bonescript-compiler 0.5.6 → 0.5.8

package/src/emit_notify.ts

@@ -0,0 +1,88 @@
+/**
+ * BoneScript Notification Service Emitter
+ * Generates src/notify.ts — fires on event emissions.
+ */
+
+import * as IR from "./ir";
+
+function toPascalCase(s: string): string {
+  return s.replace(/(^|[-_\s])(\w)/g, (_, __, c: string) => c.toUpperCase());
+}
+
+export function emitNotifyService(system: IR.IRSystem): string {
+  const lines: string[] = [];
+
+  lines.push(`// Generated by BoneScript compiler.`);
+  lines.push(`// Notification service — fires on event emissions.`);
+  lines.push(`// Configure NOTIFY_PROVIDER=resend|sendgrid|log (default: log)`);
+  lines.push(`// Set NOTIFY_API_KEY and NOTIFY_FROM_EMAIL in .env`);
+  lines.push(``);
+  lines.push(`import { SystemEvent } from "./events";`);
+  lines.push(``);
+  lines.push(`export type NotifyProvider = "resend" | "sendgrid" | "log";`);
+  lines.push(``);
+  lines.push(`const PROVIDER = (process.env.NOTIFY_PROVIDER || "log") as NotifyProvider;`);
+  lines.push(`const API_KEY = process.env.NOTIFY_API_KEY || "";`);
+  lines.push(`const FROM_EMAIL = process.env.NOTIFY_FROM_EMAIL || "noreply@example.com";`);
+  lines.push(``);
+  lines.push(`export interface NotifyMessage {`);
+  lines.push(`  to: string;`);
+  lines.push(`  subject: string;`);
+  lines.push(`  body: string;`);
+  lines.push(`}`);
+  lines.push(``);
+  lines.push(`async function sendEmail(msg: NotifyMessage): Promise<void> {`);
+  lines.push(`  if (PROVIDER === "log") {`);
+  lines.push(`    console.log(\`[notify] \${msg.subject} → \${msg.to}\`);`);
+  lines.push(`    return;`);
+  lines.push(`  }`);
+  lines.push(`  if (PROVIDER === "resend") {`);
+  lines.push(`    const res = await fetch("https://api.resend.com/emails", {`);
+  lines.push(`      method: "POST",`);
+  lines.push(`      headers: { "Authorization": \`Bearer \${API_KEY}\`, "Content-Type": "application/json" },`);
+  lines.push(`      body: JSON.stringify({ from: FROM_EMAIL, to: msg.to, subject: msg.subject, html: msg.body }),`);
+  lines.push(`    });`);
+  lines.push(`    if (!res.ok) throw new Error(\`Resend error: \${res.status}\`);`);
+  lines.push(`    return;`);
+  lines.push(`  }`);
+  lines.push(`  if (PROVIDER === "sendgrid") {`);
+  lines.push(`    const res = await fetch("https://api.sendgrid.com/v3/mail/send", {`);
+  lines.push(`      method: "POST",`);
+  lines.push(`      headers: { "Authorization": \`Bearer \${API_KEY}\`, "Content-Type": "application/json" },`);
+  lines.push(`      body: JSON.stringify({ personalizations: [{ to: [{ email: msg.to }] }], from: { email: FROM_EMAIL }, subject: msg.subject, content: [{ type: "text/html", value: msg.body }] }),`);
+  lines.push(`    });`);
+  lines.push(`    if (!res.ok) throw new Error(\`SendGrid error: \${res.status}\`);`);
+  lines.push(`    return;`);
+  lines.push(`  }`);
+  lines.push(`}`);
+  lines.push(``);
+
+  // Per-event handlers
+  for (const event of system.events) {
+    const eventName = toPascalCase(event.name);
+    lines.push(`// Handler for ${eventName}`);
+    lines.push(`export async function notify${eventName}(event: SystemEvent, recipientEmail: string): Promise<void> {`);
+    lines.push(`  await sendEmail({`);
+    lines.push(`    to: recipientEmail,`);
+    lines.push(`    subject: "${eventName} notification",`);
+    lines.push(`    body: \`<p>Event <strong>${eventName}</strong> occurred.</p><pre>\${JSON.stringify(event.payload, null, 2)}</pre>\`,`);
+    lines.push(`  });`);
+    lines.push(`}`);
+    lines.push(``);
+  }
+
+  // registerNotificationHandlers
+  lines.push(`export function registerNotificationHandlers(eventBus: any): void {`);
+  lines.push(`  // TODO: implement recipient lookup per event type`);
+  for (const event of system.events) {
+    const eventName = toPascalCase(event.name);
+    lines.push(`  // eventBus.subscribe("${eventName}", async (event: SystemEvent) => {`);
+    lines.push(`  //   const recipientEmail = await lookupRecipient(event);`);
+    lines.push(`  //   await notify${eventName}(event, recipientEmail);`);
+    lines.push(`  // });`);
+  }
+  lines.push(`}`);
+  lines.push(``);
+
+  return lines.join("\n");
+}

