clearauth 0.3.0

package/dist/handler.js

@@ -0,0 +1,213 @@
+/**
+ * Unified HTTP request handler for ClearAuth
+ *
+ * This module provides a single entry point for handling all authentication requests,
+ * automatically routing to the appropriate handler (OAuth or email/password).
+ *
+ * @module handler
+ */
+import { handleOAuthRequest } from './oauth/handler.js';
+import { handleAuthRequest } from './auth/handler.js';
+import { handleCorsPreflightRequest, addCorsHeaders } from './utils/cors.js';
+import { normalizeAuthPath } from './utils/normalize-auth-path.js';
+/**
+ * Unified authentication request handler
+ *
+ * Automatically routes requests to the appropriate handler based on the URL path:
+ * - OAuth routes: `/auth/oauth/*`, `/auth/github/*`, `/auth/google/*`, `/auth/callback/*`
+ * - Email/password routes: All other `/auth/*` routes
+ *
+ * @param request - The HTTP request to handle
+ * @param config - ClearAuth configuration
+ * @returns HTTP response
+ *
+ * @example
+ * ```typescript
+ * // Cloudflare Workers
+ * export default {
+ *   async fetch(request: Request, env: Env): Promise<Response> {
+ *     const config: ClearAuthConfig = {
+ *       database: createMechKysely({ appId: env.MECH_APP_ID, apiKey: env.MECH_API_KEY }),
+ *       secret: env.AUTH_SECRET,
+ *       baseUrl: 'https://yourdomain.com',
+ *       oauth: {
+ *         github: {
+ *           clientId: env.GITHUB_CLIENT_ID,
+ *           clientSecret: env.GITHUB_CLIENT_SECRET,
+ *           redirectUri: 'https://yourdomain.com/auth/callback/github',
+ *         },
+ *       },
+ *     }
+ *     return handleClearAuthRequest(request, config)
+ *   },
+ * }
+ * ```
+ *
+ * @example
+ * ```typescript
+ * // Next.js API route
+ * import { handleClearAuthRequest } from 'clearauth'
+ * import { config } from '@/lib/auth-config'
+ *
+ * export async function GET(request: Request) {
+ *   return handleClearAuthRequest(request, config)
+ * }
+ *
+ * export async function POST(request: Request) {
+ *   return handleClearAuthRequest(request, config)
+ * }
+ * ```
+ */
+export async function handleClearAuthRequest(request, config) {
+    // Handle CORS preflight requests
+    if (request.method === 'OPTIONS' && config.cors) {
+        return handleCorsPreflightRequest(request, config.cors);
+    }
+    const url = new URL(request.url);
+    const pathname = url.pathname;
+    let response;
+    // Determine which handler to use based on path
+    if (isOAuthRoute(pathname)) {
+        response = await handleOAuthRequest(request, config);
+    }
+    else if (isAuthRoute(pathname)) {
+        response = await handleAuthRequest(request, config);
+    }
+    else {
+        response = new Response(JSON.stringify({
+            error: 'Not Found',
+            message: `Authentication route not found: ${pathname}`,
+        }), {
+            status: 404,
+            headers: { 'Content-Type': 'application/json' },
+        });
+    }
+    // Add CORS headers to response if configured
+    if (config.cors) {
+        response = addCorsHeaders(response, request, config.cors);
+    }
+    return response;
+}
+/**
+ * Check if the path is an OAuth route
+ *
+ * OAuth routes include:
+ * - `/auth/oauth/github` - GitHub OAuth login
+ * - `/auth/oauth/google` - Google OAuth login
+ * - `/auth/github/login` - GitHub OAuth login (alternative)
+ * - `/auth/google/login` - Google OAuth login (alternative)
+ * - `/auth/callback/github` - GitHub OAuth callback
+ * - `/auth/callback/google` - Google OAuth callback
+ * - `/auth/github/callback` - GitHub OAuth callback (alternative)
+ * - `/auth/google/callback` - Google OAuth callback (alternative)
+ *
+ * @param pathname - URL pathname to check
+ * @returns True if the path is an OAuth route
+ */
+function isOAuthRoute(pathname) {
+    const normalizedPath = normalizeAuthPath(pathname);
+    // OAuth-specific patterns
+    const oauthPatterns = [
+        /^\/auth\/oauth\/(github|google)$/, // /auth/oauth/github, /auth/oauth/google
+        /^\/auth\/(github|google)\/login$/, // /auth/github/login, /auth/google/login
+        /^\/auth\/callback\/(github|google)$/, // /auth/callback/github, /auth/callback/google
