@zintrust/core 0.1.52 → 0.1.54

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zintrust/core",
-  "version": "0.1.52",
+  "version": "0.1.54",
   "description": "Production-grade TypeScript backend framework for JavaScript",
   "homepage": "https://zintrust.com",
   "repository": {

package/src/boot/bootstrap.js

@@ -118,7 +118,8 @@ const gracefulShutdown = async (signal) => {
         forceExitTimer.unref?.();
         await withTimeout((async () => {
             // Shutdown worker management system FIRST (before database closes)
-            if ((appConfig.detectRuntime() === 'nodejs' || appConfig.detectRuntime() === 'lambda') &&
+            if (appConfig.worker === true &&
+                (appConfig.detectRuntime() === 'nodejs' || appConfig.detectRuntime() === 'lambda') &&
                 appConfig.dockerWorker === false) {
                 try {
                     const workers = await loadWorkersModule();
@@ -156,8 +157,7 @@ const gracefulShutdown = async (signal) => {
 };
 async function useWorkerStarter() {
     // Check if workers are enabled in this environment
-    const workerEnabled = Env.getBool('WORKER_ENABLED', false);
-    if (!workerEnabled || appConfig.dockerWorker === true) {
+    if (!appConfig.worker || appConfig.dockerWorker === true) {
         Logger.info('Workers disabled in this runtime (WORKER_ENABLED=false && DOCKER_WORKER=true), skipping worker management initialization');
         return;
     }
@@ -220,10 +220,11 @@ const BootstrapFunctions = Object.freeze({
             // Start listening
             await server.listen();
             Logger.info(`Server running at http://${host}:${port}`);
-            Logger.info(`ZinTrust documentation at http://${host}:${port}/doc`);
+            Logger.info(`ZinTrust documentation at http://${host}:${port}/zintrust-doc`);
             // Start schedules for long-running runtimes (Node.js / Fargate)
             await startSchedulesIfNeeded(app);
-            if (appConfig.dockerWorker === false &&
+            if (appConfig.worker === true &&
+                appConfig.dockerWorker === false &&
                 (appConfig.detectRuntime() === 'nodejs' || appConfig.detectRuntime() === 'lambda')) {
                 await useWorkerStarter();
             }

package/src/boot/registry/runtime.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"runtime.d.ts","sourceRoot":"","sources":["../../../../src/boot/registry/runtime.ts"],"names":[],"mappings":"AAgBA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAOvD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,gBAAgB,CAAC;AA+I9C,eAAO,MAAM,8BAA8B,GAAI,iBAAiB,gBAAgB,KAAG,IA4BlF,CAAC;AAyLF,eAAO,MAAM,eAAe,GAAI,QAAQ;IACtC,WAAW,EAAE,MAAM,CAAC;IACpB,gBAAgB,EAAE,MAAM,CAAC;IACzB,MAAM,EAAE,OAAO,CAAC;IAChB,eAAe,EAAE,gBAAgB,CAAC;IAClC,SAAS,EAAE,MAAM,OAAO,CAAC;IACzB,SAAS,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,IAAI,CAAC;CACrC,KAAG;IAAE,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAAC,QAAQ,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAA;CA2E7D,CAAC"}
+{"version":3,"file":"runtime.d.ts","sourceRoot":"","sources":["../../../../src/boot/registry/runtime.ts"],"names":[],"mappings":"AAeA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,gBAAgB,CAAC;AAOvD,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,gBAAgB,CAAC;AAsJ9C,eAAO,MAAM,8BAA8B,GAAI,iBAAiB,gBAAgB,KAAG,IA4BlF,CAAC;AAyLF,eAAO,MAAM,eAAe,GAAI,QAAQ;IACtC,WAAW,EAAE,MAAM,CAAC;IACpB,gBAAgB,EAAE,MAAM,CAAC;IACzB,MAAM,EAAE,OAAO,CAAC;IAChB,eAAe,EAAE,gBAAgB,CAAC;IAClC,SAAS,EAAE,MAAM,OAAO,CAAC;IACzB,SAAS,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,IAAI,CAAC;CACrC,KAAG;IAAE,IAAI,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;IAAC,QAAQ,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAA;CA6E7D,CAAC"}

package/src/boot/registry/runtime.js

@@ -4,7 +4,6 @@ import { loadQueueMonitorModule, loadWorkersModule } from '../../runtime/Workers
 import { registerCachesFromRuntimeConfig } from '../../cache/CacheRuntimeRegistration.js';
 import broadcastConfig from '../../config/broadcast.js';
 import { Cloudflare } from '../../config/cloudflare.js';
-import { Env } from '../../config/env.js';
 import { FeatureFlags } from '../../config/features.js';
 import { Logger } from '../../config/logger.js';
 import notificationConfig from '../../config/notification.js';
@@ -39,7 +38,12 @@ const readRuntimeConfig = (key, fallback) => {
         return fallback;
     }
 };
-const appConfig = readRuntimeConfig('appConfig', { port: 7777, dockerWorker: false });
+const appConfig = readRuntimeConfig('appConfig', {
+    port: 7777,
+    dockerWorker: false,
+    worker: false,
+});
+// exported solely for tests to exercise the default detectRuntime handler
 const cacheConfig = readRuntimeConfig('cacheConfig', RuntimeConfig.cacheConfig);
 const databaseConfig = readRuntimeConfig('databaseConfig', {
     default: 'sqlite',
@@ -331,14 +335,15 @@ export const createLifecycle = (params) => {
         await registerFromRuntimeConfig();
         await initializeArtifactDirectories(params.resolvedBasePath);
         await registerMasterRoutes(params.resolvedBasePath, params.router);
-        const workerEnabled = Env.getBool('WORKER_ENABLED', false);
-        if (Cloudflare.getWorkersEnv() === null && appConfig.dockerWorker === false && workerEnabled) {
+        if (Cloudflare.getWorkersEnv() === null &&
+            appConfig.dockerWorker === false &&
+            appConfig.worker === true) {
             await initializeWorkers(params.router);
             await initializeQueueMonitor(params.router);
             await initializeQueueHttpGateway(params.router);
             await initializeScheduleHttpGateway(params.router);
         }
-        else if (!workerEnabled) {
+        else if (!appConfig.dockerWorker) {
             Logger.info('Skipping worker module initialization (WORKER_ENABLED=false).');
         }
         // Register service providers

package/src/cli/scaffolding/ProjectScaffolder.js

@@ -503,7 +503,7 @@ zin s
 
 - Health: http://localhost:{{port}}/health
 - Tasks:  http://localhost:{{port}}/api/tasks
-- Doc:  http://localhost:{{port}}/doc
+- Doc:  http://localhost:{{port}}/zintrust-doc
 `;
     }
     return createFiles(state.projectPath, files, variables);

