alepha 0.13.5 → 0.13.7

package/dist/api-verifications/index.js

@@ -393,7 +393,8 @@ const AlephaApiVerification = $module({
 	services: [
 		VerificationController,
 		VerificationJobs,
-		VerificationService
+		VerificationService,
+		VerificationParameters
 	]
 });
 

package/dist/api-verifications/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../src/api-verifications/schemas/requestVerificationCodeResponseSchema.ts","../../src/api-verifications/schemas/validateVerificationCodeResponseSchema.ts","../../src/api-verifications/schemas/verificationTypeEnumSchema.ts","../../src/api-verifications/entities/verifications.ts","../../src/api-verifications/schemas/verificationSettingsSchema.ts","../../src/api-verifications/parameters/VerificationParameters.ts","../../src/api-verifications/services/VerificationService.ts","../../src/api-verifications/controllers/VerificationController.ts","../../src/api-verifications/jobs/VerificationJobs.ts","../../src/api-verifications/index.ts"],"sourcesContent":["import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const requestVerificationCodeResponseSchema = t.object({\n  token: t.string({\n    description:\n      \"The verification token (6-digit code for phone, UUID for email). The caller should send this to the user via their preferred notification method.\",\n  }),\n  codeExpiration: t.integer({\n    description: \"Time in seconds before your verification token expires.\",\n  }),\n  verificationCooldown: t.integer({\n    description:\n      \"Cooldown period in seconds before you can request another verification.\",\n  }),\n  maxVerificationAttempts: t.integer({\n    description:\n      \"Maximum number of verification attempts allowed before the token is locked.\",\n  }),\n});\n\nexport type RequestVerificationResponse = Static<\n  typeof requestVerificationCodeResponseSchema\n>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const validateVerificationCodeResponseSchema = t.object({\n  ok: t.boolean({\n    description: \"Indicates whether the verification was successful.\",\n  }),\n  alreadyVerified: t.optional(\n    t.boolean({\n      description: \"Indicates whether the target was already verified.\",\n    }),\n  ),\n});\n\nexport type ValidateVerificationCodeResponse = Static<\n  typeof validateVerificationCodeResponseSchema\n>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const verificationTypeEnumSchema = t.enum([\"code\", \"link\"]);\nexport type VerificationTypeEnum = Static<typeof verificationTypeEnumSchema>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\nimport { $entity, pg } from \"alepha/orm\";\nimport { verificationTypeEnumSchema } from \"../schemas/verificationTypeEnumSchema.ts\";\n\nexport const verifications = $entity({\n  name: \"verification\",\n  schema: t.object({\n    id: pg.primaryKey(t.bigint()),\n\n    createdAt: pg.createdAt(),\n\n    updatedAt: pg.updatedAt(),\n\n    version: pg.version(),\n\n    type: verificationTypeEnumSchema,\n\n    target: t.text({\n      description: \"Can be a phone (E.164 format) or email address\",\n    }),\n\n    code: t.text({\n      description: \"Hashed verification token (n-digit code or UUID)\",\n    }),\n\n    verifiedAt: t.optional(\n      t.datetime({\n        description: \"When it was successfully verified\",\n      }),\n    ),\n\n    attempts: pg.default(\n      t.integer({\n        description: \"Number of failed attempts (to prevent brute-force)\",\n      }),\n      0,\n    ),\n  }),\n  indexes: [\n    \"createdAt\",\n    {\n      columns: [\"target\", \"code\"],\n    },\n  ],\n});\n\nexport const verificationEntitySchema = verifications.schema;\nexport const verificationEntityInsertSchema = verifications.insertSchema;\nexport type VerificationEntity = Static<typeof verifications.schema>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const verificationSettingsSchema = t.object({\n  code: t.object(\n    {\n      maxAttempts: t.integer({\n        description:\n          \"Maximum number of attempts before locking the verification.\",\n        minimum: 1,\n        maximum: 10,\n      }),\n      codeLength: t.integer({\n        description: \"Length of the verification code.\",\n        minimum: 4,\n        maximum: 12,\n      }),\n      codeExpiration: t.integer({\n        description: \"Time in seconds before the verification code expires.\",\n        minimum: 60, // 1 minute\n        maximum: 3600, // 1 hour\n      }),\n      verificationCooldown: t.integer({\n        description: \"Cooldown period in seconds after a request verification.\",\n        minimum: 0,\n        maximum: 3600, // 1 hour\n      }),\n      limitPerDay: t.integer({\n        description:\n          \"Maximum number of verification requests per day for one entry.\",\n        minimum: 1,\n        maximum: 100,\n      }),\n    },\n    {\n      description: \"Settings specific to code verifications.\",\n    },\n  ),\n  link: t.object(\n    {\n      maxAttempts: t.integer({\n        description:\n          \"Maximum number of attempts before locking the verification.\",\n        minimum: 1,\n        maximum: 10,\n      }),\n      codeExpiration: t.integer({\n        description: \"Time in seconds before the verification token expires.\",\n        minimum: 60, // 1 minute\n        maximum: 7200, // 2 hours\n      }),\n      verificationCooldown: t.integer({\n        description: \"Cooldown period in seconds after a request verification.\",\n        minimum: 0,\n        maximum: 3600, // 1 hour\n      }),\n      limitPerDay: t.integer({\n        description:\n          \"Maximum number of verification requests per day for one entry.\",\n        minimum: 1,\n        maximum: 100,\n      }),\n    },\n    {\n      description: \"Settings specific to link verifications.\",\n    },\n  ),\n  purgeDays: t.integer({\n    description:\n      \"Number of days after which expired verifications are automatically deleted. Set to 0 to disable auto-deletion.\",\n    minimum: 0,\n    maximum: 365,\n  }),\n});\n\nexport type VerificationSettings = Static<typeof verificationSettingsSchema>;\n","import { $atom, $use, type Static } from \"alepha\";\nimport {\n  type VerificationSettings,\n  verificationSettingsSchema,\n} from \"../schemas/verificationSettingsSchema.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\n/**\n * Verification settings configuration atom\n */\nexport const verificationOptions = $atom({\n  name: \"alepha.api.verifications.options\",\n  schema: verificationSettingsSchema,\n  default: {\n    code: {\n      maxAttempts: 5,\n      codeLength: 6,\n      codeExpiration: 300, // 5 minutes\n      verificationCooldown: 90,\n      limitPerDay: 10,\n    },\n    link: {\n      maxAttempts: 3, // Lower since UUIDs are harder to guess\n      codeExpiration: 1800, // 30 minutes\n      verificationCooldown: 90,\n      limitPerDay: 10,\n    },\n    purgeDays: 1,\n  },\n});\n\nexport type VerificationOptions = Static<typeof verificationOptions.schema>;\n\ndeclare module \"alepha\" {\n  interface State {\n    [verificationOptions.key]: VerificationOptions;\n  }\n}\n\n// ---------------------------------------------------------------------------------------------------------------------\n\nexport class VerificationParameters {\n  protected readonly options = $use(verificationOptions);\n\n  public get<K extends keyof VerificationSettings>(\n    key: K,\n  ): VerificationSettings[K] {\n    return this.options[key];\n  }\n}\n","import { createHash, randomInt, randomUUID } from \"node:crypto\";\nimport { $inject } from \"alepha\";\nimport { DateTimeProvider } from \"alepha/datetime\";\nimport { $logger } from \"alepha/logger\";\nimport { $repository } from \"alepha/orm\";\nimport { BadRequestError, NotFoundError } from \"alepha/server\";\nimport {\n  type VerificationEntity,\n  verifications,\n} from \"../entities/verifications.ts\";\nimport { VerificationParameters } from \"../parameters/VerificationParameters.ts\";\nimport type { RequestVerificationResponse } from \"../schemas/requestVerificationCodeResponseSchema.ts\";\nimport