chomot 1.0.0 → 1.2.0

package/dist/factories/app.factory.d.ts

@@ -0,0 +1,10 @@
+import { OpenAPIHono } from "@hono/zod-openapi";
+type Variables = {
+    jwtPayload?: any;
+    user?: any;
+};
+export type App = OpenAPIHono<{
+    Variables: Variables;
+}>;
+export declare function createApp(): App;
+export {};

package/dist/factories/app.factory.js

@@ -0,0 +1,6 @@
+import { OpenAPIHono } from "@hono/zod-openapi";
+export function createApp() {
+    return new OpenAPIHono({
+        strict: false
+    });
+}

package/dist/factories/auth.factory.d.ts

@@ -0,0 +1,6 @@
+export declare function createTokenFor(user: {
+    ID: string;
+    name: string;
+    role: unknown;
+}): Promise<string>;
+export declare function createOTP(): string;

package/dist/factories/auth.factory.js

@@ -0,0 +1,25 @@
+import { getPrivateKey } from '@/crypto';
+import { sign } from 'hono/jwt';
+export async function createTokenFor(user) {
+    const privateKey = await getPrivateKey();
+    const payload = {
+        sub: user.ID,
+        name: user.name,
+        role: user.role,
+        exp: createTokenExpirationInMonths(6), // token expired in 6 months
+    };
+    return await sign(payload, Buffer.from(privateKey).toString("utf8"), "HS256");
+}
+function createTokenExpirationInMonths(months) {
+    const now = new Date();
+    now.setMonth(now.getMonth() + months);
+    return Math.floor(now.getTime() / 1000);
+}
+export function createOTP() {
+    const otp = Math.floor(Math.random() * 1000000);
+    // Mengubah angka OTP menjadi string.
+    // Menggunakan padStart(6, '0') untuk memastikan string selalu 6 digit.
+    // Jika angka kurang dari 6 digit (misal 9876), maka akan ditambahkan nol di depan (misal "009876").
+    const otpString = otp.toString().padStart(6, "0");
+    return otpString;
+}

package/dist/factories/index.d.ts

@@ -0,0 +1,4 @@
+export * from "./app.factory";
+export * from "./auth.factory";
+export * from "./response.factory";
+export * from "./route.factory";

package/dist/factories/index.js

@@ -0,0 +1,4 @@
+export * from "./app.factory";
+export * from "./auth.factory";
+export * from "./response.factory";
+export * from "./route.factory";

package/dist/factories/response.factory.d.ts

@@ -0,0 +1,15 @@
+import { z } from "@hono/zod-openapi";
+export declare const createListResponseSchema: <DataSchema extends z.ZodTypeAny>(args: {
+    dataSchema: DataSchema;
+}) => z.ZodObject<{
+    sortBy: z.ZodDefault<z.ZodString>;
+    sortDir: z.ZodDefault<z.ZodEnum<{
+        asc: "asc";
+        desc: "desc";
+    }>>;
+    cursor: z.ZodString;
+    data: z.ZodArray<DataSchema>;
+}, z.core.$strip>;
+export declare const createOkResponseSchema: () => z.ZodObject<{
+    msg: z.ZodString;
+}, z.core.$strip>;

package/dist/factories/response.factory.js

@@ -0,0 +1,12 @@
+import { z } from "@hono/zod-openapi";
+export const createListResponseSchema = (args) => z.object({
+    sortBy: z
+        .string()
+        .nonempty()
+        .default("createdAt")
+        .openapi({ examples: ["createdAt", "updatedAt"] }),
+    sortDir: z.enum(["asc", "desc"]).default("desc"),
+    cursor: z.string().datetime(),
+    data: z.array(args.dataSchema),
+});
+export const createOkResponseSchema = () => z.object({ msg: z.string().openapi({ example: "Query.OK" }) });

package/dist/factories/route.factory.d.ts

@@ -0,0 +1,6 @@
+import { createRoute, RouteConfig } from "@hono/zod-openapi";
+type CreateRouteConfig = Parameters<typeof createRoute>[0];
+export declare function createSecureRoute(config: Omit<CreateRouteConfig, "request"> & {
+    request?: Omit<CreateRouteConfig["request"], "headers">;
+}): RouteConfig;
+export {};

package/dist/factories/route.factory.js

@@ -0,0 +1,22 @@
+import { createRoute, z } from "@hono/zod-openapi";
+// Reusable auth header schema
+const authHeader = z.object({
+    authorization: z
+        .string()
+        .startsWith("Bearer ")
+        .openapi({
+        description: "Bearer token",
+        example: !process.env?.ENV?.startsWith("prod") && process.env?.AUTH_TOKEN_TEST
+            ? `Bearer ${process.env?.AUTH_TOKEN_TEST}`
+            : "Bearer <your-token>",
+    }),
+});
+export function createSecureRoute(config) {
+    return createRoute({
+        ...config,
+        request: {
+            ...(config.request ?? {}),
+            headers: authHeader,
+        },
+    });
+}

