@xivdyetools/test-utils 1.0.0

package/dist/auth/headers.js

@@ -0,0 +1,101 @@
+/**
+ * Request header builders for testing API authentication
+ *
+ * Provides helper functions to build authentication headers
+ * for testing API endpoints.
+ *
+ * @example
+ * ```typescript
+ * // JWT auth headers
+ * const headers = authHeaders(jwt);
+ *
+ * // Bot auth headers with signature
+ * const botHeaders = await authHeadersWithSignature(
+ *   'bot-token',
+ *   'user-id',
+ *   'username'
+ * );
+ *
+ * // Use in requests
+ * const response = await fetch('/api/protected', { headers });
+ * ```
+ */
+import { createBotSignature, TEST_SIGNING_SECRET } from './signature.js';
+/**
+ * Creates basic auth headers with a bearer token
+ *
+ * @param token - The bearer token (JWT or API key)
+ * @param userId - Optional Discord user ID
+ * @param userName - Optional Discord username
+ * @returns Headers object
+ */
+export function authHeaders(token, userId, userName) {
+    const headers = {
+        Authorization: `Bearer ${token}`,
+    };
+    if (userId) {
+        headers['X-User-Discord-ID'] = userId;
+    }
+    if (userName) {
+        headers['X-User-Discord-Name'] = userName;
+    }
+    return headers;
+}
+/**
+ * Creates auth headers with HMAC signature for bot authentication
+ *
+ * @param token - The bot API token
+ * @param userId - Discord user ID (optional)
+ * @param userName - Discord username (optional)
+ * @param signingSecret - The signing secret (defaults to TEST_SIGNING_SECRET)
+ * @returns Headers object with signature
+ */
+export async function authHeadersWithSignature(token, userId, userName, signingSecret = TEST_SIGNING_SECRET) {
+    const timestamp = Math.floor(Date.now() / 1000).toString();
+    const userIdStr = userId ?? '';
+    const userNameStr = userName ?? '';
+    const signature = await createBotSignature(timestamp, userIdStr, userNameStr, signingSecret);
+    const headers = {
+        Authorization: `Bearer ${token}`,
+        'X-Request-Signature': signature,
+        'X-Request-Timestamp': timestamp,
+    };
+    if (userId) {
+        headers['X-User-Discord-ID'] = userId;
+    }
+    if (userName) {
+        headers['X-User-Discord-Name'] = userName;
+    }
+    return headers;
+}
+/**
+ * Creates JSON content headers
+ *
+ * @returns Headers object with Content-Type: application/json
+ */
+export function jsonHeaders() {
+    return {
+        'Content-Type': 'application/json',
+    };
+}
+/**
+ * Merges multiple header objects
+ *
+ * @param headerObjects - Header objects to merge
+ * @returns Merged headers object
+ */
+export function mergeHeaders(...headerObjects) {
+    return Object.assign({}, ...headerObjects);
+}
+/**
+ * Creates authenticated JSON request headers
+ *
+ * @param token - The bearer token
+ * @param userId - Optional Discord user ID
+ * @param userName - Optional Discord username
+ * @returns Headers object with auth and content-type
+ */
+export function authenticatedJsonHeaders(token, userId, userName) {
+    return mergeHeaders(jsonHeaders(), authHeaders(token, userId, userName));
+}
+//# sourceMappingURL=headers.js.map