package/src/cli/scaffolding/env.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../../src/cli/scaffolding/env.ts"],"names":[],"mappings":"AAuiBA,eAAO,MAAM,OAAO,GAClB,MAAM,MAAM,EACZ,MAAM,MAAM,EACZ,SAAS,MAAM,EACf,QAAQ,MAAM,EACd,oBAAoB,MAAM,EAC1B,SAAS,MAAM,EAAE,EACjB,cAAc,MAAM,KACnB,MAAM,EAWR,CAAC"}
+{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../../src/cli/scaffolding/env.ts"],"names":[],"mappings":"AAiiBA,eAAO,MAAM,OAAO,GAClB,MAAM,MAAM,EACZ,MAAM,MAAM,EACZ,SAAS,MAAM,EACf,QAAQ,MAAM,EACd,oBAAoB,MAAM,EAC1B,SAAS,MAAM,EAAE,EACjB,cAAc,MAAM,KACnB,MAAM,EAWR,CAAC"}

package/src/cli/scaffolding/env.js

@@ -147,12 +147,6 @@ const DatabaseAndCloudflare = (databaseNormalized, dbLines, sqliteDbPath) => [
     ...dbLines,
     '',
     '# Generic SQL defaults (used by some adapters)',
-    'DB_HOST=localhost',
-    'DB_PORT=5432',
-    'DB_DATABASE=',
-    'DB_USERNAME=postgres',
-    'DB_PASSWORD=',
-    'DB_READ_HOSTS=',
     '',
     '# PostgreSQL (optional)',
     'DB_PORT_POSTGRESQL=5432',
@@ -355,14 +349,14 @@ const WorkersSchedulingAndSSE = () => [
     '# WORKERS / SCHEDULER',
     '# ============================================================================',
     '',
-    'WORKER_ENABLED=true',
+    'WORKER_ENABLED=false',
     'WORKER_AUTO_START=false',
     'WORKER_CONCURRENCY=5',
     'WORKER_TIMEOUT=60',
     'WORKER_RETRIES=3',
     'WORKER_PRIORITY=1',
     'WORKER_HEALTH_CHECK_INTERVAL=60',
-    'WORKER_CLUSTER_MODE=true',
+    'WORKER_CLUSTER_MODE=false',
     'WORKER_REGION=us-east-1',
     '',
     'WORKER_PERSISTENCE_DRIVER=memory',

package/src/config/app.d.ts

@@ -46,6 +46,14 @@ export declare const appConfig: Readonly<{
      *  Indicates if the application is running inside a Docker worker container
      */
     readonly dockerWorker: boolean;
+    /**
+     * Indicates if the application is running as a Cloudflare Worker
+     */
+    readonly cloudflareWorker: boolean;
+    /**
+     * Indicates if the application is running as a generic Worker (e.g. Cloudflare, AWS Lambda)
+     */
+    readonly worker: boolean;
     /**
      * Application timezone
      */

package/src/config/app.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"app.d.ts","sourceRoot":"","sources":["../../../src/config/app.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,KAAK,EAAe,SAAS,EAAE,MAAM,cAAc,CAAC;AAoI3D,QAAA,MAAM,UAAU,QAAO,MAAM,CAAC,UAA2B,CAAC;AA2F1D,eAAO,MAAM,SAAS;IA3EpB;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;kCACc,OAAO;IAIxB;;OAEG;iCACa,OAAO;IAIvB;;OAEG;8BACU,OAAO;IAIpB;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;+BApFkB,MAAM,CAAC,UAAU;kCAhDd,MAAM;EA2IoB,CAAC;AACrD,OAAO,EAAE,UAAU,EAAE,CAAC;AAEtB,MAAM,MAAM,SAAS,GAAG,OAAO,SAAS,CAAC"}
+{"version":3,"file":"app.d.ts","sourceRoot":"","sources":["../../../src/config/app.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,KAAK,EAAe,SAAS,EAAE,MAAM,cAAc,CAAC;AAoI3D,QAAA,MAAM,UAAU,QAAO,MAAM,CAAC,UAA2B,CAAC;AAqG1D,eAAO,MAAM,SAAS;IArFpB;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;kCACc,OAAO;IAIxB;;OAEG;iCACa,OAAO;IAIvB;;OAEG;8BACU,OAAO;IAIpB;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;IAGH;;OAEG;;+BA9FkB,MAAM,CAAC,UAAU;kCAhDd,MAAM;EAqJoB,CAAC;AACrD,OAAO,EAAE,UAAU,EAAE,CAAC;AAEtB,MAAM,MAAM,SAAS,GAAG,OAAO,SAAS,CAAC"}

package/src/config/app.js

@@ -169,6 +169,14 @@ const appConfigObj = {
      *  Indicates if the application is running inside a Docker worker container
      */
     dockerWorker: readEnvBool('DOCKER_WORKER', Env.DOCKER_WORKER),
+    /**
+     * Indicates if the application is running as a Cloudflare Worker
+     */
+    cloudflareWorker: readEnvBool('CLOUDFLARE_WORKER', Env.CLOUDFLARE_WORKER),
+    /**
+     * Indicates if the application is running as a generic Worker (e.g. Cloudflare, AWS Lambda)
+     */
+    worker: readEnvBool('WORKER_ENABLED', Env.WORKER_ENABLED),
     /**
      * Application timezone
      */

package/src/config/env.d.ts

@@ -189,12 +189,14 @@ export declare const Env: Readonly<{
     LOG_LEVEL: "debug" | "info" | "warn" | "error";
     LOG_FORMAT: string;
     LOG_CHANNEL: string;
-    DOCKER_WORKER: boolean;
     DISABLE_LOGGING: boolean;
     LOG_HTTP_REQUEST: boolean;
     LOG_TO_FILE: boolean;
     LOG_ROTATION_SIZE: number;
     LOG_ROTATION_DAYS: number;
+    CLOUDFLARE_WORKER: boolean;
+    WORKER_ENABLED: boolean;
+    DOCKER_WORKER: boolean;
     ZINTRUST_PROJECT_ROOT: string;
     ZINTRUST_ALLOW_POSTINSTALL: string;
     ZINTRUST_ENV_FILE: string;

