@usethink/cf-core 0.3.0

package/dist/src/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAGH,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,SAAS,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAGxH,OAAO,EACL,MAAM,EACN,iBAAiB,EACjB,SAAS,EACT,WAAW,EACX,cAAc,EACd,eAAe,EACf,oBAAoB,EACpB,KAAK,sBAAsB,GAC5B,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,SAAS,CAAC;AAG7C,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,aAAa,EAAE,KAAK,WAAW,EAAE,MAAM,cAAc,CAAC;AAGjG,OAAO,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAGhG,OAAO,EAAE,eAAe,EAAE,KAAK,UAAU,EAAE,MAAM,SAAS,CAAC;AAG3D,OAAO,EAAE,YAAY,EAAE,KAAK,mBAAmB,EAAE,MAAM,UAAU,CAAC;AAGlE,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,SAAS,EAAE,KAAK,YAAY,EAAE,MAAM,SAAS,CAAC;AAGxF,OAAO,EAAE,MAAM,EAAE,KAAK,QAAQ,EAAE,KAAK,QAAQ,EAAE,MAAM,UAAU,CAAC;AAGhE,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,qBAAqB,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAGjF,OAAO,EAAE,YAAY,EAAE,2BAA2B,EAAE,iBAAiB,EAAE,aAAa,EAAE,KAAK,eAAe,EAAE,MAAM,iBAAiB,CAAC;AAGpI,OAAO,EACL,YAAY,EACZ,cAAc,EACd,gBAAgB,EAChB,eAAe,EACf,OAAO,GACR,MAAM,aAAa,CAAC;AAGrB,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,UAAU,EAAE,MAAM,YAAY,CAAC;AAC7E,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAG/D,OAAO,EAAE,eAAe,EAAE,KAAK,gBAAgB,EAAE,MAAM,yBAAyB,CAAC;AACjF,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,KAAK,iBAAiB,EAAE,KAAK,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAGxH,OAAO,EAAE,SAAS,EAAE,KAAK,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAG/D,YAAY,EACV,YAAY,EACZ,aAAa,EACb,OAAO,EACP,UAAU,EACV,YAAY,EACZ,eAAe,EACf,eAAe,GAChB,MAAM,SAAS,CAAC"}

package/dist/src/index.js

@@ -0,0 +1,45 @@
+/**
+ * @usethink/cf-core — Cloudflare Workers 共享内核
+ *
+ * 统一导出所有模块，支持两种导入方式：
+ *
+ * 1. 从根导入（适合小项目）：
+ *    import { ok, fail, sha256, verifyTurnstile } from "@usethink/cf-core";
+ *
+ * 2. 按子路径导入（推荐，tree-shakeable）：
+ *    import { ok, fail } from "@usethink/cf-core/http";
+ *    import { sha256 } from "@usethink/cf-core/security";
+ */
+// ── HTTP 工具 ──
+export { ok, fail, failRateLimit, getOrigin, safeJsonBody, maskContact, normalizeCode, csvEscape, toCsv } from "./http";
+// ── 安全工具 ──
+export { sha256, constantTimeEqual, getIpHash, getClientIp, getBearerToken, verifyTurnstile, buildSecurityHeaders, } from "./security";
+// ── 缓存 ──
+export { createCache, cache } from "./cache";
+// ── 限流 ──
+export { MemoryRateLimiter, KvRateLimiter, DbRateLimiter } from "./rate-limit";
+// ── 幂等性 ──
+export { checkIdempotency, saveIdempotentResponse, getIdempotentResponse } from "./idempotency";
+// ── 审计日志 ──
+export { writeAdminAudit } from "./audit";
+// ── 系统配置 ──
+export { SystemConfig } from "./config";
+// ── 错误处理 ──
+export { classifyError, retryWithBackoff, ErrorType } from "./error";
+// ── 结构化日志 ──
+export { logger } from "./logger";
+// ── 加解密 ──
+export { encrypt, decrypt, isEncryptionAvailable, generateUUID } from "./crypto";
+// ── 数据库 ──
+export { initDatabase, initDatabaseWithHealthCheck, getOrCreateClient, createDrizzle } from "./db/connection";
+// ── 公共 Schema ──
+export { systemConfig, adminAuditLogs, rateLimitWindows, idempotencyKeys, apiKeys, } from "./db/schema";
+// ── 认证 ──
+export { signJwt, verifyJwt, extractJwt } from "./auth/jwt";
+export { hashPassword, verifyPassword } from "./auth/password";
+// ── 中间件 ──
+export { createAdminAuth } from "./middleware/admin-auth";
+export { createApiKeyAuth, extractApiKey } from "./middleware/api-key-auth";
+// ── Bootstrap ──
+export { bootstrap } from "./bootstrap";
+//# sourceMappingURL=index.js.map