package/dist/auth/headers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"headers.js","sourceRoot":"","sources":["../../src/auth/headers.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;GAqBG;AAEH,OAAO,EAAE,kBAAkB,EAAE,mBAAmB,EAAE,MAAM,gBAAgB,CAAC;AAEzE;;;;;;;GAOG;AACH,MAAM,UAAU,WAAW,CACzB,KAAa,EACb,MAAe,EACf,QAAiB;IAEjB,MAAM,OAAO,GAA2B;QACtC,aAAa,EAAE,UAAU,KAAK,EAAE;KACjC,CAAC;IAEF,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,CAAC,mBAAmB,CAAC,GAAG,MAAM,CAAC;IACxC,CAAC;IAED,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,CAAC,qBAAqB,CAAC,GAAG,QAAQ,CAAC;IAC5C,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,wBAAwB,CAC5C,KAAa,EACb,MAAe,EACf,QAAiB,EACjB,gBAAwB,mBAAmB;IAE3C,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;IAC3D,MAAM,SAAS,GAAG,MAAM,IAAI,EAAE,CAAC;IAC/B,MAAM,WAAW,GAAG,QAAQ,IAAI,EAAE,CAAC;IAEnC,MAAM,SAAS,GAAG,MAAM,kBAAkB,CACxC,SAAS,EACT,SAAS,EACT,WAAW,EACX,aAAa,CACd,CAAC;IAEF,MAAM,OAAO,GAA2B;QACtC,aAAa,EAAE,UAAU,KAAK,EAAE;QAChC,qBAAqB,EAAE,SAAS;QAChC,qBAAqB,EAAE,SAAS;KACjC,CAAC;IAEF,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,CAAC,mBAAmB,CAAC,GAAG,MAAM,CAAC;IACxC,CAAC;IAED,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,CAAC,qBAAqB,CAAC,GAAG,QAAQ,CAAC;IAC5C,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,WAAW;IACzB,OAAO;QACL,cAAc,EAAE,kBAAkB;KACnC,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,YAAY,CAC1B,GAAG,aAAuC;IAE1C,OAAO,MAAM,CAAC,MAAM,CAAC,EAAE,EAAE,GAAG,aAAa,CAAC,CAAC;AAC7C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,wBAAwB,CACtC,KAAa,EACb,MAAe,EACf,QAAiB;IAEjB,OAAO,YAAY,CAAC,WAAW,EAAE,EAAE,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC;AAC3E,CAAC"}

package/dist/auth/index.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Authentication helpers for testing
+ *
+ * Provides JWT creation, HMAC signatures, auth contexts, and header builders.
+ */
+export * from './jwt.js';
+export * from './signature.js';
+export * from './context.js';
+export * from './headers.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,UAAU,CAAC;AACzB,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,cAAc,CAAC"}

package/dist/auth/index.js

@@ -0,0 +1,10 @@
+/**
+ * Authentication helpers for testing
+ *
+ * Provides JWT creation, HMAC signatures, auth contexts, and header builders.
+ */
+export * from './jwt.js';
+export * from './signature.js';
+export * from './context.js';
+export * from './headers.js';
+//# sourceMappingURL=index.js.map

package/dist/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,cAAc,UAAU,CAAC;AACzB,cAAc,gBAAgB,CAAC;AAC/B,cAAc,cAAc,CAAC;AAC7B,cAAc,cAAc,CAAC"}

package/dist/auth/jwt.d.ts

@@ -0,0 +1,76 @@
+/**
+ * JWT creation helpers for testing
+ *
+ * Provides functions to create valid and expired JWTs for testing
+ * authentication flows.
+ *
+ * @example
+ * ```typescript
+ * // Create a valid JWT
+ * const jwt = await createTestJWT('your-secret', {
+ *   sub: 'user-123',
+ *   username: 'TestUser',
+ *   global_name: 'Test User',
+ * });
+ *
+ * // Create an expired JWT for testing expiration handling
+ * const expiredJwt = await createExpiredJWT('your-secret');
+ *
+ * // Use in request headers
+ * const response = await fetch('/api/protected', {
+ *   headers: { Authorization: `Bearer ${jwt}` },
+ * });
+ * ```
+ */
+/**
+ * JWT payload for test tokens
+ */
+export interface TestJWTPayload {
+    /** Subject (user ID) */
+    sub: string;
+    /** Username */
+    username: string;
+    /** Display name (optional) */
+    global_name?: string | null;
+    /** Avatar hash (optional) */
+    avatar?: string | null;
+}
+/**
+ * Full JWT payload including standard claims
+ */
+export interface FullJWTPayload extends TestJWTPayload {
+    /** Issued at (Unix timestamp) */
+    iat: number;
+    /** Expiration (Unix timestamp) */
+    exp: number;
+    /** Issuer */
+    iss: string;
+}
+/**
+ * Creates a valid JWT for testing
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - The JWT payload (sub, username, etc.)
+ * @param expiresInSeconds - How long until the token expires (default: 3600 = 1 hour)
+ * @param issuer - The token issuer (default: 'xivdyetools-oauth-worker')
+ * @returns A signed JWT string
+ */
+export declare function createTestJWT(secret: string, payload: TestJWTPayload, expiresInSeconds?: number, issuer?: string): Promise<string>;
+/**
+ * Creates an expired JWT for testing expiration handling
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - Optional custom payload (defaults provided)
+ * @returns A signed but expired JWT string
+ */
+export declare function createExpiredJWT(secret: string, payload?: TestJWTPayload): Promise<string>;
+/**
+ * Creates a JWT with a specific expiration time
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - The JWT payload
+ * @param expTimestamp - The expiration Unix timestamp
+ * @returns A signed JWT string
+ */
+export declare function createJWTWithExpiration(secret: string, payload: TestJWTPayload, expTimestamp: number): Promise<string>;
+//# sourceMappingURL=jwt.d.ts.map