package/src/emit_runtime.ts

@@ -57,6 +57,7 @@ export function emitPackageJson(system: IR.IRSystem): string {
       "express-rate-limit": "7.1.5",
       jsonwebtoken: "9.0.2",
       dotenv: "16.3.1",
+      "node-cron": "3.0.3",
     },
     devDependencies: {
       "@types/express": "4.17.21",
@@ -66,6 +67,7 @@ export function emitPackageJson(system: IR.IRSystem): string {
       "@types/cors": "2.8.17",
       "@types/jsonwebtoken": "9.0.5",
       "@types/uuid": "9.0.7",
+      "@types/node-cron": "3.0.11",
       typescript: "5.3.3",
       "ts-node": "10.9.2",
     },
@@ -217,6 +219,11 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
   lines.push(`import { query, queryOne, execute, pool } from "../db";`);
   lines.push(`import { eventBus } from "../events";`);
   lines.push(`import { requireAuth, AuthContext } from "../auth";`);
+  lines.push(`import rateLimit from "express-rate-limit";`);
+  // Only import audit if module has audit: true
+  if (mod.config["audit"]) {
+    lines.push(`import { auditLog } from "../audit";`);
+  }
   lines.push(`import { logger } from "../logger";`);
   lines.push(`import { counter } from "../metrics";`);
   lines.push(`import * as __algorithms from "../algorithms";`);
@@ -242,10 +249,22 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
   lines.push(`export const ${toCamelCase(routeBase)}Router = Router();`);
   lines.push(``);
 
+  // Per-module rate limiter (from policy declaration)
+  const modRateLimit = typeof mod.config["rate_limit"] === "number" && (mod.config["rate_limit"] as number) > 0
+    ? mod.config["rate_limit"] as number : 0;
+  const modRateLimitWindowMs = typeof mod.config["rate_limit_window_ms"] === "number"
+    ? mod.config["rate_limit_window_ms"] as number : 60000;
+  if (modRateLimit > 0) {
+    lines.push(`// Rate limiter from policy declaration`);
+    lines.push(`const __routeRateLimit = rateLimit({ windowMs: ${modRateLimitWindowMs}, max: ${modRateLimit}, standardHeaders: true, legacyHeaders: false });`);
+    lines.push(``);
+  }
+
   // CREATE
   const insertFields = entityModel.fields.filter(f => f.name !== "id" && f.name !== "created_at" && f.name !== "updated_at");
   lines.push(`// CREATE`);
-  lines.push(`${toCamelCase(routeBase)}Router.post("/", requireAuth, async (req: Request, res: Response) => {`);
+  const __crudMiddlewares = modRateLimit > 0 ? "__routeRateLimit, requireAuth" : "requireAuth";
+  lines.push(`${toCamelCase(routeBase)}Router.post("/", ${__crudMiddlewares}, async (req: Request, res: Response) => {`);
   lines.push(`  try {`);
   lines.push(`    const id = uuid();`);
   lines.push(`    const { ${insertFields.map(f => f.name).join(", ")} } = req.body;`);
@@ -270,7 +289,7 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
 
