npm - alepha - Versions diffs - 0.14.4 → 0.15.0 - Mend

alepha 0.14.4 → 0.15.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (277) hide show

package/README.md +1 -4
package/dist/api/audits/index.d.ts +619 -731
package/dist/api/audits/index.d.ts.map +1 -1
package/dist/api/files/index.d.ts +185 -298
package/dist/api/files/index.d.ts.map +1 -1
package/dist/api/files/index.js +0 -1
package/dist/api/files/index.js.map +1 -1
package/dist/api/jobs/index.d.ts +245 -356
package/dist/api/jobs/index.d.ts.map +1 -1
package/dist/api/notifications/index.d.ts +238 -350
package/dist/api/notifications/index.d.ts.map +1 -1
package/dist/api/parameters/index.d.ts +499 -611
package/dist/api/parameters/index.d.ts.map +1 -1
package/dist/api/users/index.browser.js +1 -2
package/dist/api/users/index.browser.js.map +1 -1
package/dist/api/users/index.d.ts +1697 -1804
package/dist/api/users/index.d.ts.map +1 -1
package/dist/api/users/index.js +178 -151
package/dist/api/users/index.js.map +1 -1
package/dist/api/verifications/index.d.ts +132 -132
package/dist/api/verifications/index.d.ts.map +1 -1
package/dist/batch/index.d.ts +122 -122
package/dist/batch/index.d.ts.map +1 -1
package/dist/batch/index.js +1 -2
package/dist/batch/index.js.map +1 -1
package/dist/bucket/index.d.ts +163 -163
package/dist/bucket/index.d.ts.map +1 -1
package/dist/cache/core/index.d.ts +46 -46
package/dist/cache/core/index.d.ts.map +1 -1
package/dist/cache/redis/index.d.ts.map +1 -1
package/dist/cli/index.d.ts +302 -299
package/dist/cli/index.d.ts.map +1 -1
package/dist/cli/index.js +966 -564
package/dist/cli/index.js.map +1 -1
package/dist/command/index.d.ts +303 -299
package/dist/command/index.d.ts.map +1 -1
package/dist/command/index.js +11 -7
package/dist/command/index.js.map +1 -1
package/dist/core/index.browser.js +419 -99
package/dist/core/index.browser.js.map +1 -1
package/dist/core/index.d.ts +718 -625
package/dist/core/index.d.ts.map +1 -1
package/dist/core/index.js +420 -99
package/dist/core/index.js.map +1 -1
package/dist/core/index.native.js +419 -99
package/dist/core/index.native.js.map +1 -1
package/dist/datetime/index.d.ts +44 -44
package/dist/datetime/index.d.ts.map +1 -1
package/dist/datetime/index.js +4 -4
package/dist/datetime/index.js.map +1 -1
package/dist/email/index.d.ts +97 -50
package/dist/email/index.d.ts.map +1 -1
package/dist/email/index.js +129 -33
package/dist/email/index.js.map +1 -1
package/dist/fake/index.d.ts +7981 -14
package/dist/fake/index.d.ts.map +1 -1
package/dist/file/index.d.ts +523 -390
package/dist/file/index.d.ts.map +1 -1
package/dist/file/index.js +253 -1
package/dist/file/index.js.map +1 -1
package/dist/lock/core/index.d.ts +208 -208
package/dist/lock/core/index.d.ts.map +1 -1
package/dist/lock/redis/index.d.ts.map +1 -1
package/dist/logger/index.d.ts +25 -26
package/dist/logger/index.d.ts.map +1 -1
package/dist/mcp/index.d.ts +197 -197
package/dist/mcp/index.d.ts.map +1 -1
package/dist/orm/chunk-DtkW-qnP.js +38 -0
package/dist/orm/index.browser.js.map +1 -1
package/dist/orm/index.bun.js +2814 -0
package/dist/orm/index.bun.js.map +1 -0
package/dist/orm/index.d.ts +1205 -1057
package/dist/orm/index.d.ts.map +1 -1
package/dist/orm/index.js +2056 -1753
package/dist/orm/index.js.map +1 -1
package/dist/queue/core/index.d.ts +248 -248
package/dist/queue/core/index.d.ts.map +1 -1