type { ValidateVerificationCodeResponse } from \"../schemas/validateVerificationCodeResponseSchema.ts\";\nimport type { VerificationTypeEnum } from \"../schemas/verificationTypeEnumSchema.ts\";\n\nexport class VerificationService {\n  protected readonly log = $logger();\n  protected readonly dateTimeProvider = $inject(DateTimeProvider);\n  protected readonly verificationParameters = $inject(VerificationParameters);\n  protected readonly verificationRepository = $repository(verifications);\n\n  public async findByEntry(\n    entry: VerificationEntry,\n  ): Promise<VerificationEntity> {\n    this.log.trace(\"Finding verification by entry\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const results = await this.verificationRepository.findMany({\n      limit: 1, // only need the most recent entry\n      orderBy: {\n        column: \"createdAt\",\n        direction: \"desc\",\n      },\n      where: {\n        type: { eq: entry.type },\n        target: { eq: entry.target },\n      },\n    });\n\n    if (results.length === 0) {\n      this.log.debug(\"Verification entry not found\", {\n        type: entry.type,\n        target: entry.target,\n      });\n      throw new NotFoundError(\"Verification entry not found\");\n    }\n\n    this.log.debug(\"Verification entry found\", {\n      id: results[0].id,\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return results[0];\n  }\n\n  public findRecentsByEntry(entry: VerificationEntry) {\n    this.log.trace(\"Finding recent verifications by entry\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return this.verificationRepository.findMany({\n      orderBy: {\n        column: \"createdAt\",\n        direction: \"desc\",\n      },\n      where: {\n        type: { eq: entry.type },\n        target: { eq: entry.target },\n        createdAt: {\n          gte: this.dateTimeProvider.now().startOf(\"day\").toISOString(),\n        },\n      },\n    });\n  }\n\n  /**\n   * Creates a verification entry and returns the token.\n   * The caller is responsible for sending notifications with the token.\n   * This allows for context-specific notifications (e.g., password reset vs email verification).\n   */\n  public async createVerification(\n    entry: VerificationEntry,\n  ): Promise<RequestVerificationResponse> {\n    this.log.trace(\"Creating verification\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const settings = this.verificationParameters.get(entry.type);\n\n    const recents = await this.findRecentsByEntry(entry);\n    if (recents.length >= settings.limitPerDay) {\n      this.log.warn(\"Daily verification limit reached\", {\n        type: entry.type,\n        target: entry.target,\n        limit: settings.limitPerDay,\n        count: recents.length,\n      });\n      throw new BadRequestError(\n        `Maximum number of verification requests per day reached (${settings.limitPerDay})`,\n      );\n    }\n\n    const existingVerification = recents[0];\n    if (existingVerification) {\n      const nowSec = this.dateTimeProvider.now().unix();\n      const createdAtSec = this.dateTimeProvider\n        .of(existingVerification.createdAt)\n        .unix();\n\n      const diffSec = nowSec - createdAtSec;\n      if (diffSec < settings.verificationCooldown) {\n        const remainingCooldown = Math.floor(\n          settings.verificationCooldown - diffSec,\n        );\n        this.log.debug(\"Verification on cooldown\", {\n          type: entry.type,\n          target: entry.target,\n          remainingSeconds: remainingCooldown,\n        });\n        throw new BadRequestError(\n          `Verification is on cooldown for ${remainingCooldown} seconds`,\n        );\n      }\n    }\n\n    const token = this.generateToken(entry.type);\n\n    const verification = await this.verificationRepository.create({\n      type: entry.type,\n      target: entry.target,\n      code: this.hashCode(token),\n    });\n\n    this.log.info(\"Verification created\", {\n      id: verification.id,\n      type: entry.type,\n      target: entry.target,\n      expiresInSeconds: settings.codeExpiration,\n    });\n\n    return {\n      token,\n      codeExpiration: settings.codeExpiration,\n      verificationCooldown: settings.verificationCooldown,\n      maxVerificationAttempts: settings.maxAttempts,\n    };\n  }\n\n  public async verifyCode(\n    entry: VerificationEntry,\n    code: string,\n  ): Promise<ValidateVerificationCodeResponse> {\n    this.log.trace(\"Verifying code\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const settings = this.verificationParameters.get(entry.type);\n\n    const verification = await this.findByEntry(entry);\n    if (verification.verifiedAt) {\n      this.log.debug(\"Verification already verified\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        verifiedAt: verification.verifiedAt,\n      });\n      return { ok: true, alreadyVerified: true };\n    }\n\n    // DO NOT DELETE THE VERIFICATION WHEN IT IS REJECTED,\n    // or we won't be able to cooldown the verification\n\n    const now = this.dateTimeProvider.now();\n    const expirationDate = this.dateTimeProvider\n      .of(verification.createdAt)\n      .add(settings.codeExpiration, \"seconds\");\n\n    if (now > expirationDate) {\n      this.log.warn(\"Verification code expired\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        createdAt: verification.createdAt,\n        expiredAt: expirationDate.toISOString(),\n      });\n      throw new BadRequestError(\"Verification code has expired\");\n    }\n\n    if (verification.attempts >= settings.maxAttempts) {\n      this.log.warn(\"Verification locked due to max attempts\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        attempts: verification.attempts,\n        maxAttempts: settings.maxAttempts,\n      });\n      throw new BadRequestError(\n        \"Maximum number of attempts reached - verification is locked\",\n      );\n    }\n\n    if (verification.code !== this.hashCode(code)) {\n      const newAttempts = verification.attempts + 1;\n      this.log.warn(\"Invalid verification code\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        attempts: newAttempts,\n        maxAttempts: settings.maxAttempts,\n      });\n      await this.verificationRepository.updateById(verification.id, {\n        attempts: newAttempts,\n      });\n      throw new BadRequestError(\"Invalid verification code\");\n    }\n\n    await this.verificationRepository.updateById(verification.id, {\n      verifiedAt: this.dateTimeProvider.nowISOString(),\n    });\n\n    this.log.info(\"Verification code verified\", {\n      id: verification.id,\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return { ok: true };\n  }\n\n  public hashCode(code: string): string {\n    return createHash(\"sha256\").update(code).digest(\"hex\");\n  }\n\n  public generateToken(type: VerificationTypeEnum): string {\n    if (type === \"code\") {\n      const settings = this.verificationParameters.get(\"code\");\n      return randomInt(0, 1_000_000)\n        .toString()\n        .padStart(settings.codeLength, \"0\");\n    } else if (type === \"link\") {\n      return randomUUID();\n    }\n\n    throw new BadRequestError(`Invalid verification type: ${type}`);\n  }\n}\n\nexport interface VerificationEntry {\n  type: VerificationTypeEnum;\n  target: string;\n}\n","import { $inject, t } from \"alepha\";\nimport { $action } from \"alepha/server\";\nimport { requestVerificationCodeResponseSchema } from \"../schemas/requestVerificationCodeResponseSchema.ts\";\nimport { validateVerificationCodeResponseSchema } from \"../schemas/validateVerificationCodeResponseSchema.ts\";\nimport { verificationTypeEnumSchema } from \"../schemas/verificationTypeEnumSchema.ts\";\nimport { VerificationService } from \"../services/VerificationService.ts\";\n\nexport class VerificationController {\n  protected readonly verificationService = $inject(VerificationService);\n\n  public readonly url = \"/verifications\";\n  public readonly group = \"verifications\";\n\n  public readonly requestVerificationCode = $action({\n    path: `${this.url}/:type`,\n    group: this.group,\n    method: \"POST\",\n    schema: {\n      params: t.object({\n        type: verificationTypeEnumSchema,\n      }),\n      body: t.object({\n        target: t.text(),\n      }),\n      response: requestVerificationCodeResponseSchema,\n    },\n    handler: async ({ body, params }) => {\n      return await this.verificationService.createVerification({\n        type: params.type,\n        target: body.target,\n      });\n    },\n  });\n\n  public readonly validateVerificationCode = $action({\n    path: `${this.url}/:type/validate`,\n    group: this.group,\n    method: \"POST\",\n    schema: {\n      params: t.object({\n        type: verificationTypeEnumSchema,\n      }),\n      body: t.object({\n        target: t.text(),\n        token: t.text({\n          description:\n            \"The verification token (6-digit code for phone, UUID for email).