@voyantjs/hono 0.83.0 → 0.84.1

package/dist/index.d.ts

@@ -10,6 +10,7 @@ export type { ExpandedHonoBundles, ExpandedHonoPlugins, HonoBundle, HonoPlugin,
 export { defineHonoBundle, defineHonoPlugin, expandHonoBundles, expandHonoPlugins, } from "./plugin.js";
 export type { CreatePublicCapabilityOptions, PublicCapabilityCookieOptions, PublicCapabilityPayload, VerifyPublicCapabilityOptions, } from "./public-capability.js";
 export { createPublicCapabilityToken, extractPublicCapabilityToken, serializePublicCapabilityCookie, verifyPublicCapabilityToken, } from "./public-capability.js";
+export { type CreatePublicDocumentDeliveryInput, createDrizzlePublicDocumentDeliveryGrantStore, createPublicDocumentDeliveryGrant, createPublicDocumentDeliveryHonoModule, createPublicDocumentDeliveryRoutes, type PublicDocumentDeliveryAccessContext, type PublicDocumentDeliveryEnvelope, type PublicDocumentDeliveryGrant, type PublicDocumentDeliveryGrantStore, type PublicDocumentDeliveryResolution, type PublicDocumentDeliveryRouteOptions, type PublicDocumentDeliverySource, type RevokePublicDocumentDeliveryGrantInput, resolvePublicDocumentDeliveryGrant, revokePublicDocumentDeliveryGrant, } from "./public-document-delivery.js";
 export type { DbFactory, LogEntry, LoggerProvider, VoyantAppConfig, VoyantAuthIntegration, VoyantAuthPermissionArgs, VoyantAuthResolveArgs, VoyantBindings, VoyantDb, VoyantExecutionContext, VoyantQueryRuntime, VoyantRequestAuthContext, VoyantVariables, } from "./types.js";
 export { ApiHttpError, ForbiddenApiError, normalizeValidationError, parseJsonBody, parseOptionalJsonBody, parseQuery, RequestValidationError, UnauthorizedApiError, } from "./validation.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAA;AACpC,YAAY,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AACzD,OAAO,EACL,kBAAkB,EAClB,mBAAmB,EACnB,cAAc,EACd,aAAa,EACb,eAAe,EACf,SAAS,EACT,YAAY,EACZ,aAAa,GACd,MAAM,iBAAiB,CAAA;AACxB,YAAY,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,wBAAwB,EACxB,8BAA8B,EAC9B,uBAAuB,GACxB,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EAAE,6BAA6B,EAAE,MAAM,wBAAwB,CAAA;AACtE,OAAO,EACL,qBAAqB,EACrB,IAAI,EACJ,0BAA0B,EAC1B,EAAE,EACF,aAAa,EACb,cAAc,EACd,KAAK,qBAAqB,EAC1B,cAAc,EACd,WAAW,EACX,MAAM,EACN,2BAA2B,EAC3B,SAAS,EACT,SAAS,EACT,YAAY,EACZ,WAAW,EACX,iBAAiB,GAClB,MAAM,uBAAuB,CAAA;AAC9B,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAC5D,YAAY,EACV,mBAAmB,EACnB,mBAAmB,EACnB,UAAU,EACV,UAAU,GACX,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,aAAa,CAAA;AACpB,YAAY,EACV,6BAA6B,EAC7B,6BAA6B,EAC7B,uBAAuB,EACvB,6BAA6B,GAC9B,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EACL,2BAA2B,EAC3B,4BAA4B,EAC5B,+BAA+B,EAC/B,2BAA2B,GAC5B,MAAM,wBAAwB,CAAA;AAC/B,YAAY,EACV,SAAS,EACT,QAAQ,EACR,cAAc,EACd,eAAe,EACf,qBAAqB,EACrB,wBAAwB,EACxB,qBAAqB,EACrB,cAAc,EACd,QAAQ,EACR,sBAAsB,EACtB,kBAAkB,EAClB,wBAAwB,EACxB,eAAe,GAChB,MAAM,YAAY,CAAA;AACnB,OAAO,EACL,YAAY,EACZ,iBAAiB,EACjB,wBAAwB,EACxB,aAAa,EACb,qBAAqB,EACrB,UAAU,EACV,sBAAsB,EACtB,oBAAoB,GACrB,MAAM,iBAAiB,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAA;AACtD,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAA;AACpC,YAAY,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAA;AACzD,OAAO,EACL,kBAAkB,EAClB,mBAAmB,EACnB,cAAc,EACd,aAAa,EACb,eAAe,EACf,SAAS,EACT,YAAY,EACZ,aAAa,GACd,MAAM,iBAAiB,CAAA;AACxB,YAAY,EACV,wBAAwB,EACxB,0BAA0B,EAC1B,wBAAwB,EACxB,8BAA8B,EAC9B,uBAAuB,GACxB,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EAAE,6BAA6B,EAAE,MAAM,wBAAwB,CAAA;AACtE,OAAO,EACL,qBAAqB,EACrB,IAAI,EACJ,0BAA0B,EAC1B,EAAE,EACF,aAAa,EACb,cAAc,EACd,KAAK,qBAAqB,EAC1B,cAAc,EACd,WAAW,EACX,MAAM,EACN,2BAA2B,EAC3B,SAAS,EACT,SAAS,EACT,YAAY,EACZ,WAAW,EACX,iBAAiB,GAClB,MAAM,uBAAuB,CAAA;AAC9B,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAC5D,YAAY,EACV,mBAAmB,EACnB,mBAAmB,EACnB,UAAU,EACV,UAAU,GACX,MAAM,aAAa,CAAA;AACpB,OAAO,EACL,gBAAgB,EAChB,gBAAgB,EAChB,iBAAiB,EACjB,iBAAiB,GAClB,MAAM,aAAa,CAAA;AACpB,YAAY,EACV,6BAA6B,EAC7B,6BAA6B,EAC7B,uBAAuB,EACvB,6BAA6B,GAC9B,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EACL,2BAA2B,EAC3B,4BAA4B,EAC5B,+BAA+B,EAC/B,2BAA2B,GAC5B,MAAM,wBAAwB,CAAA;AAC/B,OAAO,EACL,KAAK,iCAAiC,EACtC,6CAA6C,EAC7C,iCAAiC,EACjC,sCAAsC,EACtC,kCAAkC,EAClC,KAAK,mCAAmC,EACxC,KAAK,8BAA8B,EACnC,KAAK,2BAA2B,EAChC,KAAK,gCAAgC,EACrC,KAAK,gCAAgC,EACrC,KAAK,kCAAkC,EACvC,KAAK,4BAA4B,EACjC,KAAK,sCAAsC,EAC3C,kCAAkC,EAClC,iCAAiC,GAClC,MAAM,+BAA+B,CAAA;AACtC,YAAY,EACV,SAAS,EACT,QAAQ,EACR,cAAc,EACd,eAAe,EACf,qBAAqB,EACrB,wBAAwB,EACxB,qBAAqB,EACrB,cAAc,EACd,QAAQ,EACR,sBAAsB,EACtB,kBAAkB,EAClB,wBAAwB,EACxB,eAAe,GAChB,MAAM,YAAY,CAAA;AACnB,OAAO,EACL,YAAY,EACZ,iBAAiB,EACjB,wBAAwB,EACxB,aAAa,EACb,qBAAqB,EACrB,UAAU,EACV,sBAAsB,EACtB,oBAAoB,GACrB,MAAM,iBAAiB,CAAA"}

package/dist/index.js

@@ -4,4 +4,5 @@ export { resolveStoredDocumentDownload } from "./document-download.js";
 export { consoleLoggerProvider, cors, DEFAULT_IDEMPOTENCY_TTL_MS, db, errorBoundary, handleApiError, idempotencyKey, LIVE_LIMITS, logger, purgeExpiredIdempotencyKeys, rateLimit, requestId, requireActor, requireAuth, requirePermission, } from "./middleware/index.js";
 export { defineHonoBundle, defineHonoPlugin, expandHonoBundles, expandHonoPlugins, } from "./plugin.js";
 export { createPublicCapabilityToken, extractPublicCapabilityToken, serializePublicCapabilityCookie, verifyPublicCapabilityToken, } from "./public-capability.js";
+export { createDrizzlePublicDocumentDeliveryGrantStore, createPublicDocumentDeliveryGrant, createPublicDocumentDeliveryHonoModule, createPublicDocumentDeliveryRoutes, resolvePublicDocumentDeliveryGrant, revokePublicDocumentDeliveryGrant, } from "./public-document-delivery.js";
 export { ApiHttpError, ForbiddenApiError, normalizeValidationError, parseJsonBody, parseOptionalJsonBody, parseQuery, RequestValidationError, UnauthorizedApiError, } from "./validation.js";

package/dist/public-document-delivery.d.ts

@@ -0,0 +1,111 @@
