@vobase/core 0.10.0 → 0.12.0

package/src/modules/storage/storage.test.ts

@@ -0,0 +1,225 @@
+import { Database } from 'bun:sqlite';
+import { mkdirSync, rmSync } from 'node:fs';
+import { afterAll, afterEach, beforeAll, beforeEach, describe, expect, it } from 'bun:test';
+import { drizzle } from 'drizzle-orm/bun-sqlite';
+
+import type { VobaseDb } from '../../db/client';
+import { VobaseError } from '../../infra/errors';
+import { createLocalProvider } from './providers/local';
+import { createStorageService, type BucketConfig } from './service';
+import * as storageSchemaModule from './schema';
+
+const testBasePath = '/tmp/vobase-test-storage-v2';
+
+function createTestDb(): { db: VobaseDb; sqlite: Database } {
+  const sqlite = new Database(':memory:');
+  sqlite.run('PRAGMA journal_mode=WAL');
+  sqlite.exec(`
+    CREATE TABLE _storage_objects (
+      id TEXT PRIMARY KEY,
+      bucket TEXT NOT NULL,
+      key TEXT NOT NULL,
+      size INTEGER NOT NULL,
+      content_type TEXT NOT NULL DEFAULT 'application/octet-stream',
+      metadata TEXT,
+      uploaded_by TEXT,
+      created_at INTEGER NOT NULL
+    )
+  `);
+  sqlite.exec(
+    'CREATE UNIQUE INDEX storage_objects_bucket_key_idx ON _storage_objects(bucket, key)',
+  );
+  const db = drizzle({ client: sqlite, schema: storageSchemaModule }) as unknown as VobaseDb;
+  return { db, sqlite };
+}
+
+describe('Local Provider', () => {
+  beforeAll(() => {
+    try {
+      rmSync(testBasePath, { recursive: true, force: true });
+    } catch {}
+    mkdirSync(testBasePath, { recursive: true });
+  });
+
+  afterAll(() => {
+    try {
+      rmSync(testBasePath, { recursive: true, force: true });
+    } catch {}
+  });
+
+  it('uploads and downloads a file', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+    const data = new Uint8Array([1, 2, 3, 4, 5]);
+
+    await provider.upload('test-bucket/file.bin', data);
+    const downloaded = await provider.download('test-bucket/file.bin');
+
+    expect(downloaded).toEqual(data);
+  });
+
+  it('checks file existence', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+    const data = new Uint8Array([42]);
+
+    await provider.upload('test-bucket/exists.bin', data);
+
+    expect(await provider.exists('test-bucket/exists.bin')).toBe(true);
+    expect(await provider.exists('test-bucket/nonexistent.bin')).toBe(false);
+  });
+
+  it('deletes a file', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+    const data = new Uint8Array([99]);
+
+    await provider.upload('test-bucket/to-delete.bin', data);
+    await provider.delete('test-bucket/to-delete.bin');
+
+    expect(await provider.exists('test-bucket/to-delete.bin')).toBe(false);
+  });
+
+  it('rejects directory traversal', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+
+    expect(() => provider.presign('../etc/passwd', {})).toThrow(VobaseError);
+  });
+
+  it('returns proxy URL from presign', () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+    const url = provider.presign('avatars/user-123/pic.jpg', {});
+
+    expect(url).toBe('/api/storage/avatars/user-123/pic.jpg');
+  });
+
+  it('enforces maxSize on upload', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: testBasePath });
+    const largeData = new Uint8Array(1000);
+
+    await expect(
+      provider.upload('test-bucket/large.bin', largeData, { maxSize: 100 }),
+    ).rejects.toThrow(VobaseError);
+  });
+
+  it('lists files in a directory', async () => {
+    const listPath = `${testBasePath}/list-test`;
+    rmSync(listPath, { recursive: true, force: true });
+    mkdirSync(listPath, { recursive: true });
+
