bxo 0.0.5-dev.8 → 0.0.5-dev.81

package/example/websocket-example.ts

@@ -0,0 +1,132 @@
+import BXO from "../src";
+
+async function main() {
+    const app = new BXO({ serve: { port: 3000 } });
+
+    // HTTP routes
+    app.get("/", (ctx) => {
+        return ctx.text(`
+<!DOCTYPE html>
+<html>
+<head>
+    <title>BXO WebSocket Example</title>
+</head>
+<body>
+    <h1>BXO WebSocket Example</h1>
+    <div id="messages"></div>
+    <input type="text" id="messageInput" placeholder="Type a message...">
+    <button onclick="sendMessage()">Send</button>
+    <button onclick="connect()">Connect</button>
+    <button onclick="disconnect()">Disconnect</button>
+    
+    <script>
+        let ws = null;
+        
+        function connect() {
+            ws = new WebSocket('ws://localhost:3000/ws');
+            
+            ws.onopen = function() {
+                addMessage('Connected to WebSocket');
+            };
+            
+            ws.onmessage = function(event) {
+                addMessage('Received: ' + event.data);
+            };
+            
+            ws.onclose = function() {
+                addMessage('Disconnected from WebSocket');
+            };
+            
+            ws.onerror = function(error) {
+                addMessage('Error: ' + error);
+            };
+        }
+        
+        function disconnect() {
+            if (ws) {
+                ws.close();
+                ws = null;
+            }
+        }
+        
+        function sendMessage() {
+            const input = document.getElementById('messageInput');
+            if (ws && input.value) {
+                ws.send(input.value);
+                addMessage('Sent: ' + input.value);
+                input.value = '';
+            }
+        }
+        
+        function addMessage(message) {
+            const messages = document.getElementById('messages');
+            const div = document.createElement('div');
+            div.textContent = new Date().toLocaleTimeString() + ': ' + message;
+            messages.appendChild(div);
+            messages.scrollTop = messages.scrollHeight;
+        }
+        
+        // Allow Enter key to send message
+        document.getElementById('messageInput').addEventListener('keypress', function(e) {
+            if (e.key === 'Enter') {
+                sendMessage();
+            }
+        });
+    </script>
+        `, 200, {
+            "Content-Type": "text/html"
+        });
+    });
+
+    // WebSocket route
+    app.ws("/ws", {
+        open(ws) {
+            console.log("WebSocket connection opened");
+            ws.send("Welcome to BXO WebSocket!");
+        },
+        
+        message(ws, message) {
+            console.log("Received message:", message);
+            // Echo the message back
+            ws.send(`Echo: ${message}`);
+        },
+        
+        close(ws, code, reason) {
+            console.log(`WebSocket connection closed: ${code} ${reason}`);
+        },
+        
+        ping(ws, data) {
+            console.log("Ping received:", data);
+        },
+        
+        pong(ws, data) {
+            console.log("Pong received:", data);
+        }
+    });
+
+    // Another WebSocket route with parameters
+    app.ws("/chat/:room", {
+        open(ws) {
+            console.log(`WebSocket connection opened for room: ${ws.data?.room || 'unknown'}`);
+            ws.send(`Welcome to chat room: ${ws.data?.room || 'unknown'}`);
+        },
+        
+        message(ws, message) {
+            const room = ws.data?.room || 'unknown';
+            console.log(`Message in room ${room}:`, message);
+            ws.send(`[${room}] Echo: ${message}`);
+        },
+        
+        close(ws, code, reason) {
+            const room = ws.data?.room || 'unknown';
+            console.log(`WebSocket connection closed for room ${room}: ${code} ${reason}`);
+        }
+    });
+
+    app.start();
+    console.log(`Server is running on http://localhost:${app.server?.port}`);
+    console.log(`WebSocket available at ws://localhost:${app.server?.port}/ws`);
+    console.log(`Chat WebSocket available at ws://localhost:${app.server?.port}/chat/:room`);
+}
+
+main().catch(console.error);

package/package.json

@@ -1,20 +1,20 @@
 {
   "name": "bxo",
-  "module": "index.ts",
-  "version": "0.0.5-dev.8",
-  "description": "A simple and lightweight web framework for Bun",
+  "module": "./src/index.ts",
+  "exports": {
+    ".": "./src/index.ts",
+    "./plugins": "./plugins/index.ts"
+  },
+  "version": "0.0.5-dev.81",
   "type": "module",
   "devDependencies": {
     "@types/bun": "latest"
   },
-  "exports": {
-    ".": "./index.ts",
-    "./plugins": "./plugins/index.ts"
-  },
   "peerDependencies": {
     "typescript": "^5"
   },
   "dependencies": {
-    "zod": "^4.0.5"
+    "zod": "^4.1.5",
+    "zod-openapi": "^5.4.0"
   }
 }

package/plugins/cors.ts

@@ -1,83 +1,133 @@
-import BXO from '../index';
-
-interface CORSOptions {
-  origin?: string | string[] | boolean;
-  methods?: string[];
-  allowedHeaders?: string[];
-  credentials?: boolean;
-  maxAge?: number;
+import BXO from "../src/index";
+
+export interface CorsOptions {
+    origin?: string | string[] | boolean | ((origin: string) => boolean);
+    methods?: string[];
+    allowedHeaders?: string[];
+    exposedHeaders?: string[];
+    credentials?: boolean;
+    maxAge?: number;
+    preflightContinue?: boolean;
 }
 
