@yimingliao/cms 0.0.124 → 0.0.126

package/dist/{chunk-VPRGHVG3.js → chunk-PXWRSEQ7.js}

@@ -222,4 +222,12 @@ var CACHE_KEYS = {
 var NEW_TAB_TARGET = "_blank";
 var NEW_TAB_REL = "noopener noreferrer";
 
-export { CACHE_KEYS, KEYS, NEW_TAB_REL, NEW_TAB_TARGET, PATHS };
+// src/constants/redirect-paths.ts
+var PROTECTED_PATHS = [PATHS.main.dashboard.path];
+var LOGGED_IN_SKIP_PATHS = [
+  PATHS.auth.signIn.path,
+  PATHS.auth.forgotPassword.path,
+  PATHS.auth.resetPassword.path
+];
+
+export { CACHE_KEYS, KEYS, LOGGED_IN_SKIP_PATHS, NEW_TAB_REL, NEW_TAB_TARGET, PATHS, PROTECTED_PATHS };

package/dist/client/index.d.ts

@@ -7,7 +7,7 @@ import * as react_jsx_runtime from 'react/jsx-runtime';
 import { ThemeProvider as ThemeProvider$1 } from 'next-themes';
 import * as React$1 from 'react';
 import { HTMLAttributes, ReactNode, JSX, Dispatch, SetStateAction, ComponentProps, InputHTMLAttributes } from 'react';
-import { c as createVerifyAction, a as createSignOutAction, b as createSignInAction, d as createVerifyEmailAction, e as createEmailUnverifiedAction, f as createForgotPasswordAction, g as createResetPasswordAction, h as createChangePasswordAction } from '../create-reset-password-action-C-B3uh5m.js';
+import { c as createVerifyAction, a as createSignOutAction, b as createSignInAction, d as createVerifyEmailAction, e as createEmailUnverifiedAction, f as createForgotPasswordAction, g as createResetPasswordAction, h as createChangePasswordAction } from '../create-reset-password-action-yWaJxg8W.js';
 import { LucideIcon } from 'lucide-react';
 import { B as ButtonProps$1, L as LabelProps } from '../sidebar-CBC8_O5A.js';
 export { S as Sidebar, a as SidebarContent, b as SidebarInset, c as SidebarProvider, u as useSidebar } from '../sidebar-CBC8_O5A.js';

package/dist/client/index.js

@@ -1,4 +1,4 @@
-import { PATHS } from '../chunk-VPRGHVG3.js';
+import { PATHS } from '../chunk-PXWRSEQ7.js';
 import { cn, useSidebar, Sidebar, Skeleton, SidebarInset, SIDEBAR_WIDTH, SidebarGroup, SidebarMenu, Collapsible, SidebarMenuItem, SidebarMenuButton, Separator, CollapsibleTrigger, SidebarMenuAction, CollapsibleContent, SidebarMenuSub, SidebarMenuSubItem, SidebarMenuSubButton, Button, Spinner, useParentPathname, DropdownMenu, DropdownMenuTrigger, DropdownMenuContent, DropdownMenuItem, PAGE_HEADER_HEIGHT, InputGroup, InputGroupAddon, Textarea, InputGroupInput, InputGroupButton, Select, SelectTrigger, SelectValue, SelectContent, SelectGroup, SelectLabel, SelectItem, Label, FORM_MIDDLE_GAP_WIDTH, FORM_SIDE_FIELDS_WIDTH, Card, useDeviceInfo, CardHeader, CardTitle, CardContent, useCountdown, CardDescription, NAVBAR_HEIGHT, isConfirm, Avatar, AvatarImage, AvatarFallback, DropdownMenuLabel, DropdownMenuSeparator, DropdownMenuGroup, Pagination, PaginationContent, PaginationItem, PaginationPrevious, PaginationLink, PaginationEllipsis, PaginationNext } from '../chunk-YLFBYJTE.js';
 export { NAVBAR_HEIGHT, PAGE_HEADER_HEIGHT, SIDEBAR_WIDTH, Sidebar, SidebarContent, SidebarInset, SidebarProvider, cn, getControlMeta, isConfirm, useDeviceInfo, usePickItems, useSidebar } from '../chunk-YLFBYJTE.js';
 import { ensureArray, findTranslation, joinUrl } from '../chunk-YYDELEHA.js';

package/dist/{create-reset-password-action-C-B3uh5m.d.ts → create-reset-password-action-yWaJxg8W.d.ts}

