array<{
+        tableName: string;
+        count: number;
+    }>;
+    operationBreakdown: Record<string, number>;
+    severityBreakdown: Record<string, number>;
+}
+/** GET /audit/enrichments response body (single item). */
+interface AuditEnrichmentSummary {
+    table: string;
+    operation: string;
+    label?: string;
+    severity?: "low" | "medium" | "high" | "critical";
+    compliance?: string[];
+    notify?: boolean;
+    redact?: string[];
+    include?: string[];
+}
+/** GET /audit/enrichments response body. */
+type AuditEnrichmentsResponse = AuditEnrichmentSummary[];
+/** DELETE /audit/logs response body. */
+interface AuditPurgeResponse {
+    deletedCount: number;
+}
+/** DELETE /audit/logs request body. */
+interface AuditPurgeRequest {
+    /** ISO-8601 date string. */
+    before: string;
+    tableName?: string;
+}
+/** GET /audit/logs query parameters. All values are strings (URL params). */
+interface AuditLogsQuery {
+    tableName?: string;
+    operation?: string;
+    actorId?: string;
+    severity?: string;
+    compliance?: string;
+    /** ISO-8601 date string. */
+    since?: string;
+    /** ISO-8601 date string. */
+    until?: string;
+    search?: string;
+    /** Stringified positive integer. */
+    limit?: string;
+    cursor?: string;
+}
+/** GET /audit/stats query parameters. */
+interface AuditStatsQuery {
+    /** ISO-8601 date string. */
+    since?: string;
+}
+/** Serialized tenant record (Date fields become ISO-8601 strings). */
+interface TenantWire {
+    id: string;
+    name: string;
+    slug: string;
+    /** ISO-8601 timestamp (serialized from Date | string). */
+    createdAt: string;
+    [key: string]: unknown;
+}
+/** GET /tenant/tenants response body. */
+type TenantsResponse = TenantWire[];
+/** GET /tenant/tenants/:id response body. */
+type TenantResponse = TenantWire;
+/** POST /tenant/tenants request body. */
+interface CreateTenantRequest {
+    name: string;
+    slug: string;
+}
+/** PATCH /tenant/tenants/:id request body. */
+interface UpdateTenantRequest {
+    name?: string;
+    slug?: string;
+}
+/** GET /tenant/stats response body. */
+interface TenantStatsResponse {
+    tenantCount: number;
+}
+/** GET /tenant/tenants query parameters. All values are strings (URL params). */
+interface TenantsQuery {
+    /** Stringified positive integer. */
+    limit?: string;
+    /** Stringified non-negative integer. */
+    offset?: string;
+}
+
+/** Permission levels for console access. */
+type ConsolePermission = "read" | "write" | "admin";
+/** Minimal session info exposed to product handlers. */
+interface ConsoleProductSession {
+    id: string;
+    email: string;
+    permissions: ConsolePermission;
+}
+/**
+ * Request object passed to product endpoint handlers.
+ * Constructed by the console after authentication — session is always present.
+ */
+interface ConsoleProductRequest {
+    params: Record<string, string>;
+    query: Record<string, string>;
+    body: unknown;
+    session: ConsoleProductSession;
+}
+/** Standardized response from endpoint handlers. */
+interface ConsoleResponse {
+    status: number;
+    body: unknown;
+    headers?: Record<string, string>;
+}
+/** A single endpoint registered by a product. */
+interface ConsoleProductEndpoint {
+    method: "GET" | "POST" | "PATCH" | "DELETE";
+    /** Path relative to the product mount, e.g. "/tenants" or "/logs/:id". */
+    path: string;
+    handler: (request: ConsoleProductRequest) => Promise<ConsoleResponse>;
+    requiredPermission?: ConsolePermission;
+}
+/** Product definition registered with the console. */
+interface ConsoleProduct {
+    /** Short identifier, e.g. "tenant", "audit". */
+    id: string;
+    /** Display name, e.g. "Better Tenant". */
+    name: string;
+    endpoints: ConsoleProductEndpoint[];
+}
+/** Interface products use to register with the console. */
+interface ConsoleRegistration {
+    registerProduct(product: ConsoleProduct): void;
+}
+
+export type { AuditEnrichmentSummary, AuditEnrichmentsResponse, AuditLogResponse, AuditLogWire, AuditLogsQuery, AuditLogsResponse, AuditPurgeRequest, AuditPurgeResponse, AuditStatsQuery, AuditStatsResponse, CapabilitiesResponse as C, ConsoleErrorResponse, ConsolePermission, CreateTenantRequest, HealthResponse as H, SessionClaimRequest as S, TenantResponse, TenantStatsResponse, TenantWire, TenantsQuery, TenantsResponse, UpdateTenantRequest, ConsoleProduct as a, ConsoleProductEndpoint as b, ConsoleProductRequest as c, ConsoleProductSession as d, ConsoleRegistration as e, ConsoleResponse as f, SessionClaimResponse as g, SessionInitRequest as h, SessionInitResponse as i, SessionPollRequest as j, SessionPollResponse as k, SessionVerifyRequest as l, SessionVerifyResponse as m };