package/src/config/env.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../src/config/env.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAEhD,MAAM,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,MAAM,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;AAuBlF,eAAO,MAAM,cAAc,QAAO,WAAW,GAAG,SAAwB,CAAC;AAEzE,eAAO,MAAM,mBAAmB,GAAI,UAAU,MAAM,EAAE,WAAW,MAAM,KAAG,MAKzE,CAAC;AAGF,eAAO,MAAM,GAAG,GAAI,KAAK,MAAM,EAAE,eAAe,MAAM,KAAG,MAIxD,CAAC;AAEF,eAAO,MAAM,MAAM,GAAI,KAAK,MAAM,EAAE,cAAc,MAAM,KAAG,MAI1D,CAAC;AAEF,eAAO,MAAM,QAAQ,GAAI,KAAK,MAAM,EAAE,eAAe,MAAM,KAAG,MAI7D,CAAC;AAEF,eAAO,MAAM,OAAO,GAAI,KAAK,MAAM,EAAE,eAAe,OAAO,KAAG,OAI7D,CAAC;AAEF,eAAO,MAAM,GAAG,GAAI,KAAK,MAAM,EAAE,OAAO,MAAM,KAAG,IAGhD,CAAC;AAEF,eAAO,MAAM,KAAK,GAAI,KAAK,MAAM,KAAG,IAInC,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,QAAQ,SAAS,GAAG,IAAI,KAAG,IAEpD,CAAC;AAEF,eAAO,MAAM,QAAQ,QAAO,MAAM,CAAC,MAAM,EAAE,MAAM,CAOhD,CAAC;AAEF,eAAO,MAAM,kBAAkB,QAAO,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAKjE,CAAC;AACF,eAAO,MAAM,mBAAmB,QAAuC,CAAC;AAKxE,eAAO,MAAM,GAAG;eA3DS,MAAM,iBAAiB,MAAM,KAAG,MAAM;kBAMnC,MAAM,gBAAgB,MAAM,KAAG,MAAM;mBAYpC,MAAM,iBAAiB,OAAO,KAAG,OAAO;oBANvC,MAAM,iBAAiB,MAAM,KAAG,MAAM;eAY3C,MAAM,SAAS,MAAM,KAAG,IAAI;iBAK1B,MAAM,KAAG,IAAI;wBAMN,SAAS,GAAG,IAAI,KAAG,IAAI;oBAI7B,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;cAgCJ,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;eAgOpB,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAgFxF,CAAC;AAEH,eAAO,MAAM,aAAa,QAAO,MAchC,CAAC"}
+{"version":3,"file":"env.d.ts","sourceRoot":"","sources":["../../../src/config/env.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,cAAc,CAAC;AAEhD,MAAM,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,MAAM,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;AAuBlF,eAAO,MAAM,cAAc,QAAO,WAAW,GAAG,SAAwB,CAAC;AAEzE,eAAO,MAAM,mBAAmB,GAAI,UAAU,MAAM,EAAE,WAAW,MAAM,KAAG,MAKzE,CAAC;AAGF,eAAO,MAAM,GAAG,GAAI,KAAK,MAAM,EAAE,eAAe,MAAM,KAAG,MAIxD,CAAC;AAEF,eAAO,MAAM,MAAM,GAAI,KAAK,MAAM,EAAE,cAAc,MAAM,KAAG,MAI1D,CAAC;AAEF,eAAO,MAAM,QAAQ,GAAI,KAAK,MAAM,EAAE,eAAe,MAAM,KAAG,MAI7D,CAAC;AAEF,eAAO,MAAM,OAAO,GAAI,KAAK,MAAM,EAAE,eAAe,OAAO,KAAG,OAI7D,CAAC;AAEF,eAAO,MAAM,GAAG,GAAI,KAAK,MAAM,EAAE,OAAO,MAAM,KAAG,IAGhD,CAAC;AAEF,eAAO,MAAM,KAAK,GAAI,KAAK,MAAM,KAAG,IAInC,CAAC;AAEF,eAAO,MAAM,SAAS,GAAI,QAAQ,SAAS,GAAG,IAAI,KAAG,IAEpD,CAAC;AAEF,eAAO,MAAM,QAAQ,QAAO,MAAM,CAAC,MAAM,EAAE,MAAM,CAOhD,CAAC;AAEF,eAAO,MAAM,kBAAkB,QAAO,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAKjE,CAAC;AACF,eAAO,MAAM,mBAAmB,QAAuC,CAAC;AAKxE,eAAO,MAAM,GAAG;eA3DS,MAAM,iBAAiB,MAAM,KAAG,MAAM;kBAMnC,MAAM,gBAAgB,MAAM,KAAG,MAAM;mBAYpC,MAAM,iBAAiB,OAAO,KAAG,OAAO;oBANvC,MAAM,iBAAiB,MAAM,KAAG,MAAM;eAY3C,MAAM,SAAS,MAAM,KAAG,IAAI;iBAK1B,MAAM,KAAG,IAAI;wBAMN,SAAS,GAAG,IAAI,KAAG,IAAI;oBAI7B,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;cAgCJ,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;eAgOpB,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAoFxF,CAAC;AAEH,eAAO,MAAM,aAAa,QAAO,MAchC,CAAC"}

package/src/config/env.js

@@ -284,12 +284,15 @@ export const Env = Object.freeze({
     LOG_LEVEL: get('LOG_LEVEL', getDefaultLogLevel()),
     LOG_FORMAT: get('LOG_FORMAT', 'text'),
     LOG_CHANNEL: get('LOG_CHANNEL', ''),
-    DOCKER_WORKER: getBool('DOCKER_WORKER', false),
     DISABLE_LOGGING: getBool('DISABLE_LOGGING', false),
     LOG_HTTP_REQUEST: getBool('LOG_HTTP_REQUEST', false),
     LOG_TO_FILE: getBool('LOG_TO_FILE', false),
     LOG_ROTATION_SIZE: getInt('LOG_ROTATION_SIZE', 10485760),
     LOG_ROTATION_DAYS: getInt('LOG_ROTATION_DAYS', 7),
+    // Worker-specific
+    CLOUDFLARE_WORKER: getBool('CLOUDFLARE_WORKER', false),
+    WORKER_ENABLED: getBool('WORKER_ENABLED', false),
+    DOCKER_WORKER: getBool('DOCKER_WORKER', false),
     // zintrust-specific
     ZINTRUST_PROJECT_ROOT: get('ZINTRUST_PROJECT_ROOT', ''),
     ZINTRUST_ALLOW_POSTINSTALL: get('ZINTRUST_ALLOW_POSTINSTALL', ''),

package/src/config/index.d.ts

@@ -30,6 +30,8 @@ export declare const config: Readonly<{
         readonly isTesting: () => boolean;
         readonly debug: boolean;
         readonly dockerWorker: boolean;
+        readonly cloudflareWorker: boolean;
+        readonly worker: boolean;
         readonly timezone: string;
         readonly requestTimeout: number;
         readonly maxBodySize: number;

package/src/config/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/config/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAaH,OAAO,EAAE,SAAS,EAAE,KAAK,SAAS,EAAE,MAAM,aAAa,CAAC;AACxD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAC/D,OAAO,EAAE,WAAW,EAAE,KAAK,WAAW,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,KAAK,cAAc,EAAE,MAAM,kBAAkB,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,KAAK,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AACtF,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,kBAAkB,EAAE,KAAK,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AACnF,OAAO,EAAE,WAAW,EAAE,KAAK,WAAW,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,KAAK,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACpE,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAExD;;;GAGG;AACH,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;;8BAZc,CAAC;;;;;;;;;;;;;;;;;;;;2EAAC,CAAA;;;;;;;;;;;;;;;;;;;;8BAD2B,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;wBA+C8X,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;EAHnb,CAAC;AAEZ,MAAM,MAAM,MAAM,GAAG,OAAO,MAAM,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/config/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAaH,OAAO,EAAE,SAAS,EAAE,KAAK,SAAS,EAAE,MAAM,aAAa,CAAC;AACxD,OAAO,EAAE,OAAO,IAAI,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAC/D,OAAO,EAAE,WAAW,EAAE,KAAK,WAAW,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,KAAK,cAAc,EAAE,MAAM,kBAAkB,CAAC;AACvE,OAAO,EAAE,mBAAmB,EAAE,KAAK,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AACtF,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,kBAAkB,EAAE,KAAK,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AACnF,OAAO,EAAE,WAAW,EAAE,KAAK,WAAW,EAAE,MAAM,eAAe,CAAC;AAC9D,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,KAAK,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACpE,OAAO,EAAE,qBAAqB,EAAE,MAAM,iBAAiB,CAAC;AAExD;;;GAGG;AACH,eAAO,MAAM,MAAM;;;;;;;;;;;;;;;;;;;;;;;;;8BAZc,CAAC;;;;;;;;;;;;;;;;;;;;2EAAC,CAAA;;;;;;;;;;;;;;;;;;;;8BAD2B,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;wBA+C8X,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;EAHnb,CAAC;AAEZ,MAAM,MAAM,MAAM,GAAG,OAAO,MAAM,CAAC"}

