@varshylinc/team-management 0.1.0

package/dist/server/routes/health.routes.js

@@ -0,0 +1,39 @@
+import { Router } from 'express';
+const MODULE_VERSION = '0.1.0';
+export function createHealthRouter(pool, config) {
+    const flags = config.featureFlags ?? {};
+    const handler = async (_req, res) => {
+        try {
+            await pool.query('SELECT 1');
+            res.json({
+                status: 'ok',
+                module: '@varshylinc/team-management',
+                version: MODULE_VERSION,
+                db: 'connected',
+                flags: {
+                    enableInvites: flags.enableInvites ?? true,
+                    enableAuditLog: flags.enableAuditLog ?? true,
+                    enableOwnershipTransfer: flags.enableOwnershipTransfer ?? true,
+                    enableEmailChange: flags.enableEmailChange ?? true,
+                    enablePasswordReset: flags.enablePasswordReset ?? true,
+                    enableSuperAdmin: flags.enableSuperAdmin ?? false,
+                    enableSharedAccess: flags.enableSharedAccess ?? false,
+                    enableHardDelete: flags.enableHardDelete ?? false,
+                },
+            });
+        }
+        catch (err) {
+            res.status(503).json({
+                status: 'error',
+                module: '@varshylinc/team-management',
+                version: MODULE_VERSION,
+                db: 'disconnected',
+                error: err instanceof Error ? err.message : 'Unknown error',
+            });
+        }
+    };
+    const router = Router();
+    router.get('/health', handler);
+    return { router, handler };
+}
+//# sourceMappingURL=health.routes.js.map

package/dist/server/routes/health.routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"health.routes.js","sourceRoot":"","sources":["../../../src/server/routes/health.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAIjC,MAAM,cAAc,GAAG,OAAO,CAAC;AAE/B,MAAM,UAAU,kBAAkB,CAChC,IAAU,EACV,MAA4B;IAE5B,MAAM,KAAK,GAAG,MAAM,CAAC,YAAY,IAAI,EAAE,CAAC;IAExC,MAAM,OAAO,GAAqC,KAAK,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE;QACpE,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAC7B,GAAG,CAAC,IAAI,CAAC;gBACP,MAAM,EAAE,IAAI;gBACZ,MAAM,EAAE,6BAA6B;gBACrC,OAAO,EAAE,cAAc;gBACvB,EAAE,EAAE,WAAW;gBACf,KAAK,EAAE;oBACL,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,IAAI;oBAC1C,cAAc,EAAE,KAAK,CAAC,cAAc,IAAI,IAAI;oBAC5C,uBAAuB,EAAE,KAAK,CAAC,uBAAuB,IAAI,IAAI;oBAC9D,iBAAiB,EAAE,KAAK,CAAC,iBAAiB,IAAI,IAAI;oBAClD,mBAAmB,EAAE,KAAK,CAAC,mBAAmB,IAAI,IAAI;oBACtD,gBAAgB,EAAE,KAAK,CAAC,gBAAgB,IAAI,KAAK;oBACjD,kBAAkB,EAAE,KAAK,CAAC,kBAAkB,IAAI,KAAK;oBACrD,gBAAgB,EAAE,KAAK,CAAC,gBAAgB,IAAI,KAAK;iBAClD;aACF,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,MAAM,EAAE,OAAO;gBACf,MAAM,EAAE,6BAA6B;gBACrC,OAAO,EAAE,cAAc;gBACvB,EAAE,EAAE,cAAc;gBAClB,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe;aAC5D,CAAC,CAAC;QACL,CAAC;IACH,CAAC,CAAC;IAEF,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC;IACxB,MAAM,CAAC,GAAG,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;IAC/B,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;AAC7B,CAAC"}

package/dist/server/routes/invitations.routes.d.ts

@@ -0,0 +1,5 @@
+import { Router } from 'express';
+import type { Pool } from 'pg';
+import type { ServerModuleAdapter, TeamManagementFeatureFlags } from '../types.js';
+export declare function createInvitationsRouter(pool: Pool, adapter: ServerModuleAdapter, flags: TeamManagementFeatureFlags, baseUrl: string): Router;
+//# sourceMappingURL=invitations.routes.d.ts.map