\",\n        }),\n      }),\n      response: validateVerificationCodeResponseSchema,\n    },\n    handler: async ({ body, params }) => {\n      return this.verificationService.verifyCode(\n        {\n          type: params.type,\n          target: body.target,\n        },\n        body.token,\n      );\n    },\n  });\n}\n","import { $inject } from \"alepha\";\nimport { DateTimeProvider } from \"alepha/datetime\";\nimport { $repository } from \"alepha/orm\";\nimport { $scheduler } from \"alepha/scheduler\";\nimport { verifications } from \"../entities/verifications.ts\";\nimport { VerificationParameters } from \"../parameters/VerificationParameters.ts\";\n\nexport class VerificationJobs {\n  protected readonly verificationRepository = $repository(verifications);\n  protected readonly verificationParameters = $inject(VerificationParameters);\n  protected readonly dateTimeProvider = $inject(DateTimeProvider);\n\n  public readonly cleanExpired = $scheduler({\n    cron: \"0 0 * * *\", // Every day at midnight\n    description: \"Clean expired verifications\",\n    handler: async () => {\n      const purgeDays = this.verificationParameters.get(\"purgeDays\");\n      if (purgeDays <= 0) {\n        return; // Auto deletion is disabled\n      }\n\n      const dayMs = 24 * 60 * 60 * 1000;\n      const purgeThreshold = Date.now() - purgeDays * dayMs;\n\n      await this.verificationRepository.deleteMany({\n        createdAt: {\n          lt: this.dateTimeProvider.of(purgeThreshold).toISOString(),\n        },\n      });\n    },\n  });\n}\n","import { $module } from \"alepha\";\nimport { VerificationController } from \"./controllers/VerificationController.ts\";\nimport { VerificationJobs } from \"./jobs/VerificationJobs.ts\";\nimport { VerificationService } from \"./services/VerificationService.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\nexport * from \"./controllers/VerificationController.ts\";\nexport * from \"./entities/verifications.ts\";\nexport * from \"./schemas/requestVerificationCodeResponseSchema.ts\";\nexport * from \"./schemas/validateVerificationCodeResponseSchema.ts\";\nexport * from \"./schemas/verificationTypeEnumSchema.ts\";\nexport * from \"./services/VerificationService.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\n/**\n * Provides email/phone verification management API endpoints for Alepha applications.\n *\n * This module includes verification code generation, validation,\n * and related functionalities. Notifications are handled by the consuming module\n * (e.g., api-users) for context-specific messaging.\n *\n * @module alepha.api.verifications\n */\nexport const AlephaApiVerification = $module({\n  name: \"alepha.api.verifications\",\n  services: [VerificationController, VerificationJobs, VerificationService],\n});\n"],"mappings":";;;;;;;;;AAGA,MAAa,wCAAwC,EAAE,OAAO;CAC5D,OAAO,EAAE,OAAO,EACd,aACE,qJACH,CAAC;CACF,gBAAgB,EAAE,QAAQ,EACxB,aAAa,2DACd,CAAC;CACF,sBAAsB,EAAE,QAAQ,EAC9B,aACE,2EACH,CAAC;CACF,yBAAyB,EAAE,QAAQ,EACjC,aACE,+EACH,CAAC;CACH,CAAC;;;;AChBF,MAAa,yCAAyC,EAAE,OAAO;CAC7D,IAAI,EAAE,QAAQ,EACZ,aAAa,sDACd,CAAC;CACF,iBAAiB,EAAE,SACjB,EAAE,QAAQ,EACR,aAAa,sDACd,CAAC,CACH;CACF,CAAC;;;;ACTF,MAAa,6BAA6B,EAAE,KAAK,CAAC,QAAQ,OAAO,CAAC;;;;ACElE,MAAa,gBAAgB,QAAQ;CACnC,MAAM;CACN,QAAQ,EAAE,OAAO;EACf,IAAI,GAAG,WAAW,EAAE,QAAQ,CAAC;EAE7B,WAAW,GAAG,WAAW;EAEzB,WAAW,GAAG,WAAW;EAEzB,SAAS,GAAG,SAAS;EAErB,MAAM;EAEN,QAAQ,EAAE,KAAK,EACb,aAAa,kDACd,CAAC;EAEF,MAAM,EAAE,KAAK,EACX,aAAa,oDACd,CAAC;EAEF,YAAY,EAAE,SACZ,EAAE,SAAS,EACT,aAAa,qCACd,CAAC,CACH;EAED,UAAU,GAAG,QACX,EAAE,QAAQ,EACR,aAAa,sDACd,CAAC,EACF,EACD;EACF,CAAC;CACF,SAAS,CACP,aACA,EACE,SAAS,CAAC,UAAU,OAAO,EAC5B,CACF;CACF,CAAC;AAEF,MAAa,2BAA2B,cAAc;AACtD,MAAa,iCAAiC,cAAc;;;;AC7C5D,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,OACN;EACE,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACF,YAAY,EAAE,QAAQ;GACpB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,gBAAgB,EAAE,QAAQ;GACxB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,sBAAsB,EAAE,QAAQ;GAC9B,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACH,EACD,EACE,aAAa,4CACd,CACF;CACD,MAAM,EAAE,OACN;EACE,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACF,gBAAgB,EAAE,QAAQ;GACxB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,sBAAsB,EAAE,QAAQ;GAC9B,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACH,EACD,EACE,aAAa,4CACd,CACF;CACD,WAAW,EAAE,QAAQ;EACnB,aACE;EACF,SAAS;EACT,SAAS;EACV,CAAC;CACH,CAAC;;;;;;;AC9DF,MAAa,sBAAsB,MAAM;CACvC,MAAM;CACN,QAAQ;CACR,SAAS;EACP,MAAM;GACJ,aAAa;GACb,YAAY;GACZ,gBAAgB;GAChB,sBAAsB;GACtB,aAAa;GACd;EACD,MAAM;GACJ,aAAa;GACb,gBAAgB;GAChB,sBAAsB;GACtB,aAAa;GACd;EACD,WAAW;EACZ;CACF,CAAC;AAYF,IAAa,yBAAb,MAAoC;CAClC,AAAmB,UAAU,KAAK,oBAAoB;CAEtD,AAAO,IACL,KACyB;AACzB,SAAO,KAAK,QAAQ;;;;;;ACjCxB,IAAa,sBAAb,MAAiC;CAC/B,AAAmB,MAAM,SAAS;CAClC,AAAmB,mBAAmB,QAAQ,iBAAiB;CAC/D,AAAmB,yBAAyB,QAAQ,uBAAuB;CAC3E,AAAmB,yBAAyB,YAAY,cAAc;CAEtE,MAAa,YACX,OAC6B;AAC7B,OAAK,IAAI,MAAM,iCAAiC;GAC9C,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,UAAU,MAAM,KAAK,uBAAuB,SAAS;GACzD,OAAO;GACP,SAAS;IACP,QAAQ;IACR,WAAW;IACZ;GACD,OAAO;IACL,MAAM,EAAE,IAAI,MAAM,MAAM;IACxB,QAAQ,EAAE,IAAI,MAAM,QAAQ;IAC7B;GACF,CAAC;AAEF,MAAI,QAAQ,WAAW,GAAG;AACxB,QAAK,IAAI,MAAM,gCAAgC;IAC7C,MAAM,MAAM;IACZ,QAAQ,MAAM;IACf,CAAC;AACF,SAAM,IAAI,cAAc,+BAA+B;;AAGzD,OAAK,IAAI,MAAM,4BAA4B;GACzC,IAAI,QAAQ,GAAG;GACf,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,QAAQ;;CAGjB,AAAO,mBAAmB,OAA0B;AAClD,OAAK,IAAI,MAAM,yCAAyC;GACtD,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,KAAK,uBAAuB,SAAS;GAC1C,SAAS;IACP,QAAQ;IACR,WAAW;IACZ;GACD,OAAO;IACL,MAAM,EAAE,IAAI,MAAM,MAAM;IACxB,QAAQ,EAAE,IAAI,MAAM,QAAQ;IAC5B,WAAW,EACT,KAAK,KAAK,iBAAiB,KAAK,CAAC,QAAQ,MAAM,CAAC,aAAa,EAC9D;IACF;GACF,CAAC;;;;;;;CAQJ,MAAa,mBACX,OACsC;AACtC,OAAK,IAAI,MAAM,yBAAyB;GACtC,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,WAAW,KAAK,uBAAuB,IAAI,MAAM,KAAK;EAE5D,MAAM,UAAU,MAAM,KAAK,mBAAmB,MAAM;AACpD,MAAI,QAAQ,UAAU,SAAS,aAAa;AAC1C,QAAK,IAAI,KAAK,oCAAoC;IAChD,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,OAAO,SAAS;IAChB,OAAO,QAAQ;IAChB,CAAC;AACF,SAAM,IAAI,gBACR,4DAA4D,SAAS,YAAY,GAClF;;EAGH,MAAM,uBAAuB,QAAQ;AACrC,MAAI,sBAAsB;GAMxB,MAAM,UALS,KAAK,iBAAiB,KAAK,CAAC,MAAM,GAC5B,KAAK,iBACvB,GAAG,qBAAqB,UAAU,CAClC,MAAM;AAGT,OAAI,UAAU,SAAS,sBAAsB;IAC3C,MAAM,oBAAoB,KAAK,MAC7B,SAAS,uBAAuB,QACjC;AACD,SAAK,IAAI,MAAM,4BAA4B;KACzC,MAAM,MAAM;KACZ,QAAQ,MAAM;KACd,kBAAkB;KACnB,CAAC;AACF,UAAM,IAAI,gBACR,mCAAmC,kBAAkB,UACtD;;;EAIL,MAAM,QAAQ,KAAK,cAAc,MAAM,KAAK;EAE5C,MAAM,eAAe,MAAM,KAAK,uBAAuB,OAAO;GAC5D,MAAM,MAAM;GACZ,QAAQ,MAAM;GACd,MAAM,KAAK,SAAS,MAAM;GAC3B,CAAC;AAEF,OAAK,IAAI,KAAK,wBAAwB;GACpC,IAAI,aAAa;GACjB,MAAM,MAAM;GACZ,QAAQ,MAAM;GACd,kBAAkB,SAAS;GAC5B,CAAC;AAEF,SAAO;GACL;GACA,gBAAgB,SAAS;GACzB,sBAAsB,SAAS;GAC/B,yBAAyB,SAAS;GACnC;;CAGH,MAAa,WACX,OACA,MAC2C;AAC3C,OAAK,IAAI,MAAM,kBAAkB;GAC/B,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,WAAW,KAAK,uBAAuB,IAAI,MAAM,KAAK;EAE5D,MAAM,eAAe,MAAM,KAAK,YAAY,MAAM;AAClD,MAAI,aAAa,YAAY;AAC3B,QAAK,IAAI,MAAM,iCAAiC;IAC9C,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,YAAY,aAAa;IAC1B,CAAC;AACF,UAAO;IAAE,IAAI;IAAM,iBAAiB;IAAM;;EAM5C,MAAM,MAAM,KAAK,iBAAiB,KAAK;EACvC,MAAM,iBAAiB,KAAK,iBACzB,GAAG,aAAa,UAAU,CAC1B,IAAI,SAAS,gBAAgB,UAAU;AAE1C,MAAI,MAAM,gBAAgB;AACxB,QAAK,IAAI,KAAK,6BAA6B;IACzC,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,WAAW,aAAa;IACxB,WAAW,eAAe,aAAa;IACxC,CAAC;AACF,SAAM,IAAI,gBAAgB,gCAAgC;;AAG5D,MAAI,aAAa,YAAY,SAAS,aAAa;AACjD,QAAK,IAAI,KAAK,2CAA2C;IACvD,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,UAAU,aAAa;IACvB,aAAa,SAAS;IACvB,CAAC;AACF,SAAM,IAAI,gBACR,8DACD;;AAGH,MAAI,aAAa,SAAS,KAAK,SAAS,KAAK,EAAE;GAC7C,MAAM,cAAc,aAAa,WAAW;AAC5C,QAAK,IAAI,KAAK,6BAA6B;IACzC,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,UAAU;IACV,aAAa,SAAS;IACvB,CAAC;AACF,SAAM,KAAK,uBAAuB,WAAW,aAAa,IAAI,EAC5D,UAAU,aACX,CAAC;AACF,SAAM,IAAI,gBAAgB,4BAA4B;;AAGxD,QAAM,KAAK,uBAAuB,WAAW,aAAa,IAAI,EAC5D,YAAY,KAAK,iBAAiB,cAAc,EACjD,CAAC;AAEF,OAAK,IAAI,KAAK,8BAA8B;GAC1C,IAAI,aAAa;GACjB,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,EAAE,IAAI,MAAM;;CAGrB,AAAO,SAAS,MAAsB;AACpC,SAAO,WAAW,SAAS,CAAC,OAAO,KAAK,CAAC,OAAO,MAAM;;CAGxD,AAAO,cAAc,MAAoC;AACvD,MAAI,SAAS,QAAQ;GACnB,MAAM,WAAW,KAAK,uBAAuB,IAAI,OAAO;AACxD,UAAO,UAAU,GAAG,IAAU,CAC3B,UAAU,CACV,SAAS,SAAS,YAAY,IAAI;aAC5B,SAAS,OAClB,QAAO,YAAY;AAGrB,QAAM,IAAI,gBAAgB,8BAA8B,OAAO;;;;;;AClPnE,IAAa,yBAAb,MAAoC;CAClC,AAAmB,sBAAsB,QAAQ,oBAAoB;CAErE,AAAgB,MAAM;CACtB,AAAgB,QAAQ;CAExB,AAAgB,0BAA0B,QAAQ;EAChD,MAAM,GAAG,KAAK,IAAI;EAClB,OAAO,KAAK;EACZ,QAAQ;EACR,QAAQ;GACN,QAAQ,EAAE,OAAO,EACf,MAAM,4BACP,CAAC;GACF,MAAM,EAAE,OAAO,EACb,QAAQ,EAAE,MAAM,EACjB,CAAC;GACF,UAAU;GACX;EACD,SAAS,OAAO,EAAE,MAAM,aAAa;AACnC,UAAO,MAAM,KAAK,oBAAoB,mBAAmB;IACvD,MAAM,OAAO;IACb,QAAQ,KAAK;IACd,CAAC;;EAEL,CAAC;CAEF,AAAgB,2BAA2B,QAAQ;EACjD,MAAM,GAAG,KAAK,IAAI;EAClB,OAAO,KAAK;EACZ,QAAQ;EACR,QAAQ;GACN,QAAQ,EAAE,OAAO,EACf,MAAM,4BACP,CAAC;GACF,MAAM,EAAE,OAAO;IACb,QAAQ,EAAE,MAAM;IAChB,OAAO,EAAE,KAAK,EACZ,aACE,oEACH,CAAC;IACH,CAAC;GACF,UAAU;GACX;EACD,SAAS,OAAO,EAAE,MAAM,aAAa;AACnC,UAAO,KAAK,oBAAoB,WAC9B;IACE,MAAM,OAAO;IACb,QAAQ,KAAK;IACd,EACD,KAAK,MACN;;EAEJ,CAAC;;;;;ACrDJ,IAAa,mBAAb,MAA8B;CAC5B,AAAmB,yBAAyB,YAAY,cAAc;CACtE,AAAmB,yBAAyB,QAAQ,uBAAuB;CAC3E,AAAmB,mBAAmB,QAAQ,iBAAiB;CAE/D,AAAgB,eAAe,WAAW;EACxC,MAAM;EACN,aAAa;EACb,SAAS,YAAY;GACnB,MAAM,YAAY,KAAK,uBAAuB,IAAI,YAAY;AAC9D,OAAI,aAAa,EACf;GAIF,MAAM,iBAAiB,KAAK,KAAK,GAAG,aADtB,OAAU,KAAK;AAG7B,SAAM,KAAK,uBAAuB,WAAW,EAC3C,WAAW,EACT,IAAI,KAAK,iBAAiB,GAAG,eAAe,CAAC,aAAa,EAC3D,EACF,CAAC;;EAEL,CAAC;;;;;;;;;;;;;;ACLJ,MAAa,wBAAwB,QAAQ;CAC3C,MAAM;CACN,UAAU;EAAC;EAAwB;EAAkB;EAAoB;CAC1E,CAAC"}
+{"version":3,"file":"index.js","names":[],"sources":["../../src/api-verifications/schemas/requestVerificationCodeResponseSchema.ts","../../src/api-verifications/schemas/validateVerificationCodeResponseSchema.ts","../../src/api-verifications/schemas/verificationTypeEnumSchema.ts","../../src/api-verifications/entities/verifications.ts","../../src/api-verifications/schemas/verificationSettingsSchema.ts","../../src/api-verifications/parameters/VerificationParameters.ts","../../src/api-verifications/services/VerificationService.ts","../../src/api-verifications/controllers/VerificationController.ts","../../src/api-verifications/jobs/VerificationJobs.ts","../../src/api-verifications/index.ts"],"sourcesContent":["import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const requestVerificationCodeResponseSchema = t.object({\n  token: t.string({\n    description:\n      \"The verification token (6-digit code for phone, UUID for email). The caller should send this to the user via their preferred notification method.\",\n  }),\n  codeExpiration: t.integer({\n    description: \"Time in seconds before your verification token expires.\",\n  }),\n  verificationCooldown: t.integer({\n    description:\n      \"Cooldown period in seconds before you can request another verification.\",\n  }),\n  maxVerificationAttempts: t.integer({\n    description:\n      \"Maximum number of verification attempts allowed before the token is locked.\",\n  }),\n});\n\nexport type RequestVerificationResponse = Static<\n  typeof requestVerificationCodeResponseSchema\n>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const validateVerificationCodeResponseSchema = t.object({\n  ok: t.boolean({\n    description: \"Indicates whether the verification was successful.\",\n  }),\n  alreadyVerified: t.optional(\n    t.boolean({\n      description: \"Indicates whether the target was already verified.\",\n    }),\n  ),\n});\n\nexport type ValidateVerificationCodeResponse = Static<\n  typeof validateVerificationCodeResponseSchema\n>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const verificationTypeEnumSchema = t.enum([\"code\", \"link\"]);\nexport type VerificationTypeEnum = Static<typeof verificationTypeEnumSchema>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\nimport { $entity, pg } from \"alepha/orm\";\nimport { verificationTypeEnumSchema } from \"../schemas/verificationTypeEnumSchema.ts\";\n\nexport const verifications = $entity({\n  name: \"verification\",\n  schema: t.object({\n    id: pg.primaryKey(t.bigint()),\n\n    createdAt: pg.createdAt(),\n\n    updatedAt: pg.updatedAt(),\n\n    version: pg.version(),\n\n    type: verificationTypeEnumSchema,\n\n    target: t.text({\n      description: \"Can be a phone (E.164 format) or email address\",\n    }),\n\n    code: t.text({\n      description: \"Hashed verification token (n-digit code or UUID)\",\n    }),\n\n    verifiedAt: t.optional(\n      t.datetime({\n        description: \"When it was successfully verified\",\n      }),\n    ),\n\n    attempts: pg.default(\n      t.integer({\n        description: \"Number of failed attempts (to prevent brute-force)\",\n      }),\n      0,\n    ),\n  }),\n  indexes: [\n    \"createdAt\",\n    {\n      columns: [\"target\", \"code\"],\n    },\n  ],\n});\n\nexport const verificationEntitySchema = verifications.schema;\nexport const verificationEntityInsertSchema = verifications.insertSchema;\nexport type VerificationEntity = Static<typeof verifications.schema>;\n","import type { Static } from \"alepha\";\nimport { t } from \"alepha\";\n\nexport const verificationSettingsSchema = t.object({\n  code: t.object(\n    {\n      maxAttempts: t.integer({\n        description:\n          \"Maximum number of attempts before locking the verification.\",\n        minimum: 1,\n        maximum: 10,\n      }),\n      codeLength: t.integer({\n        description: \"Length of the verification code.\",\n        minimum: 4,\n        maximum: 12,\n      }),\n      codeExpiration: t.integer({\n        description: \"Time in seconds before the verification code expires.\",\n        minimum: 60, // 1 minute\n        maximum: 3600, // 1 hour\n      }),\n      verificationCooldown: t.integer({\n        description: \"Cooldown period in seconds after a request verification.\",\n        minimum: 0,\n        maximum: 3600, // 1 hour\n      }),\n      limitPerDay: t.integer({\n        description:\n          \"Maximum number of verification requests per day for one entry.\",\n        minimum: 1,\n        maximum: 100,\n      }),\n    },\n    {\n      description: \"Settings specific to code verifications.\",\n    },\n  ),\n  link: t.object(\n    {\n      maxAttempts: t.integer({\n        description:\n          \"Maximum number of attempts before locking the verification.\",\n        minimum: 1,\n        maximum: 10,\n      }),\n      codeExpiration: t.integer({\n        description: \"Time in seconds before the verification token expires.\",\n        minimum: 60, // 1 minute\n        maximum: 7200, // 2 hours\n      }),\n      verificationCooldown: t.integer({\n        description: \"Cooldown period in seconds after a request verification.\",\n        minimum: 0,\n        maximum: 3600, // 1 hour\n      }),\n      limitPerDay: t.integer({\n        description:\n          \"Maximum number of verification requests per day for one entry.\",\n        minimum: 1,\n        maximum: 100,\n      }),\n    },\n    {\n      description: \"Settings specific to link verifications.