@@ -927,4 +927,4 @@ declare function createResetPasswordAction(ctx: ActionContext): ({ formData, }:
     formData: ResetPasswordFormData;
 }) => Promise<Result<void>>;
 
-export { type ActionContext as A, createFolderCommandRepository as B, createFolderQueryRepository as C, createForgotPasswordEmail as D, createIpRateLimiter as E, createJwtService as F, createPostCommandRepository as G, createPostQueryRepository as H, createRenderEmailTemplate as I, createSendEmail as J, createSeoMetadataCommandRepository as K, createUnique as L, createVerifyAccessToken as M, createVerifyRefreshToken as N, normalizeCacheKey as O, type RawCacheKey as R, createSignOutAction as a, createSignInAction as b, createVerifyAction as c, createVerifyEmailAction as d, createEmailUnverifiedAction as e, createForgotPasswordAction as f, createResetPasswordAction as g, createChangePasswordAction as h, createZod as i, createSchemas as j, createTocItemSchema as k, createAdminCommandRepository as l, createAdminQueryRepository as m, createAdminRefreshTokenCommandRepository as n, createAdminRefreshTokenQueryRepository as o, createArgon2Service as p, createAuthMiddleware as q, createAuthUseCases as r, createCacheResult as s, createCookieService as t, createCryptoService as u, createEmailVerificationEmail as v, createExecuteAction as w, createExist as x, createFileCommandRepository as y, createFileQueryRepository as z };
+export { type ActionContext as A, createFileQueryRepository as B, createFolderCommandRepository as C, createFolderQueryRepository as D, createForgotPasswordEmail as E, createIpRateLimiter as F, createJwtService as G, createPostCommandRepository as H, createPostQueryRepository as I, createRenderEmailTemplate as J, createSendEmail as K, createSeoMetadataCommandRepository as L, createUnique as M, createVerifyAccessToken as N, createVerifyRefreshToken as O, normalizeCacheKey as P, type RateLimiterOptions as R, createSignOutAction as a, createSignInAction as b, createVerifyAction as c, createVerifyEmailAction as d, createEmailUnverifiedAction as e, createForgotPasswordAction as f, createResetPasswordAction as g, createChangePasswordAction as h, createZod as i, createSchemas as j, createTocItemSchema as k, createCryptoService as l, createAuthMiddleware as m, type RawCacheKey as n, createAdminCommandRepository as o, createAdminQueryRepository as p, createAdminRefreshTokenCommandRepository as q, createAdminRefreshTokenQueryRepository as r, createArgon2Service as s, createAuthUseCases as t, createCacheResult as u, createCookieService as v, createEmailVerificationEmail as w, createExecuteAction as x, createExist as y, createFileCommandRepository as z };

package/dist/index.d.ts

@@ -326,6 +326,9 @@ declare const CACHE_KEYS: {
 declare const NEW_TAB_TARGET = "_blank";
 declare const NEW_TAB_REL = "noopener noreferrer";
 
+declare const PROTECTED_PATHS: "/cms/dashboard"[];
+declare const LOGGED_IN_SKIP_PATHS: ("/cms/sign-in" | "/cms/forgot-password" | "/cms/reset-password")[];
+
 declare const mimeToExtension: (mimeType?: string) => string;
 
 declare const classifyFileType: (mimeType?: string, extension?: string) => "IMAGE" | "AUDIO" | "VIDEO" | "DOCUMENT" | "ARCHIVE" | "OTHER";
@@ -422,4 +425,4 @@ declare const SIZE: {
 };
 type SizeUnit = keyof typeof SIZE;
 