   // READ
   lines.push(`// READ`);
-  lines.push(`${toCamelCase(routeBase)}Router.get("/:id", requireAuth, async (req: Request, res: Response) => {`);
+  lines.push(`${toCamelCase(routeBase)}Router.get("/:id", ${__crudMiddlewares}, async (req: Request, res: Response) => {`);
   lines.push(`  try {`);
   lines.push(`    const row = await queryOne(\`SELECT * FROM ${tableName} WHERE id = $1\`, [req.params.id]);`);
   lines.push(`    if (!row) return res.status(404).json({ error: { code: "NOT_FOUND", message: "Not found" } });`);
@@ -284,7 +303,7 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
   // LIST — with optional JOINs for has_one/belongs_to relations
   const joinRelations = mod.relations.filter(r => r.kind === "has_one" || r.kind === "belongs_to");
   lines.push(`// LIST`);
-  lines.push(`${toCamelCase(routeBase)}Router.get("/", requireAuth, async (req: Request, res: Response) => {`);
+  lines.push(`${toCamelCase(routeBase)}Router.get("/", ${__crudMiddlewares}, async (req: Request, res: Response) => {`);
   lines.push(`  try {`);
   lines.push(`    const page = parseInt(req.query.page as string) || 1;`);
   lines.push(`    const pageSize = Math.min(parseInt(req.query.page_size as string) || 50, 100);`);
@@ -314,7 +333,7 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
 
   // UPDATE — with state machine enforcement
   lines.push(`// UPDATE`);
-  lines.push(`${toCamelCase(routeBase)}Router.put("/:id", requireAuth, async (req: Request, res: Response) => {`);
+  lines.push(`${toCamelCase(routeBase)}Router.put("/:id", ${__crudMiddlewares}, async (req: Request, res: Response) => {`);
   lines.push(`  const fields = { ...req.body };`);
   if (mod.state_machines.length > 0) {
     const sm = mod.state_machines[0];
@@ -339,7 +358,7 @@ export function emitEntityRouter(mod: IR.IRModule, system: IR.IRSystem): string
 
   // DELETE
   lines.push(`// DELETE`);
-  lines.push(`${toCamelCase(routeBase)}Router.delete("/:id", requireAuth, async (req: Request, res: Response) => {`);
+  lines.push(`${toCamelCase(routeBase)}Router.delete("/:id", ${__crudMiddlewares}, async (req: Request, res: Response) => {`);
   lines.push(`  try {`);
   lines.push(`    const count = await execute(\`DELETE FROM ${tableName} WHERE id = $1\`, [req.params.id]);`);
   lines.push(`    if (count === 0) return res.status(404).json({ error: { code: "NOT_FOUND", message: "Not found" } });`);
@@ -400,7 +419,15 @@ function emitCapabilityEndpoint(method: IR.IRMethod, mod: IR.IRModule, tableName
   const isTransactional = method.sync === "transactional";
 
   lines.push(`// CAPABILITY: ${method.name}${isTransactional ? " [transactional]" : ""}${method.retry ? ` [retry: ${method.retry.max_attempts}x ${method.retry.backoff}]` : ""}`);
-  lines.push(`${routerName}.post("${endpoint}", requireAuth, async (req: Request, res: Response) => {`);
+  // Build middleware chain: optional rate limiter + requireAuth + optional audit
+  const capMiddlewares: string[] = ["requireAuth"];
+  if (typeof mod.config["rate_limit"] === "number" && (mod.config["rate_limit"] as number) > 0) {
+    capMiddlewares.unshift("__routeRateLimit");
+  }
+  if (mod.config["audit"]) {
+    capMiddlewares.push(`auditLog("${method.name}", "${mod.models[0]?.name ?? ""}")`);
+  }
+  lines.push(`${routerName}.post("${endpoint}", ${capMiddlewares.join(", ")}, async (req: Request, res: Response) => {`);
   lines.push(`  const auth: AuthContext = (req as any).auth;`);
 