package/dist/product-types.d.ts

@@ -0,0 +1,142 @@
+/**
+ * Wire-format types for product endpoints.
+ *
+ * These represent the JSON shapes that flow over HTTP between customer apps
+ * and the console web app. Server-side types use `Date` objects; wire-format
+ * types use `string` (ISO-8601) since JSON serialization converts dates.
+ */
+export type { ConsolePermission } from "./index.js";
+/** Standard error envelope returned by all error responses. */
+export interface ConsoleErrorResponse {
+    error: string;
+    code?: string;
+}
+/** Serialized audit log entry (Date fields become ISO-8601 strings). */
+export interface AuditLogWire {
+    id: string;
+    /** ISO-8601 timestamp (serialized from Date). */
+    timestamp: string;
+    tableName: string;
+    operation: "INSERT" | "UPDATE" | "DELETE";
+    recordId: string;
+    beforeData?: Record<string, unknown>;
+    afterData?: Record<string, unknown>;
+    diff?: {
+        changedFields: string[];
+    };
+    actorId?: string;
+    label?: string;
+    description?: string;
+    severity?: "low" | "medium" | "high" | "critical";
+    compliance?: string[];
+    notify?: boolean;
+    reason?: string;
+    metadata?: Record<string, unknown>;
+    redactedFields?: string[];
+}
+/** GET /audit/logs response body. */
+export interface AuditLogsResponse {
+    entries: AuditLogWire[];
+    nextCursor?: string;
+    hasNextPage: boolean;
+}
+/** GET /audit/logs/:id response body. */
+export type AuditLogResponse = AuditLogWire;
+/** GET /audit/stats response body. */
+export interface AuditStatsResponse {
+    totalLogs: number;
+    tablesAudited: number;
+    eventsPerDay: Array<{
+        date: string;
+        count: number;
+    }>;
+    topActors: Array<{
+        actorId: string;
+        count: number;
+    }>;
+    topTables: Array<{
+        tableName: string;
+        count: number;
+    }>;
+    operationBreakdown: Record<string, number>;
+    severityBreakdown: Record<string, number>;
+}
+/** GET /audit/enrichments response body (single item). */
+export interface AuditEnrichmentSummary {
+    table: string;
+    operation: string;
+    label?: string;
+    severity?: "low" | "medium" | "high" | "critical";
+    compliance?: string[];
+    notify?: boolean;
+    redact?: string[];
+    include?: string[];
+}
+/** GET /audit/enrichments response body. */
+export type AuditEnrichmentsResponse = AuditEnrichmentSummary[];
+/** DELETE /audit/logs response body. */
+export interface AuditPurgeResponse {
+    deletedCount: number;
+}
+/** DELETE /audit/logs request body. */
+export interface AuditPurgeRequest {
+    /** ISO-8601 date string. */
+    before: string;
+    tableName?: string;
+}
+/** GET /audit/logs query parameters. All values are strings (URL params). */
+export interface AuditLogsQuery {
+    tableName?: string;
+    operation?: string;
+    actorId?: string;
+    severity?: string;
+    compliance?: string;
+    /** ISO-8601 date string. */
+    since?: string;
+    /** ISO-8601 date string. */
+    until?: string;
+    search?: string;
+    /** Stringified positive integer. */
+    limit?: string;
+    cursor?: string;
+}
+/** GET /audit/stats query parameters. */
+export interface AuditStatsQuery {
+    /** ISO-8601 date string. */
+    since?: string;
+}
+/** Serialized tenant record (Date fields become ISO-8601 strings). */
+export interface TenantWire {
+    id: string;
+    name: string;
+    slug: string;
+    /** ISO-8601 timestamp (serialized from Date | string). */
+    createdAt: string;
+    [key: string]: unknown;
+}
+/** GET /tenant/tenants response body. */
+export type TenantsResponse = TenantWire[];
+/** GET /tenant/tenants/:id response body. */
+export type TenantResponse = TenantWire;
+/** POST /tenant/tenants request body. */
+export interface CreateTenantRequest {
+    name: string;
+    slug: string;
+}
+/** PATCH /tenant/tenants/:id request body. */
+export interface UpdateTenantRequest {
+    name?: string;
+    slug?: string;
+}
+/** GET /tenant/stats response body. */
+export interface TenantStatsResponse {
+    tenantCount: number;
+}
+/** GET /tenant/tenants query parameters. All values are strings (URL params). */
+export interface TenantsQuery {
+    /** Stringified positive integer. */
+    limit?: string;
+    /** Stringified non-negative integer. */
+    offset?: string;
+}
+//# sourceMappingURL=product-types.d.ts.map