-export function cors(options: CORSOptions = {}): BXO {
-  const {
-    origin = '*',
-    methods = ['GET', 'POST', 'PUT', 'DELETE', 'PATCH', 'OPTIONS'],
-    allowedHeaders = ['Content-Type', 'Authorization'],
-    credentials = false,
-    maxAge = 86400
-  } = options;
-
-  const corsInstance = new BXO();
-
-  corsInstance.onRequest(async (ctx: any) => {
-    // Handle preflight OPTIONS request
-    if (ctx.request.method === 'OPTIONS') {
-      const headers: Record<string, string> = {};
-
-      // Handle origin
-      if (typeof origin === 'boolean') {
-        if (origin) {
-          headers['Access-Control-Allow-Origin'] = ctx.request.headers.get('origin') || '*';
+export function cors(options: CorsOptions = {}): BXO {
+    const {
+        origin = "*",
+        methods = ["GET", "POST", "PUT", "PATCH", "DELETE", "OPTIONS", "HEAD"],
+        allowedHeaders = ["Content-Type", "Authorization"],
+        exposedHeaders = [],
+        credentials = false,
+        maxAge = 86400,
+        preflightContinue = false
+    } = options;
+
+    const plugin = new BXO();
+
+    // Handle CORS preflight requests
+    plugin.beforeRequest(async (req) => {
+        const requestOrigin = req.headers.get("origin");
+        const requestMethod = req.method;
+
+        // Handle preflight OPTIONS request
+        if (requestMethod === "OPTIONS") {
+            const response = new Response(null, { status: 204 });
+
+            // Set CORS headers
+            setCorsHeaders(response, {
+                origin,
+                methods,
+                allowedHeaders,
+                exposedHeaders,
+                credentials,
+                maxAge,
+                requestOrigin
+            });
+
+            if (!preflightContinue) {
+                return response;
+            }
         }
-      } else if (typeof origin === 'string') {
-        headers['Access-Control-Allow-Origin'] = origin;
-      } else if (Array.isArray(origin)) {
-        const requestOrigin = ctx.request.headers.get('origin');
-        if (requestOrigin && origin.includes(requestOrigin)) {
-          headers['Access-Control-Allow-Origin'] = requestOrigin;
+
+        // Continue with normal request processing
+        return req;
+    });
+
+    // Add CORS headers to all responses
+    plugin.afterRequest(async (req, res) => {
+        const requestOrigin = req.headers.get("origin");
+
+        // Set CORS headers on the response
+        setCorsHeaders(res, {
+            origin,
+            methods,
+            allowedHeaders,
+            exposedHeaders,
+            credentials,
+            maxAge,
+            requestOrigin
+        });
+
+        return res;
+    });
+
+    return plugin;
+}
+
+function setCorsHeaders(
+    response: Response,
+    options: {
+        origin: string | string[] | boolean | ((origin: string) => boolean);
+        methods: string[];
+        allowedHeaders: string[];
+        exposedHeaders: string[];
+        credentials: boolean;
+        maxAge: number;
+        requestOrigin?: string | null;
+    }
+) {
+    const { origin, methods, allowedHeaders, exposedHeaders, credentials, maxAge, requestOrigin } = options;
+
+    // Set Access-Control-Allow-Origin
+    if (origin) {
+        if (typeof origin === "string") {
+            if (origin === "*") {
+                response.headers.set("Access-Control-Allow-Origin", "*");
+            } else {
+                response.headers.set("Access-Control-Allow-Origin", origin);
+            }
+        } else if (Array.isArray(origin)) {
+            // For array of origins, we need to check if the request origin is in the list
+            // This is handled in the beforeRequest hook where we have access to the request origin
+            if (options.requestOrigin && origin.includes(options.requestOrigin)) {
+                response.headers.set("Access-Control-Allow-Origin", options.requestOrigin);
+            }
+        } else if (origin === true) {
+            response.headers.set("Access-Control-Allow-Origin", "*");
         }
-      }
-
-      headers['Access-Control-Allow-Methods'] = methods.join(', ');
-      headers['Access-Control-Allow-Headers'] = allowedHeaders.join(', ');
-      
-      if (credentials) {
-        headers['Access-Control-Allow-Credentials'] = 'true';
-      }
-      
-      headers['Access-Control-Max-Age'] = maxAge.toString();
-
-      ctx.set.status = 204;
-      ctx.set.headers = { ...ctx.set.headers, ...headers };
-      
-      throw new Response(null, { status: 204, headers });
     }
-  });
-
-  corsInstance.onResponse(async (ctx: any, response: any) => {
-    const headers: Record<string, string> = {};
-
-    // Handle origin for actual requests
-    if (typeof origin === 'boolean') {
-      if (origin) {
-        headers['Access-Control-Allow-Origin'] = ctx.request.headers.get('origin') || '*';
-      }
-    } else if (typeof origin === 'string') {
-      headers['Access-Control-Allow-Origin'] = origin;
-    } else if (Array.isArray(origin)) {
-      const requestOrigin = ctx.request.headers.get('origin');
-      if (requestOrigin && origin.includes(requestOrigin)) {
-        headers['Access-Control-Allow-Origin'] = requestOrigin;
-      }
+
+    // Set Access-Control-Allow-Methods
+    if (methods.length > 0) {
+        response.headers.set("Access-Control-Allow-Methods", methods.join(", "));
     }
 
