aurabase-js 0.5.0 → 0.7.0

package/.omc/state/hud-stdin-cache.json

@@ -1 +1 @@
-{"session_id":"1c1e8df6-335a-4058-8bd4-4c0a67d996cd","transcript_path":"C:\\Users\\Jay\\.claude\\projects\\D--000-FrontEnd-242-dino-game\\1c1e8df6-335a-4058-8bd4-4c0a67d996cd.jsonl","cwd":"D:\\000.FrontEnd\\242.dino_game\\packages\\aurabase-js","model":{"id":"GLM-5","display_name":"GLM-5"},"workspace":{"current_dir":"D:\\000.FrontEnd\\242.dino_game\\packages\\aurabase-js","project_dir":"D:\\000.FrontEnd\\242.dino_game","added_dirs":[]},"version":"2.1.71","output_style":{"name":"default"},"cost":{"total_cost_usd":2.823248,"total_duration_ms":1638396,"total_api_duration_ms":797770,"total_lines_added":333,"total_lines_removed":70},"context_window":{"total_input_tokens":76386,"total_output_tokens":19574,"context_window_size":200000,"current_usage":{"input_tokens":160,"output_tokens":64,"cache_creation_input_tokens":0,"cache_read_input_tokens":82624},"used_percentage":41,"remaining_percentage":59},"exceeds_200k_tokens":false}
+{"session_id":"1c1e8df6-335a-4058-8bd4-4c0a67d996cd","transcript_path":"C:\\Users\\Jay\\.claude\\projects\\D--000-FrontEnd-242-dino-game\\1c1e8df6-335a-4058-8bd4-4c0a67d996cd.jsonl","cwd":"D:\\000.FrontEnd\\242.dino_game\\packages\\aurabase-js","model":{"id":"GLM-5","display_name":"GLM-5"},"workspace":{"current_dir":"D:\\000.FrontEnd\\242.dino_game\\packages\\aurabase-js","project_dir":"D:\\000.FrontEnd\\242.dino_game","added_dirs":[]},"version":"2.1.71","output_style":{"name":"default"},"cost":{"total_cost_usd":3.3941639999999995,"total_duration_ms":2016455,"total_api_duration_ms":968316,"total_lines_added":378,"total_lines_removed":170},"context_window":{"total_input_tokens":84534,"total_output_tokens":25270,"context_window_size":200000,"current_usage":{"input_tokens":278,"output_tokens":64,"cache_creation_input_tokens":0,"cache_read_input_tokens":90368},"used_percentage":45,"remaining_percentage":55},"exceeds_200k_tokens":false}

package/dist/cli.js

@@ -27,116 +27,55 @@ var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__ge
 var fs = __toESM(require("fs"));
 var path = __toESM(require("path"));
 var TEMPLATES = {
-  "lib/aurabase.ts": `import { createClient } from 'aurabase-js';
+  "lib/client.ts": `import { createClient } from 'aurabase-js';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
-
-export const aurabase = createClient({
-  url: AURABASE_URL,
-  anonKey: AURABASE_ANON_KEY,
+export const client = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
 });
 `,
-  "lib/api-client.ts": `import { NextRequest, NextResponse } from 'next/server';
+  "lib/server.ts": `import { createClient } from 'aurabase-js';
+import { cookies } from 'next/headers';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
+export async function server() {
+  const cookieStore = await cookies();
+  const accessToken = cookieStore.get('access_token')?.value;
 
-/**
- * \uC11C\uBC84 \uC0AC\uC774\uB4DC API \uD504\uB85D\uC2DC \uC720\uD2F8\uB9AC\uD2F0
- */
-export async function proxyApiRequest(
-  req: NextRequest,
-  path: string
-): Promise<NextResponse> {
-  const accessToken = req.cookies.get('access_token')?.value;
-  const authToken = accessToken || AURABASE_ANON_KEY;
-
-  let body: string | undefined;
-  if (req.method !== 'GET' && req.method !== 'HEAD') {
-    body = await req.text();
-  }
-
-  const headers: Record<string, string> = {
-    'Content-Type': 'application/json',
-  };
-  if (authToken) {
-    headers['Authorization'] = \`Bearer \${authToken}\`;
-  }
+  const client = createClient({
+    url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+    anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
+  });
 