+    const provider = createLocalProvider({ type: 'local', basePath: listPath });
+    await provider.upload('mybucket/a.txt', new Uint8Array([1]));
+    await provider.upload('mybucket/b.txt', new Uint8Array([2, 3]));
+
+    const result = await provider.list('mybucket');
+
+    expect(result.objects.length).toBe(2);
+    expect(result.objects.map((o) => o.key).sort()).toEqual(['mybucket/a.txt', 'mybucket/b.txt']);
+  });
+});
+
+describe('StorageService', () => {
+  let db: VobaseDb;
+  let sqlite: Database;
+
+  const buckets: Record<string, BucketConfig> = {
+    avatars: { access: 'public', maxSize: 5 * 1024 * 1024 },
+    documents: { access: 'private', allowedTypes: ['application/pdf', 'image/*'] },
+  };
+
+  beforeEach(() => {
+    const result = createTestDb();
+    db = result.db;
+    sqlite = result.sqlite;
+    try {
+      rmSync(`${testBasePath}/svc`, { recursive: true, force: true });
+    } catch {}
+    mkdirSync(`${testBasePath}/svc`, { recursive: true });
+  });
+
+  afterEach(() => {
+    sqlite.close();
+  });
+
+  it('throws for unknown bucket name', () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    expect(() => svc.bucket('nonexistent')).toThrow(VobaseError);
+  });
+
+  it('uploads and tracks metadata in SQLite', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    const handle = svc.bucket('avatars');
+    const obj = await handle.upload('user-1/pic.jpg', new Uint8Array([1, 2, 3]), {
+      contentType: 'image/jpeg',
+    });
+
+    expect(obj.bucket).toBe('avatars');
+    expect(obj.key).toBe('user-1/pic.jpg');
+    expect(obj.size).toBe(3);
+    expect(obj.contentType).toBe('image/jpeg');
+
+    const meta = await handle.metadata('user-1/pic.jpg');
+    expect(meta).not.toBeNull();
+    expect(meta?.size).toBe(3);
+  });
+
+  it('downloads uploaded file', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    const data = new Uint8Array([10, 20, 30]);
+    await svc.bucket('avatars').upload('dl-test.bin', data);
+    const downloaded = await svc.bucket('avatars').download('dl-test.bin');
+
+    expect(downloaded).toEqual(data);
+  });
+
+  it('deletes file and removes metadata', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    await svc.bucket('avatars').upload('del-test.bin', new Uint8Array([1]));
+    await svc.bucket('avatars').delete('del-test.bin');
+
+    const meta = await svc.bucket('avatars').metadata('del-test.bin');
+    expect(meta).toBeNull();
+  });
+
+  it('enforces bucket maxSize', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const smallBuckets = { tiny: { access: 'private' as const, maxSize: 10 } };
+    const svc = createStorageService(provider, smallBuckets, db);
+
+    await expect(
+      svc.bucket('tiny').upload('big.bin', new Uint8Array(100)),
+    ).rejects.toThrow(VobaseError);
+  });
+
+  it('enforces allowedTypes', async () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    await svc.bucket('documents').upload('doc.pdf', new Uint8Array([1]), {
+      contentType: 'application/pdf',
+    });
+
+    await svc.bucket('documents').upload('pic.png', new Uint8Array([1]), {
+      contentType: 'image/png',
+    });
+
+    await expect(
+      svc.bucket('documents').upload('file.txt', new Uint8Array([1]), {
+        contentType: 'text/plain',
+      }),
+    ).rejects.toThrow(VobaseError);
+  });
+
+  it('presign returns proxy URL with bucket prefix', () => {
+    const provider = createLocalProvider({ type: 'local', basePath: `${testBasePath}/svc` });
+    const svc = createStorageService(provider, buckets, db);
+
+    const url = svc.bucket('avatars').presign('user-1/pic.jpg');
+    expect(url).toBe('/api/storage/avatars/user-1/pic.jpg');
+  });
+});