-    if (credentials) {
-      headers['Access-Control-Allow-Credentials'] = 'true';
+    // Set Access-Control-Allow-Headers
+    if (allowedHeaders.length > 0) {
+        response.headers.set("Access-Control-Allow-Headers", allowedHeaders.join(", "));
     }
 
-    ctx.set.headers = { ...ctx.set.headers, ...headers };
-    return response;
-  });
+    // Set Access-Control-Expose-Headers
+    if (exposedHeaders.length > 0) {
+        response.headers.set("Access-Control-Expose-Headers", exposedHeaders.join(", "));
+    }
 
-  return corsInstance;
-} 
+    // Set Access-Control-Allow-Credentials
+    if (credentials) {
+        response.headers.set("Access-Control-Allow-Credentials", "true");
+    }
+
+    // Set Access-Control-Max-Age
+    if (maxAge) {
+        response.headers.set("Access-Control-Max-Age", maxAge.toString());
+    }
+}

package/plugins/index.ts

@@ -1,11 +1,2 @@
-// Export all plugins
-export { cors } from './cors';
-export { logger } from './logger';
-export { auth, createJWT } from './auth';
-export { rateLimit } from './ratelimit';
-
-// Import BXO for plugin typing
-import BXO from '../index';
-
-// Plugin functions now return BXO instances
-export type PluginFactory<T = any> = (options?: T) => BXO;
+export * from "./openapi";
+export * from "./cors";