package/dist/queue/redis/index.d.ts.map +1 -1
package/dist/redis/index.bun.js +285 -0
package/dist/redis/index.bun.js.map +1 -0
package/dist/redis/index.d.ts +118 -136
package/dist/redis/index.d.ts.map +1 -1
package/dist/redis/index.js +18 -38
package/dist/redis/index.js.map +1 -1
package/dist/retry/index.d.ts +69 -69
package/dist/retry/index.d.ts.map +1 -1
package/dist/router/index.d.ts +6 -6
package/dist/router/index.d.ts.map +1 -1
package/dist/scheduler/index.d.ts +25 -25
package/dist/scheduler/index.d.ts.map +1 -1
package/dist/security/index.browser.js +5 -1
package/dist/security/index.browser.js.map +1 -1
package/dist/security/index.d.ts +417 -254
package/dist/security/index.d.ts.map +1 -1
package/dist/security/index.js +386 -86
package/dist/security/index.js.map +1 -1
package/dist/server/auth/index.d.ts +277 -277
package/dist/server/auth/index.d.ts.map +1 -1
package/dist/server/auth/index.js +20 -20
package/dist/server/auth/index.js.map +1 -1
package/dist/server/cache/index.d.ts +60 -57
package/dist/server/cache/index.d.ts.map +1 -1
package/dist/server/cache/index.js +1 -1
package/dist/server/cache/index.js.map +1 -1
package/dist/server/compress/index.d.ts +3 -3
package/dist/server/compress/index.d.ts.map +1 -1
package/dist/server/cookies/index.d.ts +6 -6
package/dist/server/cookies/index.d.ts.map +1 -1
package/dist/server/cookies/index.js +3 -3
package/dist/server/cookies/index.js.map +1 -1
package/dist/server/core/index.d.ts +242 -150
package/dist/server/core/index.d.ts.map +1 -1
package/dist/server/core/index.js +288 -122
package/dist/server/core/index.js.map +1 -1
package/dist/server/cors/index.d.ts +11 -12
package/dist/server/cors/index.d.ts.map +1 -1
package/dist/server/health/index.d.ts +0 -1
package/dist/server/health/index.d.ts.map +1 -1
package/dist/server/helmet/index.d.ts +2 -2
package/dist/server/helmet/index.d.ts.map +1 -1
package/dist/server/links/index.browser.js.map +1 -1
package/dist/server/links/index.d.ts +84 -85
package/dist/server/links/index.d.ts.map +1 -1
package/dist/server/links/index.js +1 -2
package/dist/server/links/index.js.map +1 -1
package/dist/server/metrics/index.d.ts.map +1 -1
package/dist/server/multipart/index.d.ts +6 -6
package/dist/server/multipart/index.d.ts.map +1 -1
package/dist/server/proxy/index.d.ts +102 -103
package/dist/server/proxy/index.d.ts.map +1 -1
package/dist/server/rate-limit/index.d.ts +16 -16
package/dist/server/rate-limit/index.d.ts.map +1 -1
package/dist/server/static/index.d.ts +44 -44
package/dist/server/static/index.d.ts.map +1 -1
package/dist/server/swagger/index.d.ts +48 -49
package/dist/server/swagger/index.d.ts.map +1 -1
package/dist/server/swagger/index.js +1 -2
package/dist/server/swagger/index.js.map +1 -1
package/dist/sms/index.d.ts +13 -11
package/dist/sms/index.d.ts.map +1 -1
package/dist/sms/index.js +7 -7
package/dist/sms/index.js.map +1 -1
package/dist/thread/index.d.ts +71 -72
package/dist/thread/index.d.ts.map +1 -1
package/dist/topic/core/index.d.ts +318 -318
package/dist/topic/core/index.d.ts.map +1 -1
package/dist/topic/redis/index.d.ts +6 -6
package/dist/topic/redis/index.d.ts.map +1 -1
package/dist/vite/index.d.ts +5720 -159
package/dist/vite/index.d.ts.map +1 -1
package/dist/vite/index.js +41 -18
package/dist/vite/index.js.map +1 -1
package/dist/websocket/index.browser.js +6 -6