package/dist/auth/jwt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.d.ts","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAIH;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,wBAAwB;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,eAAe;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,8BAA8B;IAC9B,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,6BAA6B;IAC7B,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,cAAc;IACpD,iCAAiC;IACjC,GAAG,EAAE,MAAM,CAAC;IACZ,kCAAkC;IAClC,GAAG,EAAE,MAAM,CAAC;IACZ,aAAa;IACb,GAAG,EAAE,MAAM,CAAC;CACb;AAED;;;;;;;;GAQG;AACH,wBAAsB,aAAa,CACjC,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,cAAc,EACvB,gBAAgB,SAAO,EACvB,MAAM,SAA6B,GAClC,OAAO,CAAC,MAAM,CAAC,CAiCjB;AAED;;;;;;GAMG;AACH,wBAAsB,gBAAgB,CACpC,MAAM,EAAE,MAAM,EACd,OAAO,GAAE,cAAiD,GACzD,OAAO,CAAC,MAAM,CAAC,CAGjB;AAED;;;;;;;GAOG;AACH,wBAAsB,uBAAuB,CAC3C,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,cAAc,EACvB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,MAAM,CAAC,CAIjB"}

package/dist/auth/jwt.js

@@ -0,0 +1,77 @@
+/**
+ * JWT creation helpers for testing
+ *
+ * Provides functions to create valid and expired JWTs for testing
+ * authentication flows.
+ *
+ * @example
+ * ```typescript
+ * // Create a valid JWT
+ * const jwt = await createTestJWT('your-secret', {
+ *   sub: 'user-123',
+ *   username: 'TestUser',
+ *   global_name: 'Test User',
+ * });
+ *
+ * // Create an expired JWT for testing expiration handling
+ * const expiredJwt = await createExpiredJWT('your-secret');
+ *
+ * // Use in request headers
+ * const response = await fetch('/api/protected', {
+ *   headers: { Authorization: `Bearer ${jwt}` },
+ * });
+ * ```
+ */
+import { base64UrlEncode } from '../utils/crypto.js';
+/**
+ * Creates a valid JWT for testing
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - The JWT payload (sub, username, etc.)
+ * @param expiresInSeconds - How long until the token expires (default: 3600 = 1 hour)
+ * @param issuer - The token issuer (default: 'xivdyetools-oauth-worker')
+ * @returns A signed JWT string
+ */
+export async function createTestJWT(secret, payload, expiresInSeconds = 3600, issuer = 'xivdyetools-oauth-worker') {
+    const header = { alg: 'HS256', typ: 'JWT' };
+    const now = Math.floor(Date.now() / 1000);
+    const fullPayload = {
+        ...payload,
+        iat: now,
+        exp: now + expiresInSeconds,
+        iss: issuer,
+    };
+    const encoder = new TextEncoder();
+    const encodedHeader = base64UrlEncode(JSON.stringify(header));
+    const encodedPayload = base64UrlEncode(JSON.stringify(fullPayload));
+    const signatureInput = `${encodedHeader}.${encodedPayload}`;
+    const key = await crypto.subtle.importKey('raw', encoder.encode(secret), { name: 'HMAC', hash: 'SHA-256' }, false, ['sign']);
+    const signature = await crypto.subtle.sign('HMAC', key, encoder.encode(signatureInput));
+    const encodedSignature = base64UrlEncode(String.fromCharCode(...new Uint8Array(signature)));
+    return `${encodedHeader}.${encodedPayload}.${encodedSignature}`;
+}
+/**
+ * Creates an expired JWT for testing expiration handling
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - Optional custom payload (defaults provided)
+ * @returns A signed but expired JWT string
+ */
+export async function createExpiredJWT(secret, payload = { sub: '123', username: 'test' }) {
+    // Create token that expired 1 hour ago
+    return createTestJWT(secret, payload, -3600);
+}
+/**
+ * Creates a JWT with a specific expiration time
+ *
+ * @param secret - The JWT signing secret
+ * @param payload - The JWT payload
+ * @param expTimestamp - The expiration Unix timestamp
+ * @returns A signed JWT string
+ */
+export async function createJWTWithExpiration(secret, payload, expTimestamp) {
+    const now = Math.floor(Date.now() / 1000);
+    const expiresInSeconds = expTimestamp - now;
+    return createTestJWT(secret, payload, expiresInSeconds);
+}
+//# sourceMappingURL=jwt.js.map

package/dist/auth/jwt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/auth/jwt.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AA4BrD;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,MAAc,EACd,OAAuB,EACvB,gBAAgB,GAAG,IAAI,EACvB,MAAM,GAAG,0BAA0B;IAEnC,MAAM,MAAM,GAAG,EAAE,GAAG,EAAE,OAAO,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;IAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAE1C,MAAM,WAAW,GAAmB;QAClC,GAAG,OAAO;QACV,GAAG,EAAE,GAAG;QACR,GAAG,EAAE,GAAG,GAAG,gBAAgB;QAC3B,GAAG,EAAE,MAAM;KACZ,CAAC;IAEF,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAElC,MAAM,aAAa,GAAG,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;IAC9D,MAAM,cAAc,GAAG,eAAe,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC,CAAC;IAEpE,MAAM,cAAc,GAAG,GAAG,aAAa,IAAI,cAAc,EAAE,CAAC;IAE5D,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CACvC,KAAK,EACL,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,EACtB,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,EACjC,KAAK,EACL,CAAC,MAAM,CAAC,CACT,CAAC;IAEF,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,OAAO,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC;IAExF,MAAM,gBAAgB,GAAG,eAAe,CACtC,MAAM,CAAC,YAAY,CAAC,GAAG,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAClD,CAAC;IAEF,OAAO,GAAG,aAAa,IAAI,cAAc,IAAI,gBAAgB,EAAE,CAAC;AAClE,CAAC;AAED;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,MAAc,EACd,UAA0B,EAAE,GAAG,EAAE,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE;IAE1D,uCAAuC;IACvC,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,IAAI,CAAC,CAAC;AAC/C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAc,EACd,OAAuB,EACvB,YAAoB;IAEpB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC;IAC1C,MAAM,gBAAgB,GAAG,YAAY,GAAG,GAAG,CAAC;IAC5C,OAAO,aAAa,CAAC,MAAM,EAAE,OAAO,EAAE,gBAAgB,CAAC,CAAC;AAC1D,CAAC"}

package/dist/auth/signature.d.ts

@@ -0,0 +1,64 @@
+/**
+ * HMAC signature helpers for testing bot authentication
+ *
+ * Provides functions to create HMAC-SHA256 signatures for testing
+ * bot-to-API authentication flows.
+ *
+ * @example
+ * ```typescript
+ * // Create a bot signature
+ * const timestamp = Math.floor(Date.now() / 1000).toString();
+ * const signature = await createBotSignature(
+ *   timestamp,
+ *   'user-discord-id',
+ *   'username',
+ *   'signing-secret'
+ * );
+ *
+ * // Use in request headers
+ * const headers = {
+ *   'X-Request-Signature': signature,
+ *   'X-Request-Timestamp': timestamp,
+ *   'X-User-Discord-ID': 'user-discord-id',
+ *   'X-User-Discord-Name': 'username',
+ * };
+ * ```
+ */
+/** Default signing secret for tests */
+export declare const TEST_SIGNING_SECRET = "test-signing-secret";
+/**
+ * Creates an HMAC-SHA256 signature for bot authentication
+ *
+ * The signature is created from: `${timestamp}:${userDiscordId}:${userName}`
+ *
+ * @param timestamp - Unix timestamp string
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret (defaults to TEST_SIGNING_SECRET)
+ * @returns Hex-encoded HMAC-SHA256 signature
+ */
+export declare function createBotSignature(timestamp: string, userDiscordId: string, userName: string, secret?: string): Promise<string>;
+/**
+ * Creates a signature with the current timestamp
+ *
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret (defaults to TEST_SIGNING_SECRET)
+ * @returns Object with signature and timestamp
+ */
+export declare function createTimestampedSignature(userDiscordId: string, userName: string, secret?: string): Promise<{
+    signature: string;
+    timestamp: string;
+}>;
+/**
+ * Verifies an HMAC-SHA256 signature
+ *
+ * @param signature - The signature to verify (hex string)
+ * @param timestamp - Unix timestamp string
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret
+ * @returns True if signature is valid
+ */
+export declare function verifyBotSignature(signature: string, timestamp: string, userDiscordId: string, userName: string, secret?: string): Promise<boolean>;
+//# sourceMappingURL=signature.d.ts.map