+import type { InsertInfraPublicDocumentDeliveryGrant, SelectInfraPublicDocumentDeliveryGrant } from "@voyantjs/db/schema/infra";
+import type { StorageProvider } from "@voyantjs/storage";
+import type { PostgresJsDatabase } from "drizzle-orm/postgres-js";
+import type { DocumentDownloadEnvelope } from "./document-download.js";
+import type { HonoModule } from "./module.js";
+export interface PublicDocumentDeliveryEnvelope extends DocumentDownloadEnvelope {
+    grantId: string;
+}
+export interface PublicDocumentDeliverySource {
+    module?: string | null;
+    entity?: string | null;
+    id?: string | null;
+}
+export interface CreatePublicDocumentDeliveryInput {
+    storageKey: string;
+    publicBaseUrl: string;
+    publicPath?: string;
+    ttlSeconds?: number;
+    expiresAt?: Date;
+    filename?: string | null;
+    contentType?: string | null;
+    storageProvider?: string | null;
+    source?: PublicDocumentDeliverySource | null;
+    createdBy?: string | null;
+    createdByType?: string | null;
+    metadata?: unknown;
+    now?: Date;
+}
+export interface PublicDocumentDeliveryAccessContext {
+    accessedAt?: Date;
+    ip?: string | null;
+    userAgent?: string | null;
+}
+export interface RevokePublicDocumentDeliveryGrantInput {
+    id: string;
+    revokedAt?: Date;
+    revokedBy?: string | null;
+}
+export type PublicDocumentDeliveryGrant = SelectInfraPublicDocumentDeliveryGrant;
+export type PublicDocumentDeliveryResolution = {
+    status: "ready";
+    grant: PublicDocumentDeliveryGrant;
+} | {
+    status: "not_found";
+} | {
+    status: "expired";
+    grant: PublicDocumentDeliveryGrant;
+} | {
+    status: "revoked";
+    grant: PublicDocumentDeliveryGrant;
+};
+export interface PublicDocumentDeliveryGrantStore {
+    create(input: InsertInfraPublicDocumentDeliveryGrant): Promise<PublicDocumentDeliveryGrant>;
+    findByTokenHash(tokenHash: string): Promise<PublicDocumentDeliveryGrant | null>;
+    recordAccess(id: string, context: Required<PublicDocumentDeliveryAccessContext>): Promise<void>;
+    revoke(input: RevokePublicDocumentDeliveryGrantInput): Promise<PublicDocumentDeliveryGrant | null>;
+}
+type Env<TBindings extends object = Record<string, unknown>> = {
+    Bindings: TBindings;
+    Variables: {
+        db: PostgresJsDatabase;
+    };
+};
+export interface PublicDocumentDeliveryRouteOptions<TBindings extends object = Record<string, unknown>> {
+    storage?: StorageProvider | null;
+    resolveStorage?: (bindings: TBindings) => StorageProvider | null | undefined;
+    store?: PublicDocumentDeliveryGrantStore;
+    resolveStore?: (bindings: TBindings, db: PostgresJsDatabase) => PublicDocumentDeliveryGrantStore | undefined;
+}
+export declare function createDrizzlePublicDocumentDeliveryGrantStore(db: PostgresJsDatabase): PublicDocumentDeliveryGrantStore;
+export declare function createPublicDocumentDeliveryGrant(store: PublicDocumentDeliveryGrantStore, input: CreatePublicDocumentDeliveryInput): Promise<PublicDocumentDeliveryEnvelope>;