+        /^\/auth\/(github|google)\/callback$/, // /auth/github/callback, /auth/google/callback
+    ];
+    return oauthPatterns.some(pattern => pattern.test(normalizedPath));
+}
+/**
+ * Check if the path is an email/password auth route
+ *
+ * Email/password routes include:
+ * - POST `/auth/register` - User registration
+ * - POST `/auth/verify-email` - Email verification
+ * - POST `/auth/resend-verification` - Resend verification email
+ * - POST `/auth/login` - User login
+ * - POST `/auth/logout` - User logout
+ * - POST `/auth/request-reset` - Request password reset token
+ * - POST `/auth/reset-password` - Reset password with token
+ * - GET  `/auth/session` - Get current user session
+ *
+ * @param pathname - URL pathname to check
+ * @returns True if the path is an auth route
+ */
+function isAuthRoute(pathname) {
+    const normalizedPath = normalizeAuthPath(pathname);
+    // Email/password auth patterns
+    const authPatterns = [
+        /^\/auth\/session$/,
+        /^\/auth\/register$/,
+        /^\/auth\/verify-email$/,
+        /^\/auth\/resend-verification$/,
+        /^\/auth\/login$/,
+        /^\/auth\/logout$/,
+        /^\/auth\/request-reset$/,
+        /^\/auth\/reset-password$/,
+    ];
+    return authPatterns.some(pattern => pattern.test(normalizedPath));
+}
+/**
+ * Get a list of all supported routes
+ *
+ * Useful for debugging and documentation purposes.
+ *
+ * @returns Object containing OAuth and auth routes
+ *
+ * @example
+ * ```typescript
+ * const routes = getSupportedRoutes()
+ * console.log('OAuth routes:', routes.oauth)
+ * console.log('Auth routes:', routes.auth)
+ * ```
+ */
+export function getSupportedRoutes() {
+    return {
+        oauth: [
+            { method: 'GET', path: '/auth/oauth/github', description: 'Initiate GitHub OAuth flow' },
+            { method: 'GET', path: '/auth/github/login', description: 'Initiate GitHub OAuth flow (alternative)' },
+            { method: 'GET', path: '/auth/callback/github', description: 'GitHub OAuth callback' },
+            { method: 'GET', path: '/auth/github/callback', description: 'GitHub OAuth callback (alternative)' },
+            { method: 'GET', path: '/auth/oauth/google', description: 'Initiate Google OAuth flow' },
+            { method: 'GET', path: '/auth/google/login', description: 'Initiate Google OAuth flow (alternative)' },
+            { method: 'GET', path: '/auth/callback/google', description: 'Google OAuth callback' },
+            { method: 'GET', path: '/auth/google/callback', description: 'Google OAuth callback (alternative)' },
+        ],
+        auth: [
+            { method: 'GET', path: '/auth/session', description: 'Get current user session (from cookie)' },
+            { method: 'POST', path: '/auth/register', description: 'User registration with email and password' },
+            { method: 'POST', path: '/auth/verify-email', description: 'Verify email with token' },
+            { method: 'POST', path: '/auth/resend-verification', description: 'Resend email verification token' },
+            { method: 'POST', path: '/auth/login', description: 'User login with email and password' },
+            { method: 'POST', path: '/auth/logout', description: 'User logout (delete session)' },
+            { method: 'POST', path: '/auth/request-reset', description: 'Request password reset token' },
+            { method: 'POST', path: '/auth/reset-password', description: 'Reset password with token' },
+        ],
+    };
+}
+/**
+ * Health check endpoint
+ *
+ * Returns a simple health check response to verify the auth service is running.
+ *
+ * @returns HTTP response with health status
+ *
+ * @example
+ * ```typescript
+ * // In your handler
+ * if (url.pathname === '/auth/health') {
+ *   return healthCheck()
+ * }
+ * ```
+ */
+export function healthCheck() {
+    return new Response(JSON.stringify({
+        status: 'ok',
+        service: 'clearauth',
+        version: '0.3.0',
+        timestamp: new Date().toISOString(),
+    }), {
+        status: 200,
+        headers: { 'Content-Type': 'application/json' },
+    });
+}
+//# sourceMappingURL=handler.js.map

