npm - @webstir-io/webstir-backend - Versions diffs - 0.1.15 → 0.1.16 - Mend

@webstir-io/webstir-backend 0.1.15 → 0.1.16

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (123) hide show

package/README.md +106 -79
package/dist/add.d.ts +59 -0
package/dist/add.js +626 -0
package/dist/build/artifacts.d.ts +115 -1
package/dist/build/artifacts.js +4 -4
package/dist/build/entries.js +1 -1
package/dist/build/pipeline.d.ts +33 -1
package/dist/build/pipeline.js +307 -65
package/dist/cache/diff.js +9 -8
package/dist/cache/reporters.js +1 -1
package/dist/deploy-cli.d.ts +2 -0
package/dist/deploy-cli.js +86 -0
package/dist/diagnostics/summary.js +2 -2
package/dist/index.d.ts +6 -0
package/dist/index.js +4 -0
package/dist/manifest/pipeline.js +103 -32
package/dist/provider.js +35 -17
package/dist/runtime/bun.d.ts +51 -0
package/dist/runtime/bun.js +499 -0
package/dist/runtime/core.d.ts +141 -0
package/dist/runtime/core.js +316 -0
package/dist/runtime/deploy-backend.d.ts +20 -0
package/dist/runtime/deploy-backend.js +175 -0
package/dist/runtime/deploy-shared.d.ts +43 -0
package/dist/runtime/deploy-shared.js +75 -0
package/dist/runtime/deploy-static.d.ts +2 -0
package/dist/runtime/deploy-static.js +161 -0
package/dist/runtime/deploy.d.ts +3 -0
package/dist/runtime/deploy.js +91 -0
package/dist/runtime/forms.d.ts +73 -0
package/dist/runtime/forms.js +236 -0
package/dist/runtime/request-hooks.d.ts +47 -0
package/dist/runtime/request-hooks.js +102 -0
package/dist/runtime/session-metadata.d.ts +13 -0
package/dist/runtime/session-metadata.js +98 -0
package/dist/runtime/session-runtime.d.ts +28 -0
package/dist/runtime/session-runtime.js +180 -0
package/dist/runtime/session.d.ts +83 -0
package/dist/runtime/session.js +396 -0
package/dist/runtime/views.d.ts +74 -0
package/dist/runtime/views.js +221 -0
package/dist/scaffold/assets.js +25 -21
package/dist/testing/context.js +1 -1
package/dist/testing/index.d.ts +1 -1
package/dist/testing/index.js +100 -56
package/dist/utils/bun.d.ts +2 -0
package/dist/utils/bun.js +13 -0
package/dist/watch.d.ts +13 -1
package/dist/watch.js +345 -97
package/dist/workspace.d.ts +8 -0
package/dist/workspace.js +44 -3
package/package.json +49 -14
package/scripts/publish.sh +2 -92
package/scripts/smoke.mjs +282 -107
package/scripts/update-contract.sh +12 -10
package/src/add.ts +964 -0
package/src/build/artifacts.ts +49 -46
package/src/build/entries.ts +12 -12
package/src/build/pipeline.ts +779 -403
package/src/cache/diff.ts +111 -105
package/src/cache/reporters.ts +26 -26
package/src/deploy-cli.ts +111 -0
package/src/diagnostics/summary.ts +28 -22
package/src/index.ts +11 -0
package/src/manifest/pipeline.ts +328 -215
package/src/provider.ts +115 -98
package/src/runtime/bun.ts +793 -0
package/src/runtime/core.ts +598 -0
package/src/runtime/deploy-backend.ts +239 -0
package/src/runtime/deploy-shared.ts +136 -0
package/src/runtime/deploy-static.ts +191 -0
package/src/runtime/deploy.ts +143 -0
package/src/runtime/forms.ts +364 -0
package/src/runtime/request-hooks.ts +165 -0
package/src/runtime/session-metadata.ts +135 -0
package/src/runtime/session-runtime.ts +267 -0
package/src/runtime/session.ts +642 -0
package/src/runtime/views.ts +385 -0
package/src/scaffold/assets.ts +77 -73
package/src/testing/context.js +8 -9
package/src/testing/context.ts +9 -9
package/src/testing/index.d.ts +14 -3
package/src/testing/index.js +254 -175