\",\n    },\n  ),\n  purgeDays: t.integer({\n    description:\n      \"Number of days after which expired verifications are automatically deleted. Set to 0 to disable auto-deletion.\",\n    minimum: 0,\n    maximum: 365,\n  }),\n});\n\nexport type VerificationSettings = Static<typeof verificationSettingsSchema>;\n","import { $atom, $use, type Static } from \"alepha\";\nimport {\n  type VerificationSettings,\n  verificationSettingsSchema,\n} from \"../schemas/verificationSettingsSchema.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\n/**\n * Verification settings configuration atom\n */\nexport const verificationOptions = $atom({\n  name: \"alepha.api.verifications.options\",\n  schema: verificationSettingsSchema,\n  default: {\n    code: {\n      maxAttempts: 5,\n      codeLength: 6,\n      codeExpiration: 300, // 5 minutes\n      verificationCooldown: 90,\n      limitPerDay: 10,\n    },\n    link: {\n      maxAttempts: 3, // Lower since UUIDs are harder to guess\n      codeExpiration: 1800, // 30 minutes\n      verificationCooldown: 90,\n      limitPerDay: 10,\n    },\n    purgeDays: 1,\n  },\n});\n\nexport type VerificationOptions = Static<typeof verificationOptions.schema>;\n\ndeclare module \"alepha\" {\n  interface State {\n    [verificationOptions.key]: VerificationOptions;\n  }\n}\n\n// ---------------------------------------------------------------------------------------------------------------------\n\nexport class VerificationParameters {\n  protected readonly options = $use(verificationOptions);\n\n  public get<K extends keyof VerificationSettings>(\n    key: K,\n  ): VerificationSettings[K] {\n    return this.options[key];\n  }\n}\n","import { createHash, randomInt, randomUUID } from \"node:crypto\";\nimport { $inject } from \"alepha\";\nimport { DateTimeProvider } from \"alepha/datetime\";\nimport { $logger } from \"alepha/logger\";\nimport { $repository } from \"alepha/orm\";\nimport { BadRequestError, NotFoundError } from \"alepha/server\";\nimport {\n  type VerificationEntity,\n  verifications,\n} from \"../entities/verifications.ts\";\nimport { VerificationParameters } from \"../parameters/VerificationParameters.ts\";\nimport type { RequestVerificationResponse } from \"../schemas/requestVerificationCodeResponseSchema.ts\";\nimport type { ValidateVerificationCodeResponse } from \"../schemas/validateVerificationCodeResponseSchema.ts\";\nimport type { VerificationTypeEnum } from \"../schemas/verificationTypeEnumSchema.ts\";\n\nexport class VerificationService {\n  protected readonly log = $logger();\n  protected readonly dateTimeProvider = $inject(DateTimeProvider);\n  protected readonly verificationParameters = $inject(VerificationParameters);\n  protected readonly verificationRepository = $repository(verifications);\n\n  public async findByEntry(\n    entry: VerificationEntry,\n  ): Promise<VerificationEntity> {\n    this.log.trace(\"Finding verification by entry\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const results = await this.verificationRepository.findMany({\n      limit: 1, // only need the most recent entry\n      orderBy: {\n        column: \"createdAt\",\n        direction: \"desc\",\n      },\n      where: {\n        type: { eq: entry.type },\n        target: { eq: entry.target },\n      },\n    });\n\n    if (results.length === 0) {\n      this.log.debug(\"Verification entry not found\", {\n        type: entry.type,\n        target: entry.target,\n      });\n      throw new NotFoundError(\"Verification entry not found\");\n    }\n\n    this.log.debug(\"Verification entry found\", {\n      id: results[0].id,\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return results[0];\n  }\n\n  public findRecentsByEntry(entry: VerificationEntry) {\n    this.log.trace(\"Finding recent verifications by entry\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return this.verificationRepository.findMany({\n      orderBy: {\n        column: \"createdAt\",\n        direction: \"desc\",\n      },\n      where: {\n        type: { eq: entry.type },\n        target: { eq: entry.target },\n        createdAt: {\n          gte: this.dateTimeProvider.now().startOf(\"day\").toISOString(),\n        },\n      },\n    });\n  }\n\n  /**\n   * Creates a verification entry and returns the token.\n   * The caller is responsible for sending notifications with the token.\n   * This allows for context-specific notifications (e.g., password reset vs email verification).\n   */\n  public async createVerification(\n    entry: VerificationEntry,\n  ): Promise<RequestVerificationResponse> {\n    this.log.trace(\"Creating verification\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const settings = this.verificationParameters.get(entry.type);\n\n    const recents = await this.findRecentsByEntry(entry);\n    if (recents.length >= settings.limitPerDay) {\n      this.log.warn(\"Daily verification limit reached\", {\n        type: entry.type,\n        target: entry.target,\n        limit: settings.limitPerDay,\n        count: recents.length,\n      });\n      throw new BadRequestError(\n        `Maximum number of verification requests per day reached (${settings.limitPerDay})`,\n      );\n    }\n\n    const existingVerification = recents[0];\n    if (existingVerification) {\n      const nowSec = this.dateTimeProvider.now().unix();\n      const createdAtSec = this.dateTimeProvider\n        .of(existingVerification.createdAt)\n        .unix();\n\n      const diffSec = nowSec - createdAtSec;\n      if (diffSec < settings.verificationCooldown) {\n        const remainingCooldown = Math.floor(\n          settings.verificationCooldown - diffSec,\n        );\n        this.log.debug(\"Verification on cooldown\", {\n          type: entry.type,\n          target: entry.target,\n          remainingSeconds: remainingCooldown,\n        });\n        throw new BadRequestError(\n          `Verification is on cooldown for ${remainingCooldown} seconds`,\n        );\n      }\n    }\n\n    const token = this.generateToken(entry.type);\n\n    const verification = await this.verificationRepository.create({\n      type: entry.type,\n      target: entry.target,\n      code: this.hashCode(token),\n    });\n\n    this.log.info(\"Verification created\", {\n      id: verification.id,\n      type: entry.type,\n      target: entry.target,\n      expiresInSeconds: settings.codeExpiration,\n    });\n\n    return {\n      token,\n      codeExpiration: settings.codeExpiration,\n      verificationCooldown: settings.verificationCooldown,\n      maxVerificationAttempts: settings.maxAttempts,\n    };\n  }\n\n  public async verifyCode(\n    entry: VerificationEntry,\n    code: string,\n  ): Promise<ValidateVerificationCodeResponse> {\n    this.log.trace(\"Verifying code\", {\n      type: entry.type,\n      target: entry.target,\n    });\n\n    const settings = this.verificationParameters.get(entry.type);\n\n    const verification = await this.findByEntry(entry);\n    if (verification.verifiedAt) {\n      this.log.debug(\"Verification already verified\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        verifiedAt: verification.verifiedAt,\n      });\n      return { ok: true, alreadyVerified: true };\n    }\n\n    // DO NOT DELETE THE VERIFICATION WHEN IT IS REJECTED,\n    // or we won't be able to cooldown the verification\n\n    const now = this.dateTimeProvider.now();\n    const expirationDate = this.dateTimeProvider\n      .of(verification.createdAt)\n      .add(settings.codeExpiration, \"seconds\");\n\n    if (now > expirationDate) {\n      this.log.warn(\"Verification code expired\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        createdAt: verification.createdAt,\n        expiredAt: expirationDate.toISOString(),\n      });\n      throw new BadRequestError(\"Verification code has expired\");\n    }\n\n    if (verification.attempts >= settings.maxAttempts) {\n      this.log.warn(\"Verification locked due to max attempts\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        attempts: verification.attempts,\n        maxAttempts: settings.maxAttempts,\n      });\n      throw new BadRequestError(\n        \"Maximum number of attempts reached - verification is locked\",\n      );\n    }\n\n    if (verification.code !