package/src/index.js

@@ -1,11 +1,11 @@
 /**
- * @zintrust/core v0.1.52
+ * @zintrust/core v0.1.54
  *
  * ZinTrust Framework - Production-Grade TypeScript Backend
  * Built for performance, type safety, and exceptional developer experience
  *
  * Build Information:
- *   Built: 2026-02-27T08:07:36.891Z
+ *   Built: 2026-03-02T09:00:32.128Z
  *   Node: >=20.0.0
  *   License: MIT
  *
@@ -21,7 +21,7 @@
  * Available at runtime for debugging and health checks
  */
 export const ZINTRUST_VERSION = '0.1.41';
-export const ZINTRUST_BUILD_DATE = '2026-02-27T08:07:36.860Z'; // Replaced during build
+export const ZINTRUST_BUILD_DATE = '2026-03-02T09:00:32.097Z'; // Replaced during build
 export { Application } from './boot/Application.js';
 export { AwsSigV4 } from './common/index.js';
 export { SignedRequest } from './security/SignedRequest.js';

package/src/orm/Database.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"Database.d.ts","sourceRoot":"","sources":["../../../src/orm/Database.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAOH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAWxD,OAAO,KAAK,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAE1F,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAGvD,MAAM,MAAM,QAAQ,GAAG;IAAE,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAEzC,MAAM,WAAW,SAAS;IACxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACzB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5B,WAAW,IAAI,OAAO,CAAC;IACvB,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IACjF,QAAQ,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAClF,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IACrF,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC7B,WAAW,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,EAAE,SAAS,KAAK,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACpE,KAAK,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,CAAC;IACnC,aAAa,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,IAAI,GAAG,IAAI,CAAC;IACzE,YAAY,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,GAAG,IAAI,CAAC;IAC1F,cAAc,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,IAAI,GAAG,IAAI,CAAC;IAC1E,aAAa,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,GAAG,IAAI,CAAC;IAC3F,kBAAkB,CAAC,MAAM,CAAC,EAAE,OAAO,GAAG,gBAAgB,CAAC;IACvD,OAAO,IAAI,eAAe,CAAC;IAC3B,SAAS,IAAI,cAAc,CAAC;IAC5B,OAAO,IAAI,IAAI,CAAC;CACjB;AAghBD,eAAO,MAAM,QAAQ;IACnB;;OAEG;oBACa,cAAc,GAAG,SAAS;EAI1C,CAAC;AAIH,eAAO,MAAM,oBAAoB,GAC/B,SAAQ,cAAc,GAAG,SAAqB,EAC9C,uBAA0B,KACzB,OAAO,CAAC,UAAU,CAAC,OAAO,WAAW,CAAC,CAMxC,CAAC;AAEF,wBAAgB,WAAW,CAAC,MAAM,CAAC,EAAE,cAAc,EAAE,UAAU,SAAY,GAAG,SAAS,CAoBtF;AAED,wBAAsB,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC,CAWnD"}
+{"version":3,"file":"Database.d.ts","sourceRoot":"","sources":["../../../src/orm/Database.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAOH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAWxD,OAAO,KAAK,EAAE,cAAc,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,sBAAsB,CAAC;AAE1F,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAGvD,MAAM,MAAM,QAAQ,GAAG;IAAE,KAAK,EAAE,MAAM,CAAA;CAAE,CAAC;AAEzC,MAAM,WAAW,SAAS;IACxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IACzB,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5B,WAAW,IAAI,OAAO,CAAC;IACvB,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IACjF,QAAQ,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;IAClF,OAAO,CAAC,GAAG,EAAE,MAAM,EAAE,UAAU,CAAC,EAAE,OAAO,EAAE,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC;IACrF,GAAG,CAAC,KAAK,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC7B,WAAW,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,EAAE,SAAS,KAAK,OAAO,CAAC,CAAC,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IACpE,KAAK,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,CAAC;IACnC,aAAa,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,IAAI,GAAG,IAAI,CAAC;IACzE,YAAY,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,GAAG,IAAI,CAAC;IAC1F,cAAc,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,IAAI,GAAG,IAAI,CAAC;IAC1E,aAAa,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,MAAM,KAAK,IAAI,GAAG,IAAI,CAAC;IAC3F,kBAAkB,CAAC,MAAM,CAAC,EAAE,OAAO,GAAG,gBAAgB,CAAC;IACvD,OAAO,IAAI,eAAe,CAAC;IAC3B,SAAS,IAAI,cAAc,CAAC;IAC5B,OAAO,IAAI,IAAI,CAAC;CACjB;AAqhBD,eAAO,MAAM,QAAQ;IACnB;;OAEG;oBACa,cAAc,GAAG,SAAS;EAI1C,CAAC;AAIH,eAAO,MAAM,oBAAoB,GAC/B,SAAQ,cAAc,GAAG,SAAqB,EAC9C,uBAA0B,KACzB,OAAO,CAAC,UAAU,CAAC,OAAO,WAAW,CAAC,CAMxC,CAAC;AAEF,wBAAgB,WAAW,CAAC,MAAM,CAAC,EAAE,cAAc,EAAE,UAAU,SAAY,GAAG,SAAS,CAoBtF;AAED,wBAAsB,aAAa,IAAI,OAAO,CAAC,IAAI,CAAC,CAWnD"}

package/src/orm/Database.js

@@ -116,7 +116,7 @@ const resolveWorkersAdapter = (cfg) => {
     const workersEnv = Cloudflare.getWorkersEnv();
     if (workersEnv === null)
         return null;
-    Logger.info('[Database] Resolving adapter for Cloudflare Workers runtime', {
+    Logger.debug('[Database] Resolving adapter for Cloudflare Workers runtime', {
         driver: cfg.driver,
         useMySqlProxy: Env.getBool('USE_MYSQL_PROXY', false),
         mysqlProxyUrlConfigured: Env.get('MYSQL_PROXY_URL', '').trim() !== '',
@@ -138,13 +138,16 @@ const createAdapter = (cfg) => {
     const explicitProxy = resolveExplicitProxyAdapter(cfg);
     if (explicitProxy)
         return explicitProxy;
-    const workersAdapter = resolveWorkersAdapter(cfg);
-    if (workersAdapter)
-        return workersAdapter;
+    // First: Check the specific configured driver via registry
     const registered = DatabaseAdapterRegistry.get(cfg.driver);
     if (registered !== undefined) {
         return registered(cfg);
     }
+    // Second: Try workers adapter resolution (only if registry lookup failed)
+    const workersAdapter = resolveWorkersAdapter(cfg);
+    if (workersAdapter)
+        return workersAdapter;
+    // Third: Fallback to direct adapter creation
     switch (cfg.driver) {
         case 'postgresql':
             return PostgreSQLAdapter.create(cfg);