package/dist/auth/signature.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"signature.d.ts","sourceRoot":"","sources":["../../src/auth/signature.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAIH,uCAAuC;AACvC,eAAO,MAAM,mBAAmB,wBAAwB,CAAC;AAEzD;;;;;;;;;;GAUG;AACH,wBAAsB,kBAAkB,CACtC,SAAS,EAAE,MAAM,EACjB,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,MAAM,EAChB,MAAM,GAAE,MAA4B,GACnC,OAAO,CAAC,MAAM,CAAC,CAejB;AAED;;;;;;;GAOG;AACH,wBAAsB,0BAA0B,CAC9C,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,MAAM,EAChB,MAAM,GAAE,MAA4B,GACnC,OAAO,CAAC;IAAE,SAAS,EAAE,MAAM,CAAC;IAAC,SAAS,EAAE,MAAM,CAAA;CAAE,CAAC,CAInD;AAED;;;;;;;;;GASG;AACH,wBAAsB,kBAAkB,CACtC,SAAS,EAAE,MAAM,EACjB,SAAS,EAAE,MAAM,EACjB,aAAa,EAAE,MAAM,EACrB,QAAQ,EAAE,MAAM,EAChB,MAAM,GAAE,MAA4B,GACnC,OAAO,CAAC,OAAO,CAAC,CAGlB"}

package/dist/auth/signature.js

@@ -0,0 +1,75 @@
+/**
+ * HMAC signature helpers for testing bot authentication
+ *
+ * Provides functions to create HMAC-SHA256 signatures for testing
+ * bot-to-API authentication flows.
+ *
+ * @example
+ * ```typescript
+ * // Create a bot signature
+ * const timestamp = Math.floor(Date.now() / 1000).toString();
+ * const signature = await createBotSignature(
+ *   timestamp,
+ *   'user-discord-id',
+ *   'username',
+ *   'signing-secret'
+ * );
+ *
+ * // Use in request headers
+ * const headers = {
+ *   'X-Request-Signature': signature,
+ *   'X-Request-Timestamp': timestamp,
+ *   'X-User-Discord-ID': 'user-discord-id',
+ *   'X-User-Discord-Name': 'username',
+ * };
+ * ```
+ */
+import { bytesToHex } from '../utils/crypto.js';
+/** Default signing secret for tests */
+export const TEST_SIGNING_SECRET = 'test-signing-secret';
+/**
+ * Creates an HMAC-SHA256 signature for bot authentication
+ *
+ * The signature is created from: `${timestamp}:${userDiscordId}:${userName}`
+ *
+ * @param timestamp - Unix timestamp string
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret (defaults to TEST_SIGNING_SECRET)
+ * @returns Hex-encoded HMAC-SHA256 signature
+ */
+export async function createBotSignature(timestamp, userDiscordId, userName, secret = TEST_SIGNING_SECRET) {
+    const message = `${timestamp}:${userDiscordId}:${userName}`;
+    const encoder = new TextEncoder();
+    const key = await crypto.subtle.importKey('raw', encoder.encode(secret), { name: 'HMAC', hash: 'SHA-256' }, false, ['sign']);
+    const signature = await crypto.subtle.sign('HMAC', key, encoder.encode(message));
+    return bytesToHex(new Uint8Array(signature));
+}
+/**
+ * Creates a signature with the current timestamp
+ *
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret (defaults to TEST_SIGNING_SECRET)
+ * @returns Object with signature and timestamp
+ */
+export async function createTimestampedSignature(userDiscordId, userName, secret = TEST_SIGNING_SECRET) {
+    const timestamp = Math.floor(Date.now() / 1000).toString();
+    const signature = await createBotSignature(timestamp, userDiscordId, userName, secret);
+    return { signature, timestamp };
+}
+/**
+ * Verifies an HMAC-SHA256 signature
+ *
+ * @param signature - The signature to verify (hex string)
+ * @param timestamp - Unix timestamp string
+ * @param userDiscordId - Discord user ID
+ * @param userName - Discord username
+ * @param secret - Signing secret
+ * @returns True if signature is valid
+ */
+export async function verifyBotSignature(signature, timestamp, userDiscordId, userName, secret = TEST_SIGNING_SECRET) {
+    const expected = await createBotSignature(timestamp, userDiscordId, userName, secret);
+    return signature === expected;
+}
+//# sourceMappingURL=signature.js.map