-export { ADMIN_ROLE_ARRAY, ADMIN_ROLE_I18N_MAP, BaseTranslation, CACHE_KEYS, ErrorDetail, ErrorResult, type ErrorResultParams, FileCard, FileFull, Folder, FolderFull, KEYS, NEW_TAB_REL, NEW_TAB_TARGET, OG_TYPE_ARRAY, type OgType, PATHS, PostFull, ROOT_FOLDER, ROOT_FOLDER_ID, ROOT_FOLDER_NAME, SIMPLE_UPLOAD_FOLDER_KEY, SIMPLE_UPLOAD_FOLDER_NAME, SIZE, type SizeUnit, SuccessResult, type SuccessResultParams, TWITTER_CARD_ARRAY, type TwitterCard, classifyFileType, createBuildArticleMetadata, createBuildTranslations, createBuildWebsiteMetadata, datetimeToDb, datetimeToUi, ensureArray, fileManagerDoubleClick, findTranslation, formatDateTime, formatFileSize, getMediaInfo, isFileLocked, isFolderLocked, joinUrl, jsonArrayToDb, jsonArrayToUi, mimeToExtension, normalizeFolderKey, result, serializeJsonLd };
+export { ADMIN_ROLE_ARRAY, ADMIN_ROLE_I18N_MAP, BaseTranslation, CACHE_KEYS, ErrorDetail, ErrorResult, type ErrorResultParams, FileCard, FileFull, Folder, FolderFull, KEYS, LOGGED_IN_SKIP_PATHS, NEW_TAB_REL, NEW_TAB_TARGET, OG_TYPE_ARRAY, type OgType, PATHS, PROTECTED_PATHS, PostFull, ROOT_FOLDER, ROOT_FOLDER_ID, ROOT_FOLDER_NAME, SIMPLE_UPLOAD_FOLDER_KEY, SIMPLE_UPLOAD_FOLDER_NAME, SIZE, type SizeUnit, SuccessResult, type SuccessResultParams, TWITTER_CARD_ARRAY, type TwitterCard, classifyFileType, createBuildArticleMetadata, createBuildTranslations, createBuildWebsiteMetadata, datetimeToDb, datetimeToUi, ensureArray, fileManagerDoubleClick, findTranslation, formatDateTime, formatFileSize, getMediaInfo, isFileLocked, isFolderLocked, joinUrl, jsonArrayToDb, jsonArrayToUi, mimeToExtension, normalizeFolderKey, result, serializeJsonLd };

package/dist/index.js

@@ -1,3 +1,3 @@
-export { CACHE_KEYS, KEYS, NEW_TAB_REL, NEW_TAB_TARGET, PATHS } from './chunk-VPRGHVG3.js';
+export { CACHE_KEYS, KEYS, LOGGED_IN_SKIP_PATHS, NEW_TAB_REL, NEW_TAB_TARGET, PATHS, PROTECTED_PATHS } from './chunk-PXWRSEQ7.js';
 export { ADMIN_ROLES, ADMIN_ROLE_ARRAY, ADMIN_ROLE_I18N_MAP, POST_TYPES, ROOT_FOLDER, ROOT_FOLDER_ID, ROOT_FOLDER_NAME, SIMPLE_UPLOAD_FOLDER_KEY, SIMPLE_UPLOAD_FOLDER_NAME, fileManagerDoubleClick, isFileLocked, isFolderLocked, normalizeFolderKey } from './chunk-5LKI7KHR.js';
 export { FILE_TYPES, OG_TYPE_ARRAY, SIZE, TWITTER_CARD_ARRAY, classifyFileType, createBuildArticleMetadata, createBuildTranslations, createBuildWebsiteMetadata, datetimeToDb, datetimeToUi, ensureArray, findTranslation, formatDateTime, formatFileSize, getMediaInfo, joinUrl, jsonArrayToDb, jsonArrayToUi, mimeToExtension, result, serializeJsonLd } from './chunk-YYDELEHA.js';