package/dist/server/routes/invitations.routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"invitations.routes.d.ts","sourceRoot":"","sources":["../../../src/server/routes/invitations.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,IAAI,CAAC;AAC/B,OAAO,KAAK,EAAE,mBAAmB,EAAE,0BAA0B,EAAW,MAAM,aAAa,CAAC;AAc5F,wBAAgB,uBAAuB,CACrC,IAAI,EAAE,IAAI,EACV,OAAO,EAAE,mBAAmB,EAC5B,KAAK,EAAE,0BAA0B,EACjC,OAAO,EAAE,MAAM,GACd,MAAM,CAsOR"}

package/dist/server/routes/invitations.routes.js

@@ -0,0 +1,232 @@
+import { Router } from 'express';
+import { requireMembership } from '../middleware/require-membership.js';
+import { requireRole } from '../middleware/require-role.js';
+import { createInvitation, revokeInvitation, resendInvitation, listPendingInvitations, getInvitationWithDecryptedCode, acceptInvitationByToken, acceptInvitationByCode, } from '../services/invitations.service.js';
+import { writeAuditEvent, getClientIp } from '../services/audit.service.js';
+export function createInvitationsRouter(pool, adapter, flags, baseUrl) {
+    const router = Router({ mergeParams: true });
+    function featureCheck(res) {
+        if (!flags.enableInvites) {
+            res.status(501).json({ error: 'Invitations feature is not enabled' });
+            return false;
+        }
+        return true;
+    }
+    const authMiddleware = requireMembership(pool, adapter);
+    // GET /orgs/:orgId/invitations — list pending (admin+)
+    router.get('/:orgId/invitations', authMiddleware, requireRole('admin'), async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { orgId } = req;
+        try {
+            const invitations = await listPendingInvitations(pool, orgId);
+            res.json({ invitations: invitations.map(inv => ({ ...inv, status: 'pending' })) });
+        }
+        catch (e) {
+            adapter.logger.error('[invitations] GET list', { error: e.message });
+            res.status(500).json({ error: 'Failed to fetch invitations' });
+        }
+    });
+    // POST /orgs/:orgId/invitations — create (admin+)
+    router.post('/:orgId/invitations', authMiddleware, requireRole('admin'), async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { orgId, userId } = req;
+        const { email, role } = req.body;
+        if (!email || !role) {
+            res.status(400).json({ error: 'email and role are required' });
+            return;
+        }
+        try {
+            const { invitation } = await createInvitation(pool, adapter, {
+                orgId,
+                invitedByUserId: userId,
+                email,
+                role: role,
+                baseUrl,
+            });
+            if (flags.enableAuditLog) {
+                await writeAuditEvent({
+                    pool,
+                    orgId,
+                    actorUserId: userId,
+                    action: 'member.invited',
+                    targetType: 'invitation',
+                    targetId: invitation.id,
+                    after: { email, role },
+                    ip: getClientIp(req),
+                    userAgent: req.headers['user-agent'] ?? null,
+                });
+            }
+            res.status(201).json({ invitation: { ...invitation, status: 'pending' } });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[invitations] POST create', { error: msg });
+            if (msg.includes('already exists')) {
+                res.status(409).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to create invitation' });
+            }
+        }
+    });
+    // DELETE /orgs/:orgId/invitations/:id — revoke (admin+)
+    router.delete('/:orgId/invitations/:id', authMiddleware, requireRole('admin'), async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { orgId, userId } = req;
+        const invitationId = parseInt(req.params.id, 10);
+        if (isNaN(invitationId)) {
+            res.status(400).json({ error: 'Invalid invitation ID' });
+            return;
+        }
+        try {
+            await revokeInvitation(pool, { invitationId, revokedByUserId: userId });
+            if (flags.enableAuditLog) {
+                await writeAuditEvent({
+                    pool,
+                    orgId,
+                    actorUserId: userId,
+                    action: 'member.invite_revoked',
+                    targetType: 'invitation',
+                    targetId: invitationId,
+                    ip: getClientIp(req),
+                    userAgent: req.headers['user-agent'] ?? null,
+                });
+            }
+            res.json({ message: 'Invitation revoked' });
+        }
+        catch (e) {
+            adapter.logger.error('[invitations] DELETE revoke', { error: e.message });
+            res.status(500).json({ error: 'Failed to revoke invitation' });
+        }
+    });
+    // POST /orgs/:orgId/invitations/:id/resend — resend (admin+)
+    router.post('/:orgId/invitations/:id/resend', authMiddleware, requireRole('admin'), async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { orgId, userId } = req;