package/src/testing/index.ts +298 -195
package/src/testing/types.d.ts +18 -19
package/src/testing/types.ts +18 -18
package/src/utils/bun.ts +26 -0
package/src/watch.ts +503 -99
package/src/workspace.ts +59 -3
package/templates/backend/.env.example +15 -0
package/templates/backend/auth/adapter.ts +335 -36
package/templates/backend/db/connection.ts +190 -65
package/templates/backend/db/migrate.ts +149 -43
package/templates/backend/db/types.d.ts +1 -1
package/templates/backend/env.ts +132 -20
package/templates/backend/functions/hello/index.ts +1 -2
package/templates/backend/index.ts +15 -508
package/templates/backend/jobs/nightly/index.ts +1 -1
package/templates/backend/jobs/runtime.ts +24 -11
package/templates/backend/jobs/scheduler.ts +208 -46
package/templates/backend/module.ts +227 -13
package/templates/backend/observability/logger.ts +2 -12
package/templates/backend/observability/metrics.ts +8 -5
package/templates/backend/session/sqlite.ts +152 -0
package/templates/backend/session/store.ts +45 -0
package/templates/backend/tsconfig.json +1 -1
package/tests/add.test.js +327 -0
package/tests/authAdapter.test.js +315 -0
package/tests/bundlerParity.test.js +217 -0
package/tests/cacheReporter.test.js +10 -10
package/tests/dbConnection.test.js +209 -0
package/tests/deploy.test.js +357 -0
package/tests/envLoader.test.js +271 -17
package/tests/integration.test.js +2432 -3
package/tests/jobsScheduler.test.js +253 -0
package/tests/manifest.test.js +287 -12
package/tests/migrationRunner.test.js +249 -0
package/tests/sessionScaffoldStore.test.js +752 -0
package/tests/sessionStore.test.js +490 -0
package/tests/testing.test.js +252 -0
package/tests/watch.test.js +192 -32
package/tsconfig.json +3 -10
package/templates/backend/server/fastify.ts +0 -288

package/templates/backend/env.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import crypto from 'node:crypto';
 import { existsSync, readFileSync } from 'node:fs';
 import path from 'node:path';
 import { fileURLToPath } from 'node:url';
@@ -6,6 +7,8 @@ export type LogLevel = 'trace' | 'debug' | 'info' | 'warn' | 'error' | 'fatal';
 export interface AuthSecrets {
   jwtSecret?: string;
+  jwtPublicKey?: string;
+  jwksUrl?: string;
   jwtIssuer?: string;
   jwtAudience?: string;
   serviceTokens: string[];
@@ -26,6 +29,17 @@ export interface DatabaseConfig {
   migrationsTable: string;
 }
+export interface HttpConfig {
+  bodyLimitBytes: number;
+}
+export interface SessionConfig {
+  secret: string;
+  cookieName: string;
+  secure: boolean;
+  maxAgeSeconds: number;
+}
 export interface AppEnv {
   NODE_ENV: string;
   PORT: number;
@@ -34,10 +48,15 @@ export interface AppEnv {
   logging: LoggingConfig;
   metrics: MetricsConfig;
   database: DatabaseConfig;
+  http: HttpConfig;
+  sessions: SessionConfig;
 }
 const ENV_FILES = ['.env.local', '.env'];
+const WORKSPACE_ROOT_PATTERN = /^(.*)[/\\](?:src|build)[/\\]backend(?:[/\\].*)?$/;
 const WORKSPACE_ROOT = resolveWorkspaceRoot();
+const DEFAULT_REQUEST_BODY_MAX_BYTES = 1024 * 1024;
+const GENERATED_SESSION_SECRET = crypto.randomBytes(32).toString('hex');
 let envLoaded = false;
 export function loadEnv(): AppEnv {
@@ -46,26 +65,40 @@ export function loadEnv(): AppEnv {
     envLoaded = true;
   }
-  const NODE_ENV = process.env.NODE_ENV ?? 'development';
+  const NODE_ENV = readNodeEnv();
   const PORT = parsePort(process.env.PORT ?? '4000');