package/dist/websocket/index.browser.js.map +1 -1
package/dist/websocket/index.d.ts +247 -247
package/dist/websocket/index.d.ts.map +1 -1
package/dist/websocket/index.js +6 -6
package/dist/websocket/index.js.map +1 -1
package/package.json +9 -14
package/src/api/files/controllers/AdminFileStatsController.ts +0 -1
package/src/api/users/atoms/realmAuthSettingsAtom.ts +5 -0
package/src/api/users/controllers/{UserRealmController.ts → RealmController.ts} +11 -11
package/src/api/users/entities/users.ts +1 -1
package/src/api/users/index.ts +8 -8
package/src/api/users/primitives/{$userRealm.ts → $realm.ts} +17 -19
package/src/api/users/providers/{UserRealmProvider.ts → RealmProvider.ts} +26 -30
package/src/api/users/schemas/{userRealmConfigSchema.ts → realmConfigSchema.ts} +2 -2
package/src/api/users/services/CredentialService.ts +7 -7
package/src/api/users/services/IdentityService.ts +4 -4
package/src/api/users/services/RegistrationService.spec.ts +25 -27
package/src/api/users/services/RegistrationService.ts +38 -27
package/src/api/users/services/SessionCrudService.ts +3 -3
package/src/api/users/services/SessionService.spec.ts +3 -3
package/src/api/users/services/SessionService.ts +28 -9
package/src/api/users/services/UserService.ts +7 -7
package/src/batch/providers/BatchProvider.ts +1 -2
package/src/cli/apps/AlephaPackageBuilderCli.ts +38 -19
package/src/cli/assets/apiHelloControllerTs.ts +18 -0
package/src/cli/assets/apiIndexTs.ts +16 -0
package/src/cli/assets/claudeMd.ts +303 -0
package/src/cli/assets/mainBrowserTs.ts +2 -2
package/src/cli/assets/mainServerTs.ts +24 -0
package/src/cli/assets/webAppRouterTs.ts +15 -0
package/src/cli/assets/webHelloComponentTsx.ts +16 -0
package/src/cli/assets/webIndexTs.ts +16 -0
package/src/cli/commands/build.ts +41 -21
package/src/cli/commands/db.ts +21 -18
package/src/cli/commands/deploy.ts +17 -5
package/src/cli/commands/dev.ts +13 -17
package/src/cli/commands/format.ts +8 -2
package/src/cli/commands/init.ts +74 -29
package/src/cli/commands/lint.ts +8 -2
package/src/cli/commands/test.ts +8 -2
package/src/cli/commands/typecheck.ts +5 -1
package/src/cli/commands/verify.ts +4 -2
package/src/cli/services/AlephaCliUtils.ts +39 -600
package/src/cli/services/PackageManagerUtils.ts +301 -0
package/src/cli/services/ProjectScaffolder.ts +306 -0
package/src/command/helpers/Runner.ts +15 -3
package/src/core/__tests__/Alepha-graph.spec.ts +4 -0
package/src/core/index.shared.ts +1 -0
package/src/core/index.ts +2 -0
package/src/core/primitives/$hook.ts +6 -2
package/src/core/primitives/$module.spec.ts +4 -0
package/src/core/providers/AlsProvider.ts +1 -1
package/src/core/providers/CodecManager.spec.ts +12 -6
package/src/core/providers/CodecManager.ts +26 -6
package/src/core/providers/EventManager.ts +169 -13
package/src/core/providers/KeylessJsonSchemaCodec.spec.ts +621 -0
package/src/core/providers/KeylessJsonSchemaCodec.ts +407 -0
package/src/core/providers/StateManager.spec.ts +27 -16
package/src/email/providers/LocalEmailProvider.spec.ts +111 -87
package/src/email/providers/LocalEmailProvider.ts +52 -15
package/src/email/providers/NodemailerEmailProvider.ts +167 -56
package/src/file/errors/FileError.ts +7 -0
package/src/file/index.ts +9 -1
package/src/file/providers/MemoryFileSystemProvider.ts +393 -0
package/src/orm/index.browser.ts +1 -19
package/src/orm/index.bun.ts +77 -0