package/dist/src/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,gBAAgB;AAChB,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,aAAa,EAAE,SAAS,EAAE,YAAY,EAAE,WAAW,EAAE,aAAa,EAAE,SAAS,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAExH,aAAa;AACb,OAAO,EACL,MAAM,EACN,iBAAiB,EACjB,SAAS,EACT,WAAW,EACX,cAAc,EACd,eAAe,EACf,oBAAoB,GAErB,MAAM,YAAY,CAAC;AAEpB,WAAW;AACX,OAAO,EAAE,WAAW,EAAE,KAAK,EAAE,MAAM,SAAS,CAAC;AAE7C,WAAW;AACX,OAAO,EAAE,iBAAiB,EAAE,aAAa,EAAE,aAAa,EAAoB,MAAM,cAAc,CAAC;AAEjG,YAAY;AACZ,OAAO,EAAE,gBAAgB,EAAE,sBAAsB,EAAE,qBAAqB,EAAE,MAAM,eAAe,CAAC;AAEhG,aAAa;AACb,OAAO,EAAE,eAAe,EAAmB,MAAM,SAAS,CAAC;AAE3D,aAAa;AACb,OAAO,EAAE,YAAY,EAA4B,MAAM,UAAU,CAAC;AAElE,aAAa;AACb,OAAO,EAAE,aAAa,EAAE,gBAAgB,EAAE,SAAS,EAAqB,MAAM,SAAS,CAAC;AAExF,cAAc;AACd,OAAO,EAAE,MAAM,EAAgC,MAAM,UAAU,CAAC;AAEhE,YAAY;AACZ,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,qBAAqB,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAEjF,YAAY;AACZ,OAAO,EAAE,YAAY,EAAE,2BAA2B,EAAE,iBAAiB,EAAE,aAAa,EAAwB,MAAM,iBAAiB,CAAC;AAEpI,kBAAkB;AAClB,OAAO,EACL,YAAY,EACZ,cAAc,EACd,gBAAgB,EAChB,eAAe,EACf,OAAO,GACR,MAAM,aAAa,CAAC;AAErB,WAAW;AACX,OAAO,EAAE,OAAO,EAAE,SAAS,EAAE,UAAU,EAAmB,MAAM,YAAY,CAAC;AAC7E,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAE/D,YAAY;AACZ,OAAO,EAAE,eAAe,EAAyB,MAAM,yBAAyB,CAAC;AACjF,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAA8C,MAAM,2BAA2B,CAAC;AAExH,kBAAkB;AAClB,OAAO,EAAE,SAAS,EAAyB,MAAM,aAAa,CAAC"}

package/dist/src/logger.d.ts

@@ -0,0 +1,31 @@
+/**
+ * 结构化日志模块
+ *
+ * 提供 JSON 格式的结构化日志输出，便于 Workers 日志分析和 Cloudflare 日志查询。
+ *
+ * 来源：vcode src/lib/logger.ts
+ */
+export type LogLevel = "debug" | "info" | "warn" | "error";
+export interface LogEntry {
+    level: LogLevel;
+    message: string;
+    timestamp: string;
+    [key: string]: unknown;
+}
+export declare const logger: {
+    debug(message: string, meta?: Record<string, unknown>): void;
+    info(message: string, meta?: Record<string, unknown>): void;
+    warn(message: string, meta?: Record<string, unknown>): void;
+    error(message: string, meta?: Record<string, unknown>): void;
+    /** 业务日志 — 资源操作（凭证/订单/卡密等） */
+    resourceAction(action: string, resourceId: string, meta?: Record<string, unknown>): void;
+    /** 业务日志 — 渠道/驱动操作 */
+    channelAction(action: string, channel: string, meta?: Record<string, unknown>): void;
+    /** 业务日志 — 定时任务 */
+    cronJob(jobName: string, meta?: Record<string, unknown>): void;
+    /** 安全日志 — 认证/授权事件 */
+    security(action: string, meta?: Record<string, unknown>): void;
+    /** 审计日志 — 管理操作 */
+    audit(action: string, adminId: string, targetId?: string, meta?: Record<string, unknown>): void;
+};
+//# sourceMappingURL=logger.d.ts.map

package/dist/src/logger.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.d.ts","sourceRoot":"","sources":["../../src/logger.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,MAAM,MAAM,QAAQ,GAAG,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO,CAAC;AAE3D,MAAM,WAAW,QAAQ;IACvB,KAAK,EAAE,QAAQ,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,CAAC;IAClB,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAMD,eAAO,MAAM,MAAM;mBACF,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;kBAIvC,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;kBAItC,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;mBAIrC,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAIrD,6BAA6B;2BACN,MAAM,cAAc,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAIjF,qBAAqB;0BACC,MAAM,WAAW,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAI7E,kBAAkB;qBACD,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAIvD,qBAAqB;qBACJ,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAIvD,kBAAkB;kBACJ,MAAM,WAAW,MAAM,aAAa,MAAM,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAGzF,CAAC"}

package/dist/src/logger.js

@@ -0,0 +1,45 @@
+/**
+ * 结构化日志模块
+ *
+ * 提供 JSON 格式的结构化日志输出，便于 Workers 日志分析和 Cloudflare 日志查询。
+ *
+ * 来源：vcode src/lib/logger.ts
+ */
+function createEntry(level, message, meta) {
+    return { level, message, timestamp: new Date().toISOString(), ...meta };
+}
+export const logger = {
+    debug(message, meta) {
+        console.log(JSON.stringify(createEntry("debug", message, meta)));
+    },
+    info(message, meta) {
+        console.log(JSON.stringify(createEntry("info", message, meta)));
+    },
+    warn(message, meta) {
+        console.warn(JSON.stringify(createEntry("warn", message, meta)));
+    },
+    error(message, meta) {
+        console.error(JSON.stringify(createEntry("error", message, meta)));
+    },
+    /** 业务日志 — 资源操作（凭证/订单/卡密等） */
+    resourceAction(action, resourceId, meta) {
+        this.info(`resource.${action}`, { resourceId, ...meta });
+    },
+    /** 业务日志 — 渠道/驱动操作 */
+    channelAction(action, channel, meta) {
+        this.info(`channel.${action}`, { channel, ...meta });
+    },
+    /** 业务日志 — 定时任务 */
+    cronJob(jobName, meta) {
+        this.info(`cron.${jobName}`, meta);
+    },
+    /** 安全日志 — 认证/授权事件 */
+    security(action, meta) {
+        this.warn(`security.${action}`, meta);
+    },
+    /** 审计日志 — 管理操作 */
+    audit(action, adminId, targetId, meta) {
+        this.info(`audit.${action}`, { adminId, targetId, ...meta });
+    },
+};
+//# sourceMappingURL=logger.js.map