   const API_BASE_URL = requireEnv('API_BASE_URL', 'http://localhost:4000');
   const auth: AuthSecrets = {
     jwtSecret: process.env.AUTH_JWT_SECRET,
+    jwtPublicKey: resolveJwtPublicKey(),
+    jwksUrl: normalizeOptionalText(process.env.AUTH_JWKS_URL),
     jwtIssuer: process.env.AUTH_JWT_ISSUER,
     jwtAudience: process.env.AUTH_JWT_AUDIENCE,
-    serviceTokens: parseList(process.env.AUTH_SERVICE_TOKENS)
+    serviceTokens: parseList(process.env.AUTH_SERVICE_TOKENS),
   };
   const logging: LoggingConfig = {
     level: parseLogLevel(process.env.LOG_LEVEL),
-    serviceName: process.env.LOG_SERVICE_NAME ?? 'backend-template'
+    serviceName: process.env.LOG_SERVICE_NAME ?? 'backend-template',
   };
   const metrics: MetricsConfig = {
     enabled: parseBoolean(process.env.METRICS_ENABLED, true),
-    windowSize: parsePositiveInt(process.env.METRICS_WINDOW, 200)
+    windowSize: parsePositiveInt(process.env.METRICS_WINDOW, 200),
   };
   const database: DatabaseConfig = {
     url: process.env.DATABASE_URL ?? 'file:./data/dev.sqlite',
-    migrationsTable: process.env.DATABASE_MIGRATIONS_TABLE ?? '_webstir_migrations'
+    migrationsTable: process.env.DATABASE_MIGRATIONS_TABLE ?? '_webstir_migrations',
+  };
+  const http: HttpConfig = {
+    bodyLimitBytes: parsePositiveInt(
+      process.env.REQUEST_BODY_MAX_BYTES,
+      DEFAULT_REQUEST_BODY_MAX_BYTES,
+    ),
+  };
+  const sessions: SessionConfig = {
+    secret: resolveSessionSecret(NODE_ENV),
+    cookieName: process.env.SESSION_COOKIE_NAME ?? 'webstir_session',
+    secure: parseBoolean(process.env.SESSION_COOKIE_SECURE, NODE_ENV === 'production'),
+    maxAgeSeconds: parsePositiveInt(process.env.SESSION_MAX_AGE, 60 * 60 * 24),
   };
   return {
@@ -75,10 +108,53 @@ export function loadEnv(): AppEnv {
     auth,
     logging,
     metrics,
-    database
+    database,
+    http,
+    sessions,
   };
 }
+function resolveSessionSecret(nodeEnv: string): string {
+  const explicitSecret = normalizeOptionalText(process.env.SESSION_SECRET);
+  if (explicitSecret) {
+    return explicitSecret;
+  }
+  if (nodeEnv.trim().toLowerCase() === 'production') {
+    throw new Error('SESSION_SECRET is required when NODE_ENV=production.');
+  }
+  return process.env.AUTH_JWT_SECRET ?? GENERATED_SESSION_SECRET;
+}
+function readNodeEnv(): string {
+  const value = Reflect.get(process.env, 'NODE_ENV');
+  return typeof value === 'string' && value.length > 0 ? value : 'development';
+}
+function resolveJwtPublicKey(): string | undefined {
+  const inline = normalizeOptionalText(process.env.AUTH_JWT_PUBLIC_KEY);
+  if (inline) {
+    return inline;
+  }
+  const filePath = normalizeOptionalText(process.env.AUTH_JWT_PUBLIC_KEY_FILE);
+  if (!filePath) {
+    return undefined;
+  }
+  const resolvedPath = path.isAbsolute(filePath)
+    ? path.resolve(filePath)
+    : path.resolve(WORKSPACE_ROOT, filePath);
+  try {
+    return readFileSync(resolvedPath, 'utf8');
+  } catch (error) {
+    throw new Error(
+      `Failed to read AUTH_JWT_PUBLIC_KEY_FILE at ${resolvedPath}: ${(error as Error).message}`,
+    );
+  }
+}
 function loadEnvFiles(): void {
   for (const file of ENV_FILES) {
     const full = path.resolve(WORKSPACE_ROOT, file);
@@ -100,7 +176,10 @@ function applyEnvFile(filePath: string): void {
     const key = line.slice(0, idx).trim();
     if (!key || process.env[key] !== undefined) continue;