+        const invitationId = parseInt(req.params.id, 10);
+        if (isNaN(invitationId)) {
+            res.status(400).json({ error: 'Invalid invitation ID' });
+            return;
+        }
+        try {
+            await resendInvitation(pool, adapter, { invitationId, baseUrl });
+            if (flags.enableAuditLog) {
+                await writeAuditEvent({
+                    pool,
+                    orgId,
+                    actorUserId: userId,
+                    action: 'org.invitation_resent',
+                    targetType: 'invitation',
+                    targetId: invitationId,
+                    ip: getClientIp(req),
+                    userAgent: req.headers['user-agent'] ?? null,
+                });
+            }
+            res.json({ message: 'Invitation resent' });
+        }
+        catch (e) {
+            adapter.logger.error('[invitations] POST resend', { error: e.message });
+            res.status(500).json({ error: 'Failed to resend invitation' });
+        }
+    });
+    // GET /orgs/:orgId/invitations/:id/code — get decrypted code (admin+, phone fallback)
+    router.get('/:orgId/invitations/:id/code', authMiddleware, requireRole('admin'), async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const invitationId = parseInt(req.params.id, 10);
+        if (isNaN(invitationId)) {
+            res.status(400).json({ error: 'Invalid invitation ID' });
+            return;
+        }
+        try {
+            const result = await getInvitationWithDecryptedCode(pool, invitationId);
+            res.json({ code: result.code, expiresAt: result.expires_at });
+        }
+        catch (e) {
+            adapter.logger.error('[invitations] GET code', { error: e.message });
+            res.status(500).json({ error: 'Failed to retrieve invitation code' });
+        }
+    });
+    // POST /invitations/accept/token — public, token in body
+    router.post('/accept/token', async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { token } = req.body;
+        if (!token) {
+            res.status(400).json({ error: 'token is required' });
+            return;
+        }
+        try {
+            const userId = await adapter.getCurrentUserId(req);
+            const result = await acceptInvitationByToken(pool, adapter, { token, acceptingUserId: userId ?? undefined });
+            if (flags.enableAuditLog) {
+                await writeAuditEvent({
+                    pool,
+                    orgId: result.orgId,
+                    actorUserId: userId ?? null,
+                    action: 'member.invite_accepted',
+                    targetType: 'org',
+                    targetId: result.orgId,
+                    after: { role: result.role },
+                    ip: getClientIp(req),
+                    userAgent: req.headers['user-agent'] ?? null,
+                });
+            }
+            res.json({ message: 'Invitation accepted', orgId: result.orgId, role: result.role });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[invitations] POST accept/token', { error: msg });
+            if (msg.includes('not found') || msg.includes('expired') || msg.includes('used')) {
+                res.status(404).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to accept invitation' });
+            }
+        }
+    });
+    // POST /invitations/accept/code — public, code in body
+    router.post('/accept/code', async (req, res) => {
+        if (!featureCheck(res))
+            return;
+        const { email, code } = req.body;
+        if (!email || !code) {
+            res.status(400).json({ error: 'email and code are required' });
+            return;
+        }
+        try {
+            const userId = await adapter.getCurrentUserId(req);
+            const result = await acceptInvitationByCode(pool, adapter, { email, code, acceptingUserId: userId ?? undefined });
+            if (flags.enableAuditLog) {
+                await writeAuditEvent({
+                    pool,
+                    orgId: result.orgId,
+                    actorUserId: userId ?? null,
+                    action: 'member.invite_accepted',
+                    targetType: 'org',
+                    targetId: result.orgId,
+                    after: { role: result.role },
+                    ip: getClientIp(req),
+                    userAgent: req.headers['user-agent'] ?? null,
+                });
+            }
+            res.json({ message: 'Invitation accepted', orgId: result.orgId, role: result.role });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[invitations] POST accept/code', { error: msg });
+            if (msg.includes('not found') || msg.includes('Invalid') || msg.includes('No valid')) {
+                res.status(404).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to accept invitation' });
+            }
+        }
+    });
+    return router;
+}
+//# sourceMappingURL=invitations.routes.js.map