package/dist/src/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../../src/logger.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAWH,SAAS,WAAW,CAAC,KAAe,EAAE,OAAe,EAAE,IAA8B;IACnF,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,GAAG,IAAI,EAAE,CAAC;AAC1E,CAAC;AAED,MAAM,CAAC,MAAM,MAAM,GAAG;IACpB,KAAK,CAAC,OAAe,EAAE,IAA8B;QACnD,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,CAAC,OAAe,EAAE,IAA8B;QAClD,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC;IAClE,CAAC;IAED,IAAI,CAAC,OAAe,EAAE,IAA8B;QAClD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC;IACnE,CAAC;IAED,KAAK,CAAC,OAAe,EAAE,IAA8B;QACnD,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC;IACrE,CAAC;IAED,6BAA6B;IAC7B,cAAc,CAAC,MAAc,EAAE,UAAkB,EAAE,IAA8B;QAC/E,IAAI,CAAC,IAAI,CAAC,YAAY,MAAM,EAAE,EAAE,EAAE,UAAU,EAAE,GAAG,IAAI,EAAE,CAAC,CAAC;IAC3D,CAAC;IAED,qBAAqB;IACrB,aAAa,CAAC,MAAc,EAAE,OAAe,EAAE,IAA8B;QAC3E,IAAI,CAAC,IAAI,CAAC,WAAW,MAAM,EAAE,EAAE,EAAE,OAAO,EAAE,GAAG,IAAI,EAAE,CAAC,CAAC;IACvD,CAAC;IAED,kBAAkB;IAClB,OAAO,CAAC,OAAe,EAAE,IAA8B;QACrD,IAAI,CAAC,IAAI,CAAC,QAAQ,OAAO,EAAE,EAAE,IAAI,CAAC,CAAC;IACrC,CAAC;IAED,qBAAqB;IACrB,QAAQ,CAAC,MAAc,EAAE,IAA8B;QACrD,IAAI,CAAC,IAAI,CAAC,YAAY,MAAM,EAAE,EAAE,IAAI,CAAC,CAAC;IACxC,CAAC;IAED,kBAAkB;IAClB,KAAK,CAAC,MAAc,EAAE,OAAe,EAAE,QAAiB,EAAE,IAA8B;QACtF,IAAI,CAAC,IAAI,CAAC,SAAS,MAAM,EAAE,EAAE,EAAE,OAAO,EAAE,QAAQ,EAAE,GAAG,IAAI,EAAE,CAAC,CAAC;IAC/D,CAAC;CACF,CAAC"}

package/dist/src/middleware/admin-auth.d.ts

@@ -0,0 +1,38 @@
+/**
+ * 管理员认证中间件
+ *
+ * 支持两种认证方式：
+ * 1. Bearer Token（eshop/vcode 方式）：Authorization: Bearer <token>
+ * 2. 自定义 Header（xtools 方式）：X-Admin-Token: <token>
+ *
+ * 安全措施：
+ * - 时序安全比较（timingSafeEqual）防时序攻击
+ * - 默认 Token 仅限本地地址使用
+ * - 未配置 ADMIN_TOKEN 时返回 503
+ *
+ * 来源：eshop requireAdmin + xtools adminAuthMiddleware 合并
+ */
+import type { Context, Next } from "hono";
+export interface AdminAuthOptions {
+    /**
+     * Token 提取方式：
+     * - "bearer" — 从 Authorization: Bearer 提取（eshop/vcode 默认）
+     * - "header" — 从 X-Admin-Token 提取（xtools 默认）
+     * - "both" — 两种方式都尝试（兼容模式）
+     */
+    mode?: "bearer" | "header" | "both";
+}
+/**
+ * 创建管理员认证中间件
+ *
+ * @example
+ * // eshop/vcode 风格
+ * app.route("/admin", new Hono().use("*", createAdminAuth()).route("/", adminRoutes));
+ *
+ * // xtools 风格
+ * app.use("/api/admin/*", createAdminAuth({ mode: "header" }));
+ */
+export declare function createAdminAuth(options?: AdminAuthOptions): (c: Context<any>, next: Next) => Promise<(Response & import("hono").TypedResponse<{
+    [x: string]: import("hono/utils/types").JSONValue;
+}, 500 | 100 | 102 | 103 | 200 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 300 | 301 | 302 | 303 | 305 | 306 | 307 | 308 | 400 | 401 | 402 | 403 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511 | -1, "json">) | undefined>;
+//# sourceMappingURL=admin-auth.d.ts.map

package/dist/src/middleware/admin-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/admin-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAI1C,MAAM,WAAW,gBAAgB;IAC/B;;;;;OAKG;IACH,IAAI,CAAC,EAAE,QAAQ,GAAG,QAAQ,GAAG,MAAM,CAAC;CACrC;AAED;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAAC,OAAO,GAAE,gBAAqB,IAI9C,GAAG,OAAO,CAAC,GAAG,CAAC,EAAE,MAAM,IAAI;;+XA2B1C"}

package/dist/src/middleware/admin-auth.js

@@ -0,0 +1,55 @@
+/**
+ * 管理员认证中间件
+ *
+ * 支持两种认证方式：
+ * 1. Bearer Token（eshop/vcode 方式）：Authorization: Bearer <token>
+ * 2. 自定义 Header（xtools 方式）：X-Admin-Token: <token>
+ *
+ * 安全措施：
+ * - 时序安全比较（timingSafeEqual）防时序攻击
+ * - 默认 Token 仅限本地地址使用
+ * - 未配置 ADMIN_TOKEN 时返回 503
+ *
+ * 来源：eshop requireAdmin + xtools adminAuthMiddleware 合并
+ */
+import { fail } from "../http";
+import { constantTimeEqual, getBearerToken } from "../security";
+/**
+ * 创建管理员认证中间件
+ *
+ * @example
+ * // eshop/vcode 风格
+ * app.route("/admin", new Hono().use("*", createAdminAuth()).route("/", adminRoutes));
+ *
+ * // xtools 风格
+ * app.use("/api/admin/*", createAdminAuth({ mode: "header" }));
+ */
+export function createAdminAuth(options = {}) {
+    const { mode = "both" } = options;
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    return async (c, next) => {
+        const expected = c.env.ADMIN_TOKEN;
+        if (!expected)
+            return fail(c, "管理员令牌未配置", 503);
+        // 安全检查：默认 Token 仅限本地
+        const hostname = new URL(c.req.url).hostname;
+        if (expected === "dev-only-change-me" &&
+            !["127.0.0.1", "localhost", "::1"].includes(hostname)) {
+            return fail(c, "生产环境必须配置 ADMIN_TOKEN", 503);
+        }
+        // 提取 Token
+        let actual = "";
+        if (mode === "bearer" || mode === "both") {
+            actual = getBearerToken(c);
+        }
+        if (!actual && (mode === "header" || mode === "both")) {
+            actual = c.req.header("X-Admin-Token") || "";
+        }
+        if (!actual)
+            return fail(c, "未授权", 401);
+        if (!constantTimeEqual(expected, actual))
+            return fail(c, "未授权", 401);
+        await next();
+    };
+}
+//# sourceMappingURL=admin-auth.js.map