package/dist/server/index.d.ts

@@ -1,5 +1,5 @@
-import { i as createZod, j as createSchemas, A as ActionContext, k as createTocItemSchema } from '../create-reset-password-action-C-B3uh5m.js';
-export { R as RawCacheKey, l as createAdminCommandRepository, m as createAdminQueryRepository, n as createAdminRefreshTokenCommandRepository, o as createAdminRefreshTokenQueryRepository, p as createArgon2Service, q as createAuthMiddleware, r as createAuthUseCases, s as createCacheResult, h as createChangePasswordAction, t as createCookieService, u as createCryptoService, e as createEmailUnverifiedAction, v as createEmailVerificationEmail, w as createExecuteAction, x as createExist, y as createFileCommandRepository, z as createFileQueryRepository, B as createFolderCommandRepository, C as createFolderQueryRepository, f as createForgotPasswordAction, D as createForgotPasswordEmail, E as createIpRateLimiter, F as createJwtService, G as createPostCommandRepository, H as createPostQueryRepository, I as createRenderEmailTemplate, g as createResetPasswordAction, J as createSendEmail, K as createSeoMetadataCommandRepository, b as createSignInAction, a as createSignOutAction, L as createUnique, M as createVerifyAccessToken, c as createVerifyAction, d as createVerifyEmailAction, N as createVerifyRefreshToken, O as normalizeCacheKey } from '../create-reset-password-action-C-B3uh5m.js';
+import { i as createZod, j as createSchemas, A as ActionContext, k as createTocItemSchema, l as createCryptoService, m as createAuthMiddleware, R as RateLimiterOptions } from '../create-reset-password-action-yWaJxg8W.js';
+export { n as RawCacheKey, o as createAdminCommandRepository, p as createAdminQueryRepository, q as createAdminRefreshTokenCommandRepository, r as createAdminRefreshTokenQueryRepository, s as createArgon2Service, t as createAuthUseCases, u as createCacheResult, h as createChangePasswordAction, v as createCookieService, e as createEmailUnverifiedAction, w as createEmailVerificationEmail, x as createExecuteAction, y as createExist, z as createFileCommandRepository, B as createFileQueryRepository, C as createFolderCommandRepository, D as createFolderQueryRepository, f as createForgotPasswordAction, E as createForgotPasswordEmail, F as createIpRateLimiter, G as createJwtService, H as createPostCommandRepository, I as createPostQueryRepository, J as createRenderEmailTemplate, g as createResetPasswordAction, K as createSendEmail, L as createSeoMetadataCommandRepository, b as createSignInAction, a as createSignOutAction, M as createUnique, N as createVerifyAccessToken, c as createVerifyAction, d as createVerifyEmailAction, O as createVerifyRefreshToken, P as normalizeCacheKey } from '../create-reset-password-action-yWaJxg8W.js';
 import Keyv from 'keyv';
 import * as zod from 'zod';
 import zod__default from 'zod';
@@ -8,10 +8,10 @@ import * as nodemailer_lib_smtp_transport from 'nodemailer/lib/smtp-transport';
 import nodemailer from 'nodemailer';
 import { BaseTranslator, LocaleMessages } from 'intor';
 import { Logger } from 'logry';
-import { NextResponse } from 'next/server';
-import { R as Result, e as Admin, g as AdminFull, h as AdminRefreshToken, a as Folder, b as FileFull, p as File$1, r as FileType, F as FolderFull, T as TocItem, f as AdminCard, u as PostListCard, c as FileCard, t as Post, w as PostType, v as PostTranslation, P as PostFull } from '../types-BGsFazJr.js';
+import { NextResponse, NextRequest } from 'next/server';
+import { R as Result, e as Admin, g as AdminFull, h as AdminRefreshToken, a as Folder, b as FileFull, p as File$1, r as FileType, F as FolderFull, T as TocItem, f as AdminCard, u as PostListCard, c as FileCard, t as Post, w as PostType, v as PostTranslation, P as PostFull, y as SingleItem } from '../types-BGsFazJr.js';
 import * as zod_v4_core from 'zod/v4/core';
-import '../types-J25u1G6t.js';
+import { S as StorageService } from '../types-J25u1G6t.js';
 import 'jsonwebtoken';
 import 'node:crypto';
 import 'next/headers';
@@ -1532,6 +1532,54 @@ declare function createSeoMetadataUpsertAction(ctx: ActionContext): ({ formData,
     formData: SeoMetadataUpsertFormData;
 }) => Promise<Result<void>>;
 
+interface ApiContext {
+    services: {
+        cryptoService: ReturnType<typeof createCryptoService>;
+        storageService: StorageService;
+    };
+    middlewares: {
+        authMiddleware: ReturnType<typeof createAuthMiddleware>;
+    };
+    api: {
+        executeApi: ReturnType<typeof createExecuteApi>;
+        ipRateLimiter: (options: RateLimiterOptions) => Promise<void>;
+    };
+    schemas: {
+        schemas: ReturnType<typeof createSchemas>;
+        fileSchema: ReturnType<typeof createFileSchema>;
+        multiFilesSchema: ReturnType<typeof createMultiFileSchema>;
+    };
+}
+
+interface FileUploadRequestDto extends Pick<FileCreateFormData, "folder" | "folderKey"> {
+    blobFile?: BlobFile | null;
+}
+interface FileUploadResponseDto {
+    key: string;
+    checksum: string;
+}
+declare function createFileUploadApi(ctx: ApiContext): (request: NextRequest) => Promise<NextResponse<unknown>>;
+
+interface MultiFilesUploadRequestDto {
+    blobFiles?: BlobFile[];
+    folder?: SingleItem;
+}
+interface MultiFilesUploadResponseDto {
+    uploadResults: {
+        checksum: string;
+        key: string;
+        fileMeta: {
+            name: string;
+            size: number;
+            type: string;
+        };
+        width: number | null;
+        height: number | null;
+        duration: number | null;
+    }[];
+}
+declare function createMultiFilesUploadApi(ctx: ApiContext): (request: NextRequest) => Promise<NextResponse<unknown>>;
+
 declare class ServerError extends Error {
     readonly i18nKey?: string;
     readonly statusCode?: number;
@@ -1550,4 +1598,4 @@ declare class ServerError extends Error {
     static internalServerError(): ServerError;
 }
 