package/plugins/openapi.ts

@@ -0,0 +1,204 @@
+import BXO, { z } from "../src";
+import { createDocument, type CreateDocumentOptions, type ZodOpenApiPathItemObject, type ZodOpenApiPathsObject, type ZodOpenApiSecuritySchemeObject } from "zod-openapi";
+
+interface SecurityScheme extends ZodOpenApiSecuritySchemeObject {
+    type: "http" | "apiKey" | "oauth2" | "openIdConnect";
+    scheme?: "bearer" | "basic" | "digest" | "apikey";
+    bearerFormat?: string;
+    description?: string;
+    name?: string;
+    in?: "header" | "query" | "cookie";
+}
+
+interface OpenApiPluginConfig {
+    path: string;
+    jsonPath: string;
+    openapiConfig: CreateDocumentOptions;
+    defaultTags?: string[];
+    securitySchemes?: Record<string, SecurityScheme>;
+    globalSecurity?: Array<Record<string, string[]>>;
+}
+
+const createOpenApiPaths = (app: BXO, config?: OpenApiPluginConfig): ZodOpenApiPathsObject => {
+    const routes = app.getRoutes()
+    let paths: ZodOpenApiPathsObject = {}
+    for (const route of routes) {
+        const openapiPath = "/" + route.path.replace(/:(\w+)/g, "{$1}").replace(/\*/g, "*").replace("/", "")
+        const method = route.method.toLowerCase()
+        if (method === "default") {
+            continue
+        }
+        const contentType = route.schema?.detail?.defaultContentType || "application/json"
+        if (config?.path && openapiPath === config?.path) {
+            continue
+        }
+        if (config?.jsonPath && openapiPath === config?.jsonPath) {
+            continue
+        }
+        if (route.schema?.detail?.hidden) {
+            continue
+        }
+
+        // Extract tags from route metadata
+        const tags = route.schema?.detail?.tags ||
+            route.schema?.detail?.tag ||
+            config?.defaultTags ||
+            []
+
+        // Extract security requirements from route metadata
+        const routeSecurity = route.schema?.detail?.security ||
+            route.schema?.detail?.auth ||
+            undefined
+
+        // Extract operation summary and description
+        const summary = route.schema?.detail?.summary ||
+            route.schema?.detail?.title ||
+            `${method.toUpperCase()} ${route.path}`
+
+        const description = route.schema?.detail?.description ||
+            route.schema?.detail?.docs ||
+            undefined
+
+        // Extract parameters from route path
+        const parameters = []
+        const pathParams = route.path.match(/:\w+/g)
+        if (pathParams) {
+            for (const param of pathParams) {
+                const paramName = param.slice(1) // Remove the colon
+                const paramSchema = route.schema?.detail?.params?.[paramName] || z.string()
+                parameters.push({
+                    name: paramName,
+                    in: "path",
+                    required: true,
+                    schema: paramSchema
+                })
+            }
+        }
+
+        // Add query parameters if defined
+        if (route.schema?.query) {
+            const querySchema = route.schema?.query
+            if (querySchema && typeof querySchema === 'object' && 'shape' in querySchema) {
+                const queryShape = (querySchema as any).shape
+                for (const [key, schema] of Object.entries(queryShape)) {
+                    const isOptional = schema instanceof z.ZodOptional
+                    parameters.push({
+                        name: key,
+                        in: "query",
+                        required: !isOptional, // Query params are typically optional
+                        schema: schema as any
+                    })
+                }
+            }
+        }
+
+        const response = Object.entries(route.schema?.response || {}).map(([status, schema]) => {
+            return ({
+                400: status === "400" && !route.schema?.response?.[status] ? {
+                    content: {
+                        "application/json": {
+                            schema: z.object({
+                                error: z.string(),
+                                issues: z.any().optional()
+                            })
+                        }
+                    }
+                } : undefined,
+                [status]: {
+                    content: {
+                        "application/json": {
+                            schema: schema
+                        }
+                    }
+                }
+            })
+        }).reduce((acc, curr) => ({ ...acc, ...curr }), {})
+
+        paths[openapiPath] = {
+            ...paths[openapiPath],
+            [method]: {
+                tags: tags.length > 0 ? tags : undefined,
+                summary: summary,
+                description: description,
+                parameters: parameters.length > 0 ? parameters : undefined,
+                security: routeSecurity,
+                requestBody: {
+                    content: {
+                        [contentType]: {
+                            schema: route.schema?.body || z.object({})
+                        }
+                    }
+                },
+                responses: response || {
+                    200: {
+                        content: {
+                            "application/json": {
+                                schema: z.object({})
+                            }
+                        }
+                    }
+                }
+            }
+        } satisfies ZodOpenApiPathItemObject
+    }
+    return paths
+}
+
+export function openapi(_config?: OpenApiPluginConfig) {
+    let config = _config
+    !config && (config = { path: "/docs", openapiConfig: {}, jsonPath: "/openapi.json" })
+    config.path = config.path || "/docs"
+    config.jsonPath = config.jsonPath || "/openapi.json"
+    config.openapiConfig = config.openapiConfig || {}
+    config.defaultTags = config.defaultTags || []
+    config.securitySchemes = config.securitySchemes || {}
+    config.globalSecurity = config.globalSecurity || []
+
+    const bxo = new BXO()
+        .get(config.jsonPath, (ctx, app) => {
+            const paths = createDocument({
+                openapi: "3.0.0",
+                info: {
+                    title: "My API",
+                    version: "1.0.0"
+                },
+                paths: createOpenApiPaths(app, config),
+                components: {
+                    securitySchemes: Object.keys(config.securitySchemes || {}).length > 0 ? config.securitySchemes : undefined
+                },
+                security: (config.globalSecurity || []).length > 0 ? config.globalSecurity : undefined,
+                ...config.openapiConfig
+            })
+            return new Response(JSON.stringify(paths), {
+                headers: {
+                    "Content-Type": "application/json"
+                }
+            })
+        })
+        .get(config.path, (ctx, app) => {
+            ctx.set.headers["Content-Type"] = "text/html"
+            return `
+            <!doctype html>
+<html>
+<head>
+  <title>My Scalar API Reference</title>
+  <meta charset="utf-8" />
+  <meta name="viewport" content="width=device-width, initial-scale=1" />
+</head>
+<body>
+  <div id="app"></div>
+  <!-- Load Scalar -->
+  <script src="https://cdn.jsdelivr.net/npm/@scalar/api-reference"></script>
+  <!-- Initialize Scalar -->
+  <script>
+    Scalar.createApiReference('#app', {
+      url: '/openapi.json',
+      proxyUrl: 'https://proxy.scalar.com'
+    })
+  </script>
+</body>
+</html>`
+        })
+
+    return bxo
+}