package/src/schemas.test.ts

@@ -0,0 +1,44 @@
+import { describe, expect, test } from 'bun:test';
+import { getActiveSchemas } from './schemas';
+
+describe('getActiveSchemas', () => {
+  test('returns auth, audit, sequences, webhook_dedup, and credentials by default', () => {
+    const schemas = getActiveSchemas();
+    // Auth tables (always active)
+    expect(schemas.user).toBeDefined();
+    expect(schemas.session).toBeDefined();
+    expect(schemas.account).toBeDefined();
+    expect(schemas.verification).toBeDefined();
+    // Audit tables (always active)
+    expect(schemas.auditLog).toBeDefined();
+    expect(schemas.recordAudits).toBeDefined();
+    // Sequences (always active)
+    expect(schemas.sequences).toBeDefined();
+    // Webhook dedup (always active)
+    expect(schemas.webhookDedup).toBeDefined();
+    // Credentials (default: included)
+    expect(schemas.credentialsTable).toBeDefined();
+  });
+
+  test('excludes credentials when credentials: false', () => {
+    const schemas = getActiveSchemas({ credentials: false });
+    expect(schemas.credentialsTable).toBeUndefined();
+    // Other tables still present
+    expect(schemas.user).toBeDefined();
+    expect(schemas.auditLog).toBeDefined();
+    expect(schemas.sequences).toBeDefined();
+    expect(schemas.webhookDedup).toBeDefined();
+  });
+
+  test('includes credentials when credentials: true', () => {
+    const schemas = getActiveSchemas({ credentials: true });
+    expect(schemas.credentialsTable).toBeDefined();
+  });
+
+  test('returns a plain object with all table definitions', () => {
+    const schemas = getActiveSchemas();
+    const keys = Object.keys(schemas);
+    // At minimum: 4 auth + 2 audit + 1 sequences + 1 webhook + 1 credentials = 9
+    expect(keys.length).toBeGreaterThanOrEqual(9);
+  });
+});

package/src/schemas.ts

@@ -0,0 +1,63 @@
+import { authSchema, apikeySchema, organizationSchema } from './modules/auth/schema';
+import { auditLog, recordAudits } from './modules/audit/schema';
+import { credentialsTable } from './modules/credentials/schema';
+import { sequences } from './modules/sequences/schema';
+import { notifyLog } from './modules/notify/schema';
+import { storageObjects } from './modules/storage/schema';
+import { webhookDedup } from './infra/webhooks-schema';
+
+export interface SchemaConfig {
+  /** Include credentials table. Default: true */
+  credentials?: boolean;
+  /** Include storage tables (Phase 2). Default: false */
+  storage?: boolean;
+  /** Include notify tables (Phase 3). Default: false */
+  notify?: boolean;
+  /** Include organization tables (better-auth organization plugin). Default: false */
+  organization?: boolean;
+}
+
+/**
+ * Returns a merged schema object containing all active Drizzle table
+ * definitions based on config. Use with drizzle-kit for migration generation.
+ *
+ * Always included: auth, audit, sequences, webhook dedup.
+ * Conditionally included: credentials, storage (Phase 2), notify (Phase 3).
+ */
+export function getActiveSchemas(config?: SchemaConfig): Record<string, unknown> {
+  const schema: Record<string, unknown> = {
+    // Auth tables (always active)
+    ...authSchema,
+    // API key table (always active — needed for MCP auth)
+    ...apikeySchema,
+    // Audit tables (always active)
+    auditLog,
+    recordAudits,
+    // Sequences table (always active)
+    sequences,
+    // Webhook dedup table (always active)
+    webhookDedup,
+  };
+
+  // Organization (optional — better-auth organization plugin)
+  if (config?.organization) {
+    Object.assign(schema, organizationSchema);
+  }
+
+  // Credentials (default: included)
+  if (config?.credentials !== false) {
+    schema.credentialsTable = credentialsTable;
+  }
+
+  // Storage (Phase 2)
+  if (config?.storage) {
+    schema.storageObjects = storageObjects;
+  }
+
+  // Notify (Phase 3)
+  if (config?.notify) {
+    schema.notifyLog = notifyLog;
+  }
+
+  return schema;
+}