package/dist/auth/signature.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"signature.js","sourceRoot":"","sources":["../../src/auth/signature.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,oBAAoB,CAAC;AAEhD,uCAAuC;AACvC,MAAM,CAAC,MAAM,mBAAmB,GAAG,qBAAqB,CAAC;AAEzD;;;;;;;;;;GAUG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,SAAiB,EACjB,aAAqB,EACrB,QAAgB,EAChB,SAAiB,mBAAmB;IAEpC,MAAM,OAAO,GAAG,GAAG,SAAS,IAAI,aAAa,IAAI,QAAQ,EAAE,CAAC;IAC5D,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAElC,MAAM,GAAG,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,SAAS,CACvC,KAAK,EACL,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,EACtB,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,EACjC,KAAK,EACL,CAAC,MAAM,CAAC,CACT,CAAC;IAEF,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC;IAEjF,OAAO,UAAU,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC;AAC/C,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAC9C,aAAqB,EACrB,QAAgB,EAChB,SAAiB,mBAAmB;IAEpC,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,QAAQ,EAAE,CAAC;IAC3D,MAAM,SAAS,GAAG,MAAM,kBAAkB,CAAC,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IACvF,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,CAAC;AAClC,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,kBAAkB,CACtC,SAAiB,EACjB,SAAiB,EACjB,aAAqB,EACrB,QAAgB,EAChB,SAAiB,mBAAmB;IAEpC,MAAM,QAAQ,GAAG,MAAM,kBAAkB,CAAC,SAAS,EAAE,aAAa,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;IACtF,OAAO,SAAS,KAAK,QAAQ,CAAC;AAChC,CAAC"}

package/dist/cloudflare/analytics.d.ts

@@ -0,0 +1,55 @@
+/**
+ * Mock Analytics Engine for testing Cloudflare Workers
+ *
+ * Provides a mock implementation of AnalyticsEngineDataset for testing
+ * analytics and metrics tracking.
+ *
+ * @example
+ * ```typescript
+ * const analytics = createMockAnalyticsEngine();
+ *
+ * // Use in tests
+ * const env = { ANALYTICS: analytics as unknown as AnalyticsEngineDataset };
+ *
+ * // After running code that writes analytics
+ * expect(analytics._dataPoints).toHaveLength(1);
+ * expect(analytics._dataPoints[0].indexes).toContain('command_usage');
+ *
+ * // Reset between tests
+ * analytics._reset();
+ * ```
+ */
+/**
+ * Analytics data point
+ */
+export interface AnalyticsDataPoint {
+    /** String indexes (dimensions) */
+    indexes?: string[];
+    /** Numeric values (metrics) */
+    doubles?: number[];
+    /** Binary data */
+    blobs?: ArrayBuffer[];
+    /** Timestamp of when the data point was written */
+    timestamp: number;
+}
+/**
+ * Extended mock Analytics Engine with test helpers
+ */
+export interface MockAnalyticsEngine {
+    writeDataPoint: (dataPoint?: {
+        indexes?: string[];
+        doubles?: number[];
+        blobs?: ArrayBuffer[];
+    }) => void;
+    /** Array of all data points written (for assertions) */
+    _dataPoints: AnalyticsDataPoint[];
+    /** Reset all data points */
+    _reset: () => void;
+}
+/**
+ * Creates a mock Analytics Engine for testing
+ *
+ * @returns A mock Analytics Engine that can be cast to AnalyticsEngineDataset
+ */
+export declare function createMockAnalyticsEngine(): MockAnalyticsEngine;
+//# sourceMappingURL=analytics.d.ts.map