package/dist/server/routes/invitations.routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"invitations.routes.js","sourceRoot":"","sources":["../../../src/server/routes/invitations.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGjC,OAAO,EAAE,iBAAiB,EAA6B,MAAM,qCAAqC,CAAC;AACnG,OAAO,EAAE,WAAW,EAAE,MAAM,+BAA+B,CAAC;AAC5D,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,sBAAsB,EACtB,8BAA8B,EAC9B,uBAAuB,EACvB,sBAAsB,GACvB,MAAM,oCAAoC,CAAC;AAC5C,OAAO,EAAE,eAAe,EAAE,WAAW,EAAE,MAAM,8BAA8B,CAAC;AAE5E,MAAM,UAAU,uBAAuB,CACrC,IAAU,EACV,OAA4B,EAC5B,KAAiC,EACjC,OAAe;IAEf,MAAM,MAAM,GAAG,MAAM,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC;IAE7C,SAAS,YAAY,CAAC,GAA+B;QACnD,IAAI,CAAC,KAAK,CAAC,aAAa,EAAE,CAAC;YACzB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,oCAAoC,EAAE,CAAC,CAAC;YACtE,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,cAAc,GAAG,iBAAiB,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;IAExD,uDAAuD;IACvD,MAAM,CAAC,GAAG,CAAC,qBAAqB,EAAE,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QACzF,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,GAAG,GAA2B,CAAC;QAC9C,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,MAAM,sBAAsB,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;YAC9D,GAAG,CAAC,IAAI,CAAC,EAAE,WAAW,EAAE,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,EAAE,GAAG,GAAG,EAAE,MAAM,EAAE,SAAS,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;QACrF,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAChF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACjE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,kDAAkD;IAClD,MAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC1F,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,GAA2B,CAAC;QACtD,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,GAAG,CAAC,IAAyC,CAAC;QAEtE,IAAI,CAAC,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC;YACpB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YAC/D,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE;gBAC3D,KAAK;gBACL,eAAe,EAAE,MAAM;gBACvB,KAAK;gBACL,IAAI,EAAE,IAAe;gBACrB,OAAO;aACR,CAAC,CAAC;YAEH,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,MAAM,eAAe,CAAC;oBACpB,IAAI;oBACJ,KAAK;oBACL,WAAW,EAAE,MAAM;oBACnB,MAAM,EAAE,gBAAgB;oBACxB,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,UAAU,CAAC,EAAE;oBACvB,KAAK,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE;oBACtB,EAAE,EAAE,WAAW,CAAC,GAAG,CAAC;oBACpB,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,IAAI;iBAC7C,CAAC,CAAC;YACL,CAAC;YAED,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,EAAE,GAAG,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,EAAE,CAAC,CAAC;QAC7E,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YAClE,IAAI,GAAG,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBACnC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YACjE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,wDAAwD;IACxD,MAAM,CAAC,MAAM,CAAC,yBAAyB,EAAE,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAChG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,GAA2B,CAAC;QACtD,MAAM,YAAY,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YACzD,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,gBAAgB,CAAC,IAAI,EAAE,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,EAAE,CAAC,CAAC;YAExE,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,MAAM,eAAe,CAAC;oBACpB,IAAI;oBACJ,KAAK;oBACL,WAAW,EAAE,MAAM;oBACnB,MAAM,EAAE,uBAAuB;oBAC/B,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,YAAY;oBACtB,EAAE,EAAE,WAAW,CAAC,GAAG,CAAC;oBACpB,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,IAAI;iBAC7C,CAAC,CAAC;YACL,CAAC;YAED,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,oBAAoB,EAAE,CAAC,CAAC;QAC9C,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,6BAA6B,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YACrF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACjE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,6DAA6D;IAC7D,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QACrG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,GAA2B,CAAC;QACtD,MAAM,YAAY,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YACzD,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