package/dist/handler.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"handler.js","sourceRoot":"","sources":["../src/handler.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAA;AACvD,OAAO,EAAE,iBAAiB,EAAE,MAAM,mBAAmB,CAAA;AAErD,OAAO,EAAE,0BAA0B,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAA;AAC5E,OAAO,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAA;AAElE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA+CG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,OAAgB,EAChB,MAAuB;IAEvB,iCAAiC;IACjC,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;QAChD,OAAO,0BAA0B,CAAC,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,CAAA;IACzD,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAA;IAChC,MAAM,QAAQ,GAAG,GAAG,CAAC,QAAQ,CAAA;IAE7B,IAAI,QAAkB,CAAA;IAEtB,+CAA+C;IAC/C,IAAI,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC3B,QAAQ,GAAG,MAAM,kBAAkB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;IACtD,CAAC;SAAM,IAAI,WAAW,CAAC,QAAQ,CAAC,EAAE,CAAC;QACjC,QAAQ,GAAG,MAAM,iBAAiB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAA;IACrD,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,IAAI,QAAQ,CACrB,IAAI,CAAC,SAAS,CAAC;YACb,KAAK,EAAE,WAAW;YAClB,OAAO,EAAE,mCAAmC,QAAQ,EAAE;SACvD,CAAC,EACF;YACE,MAAM,EAAE,GAAG;YACX,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;SAChD,CACF,CAAA;IACH,CAAC;IAED,6CAA6C;IAC7C,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC;QAChB,QAAQ,GAAG,cAAc,CAAC,QAAQ,EAAE,OAAO,EAAE,MAAM,CAAC,IAAI,CAAC,CAAA;IAC3D,CAAC;IAED,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,SAAS,YAAY,CAAC,QAAgB;IACpC,MAAM,cAAc,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAA;IAElD,0BAA0B;IAC1B,MAAM,aAAa,GAAG;QACpB,kCAAkC,EAAY,yCAAyC;QACvF,kCAAkC,EAAY,yCAAyC;QACvF,qCAAqC,EAAS,+CAA+C;QAC7F,qCAAqC,EAAS,+CAA+C;KAC9F,CAAA;IAED,OAAO,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAA;AACpE,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,SAAS,WAAW,CAAC,QAAgB;IACnC,MAAM,cAAc,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAA;IAElD,+BAA+B;IAC/B,MAAM,YAAY,GAAG;QACnB,mBAAmB;QACnB,oBAAoB;QACpB,wBAAwB;QACxB,+BAA+B;QAC/B,iBAAiB;QACjB,kBAAkB;QAClB,yBAAyB;QACzB,0BAA0B;KAC3B,CAAA;IAED,OAAO,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAA;AACnE,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,kBAAkB;IAChC,OAAO;QACL,KAAK,EAAE;YACL,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,oBAAoB,EAAE,WAAW,EAAE,4BAA4B,EAAE;YACxF,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,oBAAoB,EAAE,WAAW,EAAE,0CAA0C,EAAE;YACtG,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,uBAAuB,EAAE;YACtF,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,qCAAqC,EAAE;YACpG,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,oBAAoB,EAAE,WAAW,EAAE,4BAA4B,EAAE;YACxF,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,oBAAoB,EAAE,WAAW,EAAE,0CAA0C,EAAE;YACtG,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,uBAAuB,EAAE;YACtF,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,qCAAqC,EAAE;SACrG;QACD,IAAI,EAAE;YACJ,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,eAAe,EAAE,WAAW,EAAE,wCAAwC,EAAE;YAC/F,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,gBAAgB,EAAE,WAAW,EAAE,2CAA2C,EAAE;YACpG,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,oBAAoB,EAAE,WAAW,EAAE,yBAAyB,EAAE;YACtF,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,2BAA2B,EAAE,WAAW,EAAE,iCAAiC,EAAE;YACrG,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,aAAa,EAAE,WAAW,EAAE,oCAAoC,EAAE;YAC1F,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,cAAc,EAAE,WAAW,EAAE,8BAA8B,EAAE;YACrF,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,qBAAqB,EAAE,WAAW,EAAE,8BAA8B,EAAE;YAC5F,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,sBAAsB,EAAE,WAAW,EAAE,2BAA2B,EAAE;SAC3F;KACF,CAAA;AACH,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,WAAW;IACzB,OAAO,IAAI,QAAQ,CACjB,IAAI,CAAC,SAAS,CAAC;QACb,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,WAAW;QACpB,OAAO,EAAE,OAAO;QAChB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC,EACF;QACE,MAAM,EAAE,GAAG;QACX,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;KAChD,CACF,CAAA;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,22 @@
+export * from "./errors.js";
+export * from "./logger.js";
+export * from "./validation.js";
+export * from "./mech-sql-client.js";
+export * from "./mech-kysely.js";
+export * from "./createMechAuth.js";
+export * from "./types.js";
+export * from "./database/schema.js";
+export * from "./oauth/arctic-providers.js";
+export * from "./oauth/github.js";
+export * from "./oauth/google.js";
+export * from "./oauth/callbacks.js";
+export * from "./oauth/handler.js";
+export * from "./auth/utils.js";
+export * from "./auth/register.js";
+export * from "./auth/verify-email.js";
+export * from "./auth/login.js";
+export * from "./auth/reset-password.js";
+export * from "./auth/handler.js";
+export * from "./password-hasher.js";
+export * from "./handler.js";
+export * from "./utils/cors.js";