-export { ADMIN_ORDER_BY, ActionContext, type AdminCreateFormData, type AdminUpdateFormData, type FileCreateFormData, type FileCreateManyFormData, type FileUpdateFormData, type FolderCreateFormData, type FolderUpdateFormData, ORDER_BY, POST_ORDER_BY, type PostCreateFormData, type PostUpdateFormData, type SeoMetadataUpsertFormData, ServerError, createAdminCreateAction, createAdminDeleteAction, createAdminFindFullAction, createAdminFindListCardsAction, createAdminRefreshTokenDeleteAction, createAdminRefreshTokenFindManyAction, createAdminUpdateAction, createCache, createExecuteApi, createFileCreateAction, createFileCreateManyAction, createFileFindFullAction, createFileFindListCardsAction, createFilePurgeManyAction, createFileRestoreManyAction, createFileSchema, createFileSoftDeleteAction, createFileSoftDeleteManyAction, createFileUpdateAction, createFolderCreateAction, createFolderDeleteAction, createFolderFindFullAction, createFolderFindListCardsAction, createFolderUpdateAction, createMultiFileSchema, createPostCreateAction, createPostDeleteAction, createPostFindAction, createPostFindFullAction, createPostFindListCardsAction, createPostFindManyAction, createPostUpdateAction, createRunAction, createSchemas, createSeoMetadataUpsertAction, createTocItemSchema, createTransporter, createZod };
+export { ADMIN_ORDER_BY, ActionContext, type AdminCreateFormData, type AdminUpdateFormData, type ApiContext, type FileCreateFormData, type FileCreateManyFormData, type FileUpdateFormData, type FileUploadRequestDto, type FileUploadResponseDto, type FolderCreateFormData, type FolderUpdateFormData, type MultiFilesUploadRequestDto, type MultiFilesUploadResponseDto, ORDER_BY, POST_ORDER_BY, type PostCreateFormData, type PostUpdateFormData, type SeoMetadataUpsertFormData, ServerError, createAdminCreateAction, createAdminDeleteAction, createAdminFindFullAction, createAdminFindListCardsAction, createAdminRefreshTokenDeleteAction, createAdminRefreshTokenFindManyAction, createAdminUpdateAction, createAuthMiddleware, createCache, createCryptoService, createExecuteApi, createFileCreateAction, createFileCreateManyAction, createFileFindFullAction, createFileFindListCardsAction, createFilePurgeManyAction, createFileRestoreManyAction, createFileSchema, createFileSoftDeleteAction, createFileSoftDeleteManyAction, createFileUpdateAction, createFileUploadApi, createFolderCreateAction, createFolderDeleteAction, createFolderFindFullAction, createFolderFindListCardsAction, createFolderUpdateAction, createMultiFileSchema, createMultiFilesUploadApi, createPostCreateAction, createPostDeleteAction, createPostFindAction, createPostFindFullAction, createPostFindListCardsAction, createPostFindManyAction, createPostUpdateAction, createRunAction, createSchemas, createSeoMetadataUpsertAction, createTocItemSchema, createTransporter, createZod };

package/dist/server/index.js

@@ -12,6 +12,8 @@ import path from 'path';
 import { ulid } from 'ulid';
 import { NextResponse } from 'next/server';
 import path2 from 'path/posix';
+import pLimit from 'p-limit';
+import { BodyParser } from 'next-body-parser';
 
 function createJwtService({
   defaultSecret,
@@ -2936,146 +2938,6 @@ function createFileUpdateAction(ctx) {
   };
 }
 