package/src/orm/index.shared-server.ts +22 -0
package/src/orm/index.shared.ts +15 -0
package/src/orm/index.ts +19 -39
package/src/orm/providers/drivers/BunPostgresProvider.ts +3 -5
package/src/orm/providers/drivers/BunSqliteProvider.ts +1 -1
package/src/orm/providers/drivers/CloudflareD1Provider.ts +4 -0
package/src/orm/providers/drivers/DatabaseProvider.ts +4 -0
package/src/orm/providers/drivers/PglitePostgresProvider.ts +4 -0
package/src/orm/services/Repository.ts +8 -0
package/src/redis/index.bun.ts +35 -0
package/src/redis/providers/BunRedisProvider.ts +12 -43
package/src/redis/providers/BunRedisSubscriberProvider.ts +2 -3
package/src/redis/providers/NodeRedisProvider.ts +16 -34
package/src/{server/security → security}/__tests__/BasicAuth.spec.ts +11 -11
package/src/{server/security → security}/__tests__/ServerSecurityProvider-realm.spec.ts +21 -16
package/src/{server/security/providers → security/__tests__}/ServerSecurityProvider.spec.ts +5 -5
package/src/security/index.browser.ts +5 -0
package/src/security/index.ts +90 -7
package/src/security/primitives/{$realm.spec.ts → $issuer.spec.ts} +11 -11
package/src/security/primitives/{$realm.ts → $issuer.ts} +20 -17
package/src/security/primitives/$role.ts +5 -5
package/src/security/primitives/$serviceAccount.spec.ts +5 -5
package/src/security/primitives/$serviceAccount.ts +3 -3
package/src/{server/security → security}/providers/ServerSecurityProvider.ts +5 -7
package/src/server/auth/primitives/$auth.ts +10 -10
package/src/server/auth/primitives/$authCredentials.ts +3 -3
package/src/server/auth/primitives/$authGithub.ts +3 -3
package/src/server/auth/primitives/$authGoogle.ts +3 -3
package/src/server/auth/providers/ServerAuthProvider.ts +13 -13
package/src/server/cache/providers/ServerCacheProvider.ts +1 -1
package/src/server/cookies/providers/ServerCookiesProvider.ts +3 -3
package/src/server/core/providers/NodeHttpServerProvider.ts +25 -6
package/src/server/core/providers/ServerBodyParserProvider.ts +19 -23
package/src/server/core/providers/ServerLoggerProvider.ts +23 -19
package/src/server/core/providers/ServerProvider.ts +144 -21
package/src/server/core/providers/ServerRouterProvider.ts +259 -115
package/src/server/core/providers/ServerTimingProvider.ts +2 -2
package/src/server/links/index.ts +1 -1
package/src/server/links/providers/LinkProvider.ts +1 -1
package/src/server/swagger/index.ts +1 -1
package/src/sms/providers/LocalSmsProvider.spec.ts +153 -111
package/src/sms/providers/LocalSmsProvider.ts +8 -7
package/src/vite/helpers/boot.ts +28 -17
package/src/vite/tasks/buildServer.ts +12 -1
package/src/vite/tasks/devServer.ts +3 -1
package/src/vite/tasks/generateCloudflare.ts +7 -0
package/dist/server/security/index.browser.js +0 -13
package/dist/server/security/index.browser.js.map +0 -1
package/dist/server/security/index.d.ts +0 -173
package/dist/server/security/index.d.ts.map +0 -1
package/dist/server/security/index.js +0 -311
package/dist/server/security/index.js.map +0 -1
package/src/cli/assets/appRouterTs.ts +0 -9
package/src/cli/assets/mainTs.ts +0 -13
package/src/server/security/index.browser.ts +0 -10
package/src/server/security/index.ts +0 -94
/package/src/{server/security → security}/primitives/$basicAuth.ts +0 -0
/package/src/{server/security → security}/providers/ServerBasicAuthProvider.ts +0 -0