package/dist/product-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"product-types.d.ts","sourceRoot":"","sources":["../src/product-types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAKH,YAAY,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAMpD,+DAA+D;AAC/D,MAAM,WAAW,oBAAoB;IACnC,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAMD,wEAAwE;AACxE,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,CAAC;IACX,iDAAiD;IACjD,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,QAAQ,GAAG,QAAQ,GAAG,QAAQ,CAAC;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,IAAI,CAAC,EAAE;QAAE,aAAa,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IAClD,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACnC,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,qCAAqC;AACrC,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,YAAY,EAAE,CAAC;IACxB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,WAAW,EAAE,OAAO,CAAC;CACtB;AAED,yCAAyC;AACzC,MAAM,MAAM,gBAAgB,GAAG,YAAY,CAAC;AAE5C,sCAAsC;AACtC,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,aAAa,EAAE,MAAM,CAAC;IACtB,YAAY,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACrD,SAAS,EAAE,KAAK,CAAC;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACrD,SAAS,EAAE,KAAK,CAAC;QAAE,SAAS,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACvD,kBAAkB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAC3C,iBAAiB,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC3C;AAED,0DAA0D;AAC1D,MAAM,WAAW,sBAAsB;IACrC,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IAClD,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;CACpB;AAED,4CAA4C;AAC5C,MAAM,MAAM,wBAAwB,GAAG,sBAAsB,EAAE,CAAC;AAEhE,wCAAwC;AACxC,MAAM,WAAW,kBAAkB;IACjC,YAAY,EAAE,MAAM,CAAC;CACtB;AAED,uCAAuC;AACvC,MAAM,WAAW,iBAAiB;IAChC,4BAA4B;IAC5B,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,6EAA6E;AAC7E,MAAM,WAAW,cAAc;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,4BAA4B;IAC5B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,oCAAoC;IACpC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,yCAAyC;AACzC,MAAM,WAAW,eAAe;IAC9B,4BAA4B;IAC5B,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAMD,sEAAsE;AACtE,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,0DAA0D;IAC1D,SAAS,EAAE,MAAM,CAAC;IAClB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAED,yCAAyC;AACzC,MAAM,MAAM,eAAe,GAAG,UAAU,EAAE,CAAC;AAE3C,6CAA6C;AAC7C,MAAM,MAAM,cAAc,GAAG,UAAU,CAAC;AAExC,yCAAyC;AACzC,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;CACd;AAED,8CAA8C;AAC9C,MAAM,WAAW,mBAAmB;IAClC,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,uCAAuC;AACvC,MAAM,WAAW,mBAAmB;IAClC,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,iFAAiF;AACjF,MAAM,WAAW,YAAY;IAC3B,oCAAoC;IACpC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,wCAAwC;IACxC,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB"}

package/dist/product-types.js

@@ -0,0 +1 @@
+//# sourceMappingURL=product-types.js.map

package/dist/product-types.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":[],"sourcesContent":[],"mappings":"","names":[]}