package/dist/src/middleware/admin-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin-auth.js","sourceRoot":"","sources":["../../../src/middleware/admin-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAGH,OAAO,EAAE,IAAI,EAAE,MAAM,SAAS,CAAC;AAC/B,OAAO,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,aAAa,CAAC;AAYhE;;;;;;;;;GASG;AACH,MAAM,UAAU,eAAe,CAAC,UAA4B,EAAE;IAC5D,MAAM,EAAE,IAAI,GAAG,MAAM,EAAE,GAAG,OAAO,CAAC;IAElC,8DAA8D;IAC9D,OAAO,KAAK,EAAE,CAAe,EAAE,IAAU,EAAE,EAAE;QAC3C,MAAM,QAAQ,GAAG,CAAC,CAAC,GAAG,CAAC,WAAW,CAAC;QACnC,IAAI,CAAC,QAAQ;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,UAAU,EAAE,GAAG,CAAC,CAAC;QAE/C,qBAAqB;QACrB,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;QAC7C,IACE,QAAQ,KAAK,oBAAoB;YACjC,CAAC,CAAC,WAAW,EAAE,WAAW,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EACrD,CAAC;YACD,OAAO,IAAI,CAAC,CAAC,EAAE,sBAAsB,EAAE,GAAG,CAAC,CAAC;QAC9C,CAAC;QAED,WAAW;QACX,IAAI,MAAM,GAAG,EAAE,CAAC;QAChB,IAAI,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,MAAM,EAAE,CAAC;YACzC,MAAM,GAAG,cAAc,CAAC,CAAC,CAAC,CAAC;QAC7B,CAAC;QACD,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,KAAK,QAAQ,IAAI,IAAI,KAAK,MAAM,CAAC,EAAE,CAAC;YACtD,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC;QAC/C,CAAC;QAED,IAAI,CAAC,MAAM;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC;QACxC,IAAI,CAAC,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,CAAC;QAErE,MAAM,IAAI,EAAE,CAAC;IACf,CAAC,CAAC;AACJ,CAAC"}

package/dist/src/middleware/api-key-auth.d.ts

@@ -0,0 +1,42 @@
+/**
+ * API Key 认证中间件
+ *
+ * 功能：
+ * - SHA-256 哈希存储（不存明文）
+ * - 月度配额 + 原子递增（消除 TOCTOU 竞态）
+ * - 支持 Bearer 和自定义 Header 提取
+ * - 分级管理（free/basic/pro/enterprise）
+ *
+ * 来源：xtools + vcode api-auth.ts 合并
+ */
+import type { Context, Next } from "hono";
+export interface ApiKeyContext {
+    id: string;
+    name: string;
+    tier: string;
+    userId: string;
+    monthlyQuota: number;
+    monthlyUsage: number;
+}
+export interface ApiKeyAuthOptions {
+    /** Key 前缀（如 "xtools_"、"vcode_"），默认不限制 */
+    prefix?: string;
+    /** 是否必须认证，默认 true */
+    required?: boolean;
+    /** 自定义变量名（注入到 Hono Variables），默认 "apiKeyContext" */
+    variableName?: string;
+}
+/**
+ * 从请求中提取 API Key
+ */
+export declare function extractApiKey(c: Context, prefix?: string): string | null;
+/**
+ * 创建 API Key 认证中间件
+ */
+export declare function createApiKeyAuth(options?: ApiKeyAuthOptions): (c: Context<{
+    Bindings: Record<string, unknown>;
+    Variables: Record<string, unknown>;
+}>, next: Next) => Promise<(Response & import("hono").TypedResponse<{
+    [x: string]: import("hono/utils/types").JSONValue;
+}, 500 | 100 | 102 | 103 | 200 | 201 | 202 | 203 | 206 | 207 | 208 | 226 | 300 | 301 | 302 | 303 | 305 | 306 | 307 | 308 | 400 | 401 | 402 | 403 | 404 | 405 | 406 | 407 | 408 | 409 | 410 | 411 | 412 | 413 | 414 | 415 | 416 | 417 | 418 | 421 | 422 | 423 | 424 | 425 | 426 | 428 | 429 | 431 | 451 | 501 | 502 | 503 | 504 | 505 | 506 | 507 | 508 | 510 | 511 | -1, "json">) | undefined>;
+//# sourceMappingURL=api-key-auth.d.ts.map

package/dist/src/middleware/api-key-auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key-auth.d.ts","sourceRoot":"","sources":["../../../src/middleware/api-key-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAM1C,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,MAAM,CAAC;CACtB;AA8BD,MAAM,WAAW,iBAAiB;IAChC,yCAAyC;IACzC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,qBAAqB;IACrB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,oDAAoD;IACpD,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAuBxE;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,GAAE,iBAAsB,IAI5D,GAAG,OAAO,CAAC;IAAE,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAAC,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;CAAE,CAAC,EACrF,MAAM,IAAI;;+XA+Db"}