,gBAAgB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,YAAY,EAAE,OAAO,EAAE,CAAC,CAAC;YAEjE,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,MAAM,eAAe,CAAC;oBACpB,IAAI;oBACJ,KAAK;oBACL,WAAW,EAAE,MAAM;oBACnB,MAAM,EAAE,uBAAuB;oBAC/B,UAAU,EAAE,YAAY;oBACxB,QAAQ,EAAE,YAAY;oBACtB,EAAE,EAAE,WAAW,CAAC,GAAG,CAAC;oBACpB,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,IAAI;iBAC7C,CAAC,CAAC;YACL,CAAC;YAED,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,mBAAmB,EAAE,CAAC,CAAC;QAC7C,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YACnF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;QACjE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,sFAAsF;IACtF,MAAM,CAAC,GAAG,CAAC,8BAA8B,EAAE,cAAc,EAAE,WAAW,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAClG,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,YAAY,GAAG,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QACjD,IAAI,KAAK,CAAC,YAAY,CAAC,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,uBAAuB,EAAE,CAAC,CAAC;YACzD,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,8BAA8B,CAAC,IAAI,EAAE,YAAY,CAAC,CAAC;YACxE,GAAG,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,SAAS,EAAE,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC;QAChE,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAChF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,oCAAoC,EAAE,CAAC,CAAC;QACxE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,yDAAyD;IACzD,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC9C,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAA0B,CAAC;QACjD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,CAAC;YACrD,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,gBAAgB,CAAC,GAAgC,CAAC,CAAC;YAChF,MAAM,MAAM,GAAG,MAAM,uBAAuB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,MAAM,IAAI,SAAS,EAAE,CAAC,CAAC;YAE7G,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,MAAM,eAAe,CAAC;oBACpB,IAAI;oBACJ,KAAK,EAAE,MAAM,CAAC,KAAK;oBACnB,WAAW,EAAE,MAAM,IAAI,IAAI;oBAC3B,MAAM,EAAE,wBAAwB;oBAChC,UAAU,EAAE,KAAK;oBACjB,QAAQ,EAAE,MAAM,CAAC,KAAK;oBACtB,KAAK,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE;oBAC5B,EAAE,EAAE,WAAW,CAAC,GAAG,CAAC;oBACpB,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,IAAI;iBAC7C,CAAC,CAAC;YACL,CAAC;YAED,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,qBAAqB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;QACvF,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,iCAAiC,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACxE,IAAI,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBACjF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YACjE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,uDAAuD;IACvD,MAAM,CAAC,IAAI,CAAC,cAAc,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC7C,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC;YAAE,OAAO;QAC/B,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,GAAG,CAAC,IAAyC,CAAC;QACtE,IAAI,CAAC,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC;YACpB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YAC/D,OAAO;QACT,CAAC;QACD,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,gBAAgB,CAAC,GAAgC,CAAC,CAAC;YAChF,MAAM,MAAM,GAAG,MAAM,sBAAsB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,eAAe,EAAE,MAAM,IAAI,SAAS,EAAE,CAAC,CAAC;YAElH,IAAI,KAAK,CAAC,cAAc,EAAE,CAAC;gBACzB,MAAM,eAAe,CAAC;oBACpB,IAAI;oBACJ,KAAK,EAAE,MAAM,CAAC,KAAK;oBACnB,WAAW,EAAE,MAAM,IAAI,IAAI;oBAC3B,MAAM,EAAE,wBAAwB;oBAChC,UAAU,EAAE,KAAK;oBACjB,QAAQ,EAAE,MAAM,CAAC,KAAK;oBACtB,KAAK,EAAE,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE;oBAC5B,EAAE,EAAE,WAAW,CAAC,GAAG,CAAC;oBACpB,SAAS,EAAE,GAAG,CAAC,OAAO,CAAC,YAAY,CAAC,IAAI,IAAI;iBAC7C,CAAC,CAAC;YACL,CAAC;YAED,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,qBAAqB,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,EAAE,IAAI,EAAE,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;QACvF,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gCAAgC,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvE,IAAI,GAAG,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBACrF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YACjE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/server/routes/me.routes.d.ts