package/dist/index.js

@@ -0,0 +1,28 @@
+export * from "./errors.js";
+export * from "./logger.js";
+export * from "./validation.js";
+export * from "./mech-sql-client.js";
+export * from "./mech-kysely.js";
+export * from "./createMechAuth.js";
+// Type definitions
+export * from "./types.js";
+export * from "./database/schema.js";
+// OAuth functionality
+export * from "./oauth/arctic-providers.js";
+export * from "./oauth/github.js";
+export * from "./oauth/google.js";
+export * from "./oauth/callbacks.js";
+export * from "./oauth/handler.js";
+// Email/Password authentication
+export * from "./auth/utils.js";
+export * from "./auth/register.js";
+export * from "./auth/verify-email.js";
+export * from "./auth/login.js";
+export * from "./auth/reset-password.js";
+export * from "./auth/handler.js";
+export * from "./password-hasher.js";
+// Unified handler (recommended entry point)
+export * from "./handler.js";
+// Utilities
+export * from "./utils/cors.js";
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,cAAc,aAAa,CAAA;AAC3B,cAAc,aAAa,CAAA;AAC3B,cAAc,iBAAiB,CAAA;AAC/B,cAAc,sBAAsB,CAAA;AACpC,cAAc,kBAAkB,CAAA;AAChC,cAAc,qBAAqB,CAAA;AAEnC,mBAAmB;AACnB,cAAc,YAAY,CAAA;AAC1B,cAAc,sBAAsB,CAAA;AAEpC,sBAAsB;AACtB,cAAc,6BAA6B,CAAA;AAC3C,cAAc,mBAAmB,CAAA;AACjC,cAAc,mBAAmB,CAAA;AACjC,cAAc,sBAAsB,CAAA;AACpC,cAAc,oBAAoB,CAAA;AAElC,gCAAgC;AAChC,cAAc,iBAAiB,CAAA;AAC/B,cAAc,oBAAoB,CAAA;AAClC,cAAc,wBAAwB,CAAA;AACtC,cAAc,iBAAiB,CAAA;AAC/B,cAAc,0BAA0B,CAAA;AACxC,cAAc,mBAAmB,CAAA;AAEjC,cAAc,sBAAsB,CAAA;AAEpC,4CAA4C;AAC5C,cAAc,cAAc,CAAA;AAE5B,YAAY;AACZ,cAAc,iBAAiB,CAAA"}

package/dist/logger.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Logger interface and utilities for ClearAuth
+ */
+export type LogLevel = "debug" | "info" | "warn" | "error";
+export interface Logger {
+    debug(message: string, data?: Record<string, any>): void;
+    info(message: string, data?: Record<string, any>): void;
+    warn(message: string, data?: Record<string, any>): void;
+    error(message: string, error?: Error | Record<string, any>): void;
+}
+/**
+ * No-op logger (default)
+ */
+export declare const noOpLogger: Logger;
+/**
+ * Console logger (for development)
+ */
+export declare const consoleLogger: Logger;
+/**
+ * Get logger based on environment
+ */
+export declare function getDefaultLogger(): Logger;