package/dist/src/middleware/api-key-auth.js

@@ -0,0 +1,104 @@
+/**
+ * API Key 认证中间件
+ *
+ * 功能：
+ * - SHA-256 哈希存储（不存明文）
+ * - 月度配额 + 原子递增（消除 TOCTOU 竞态）
+ * - 支持 Bearer 和自定义 Header 提取
+ * - 分级管理（free/basic/pro/enterprise）
+ *
+ * 来源：xtools + vcode api-auth.ts 合并
+ */
+import { fail } from "../http";
+import { sha256 } from "../security";
+import { apiKeys } from "../db/schema";
+import { eq, and, sql } from "drizzle-orm";
+/**
+ * 从请求中提取 API Key
+ */
+export function extractApiKey(c, prefix) {
+    // 1. Authorization: Bearer <key>
+    const auth = c.req.header("Authorization");
+    if (auth) {
+        const parts = auth.split(" ");
+        if (parts.length === 2) {
+            const [scheme, credentials] = parts;
+            if ((scheme.toLowerCase() === "bearer" || scheme.toLowerCase() === "token") &&
+                (!prefix || credentials.startsWith(prefix))) {
+                return credentials;
+            }
+        }
+    }
+    // 2. X-API-Key header
+    const apiKey = c.req.header("X-API-Key");
+    if (apiKey && (!prefix || apiKey.startsWith(prefix))) {
+        return apiKey;
+    }
+    return null;
+}
+/**
+ * 创建 API Key 认证中间件
+ */
+export function createApiKeyAuth(options = {}) {
+    const { prefix, required = true, variableName = "apiKeyContext" } = options;
+    return async (c, next) => {
+        const key = extractApiKey(c, prefix);
+        if (!key) {
+            if (required)
+                return fail(c, "缺少 API Key", 401);
+            await next();
+            return;
+        }
+        const db = c.get("db");
+        if (!db)
+            return fail(c, "数据库不可用", 503);
+        const keyHash = await sha256(key);
+        const rows = await db
+            .select()
+            .from(apiKeys)
+            .where(eq(apiKeys.keyHash, keyHash))
+            .limit(1);
+        if (rows.length === 0)
+            return fail(c, "API Key 无效", 401);
+        const record = rows[0];
+        if (!record.enabled)
+            return fail(c, "API Key 已禁用", 401);
+        if (record.expiresAt && new Date(record.expiresAt) < new Date()) {
+            return fail(c, "API Key 已过期", 401);
+        }
+        // 原子配额检查 + 递增
+        if (record.monthlyQuota > 0) {
+            const updated = await db
+                .update(apiKeys)
+                .set({
+                monthlyUsage: sql `monthly_usage + 1`,
+                lastUsedAt: new Date().toISOString(),
+            })
+                .where(and(eq(apiKeys.id, record.id), sql `monthly_usage < monthly_quota`))
+                .returning();
+            if (updated.length === 0)
+                return fail(c, "已超过月度配额", 429);
+        }
+        else {
+            await db
+                .update(apiKeys)
+                .set({
+                monthlyUsage: sql `monthly_usage + 1`,
+                lastUsedAt: new Date().toISOString(),
+            })
+                .where(eq(apiKeys.id, record.id));
+        }
+        const context = {
+            id: record.id,
+            name: record.name,
+            tier: record.tier || "free",
+            userId: record.userId,
+            monthlyQuota: record.monthlyQuota,
+            monthlyUsage: record.monthlyUsage,
+        };
+        c.set(variableName, context);
+        c.set("userId", record.userId || record.id);
+        await next();
+    };
+}
+//# sourceMappingURL=api-key-auth.js.map