package/src/routes/doc.d.ts

@@ -1,6 +1,6 @@
 /**
  * Documentation Routes
- * Serves static files from /doc/* paths with relaxed CSP headers.
+ * Serves static files from /zintrust-doc/* paths with relaxed CSP headers.
  */
 import type { IRouter } from './Router';
 import type { IResponse } from '../http/Response';

package/src/routes/doc.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"doc.d.ts","sourceRoot":"","sources":["../../../src/routes/doc.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAC;AAInD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAIhD,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAErD;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,oBAAoB,EACpB,uBAAuB,EACvB,4BAA4B,EAC5B,aAAa,EACb,kBAAkB,GACnB,MAAM,yBAAyB,CAAC;AAkCjC;;GAEG;AACH,eAAO,MAAM,0BAA0B,GAAI,UAAU,SAAS,KAAG,IAWhE,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,2BAA2B,GACtC,SAAS,MAAM,EACf,UAAU,SAAS,KAClB,OAAO,CAAC,OAAO,CAgDjB,CAAC;AASF,eAAO,MAAM,iBAAiB,GAAI,QAAQ,OAAO,KAAG,IAMnD,CAAC;;gCANwC,OAAO,KAAG,IAAI;2CA5EH,SAAS,KAAG,IAAI;2CAiB1D,MAAM,YACL,SAAS,KAClB,OAAO,CAAC,OAAO,CAAC;;AAiEnB,wBAIE"}
+{"version":3,"file":"doc.d.ts","sourceRoot":"","sources":["../../../src/routes/doc.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,qBAAqB,CAAC;AAInD,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAIhD,OAAO,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAErD;;GAEG;AAEH,OAAO,EACL,eAAe,EACf,oBAAoB,EACpB,uBAAuB,EACvB,4BAA4B,EAC5B,aAAa,EACb,kBAAkB,GACnB,MAAM,yBAAyB,CAAC;AAmCjC;;GAEG;AACH,eAAO,MAAM,0BAA0B,GAAI,UAAU,SAAS,KAAG,IAWhE,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,2BAA2B,GACtC,SAAS,MAAM,EACf,UAAU,SAAS,KAClB,OAAO,CAAC,OAAO,CAgDjB,CAAC;AASF,eAAO,MAAM,iBAAiB,GAAI,QAAQ,OAAO,KAAG,IAMnD,CAAC;;gCANwC,OAAO,KAAG,IAAI;2CA5EH,SAAS,KAAG,IAAI;2CAiB1D,MAAM,YACL,SAAS,KAClB,OAAO,CAAC,OAAO,CAAC;;AAiEnB,wBAIE"}

package/src/routes/doc.js

@@ -1,6 +1,6 @@
 /**
  * Documentation Routes
- * Serves static files from /doc/* paths with relaxed CSP headers.
+ * Serves static files from /zintrust-doc/* paths with relaxed CSP headers.
  */
 import { HTTP_HEADERS } from '../config/constants.js';
 import { MIME_TYPES_MAP, resolveSafePath, tryDecodeURIComponent } from './common.js';
@@ -16,6 +16,7 @@ export { MIME_TYPES_MAP } from './common.js';
  */
 // Backward-compatible re-exports
 export { findPackageRoot, findPackageRootAsync, getFrameworkPublicRoots, getFrameworkPublicRootsAsync, getPublicRoot, getPublicRootAsync, } from './publicRoot.js';
+const docPath = 'zintrust-doc';
 const PUBLIC_ROOT_CACHE_TTL_MS = 3000000000; // 50 minutes, can be adjusted as needed
 let cachedPublicRoot = null;
 const getCachedPublicRootAsync = async () => {
@@ -33,10 +34,10 @@ const getCachedPublicRootAsync = async () => {
 const mapStaticPathAsync = async (urlPath) => {
     const publicRoot = await getCachedPublicRootAsync();
     const normalize = (p) => (p.startsWith('/') ? p.slice(1) : p);
-    if (urlPath === '/doc' || urlPath === '/doc/')
+    if (urlPath === `/${docPath}` || urlPath === `/${docPath}/`)
         return publicRoot;
-    if (urlPath.startsWith('/doc/')) {
-        const rawRelative = urlPath.slice('/doc/'.length);
+    if (urlPath.startsWith(`/${docPath}/`)) {
+        const rawRelative = urlPath.slice(`/${docPath}/`.length);
         const normalizedRelative = tryDecodeURIComponent(rawRelative).replaceAll('\\', '/');
         return resolveSafePath(publicRoot, normalize(normalizedRelative));
     }
@@ -112,10 +113,10 @@ const handleDocRequest = async (req, res) => {
 };
 export const registerDocRoutes = (router) => {
     // Root docs entrypoints.
-    Router.get(router, '/doc', handleDocRequest);
-    Router.get(router, '/doc/', handleDocRequest);
-    // Greedy path match for nested assets like /doc/assets/app.js
-    Router.get(router, '/doc/:path*', handleDocRequest);
+    Router.get(router, `/${docPath}`, handleDocRequest);
+    Router.get(router, `/${docPath}/`, handleDocRequest);
+    // Greedy path match for nested assets like /zintrust-doc/assets/app.js
+    Router.get(router, `/${docPath}/:path*`, handleDocRequest);
 };
 export default {
     registerDocRoutes,

package/src/runtime/PluginAutoImports.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"PluginAutoImports.d.ts","sourceRoot":"","sources":["../../../src/runtime/PluginAutoImports.ts"],"names":[],"mappings":"AAMA,KAAK,YAAY,GACb;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,GAChC;IACE,EAAE,EAAE,KAAK,CAAC;IACV,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,WAAW,GAAG,eAAe,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB,CAAC;AA0GN,eAAO,MAAM,iBAAiB;IAC5B;;;;;;OAMG;mCACkC,OAAO,CAAC,YAAY,CAAC;qCAmEnB,MAAM,EAAE,GAAG,OAAO,CAAC,YAAY,CAAC;EAavE,CAAC"}
+{"version":3,"file":"PluginAutoImports.d.ts","sourceRoot":"","sources":["../../../src/runtime/PluginAutoImports.ts"],"names":[],"mappings":"AAMA,KAAK,YAAY,GACb;IAAE,EAAE,EAAE,IAAI,CAAC;IAAC,UAAU,EAAE,MAAM,CAAA;CAAE,GAChC;IACE,EAAE,EAAE,KAAK,CAAC;IACV,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,WAAW,GAAG,eAAe,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB,CAAC;AA0GN,eAAO,MAAM,iBAAiB;IAC5B;;;;;;OAMG;mCACkC,OAAO,CAAC,YAAY,CAAC;qCAkEnB,MAAM,EAAE,GAAG,OAAO,CAAC,YAAY,CAAC;EAavE,CAAC"}