-// node_modules/yocto-queue/index.js
-var Node = class {
-  value;
-  next;
-  constructor(value) {
-    this.value = value;
-  }
-};
-var Queue = class {
-  #head;
-  #tail;
-  #size;
-  constructor() {
-    this.clear();
-  }
-  enqueue(value) {
-    const node = new Node(value);
-    if (this.#head) {
-      this.#tail.next = node;
-      this.#tail = node;
-    } else {
-      this.#head = node;
-      this.#tail = node;
-    }
-    this.#size++;
-  }
-  dequeue() {
-    const current = this.#head;
-    if (!current) {
-      return;
-    }
-    this.#head = this.#head.next;
-    this.#size--;
-    if (!this.#head) {
-      this.#tail = void 0;
-    }
-    return current.value;
-  }
-  peek() {
-    if (!this.#head) {
-      return;
-    }
-    return this.#head.value;
-  }
-  clear() {
-    this.#head = void 0;
-    this.#tail = void 0;
-    this.#size = 0;
-  }
-  get size() {
-    return this.#size;
-  }
-  *[Symbol.iterator]() {
-    let current = this.#head;
-    while (current) {
-      yield current.value;
-      current = current.next;
-    }
-  }
-  *drain() {
-    while (this.#head) {
-      yield this.dequeue();
-    }
-  }
-};
-
-// node_modules/p-limit/index.js
-function pLimit(concurrency) {
-  validateConcurrency(concurrency);
-  const queue = new Queue();
-  let activeCount = 0;
-  const resumeNext = () => {
-    if (activeCount < concurrency && queue.size > 0) {
-      activeCount++;
-      queue.dequeue()();
-    }
-  };
-  const next = () => {
-    activeCount--;
-    resumeNext();
-  };
-  const run = async (function_, resolve, arguments_) => {
-    const result2 = (async () => function_(...arguments_))();
-    resolve(result2);
-    try {
-      await result2;
-    } catch {
-    }
-    next();
-  };
-  const enqueue = (function_, resolve, arguments_) => {
-    new Promise((internalResolve) => {
-      queue.enqueue(internalResolve);
-    }).then(run.bind(void 0, function_, resolve, arguments_));
-    if (activeCount < concurrency) {
-      resumeNext();
-    }
-  };
-  const generator = (function_, ...arguments_) => new Promise((resolve) => {
-    enqueue(function_, resolve, arguments_);
-  });
-  Object.defineProperties(generator, {
-    activeCount: {
-      get: () => activeCount
-    },
-    pendingCount: {
-      get: () => queue.size
-    },
-    clearQueue: {
-      value() {
-        queue.clear();
-      }
-    },
-    concurrency: {
-      get: () => concurrency,
-      set(newConcurrency) {
-        validateConcurrency(newConcurrency);
-        concurrency = newConcurrency;
-        queueMicrotask(() => {
-          while (activeCount < concurrency && queue.size > 0) {
-            resumeNext();
-          }
-        });
-      }
-    },
-    map: {
-      async value(iterable, function_) {
-        const promises = Array.from(iterable, (value, index) => this(function_, value, index));
-        return Promise.all(promises);
-      }
-    }
-  });
-  return generator;
-}
-function validateConcurrency(concurrency) {
-  if (!((Number.isInteger(concurrency) || concurrency === Number.POSITIVE_INFINITY) && concurrency > 0)) {
-    throw new TypeError("Expected `concurrency` to be a number from 1 and up");
-  }
-}
-
 // src/server/interfaces/actions/resources/file/commands/create-many/file-create-many-validator.ts
 var fileCreateManyValidator = (schemas) => schemas.z.object({
   uploadResults: schemas.array(
@@ -4204,6 +4066,121 @@ function createSeoMetadataUpsertAction(ctx) {
   };
 }
 