@@ -0,0 +1,5 @@
+import { Router } from 'express';
+import type { Pool } from 'pg';
+import type { ServerModuleAdapter, TeamManagementFeatureFlags } from '../types.js';
+export declare function createMeRouter(pool: Pool, adapter: ServerModuleAdapter, flags: TeamManagementFeatureFlags, baseUrl: string): Router;
+//# sourceMappingURL=me.routes.d.ts.map

package/dist/server/routes/me.routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"me.routes.d.ts","sourceRoot":"","sources":["../../../src/server/routes/me.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,IAAI,CAAC;AAC/B,OAAO,KAAK,EAAE,mBAAmB,EAAE,0BAA0B,EAAE,MAAM,aAAa,CAAC;AAMnF,wBAAgB,cAAc,CAC5B,IAAI,EAAE,IAAI,EACV,OAAO,EAAE,mBAAmB,EAC5B,KAAK,EAAE,0BAA0B,EACjC,OAAO,EAAE,MAAM,GACd,MAAM,CAiIR"}

package/dist/server/routes/me.routes.js

@@ -0,0 +1,188 @@
+import { Router } from 'express';
+import { requestEmailChange, verifyEmailChange, cancelEmailChange } from '../services/email-change.service.js';
+import { requestPasswordReset, resetPassword } from '../services/password-reset.service.js';
+import { getActiveMembership } from '../services/organizations.service.js';
+import { sha256 } from '../crypto.js';
+export function createMeRouter(pool, adapter, flags, baseUrl) {
+    const router = Router();
+    router.get('/membership', async (req, res) => {
+        try {
+            const userId = await adapter.getCurrentUserId(req);
+            if (!userId) {
+                res.status(401).json({ error: 'Authentication required' });
+                return;
+            }
+            const orgId = await adapter.getOrganizationIdForUser(userId);
+            if (!orgId) {
+                res.status(404).json({ error: 'No organization membership found' });
+                return;
+            }
+            const membership = await getActiveMembership(pool, orgId, userId);
+            res.json({ membership });
+        }
+        catch (e) {
+            adapter.logger.error('[me] GET /membership', { error: e.message });
+            res.status(500).json({ error: 'Failed to fetch membership' });
+        }
+    });
+    router.post('/email-change', async (req, res) => {
+        if (!flags.enableEmailChange) {
+            res.status(501).json({ error: 'Email change is not enabled' });
+            return;
+        }
+        try {
+            const userId = await adapter.getCurrentUserId(req);
+            if (!userId) {
+                res.status(401).json({ error: 'Authentication required' });
+                return;
+            }
+            const user = await adapter.getUserById(userId);
+            if (!user) {
+                res.status(404).json({ error: 'User not found' });
+                return;
+            }
+            const { newEmail } = req.body;
+            if (!newEmail) {
+                res.status(400).json({ error: 'newEmail is required' });
+                return;
+            }
+            await requestEmailChange(pool, adapter, { userId, currentEmail: user.email, newEmail, baseUrl });
+            res.json({ message: 'Verification email sent to your new address' });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[me] POST /email-change', { error: msg });
+            if (msg.includes('Too many')) {
+                res.status(429).json({ error: msg });
+            }
+            else if (msg.includes('already in use')) {
+                res.status(422).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to request email change' });
+            }
+        }
+    });
+    router.get('/email-change/verify', async (req, res) => {
+        if (!flags.enableEmailChange) {
+            res.status(501).json({ error: 'Email change is not enabled' });
+            return;
+        }
+        const token = req.query.token;
+        if (!token) {
+            res.status(400).json({ error: 'token query parameter is required' });
+            return;
+        }
+        try {
+            // Token-based verification — no authentication required; token is self-authenticating
+            const userId = await adapter.getCurrentUserId(req);
+            await verifyEmailChange(pool, adapter, { token, userId: userId ?? null });