package/src/runtime/PluginAutoImports.js

@@ -107,7 +107,6 @@ export const PluginAutoImports = Object.freeze({
         // Filter out non-existent candidates first
         const existingCandidates = candidates.filter((candidate) => existsSync(candidate));
         if (existingCandidates.length === 0) {
-            Logger.debug('[plugins] No plugin auto-imports file found', { projectRoot, candidates });
             return { ok: false, reason: 'not-found' };
         }
         const tryImportCandidate = async (candidate) => {

package/src/runtime/detectRuntime.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"detectRuntime.d.ts","sourceRoot":"","sources":["../../../src/runtime/detectRuntime.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,WAAW,GAAG,oBAAoB,GAAG,YAAY,GAAG,aAAa,CAAC;AAE9E,eAAO,MAAM,aAAa,QAAO,OAUhC,CAAC;AAUF,eAAO,MAAM,cAAc,QAAO,WA6BjC,CAAC;AAEF,eAAO,MAAM,aAAa,QAAO;IAC/B,YAAY,EAAE,OAAO,CAAC;IACtB,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;CAwBhB,CAAC"}
+{"version":3,"file":"detectRuntime.d.ts","sourceRoot":"","sources":["../../../src/runtime/detectRuntime.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,WAAW,GAAG,oBAAoB,GAAG,YAAY,GAAG,aAAa,CAAC;AAE9E,eAAO,MAAM,aAAa,QAAO,OAWhC,CAAC;AAUF,eAAO,MAAM,cAAc,QAAO,WA6BjC,CAAC;AAEF,eAAO,MAAM,aAAa,QAAO;IAC/B,YAAY,EAAE,OAAO,CAAC;IACtB,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,OAAO,CAAC;IAChB,KAAK,EAAE,OAAO,CAAC;CAwBhB,CAAC"}

package/src/runtime/detectRuntime.js

@@ -1,8 +1,11 @@
+import { appConfig } from '../config/index.js';
 import { ZintrustLang } from '../lang/lang.js';
 export const isNodeRuntime = () => {
     // Avoid importing any `node:*` modules so this file remains Worker-safe.
     // In Workers/Deno, `process` is typically undefined.
-    return (typeof process !== ZintrustLang.UNDEFINED &&
+    const detectRuntime = appConfig.detectRuntime() !== 'cloudflare';
+    return (detectRuntime &&
+        typeof process !== ZintrustLang.UNDEFINED &&
         typeof process === ZintrustLang.OBJECT &&
         process !== null &&
         typeof process.versions === ZintrustLang.OBJECT);

package/src/start.js

@@ -35,7 +35,7 @@ export const start = async () => {
     // Compiled output places bootstrap at `dist/src/boot/bootstrap.js`.
     // This file compiles to `dist/src/start.js`, so relative import is stable.
     // In unit tests, importing bootstrap has heavy side effects (starts server + exits).
-    await import('./boot/' + ZintrustLang.BOOTSTRAPJS);
+    await import('./boot/bootstrap.js');
 };
 /**
  * Cloudflare Workers entry (module worker style).

package/src/templates/project/basic/app/Controllers/AuthController.ts.tpl

@@ -10,11 +10,13 @@ import {
   Auth,
   JwtManager,
   Logger,
-  TokenRevocation,
   getString,
   getValidatedBody,
+  isUndefinedOrNull,
 } from '@zintrust/core';
 
+
+
 const pickPublicUser = (row: UserRow): { id: unknown; name: string; email: string } => {
   return {
     id: row.id,
@@ -77,9 +79,15 @@ async function login(req: IRequest, res: IResponse): Promise<void> {
       return undefined;
     })();
 
-    const token = JwtManager.signAccessToken({
+    // Bulletproof Auth (device binding) expects a device id header to match a JWT claim.
+    // For the example app, we mint a stable device id derived from the subject.
+    // Production apps should issue a per-device id and manage a per-device signing secret.
+    const deviceId = isUndefinedOrNull(subject) ? undefined : `dev-${subject}`;
+
+    const token = await JwtManager.signAccessToken({
       sub: subject,
       email,
+      ...(isUndefinedOrNull(deviceId) ? {} : { deviceId }),
     });
 
     Logger.info('AuthController.login: successful login', {
@@ -92,6 +100,7 @@ async function login(req: IRequest, res: IResponse): Promise<void> {
     res.json({
       token,
       token_type: 'Bearer',
+      ...(isUndefinedOrNull(deviceId) ? {} : { deviceId }),
       user,
     });
   } catch (error) {
@@ -166,7 +175,10 @@ async function register(req: IRequest, res: IResponse): Promise<void> {
 
       res.setStatus(201).json({ message: 'Registered' });
     } else {
-      Logger.error('Failed to retrieve inserted user ID');
+      Logger.error('Failed to retrieve inserted user ID', {
+        email,
+        ip: ipAddress,
+      });
       res.setStatus(500).json({ error: 'Registration failed' });
     }
     return;
@@ -187,10 +199,27 @@ async function register(req: IRequest, res: IResponse): Promise<void> {
 async function logout(req: IRequest, res: IResponse): Promise<void> {
   const authHeader =
     typeof req.getHeader === 'function' ? req.getHeader('authorization') : undefined;
-  await TokenRevocation.revoke(authHeader);
+  await JwtManager.logout(authHeader);
   res.json({ message: 'Logged out' });
 }
 
+/**
+ * Logs out the current user from all devices by removing all active sessions for their subject.
+ *
+ * With session allowlist enforcement, deleting a user's session records causes any previously issued
+ * tokens to become unauthorized (401) immediately.
+ */
+async function logoutAll(req: IRequest, res: IResponse): Promise<void> {
+  const sub = typeof req.user?.sub === 'string' ? req.user.sub.trim() : '';
+  if (sub === '') {
+    res.setStatus(401).json({ error: 'Unauthorized' });
+    return;
+  }
+
+  await JwtManager.logoutAll(sub);
+  res.json({ message: 'Logged out everywhere' });
+}
+
 /**
  * Refreshes the user's JWT access token.
  * Generates a new token with the same claims as the current user.
@@ -206,7 +235,7 @@ async function refresh(req: IRequest, res: IResponse): Promise<void> {
     return;
   }
 
-  const token = JwtManager.signAccessToken(user);
+  const token = await JwtManager.signAccessToken(user);
   res.json({ token, token_type: 'Bearer' });
 }
 
@@ -216,6 +245,7 @@ export const AuthController = Object.freeze({
       login,
       register,
       logout,
+      logoutAll,
       refresh,
     };
   },

package/src/templates/project/basic/app/Types/controller.ts.tpl

@@ -23,6 +23,7 @@ export type AuthControllerApi = {
   login(req: IRequest, res: IResponse): Promise<void>;
   register(req: IRequest, res: IResponse): Promise<void>;
   logout(req: IRequest, res: IResponse): Promise<void>;
+  logoutAll(req: IRequest, res: IResponse): Promise<void>;
   refresh(req: IRequest, res: IResponse): Promise<void>;
 };
 

package/src/templates/project/basic/database/migrations/{create_users_table.ts.tpl → 20260109074544_create_users_table.ts.tpl}