package/dist/src/middleware/api-key-auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"api-key-auth.js","sourceRoot":"","sources":["../../../src/middleware/api-key-auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAGH,OAAO,EAAE,IAAI,EAAE,MAAM,SAAS,CAAC;AAC/B,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAgD3C;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,CAAU,EAAE,MAAe;IACvD,iCAAiC;IACjC,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;IAC3C,IAAI,IAAI,EAAE,CAAC;QACT,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC9B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvB,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,GAAG,KAAK,CAAC;YACpC,IACE,CAAC,MAAM,CAAC,WAAW,EAAE,KAAK,QAAQ,IAAI,MAAM,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC;gBACvE,CAAC,CAAC,MAAM,IAAI,WAAW,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAC3C,CAAC;gBACD,OAAO,WAAW,CAAC;YACrB,CAAC;QACH,CAAC;IACH,CAAC;IAED,sBAAsB;IACtB,MAAM,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;IACzC,IAAI,MAAM,IAAI,CAAC,CAAC,MAAM,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC;QACrD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,UAA6B,EAAE;IAC9D,MAAM,EAAE,MAAM,EAAE,QAAQ,GAAG,IAAI,EAAE,YAAY,GAAG,eAAe,EAAE,GAAG,OAAO,CAAC;IAE5E,OAAO,KAAK,EACV,CAAqF,EACrF,IAAU,EACV,EAAE;QACF,MAAM,GAAG,GAAG,aAAa,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QAErC,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,IAAI,QAAQ;gBAAE,OAAO,IAAI,CAAC,CAAC,EAAE,YAAY,EAAE,GAAG,CAAC,CAAC;YAChD,MAAM,IAAI,EAAE,CAAC;YACb,OAAO;QACT,CAAC;QAED,MAAM,EAAE,GAAG,CAAC,CAAC,GAAG,CAAC,IAAI,CAA6B,CAAC;QACnD,IAAI,CAAC,EAAE;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,QAAQ,EAAE,GAAG,CAAC,CAAC;QAEvC,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,GAAG,CAAC,CAAC;QAClC,MAAM,IAAI,GAAG,MAAM,EAAE;aAClB,MAAM,EAAE;aACR,IAAI,CAAC,OAAO,CAAC;aACb,KAAK,CAAC,EAAE,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;aACnC,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,YAAY,EAAE,GAAG,CAAC,CAAC;QAEzD,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QACvB,IAAI,CAAC,MAAM,CAAC,OAAO;YAAE,OAAO,IAAI,CAAC,CAAC,EAAE,aAAa,EAAE,GAAG,CAAC,CAAC;QACxD,IAAI,MAAM,CAAC,SAAS,IAAI,IAAI,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,IAAI,IAAI,EAAE,EAAE,CAAC;YAChE,OAAO,IAAI,CAAC,CAAC,EAAE,aAAa,EAAE,GAAG,CAAC,CAAC;QACrC,CAAC;QAED,cAAc;QACd,IAAI,MAAM,CAAC,YAAY,GAAG,CAAC,EAAE,CAAC;YAC5B,MAAM,OAAO,GAAG,MAAM,EAAE;iBACrB,MAAM,CAAC,OAAO,CAAC;iBACf,GAAG,CAAC;gBACH,YAAY,EAAE,GAAG,CAAA,mBAAmB;gBACpC,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACrC,CAAC;iBACD,KAAK,CAAC,GAAG,CAAC,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,CAAC,EAAE,CAAC,EAAE,GAAG,CAAA,+BAA+B,CAAC,CAAC;iBACzE,SAAS,EAAE,CAAC;YAEf,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;gBAAE,OAAO,IAAI,CAAC,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;QAC3D,CAAC;aAAM,CAAC;YACN,MAAM,EAAE;iBACL,MAAM,CAAC,OAAO,CAAC;iBACf,GAAG,CAAC;gBACH,YAAY,EAAE,GAAG,CAAA,mBAAmB;gBACpC,UAAU,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;aACrC,CAAC;iBACD,KAAK,CAAC,EAAE,CAAC,OAAO,CAAC,EAAE,EAAE,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC;QACtC,CAAC;QAED,MAAM,OAAO,GAAkB;YAC7B,EAAE,EAAE,MAAM,CAAC,EAAE;YACb,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,MAAM;YAC3B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,YAAY,EAAE,MAAM,CAAC,YAAY;YACjC,YAAY,EAAE,MAAM,CAAC,YAAY;SAClC,CAAC;QAEF,CAAC,CAAC,GAAG,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC;QAC7B,CAAC,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,MAAM,IAAI,MAAM,CAAC,EAAE,CAAC,CAAC;QAC5C,MAAM,IAAI,EAAE,CAAC;IACf,CAAC,CAAC;AACJ,CAAC"}

package/dist/src/middleware/index.d.ts

@@ -0,0 +1,3 @@
+export { createAdminAuth, type AdminAuthOptions } from "./admin-auth";
+export { createApiKeyAuth, extractApiKey, type ApiKeyAuthOptions, type ApiKeyContext } from "./api-key-auth";
+//# sourceMappingURL=index.d.ts.map

package/dist/src/middleware/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/middleware/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,KAAK,gBAAgB,EAAE,MAAM,cAAc,CAAC;AACtE,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAAE,KAAK,iBAAiB,EAAE,KAAK,aAAa,EAAE,MAAM,gBAAgB,CAAC"}

package/dist/src/middleware/index.js

@@ -0,0 +1,3 @@
+export { createAdminAuth } from "./admin-auth";
+export { createApiKeyAuth, extractApiKey } from "./api-key-auth";
+//# sourceMappingURL=index.js.map

package/dist/src/middleware/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/middleware/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAyB,MAAM,cAAc,CAAC;AACtE,OAAO,EAAE,gBAAgB,EAAE,aAAa,EAA8C,MAAM,gBAAgB,CAAC"}

package/dist/src/rate-limit.d.ts

@@ -0,0 +1,54 @@
+/**
+ * 统一限流模块 — 支持 DB / KV / 内存 三种存储后端
+ *
+ * 三项目的限流实现各有特点：
+ * - eshop: DB 版（原子 upsert，最可靠，适合无 KV 的项目）
+ * - xtools: KV 版（滑动窗口，跨实例共享）
+ * - vcode: 内存版（最轻量，但重启丢失）
+ *
+ * 本模块统一接口，项目按自己的基础设施选择后端。
+ */
+import type { RateLimitResult } from "./types";
+export interface RateLimiter {
+    check(key: string, limit: number, windowMs: number): Promise<RateLimitResult>;
+}
+/**
+ * 内存固定窗口限流器
+ *
+ * Workers 实例级别，重启后重置。
+ * 适合请求量不大、对精确性要求不高的场景。
+ */
+export declare class MemoryRateLimiter implements RateLimiter {
+    private store;
+    check(key: string, limit: number, windowMs: number): Promise<RateLimitResult>;
+}
+/**
+ * KV 滑动窗口限流器
+ *
+ * 使用 Cloudflare KV 存储，跨 Workers 实例共享状态。
+ * 滑动窗口算法，避免固定窗口边界突发。
+ *
+ * 来源：xtools src/lib/rate-limiter.ts
+ */
+export declare class KvRateLimiter implements RateLimiter {
+    private kv;
+    private prefix;
+    constructor(kv: KVNamespace, prefix?: string);
+    check(key: string, limit: number, windowMs: number): Promise<RateLimitResult>;
+}
+/**
+ * 数据库固定窗口限流器
+ *
+ * 使用 rate_limit_windows 表，通过原子 upsert（INSERT ON CONFLICT UPDATE）实现。
+ * UPDATE 自带 WHERE request_count < :limit 条件，确保计数器永远不会超过阈值，
+ * 从根本上消除高并发场景下的竞态条件。
+ *
+ * 来源：eshop src/lib/rate-limit.ts（竞态修复版）
+ */
+export declare class DbRateLimiter implements RateLimiter {
+    private db;
+    private tableName;
+    constructor(db: DbRateLimiter["db"]);
+    check(key: string, limit: number, windowMs: number): Promise<RateLimitResult>;
+}
+//# sourceMappingURL=rate-limit.d.ts.map