-  const fetchOptions: RequestInit = {
-    method: req.method,
-    headers,
-  };
-  if (body) {
-    fetchOptions.body = body;
+  if (accessToken) {
+    client.setAccessToken(accessToken);
   }
 
-  const res = await fetch(\`\${AURABASE_URL}\${path}\`, fetchOptions);
-  const data = await res.text();
-  return new NextResponse(data, {
-    status: res.status,
-    headers: { 'Content-Type': 'application/json' },
-  });
+  return client;
 }
+`,
+  "lib/admin.ts": `import { createClient } from 'aurabase-js';
 
 /**
- * \uD074\uB77C\uC774\uC5B8\uD2B8\uC6A9 fetch \uB798\uD37C
+ * Admin client with service_role key
+ * \u26A0\uFE0F ONLY use on server-side (API routes, server components)
+ * \u26A0\uFE0F Bypasses all RLS policies - use with caution!
  */
-export function createApiClient(baseUrl: string = '') {
-  return {
-    async get<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, { credentials: 'include' });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-
-    async post<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async put<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'PUT',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async delete<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, {
-        method: 'DELETE',
-        credentials: 'include',
-      });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-  };
-}
+export const admin = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.AURABASE_SERVICE_ROLE_KEY || '',
+});
 `
 };
 var ENV_TEMPLATE = `
 # AuraBase Configuration (.env.local)
+
+# Public keys (client + server)
 NEXT_PUBLIC_AURABASE_URL=https://your-project.cloudfront.net
 NEXT_PUBLIC_AURABASE_ANON_KEY=your-anon-key-here
+
+# Service role key (server only - bypasses RLS!)
+# \u26A0\uFE0F NEVER expose this to the client!
+AURABASE_SERVICE_ROLE_KEY=your-service-role-key-here
 `;
 function findProjectRoot() {
   let dir = process.cwd();
@@ -170,8 +109,9 @@ function createFile(projectRoot, filename) {
 function init() {
   const projectRoot = findProjectRoot();
   console.log("\x1B[1m\n\u{1F680} Initializing AuraBase...\x1B[0m\n");
-  createFile(projectRoot, "lib/aurabase.ts");
-  createFile(projectRoot, "lib/api-client.ts");
+  createFile(projectRoot, "lib/client.ts");
+  createFile(projectRoot, "lib/server.ts");
+  createFile(projectRoot, "lib/admin.ts");
   console.log("\x1B[36m%s\x1B[0m", ENV_TEMPLATE);
 }
 function showHelp() {
@@ -184,6 +124,11 @@ function showHelp() {
 \x1B[1mOptions:\x1B[0m
   -h, --help        Show this help message
   -v, --version     Show version
+
+\x1B[1mGenerated files:\x1B[0m
+  lib/client.ts     Browser client (anon key)
+  lib/server.ts     Server client (with cookie auth)
+  lib/admin.ts      Admin client (service role, bypasses RLS)
 `);
 }
 function showVersion() {

package/dist/cli.mjs

@@ -4,116 +4,55 @@
 import * as fs from "fs";
 import * as path from "path";
 var TEMPLATES = {
-  "lib/aurabase.ts": `import { createClient } from 'aurabase-js';
+  "lib/client.ts": `import { createClient } from 'aurabase-js';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
-
-export const aurabase = createClient({
-  url: AURABASE_URL,
-  anonKey: AURABASE_ANON_KEY,
+export const client = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
 });
 `,
-  "lib/api-client.ts": `import { NextRequest, NextResponse } from 'next/server';
+  "lib/server.ts": `import { createClient } from 'aurabase-js';
+import { cookies } from 'next/headers';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
+export async function server() {
+  const cookieStore = await cookies();
+  const accessToken = cookieStore.get('access_token')?.value;
 
-/**
- * \uC11C\uBC84 \uC0AC\uC774\uB4DC API \uD504\uB85D\uC2DC \uC720\uD2F8\uB9AC\uD2F0
- */
-export async function proxyApiRequest(
-  req: NextRequest,
-  path: string
-): Promise<NextResponse> {
-  const accessToken = req.cookies.get('access_token')?.value;
-  const authToken = accessToken || AURABASE_ANON_KEY;
-
-  let body: string | undefined;
-  if (req.method !== 'GET' && req.method !== 'HEAD') {
-    body = await req.text();
-  }
-
-  const headers: Record<string, string> = {
-    'Content-Type': 'application/json',
-  };
-  if (authToken) {
-    headers['Authorization'] = \`Bearer \${authToken}\`;
-  }
+  const client = createClient({
+    url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+    anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
+  });
 