+export declare function resolvePublicDocumentDeliveryGrant(store: PublicDocumentDeliveryGrantStore, token: string, now?: Date): Promise<PublicDocumentDeliveryResolution>;
+export declare function revokePublicDocumentDeliveryGrant(store: PublicDocumentDeliveryGrantStore, input: RevokePublicDocumentDeliveryGrantInput): Promise<{
+    metadata: unknown;
+    id: string;
+    createdAt: Date;
+    expiresAt: Date;
+    revokedAt: Date | null;
+    tokenHash: string;
+    createdBy: string | null;
+    filename: string | null;
+    storageKey: string;
+    storageProvider: string | null;
+    contentType: string;
+    sourceModule: string | null;
+    sourceEntity: string | null;
+    sourceId: string | null;
+    createdByType: string | null;
+    accessCount: number;
+    lastAccessedAt: Date | null;
+    lastAccessedIp: string | null;
+    lastAccessedUserAgent: string | null;
+    revokedBy: string | null;
+} | null>;
+export declare function createPublicDocumentDeliveryRoutes<TBindings extends object = Record<string, unknown>>(options?: PublicDocumentDeliveryRouteOptions<TBindings>): import("hono/hono-base").HonoBase<Env<TBindings>, {
+    "/:token": {
+        $get: {
+            input: {
+                param: {
+                    token: string;
+                };
+            };
+            output: {};
+            outputFormat: string;
+            status: import("hono/utils/http-status").StatusCode;
+        };
+    };
+}, "/", "/:token">;
+export declare function createPublicDocumentDeliveryHonoModule<TBindings extends object = Record<string, unknown>>(options?: PublicDocumentDeliveryRouteOptions<TBindings>): HonoModule;
+export {};
+//# sourceMappingURL=public-document-delivery.d.ts.map

package/dist/public-document-delivery.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"public-document-delivery.d.ts","sourceRoot":"","sources":["../src/public-document-delivery.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,sCAAsC,EACtC,sCAAsC,EACvC,MAAM,2BAA2B,CAAA;AAElC,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAA;AAExD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAA;AAIjE,OAAO,KAAK,EAAE,wBAAwB,EAAE,MAAM,wBAAwB,CAAA;AACtE,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AAQ7C,MAAM,WAAW,8BAA+B,SAAQ,wBAAwB;IAC9E,OAAO,EAAE,MAAM,CAAA;CAChB;AAED,MAAM,WAAW,4BAA4B;IAC3C,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACtB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACtB,EAAE,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;CACnB;AAED,MAAM,WAAW,iCAAiC;IAChD,UAAU,EAAE,MAAM,CAAA;IAClB,aAAa,EAAE,MAAM,CAAA;IACrB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,SAAS,CAAC,EAAE,IAAI,CAAA;IAChB,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACxB,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC3B,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC/B,MAAM,CAAC,EAAE,4BAA4B,GAAG,IAAI,CAAA;IAC5C,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IACzB,aAAa,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAC7B,QAAQ,CAAC,EAAE,OAAO,CAAA;IAClB,GAAG,CAAC,EAAE,IAAI,CAAA;CACX;AAED,MAAM,WAAW,mCAAmC;IAClD,UAAU,CAAC,EAAE,IAAI,CAAA;IACjB,EAAE,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;IAClB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;CAC1B;AAED,MAAM,WAAW,sCAAsC;IACrD,EAAE,EAAE,MAAM,CAAA;IACV,SAAS,CAAC,EAAE,IAAI,CAAA;IAChB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAA;CAC1B;AAED,MAAM,MAAM,2BAA2B,GAAG,sCAAsC,CAAA;AAEhF,MAAM,MAAM,gCAAgC,GACxC;IAAE,MAAM,EAAE,OAAO,CAAC;IAAC,KAAK,EAAE,2BAA2B,CAAA;CAAE,GACvD;IAAE,MAAM,EAAE,WAAW,CAAA;CAAE,GACvB;IAAE,MAAM,EAAE,SAAS,CAAC;IAAC,KAAK,EAAE,2BAA2B,CAAA;CAAE,GACzD;IAAE,MAAM,EAAE,SAAS,CAAC;IAAC,KAAK,EAAE,2BAA2B,CAAA;CAAE,CAAA;AAE7D,MAAM,WAAW,gCAAgC;IAC/C,MAAM,CAAC,KAAK,EAAE,sCAAsC,GAAG,OAAO,CAAC,2BAA2B,CAAC,CAAA;IAC3F,eAAe,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,2BAA2B,GAAG,IAAI,CAAC,CAAA;IAC/E,YAAY,CAAC,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,QAAQ,CAAC,mCAAmC,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC,CAAA;IAC/F,MAAM,CAAC,KAAK,EAAE,sCAAsC,GAAG,OAAO,CAAC,2BAA2B,GAAG,IAAI,CAAC,CAAA;CACnG;AAED,KAAK,GAAG,CAAC,SAAS,SAAS,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,IAAI;IAC7D,QAAQ,EAAE,SAAS,CAAA;IACnB,SAAS,EAAE;QACT,EAAE,EAAE,kBAAkB,CAAA;KACvB,CAAA;CACF,CAAA;AAED,MAAM,WAAW,kCAAkC,CACjD,SAAS,SAAS,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAElD,OAAO,CAAC,EAAE,eAAe,GAAG,IAAI,CAAA;IAChC,cAAc,CAAC,EAAE,CAAC,QAAQ,EAAE,SAAS,KAAK,eAAe,GAAG,IAAI,GAAG,SAAS,CAAA;IAC5E,KAAK,CAAC,EAAE,gCAAgC,CAAA;IACxC,YAAY,CAAC,EAAE,CACb,QAAQ,EAAE,SAAS,EACnB,EAAE,EAAE,kBAAkB,KACnB,gCAAgC,GAAG,SAAS,CAAA;CAClD;AAuHD,wBAAgB,6CAA6C,CAC3D,EAAE,EAAE,kBAAkB,GACrB,gCAAgC,CA8ClC;AAED,wBAAsB,iCAAiC,CACrD,KAAK,EAAE,gCAAgC,EACvC,KAAK,EAAE,iCAAiC,GACvC,OAAO,CAAC,8BAA8B,CAAC,CAiCzC;AAED,wBAAsB,kCAAkC,CACtD,KAAK,EAAE,gCAAgC,EACvC,KAAK,EAAE,MAAM,EACb,GAAG,OAAa,GACf,OAAO,CAAC,gCAAgC,CAAC,CAgB3C;AAED,wBAAsB,iCAAiC,CACrD,KAAK,EAAE,gCAAgC,EACvC,KAAK,EAAE,sCAAsC;;;;;;;;;;;;;;;;;;;;;UAG9C;AAED,wBAAgB,kCAAkC,CAChD,SAAS,SAAS,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAClD,OAAO,GAAE,kCAAkC,CAAC,SAAS,CAAM;;;;;;;;;;;;;mBAsC5D;AAED,wBAAgB,sCAAsC,CACpD,SAAS,SAAS,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAClD,OAAO,GAAE,kCAAkC,CAAC,SAAS,CAAM,GAAG,UAAU,CAOzE"}

package/dist/public-document-delivery.js

@@ -0,0 +1,233 @@
+import { infraPublicDocumentDeliveryGrantsTable } from "@voyantjs/db/schema/infra";
+import { and, eq, isNull, sql } from "drizzle-orm";
+import { Hono } from "hono";
+import { sha256Base64Url } from "./auth/crypto.js";
+const DEFAULT_PUBLIC_DOCUMENT_TTL_SECONDS = 24 * 60 * 60;
+const MAX_PUBLIC_DOCUMENT_TTL_SECONDS = 30 * 24 * 60 * 60;
+const PUBLIC_DOCUMENT_TOKEN_BYTES = 32;
+const DEFAULT_CONTENT_TYPE = "application/octet-stream";