+            res.json({ message: 'Email address updated successfully' });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[me] GET /email-change/verify', { error: msg });
+            if (msg.includes('Invalid') || msg.includes('expired')) {
+                res.status(404).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to verify email change' });
+            }
+        }
+    });
+    router.get('/email-change/cancel', async (req, res) => {
+        if (!flags.enableEmailChange) {
+            res.status(501).json({ error: 'Email change is not enabled' });
+            return;
+        }
+        const token = req.query.token;
+        if (!token) {
+            res.status(400).json({ error: 'token query parameter is required' });
+            return;
+        }
+        try {
+            await cancelEmailChange(pool, adapter, { token });
+            res.json({ message: 'Email change cancelled. Your sessions have been invalidated for security.' });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[me] GET /email-change/cancel', { error: msg });
+            if (msg.includes('Invalid') || msg.includes('expired')) {
+                res.status(404).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to cancel email change' });
+            }
+        }
+    });
+    router.post('/password-reset/request', async (req, res) => {
+        if (!flags.enablePasswordReset) {
+            res.status(501).json({ error: 'Password reset is not enabled' });
+            return;
+        }
+        const { email } = req.body;
+        if (!email) {
+            res.status(400).json({ error: 'email is required' });
+            return;
+        }
+        try {
+            await requestPasswordReset(pool, adapter, { email, baseUrl });
+            res.json({ message: 'If that email exists, a reset link has been sent' });
+        }
+        catch (e) {
+            adapter.logger.error('[me] POST /password-reset/request', { error: e.message });
+            res.json({ message: 'If that email exists, a reset link has been sent' });
+        }
+    });
+    router.get('/password-reset', async (req, res) => {
+        if (!flags.enablePasswordReset) {
+            res.status(501).json({ error: 'Password reset is not enabled' });
+            return;
+        }
+        const token = req.query.token;
+        if (!token) {
+            res.status(400).json({ error: 'token query parameter is required' });
+            return;
+        }
+        try {
+            const tokenHash = sha256(token);
+            const result = await pool.query(`SELECT id FROM tm_password_reset_requests WHERE token_hash = $1 AND used_at IS NULL AND expires_at > NOW()`, [tokenHash]);
+            if (result.rows.length === 0) {
+                res.status(404).json({ error: 'Invalid or expired password reset token' });
+                return;
+            }
+            res.json({ valid: true });
+        }
+        catch (e) {
+            adapter.logger.error('[me] GET /password-reset', { error: e.message });
+            res.status(500).json({ error: 'Failed to validate token' });
+        }
+    });
+    router.post('/password-reset', async (req, res) => {
+        if (!flags.enablePasswordReset) {
+            res.status(501).json({ error: 'Password reset is not enabled' });
+            return;
+        }
+        const { token, newPassword } = req.body;
+        if (!token || !newPassword) {
+            res.status(400).json({ error: 'token and newPassword are required' });
+            return;
+        }
+        try {
+            await resetPassword(pool, adapter, { token, newPassword });
+            res.json({ message: 'Password updated successfully. Please log in again.' });
+        }
+        catch (e) {
+            const msg = e.message;
+            adapter.logger.error('[me] POST /password-reset', { error: msg });
+            if (msg.includes('Invalid') || msg.includes('expired') || msg.includes('8 characters')) {
+                res.status(422).json({ error: msg });
+            }
+            else {
+                res.status(500).json({ error: 'Failed to reset password' });
+            }
+        }
+    });
+    return router;
+}
+//# sourceMappingURL=me.routes.js.map