-  const fetchOptions: RequestInit = {
-    method: req.method,
-    headers,
-  };
-  if (body) {
-    fetchOptions.body = body;
+  if (accessToken) {
+    client.setAccessToken(accessToken);
   }
 
-  const res = await fetch(\`\${AURABASE_URL}\${path}\`, fetchOptions);
-  const data = await res.text();
-  return new NextResponse(data, {
-    status: res.status,
-    headers: { 'Content-Type': 'application/json' },
-  });
+  return client;
 }
+`,
+  "lib/admin.ts": `import { createClient } from 'aurabase-js';
 
 /**
- * \uD074\uB77C\uC774\uC5B8\uD2B8\uC6A9 fetch \uB798\uD37C
+ * Admin client with service_role key
+ * \u26A0\uFE0F ONLY use on server-side (API routes, server components)
+ * \u26A0\uFE0F Bypasses all RLS policies - use with caution!
  */
-export function createApiClient(baseUrl: string = '') {
-  return {
-    async get<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, { credentials: 'include' });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-
-    async post<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async put<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'PUT',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async delete<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, {
-        method: 'DELETE',
-        credentials: 'include',
-      });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-  };
-}
+export const admin = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.AURABASE_SERVICE_ROLE_KEY || '',
+});
 `
 };
 var ENV_TEMPLATE = `
 # AuraBase Configuration (.env.local)
+
+# Public keys (client + server)
 NEXT_PUBLIC_AURABASE_URL=https://your-project.cloudfront.net
 NEXT_PUBLIC_AURABASE_ANON_KEY=your-anon-key-here
+
+# Service role key (server only - bypasses RLS!)
+# \u26A0\uFE0F NEVER expose this to the client!
+AURABASE_SERVICE_ROLE_KEY=your-service-role-key-here
 `;
 function findProjectRoot() {
   let dir = process.cwd();
@@ -147,8 +86,9 @@ function createFile(projectRoot, filename) {
 function init() {
   const projectRoot = findProjectRoot();
   console.log("\x1B[1m\n\u{1F680} Initializing AuraBase...\x1B[0m\n");
-  createFile(projectRoot, "lib/aurabase.ts");
-  createFile(projectRoot, "lib/api-client.ts");
+  createFile(projectRoot, "lib/client.ts");
+  createFile(projectRoot, "lib/server.ts");
+  createFile(projectRoot, "lib/admin.ts");
   console.log("\x1B[36m%s\x1B[0m", ENV_TEMPLATE);
 }
 function showHelp() {
@@ -161,6 +101,11 @@ function showHelp() {
 \x1B[1mOptions:\x1B[0m
   -h, --help        Show this help message
   -v, --version     Show version
+
+\x1B[1mGenerated files:\x1B[0m
+  lib/client.ts     Browser client (anon key)
+  lib/server.ts     Server client (with cookie auth)
+  lib/admin.ts      Admin client (service role, bypasses RLS)
 `);
 }
 function showVersion() {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "aurabase-js",
-  "version": "0.5.0",
+  "version": "0.7.0",
   "description": "AuraBase client library - Supabase-style SDK for AuraBase",
   "main": "dist/index.js",
   "module": "dist/index.mjs",

package/src/cli.ts

@@ -4,117 +4,56 @@ import * as fs from 'fs';
 import * as path from 'path';
 
 const TEMPLATES = {
-  'lib/aurabase.ts': `import { createClient } from 'aurabase-js';
+  'lib/client.ts': `import { createClient } from 'aurabase-js';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
-
-export const aurabase = createClient({
-  url: AURABASE_URL,
-  anonKey: AURABASE_ANON_KEY,
+export const client = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
 });
 `,
-  'lib/api-client.ts': `import { NextRequest, NextResponse } from 'next/server';
+  'lib/server.ts': `import { createClient } from 'aurabase-js';
+import { cookies } from 'next/headers';
 
-const AURABASE_URL = process.env.NEXT_PUBLIC_AURABASE_URL || '';
-const AURABASE_ANON_KEY = process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '';
+export async function server() {
+  const cookieStore = await cookies();
+  const accessToken = cookieStore.get('access_token')?.value;
 