+// src/server/interfaces/apis/file-upload/validator.ts
+var fileUploadValidator = (schemas) => schemas.z.object({
+  folder: schemas.z.object({ id: schemas.id().exist({ table: "folders", column: "id" }) }).optional(),
+  folderKey: schemas.key().exist({ table: "folders", column: "key" }).optional(),
+  //====== Translations ======
+  translations: schemas.array(
+    schemas.z.object({
+      locale: schemas.locale(),
+      name: schemas.text().nullable(),
+      alt: schemas.text().nullable()
+    })
+  ).optional()
+  // Can be optional when use in Simple Upload
+});
+
+// src/server/interfaces/apis/file-upload/file-upload-api.ts
+function createFileUploadApi(ctx) {
+  return function fileUploadApi(request) {
+    const {
+      services: { cryptoService, storageService },
+      middlewares: { authMiddleware },
+      api: { executeApi, ipRateLimiter },
+      schemas: { schemas, fileSchema }
+    } = ctx;
+    return executeApi(async () => {
+      await ipRateLimiter({ key: ["file-upload"], maxAttempts: 60 });
+      await authMiddleware.authenticate();
+      const payload = BodyParser.parse(await request.formData());
+      const { folderKey } = await fileUploadValidator(schemas).parseAsync(payload);
+      const blobFile = await fileSchema().parseAsync(payload["blobFile"]);
+      const checksum = cryptoService.hash(
+        Buffer.from(await blobFile.arrayBuffer())
+      );
+      const resolvedFolderKey = payload["folder"] ? payload["folder"].key : folderKey;
+      const key = await storageService.upload({
+        blobFile,
+        ...resolvedFolderKey ? { folderKey: resolvedFolderKey } : {}
+      });
+      return NextResponse.json(
+        result.success({
+          data: { key, checksum }
+        })
+      );
+    });
+  };
+}
+
+// src/server/interfaces/apis/multi-files-upload/validator.ts
+var multiFilesUploadValidator = (schemas) => schemas.z.object({
+  folder: schemas.z.object({ id: schemas.id().exist({ table: "folders", column: "id" }) }).optional(),
+  folderKey: schemas.key().exist({ table: "folders", column: "key" }).optional(),
+  blobFileInfos: schemas.array(
+    schemas.z.object({
+      width: schemas.positiveNumber().nullable(),
+      height: schemas.positiveNumber().nullable(),
+      duration: schemas.positiveNumber().nullable()
+    })
+  )
+});
+
+// src/server/interfaces/apis/multi-files-upload/multi-files-upload-api.ts
+function createMultiFilesUploadApi(ctx) {
+  return function multiFilesUploadApi(request) {
+    const {
+      services: { cryptoService, storageService },
+      middlewares: { authMiddleware },
+      api: { executeApi, ipRateLimiter },
+      schemas: { schemas, multiFilesSchema }
+    } = ctx;
+    return executeApi(async () => {
+      await ipRateLimiter({
+        key: ["multi-files-upload"],
+        maxAttempts: 60,
+        timeWindow: 60
+      });
+      await authMiddleware.authenticate();
+      const payload = BodyParser.parse(await request.formData());
+      const { folderKey, blobFileInfos } = await multiFilesUploadValidator(schemas).parseAsync(payload);
+      const blobFiles = await multiFilesSchema().parseAsync(
+        payload["blobFiles"]
+      );
+      const limit = pLimit(5);
+      const uploadResults = await Promise.all(
+        blobFiles.map(
+          (blobFile, index) => limit(async () => {
+            const checksum = cryptoService.hash(
+              Buffer.from(await blobFile.arrayBuffer())
+            );
+            const resolvedFolderKey = payload["folder"] ? payload["folder"].key : folderKey;
+            const key = await storageService.upload({
+              blobFile,
+              ...resolvedFolderKey ? { folderKey: resolvedFolderKey } : {}
+            });
+            const { name, size, type } = blobFile;
+            const { width, height, duration } = blobFileInfos[index] ?? {};
+            return {
+              checksum,
+              key,
+              fileMeta: { name, size, type },
+              width: width ?? null,
+              height: height ?? null,
+              duration: duration ?? null
+            };
+          })
+        )
+      );
+      return NextResponse.json(
+        result.success({
+          data: { uploadResults }
+        })
+      );
+    });
+  };
+}
+
 // src/server/applications/auth/create-auth-use-cases.ts
 function createAuthUseCases({
   prisma,
@@ -4382,4 +4359,4 @@ function createForgotPasswordEmail({
   };
 }
 