== this.hashCode(code)) {\n      const newAttempts = verification.attempts + 1;\n      this.log.warn(\"Invalid verification code\", {\n        id: verification.id,\n        type: entry.type,\n        target: entry.target,\n        attempts: newAttempts,\n        maxAttempts: settings.maxAttempts,\n      });\n      await this.verificationRepository.updateById(verification.id, {\n        attempts: newAttempts,\n      });\n      throw new BadRequestError(\"Invalid verification code\");\n    }\n\n    await this.verificationRepository.updateById(verification.id, {\n      verifiedAt: this.dateTimeProvider.nowISOString(),\n    });\n\n    this.log.info(\"Verification code verified\", {\n      id: verification.id,\n      type: entry.type,\n      target: entry.target,\n    });\n\n    return { ok: true };\n  }\n\n  public hashCode(code: string): string {\n    return createHash(\"sha256\").update(code).digest(\"hex\");\n  }\n\n  public generateToken(type: VerificationTypeEnum): string {\n    if (type === \"code\") {\n      const settings = this.verificationParameters.get(\"code\");\n      return randomInt(0, 1_000_000)\n        .toString()\n        .padStart(settings.codeLength, \"0\");\n    } else if (type === \"link\") {\n      return randomUUID();\n    }\n\n    throw new BadRequestError(`Invalid verification type: ${type}`);\n  }\n}\n\nexport interface VerificationEntry {\n  type: VerificationTypeEnum;\n  target: string;\n}\n","import { $inject, t } from \"alepha\";\nimport { $action } from \"alepha/server\";\nimport { requestVerificationCodeResponseSchema } from \"../schemas/requestVerificationCodeResponseSchema.ts\";\nimport { validateVerificationCodeResponseSchema } from \"../schemas/validateVerificationCodeResponseSchema.ts\";\nimport { verificationTypeEnumSchema } from \"../schemas/verificationTypeEnumSchema.ts\";\nimport { VerificationService } from \"../services/VerificationService.ts\";\n\nexport class VerificationController {\n  protected readonly verificationService = $inject(VerificationService);\n\n  public readonly url = \"/verifications\";\n  public readonly group = \"verifications\";\n\n  public readonly requestVerificationCode = $action({\n    path: `${this.url}/:type`,\n    group: this.group,\n    method: \"POST\",\n    schema: {\n      params: t.object({\n        type: verificationTypeEnumSchema,\n      }),\n      body: t.object({\n        target: t.text(),\n      }),\n      response: requestVerificationCodeResponseSchema,\n    },\n    handler: async ({ body, params }) => {\n      return await this.verificationService.createVerification({\n        type: params.type,\n        target: body.target,\n      });\n    },\n  });\n\n  public readonly validateVerificationCode = $action({\n    path: `${this.url}/:type/validate`,\n    group: this.group,\n    method: \"POST\",\n    schema: {\n      params: t.object({\n        type: verificationTypeEnumSchema,\n      }),\n      body: t.object({\n        target: t.text(),\n        token: t.text({\n          description:\n            \"The verification token (6-digit code for phone, UUID for email).\",\n        }),\n      }),\n      response: validateVerificationCodeResponseSchema,\n    },\n    handler: async ({ body, params }) => {\n      return this.verificationService.verifyCode(\n        {\n          type: params.type,\n          target: body.target,\n        },\n        body.token,\n      );\n    },\n  });\n}\n","import { $inject } from \"alepha\";\nimport { DateTimeProvider } from \"alepha/datetime\";\nimport { $repository } from \"alepha/orm\";\nimport { $scheduler } from \"alepha/scheduler\";\nimport { verifications } from \"../entities/verifications.ts\";\nimport { VerificationParameters } from \"../parameters/VerificationParameters.ts\";\n\nexport class VerificationJobs {\n  protected readonly verificationRepository = $repository(verifications);\n  protected readonly verificationParameters = $inject(VerificationParameters);\n  protected readonly dateTimeProvider = $inject(DateTimeProvider);\n\n  public readonly cleanExpired = $scheduler({\n    cron: \"0 0 * * *\", // Every day at midnight\n    description: \"Clean expired verifications\",\n    handler: async () => {\n      const purgeDays = this.verificationParameters.get(\"purgeDays\");\n      if (purgeDays <= 0) {\n        return; // Auto deletion is disabled\n      }\n\n      const dayMs = 24 * 60 * 60 * 1000;\n      const purgeThreshold = Date.now() - purgeDays * dayMs;\n\n      await this.verificationRepository.deleteMany({\n        createdAt: {\n          lt: this.dateTimeProvider.of(purgeThreshold).toISOString(),\n        },\n      });\n    },\n  });\n}\n","import { $module } from \"alepha\";\nimport { VerificationController } from \"./controllers/VerificationController.ts\";\nimport { VerificationJobs } from \"./jobs/VerificationJobs.ts\";\nimport { VerificationParameters } from \"./parameters/VerificationParameters.ts\";\nimport { VerificationService } from \"./services/VerificationService.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\nexport * from \"./controllers/VerificationController.ts\";\nexport * from \"./entities/verifications.ts\";\nexport * from \"./schemas/requestVerificationCodeResponseSchema.ts\";\nexport * from \"./schemas/validateVerificationCodeResponseSchema.ts\";\nexport * from \"./schemas/verificationTypeEnumSchema.ts\";\nexport * from \"./services/VerificationService.ts\";\n\n// ---------------------------------------------------------------------------------------------------------------------\n\n/**\n * Provides email/phone verification management API endpoints for Alepha applications.\n *\n * This module includes verification code generation, validation,\n * and related functionalities. Notifications are handled by the consuming module\n * (e.g., api-users) for context-specific messaging.\n *\n * @module alepha.api.verifications\n */\nexport const AlephaApiVerification = $module({\n  name: \"alepha.api.verifications\",\n  services: [\n    VerificationController,\n    VerificationJobs,\n    VerificationService,\n    VerificationParameters,\n  ],\n});\n"],"mappings":";;;;;;;;;AAGA,MAAa,wCAAwC,EAAE,OAAO;CAC5D,OAAO,EAAE,OAAO,EACd,aACE,qJACH,CAAC;CACF,gBAAgB,EAAE,QAAQ,EACxB,aAAa,2DACd,CAAC;CACF,sBAAsB,EAAE,QAAQ,EAC9B,aACE,2EACH,CAAC;CACF,yBAAyB,EAAE,QAAQ,EACjC,aACE,+EACH,CAAC;CACH,CAAC;;;;AChBF,MAAa,yCAAyC,EAAE,OAAO;CAC7D,IAAI,EAAE,QAAQ,EACZ,aAAa,sDACd,CAAC;CACF,iBAAiB,EAAE,SACjB,EAAE,QAAQ,EACR,aAAa,sDACd,CAAC,CACH;CACF,CAAC;;;;ACTF,MAAa,6BAA6B,EAAE,KAAK,CAAC,QAAQ,OAAO,CAAC;;;;ACElE,MAAa,gBAAgB,QAAQ;CACnC,MAAM;CACN,QAAQ,EAAE,OAAO;EACf,IAAI,GAAG,WAAW,EAAE,QAAQ,CAAC;EAE7B,WAAW,GAAG,WAAW;EAEzB,WAAW,GAAG,WAAW;EAEzB,SAAS,GAAG,SAAS;EAErB,MAAM;EAEN,QAAQ,EAAE,KAAK,EACb,aAAa,kDACd,CAAC;EAEF,MAAM,EAAE,KAAK,EACX,aAAa,oDACd,CAAC;EAEF,YAAY,EAAE,SACZ,EAAE,SAAS,EACT,aAAa,qCACd,CAAC,CACH;EAED,UAAU,GAAG,QACX,EAAE,QAAQ,EACR,aAAa,sDACd,CAAC,EACF,EACD;EACF,CAAC;CACF,SAAS,CACP,aACA,EACE,SAAS,CAAC,UAAU,OAAO,EAC5B,CACF;CACF,CAAC;AAEF,MAAa,2BAA2B,cAAc;AACtD,MAAa,iCAAiC,cAAc;;;;AC7C5D,MAAa,6BAA6B,EAAE,OAAO;CACjD,MAAM,EAAE,OACN;EACE,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACF,YAAY,EAAE,QAAQ;GACpB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,gBAAgB,EAAE,QAAQ;GACxB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,sBAAsB,EAAE,QAAQ;GAC9B,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACH,EACD,EACE,aAAa,4CACd,CACF;CACD,MAAM,EAAE,OACN;EACE,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACF,gBAAgB,EAAE,QAAQ;GACxB,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,sBAAsB,EAAE,QAAQ;GAC9B,aAAa;GACb,SAAS;GACT,SAAS;GACV,CAAC;EACF,aAAa,EAAE,QAAQ;GACrB,aACE;GACF,SAAS;GACT,SAAS;GACV,CAAC;EACH,EACD,EACE,aAAa,4CACd,CACF;CACD,WAAW,EAAE,QAAQ;EACnB,aACE;EACF,SAAS;EACT,SAAS;EACV,CAAC;CACH,CAAC;;;;;;;AC9DF,MAAa,sBAAsB,MAAM;CACvC,MAAM;CACN,QAAQ;CACR,SAAS;EACP,MAAM;GACJ,aAAa;GACb,YAAY;GACZ,gBAAgB;GAChB,sBAAsB;GACtB,aAAa;GACd;EACD,MAAM;GACJ,aAAa;GACb,gBAAgB;GAChB,sBAAsB;GACtB,aAAa;GACd;EACD,WAAW;EACZ;CACF,CAAC;AAYF,IAAa,yBAAb,MAAoC;CAClC,AAAmB,UAAU,KAAK,oBAAoB;CAEtD,AAAO,IACL,KACyB;AACzB,SAAO,KAAK,QAAQ;;;;;;ACjCxB,IAAa,sBAAb,MAAiC;CAC/B,AAAmB,MAAM,SAAS;CAClC,AAAmB,mBAAmB,QAAQ,iBAAiB;CAC/D,AAAmB,yBAAyB,QAAQ,uBAAuB;CAC3E,AAAmB,yBAAyB,YAAY,cAAc;CAEtE,MAAa,YACX,OAC6B;AAC7B,OAAK,IAAI,MAAM,iCAAiC;GAC9C,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,UAAU,MAAM,KAAK,uBAAuB,SAAS;GACzD,OAAO;GACP,SAAS;IACP,QAAQ;IACR,WAAW;IACZ;GACD,OAAO;IACL,MAAM,EAAE,IAAI,MAAM,MAAM;IACxB,QAAQ,EAAE,IAAI,MAAM,QAAQ;IAC7B;GACF,CAAC;AAEF,MAAI,QAAQ,WAAW,GAAG;AACxB,QAAK,IAAI,MAAM,gCAAgC;IAC7C,MAAM,MAAM;IACZ,QAAQ,MAAM;IACf,CAAC;AACF,SAAM,IAAI,cAAc,+BAA+B;;AAGzD,OAAK,IAAI,MAAM,4BAA4B;GACzC,IAAI,QAAQ,GAAG;GACf,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,QAAQ;;CAGjB,AAAO,mBAAmB,OAA0B;AAClD,OAAK,IAAI,MAAM,yCAAyC;GACtD,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,KAAK,uBAAuB,SAAS;GAC1C,SAAS;IACP,QAAQ;IACR,WAAW;IACZ;GACD,OAAO;IACL,MAAM,EAAE,IAAI,MAAM,MAAM;IACxB,QAAQ,EAAE,IAAI,MAAM,QAAQ;IAC5B,WAAW,EACT,KAAK,KAAK,iBAAiB,KAAK,CAAC,QAAQ,MAAM,CAAC,aAAa,EAC9D;IACF;GACF,CAAC;;;;;;;CAQJ,MAAa,mBACX,OACsC;AACtC,OAAK,IAAI,MAAM,yBAAyB;GACtC,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,WAAW,KAAK,uBAAuB,IAAI,MAAM,KAAK;EAE5D,MAAM,UAAU,MAAM,KAAK,mBAAmB,MAAM;AACpD,MAAI,QAAQ,UAAU,SAAS,aAAa;AAC1C,QAAK,IAAI,KAAK,oCAAoC;IAChD,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,OAAO,SAAS;IAChB,OAAO,QAAQ;IAChB,CAAC;AACF,SAAM,IAAI,gBACR,4DAA4D,SAAS,YAAY,GAClF;;EAGH,MAAM,uBAAuB,QAAQ;AACrC,MAAI,sBAAsB;GAMxB,MAAM,UALS,KAAK,iBAAiB,KAAK,CAAC,MAAM,GAC5B,KAAK,iBACvB,GAAG,qBAAqB,UAAU,CAClC,MAAM;AAGT,OAAI,UAAU,SAAS,sBAAsB;IAC3C,MAAM,oBAAoB,KAAK,MAC7B,SAAS,uBAAuB,QACjC;AACD,SAAK,IAAI,MAAM,4BAA4B;KACzC,MAAM,MAAM;KACZ,QAAQ,MAAM;KACd,kBAAkB;KACnB,CAAC;AACF,UAAM,IAAI,gBACR,mCAAmC,kBAAkB,UACtD;;;EAIL,MAAM,QAAQ,KAAK,cAAc,MAAM,KAAK;EAE5C,MAAM,eAAe,MAAM,KAAK,uBAAuB,OAAO;GAC5D,MAAM,MAAM;GACZ,QAAQ,MAAM;GACd,MAAM,KAAK,SAAS,MAAM;GAC3B,CAAC;AAEF,OAAK,IAAI,KAAK,wBAAwB;GACpC,IAAI,aAAa;GACjB,MAAM,MAAM;GACZ,QAAQ,MAAM;GACd,kBAAkB,SAAS;GAC5B,CAAC;AAEF,SAAO;GACL;GACA,gBAAgB,SAAS;GACzB,sBAAsB,SAAS;GAC/B,yBAAyB,SAAS;GACnC;;CAGH,MAAa,WACX,OACA,MAC2C;AAC3C,OAAK,IAAI,MAAM,kBAAkB;GAC/B,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;EAEF,MAAM,WAAW,KAAK,uBAAuB,IAAI,MAAM,KAAK;EAE5D,MAAM,eAAe,MAAM,KAAK,YAAY,MAAM;AAClD,MAAI,aAAa,YAAY;AAC3B,QAAK,IAAI,MAAM,iCAAiC;IAC9C,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,YAAY,aAAa;IAC1B,CAAC;AACF,UAAO;IAAE,IAAI;IAAM,iBAAiB;IAAM;;EAM5C,MAAM,MAAM,KAAK,iBAAiB,KAAK;EACvC,MAAM,iBAAiB,KAAK,iBACzB,GAAG,aAAa,UAAU,CAC1B,IAAI,SAAS,gBAAgB,UAAU;AAE1C,MAAI,MAAM,gBAAgB;AACxB,QAAK,IAAI,KAAK,6BAA6B;IACzC,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,WAAW,aAAa;IACxB,WAAW,eAAe,aAAa;IACxC,CAAC;AACF,SAAM,IAAI,gBAAgB,gCAAgC;;AAG5D,MAAI,aAAa,YAAY,SAAS,aAAa;AACjD,QAAK,IAAI,KAAK,2CAA2C;IACvD,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,UAAU,aAAa;IACvB,aAAa,SAAS;IACvB,CAAC;AACF,SAAM,IAAI,gBACR,8DACD;;AAGH,MAAI,aAAa,SAAS,KAAK,SAAS,KAAK,EAAE;GAC7C,MAAM,cAAc,aAAa,WAAW;AAC5C,QAAK,IAAI,KAAK,6BAA6B;IACzC,IAAI,aAAa;IACjB,MAAM,MAAM;IACZ,QAAQ,MAAM;IACd,UAAU;IACV,aAAa,SAAS;IACvB,CAAC;AACF,SAAM,KAAK,uBAAuB,WAAW,aAAa,IAAI,EAC5D,UAAU,aACX,CAAC;AACF,SAAM,IAAI,gBAAgB,4BAA4B;;AAGxD,QAAM,KAAK,uBAAuB,WAAW,aAAa,IAAI,EAC5D,YAAY,KAAK,iBAAiB,cAAc,EACjD,CAAC;AAEF,OAAK,IAAI,KAAK,8BAA8B;GAC1C,IAAI,aAAa;GACjB,MAAM,MAAM;GACZ,QAAQ,MAAM;GACf,CAAC;AAEF,SAAO,EAAE,IAAI,MAAM;;CAGrB,AAAO,SAAS,MAAsB;AACpC,SAAO,WAAW,SAAS,CAAC,OAAO,KAAK,CAAC,OAAO,MAAM;;CAGxD,AAAO,cAAc,MAAoC;AACvD,MAAI,SAAS,QAAQ;GACnB,MAAM,WAAW,KAAK,uBAAuB,IAAI,OAAO;AACxD,UAAO,UAAU,GAAG,IAAU,CAC3B,UAAU,CACV,SAAS,SAAS,YAAY,IAAI;aAC5B,SAAS,OAClB,QAAO,YAAY;AAGrB,QAAM,IAAI,gBAAgB,8BAA8B,OAAO;;;;;;AClPnE,IAAa,yBAAb,MAAoC;CAClC,AAAmB,sBAAsB,QAAQ,oBAAoB;CAErE,AAAgB,MAAM;CACtB,AAAgB,QAAQ;CAExB,AAAgB,0BAA0B,QAAQ;EAChD,MAAM,GAAG,KAAK,IAAI;EAClB,OAAO,KAAK;EACZ,QAAQ;EACR,QAAQ;GACN,QAAQ,EAAE,OAAO,EACf,MAAM,4BACP,CAAC;GACF,MAAM,EAAE,OAAO,EACb,QAAQ,EAAE,MAAM,EACjB,CAAC;GACF,UAAU;GACX;EACD,SAAS,OAAO,EAAE,MAAM,aAAa;AACnC,UAAO,MAAM,KAAK,oBAAoB,mBAAmB;IACvD,MAAM,OAAO;IACb,QAAQ,KAAK;IACd,CAAC;;EAEL,CAAC;CAEF,AAAgB,2BAA2B,QAAQ;EACjD,MAAM,GAAG,KAAK,IAAI;EAClB,OAAO,KAAK;EACZ,QAAQ;EACR,QAAQ;GACN,QAAQ,EAAE,OAAO,EACf,MAAM,4BACP,CAAC;GACF,MAAM,EAAE,OAAO;IACb,QAAQ,EAAE,MAAM;IAChB,OAAO,EAAE,KAAK,EACZ,aACE,oEACH,CAAC;IACH,CAAC;GACF,UAAU;GACX;EACD,SAAS,OAAO,EAAE,MAAM,aAAa;AACnC,UAAO,KAAK,oBAAoB,WAC9B;IACE,MAAM,OAAO;IACb,QAAQ,KAAK;IACd,EACD,KAAK,MACN;;EAEJ,CAAC;;;;;ACrDJ,IAAa,mBAAb,MAA8B;CAC5B,AAAmB,yBAAyB,YAAY,cAAc;CACtE,AAAmB,yBAAyB,QAAQ,uBAAuB;CAC3E,AAAmB,mBAAmB,QAAQ,iBAAiB;CAE/D,AAAgB,eAAe,WAAW;EACxC,MAAM;EACN,aAAa;EACb,SAAS,YAAY;GACnB,MAAM,YAAY,KAAK,uBAAuB,IAAI,YAAY;AAC9D,OAAI,aAAa,EACf;GAIF,MAAM,iBAAiB,KAAK,KAAK,GAAG,aADtB,OAAU,KAAK;AAG7B,SAAM,KAAK,uBAAuB,WAAW,EAC3C,WAAW,EACT,IAAI,KAAK,iBAAiB,GAAG,eAAe,CAAC,aAAa,EAC3D,EACF,CAAC;;EAEL,CAAC;;;;;;;;;;;;;;ACJJ,MAAa,wBAAwB,QAAQ;CAC3C,MAAM;CACN,UAAU;EACR;EACA;EACA;EACA;EACD;CACF,CAAC"}

package/dist/bin/index.js

@@ -5,6 +5,7 @@ import { AlephaCli, version } from "alepha/cli";
 
 //#region ../../src/bin/index.ts
 const alepha = Alepha.create({ env: {
+	APP_NAME: "CLI",
 	LOG_LEVEL: "alepha.core:warn,info",
 	LOG_FORMAT: "raw",
 	CLI_NAME: "alepha",

package/dist/bin/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","names":[],"sources":["../../src/bin/index.ts"],"sourcesContent":["#!/usr/bin/env node\nimport \"tsx\";\nimport { Alepha, run } from \"alepha\";\nimport { AlephaCli, version } from \"alepha/cli\";\n\nconst alepha = Alepha.create({\n  env: {\n    LOG_LEVEL: \"alepha.core:warn,info\",\n    LOG_FORMAT: \"raw\",\n    CLI_NAME: \"alepha\",\n    CLI_DESCRIPTION: `Alepha CLI v${version} - Create and manage Alepha projects.`,\n  },\n});\n\nalepha.with(AlephaCli);\n\nrun(alepha);\n"],"mappings":";;;;;;AAKA,MAAM,SAAS,OAAO,OAAO,EAC3B,KAAK;CACH,WAAW;CACX,YAAY;CACZ,UAAU;CACV,iBAAiB,eAAe,QAAQ;CACzC,EACF,CAAC;AAEF,OAAO,KAAK,UAAU;AAEtB,IAAI,OAAO"}
+{"version":3,"file":"index.js","names":[],"sources":["../../src/bin/index.ts"],"sourcesContent":["#!/usr/bin/env node\nimport \"tsx\";\nimport { Alepha, run } from \"alepha\";\nimport { AlephaCli, version } from \"alepha/cli\";\n\nconst alepha = Alepha.create({\n  env: {\n    APP_NAME: \"CLI\",\n    LOG_LEVEL: \"alepha.core:warn,info\",\n    LOG_FORMAT: \"raw\",\n    CLI_NAME: \"alepha\",\n    CLI_DESCRIPTION: `Alepha CLI v${version} - Create and manage Alepha projects.`,\n  },\n});\n\nalepha.with(AlephaCli);\n\nrun(alepha);\n"],"mappings":";;;;;;AAKA,MAAM,SAAS,OAAO,OAAO,EAC3B,KAAK;CACH,UAAU;CACV,WAAW;CACX,YAAY;CACZ,UAAU;CACV,iBAAiB,eAAe,QAAQ;CACzC,EACF,CAAC;AAEF,OAAO,KAAK,UAAU;AAEtB,IAAI,OAAO"}

package/dist/cli/index.d.ts

@@ -1,9 +1,9 @@
 import * as alepha0 from "alepha";
 import { Alepha } from "alepha";
 import { FileSystemProvider } from "alepha/file";
-import * as alepha_command0 from "alepha/command";
-import { CliProvider } from "alepha/command";
-import * as alepha_logger3 from "alepha/logger";
+import * as alepha_command1 from "alepha/command";
+import { CliProvider, RunnerMethod } from "alepha/command";
+import * as alepha_logger2 from "alepha/logger";
 
 //#region ../../src/cli/apps/AlephaCli.d.ts
 declare const AlephaCli: alepha0.Service<alepha0.Module>;
@@ -20,7 +20,7 @@ declare class AlephaPackageBuilderCli {
   src: string;
   dist: string;
   fs: FileSystemProvider;
-  make: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  make: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
 }
 declare function analyzeModules(srcDir: string, packageName: string): Promise<Module[]>;
 //#endregion
@@ -36,22 +36,21 @@ declare function analyzeModules(srcDir: string, packageName: string): Promise<Mo
  * - Alepha instance loading
  */
 declare class AlephaCliUtils {
-  protected readonly log: alepha_logger3.Logger;
+  protected readonly log: alepha_logger2.Logger;
   protected readonly fs: FileSystemProvider;
   /**
    * Execute a command using npx with inherited stdio.