package/dist/imitations/fetch.imitation.d.ts

@@ -0,0 +1,2 @@
+export declare function imitateFetch(imitatedResponses: Record<string, Response>): (input: string | URL, _init?: RequestInit) => Response;
+export declare function setImitatedResponse(responseText: string): Response;

package/dist/imitations/fetch.imitation.js

@@ -0,0 +1,15 @@
+export function imitateFetch(imitatedResponses) {
+    return (input, _init) => {
+        const url = new URL(typeof input === "string" ? input : input.toString());
+        const res = imitatedResponses[url.href];
+        return (res ?? new Response(`{"msg":"Imitated URL Not Found"}`, { status: 404 }));
+    };
+}
+export function setImitatedResponse(responseText) {
+    return new Response(responseText.trim(), {
+        headers: {
+            "Content-Type": "application/json;charset=UTF-8",
+        },
+        status: 200,
+    });
+}

package/dist/index.d.ts

@@ -1 +1,4 @@
-export {};
+export * from "./config";
+export * from "./crypto";
+export * from "./factories";
+export * from "./pipes";

package/dist/index.js

@@ -1 +1,4 @@
-export {};
+export * from "./config";
+export * from "./crypto";
+export * from "./factories";
+export * from "./pipes";

package/dist/pipes/app.pipe.d.ts

@@ -0,0 +1,2 @@
+import { App } from '@/factories';
+export declare function configureAppEssentialPipe(app: App, appName: string, appVersion: string): void;

package/dist/pipes/app.pipe.js

@@ -0,0 +1,45 @@
+import { rateLimiter } from 'hono-rate-limiter';
+import { languageDetector } from "hono/language";
+import { configureOpenapi } from './openapi.pipe';
+import { configureAuthGuard } from './auth.pipe';
+export function configureAppEssentialPipe(app, appName, appVersion) {
+    // LANGUAGE
+    configureLanguage(app);
+    // HELMET
+    configureHelmet(app);
+    // RATE LIMIT
+    configureRateLimit(app);
+    // OPENAPI
+    configureOpenapi(app, appName, appVersion);
+    // Auth Middleware
+    configureAuthGuard(app);
+    // Load unauthenticated modules
+}
+function configureHelmet(app) {
+    app.use("*", (c, next) => {
+        c.header("X-Content-Type-Options", "nosniff");
+        c.header("X-Frame-Options", "DENY");
+        c.header("X-XSS-Protection", "1; mode=block");
+        c.header("Referrer-Policy", "no-referrer");
+        return next();
+    });
+}
+function configureLanguage(app) {
+    app.use(languageDetector({
+        supportedLanguages: ["en", "id"],
+        fallbackLanguage: "en",
+    }));
+}
+function configureRateLimit(app) {
+    app.use("/api/*", rateLimiter({
+        windowMs: 60 * 1000, // 1 minute
+        limit: 60,
+        standardHeaders: true,
+        message: "Slowdown bud!",
+        keyGenerator: (c) => {
+            return (c.req.header("x-forwarded-for") ??
+                c.req.header("x-real-ip") ??
+                "unknown");
+        },
+    }));
+}

package/dist/pipes/auth.pipe.d.ts

@@ -0,0 +1,3 @@
+import { App } from '@/factories';
+export declare function configureAuthGuard(app: App): void;
+export declare function authorize(allowed: boolean): void;

package/dist/pipes/auth.pipe.js

@@ -0,0 +1,37 @@
+import { getPrivateKey } from '@/crypto';
+import { verify } from "hono/jwt";
+import { HTTPException } from "hono/http-exception";
+export function configureAuthGuard(app) {
+    app.use("/api/*", async (c, next) => {
+        const authorizationHeader = c.req.header("Authorization");
+        if (authorizationHeader) {
+            const bearerToken = authorizationHeader.split(" ")[1];
+            if (bearerToken) {
+                try {
+                    const payload = await verifyToken(bearerToken);
+                    c.set("jwtPayload", payload);
+                }
+                catch (error) {
+                    console.error(error);
+                    throw new HTTPException(401, { message: "Invalid token" });
+                }
+            }
+        }
+        await next();
+    }, async (c, next) => {
+        const payload = c.get("jwtPayload");
+        if (!payload)
+            throw new HTTPException(401, { message: "Invalid payload" });
+        c.set("user", payload);
+        await next();
+    });
+}
+async function verifyToken(token) {
+    const privateKey = await getPrivateKey();
+    return await verify(token, Buffer.from(privateKey).toString("utf8"), "HS256");
+}
+export function authorize(allowed) {
+    if (!allowed) {
+        throw new HTTPException(401, { message: "Unauthorized" });
+    }
+}