+const DEFAULT_PUBLIC_DOCUMENT_PATH = "/v1/public/documents";
+function base64UrlEncode(bytes) {
+    let binary = "";
+    for (const byte of bytes) {
+        binary += String.fromCharCode(byte);
+    }
+    return btoa(binary).replace(/\+/g, "-").replace(/\//g, "_").replace(/=+$/, "");
+}
+function createOpaqueToken() {
+    const bytes = new Uint8Array(PUBLIC_DOCUMENT_TOKEN_BYTES);
+    crypto.getRandomValues(bytes);
+    return base64UrlEncode(bytes);
+}
+function normalizePublicBaseUrl(publicBaseUrl) {
+    const trimmed = publicBaseUrl.trim().replace(/\/+$/, "");
+    if (!/^https?:\/\//i.test(trimmed)) {
+        throw new Error("publicBaseUrl must be an absolute HTTP(S) URL");
+    }
+    return trimmed;
+}
+function normalizePublicPath(path) {
+    const value = path?.trim() || DEFAULT_PUBLIC_DOCUMENT_PATH;
+    return `/${value.replace(/^\/+|\/+$/g, "")}`;
+}
+function resolveExpiresAt(input) {
+    const now = input.now ?? new Date();
+    if (input.expiresAt) {
+        if (input.expiresAt <= now) {
+            throw new Error("expiresAt must be in the future");
+        }
+        const maxExpiresAt = new Date(now.getTime() + MAX_PUBLIC_DOCUMENT_TTL_SECONDS * 1000);
+        if (input.expiresAt > maxExpiresAt) {
+            throw new Error("expiresAt exceeds the public document delivery maximum TTL");
+        }
+        return input.expiresAt;
+    }
+    const ttlSeconds = input.ttlSeconds ?? DEFAULT_PUBLIC_DOCUMENT_TTL_SECONDS;
+    if (!Number.isFinite(ttlSeconds) || ttlSeconds <= 0) {
+        throw new Error("ttlSeconds must be greater than zero");
+    }
+    return new Date(now.getTime() + Math.min(ttlSeconds, MAX_PUBLIC_DOCUMENT_TTL_SECONDS) * 1000);
+}
+function maybeString(value) {
+    const trimmed = value?.trim();
+    return trimmed && trimmed.length > 0 ? trimmed : null;
+}
+function safeAsciiFilename(filename) {
+    const normalized = maybeString(filename);
+    if (!normalized)
+        return "document";
+    const safe = normalized
+        .normalize("NFKD")
+        .replace(/[^\w .-]+/g, "-")
+        .replace(/[\r\n"\\]+/g, "-")
+        .replace(/\s+/g, " ")
+        .trim()
+        .slice(0, 160);
+    return safe || "document";
+}
+function filenameFromStorageKey(storageKey) {
+    return storageKey.split("/").filter(Boolean).at(-1) ?? "document";
+}
+function contentDisposition(filename) {
+    return `attachment; filename="${safeAsciiFilename(filename)}"`;
+}
+function safeContentType(contentType) {
+    const normalized = maybeString(contentType);
+    if (!normalized)
+        return DEFAULT_CONTENT_TYPE;
+    return /^[A-Za-z0-9!#$&^_.+-]+\/[A-Za-z0-9!#$&^_.+-]+(?:;\s*[A-Za-z0-9!#$&^_.+-]+=[A-Za-z0-9!#$&^_.+-]+)*$/.test(normalized)
+        ? normalized
+        : DEFAULT_CONTENT_TYPE;
+}
+function isPlausiblePublicDocumentToken(token) {
+    return /^[A-Za-z0-9_-]{32,256}$/.test(token);
+}
+function getClientIp(headers) {
+    return (headers.get("cf-connecting-ip") ??