package/src/sequence.test.ts

@@ -0,0 +1,56 @@
+import { Database } from 'bun:sqlite';
+import { afterEach, beforeEach, describe, expect, it } from 'bun:test';
+import { drizzle } from 'drizzle-orm/bun-sqlite';
+
+import type { VobaseDb } from './db';
+import * as schema from './modules/sequences/schema';
+import { nextSequence } from './modules/sequences/next-sequence';
+
+describe('nextSequence()', () => {
+  let sqlite: Database;
+  let db: VobaseDb;
+
+  beforeEach(() => {
+    sqlite = new Database(':memory:');
+    sqlite.run('PRAGMA journal_mode=WAL');
+    sqlite.exec(`
+      CREATE TABLE _sequences (
+        id TEXT PRIMARY KEY,
+        prefix TEXT NOT NULL UNIQUE,
+        current_value INTEGER NOT NULL DEFAULT 0,
+        updated_at INTEGER NOT NULL
+      )
+    `);
+
+    db = drizzle({ client: sqlite, schema }) as unknown as VobaseDb;
+  });
+
+  afterEach(() => {
+    sqlite.close();
+  });
+
+  it('returns gap-free numbers for same prefix', () => {
+    const values = Array.from({ length: 5 }, () => nextSequence(db, 'INV'));
+    expect(values).toEqual([
+      'INV-0001',
+      'INV-0002',
+      'INV-0003',
+      'INV-0004',
+      'INV-0005',
+    ]);
+  });
+
+  it('maintains independent counters per prefix', () => {
+    expect(nextSequence(db, 'INV')).toBe('INV-0001');
+    expect(nextSequence(db, 'ORD')).toBe('ORD-0001');
+    expect(nextSequence(db, 'INV')).toBe('INV-0002');
+    expect(nextSequence(db, 'ORD')).toBe('ORD-0002');
+  });
+
+  it('formats sequence with year prefix when enabled', () => {
+    const year = new Date().getFullYear();
+    expect(nextSequence(db, 'INV', { yearPrefix: true })).toBe(
+      `INV-${year}-0001`,
+    );
+  });
+});

package/dist/app.d.ts

@@ -1,37 +0,0 @@
-import { type HttpClientOptions } from './infra/http-client';
-import { type AuthModuleConfig } from './modules/auth';
-import { type NotifyModuleConfig } from './modules/notify';
-import { type StorageModuleConfig } from './modules/storage';
-import type { VobaseModule } from './module';
-import { type WebhookConfig } from './infra/webhooks';
-export interface CreateAppConfig {
-    modules: VobaseModule[];
-    database: string;
-    storage?: StorageModuleConfig;
-    notify?: NotifyModuleConfig;
-    http?: HttpClientOptions;
-    webhooks?: Record<string, WebhookConfig>;
-    mcp?: {
-        enabled?: boolean;
-    };
-    trustedOrigins?: string[];
-    auth?: Omit<AuthModuleConfig, 'trustedOrigins'>;
-    /** Enable the credentials module (encrypted credential store). Default: false */
-    credentials?: {
-        enabled: boolean;
-    };
-}
-export declare function createApp(config: CreateAppConfig): import("hono/hono-base").HonoBase<import("hono/types").BlankEnv, {
-    "/health": {
-        $get: {
-            input: {};
-            output: {
-                status: string;
-                uptime: number;
-            };
-            outputFormat: "json";
-            status: import("hono/utils/http-status").ContentfulStatusCode;
-        };
-    };
-}, "/", "/health">;
-//# sourceMappingURL=app.d.ts.map

package/dist/app.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"app.d.ts","sourceRoot":"","sources":["../src/app.ts"],"names":[],"mappings":"AAIA,OAAO,EAAoB,KAAK,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAM/E,OAAO,EAA+C,KAAK,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAEpG,OAAO,EAAsB,KAAK,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAG/E,OAAO,EAAuB,KAAK,mBAAmB,EAAE,MAAM,mBAAmB,CAAC;AAElF,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAG7C,OAAO,EAAuB,KAAK,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAqC3E,MAAM,WAAW,eAAe;IAC9B,OAAO,EAAE,YAAY,EAAE,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,mBAAmB,CAAC;IAC9B,MAAM,CAAC,EAAE,kBAAkB,CAAC;IAC5B,IAAI,CAAC,EAAE,iBAAiB,CAAC;IACzB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,aAAa,CAAC,CAAC;IACzC,GAAG,CAAC,EAAE;QAAE,OAAO,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAC5B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,IAAI,CAAC,EAAE,IAAI,CAAC,gBAAgB,EAAE,gBAAgB,CAAC,CAAC;IAChD,iFAAiF;IACjF,WAAW,CAAC,EAAE;QAAE,OAAO,EAAE,OAAO,CAAA;KAAE,CAAC;CACpC;AAED,wBAAgB,SAAS,CAAC,MAAM,EAAE,eAAe;;;;;;;;;;;;mBA0GhD"}