package/dist/server/routes/me.routes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"me.routes.js","sourceRoot":"","sources":["../../../src/server/routes/me.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGjC,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,MAAM,qCAAqC,CAAC;AAC/G,OAAO,EAAE,oBAAoB,EAAE,aAAa,EAAE,MAAM,uCAAuC,CAAC;AAC5F,OAAO,EAAE,mBAAmB,EAAE,MAAM,sCAAsC,CAAC;AAC3E,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AAEtC,MAAM,UAAU,cAAc,CAC5B,IAAU,EACV,OAA4B,EAC5B,KAAiC,EACjC,OAAe;IAEf,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC;IAExB,MAAM,CAAC,GAAG,CAAC,aAAa,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC3C,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;YACnD,IAAI,CAAC,MAAM,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACpF,MAAM,KAAK,GAAG,MAAM,OAAO,CAAC,wBAAwB,CAAC,MAAM,CAAC,CAAC;YAC7D,IAAI,CAAC,KAAK,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,kCAAkC,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YAC5F,MAAM,UAAU,GAAG,MAAM,mBAAmB,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC;YAClE,GAAG,CAAC,IAAI,CAAC,EAAE,UAAU,EAAE,CAAC,CAAC;QAC3B,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAC9E,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,4BAA4B,EAAE,CAAC,CAAC;QAChE,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC9C,IAAI,CAAC,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QACzG,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;YACnD,IAAI,CAAC,MAAM,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACpF,MAAM,IAAI,GAAG,MAAM,OAAO,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC;YAC/C,IAAI,CAAC,IAAI,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gBAAgB,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACzE,MAAM,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAA6B,CAAC;YACvD,IAAI,CAAC,QAAQ,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACnF,MAAM,kBAAkB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,MAAM,EAAE,YAAY,EAAE,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;YACjG,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,6CAA6C,EAAE,CAAC,CAAC;QACvE,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,yBAAyB,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YAChE,IAAI,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBAC7B,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,IAAI,GAAG,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBAC1C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,gCAAgC,EAAE,CAAC,CAAC;YACpE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,GAAG,CAAC,sBAAsB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QACpD,IAAI,CAAC,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QACzG,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,KAAe,CAAC;QACxC,IAAI,CAAC,KAAK,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mCAAmC,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7F,IAAI,CAAC;YACH,sFAAsF;YACtF,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC;YACnD,MAAM,iBAAiB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,IAAI,IAAI,EAAE,CAAC,CAAC;YAC1E,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,oCAAoC,EAAE,CAAC,CAAC;QAC9D,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACtE,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;gBACvD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,GAAG,CAAC,sBAAsB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QACpD,IAAI,CAAC,KAAK,CAAC,iBAAiB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,6BAA6B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QACzG,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,KAAe,CAAC;QACxC,IAAI,CAAC,KAAK,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mCAAmC,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7F,IAAI,CAAC;YACH,MAAM,iBAAiB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,CAAC,CAAC;YAClD,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,2EAA2E,EAAE,CAAC,CAAC;QACrG,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+BAA+B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACtE,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC;gBACvD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;YACnE,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,IAAI,CAAC,yBAAyB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QACxD,IAAI,CAAC,KAAK,CAAC,mBAAmB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7G,MAAM,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,IAA0B,CAAC;QACjD,IAAI,CAAC,KAAK,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7E,IAAI,CAAC;YACH,MAAM,oBAAoB,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC,CAAC;YAC9D,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,kDAAkD,EAAE,CAAC,CAAC;QAC5E,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,mCAAmC,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAC3F,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,kDAAkD,EAAE,CAAC,CAAC;QAC5E,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,GAAG,CAAC,iBAAiB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAC/C,IAAI,CAAC,KAAK,CAAC,mBAAmB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7G,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,KAAe,CAAC;QACxC,IAAI,CAAC,KAAK,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,mCAAmC,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7F,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;YAChC,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAC7B,4GAA4G,EAC5G,CAAC,SAAS,CAAC,CACZ,CAAC;YACF,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,yCAAyC,EAAE,CAAC,CAAC;gBAAC,OAAO;YAAC,CAAC;YACrH,GAAG,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5B,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAG,CAAW,CAAC,OAAO,EAAE,CAAC,CAAC;YAClF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,MAAM,CAAC,IAAI,CAAC,iBAAiB,EAAE,KAAK,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE;QAChD,IAAI,CAAC,KAAK,CAAC,mBAAmB,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,+BAA+B,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC7G,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,GAAG,GAAG,CAAC,IAAgD,CAAC;QACpF,IAAI,CAAC,KAAK,IAAI,CAAC,WAAW,EAAE,CAAC;YAAC,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,oCAAoC,EAAE,CAAC,CAAC;YAAC,OAAO;QAAC,CAAC;QAC9G,IAAI,CAAC;YACH,MAAM,aAAa,CAAC,IAAI,EAAE,OAAO,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;YAC3D,GAAG,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,qDAAqD,EAAE,CAAC,CAAC;QAC/E,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,MAAM,GAAG,GAAI,CAAW,CAAC,OAAO,CAAC;YACjC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YAClE,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;gBACvF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC,CAAC;YACvC,CAAC;iBAAM,CAAC;gBACN,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,0BAA0B,EAAE,CAAC,CAAC;YAC9D,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/server/routes/orgs.routes.d.ts

@@ -0,0 +1,5 @@
+import { Router } from 'express';
+import type { Pool } from 'pg';
+import type { ServerModuleAdapter, TeamManagementFeatureFlags } from '../types.js';
+export declare function createOrgsRouter(pool: Pool, adapter: ServerModuleAdapter, flags: TeamManagementFeatureFlags): Router;
+//# sourceMappingURL=orgs.routes.d.ts.map

package/dist/server/routes/orgs.routes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"orgs.routes.d.ts","sourceRoot":"","sources":["../../../src/server/routes/orgs.routes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,IAAI,CAAC;AAC/B,OAAO,KAAK,EAAE,mBAAmB,EAAE,0BAA0B,EAAW,MAAM,aAAa,CAAC;AAQ5F,wBAAgB,gBAAgB,CAC9B,IAAI,EAAE,IAAI,EACV,OAAO,EAAE,mBAAmB,EAC5B,KAAK,EAAE,0BAA0B,GAChC,MAAM,CA6ZR"}