package/dist/cloudflare/analytics.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"analytics.d.ts","sourceRoot":"","sources":["../../src/cloudflare/analytics.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAEH;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,kCAAkC;IAClC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,kBAAkB;IAClB,KAAK,CAAC,EAAE,WAAW,EAAE,CAAC;IACtB,mDAAmD;IACnD,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,cAAc,EAAE,CAAC,SAAS,CAAC,EAAE;QAAE,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;QAAC,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;QAAC,KAAK,CAAC,EAAE,WAAW,EAAE,CAAA;KAAE,KAAK,IAAI,CAAC;IAExG,wDAAwD;IACxD,WAAW,EAAE,kBAAkB,EAAE,CAAC;IAElC,4BAA4B;IAC5B,MAAM,EAAE,MAAM,IAAI,CAAC;CACpB;AAED;;;;GAIG;AACH,wBAAgB,yBAAyB,IAAI,mBAAmB,CAmB/D"}

package/dist/cloudflare/analytics.js

@@ -0,0 +1,44 @@
+/**
+ * Mock Analytics Engine for testing Cloudflare Workers
+ *
+ * Provides a mock implementation of AnalyticsEngineDataset for testing
+ * analytics and metrics tracking.
+ *
+ * @example
+ * ```typescript
+ * const analytics = createMockAnalyticsEngine();
+ *
+ * // Use in tests
+ * const env = { ANALYTICS: analytics as unknown as AnalyticsEngineDataset };
+ *
+ * // After running code that writes analytics
+ * expect(analytics._dataPoints).toHaveLength(1);
+ * expect(analytics._dataPoints[0].indexes).toContain('command_usage');
+ *
+ * // Reset between tests
+ * analytics._reset();
+ * ```
+ */
+/**
+ * Creates a mock Analytics Engine for testing
+ *
+ * @returns A mock Analytics Engine that can be cast to AnalyticsEngineDataset
+ */
+export function createMockAnalyticsEngine() {
+    const dataPoints = [];
+    return {
+        writeDataPoint: (dataPoint) => {
+            dataPoints.push({
+                indexes: dataPoint?.indexes,
+                doubles: dataPoint?.doubles,
+                blobs: dataPoint?.blobs,
+                timestamp: Date.now(),
+            });
+        },
+        _dataPoints: dataPoints,
+        _reset: () => {
+            dataPoints.length = 0;
+        },
+    };
+}
+//# sourceMappingURL=analytics.js.map

package/dist/cloudflare/analytics.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"analytics.js","sourceRoot":"","sources":["../../src/cloudflare/analytics.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AA6BH;;;;GAIG;AACH,MAAM,UAAU,yBAAyB;IACvC,MAAM,UAAU,GAAyB,EAAE,CAAC;IAE5C,OAAO;QACL,cAAc,EAAE,CAAC,SAA6E,EAAE,EAAE;YAChG,UAAU,CAAC,IAAI,CAAC;gBACd,OAAO,EAAE,SAAS,EAAE,OAAO;gBAC3B,OAAO,EAAE,SAAS,EAAE,OAAO;gBAC3B,KAAK,EAAE,SAAS,EAAE,KAAK;gBACvB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;aACtB,CAAC,CAAC;QACL,CAAC;QAED,WAAW,EAAE,UAAU;QAEvB,MAAM,EAAE,GAAG,EAAE;YACX,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC;QACxB,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/cloudflare/d1.d.ts