package/dist/contracts/auth.d.ts

@@ -1,35 +0,0 @@
-/**
- * Core contract for authentication. The auth adapter translates an incoming
- * request into a user identity. Core uses this in the session middleware
- * to populate ctx.user. The built-in auth module implements this via
- * better-auth; users can swap in their own implementation.
- */
-export interface AuthAdapter {
-    /**
-     * Extract user identity from a request. Returns null if unauthenticated.
-     * Must not throw — return null for invalid/expired sessions.
-     */
-    getSession(headers: Headers): Promise<AuthSession | null>;
-    /**
-     * The raw request handler for auth routes (sign-in, sign-up, etc.)
-     * Mounted at /api/auth/* by the auth module.
-     */
-    handler: (request: Request) => Promise<Response>;
-}
-export interface AuthSession {
-    user: AuthUser;
-    session: {
-        id: string;
-        expiresAt: Date;
-        token: string;
-    };
-}
-export interface AuthUser {
-    id: string;
-    email: string;
-    name: string;
-    role: string;
-    /** Set when the user has an active organization (better-auth organization plugin) */
-    activeOrganizationId?: string;
-}
-//# sourceMappingURL=auth.d.ts.map

package/dist/contracts/auth.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/contracts/auth.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AACH,MAAM,WAAW,WAAW;IAC1B;;;OAGG;IACH,UAAU,CAAC,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,WAAW,GAAG,IAAI,CAAC,CAAC;IAE1D;;;OAGG;IACH,OAAO,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,QAAQ,CAAC,CAAC;CAClD;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,QAAQ,CAAC;IACf,OAAO,EAAE;QACP,EAAE,EAAE,MAAM,CAAC;QACX,SAAS,EAAE,IAAI,CAAC;QAChB,KAAK,EAAE,MAAM,CAAC;KACf,CAAC;CACH;AAED,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,qFAAqF;IACrF,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC/B"}

package/dist/contracts/module.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"module.d.ts","sourceRoot":"","sources":["../../src/contracts/module.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,cAAc,CAAC;AAC7C,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAC;AAC/D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,4BAA4B,CAAC;AACjE,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAEhD;;;GAGG;AACH,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,QAAQ,CAAC;IACb,SAAS,EAAE,SAAS,CAAC;IACrB,OAAO,EAAE,cAAc,CAAC;IACxB,IAAI,EAAE,UAAU,CAAC;IACjB,MAAM,EAAE,aAAa,CAAC;CACvB"}

package/dist/contracts/notify.d.ts

@@ -1,46 +0,0 @@
-/**
- * Provider interfaces for the notify module. Each channel (email, WhatsApp)
- * has its own provider interface with channel-specific options.
- */
-export interface EmailProvider {
-    send(message: EmailMessage): Promise<EmailResult>;
-}
-export interface EmailMessage {
-    to: string | string[];
-    subject: string;
-    html?: string;
-    text?: string;
-    from?: string;
-    cc?: string[];
-    bcc?: string[];
-    replyTo?: string;
-    attachments?: EmailAttachment[];
-}
-export interface EmailAttachment {
-    filename: string;
-    content: Buffer | Uint8Array;
-    contentType?: string;
-}
-export interface EmailResult {
-    success: boolean;
-    messageId?: string;
-    error?: string;
-}
-export interface WhatsAppProvider {
-    send(message: WhatsAppMessage): Promise<WhatsAppResult>;
-}
-export interface WhatsAppMessage {
-    to: string;
-    template?: {
-        name: string;
-        language: string;
-        parameters?: string[];
-    };
-    text?: string;
-}
-export interface WhatsAppResult {
-    success: boolean;
-    messageId?: string;
-    error?: string;
-}
-//# sourceMappingURL=notify.d.ts.map