-export { ADMIN_ORDER_BY, ORDER_BY, POST_ORDER_BY, ServerError, createAdminCommandRepository, createAdminCreateAction, createAdminDeleteAction, createAdminFindFullAction, createAdminFindListCardsAction, createAdminQueryRepository, createAdminRefreshTokenCommandRepository, createAdminRefreshTokenDeleteAction, createAdminRefreshTokenFindManyAction, createAdminRefreshTokenQueryRepository, createAdminUpdateAction, createArgon2Service, createAuthMiddleware, createAuthUseCases, createCache, createCacheResult, createChangePasswordAction, createCookieService, createCryptoService, createEmailUnverifiedAction, createEmailVerificationEmail, createExecuteAction, createExecuteApi, createExist, createFileCommandRepository, createFileCreateAction, createFileCreateManyAction, createFileFindFullAction, createFileFindListCardsAction, createFilePurgeManyAction, createFileQueryRepository, createFileRestoreManyAction, createFileSchema, createFileSoftDeleteAction, createFileSoftDeleteManyAction, createFileUpdateAction, createFolderCommandRepository, createFolderCreateAction, createFolderDeleteAction, createFolderFindFullAction, createFolderFindListCardsAction, createFolderQueryRepository, createFolderUpdateAction, createForgotPasswordAction, createForgotPasswordEmail, createIpRateLimiter, createJwtService, createMultiFileSchema, createPostCommandRepository, createPostCreateAction, createPostDeleteAction, createPostFindAction, createPostFindFullAction, createPostFindListCardsAction, createPostFindManyAction, createPostQueryRepository, createPostUpdateAction, createRenderEmailTemplate, createResetPasswordAction, createRunAction, createSchemas, createSendEmail, createSeoMetadataCommandRepository, createSeoMetadataUpsertAction, createSignInAction, createSignOutAction, createTocItemSchema, createTransporter, createUnique, createVerifyAccessToken, createVerifyAction, createVerifyEmailAction, createVerifyRefreshToken, createZod, normalizeCacheKey };
+export { ADMIN_ORDER_BY, ORDER_BY, POST_ORDER_BY, ServerError, createAdminCommandRepository, createAdminCreateAction, createAdminDeleteAction, createAdminFindFullAction, createAdminFindListCardsAction, createAdminQueryRepository, createAdminRefreshTokenCommandRepository, createAdminRefreshTokenDeleteAction, createAdminRefreshTokenFindManyAction, createAdminRefreshTokenQueryRepository, createAdminUpdateAction, createArgon2Service, createAuthMiddleware, createAuthUseCases, createCache, createCacheResult, createChangePasswordAction, createCookieService, createCryptoService, createEmailUnverifiedAction, createEmailVerificationEmail, createExecuteAction, createExecuteApi, createExist, createFileCommandRepository, createFileCreateAction, createFileCreateManyAction, createFileFindFullAction, createFileFindListCardsAction, createFilePurgeManyAction, createFileQueryRepository, createFileRestoreManyAction, createFileSchema, createFileSoftDeleteAction, createFileSoftDeleteManyAction, createFileUpdateAction, createFileUploadApi, createFolderCommandRepository, createFolderCreateAction, createFolderDeleteAction, createFolderFindFullAction, createFolderFindListCardsAction, createFolderQueryRepository, createFolderUpdateAction, createForgotPasswordAction, createForgotPasswordEmail, createIpRateLimiter, createJwtService, createMultiFileSchema, createMultiFilesUploadApi, createPostCommandRepository, createPostCreateAction, createPostDeleteAction, createPostFindAction, createPostFindFullAction, createPostFindListCardsAction, createPostFindManyAction, createPostQueryRepository, createPostUpdateAction, createRenderEmailTemplate, createResetPasswordAction, createRunAction, createSchemas, createSendEmail, createSeoMetadataCommandRepository, createSeoMetadataUpsertAction, createSignInAction, createSignOutAction, createTocItemSchema, createTransporter, createUnique, createVerifyAccessToken, createVerifyAction, createVerifyEmailAction, createVerifyRefreshToken, createZod, normalizeCacheKey };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@yimingliao/cms",
-  "version": "0.0.124",
+  "version": "0.0.126",
   "author": "Yiming Liao",
   "license": "MIT",
   "type": "module",
@@ -65,8 +65,10 @@
     "logry": "^2.1.6",
     "lucide-react": "^0.577.0",
     "mime-types": "^3.0.2",
+    "next-body-parser": "^1.0.0",
     "next-themes": "^0.4.6",
     "nodemailer": "^8.0.1",
+    "p-limit": "^7.3.0",
     "sonner": "^2.0.7",
     "ua-parser-js": "^2.0.9",
     "ulid": "^3.0.2"