package/src/api/users/services/RegistrationService.ts CHANGED Viewed

@@ -10,7 +10,7 @@ import { BadRequestError, ConflictError, HttpError } from "alepha/server";
 import { $client } from "alepha/server/links";
 import type { UserEntity } from "../entities/users.ts";
 import { UserNotifications } from "../notifications/UserNotifications.ts";
-import { UserRealmProvider } from "../providers/UserRealmProvider.ts";
+import { RealmProvider } from "../providers/RealmProvider.ts";
 import type { CompleteRegistrationRequest } from "../schemas/completeRegistrationRequestSchema.ts";
 import type { RegisterRequest } from "../schemas/registerRequestSchema.ts";
 import type { RegistrationIntentResponse } from "../schemas/registrationIntentResponseSchema.ts";
@@ -45,7 +45,7 @@ export class RegistrationService {
   protected readonly cryptoProvider = $inject(CryptoProvider);
   protected readonly verificationController = $client<VerificationController>();
   protected readonly userNotifications = $inject(UserNotifications);
-  protected readonly userRealmProvider = $inject(UserRealmProvider);
+  protected readonly realmProvider = $inject(RealmProvider);
   protected readonly auditService = $inject(AuditService);
   protected readonly intentCache = $cache<RegistrationIntent>({
@@ -69,9 +69,7 @@ export class RegistrationService {
       userRealmName,
     });
-    const realmSettings =
-      this.userRealmProvider.getRealm(userRealmName).settings;
-    const userRepository = this.userRealmProvider.userRepository(userRealmName);
+    const realmSettings = this.realmProvider.getRealm(userRealmName).settings;
     // Check if registration is allowed
     if (realmSettings?.registrationAllowed === false) {
@@ -87,6 +85,22 @@ export class RegistrationService {
       throw new BadRequestError("Username is required");
     }
+    if (body.username) {
+      const usernameRegExp = realmSettings?.usernameRegExp;
+      if (usernameRegExp) {
+        const regex = new RegExp(usernameRegExp);
+        if (!regex.test(body.username)) {
+          this.log.debug("Registration rejected: username regex mismatch", {
+            userRealmName,
+            username: body.username,
+          });
+          throw new BadRequestError(
+            "Username does not meet the required format",
+          );
+        }
+      }
+    }
     if (realmSettings?.emailRequired !== false && !body.email) {
       this.log.debug("Registration rejected: email required", {
         userRealmName,
@@ -189,9 +203,9 @@ export class RegistrationService {
     }
     const userRealmName = intent.realmName;
-    const userRepository = this.userRealmProvider.userRepository(userRealmName);
+    const userRepository = this.realmProvider.userRepository(userRealmName);
     const identityRepository =
-      this.userRealmProvider.identityRepository(userRealmName);
+      this.realmProvider.identityRepository(userRealmName);
     // Validate email verification if required
     if (intent.requirements.email) {
@@ -275,7 +289,7 @@ export class RegistrationService {
       username: user.username,
     });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     await this.auditService.recordUser("create", {
       userId: user.id,
@@ -301,7 +315,7 @@ export class RegistrationService {
     body: Pick<RegisterRequest, "username" | "email" | "phoneNumber">,
     userRealmName?: string,
   ): Promise<void> {
-    const userRepository = this.userRealmProvider.userRepository(userRealmName);
+    const userRepository = this.realmProvider.userRepository(userRealmName);
     if (body.username) {
       const existingUser = await userRepository
@@ -341,26 +355,23 @@ export class RegistrationService {
    */
   protected async sendEmailVerification(email: string): Promise<void> {
     this.log.debug("Sending email verification code", { email });
-    try {
-      const verification =
-        await this.verificationController.requestVerificationCode({
-          params: { type: "code" },
-          body: { target: email },
-        });
-      await this.userNotifications.emailVerification.push({
-        contact: email,
-        variables: {
-          email,
-          code: verification.token,
-          expiresInMinutes: Math.floor(verification.codeExpiration / 60),
-        },
+    const verification =
+      await this.verificationController.requestVerificationCode({
+        params: { type: "code" },
+        body: { target: email },
       });
-      this.log.debug("Email verification code sent", { email });
-    } catch (error) {
-      // Silent fail - verification service may have rate limiting
-      this.log.warn("Failed to send email verification code", error);
-    }
+    await this.userNotifications.emailVerification.push({
+      contact: email,
+      variables: {
+        email,
+        code: verification.token,
+        expiresInMinutes: Math.floor(verification.codeExpiration / 60),
+      },
+    });
+    this.log.debug("Email verification code sent", { email });
   }
   /**

package/src/api/users/services/SessionCrudService.ts CHANGED Viewed

@@ -2,15 +2,15 @@ import { $inject } from "alepha";
 import { $logger } from "alepha/logger";
 import type { Page } from "alepha/orm";
 import type { SessionEntity } from "../entities/sessions.ts";
-import { UserRealmProvider } from "../providers/UserRealmProvider.ts";
+import { RealmProvider } from "../providers/RealmProvider.ts";
 import type { SessionQuery } from "../schemas/sessionQuerySchema.ts";
 export class SessionCrudService {
   protected readonly log = $logger();
-  protected readonly userRealmProvider = $inject(UserRealmProvider);
+  protected readonly realmProvider = $inject(RealmProvider);
   public sessions(userRealmName?: string) {
-    return this.userRealmProvider.sessionRepository(userRealmName);
+    return this.realmProvider.sessionRepository(userRealmName);
   }
   /**

package/src/api/users/services/SessionService.spec.ts CHANGED Viewed

@@ -7,8 +7,8 @@ import {
 import { describe, it } from "vitest";
 import {
   AlephaApiUsers,
+  RealmProvider,
   SessionService,
-  UserRealmProvider,
   UserService,
 } from "../index.ts";
@@ -26,8 +26,8 @@ const setup = async (options?: { usernameEnabled?: boolean }) => {
   // Configure realm settings if provided
   if (options?.usernameEnabled) {
-    const userRealmProvider = alepha.inject(UserRealmProvider);
-    userRealmProvider.register("default", {
+    const realmProvider = alepha.inject(RealmProvider);
+    realmProvider.register("default", {
       settings: {
         usernameEnabled: true,
       } as never,