package/dist/contracts/notify.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"notify.d.ts","sourceRoot":"","sources":["../../src/contracts/notify.ts"],"names":[],"mappings":"AAAA;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,IAAI,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;CACnD;AAED,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC;IACd,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,eAAe,EAAE,CAAC;CACjC;AAED,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,GAAG,UAAU,CAAC;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;CACzD;AAED,MAAM,WAAW,eAAe;IAC9B,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;IACrE,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB"}

package/dist/contracts/permissions.d.ts

@@ -1,10 +0,0 @@
-export interface Permission {
-    resource: string;
-    actions: string[];
-}
-export interface OrganizationContext {
-    organizationId: string;
-    role: string;
-    permissions?: Permission[];
-}
-//# sourceMappingURL=permissions.d.ts.map

package/dist/contracts/permissions.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"permissions.d.ts","sourceRoot":"","sources":["../../src/contracts/permissions.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,EAAE,CAAC;CACnB;AAED,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,MAAM,CAAC;IACvB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,UAAU,EAAE,CAAC;CAC5B"}

package/dist/contracts/storage.d.ts

@@ -1,54 +0,0 @@
-/**
- * Provider interface for storage backends. Each provider implements
- * the physical operations; the storage module handles bucket resolution,
- * metadata tracking, and access control on top.
- */
-export interface StorageProvider {
-    upload(fullKey: string, data: Buffer | Uint8Array, opts?: UploadOptions): Promise<void>;
-    download(fullKey: string): Promise<Uint8Array>;
-    delete(fullKey: string): Promise<void>;
-    exists(fullKey: string): Promise<boolean>;
-    presign(fullKey: string, opts: PresignOptions): string;
-    list(prefix: string, opts?: ListOptions): Promise<StorageListResult>;
-}
-export interface UploadOptions {
-    contentType?: string;
-    metadata?: Record<string, string>;
-    /** Max upload size in bytes. Enforced server-side for direct uploads. */
-    maxSize?: number;
-}
-export interface PresignOptions {
-    expiresIn?: number;
-    method?: 'GET' | 'PUT';
-}
-export interface ListOptions {
-    cursor?: string;
-    limit?: number;
-}
-export interface StorageListResult {
-    objects: StorageObjectInfo[];
-    cursor?: string;
-}
-export interface StorageObjectInfo {
-    key: string;
-    size: number;
-    contentType: string;
-    lastModified: Date;
-}
-/** Local filesystem provider */
-export interface LocalProviderConfig {
-    type: 'local';
-    basePath: string;
-    baseUrl?: string;
-}
-/** S3-compatible provider (AWS, R2, MinIO) using Bun native S3 */
-export interface S3ProviderConfig {
-    type: 's3';
-    bucket: string;
-    region?: string;
-    endpoint?: string;
-    accessKeyId: string;
-    secretAccessKey: string;
-}
-export type StorageProviderConfig = LocalProviderConfig | S3ProviderConfig;
-//# sourceMappingURL=storage.d.ts.map

package/dist/contracts/storage.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"storage.d.ts","sourceRoot":"","sources":["../../src/contracts/storage.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,MAAM,WAAW,eAAe;IAC9B,MAAM,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,UAAU,EAAE,IAAI,CAAC,EAAE,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACxF,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC;IAC/C,MAAM,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IACvC,MAAM,CAAC,OAAO,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAC1C,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc,GAAG,MAAM,CAAC;IACvD,IAAI,CAAC,MAAM,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,iBAAiB,CAAC,CAAC;CACtE;AAED,MAAM,WAAW,aAAa;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IAClC,yEAAyE;IACzE,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,MAAM,CAAC,EAAE,KAAK,GAAG,KAAK,CAAC;CACxB;AAED,MAAM,WAAW,WAAW;IAC1B,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,iBAAiB;IAChC,OAAO,EAAE,iBAAiB,EAAE,CAAC;IAC7B,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,iBAAiB;IAChC,GAAG,EAAE,MAAM,CAAC;IACZ,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,IAAI,CAAC;CACpB;AAED,gCAAgC;AAChC,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,OAAO,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,kEAAkE;AAClE,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,IAAI,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,MAAM,qBAAqB,GAAG,mBAAmB,GAAG,gBAAgB,CAAC"}