package/dist/wellknown-types.d.ts

@@ -0,0 +1,55 @@
+/**
+ * Wire-format types for console well-known endpoints.
+ *
+ * These represent the JSON request/response shapes for the
+ * `/.well-known/better/console/*` HTTP endpoints.
+ */
+import type { ConsolePermission } from "./index.js";
+export interface HealthResponse {
+    status: "ok";
+}
+export interface CapabilitiesResponse {
+    products: string[];
+    authMethods: string[];
+    permissions: ConsolePermission[];
+}
+export interface SessionInitRequest {
+    email?: string;
+    appName?: string;
+    baseUrl?: string;
+}
+export type SessionInitResponse = {
+    method: "auto_approve";
+    sessionToken: string;
+    expiresIn: number;
+} | {
+    method: "magic_link";
+    sessionId: string;
+} | {
+    method: "redirect";
+    redirectUrl: string;
+};
+export interface SessionVerifyRequest {
+    code: string;
+    session_id: string;
+}
+export interface SessionVerifyResponse {
+    status: "verified";
+}
+export interface SessionPollRequest {
+    session_id: string;
+}
+export interface SessionPollResponse {
+    status: "pending" | "verified" | "expired";
+}
+export interface SessionClaimRequest {
+    session_id: string;
+}
+export type SessionClaimResponse = {
+    status: "claimed";
+    sessionToken: string;
+    expiresIn: number;
+} | {
+    status: "already_claimed";
+};
+//# sourceMappingURL=wellknown-types.d.ts.map

package/dist/wellknown-types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wellknown-types.d.ts","sourceRoot":"","sources":["../src/wellknown-types.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAMpD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,IAAI,CAAC;CACd;AAMD,MAAM,WAAW,oBAAoB;IACnC,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,WAAW,EAAE,iBAAiB,EAAE,CAAC;CAClC;AAMD,MAAM,WAAW,kBAAkB;IACjC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,MAAM,mBAAmB,GAC3B;IAAE,MAAM,EAAE,cAAc,CAAC;IAAC,YAAY,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,GACnE;IAAE,MAAM,EAAE,YAAY,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,GAC3C;IAAE,MAAM,EAAE,UAAU,CAAC;IAAC,WAAW,EAAE,MAAM,CAAA;CAAE,CAAC;AAMhD,MAAM,WAAW,oBAAoB;IACnC,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,qBAAqB;IACpC,MAAM,EAAE,UAAU,CAAC;CACpB;AAMD,MAAM,WAAW,kBAAkB;IACjC,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,SAAS,CAAC;CAC5C;AAMD,MAAM,WAAW,mBAAmB;IAClC,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,MAAM,oBAAoB,GAC5B;IAAE,MAAM,EAAE,SAAS,CAAC;IAAC,YAAY,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,GAC9D;IAAE,MAAM,EAAE,iBAAiB,CAAA;CAAE,CAAC"}

package/package.json

@@ -0,0 +1,51 @@
+{
+  "name": "@usebetterdev/contract",
+  "version": "0.5.0",
+  "repository": "github:usebetter-dev/usebetter",
+  "bugs": "https://github.com/usebetter-dev/usebetter/issues",
+  "homepage": "https://github.com/usebetter-dev/usebetter#readme",
+  "publishConfig": {
+    "access": "public",
+    "registry": "https://registry.npmjs.org/"
+  },
+  "type": "module",
+  "main": "./dist/index.cjs",
+  "module": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js",
+      "require": "./dist/index.cjs"
+    },
+    "./product-types": {
+      "types": "./dist/product-types.d.ts",
+      "import": "./dist/product-types.js",
+      "require": "./dist/product-types.cjs"
+    },
+    "./config-types": {
+      "types": "./dist/config-types.d.ts",
+      "import": "./dist/config-types.js",
+      "require": "./dist/config-types.cjs"
+    }
+  },
+  "files": [
+    "dist",
+    "README.md"
+  ],
+  "scripts": {
+    "build": "tsup",
+    "build:types": "tsc --build tsconfig.build.json",
+    "typecheck": "tsc --noEmit"
+  },
+  "dependencies": {
+    "@usebetterdev/plugin": "workspace:*"
+  },
+  "devDependencies": {
+    "tsup": "^8.3.5",
+    "typescript": "~5.7.2"
+  },
+  "engines": {
+    "node": ">=22"
+  }
+}