package/src/api/users/services/SessionService.ts CHANGED Viewed

@@ -14,7 +14,7 @@ import { type ServerRequest, UnauthorizedError } from "alepha/server";
 import type { OAuth2Profile } from "alepha/server/auth";
 import { $client } from "alepha/server/links";
 import type { UserEntity } from "../entities/users.ts";
-import { UserRealmProvider } from "../providers/UserRealmProvider.ts";
+import { RealmProvider } from "../providers/RealmProvider.ts";
 export class SessionService {
   protected readonly alepha = $inject(Alepha);
@@ -22,20 +22,20 @@ export class SessionService {
   protected readonly dateTimeProvider = $inject(DateTimeProvider);
   protected readonly cryptoProvider = $inject(CryptoProvider);
   protected readonly log = $logger();
-  protected readonly userRealmProvider = $inject(UserRealmProvider);
+  protected readonly realmProvider = $inject(RealmProvider);
   protected readonly fileController = $client<FileController>();
   protected readonly auditService = $inject(AuditService);
   public users(userRealmName?: string) {
-    return this.userRealmProvider.userRepository(userRealmName);
+    return this.realmProvider.userRepository(userRealmName);
   }
   public sessions(userRealmName?: string) {
-    return this.userRealmProvider.sessionRepository(userRealmName);
+    return this.realmProvider.sessionRepository(userRealmName);
   }
   public identities(userRealmName?: string) {
-    return this.userRealmProvider.identityRepository(userRealmName);
+    return this.realmProvider.identityRepository(userRealmName);
   }
   /**
@@ -55,7 +55,7 @@ export class SessionService {
     password: string,
     userRealmName?: string,
   ): Promise<UserEntity> {
-    const { settings, name } = this.userRealmProvider.getRealm(userRealmName);
+    const { settings, name } = this.realmProvider.getRealm(userRealmName);
     const isEmail = username.includes("@");
     const isPhone = /^[+\d][\d\s()-]+$/.test(username);
     const isUsername = !isEmail && !isPhone;
@@ -70,6 +70,25 @@ export class SessionService {
       where.realm = name;
       if (settings.usernameEnabled !== false && isUsername) {
+        // validate username format if regex is provided
+        if (settings.usernameRegExp) {
+          const regex = new RegExp(settings.usernameRegExp);
+          if (!regex.test(username)) {
+            this.log.warn("Username does not match required format", {
+              provider,
+              username,
+              realm: name,
+            });
+            await this.auditService.recordAuth("login_failed", {
+              userRealm: name,
+              description: "Username does not match required format",
+              metadata: { provider, username },
+            });
+            throw new InvalidCredentialsError();
+          }
+        }
         where.username = username;
       } else if (settings.emailEnabled !== false && isEmail) {
         where.email = username;
@@ -237,7 +256,7 @@ export class SessionService {
       userId: session.userId,
     });
-    const { name } = this.userRealmProvider.getRealm(userRealmName);
+    const { name } = this.realmProvider.getRealm(userRealmName);
     await this.auditService.recordAuth("token_refresh", {
       userId: user.id,
@@ -270,7 +289,7 @@ export class SessionService {
     this.log.debug("Session deleted");
     if (session) {
-      const { name } = this.userRealmProvider.getRealm(userRealmName);
+      const { name } = this.realmProvider.getRealm(userRealmName);
       await this.auditService.recordAuth("logout", {
         userId: session.userId,
@@ -292,7 +311,7 @@ export class SessionService {
       email: profile.email,
     });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     const identities = this.identities(userRealmName);
     const users = this.users(userRealmName);