package/dist/ctx.d.ts

@@ -1,40 +0,0 @@
-import type { Context } from 'hono';
-import type { VobaseDb } from './db';
-import type { HttpClient } from './infra/http-client';
-import type { Scheduler } from './infra/queue';
-import type { NotifyService } from './modules/notify/service';
-import type { StorageService } from './modules/storage/service';
-export interface VobaseUser {
-    id: string;
-    email: string;
-    name: string;
-    role: string;
-    /** Set when the user has an active organization (better-auth organization plugin) */
-    activeOrganizationId?: string;
-}
-export interface VobaseCtx {
-    db: VobaseDb;
-    user: VobaseUser | null;
-    scheduler: Scheduler;
-    storage: StorageService;
-    notify: NotifyService;
-    http: HttpClient;
-}
-declare module 'hono' {
-    interface ContextVariableMap {
-        db: VobaseDb;
-        scheduler: Scheduler;
-        storage: StorageService;
-        notify: NotifyService;
-        http: HttpClient;
-    }
-}
-export declare function contextMiddleware(deps: {
-    db: VobaseDb;
-    scheduler: Scheduler;
-    storage: StorageService;
-    notify: NotifyService;
-    http: HttpClient;
-}): import("hono").MiddlewareHandler<any, string, {}, Response>;
-export declare function getCtx(c: Context): VobaseCtx;
-//# sourceMappingURL=ctx.d.ts.map

package/dist/ctx.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"ctx.d.ts","sourceRoot":"","sources":["../src/ctx.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAGpC,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AACtD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAC/C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AAC9D,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,2BAA2B,CAAC;AAEhE,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,qFAAqF;IACrF,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC/B;AAED,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,QAAQ,CAAC;IACb,IAAI,EAAE,UAAU,GAAG,IAAI,CAAC;IACxB,SAAS,EAAE,SAAS,CAAC;IACrB,OAAO,EAAE,cAAc,CAAC;IACxB,MAAM,EAAE,aAAa,CAAC;IACtB,IAAI,EAAE,UAAU,CAAC;CAClB;AAED,OAAO,QAAQ,MAAM,CAAC;IACpB,UAAU,kBAAkB;QAC1B,EAAE,EAAE,QAAQ,CAAC;QACb,SAAS,EAAE,SAAS,CAAC;QACrB,OAAO,EAAE,cAAc,CAAC;QACxB,MAAM,EAAE,aAAa,CAAC;QACtB,IAAI,EAAE,UAAU,CAAC;KAClB;CACF;AAED,wBAAgB,iBAAiB,CAAC,IAAI,EAAE;IACtC,EAAE,EAAE,QAAQ,CAAC;IACb,SAAS,EAAE,SAAS,CAAC;IACrB,OAAO,EAAE,cAAc,CAAC;IACxB,MAAM,EAAE,aAAa,CAAC;IACtB,IAAI,EAAE,UAAU,CAAC;CAClB,+DASA;AAED,wBAAgB,MAAM,CAAC,CAAC,EAAE,OAAO,GAAG,SAAS,CAS5C"}

package/dist/db/client.d.ts

@@ -1,4 +0,0 @@
-import { drizzle } from 'drizzle-orm/bun-sqlite';
-export type VobaseDb = ReturnType<typeof drizzle>;
-export declare function createDatabase(dbPath: string): VobaseDb;
-//# sourceMappingURL=client.d.ts.map

package/dist/db/client.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../src/db/client.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,wBAAwB,CAAC;AAEjD,MAAM,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,OAAO,CAAC,CAAC;AAElD,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,QAAQ,CASvD"}