     let value = line.slice(idx + 1).trim();
-    if ((value.startsWith('"') && value.endsWith('"')) || (value.startsWith('\'') && value.endsWith('\''))) {
+    if (
+      (value.startsWith('"') && value.endsWith('"')) ||
+      (value.startsWith("'") && value.endsWith("'"))
+    ) {
       value = value.slice(1, -1);
     }
     process.env[key] = value;
@@ -131,9 +210,21 @@ function parseList(value: string | undefined): string[] {
     .filter((item) => item.length > 0);
 }
+function normalizeOptionalText(value: string | undefined): string | undefined {
+  const normalized = value?.trim();
+  return normalized || undefined;
+}
 function parseLogLevel(value: string | undefined): LogLevel {
   const normalized = (value ?? 'info').toLowerCase();
-  if (normalized === 'trace' || normalized === 'debug' || normalized === 'info' || normalized === 'warn' || normalized === 'error' || normalized === 'fatal') {
+  if (
+    normalized === 'trace' ||
+    normalized === 'debug' ||
+    normalized === 'info' ||
+    normalized === 'warn' ||
+    normalized === 'error' ||
+    normalized === 'fatal'
+  ) {
     return normalized;
   }
   return 'info';
@@ -155,20 +246,41 @@ function parsePositiveInt(value: string | undefined, fallback: number): number {
 }
 export function resolveWorkspaceRoot(): string {
-  if (process.env.WORKSPACE_ROOT) {
-    return process.env.WORKSPACE_ROOT;
+  const envWorkspaceRoot = resolveEnvWorkspaceRoot(process.env);
+  if (envWorkspaceRoot) {
+    return path.resolve(envWorkspaceRoot);
+  }
+  const inferredRoot = inferWorkspaceRootFromImportMetaUrl(import.meta.url);
+  if (inferredRoot) {
+    return inferredRoot;
+  }
+  return path.resolve(process.cwd());
+}
+function resolveEnvWorkspaceRoot(env: NodeJS.ProcessEnv): string | undefined {
+  const workspaceRoot = env.WORKSPACE_ROOT?.trim();
+  if (workspaceRoot) {
+    return workspaceRoot;
   }
+  const webstirWorkspaceRoot = env.WEBSTIR_WORKSPACE_ROOT?.trim();
+  return webstirWorkspaceRoot || undefined;
+}
+function inferWorkspaceRootFromImportMetaUrl(importMetaUrl: string): string | undefined {
   try {
-    const filePath = fileURLToPath(import.meta.url);
-    const dir = path.dirname(filePath);
-    if (dir.endsWith(`${path.sep}src${path.sep}backend`)) {
-      return path.resolve(dir, '..', '..');
-    }
-    if (dir.endsWith(`${path.sep}build${path.sep}backend`)) {
-      return path.resolve(dir, '..', '..');
-    }
+    return inferWorkspaceRootFromFilePath(fileURLToPath(importMetaUrl));
   } catch {
-    // ignore
+    return undefined;
   }
-  return process.cwd();
+}
+function inferWorkspaceRootFromFilePath(filePath: string): string | undefined {
+  const normalizedFilePath = path.resolve(path.dirname(filePath));
+  const match = normalizedFilePath.match(WORKSPACE_ROOT_PATTERN);
+  if (!match) {
+    return undefined;
+  }
+  return match[1] || path.parse(normalizedFilePath).root;
 }

package/templates/backend/functions/hello/index.ts CHANGED Viewed

@@ -7,7 +7,7 @@ export async function run(): Promise<void> {
   console.info('[function:hello] ran at', new Date().toISOString());
 }
-// Execute when launched directly: `node build/backend/functions/hello/index.js`
+// Execute when launched directly: `bun build/backend/functions/hello/index.js`
 const isMain = (() => {
   try {
     const argv1 = process.argv?.[1];
@@ -26,4 +26,3 @@ if (isMain) {
     process.exitCode = 1;
   });
 }