package/dist/src/rate-limit.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limit.d.ts","sourceRoot":"","sources":["../../src/rate-limit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAM/C,MAAM,WAAW,WAAW;IAC1B,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC,CAAC;CAC/E;AAMD;;;;;GAKG;AACH,qBAAa,iBAAkB,YAAW,WAAW;IACnD,OAAO,CAAC,KAAK,CAAyD;IAEhE,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CAiBpF;AAMD;;;;;;;GAOG;AACH,qBAAa,aAAc,YAAW,WAAW;IAC/C,OAAO,CAAC,EAAE,CAAc;IACxB,OAAO,CAAC,MAAM,CAAS;gBAEX,EAAE,EAAE,WAAW,EAAE,MAAM,SAAS;IAKtC,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CA2BpF;AAMD;;;;;;;;GAQG;AACH,qBAAa,aAAc,YAAW,WAAW;IAC/C,OAAO,CAAC,EAAE,CAER;IACF,OAAO,CAAC,SAAS,CAAS;gBAEd,EAAE,EAAE,aAAa,CAAC,IAAI,CAAC;IAK7B,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,eAAe,CAAC;CAsCpF"}

package/dist/src/rate-limit.js

@@ -0,0 +1,134 @@
+/**
+ * 统一限流模块 — 支持 DB / KV / 内存 三种存储后端
+ *
+ * 三项目的限流实现各有特点：
+ * - eshop: DB 版（原子 upsert，最可靠，适合无 KV 的项目）
+ * - xtools: KV 版（滑动窗口，跨实例共享）
+ * - vcode: 内存版（最轻量，但重启丢失）
+ *
+ * 本模块统一接口，项目按自己的基础设施选择后端。
+ */
+import { sql } from "drizzle-orm";
+// ═══════════════════════════════════════════════════════════════════════════════
+// 内存版（最轻量 — 适合 vcode 类项目）
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * 内存固定窗口限流器
+ *
+ * Workers 实例级别，重启后重置。
+ * 适合请求量不大、对精确性要求不高的场景。
+ */
+export class MemoryRateLimiter {
+    store = new Map();
+    async check(key, limit, windowMs) {
+        const now = Date.now();
+        const record = this.store.get(key);
+        if (!record || now > record.resetAt) {
+            this.store.set(key, { count: 1, resetAt: now + windowMs });
+            return { ok: true, remaining: limit - 1 };
+        }
+        if (record.count >= limit) {
+            const resetMs = Math.max(0, record.resetAt - now);
+            return { ok: false, message: "请求过于频繁，请稍后再试", status: 429, resetMs };
+        }
+        record.count++;
+        return { ok: true, remaining: limit - record.count };
+    }
+}
+// ═══════════════════════════════════════════════════════════════════════════════
+// KV 版（跨实例共享 — 适合 xtools 类项目）
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * KV 滑动窗口限流器
+ *
+ * 使用 Cloudflare KV 存储，跨 Workers 实例共享状态。
+ * 滑动窗口算法，避免固定窗口边界突发。
+ *
+ * 来源：xtools src/lib/rate-limiter.ts
+ */
+export class KvRateLimiter {
+    kv;
+    prefix;
+    constructor(kv, prefix = "rate") {
+        this.kv = kv;
+        this.prefix = prefix;
+    }
+    async check(key, limit, windowMs) {
+        const now = Date.now();
+        const windowStart = now - windowMs;
+        const kvKey = `${this.prefix}:${key}`;
+        try {
+            const data = await this.kv.get(kvKey, "json");
+            const timestamps = Array.isArray(data) ? data : [];
+            const valid = timestamps.filter((ts) => ts > windowStart);
+            if (valid.length >= limit) {
+                const oldest = Math.min(...valid);
+                const resetMs = Math.max(0, oldest + windowMs - now);
+                return { ok: false, message: "请求过于频繁，请稍后再试", status: 429, remaining: 0, resetMs };
+            }
+            valid.push(now);
+            const ttlSeconds = Math.ceil(windowMs / 1000) + 10;
+            await this.kv.put(kvKey, JSON.stringify(valid), { expirationTtl: ttlSeconds });
+            const remaining = Math.max(0, limit - valid.length);
+            return { ok: true, remaining };
+        }
+        catch (err) {
+            console.warn("[KvRateLimiter] KV error, failing open:", err instanceof Error ? err.message : String(err));
+            return { ok: true, remaining: limit };
+        }
+    }
+}
+// ═══════════════════════════════════════════════════════════════════════════════
+// DB 版（最可靠 — 适合 eshop 类项目）
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * 数据库固定窗口限流器
+ *
+ * 使用 rate_limit_windows 表，通过原子 upsert（INSERT ON CONFLICT UPDATE）实现。
+ * UPDATE 自带 WHERE request_count < :limit 条件，确保计数器永远不会超过阈值，
+ * 从根本上消除高并发场景下的竞态条件。
+ *
+ * 来源：eshop src/lib/rate-limit.ts（竞态修复版）
+ */
+export class DbRateLimiter {
+    db;
+    tableName;
+    constructor(db) {
+        this.db = db;
+        this.tableName = "rate_limit_windows";
+    }
+    async check(key, limit, windowMs) {
+        const now = Math.floor(Date.now() / 1000);
+        const windowSeconds = Math.floor(windowMs / 1000);
+        const windowStart = Math.floor(now / windowSeconds) * windowSeconds;
+        try {
+            // 使用 raw SQL + WHERE 条件保证计数器不会超过 limit：
+            // - 首次插入: request_count = 1
+            // - 后续更新: request_count += 1，但 WHERE request_count < :limit 阻止超额
+            const result = await this.db.execute(sql `INSERT INTO ${sql.identifier(this.tableName)} (action, ip_hash, window_start, request_count)
+            VALUES (${key}, '', ${windowStart}, 1)
+            ON CONFLICT(action, ip_hash, window_start) DO UPDATE SET
+              request_count = request_count + 1
+            WHERE rate_limit_windows.request_count < ${limit}
+            RETURNING request_count`);
+            const currentCount = result.rows?.[0]?.request_count ?? 0;
+            // 如果 WHERE 条件不满足（count >= limit），UPDATE 被跳过，返回旧值
+            if (currentCount > limit) {
+                const resetInSeconds = windowStart + windowSeconds - now;
+                return {
+                    ok: false,
+                    message: "请求过于频繁，请稍后再试",
+                    status: 429,
+                    remaining: 0,
+                    resetMs: Math.max(0, resetInSeconds * 1000),
+                };
+            }
+            return { ok: true, remaining: Math.max(0, limit - currentCount) };
+        }
+        catch {
+            // 限流失败时 fail-open 以保持服务可用
+            return { ok: true, remaining: limit };
+        }
+    }
+}
+//# sourceMappingURL=rate-limit.js.map