+        headers.get("x-forwarded-for")?.split(",")[0]?.trim() ??
+        headers.get("x-real-ip") ??
+        null);
+}
+function getStore(options, bindings, db) {
+    return (options.resolveStore?.(bindings, db) ??
+        options.store ??
+        createDrizzlePublicDocumentDeliveryGrantStore(db));
+}
+function getStorage(options, bindings) {
+    return options.resolveStorage?.(bindings) ?? options.storage ?? null;
+}
+export function createDrizzlePublicDocumentDeliveryGrantStore(db) {
+    return {
+        async create(input) {
+            const [row] = await db
+                .insert(infraPublicDocumentDeliveryGrantsTable)
+                .values(input)
+                .returning();
+            if (!row)
+                throw new Error("Failed to create public document delivery grant");
+            return row;
+        },
+        async findByTokenHash(tokenHash) {
+            const [row] = await db
+                .select()
+                .from(infraPublicDocumentDeliveryGrantsTable)
+                .where(eq(infraPublicDocumentDeliveryGrantsTable.tokenHash, tokenHash))
+                .limit(1);
+            return row ?? null;
+        },
+        async recordAccess(id, context) {
+            await db
+                .update(infraPublicDocumentDeliveryGrantsTable)
+                .set({
+                accessCount: sql `${infraPublicDocumentDeliveryGrantsTable.accessCount} + 1`,
+                lastAccessedAt: context.accessedAt,
+                lastAccessedIp: context.ip,
+                lastAccessedUserAgent: context.userAgent,
+            })
+                .where(eq(infraPublicDocumentDeliveryGrantsTable.id, id));
+        },
+        async revoke(input) {
+            const [row] = await db
+                .update(infraPublicDocumentDeliveryGrantsTable)
+                .set({
+                revokedAt: input.revokedAt ?? new Date(),
+                revokedBy: input.revokedBy ?? null,
+            })
+                .where(and(eq(infraPublicDocumentDeliveryGrantsTable.id, input.id), isNull(infraPublicDocumentDeliveryGrantsTable.revokedAt)))
+                .returning();
+            return row ?? null;
+        },
+    };
+}
+export async function createPublicDocumentDeliveryGrant(store, input) {
+    const storageKey = maybeString(input.storageKey);
+    if (!storageKey) {
+        throw new Error("storageKey is required");
+    }
+    const token = createOpaqueToken();
+    const tokenHash = await sha256Base64Url(token);
+    const expiresAt = resolveExpiresAt(input);
+    const filename = maybeString(input.filename) ?? filenameFromStorageKey(storageKey);
+    const contentType = maybeString(input.contentType) ?? DEFAULT_CONTENT_TYPE;
+    const grant = await store.create({
+        tokenHash,
+        storageKey,
+        storageProvider: maybeString(input.storageProvider),
+        filename,
+        contentType,
+        sourceModule: maybeString(input.source?.module),
+        sourceEntity: maybeString(input.source?.entity),
+        sourceId: maybeString(input.source?.id),
+        createdBy: maybeString(input.createdBy),
+        createdByType: maybeString(input.createdByType),
+        metadata: input.metadata ?? null,
+        expiresAt,
+    });
+    return {
+        grantId: grant.id,
+        url: `${normalizePublicBaseUrl(input.publicBaseUrl)}${normalizePublicPath(input.publicPath)}/${token}`,
+        expiresAt: expiresAt.toISOString(),
+        filename,
+    };
+}
+export async function resolvePublicDocumentDeliveryGrant(store, token, now = new Date()) {
+    if (!isPlausiblePublicDocumentToken(token)) {