package/src/api/users/services/UserService.ts CHANGED Viewed

@@ -7,7 +7,7 @@ import { BadRequestError } from "alepha/server";
 import { $client } from "alepha/server/links";
 import type { UserEntity } from "../entities/users.ts";
 import { UserNotifications } from "../notifications/UserNotifications.ts";
-import { UserRealmProvider } from "../providers/UserRealmProvider.ts";
+import { RealmProvider } from "../providers/RealmProvider.ts";
 import type { CreateUser } from "../schemas/createUserSchema.ts";
 import type { UpdateUser } from "../schemas/updateUserSchema.ts";
 import type { UserQuery } from "../schemas/userQuerySchema.ts";
@@ -16,11 +16,11 @@ export class UserService {
   protected readonly log = $logger();
   protected readonly verificationController = $client<VerificationController>();
   protected readonly userNotifications = $inject(UserNotifications);
-  protected readonly userRealmProvider = $inject(UserRealmProvider);
+  protected readonly realmProvider = $inject(RealmProvider);
   protected readonly auditService = $inject(AuditService);
   public users(userRealmName?: string) {
-    return this.userRealmProvider.userRepository(userRealmName);
+    return this.realmProvider.userRepository(userRealmName);
   }
   /**
@@ -156,7 +156,7 @@ export class UserService {
     this.log.info("Email verified", { email, userId: user.id, type });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     await this.auditService.recordUser("update", {
       userId: user.id,
@@ -256,7 +256,7 @@ export class UserService {
       userRealmName,
     });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     // TODO: one query instead of 3
@@ -342,7 +342,7 @@ export class UserService {
     const user = await this.users(userRealmName).updateById(id, data);
     this.log.debug("User updated", { userId: id });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     // Build changes object showing what was updated
     const changes: Record<string, { from: unknown; to: unknown }> = {};
@@ -382,7 +382,7 @@ export class UserService {
     await this.users(userRealmName).deleteById(id);
     this.log.info("User deleted", { userId: id });
-    const realm = this.userRealmProvider.getRealm(userRealmName);
+    const realm = this.realmProvider.getRealm(userRealmName);
     await this.auditService.recordUser("delete", {
       userRealm: realm.name,

package/src/batch/providers/BatchProvider.ts CHANGED Viewed

@@ -1,4 +1,3 @@
-import { randomUUID } from "node:crypto";
 import { $inject, type Alepha } from "alepha";
 import { DateTimeProvider, type DurationLike } from "alepha/datetime";
 import { $logger } from "alepha/logger";
@@ -188,7 +187,7 @@ export class BatchProvider {
     item: TItem,
   ): string {
     // 1. Generate unique ID
-    const id = randomUUID();
+    const id = crypto.randomUUID();
     // 2. Determine the partition key (with error handling)
     let partitionKey: string;