-/**
- * 서버 사이드 API 프록시 유틸리티
- */
-export async function proxyApiRequest(
-  req: NextRequest,
-  path: string
-): Promise<NextResponse> {
-  const accessToken = req.cookies.get('access_token')?.value;
-  const authToken = accessToken || AURABASE_ANON_KEY;
-
-  let body: string | undefined;
-  if (req.method !== 'GET' && req.method !== 'HEAD') {
-    body = await req.text();
-  }
-
-  const headers: Record<string, string> = {
-    'Content-Type': 'application/json',
-  };
-  if (authToken) {
-    headers['Authorization'] = \`Bearer \${authToken}\`;
-  }
+  const client = createClient({
+    url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+    anonKey: process.env.NEXT_PUBLIC_AURABASE_ANON_KEY || '',
+  });
 
-  const fetchOptions: RequestInit = {
-    method: req.method,
-    headers,
-  };
-  if (body) {
-    fetchOptions.body = body;
+  if (accessToken) {
+    client.setAccessToken(accessToken);
   }
 
-  const res = await fetch(\`\${AURABASE_URL}\${path}\`, fetchOptions);
-  const data = await res.text();
-  return new NextResponse(data, {
-    status: res.status,
-    headers: { 'Content-Type': 'application/json' },
-  });
+  return client;
 }
+`,
+  'lib/admin.ts': `import { createClient } from 'aurabase-js';
 
 /**
- * 클라이언트용 fetch 래퍼
+ * Admin client with service_role key
+ * ⚠️ ONLY use on server-side (API routes, server components)
+ * ⚠️ Bypasses all RLS policies - use with caution!
  */
-export function createApiClient(baseUrl: string = '') {
-  return {
-    async get<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, { credentials: 'include' });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-
-    async post<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'POST',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async put<T>(path: string, data?: unknown): Promise<T> {
-      const options: RequestInit = {
-        method: 'PUT',
-        headers: { 'Content-Type': 'application/json' },
-        credentials: 'include',
-      };
-      if (data) options.body = JSON.stringify(data);
-      const res = await fetch(\`\${baseUrl}\${path}\`, options);
-      if (!res.ok) {
-        const error = await res.json().catch(() => ({ error: 'Unknown error' }));
-        throw error;
-      }
-      return res.json();
-    },
-
-    async delete<T>(path: string): Promise<T> {
-      const res = await fetch(\`\${baseUrl}\${path}\`, {
-        method: 'DELETE',
-        credentials: 'include',
-      });
-      if (!res.ok) throw new Error(\`API Error: \${res.status}\`);
-      return res.json();
-    },
-  };
-}
+export const admin = createClient({
+  url: process.env.NEXT_PUBLIC_AURABASE_URL || '',
+  anonKey: process.env.AURABASE_SERVICE_ROLE_KEY || '',
+});
 `,
 };
 
 const ENV_TEMPLATE = `
 # AuraBase Configuration (.env.local)
+
+# Public keys (client + server)
 NEXT_PUBLIC_AURABASE_URL=https://your-project.cloudfront.net
 NEXT_PUBLIC_AURABASE_ANON_KEY=your-anon-key-here
+
+# Service role key (server only - bypasses RLS!)
+# ⚠️ NEVER expose this to the client!
+AURABASE_SERVICE_ROLE_KEY=your-service-role-key-here
 `;
 
 function findProjectRoot(): string {
@@ -157,8 +96,9 @@ function init() {
 
   console.log('\x1b[1m\n🚀 Initializing AuraBase...\x1b[0m\n');
 
-  createFile(projectRoot, 'lib/aurabase.ts');
-  createFile(projectRoot, 'lib/api-client.ts');
+  createFile(projectRoot, 'lib/client.ts');
+  createFile(projectRoot, 'lib/server.ts');
+  createFile(projectRoot, 'lib/admin.ts');
 
   console.log('\x1b[36m%s\x1b[0m', ENV_TEMPLATE);
 }
@@ -173,6 +113,11 @@ function showHelp() {
 \x1b[1mOptions:\x1b[0m
   -h, --help        Show this help message
   -v, --version     Show version
+
+\x1b[1mGenerated files:\x1b[0m
+  lib/client.ts     Browser client (anon key)
+  lib/server.ts     Server client (with cookie auth)
+  lib/admin.ts      Admin client (service role, bypasses RLS)
 `);
 }