+        return { status: "not_found" };
+    }
+    const grant = await store.findByTokenHash(await sha256Base64Url(token));
+    if (!grant) {
+        return { status: "not_found" };
+    }
+    if (grant.revokedAt) {
+        return { status: "revoked", grant };
+    }
+    if (grant.expiresAt <= now) {
+        return { status: "expired", grant };
+    }
+    return { status: "ready", grant };
+}
+export async function revokePublicDocumentDeliveryGrant(store, input) {
+    return store.revoke(input);
+}
+export function createPublicDocumentDeliveryRoutes(options = {}) {
+    return new Hono().get("/:token", async (c) => {
+        const token = c.req.param("token");
+        const store = getStore(options, c.env, c.get("db"));
+        const resolution = await resolvePublicDocumentDeliveryGrant(store, token);
+        if (resolution.status === "not_found") {
+            return c.body(null, 404);
+        }
+        if (resolution.status === "expired" || resolution.status === "revoked") {
+            return c.body(null, 410);
+        }
+        const storage = getStorage(options, c.env);
+        if (!storage) {
+            return c.json({ error: "Document storage is not configured" }, 503);
+        }
+        const body = await storage.get(resolution.grant.storageKey);
+        if (!body) {
+            return c.body(null, 404);
+        }
+        await store.recordAccess(resolution.grant.id, {
+            accessedAt: new Date(),
+            ip: getClientIp(c.req.raw.headers),
+            userAgent: c.req.header("user-agent") ?? null,
+        });
+        return new Response(body, {
+            headers: {
+                "Cache-Control": "private, max-age=0, must-revalidate",
+                "Content-Type": safeContentType(resolution.grant.contentType),
+                "Content-Length": String(body.byteLength),
+                "Content-Disposition": contentDisposition(resolution.grant.filename),
+            },
+        });
+    });
+}
+export function createPublicDocumentDeliveryHonoModule(options = {}) {
+    return {
+        module: {
+            name: "documents",
+        },
+        publicRoutes: createPublicDocumentDeliveryRoutes(options),
+    };
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@voyantjs/hono",
-  "version": "0.83.0",
+  "version": "0.84.1",
   "license": "Apache-2.0",
   "type": "module",
   "exports": {
@@ -29,6 +29,11 @@
       "import": "./dist/document-download.js",
       "default": "./dist/document-download.js"
     },
+    "./public-document-delivery": {
+      "types": "./dist/public-document-delivery.d.ts",
+      "import": "./dist/public-document-delivery.js",
+      "default": "./dist/public-document-delivery.js"
+    },
     "./types": {
       "types": "./dist/types.d.ts",
       "import": "./dist/types.js",
@@ -99,18 +104,19 @@
     "drizzle-orm": "^0.45.2",
     "hono": "^4.12.10",
     "zod": "^4.3.6",
-    "@voyantjs/core": "0.83.0",
-    "@voyantjs/db": "0.83.0",
-    "@voyantjs/types": "0.83.0",
-    "@voyantjs/utils": "0.83.0",
-    "@voyantjs/workflows": "0.83.0"
+    "@voyantjs/core": "0.84.1",
+    "@voyantjs/db": "0.84.1",
+    "@voyantjs/storage": "0.84.1",
+    "@voyantjs/types": "0.84.1",
+    "@voyantjs/utils": "0.84.1",
+    "@voyantjs/workflows": "0.84.1"
   },
   "devDependencies": {
     "@cloudflare/workers-types": "^4.20260426.1",
     "typescript": "^6.0.2",
     "vitest": "^4.1.2",
     "@voyantjs/voyant-typescript-config": "0.1.0",
-    "@voyantjs/workflows-orchestrator": "0.83.0"
+    "@voyantjs/workflows-orchestrator": "0.84.1"
   },
   "files": [
     "dist"