package/src/cli/apps/AlephaPackageBuilderCli.ts CHANGED Viewed

@@ -1,7 +1,7 @@
 import { access, readdir, readFile } from "node:fs/promises";
 import * as os from "node:os";
 import { join } from "node:path";
-import { $inject } from "alepha";
+import { $inject, AlephaError } from "alepha";
 import { $command } from "alepha/command";
 import { FileSystemProvider } from "alepha/file";
 import type { InlineConfig } from "tsdown";
@@ -11,6 +11,7 @@ interface Module {
   dependencies: string[];
   native?: boolean;
   browser?: boolean;
+  bun?: boolean;
   node?: boolean;
 }
@@ -24,13 +25,13 @@ export class AlephaPackageBuilderCli {
     handler: async ({ run, root }) => {
       const modules: Array<Module> = [];
-      const pkg = await readFile("package.json", "utf-8");
-      const pkgData = JSON.parse(pkg);
+      const pkgBuffer = await this.fs.readFile("package.json");
+      const pkgData = JSON.parse(pkgBuffer.toString("utf-8"));
       const packageName = pkgData.name as string;
       await run("analyze modules", async () => {
         modules.push(
-          ...(await analyzeModules(join(root, this.src), packageName)),
+          ...(await analyzeModules(this.fs.join(root, this.src), packageName)),
         );
       });
@@ -56,6 +57,10 @@ export class AlephaPackageBuilderCli {
           pkgData.exports[path].browser = `./src/${item.name}/index.browser.ts`;
         }
+        if (item.bun) {
+          pkgData.exports[path].bun = `./src/${item.name}/index.bun.ts`;
+        }
         pkgData.exports[path].import = `./src/${item.name}/index.ts`;
         pkgData.exports[path].default = `./src/${item.name}/index.ts`;
       }
@@ -72,21 +77,20 @@ export class AlephaPackageBuilderCli {
       await this.fs.writeFile("package.json", JSON.stringify(pkgData, null, 2));
-      const tmpDir = join(root, "node_modules/.alepha");
+      const tmpDir = this.fs.join(root, "node_modules/.alepha");
       await this.fs.mkdir(tmpDir, { recursive: true }).catch(() => {});
       await this.fs.writeFile(
-        join(tmpDir, "module-dependencies.json"),
+        this.fs.join(tmpDir, "module-dependencies.json"),
         JSON.stringify(modules, null, 2),
       );
-      const tsconfig = await readFile(
-        join(root, "../../tsconfig.json"),
-        "utf-8",
+      const tsconfigBuffer = await this.fs.readFile(
+        this.fs.join(root, "../../tsconfig.json"),
       );
       const external: string[] = Object.keys(
-        JSON.parse(tsconfig).compilerOptions.paths,
+        JSON.parse(tsconfigBuffer.toString("utf-8")).compilerOptions.paths,
       );
       external.push("bun");
@@ -96,11 +100,11 @@ export class AlephaPackageBuilderCli {
       const build = async (item: Module) => {
         const entries: InlineConfig[] = [];
-        const src = join(root, this.src, item.name);
-        const dest = join(root, this.dist, item.name);
+        const src = this.fs.join(root, this.src, item.name);
+        const dest = this.fs.join(root, this.dist, item.name);
         entries.push({
-          entry: join(src, "index.ts"),
+          entry: this.fs.join(src, "index.ts"),
           outDir: dest,
           format: ["esm"],
           sourcemap: true,
@@ -109,13 +113,12 @@ export class AlephaPackageBuilderCli {
           external,
           dts: {
             sourcemap: true,
-            resolve: false,
           },
         });
         if (item.native) {
           entries.push({
-            entry: join(src, "index.native.ts"),
+            entry: this.fs.join(src, "index.native.ts"),
             outDir: dest,
             platform: "neutral",
             sourcemap: true,
@@ -126,7 +129,7 @@ export class AlephaPackageBuilderCli {
         if (item.browser) {
           entries.push({
-            entry: join(src, "index.browser.ts"),
+            entry: this.fs.join(src, "index.browser.ts"),
             outDir: dest,
             platform: "browser",
             sourcemap: true,
@@ -135,7 +138,19 @@ export class AlephaPackageBuilderCli {
           });
         }
-        const config = join(
+        if (item.bun) {
+          entries.push({
+            entry: this.fs.join(src, "index.bun.ts"),
+            outDir: dest,
+            platform: "node",
+            sourcemap: true,
+            fixedExtension: false,
+            dts: false,
+            external,
+          });
+        }
+        const config = this.fs.join(
           tmpDir,
           `tsdown-${item.name.replace("/", "-")}.config.js`,
         );
@@ -261,7 +276,9 @@ function detectCircularDependencies(modules: Module[]): void {
   for (const module of modules) {
     const cycle = hasCycle(module.name);
     if (cycle) {
-      throw new Error(`Circular dependency detected: ${cycle.join(" -> ")}`);
+      throw new AlephaError(
+        `Circular dependency detected: ${cycle.join(" -> ")}`,
+      );
     }
   }
 }
@@ -287,13 +304,14 @@ export async function analyzeModules(
           // This is a module
           const dependencies = new Set<string>();
-          // Check for browser/node entry points
+          // Check for browser/node/bun entry points
           const hasBrowser = await fileExists(
             join(modulePath, "index.browser.ts"),
           );
           const hasNative = await fileExists(
             join(modulePath, "index.native.ts"),
           );
+          const hasBun = await fileExists(join(modulePath, "index.bun.ts"));
           const hasNode = await fileExists(join(modulePath, "index.node.ts"));
           // Get all .ts/.tsx files in this module
@@ -328,6 +346,7 @@ export async function analyzeModules(
           if (hasNative) module.native = true;
           if (hasBrowser) module.browser = true;
+          if (hasBun) module.bun = true;
           if (hasNode) module.node = true;
           modules.push(module);

package/src/cli/assets/apiHelloControllerTs.ts ADDED Viewed

@@ -0,0 +1,18 @@
+export const apiHelloControllerTs = () => `
+import { t } from "alepha";
+import { $action } from "alepha/server";
+export class HelloController {
+  hello = $action({
+    path: "/hello",
+    schema: {
+      response: t.object({
+        message: t.string(),
+      }),
+    },
+    handler: () => ({
+      message: "Hello, Alepha!",
+    }),
+  });
+}
+`.trim();

package/src/cli/assets/apiIndexTs.ts ADDED Viewed

@@ -0,0 +1,16 @@
+export interface ApiIndexTsOptions {
+  appName?: string;
+}
+export const apiIndexTs = (options: ApiIndexTsOptions = {}) => {
+  const { appName = "app" } = options;
+  return `
+import { $module } from "alepha";
+import { HelloController } from "./controllers/HelloController.ts";
+export const ApiModule = $module({
+  name: "${appName}.api",
+  services: [HelloController],
+});
+`.trim();
+};