package/dist/pipes/db.pipe.d.ts

@@ -0,0 +1,11 @@
+import { ContentfulStatusCode } from 'hono/utils/http-status';
+export type DatabaseResult<T> = {
+    code: ContentfulStatusCode;
+    success: boolean;
+    message: string;
+    error?: {
+        message: string;
+    } | undefined;
+    data?: Awaited<T> | undefined;
+};
+export declare const DB: <T>(fn: () => Promise<T>) => Promise<DatabaseResult<T>>;

package/dist/pipes/db.pipe.js

@@ -0,0 +1,31 @@
+export const DB = async (fn) => {
+    try {
+        const data = await fn();
+        if (!data) {
+            return {
+                success: false,
+                message: "Query.RecordNotFound.",
+                code: 404,
+                data,
+            };
+        }
+        return { success: true, message: "Query.OK", code: 200, data };
+    }
+    catch (err) {
+        const maybeError = err;
+        if (maybeError?.cause?.message) {
+            return {
+                success: false,
+                code: 422,
+                message: "Unprocessable Entity",
+                error: { message: maybeError.cause.message },
+            };
+        }
+        return {
+            success: false,
+            code: 500,
+            message: "Server error",
+            error: { message: "Unhandled Exception" },
+        };
+    }
+};

package/dist/pipes/index.d.ts

@@ -0,0 +1,5 @@
+export * from "./app.pipe";
+export * from "./auth.pipe";
+export * from "./db.pipe";
+export * from "./json.pipe";
+export * from "./openapi.pipe";

package/dist/pipes/index.js

@@ -0,0 +1,5 @@
+export * from "./app.pipe";
+export * from "./auth.pipe";
+export * from "./db.pipe";
+export * from "./json.pipe";
+export * from "./openapi.pipe";

package/dist/pipes/json.pipe.d.ts

@@ -0,0 +1,9 @@
+import { z } from '@hono/zod-openapi';
+export declare function createJsonContent(content: z.ZodObject, description: string): {
+    content: {
+        "application/json": {
+            schema: z.ZodObject<z.core.$ZodLooseShape, z.core.$strip>;
+        };
+    };
+    description: string;
+};

package/dist/pipes/json.pipe.js

@@ -0,0 +1,10 @@
+export function createJsonContent(content, description) {
+    return {
+        content: {
+            "application/json": {
+                schema: content,
+            },
+        },
+        description,
+    };
+}

package/dist/pipes/openapi.pipe.d.ts

@@ -0,0 +1,2 @@
+import { App } from '@/factories';
+export declare function configureOpenapi(app: App, title: string, version: string): void;

package/dist/pipes/openapi.pipe.js

@@ -0,0 +1,11 @@
+import { Scalar } from "@scalar/hono-api-reference";
+export function configureOpenapi(app, title, version) {
+    if (!process.env.ENV?.startsWith("prod")) {
+        app
+            .doc("/openapi.json", {
+            openapi: "3.0.0",
+            info: { version, title },
+        })
+            .get("/docs", Scalar(() => ({ url: "/openapi.json", theme: "alternate" })));
+    }
+}

package/package.json

@@ -1,28 +1,33 @@
-{
-  "name": "chomot",
-  "version": "1.0.0",
-  "description": "",
-  "main": "./dist/index.js",
-  "types": "./dist/index.d.ts",
-  "scripts": {
-    "build": "tsc",
-    "prepublishOnly": "npm run build",
-    "test": "vitest"
-  },
-  "files": [
-    "dist"
-  ],
-  "keywords": [],
-  "author": "smwgn1331",
-  "license": "ISC",
-  "devDependencies": {
-    "@types/libsodium-wrappers-sumo": "^0.7.8",
-    "@types/node": "^24.7.2",
-    "tsx": "^4.20.6",
-    "typescript": "^5.9.3",
-    "vitest": "^3.2.4"
-  },
-  "dependencies": {
-    "libsodium-wrappers-sumo": "^0.7.15"
-  }
-}
+{
+  "name": "chomot",
+  "version": "1.2.0",
+  "description": "",
+  "main": "./dist/index.js",
+  "types": "./dist/index.d.ts",
+  "scripts": {
+    "build": "tsc",
+    "prepublishOnly": "npm run build",
+    "test": "vitest"
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [],
+  "author": "smwgn1331",
+  "license": "ISC",
+  "devDependencies": {
+    "@types/libsodium-wrappers-sumo": "^0.7.8",
+    "@types/node": "^24.7.2",
+    "tsx": "^4.20.6",
+    "typescript": "^5.9.3",
+    "vitest": "^3.2.4"
+  },
+  "dependencies": {
+    "@hono/node-server": "^1.19.5",
+    "@hono/zod-openapi": "^1.1.3",
+    "@scalar/hono-api-reference": "^0.9.21",
+    "hono": "^4.9.12",
+    "hono-rate-limiter": "^0.4.2",
+    "libsodium-wrappers-sumo": "^0.7.15"
+  }
+}