   // Wrap in retry logic if declared
@@ -551,6 +578,7 @@ export function emitIndex(system: IR.IRSystem): string {
   );
   if (hasBatch) {
     lines.push(`import { startBatchWorker } from "./batch";`);
+    lines.push(`import { startCronJobs } from "./cron";`);
   }
   if (hasWebSocket) {
     lines.push(`import { setupWebSocketServer } from "./websocket";`);
@@ -628,6 +656,8 @@ export function emitIndex(system: IR.IRSystem): string {
   if (hasBatch) {
     lines.push(`  // Start batch executor`);
     lines.push(`  startBatchWorker();`);
+    lines.push(`  // Start cron jobs`);
+    lines.push(`  startCronJobs();`);
   }
   lines.push(`  console.log(\`[${system.name}] Running on port \${PORT}\`);`);
   lines.push(`  console.log(\`  HTTP routes:\`);`);

package/src/index.ts

@@ -47,6 +47,10 @@ export { emitZodSchemas } from "./emit_zod";
 export { emitPostmanCollection } from "./emit_postman";
 export { emitSeedFile } from "./emit_seed";
 export { emitAuditSchema, emitAuditMiddleware } from "./emit_audit";
+export { emitAdminPanel } from "./emit_admin";
+export { emitNotifyService } from "./emit_notify";
+export { emitCronJobs } from "./emit_cron";
+export { emitGraphQLSchema } from "./emit_graphql";
 
 /**
  * Convenience function: compile a .bone source string to files.

package/src/lowering.ts

@@ -118,7 +118,7 @@ export class Lowering {
       const relatedCaps = capabilities.filter(c =>
         c.params.some(p => p.type.kind === "EntityRefType" && p.type.name === entity.name)
       );
-      modules.push(this.lowerEntity(entity, relatedCaps, stores));
+      modules.push(this.lowerEntity(entity, relatedCaps, stores, policies));
     }
 
     // Lower channels → realtime_service modules
@@ -233,7 +233,7 @@ export class Lowering {
 
   // ─── Entity Lowering ───────────────────────────────────────────────────────
 
-  private lowerEntity(entity: AST.EntityDeclNode, capabilities: AST.CapabilityDeclNode[], stores: AST.StoreDeclNode[]): IR.IRModule {
+  private lowerEntity(entity: AST.EntityDeclNode, capabilities: AST.CapabilityDeclNode[], stores: AST.StoreDeclNode[], policies: AST.PolicyDeclNode[] = []): IR.IRModule {
     const moduleId = makeId(this.systemName, "api_service", `${entity.name}Service`);
 
     // Build model from entity fields + ontology entailments
@@ -380,6 +380,9 @@ export class Lowering {
       config: {
         authenticated: entity.auth !== null && entity.auth !== "none",
         auth_method: entity.auth || "none",
+        audit: policies.some(p => p.audit === true),
+        rate_limit: policies.length > 0 && policies[0].rateLimit ? policies[0].rateLimit.count : 0,
+        rate_limit_window_ms: policies.length > 0 && policies[0].rateLimit ? (parseDurationMs(String(policies[0].rateLimit.per)) || 60000) : 60000,
       },
     };
   }

package/src/scaffold.ts

@@ -15,7 +15,9 @@ export type ScaffoldDomain =
   | "realtime_collaboration";
 
 const TEMPLATES: Record<ScaffoldDomain, string> = {
-  multiplayer_game: `system MyGame {
+  multiplayer_game: `// Compile with: bonec compile {name}.bone --target nakama
+// for Nakama TypeScript runtime output instead of Express/PostgreSQL
+system MyGame {
   domain: multiplayer_game
 
   entity Player {