@@ -0,0 +1,101 @@
+/**
+ * Mock D1 Database for testing Cloudflare Workers
+ *
+ * Provides a mock implementation of D1Database that tracks queries
+ * and allows custom mock responses for testing.
+ *
+ * @example
+ * ```typescript
+ * const db = createMockD1Database();
+ *
+ * // Setup mock responses
+ * db._setupMock((query, bindings) => {
+ *   if (query.includes('SELECT') && query.includes('presets')) {
+ *     return [{ id: 'preset-1', name: 'Test Preset' }];
+ *   }
+ *   return null;
+ * });
+ *
+ * // Use in tests
+ * const env = { DB: db as unknown as D1Database };
+ *
+ * // Assert queries were made
+ * expect(db._queries).toContain('SELECT * FROM presets');
+ * expect(db._bindings[0]).toEqual(['param1']);
+ *
+ * // Reset between tests
+ * db._reset();
+ * ```
+ */
+/**
+ * Function type for mocking query responses
+ */
+export type QueryMockFn = (query: string, bindings: unknown[]) => unknown;
+/**
+ * Mock D1 prepared statement interface
+ */
+export interface MockD1PreparedStatement {
+    bind: (...values: unknown[]) => MockD1PreparedStatement;
+    first: <T = unknown>() => Promise<T | null>;
+    all: <T = unknown>() => Promise<{
+        results: T[];
+        success: boolean;
+        meta: D1Meta;
+    }>;
+    run: () => Promise<{
+        success: boolean;
+        meta: {
+            changes: number;
+            duration: number;
+            last_row_id: number;
+        };
+    }>;
+    raw: <T = unknown[]>() => Promise<T[]>;
+}
+/**
+ * D1 result metadata
+ */
+interface D1Meta {
+    duration: number;
+    changes: number;
+    last_row_id: number;
+    rows_read: number;
+    rows_written: number;
+}
+/**
+ * Extended mock D1 database with test helpers
+ */
+export interface MockD1Database {
+    prepare: (query: string) => MockD1PreparedStatement;
+    batch: <T = unknown>(statements: MockD1PreparedStatement[]) => Promise<Array<{
+        results: T[];
+        success: boolean;
+        meta: D1Meta;
+    }>>;
+    exec: (query: string) => Promise<{
+        count: number;
+        duration: number;
+    }>;
+    dump: () => Promise<ArrayBuffer>;
+    /** Array of all queries executed (for assertions) */
+    _queries: string[];
+    /** Array of all binding arrays passed to queries */
+    _bindings: unknown[][];
+    /** Setup a mock function to return custom responses */
+    _setupMock: (fn: QueryMockFn) => void;
+    /** Reset queries, bindings, and mock function */
+    _reset: () => void;
+    /** Current mock function (if any) */
+    _mockFn?: QueryMockFn;
+}
+/**
+ * Creates a mock D1 database for testing
+ *
+ * The mock tracks all queries and bindings for assertions, and supports
+ * custom response functions for simulating database behavior.
+ *
+ * @returns A mock D1 database that can be cast to D1Database
+ */
+export declare function createMockD1Database(): MockD1Database;
+export {};
+//# sourceMappingURL=d1.d.ts.map

package/dist/cloudflare/d1.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"d1.d.ts","sourceRoot":"","sources":["../../src/cloudflare/d1.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH;;GAEG;AACH,MAAM,MAAM,WAAW,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,KAAK,OAAO,CAAC;AAE1E;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,IAAI,EAAE,CAAC,GAAG,MAAM,EAAE,OAAO,EAAE,KAAK,uBAAuB,CAAC;IACxD,KAAK,EAAE,CAAC,CAAC,GAAG,OAAO,OAAO,OAAO,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC5C,GAAG,EAAE,CAAC,CAAC,GAAG,OAAO,OAAO,OAAO,CAAC;QAAE,OAAO,EAAE,CAAC,EAAE,CAAC;QAAC,OAAO,EAAE,OAAO,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAClF,GAAG,EAAE,MAAM,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,IAAI,EAAE;YAAE,OAAO,EAAE,MAAM,CAAC;YAAC,QAAQ,EAAE,MAAM,CAAC;YAAC,WAAW,EAAE,MAAM,CAAA;SAAE,CAAA;KAAE,CAAC,CAAC;IAC3G,GAAG,EAAE,CAAC,CAAC,GAAG,OAAO,EAAE,OAAO,OAAO,CAAC,CAAC,EAAE,CAAC,CAAC;CACxC;AAED;;GAEG;AACH,UAAU,MAAM;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,YAAY,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,uBAAuB,CAAC;IACpD,KAAK,EAAE,CAAC,CAAC,GAAG,OAAO,EAAE,UAAU,EAAE,uBAAuB,EAAE,KAAK,OAAO,CAAC,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC,EAAE,CAAC;QAAC,OAAO,EAAE,OAAO,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC,CAAC;IAChI,IAAI,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACtE,IAAI,EAAE,MAAM,OAAO,CAAC,WAAW,CAAC,CAAC;IAEjC,qDAAqD;IACrD,QAAQ,EAAE,MAAM,EAAE,CAAC;IAEnB,oDAAoD;IACpD,SAAS,EAAE,OAAO,EAAE,EAAE,CAAC;IAEvB,uDAAuD;IACvD,UAAU,EAAE,CAAC,EAAE,EAAE,WAAW,KAAK,IAAI,CAAC;IAEtC,iDAAiD;IACjD,MAAM,EAAE,MAAM,IAAI,CAAC;IAEnB,qCAAqC;IACrC,OAAO,CAAC,EAAE,WAAW,CAAC;CACvB;AAED;;;;;;;GAOG;AACH,wBAAgB,oBAAoB,IAAI,cAAc,CA6HrD"}