@@ -1,5 +1,9 @@
-import { MigrationSchema, type Blueprint } from '@zintrust/core';
-import type { IDatabase } from '@zintrust/core';
+/**
+ * Migration: CreateUsersTable
+ * Creates users table
+ */
+import type { Blueprint, IDatabase } from '@zintrust/core';
+import { MigrationSchema } from '@zintrust/core';
 
 export interface Migration {
   up(db: IDatabase): Promise<void>;
@@ -15,10 +19,7 @@ export const migration: Migration = {
       table.string('name');
       table.string('email').unique();
       table.string('password');
-      table.timestamp('email_verified_at').nullable();
-      table.boolean('active').default(true);
       table.timestamps();
-      table.timestamp('deleted_at').nullable();
     });
   },
 

package/src/templates/project/basic/database/migrations/20260218121500_create_jwt_revocations_table.ts.tpl

@@ -0,0 +1,36 @@
+/**
+ * Migration: CreateJwtRevocationsTable
+ * Creates a storage table for JWT token revocation (token invalidation).
+ */
+import type { Blueprint, IDatabase } from '@zintrust/core';
+import { MigrationSchema } from '@zintrust/core';
+
+export interface Migration {
+  up(db: IDatabase): Promise<void>;
+  down(db: IDatabase): Promise<void>;
+}
+
+export const migration: Migration = {
+  async up(db: IDatabase): Promise<void> {
+    const schema = MigrationSchema.create(db);
+
+    await schema.create('zintrust_jwt_revocations', (table: Blueprint) => {
+      table.id();
+      table.string('user_id', 191).nullable();
+      table.string('jti', 128).unique();
+      table.string('sub', 191).nullable();
+      table.string('kind', 16).notNullable().default('revoked');
+      table.bigInteger('expires_at_ms');
+      table.timestamp('revoked_at').notNullable().default('CURRENT_TIMESTAMP');
+
+      table.index(['user_id']);
+      table.index(['kind']);
+      table.index(['expires_at_ms']);
+    });
+  },
+
+  async down(db: IDatabase): Promise<void> {
+    const schema = MigrationSchema.create(db);
+    await schema.dropIfExists('zintrust_jwt_revocations');
+  },
+};

package/src/templates/project/basic/wrangler.jsonc.tpl

@@ -5,6 +5,18 @@
   "compatibility_flags": ["nodejs_compat"],
   "workers_dev": true,
   "minify": false,
+  "alias": {
+    "@routes/api.ts": "./routes/api.ts",
+    "../zintrust.plugins.wg.js": "./src/zintrust.plugins.wg.ts",
+    "@runtime-config/broadcast.ts": "./config/broadcast.ts",
+    "@runtime-config/cache.ts": "./config/cache.ts",
+    "@runtime-config/database.ts": "./config/database.ts",
+    "@runtime-config/mail.ts": "./config/mail.ts",
+    "@runtime-config/storage.ts": "./config/storage.ts",
+    "@runtime-config/queue.ts": "./config/queue.ts",
+    "@runtime-config/notification.ts": "./config/notification.ts",
+    "@runtime-config/middleware.ts": "./config/middleware.ts"
+  },
 
   "vars": {
     "ENVIRONMENT": "development"

package/src/templates/project/basic/app/Middleware/ProfilerMiddleware.ts.tpl

@@ -1,54 +0,0 @@
-// @ts-nocheck - Example middleware - WIP
-/**
- * Profiler Middleware
- * Enables request profiling when ENABLE_PROFILER environment variable is set
- */
-
-import { Middleware, Logger , RequestProfiler} from '@zintrust/core';
-
-/**
- * ProfilerMiddleware wraps request execution with performance profiling
- * Enabled via ENABLE_PROFILER=true environment variable
- * Attaches profiling report to response headers
- */
-export const ProfilerMiddleware: Middleware = async (req, res, next) => {
-  const isEnabled = process.env.ENABLE_PROFILER === 'true';
-
-  if (!isEnabled) {
-    // Pass through without profiling
-    await next();
-    return;
-  }
-
-  const profiler = RequestProfiler.create();
-  const queryLogger = profiler.getQueryLogger();
-
-  // Set up query logging if database is available
-  const db = req.context.db;
-  if (db !== undefined && db !== null && typeof db.onAfterQuery === 'function') {
-    db.onAfterQuery((sql: string, params: unknown[], duration: number) => {
-      queryLogger.logQuery(sql, params, duration, 'middleware-profiling');
-    });
-  }
-
-  // Capture request execution
-  const profile = await profiler.captureRequest(async () => next());
-
-  // Attach profile to response
-  res.locals.profile = profile;
-
-  // Add profiling report to response header
-  try {
-    const report = profiler.generateReport(profile);
-    res.setHeader('X-Profiler-Report', Buffer.from(report).toString('base64'));
-    res.setHeader('X-Profiler-Queries', profile.queriesExecuted.toString());
-    res.setHeader('X-Profiler-Duration', profile.duration.toString());
-
-    if (profile.n1Patterns.length > 0) {
-      res.setHeader('X-Profiler-N1-Patterns', profile.n1Patterns.length.toString());
-    }
-  } catch (error) {
-    // Silently fail if header encoding fails
-    Logger.error('Failed to encode profiler report header:', error);
-  }
-};