    *
-   * @param command - The command to execute (will be passed to npx)
-   * @param env - Optional environment variables to set for the command
-   * @returns Promise that resolves when the process exits
-   *
    * @example
    * ```ts
    * const runner = alepha.inject(ProcessRunner);
    * await runner.exec("tsx watch src/index.ts");
    * ```
    */
-  exec(command: string, env?: Record<string, string>): Promise<void>;
+  exec(command: string, options?: {
+    env?: Record<string, string>;
+    global?: boolean;
+  }): Promise<void>;
   /**
    * Write a configuration file to node_modules/.alepha directory.
    *
@@ -77,6 +76,8 @@ declare class AlephaCliUtils {
    * @param root - The root directory of the project
    */
   ensureYarn(root: string): Promise<void>;
+  ensurePnpm(root: string): Promise<void>;
+  ensureNpm(root: string): Promise<void>;
   /**
    * Generate package.json content with Alepha dependencies.
    *
@@ -107,6 +108,7 @@ declare class AlephaCliUtils {
     viteConfigTs?: boolean;
     indexHtml?: boolean;
     biomeJson?: boolean;
+    editorconfig?: boolean;
   }): Promise<void>;
   /**
    * Ensure tsconfig.json exists in the project.
@@ -130,6 +132,14 @@ declare class AlephaCliUtils {
    * Looks for an existing biome.json in the project root, or creates one if it doesn't exist.
    */
   ensureBiomeConfig(root: string): Promise<void>;
+  /**
+   * Ensure .editorconfig exists in the project.
+   *
+   * Creates a standard .editorconfig if none exists.
+   *
+   * @param root - The root directory of the project
+   */
+  ensureEditorConfig(root: string): Promise<void>;
   /**
    * Load Alepha instance from a server entry file.
    *
@@ -192,10 +202,51 @@ declare class AlephaCliUtils {
     provider?: string;
     logMessage: (providerName: string, dialect: string) => string;
   }): Promise<void>;
-  getPackageManager(root: string): Promise<"yarn" | "pnpm" | "npm">;
+  getPackageManager(root: string, flags?: {
+    yarn?: boolean;
+    pnpm?: boolean;
+    npm?: boolean;
+    bun?: boolean;
+  }): Promise<"yarn" | "pnpm" | "npm" | "bun">;
   ensureIndexHtml(root: string): Promise<void>;
   exists(root: string, dirName: string): Promise<boolean>;
+  /**
+   * Ensure src/main.ts exists with a minimal Alepha bootstrap.
+   *
+   * Creates the src directory and main.ts file if the src directory
+   * doesn't exist or is empty.
+   *
+   * @param root - The root directory of the project
+   */
+  ensureSrcMain(root: string): Promise<void>;
+  /**
+   * Ensure test directory exists with a dummy test file.
+   *
+   * Creates the test directory and a dummy.spec.ts file if the test directory
+   * doesn't exist or is empty.
+   *
+   * @param root - The root directory of the project
+   */
+  ensureTestDir(root: string): Promise<void>;
   readPackageJson(root: string): Promise<Record<string, any>>;
+  /**
+   * Check if a dependency is installed in the project.
+   *
+   * @param root - The root directory of the project
+   * @param packageName - The name of the package to check
+   * @returns True if the package is in dependencies or devDependencies
+   */
+  hasDependency(root: string, packageName: string): Promise<boolean>;
+  /**
+   * Install a dependency if it's missing from the project.
+   *
+   * Automatically detects the package manager (yarn, pnpm, npm) and installs
+   * the package as a dev dependency if not already present.
+   */
+  ensureDependency(root: string, packageName: string, options?: {
+    dev?: boolean;
+    run?: RunnerMethod;
+  }): Promise<void>;
 }
 interface DependencyModes {
   react?: boolean;
@@ -204,47 +255,50 @@ interface DependencyModes {
 //#endregion
 //#region ../../src/cli/commands/BiomeCommands.d.ts
 declare class BiomeCommands {
-  protected readonly log: alepha_logger3.Logger;
+  protected readonly log: alepha_logger2.Logger;
   protected readonly utils: AlephaCliUtils;
-  readonly format: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
-  readonly lint: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly format: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly lint: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
 }
 //#endregion
 //#region ../../src/cli/commands/CoreCommands.d.ts
 declare class CoreCommands {
-  protected readonly log: alepha_logger3.Logger;
+  protected readonly log: alepha_logger2.Logger;
   protected readonly cli: CliProvider;
   protected readonly utils: AlephaCliUtils;
   /**
    * Called when no command is provided
    */
-  readonly root: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  readonly root: alepha_command1.CommandPrimitive<alepha0.TObject<{
     version: alepha0.TOptional<alepha0.TBoolean>;
   }>, alepha0.TSchema>;
   /**
    * Clean the project, removing the "dist" directory
    */
-  readonly clean: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly clean: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
   /**
    * Ensure the project has the necessary Alepha configuration files.
    * Add the correct dependencies to package.json and install them.
    */
-  readonly init: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  readonly init: alepha_command1.CommandPrimitive<alepha0.TObject<{
     yarn: alepha0.TOptional<alepha0.TBoolean>;
     pnpm: alepha0.TOptional<alepha0.TBoolean>;
+    npm: alepha0.TOptional<alepha0.TBoolean>;
+    bun: alepha0.TOptional<alepha0.TBoolean>;
     react: alepha0.TOptional<alepha0.TBoolean>;
     ui: alepha0.TOptional<alepha0.TBoolean>;
+    test: alepha0.TOptional<alepha0.TBoolean>;
   }>, alepha0.TSchema>;
 }
 //#endregion
 //#region ../../src/cli/commands/DrizzleCommands.d.ts
 declare class DrizzleCommands {
-  log: alepha_logger3.Logger;
+  log: alepha_logger2.Logger;
   utils: AlephaCliUtils;
   /**
    * Check if database migrations are up to date.
    */
-  check: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  check: alepha_command1.CommandPrimitive<alepha0.TObject<{
     provider: alepha0.TOptional<alepha0.TString>;
   }>, alepha0.TOptional<alepha0.TString>>;
   /**
@@ -256,7 +310,7 @@ declare class DrizzleCommands {
    * - Writes these definitions to a temporary schema file. (node_modules/.db/entities.ts)
    * - Invokes Drizzle Kit's CLI to generate migration files based on the current schema.
    */
-  generate: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  generate: alepha_command1.CommandPrimitive<alepha0.TObject<{
     provider: alepha0.TOptional<alepha0.TString>;
     custom: alepha0.TOptional<alepha0.TString>;
   }>, alepha0.TOptional<alepha0.TString>>;
@@ -268,7 +322,7 @@ declare class DrizzleCommands {
    * - Creates temporary entity definitions and Drizzle config.
    * - Invokes Drizzle Kit's push command to apply schema changes directly.
    */
-  push: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  push: alepha_command1.CommandPrimitive<alepha0.TObject<{
     provider: alepha0.TOptional<alepha0.TString>;
   }>, alepha0.TOptional<alepha0.TString>>;
   /**
@@ -279,7 +333,7 @@ declare class DrizzleCommands {
    * - Creates temporary entity definitions and Drizzle config.
    * - Invokes Drizzle Kit's migrate command to apply pending migrations.
    */
-  migrate: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  migrate: alepha_command1.CommandPrimitive<alepha0.TObject<{
     provider: alepha0.TOptional<alepha0.TString>;
   }>, alepha0.TOptional<alepha0.TString>>;
   /**
@@ -290,7 +344,7 @@ declare class DrizzleCommands {
    * - Creates temporary entity definitions and Drizzle config.
    * - Invokes Drizzle Kit's studio command to launch the web-based database browser.
    */
-  studio: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  studio: alepha_command1.CommandPrimitive<alepha0.TObject<{
     provider: alepha0.TOptional<alepha0.TString>;
   }>, alepha0.TOptional<alepha0.TString>>;
 }
@@ -311,21 +365,21 @@ declare class VerifyCommands {
    * - Build the project
    * - Clean the project again
    */
-  readonly verify: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly verify: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
   /**
    * Run TypeScript type checking across the codebase with no emit.
    */
-  readonly typecheck: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly typecheck: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
 }
 //#endregion
 //#region ../../src/cli/commands/ViteCommands.d.ts
 declare class ViteCommands {
-  protected readonly log: alepha_logger3.Logger;
+  protected readonly log: alepha_logger2.Logger;
   protected readonly utils: AlephaCliUtils;
   protected readonly env: {
     VITEST_ARGS: string;
   };
-  readonly run: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  readonly run: alepha_command1.CommandPrimitive<alepha0.TObject<{
     watch: alepha0.TOptional<alepha0.TBoolean>;
   }>, alepha0.TString>;
   /**
@@ -334,8 +388,8 @@ declare class ViteCommands {
    * - If an index.html file is found in the project root, it will run Vite in dev mode.
    * - Otherwise, it will look for a server entry file and run it with tsx in watch mode.
    */
-  readonly dev: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TOptional<alepha0.TString>>;
-  readonly build: alepha_command0.CommandPrimitive<alepha0.TObject<{
+  readonly dev: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TOptional<alepha0.TString>>;
+  readonly build: alepha_command1.CommandPrimitive<alepha0.TObject<{
     stats: alepha0.TOptional<alepha0.TBoolean>;
     vercel: alepha0.TOptional<alepha0.TBoolean>;
     cloudflare: alepha0.TOptional<alepha0.TBoolean>;
@@ -343,7 +397,7 @@ declare class ViteCommands {
     sitemap: alepha0.TOptional<alepha0.TString>;
     prerender: alepha0.TOptional<alepha0.TBoolean>;
   }>, alepha0.TOptional<alepha0.TString>>;
-  readonly test: alepha_command0.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
+  readonly test: alepha_command1.CommandPrimitive<alepha0.TObject<alepha0.TProperties>, alepha0.TSchema>;
 }
 //#endregion
 //#region ../../src/cli/version.d.ts