package/dist/src/rate-limit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limit.js","sourceRoot":"","sources":["../../src/rate-limit.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAWlC,kFAAkF;AAClF,0BAA0B;AAC1B,kFAAkF;AAElF;;;;;GAKG;AACH,MAAM,OAAO,iBAAiB;IACpB,KAAK,GAAG,IAAI,GAAG,EAA8C,CAAC;IAEtE,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,KAAa,EAAE,QAAgB;QACtD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAEnC,IAAI,CAAC,MAAM,IAAI,GAAG,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC;YACpC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,OAAO,EAAE,GAAG,GAAG,QAAQ,EAAE,CAAC,CAAC;YAC3D,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,GAAG,CAAC,EAAE,CAAC;QAC5C,CAAC;QAED,IAAI,MAAM,CAAC,KAAK,IAAI,KAAK,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,OAAO,GAAG,GAAG,CAAC,CAAC;YAClD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC;QACtE,CAAC;QAED,MAAM,CAAC,KAAK,EAAE,CAAC;QACf,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,GAAG,MAAM,CAAC,KAAK,EAAE,CAAC;IACvD,CAAC;CACF;AAED,kFAAkF;AAClF,8BAA8B;AAC9B,kFAAkF;AAElF;;;;;;;GAOG;AACH,MAAM,OAAO,aAAa;IAChB,EAAE,CAAc;IAChB,MAAM,CAAS;IAEvB,YAAY,EAAe,EAAE,MAAM,GAAG,MAAM;QAC1C,IAAI,CAAC,EAAE,GAAG,EAAE,CAAC;QACb,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,KAAa,EAAE,QAAgB;QACtD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,WAAW,GAAG,GAAG,GAAG,QAAQ,CAAC;QACnC,MAAM,KAAK,GAAG,GAAG,IAAI,CAAC,MAAM,IAAI,GAAG,EAAE,CAAC;QAEtC,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;YAC9C,MAAM,UAAU,GAAa,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7D,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,GAAG,WAAW,CAAC,CAAC;YAE1D,IAAI,KAAK,CAAC,MAAM,IAAI,KAAK,EAAE,CAAC;gBAC1B,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC;gBAClC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,GAAG,CAAC,CAAC;gBACrD,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,cAAc,EAAE,MAAM,EAAE,GAAG,EAAE,SAAS,EAAE,CAAC,EAAE,OAAO,EAAE,CAAC;YACpF,CAAC;YAED,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAChB,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YACnD,MAAM,IAAI,CAAC,EAAE,CAAC,GAAG,CAAC,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,EAAE,EAAE,aAAa,EAAE,UAAU,EAAE,CAAC,CAAC;YAE/E,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC;YACpD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,CAAC;QACjC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,CAAC,IAAI,CAAC,yCAAyC,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC;YAC1G,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;QACxC,CAAC;IACH,CAAC;CACF;AAED,kFAAkF;AAClF,2BAA2B;AAC3B,kFAAkF;AAElF;;;;;;;;GAQG;AACH,MAAM,OAAO,aAAa;IAChB,EAAE,CAER;IACM,SAAS,CAAS;IAE1B,YAAY,EAAuB;QACjC,IAAI,CAAC,EAAE,GAAG,EAAE,CAAC;QACb,IAAI,CAAC,SAAS,GAAG,oBAAoB,CAAC;IACxC,CAAC;IAED,KAAK,CAAC,KAAK,CAAC,GAAW,EAAE,KAAa,EAAE,QAAgB;QACtD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;QAC1C,MAAM,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC;QAClD,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,GAAG,aAAa,CAAC,GAAG,aAAa,CAAC;QAEpE,IAAI,CAAC;YACH,wCAAwC;YACxC,4BAA4B;YAC5B,iEAAiE;YACjE,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,EAAE,CAAC,OAAO,CAClC,GAAG,CAAA,eAAe,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC;sBAClC,GAAG,SAAS,WAAW;;;uDAGU,KAAK;oCACxB,CAC7B,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,aAAa,IAAI,CAAC,CAAC;YAE1D,iDAAiD;YACjD,IAAI,YAAY,GAAG,KAAK,EAAE,CAAC;gBACzB,MAAM,cAAc,GAAG,WAAW,GAAG,aAAa,GAAG,GAAG,CAAC;gBACzD,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,OAAO,EAAE,cAAc;oBACvB,MAAM,EAAE,GAAG;oBACX,SAAS,EAAE,CAAC;oBACZ,OAAO,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,cAAc,GAAG,IAAI,CAAC;iBAC5C,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,GAAG,YAAY,CAAC,EAAE,CAAC;QACpE,CAAC;QAAC,MAAM,CAAC;YACP,0BAA0B;YAC1B,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;QACxC,CAAC;IACH,CAAC;CACF"}