package/src/templates/project/basic/app/Middleware/index.ts.tpl

@@ -1,293 +0,0 @@
-/**
- * Example Middleware
- * Common middleware patterns for ZinTrust
- */
-
-import type { IJwtManager, JwtAlgorithm, JwtManagerType, ISchema, SchemaType, CsrfTokenManagerType, ICsrfTokenManager } from '@zintrust/core';
-import { Logger , Validator, IRequest, IResponse, XssProtection} from '@zintrust/core';
-
-
-type JwtManagerInput = IJwtManager | JwtManagerType;
-type CsrfManagerInput = ICsrfTokenManager | CsrfTokenManagerType;
-
-const resolveJwtManager = (jwtManager: JwtManagerInput): IJwtManager =>
-  'verify' in jwtManager ? jwtManager : jwtManager.create();
-
-const resolveCsrfManager = (csrfManager: CsrfManagerInput): ICsrfTokenManager =>
-  'validateToken' in csrfManager ? csrfManager : csrfManager.create();
-
-type ValidationSchema = ISchema | SchemaType;
-
-const resolveSchema = (schema: ValidationSchema): ISchema =>
-  'getRules' in schema ? schema : schema.create();
-
-/**
- * Authentication Middleware
- * Verify user is authenticated
- */
-export const authMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  const token = req.getHeader('authorization');
-
-  if (token === undefined || token === '') {
-    res.setStatus(401).json({ error: 'Unauthorized' });
-    return;
-  }
-
-  await next();
-};
-
-/**
- * CORS Middleware
- * Handle CORS headers
- */
-export const corsMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  res.setHeader('Access-Control-Allow-Origin', '*');
-  res.setHeader('Access-Control-Allow-Methods', 'GET, POST, PUT, PATCH, DELETE, OPTIONS');
-  res.setHeader('Access-Control-Allow-Headers', 'Content-Type, Authorization');
-
-  if (req.getMethod() === 'OPTIONS') {
-    res.setStatus(200).send('');
-    return;
-  }
-
-  await next();
-};
-
-/**
- * JSON Request Middleware
- * Parse JSON request bodies
- */
-export const jsonMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  if (req.getMethod() === 'GET' || req.getMethod() === 'DELETE') {
-    await next();
-    return;
-  }
-
-  if (req.isJson() === false) {
-    res.setStatus(415).json({ error: 'Content-Type must be application/json' });
-    return;
-  }
-
-  await next();
-};
-
-/**
- * Logging Middleware
- * Log all requests
- */
-export const loggingMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  const startTime = Date.now();
-  const method = req.getMethod();
-  const path = req.getPath();
-
-  Logger.info(`→ ${method} ${path}`);
-
-  await next();
-
-  const duration = Date.now() - startTime;
-  const status = res.getStatus();
-  Logger.info(`← ${status} ${method} ${path} (${duration}ms)`);
-};
-
-/**
- * Rate Limiting Middleware
- * Simple in-memory rate limiting
- */
-const requestCounts = new Map<string, number[]>();
-
-export const rateLimitMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  const ip = req.getRaw().socket.remoteAddress ?? 'unknown';
-  const now = Date.now();
-  const windowMs = 60 * 1000; // 1 minute
-  const maxRequests = 100;
-
-  if (requestCounts.has(ip) === false) {
-    requestCounts.set(ip, []);
-  }
-
-  const requests = requestCounts.get(ip) ?? [];
-  const recentRequests = requests.filter((time) => now - time < windowMs);
-
-  if (recentRequests.length >= maxRequests) {
-    res.setStatus(429).json({ error: 'Too many requests' });
-    return;
-  }
-
-  recentRequests.push(now);
-  requestCounts.set(ip, recentRequests);
-
-  await next();
-};
-
-/**
- * Trailing Slash Middleware
- * Redirect URLs with trailing slashes
- */
-export const trailingSlashMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  const path = req.getPath();
-
-  if (path.length > 1 && path.endsWith('/') === true) {
-    const withoutSlash = path.slice(0, -1);
-    res.redirect(withoutSlash, 301);
-    return;
-  }
-
-  await next();
-};
-
-/**
- * JWT Authentication Middleware
- * Verify JWT token and extract claims
- */
-export const jwtMiddleware = (jwtManager: JwtManagerInput, algorithm: JwtAlgorithm = 'HS256') => {
-  return async (req: IRequest, res: IResponse, next: () => Promise<void>): Promise<void> => {
-    const authHeader = req.getHeader('authorization');
-
-    if (authHeader === undefined || authHeader === '') {
-      res.setStatus(401).json({ error: 'Missing authorization header' });
-      return;
-    }
-
-    const authHeaderStr = Array.isArray(authHeader) ? authHeader[0] : authHeader;
-    const [scheme, token] = authHeaderStr.split(' ');
-
-    if (scheme !== 'Bearer' || token === undefined || token === '') {
-      res.setStatus(401).json({ error: 'Invalid authorization header format' });
-      return;
-    }
-
-    try {
-      const payload = resolveJwtManager(jwtManager).verify(token, algorithm);
-      // Store in request context (TypeScript allows dynamic properties)
-      req.user = payload;
-      await next();
-    } catch (error) {
-      Logger.error('JWT verification failed:', error);
-      res.setStatus(401).json({ error: 'Invalid or expired token' });
-    }
-  };
-};
-
-/**
- * CSRF Protection Middleware
- * Validate CSRF tokens for state-changing requests
- */
-export const csrfMiddleware = (csrfManager: CsrfManagerInput) => {
-  return async (req: IRequest, res: IResponse, next: () => Promise<void>): Promise<void> => {
-    const method = req.getMethod();
-
-    // Only validate on state-changing requests
-    if (['POST', 'PUT', 'PATCH', 'DELETE'].includes(method) === false) {
-      await next();
-      return;
-    }
-
-    const sessionId = req.sessionId ?? req.getHeader('x-session-id');
-
-    if (sessionId === undefined || sessionId === '') {
-      res.setStatus(400).json({ error: 'Missing session ID' });
-      return;
-    }
-
-    const csrfToken = req.getHeader('x-csrf-token');
-
-    if (csrfToken === undefined || csrfToken === '') {
-      res.setStatus(403).json({ error: 'Missing CSRF token' });
-      return;
-    }
-
-    const isValid = await resolveCsrfManager(csrfManager).validateToken(
-      String(sessionId),
-      String(csrfToken)
-    );
-
-    if (isValid === false) {
-      res.setStatus(403).json({ error: 'Invalid or expired CSRF token' });
-      return;
-    }
-
-    await next();
-  };
-};
-
-/**
- * Input Validation Middleware
- * Validate request body against schema
- */
-export const validationMiddleware = (schema: SchemaType) => {
-  return async (req: IRequest, res: IResponse, next: () => Promise<void>): Promise<void> => {
-    if (req.getMethod() === 'GET' || req.getMethod() === 'DELETE') {
-      await next();
-      return;
-    }
-
-    try {
-      const body = req.body ?? {};
-      Validator.validate(body, resolveSchema(schema));
-      await next();
-    } catch (error: unknown) {
-      Logger.error('Validation error:', error);
-      const newError = error as Error & { toObject?: () => Record<string, unknown> };
-      if (
-        error !== undefined &&
-        'toObject' in newError &&
-        typeof newError.toObject === 'function'
-      ) {
-        res.setStatus(422).json({ errors: newError.toObject() });
-      } else {
-        res.setStatus(400).json({ error: 'Invalid request body' });
-      }
-    }
-  };
-};
-
-/**
- * XSS Protection Middleware
- * Sanitize and escape user input
- */
-export const xssProtectionMiddleware = async (
-  req: IRequest,
-  res: IResponse,
-  next: () => Promise<void>
-): Promise<void> => {
-  // Add XSS protection headers
-  res.setHeader('X-Content-Type-Options', 'nosniff');
-  res.setHeader('X-Frame-Options', 'DENY');
-  res.setHeader('X-XSS-Protection', '1; mode=block');
-
-  // Sanitize request body if present
-  const body = req.body;
-  if (body !== undefined && body !== null && typeof body === 'object') {
-    for (const [key, value] of Object.entries(body)) {
-      if (typeof value === 'string') {
-        body[key] = XssProtection.escape(value);
-      }
-    }
-  }
-
-  await next();
-};

package/src/templates/project/basic/database/migrations/create_tasks_table.ts.tpl

@@ -1,28 +0,0 @@
-import { MigrationSchema, type Blueprint } from '@zintrust/core';
-import type { IDatabase } from '@zintrust/core';
-
-export interface Migration {
-  up(db: IDatabase): Promise<void>;
-  down(db: IDatabase): Promise<void>;
-}
-
-export const migration: Migration = {
-  async up(db: IDatabase): Promise<void> {
-    const schema = MigrationSchema.create(db);
-
-    await schema.create('tasks', (table: Blueprint) => {
-      table.id();
-      table.string('title');
-      table.text('description').nullable();
-      table.string('status').default('pending');
-      table.integer('user_id');
-      table.foreign('user_id').references('id').on('users').onDelete('CASCADE');
-      table.timestamps();
-    });
-  },
-
-  async down(db: IDatabase): Promise<void> {
-    const schema = MigrationSchema.create(db);
-    await schema.dropIfExists('tasks');
-  },
-};