package/dist/logger.js

@@ -0,0 +1,40 @@
+/**
+ * Logger interface and utilities for ClearAuth
+ */
+/**
+ * No-op logger (default)
+ */
+export const noOpLogger = {
+    debug: () => { },
+    info: () => { },
+    warn: () => { },
+    error: () => { }
+};
+/**
+ * Console logger (for development)
+ */
+export const consoleLogger = {
+    debug: (message, data) => {
+        console.debug(`[clearauth:debug] ${message}`, data);
+    },
+    info: (message, data) => {
+        console.info(`[clearauth:info] ${message}`, data);
+    },
+    warn: (message, data) => {
+        console.warn(`[clearauth:warn] ${message}`, data);
+    },
+    error: (message, error) => {
+        console.error(`[clearauth:error] ${message}`, error);
+    }
+};
+/**
+ * Get logger based on environment
+ */
+export function getDefaultLogger() {
+    const env = typeof process !== "undefined" ? process.env : undefined;
+    if (env?.NODE_ENV === "development" || env?.DEBUG === "clearauth") {
+        return consoleLogger;
+    }
+    return noOpLogger;
+}
+//# sourceMappingURL=logger.js.map

package/dist/logger.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.js","sourceRoot":"","sources":["../src/logger.ts"],"names":[],"mappings":"AAAA;;GAEG;AAWH;;GAEG;AACH,MAAM,CAAC,MAAM,UAAU,GAAW;IAChC,KAAK,EAAE,GAAG,EAAE,GAAE,CAAC;IACf,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,IAAI,EAAE,GAAG,EAAE,GAAE,CAAC;IACd,KAAK,EAAE,GAAG,EAAE,GAAE,CAAC;CAChB,CAAA;AAED;;GAEG;AACH,MAAM,CAAC,MAAM,aAAa,GAAW;IACnC,KAAK,EAAE,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE;QACvB,OAAO,CAAC,KAAK,CAAC,qBAAqB,OAAO,EAAE,EAAE,IAAI,CAAC,CAAA;IACrD,CAAC;IACD,IAAI,EAAE,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE;QACtB,OAAO,CAAC,IAAI,CAAC,oBAAoB,OAAO,EAAE,EAAE,IAAI,CAAC,CAAA;IACnD,CAAC;IACD,IAAI,EAAE,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE;QACtB,OAAO,CAAC,IAAI,CAAC,oBAAoB,OAAO,EAAE,EAAE,IAAI,CAAC,CAAA;IACnD,CAAC;IACD,KAAK,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,EAAE;QACxB,OAAO,CAAC,KAAK,CAAC,qBAAqB,OAAO,EAAE,EAAE,KAAK,CAAC,CAAA;IACtD,CAAC;CACF,CAAA;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB;IAC9B,MAAM,GAAG,GAAG,OAAO,OAAO,KAAK,WAAW,CAAC,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAA;IACpE,IAAI,GAAG,EAAE,QAAQ,KAAK,aAAa,IAAI,GAAG,EAAE,KAAK,KAAK,WAAW,EAAE,CAAC;QAClE,OAAO,aAAa,CAAA;IACtB,CAAC;IACD,OAAO,UAAU,CAAA;AACnB,CAAC"}

package/dist/mech-kysely.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Kysely dialect and driver implementation for Mech Storage
+ *
+ * This module provides a Kysely-compatible database driver that uses Mech Storage's
+ * PostgreSQL HTTP API as the backend. It allows Better Auth and other Kysely-based
+ * applications to use Mech Storage as their database without direct PostgreSQL connections.
+ *
+ * @example
+ * ```ts
+ * import { createMechKysely } from "clearauth"
+ * import { betterAuth } from "better-auth"
+ *
+ * const db = createMechKysely()
+ * const auth = betterAuth({
+ *   database: { db, type: "postgres" }
+ * })
+ * ```
+ */
+import { Kysely } from "kysely";
+import { MechSqlClientConfig } from "./mech-sql-client.js";
+export type MechKyselyConfig = MechSqlClientConfig;
+export declare function createMechKysely(config: MechKyselyConfig): Kysely<any>;

package/dist/mech-kysely.js

@@ -0,0 +1,88 @@
+/**
+ * Kysely dialect and driver implementation for Mech Storage
+ *
+ * This module provides a Kysely-compatible database driver that uses Mech Storage's
+ * PostgreSQL HTTP API as the backend. It allows Better Auth and other Kysely-based
+ * applications to use Mech Storage as their database without direct PostgreSQL connections.
+ *
+ * @example
+ * ```ts
+ * import { createMechKysely } from "clearauth"
+ * import { betterAuth } from "better-auth"
+ *
+ * const db = createMechKysely()
+ * const auth = betterAuth({
+ *   database: { db, type: "postgres" }
+ * })
+ * ```
+ */
+import { Kysely, PostgresAdapter, PostgresIntrospector, PostgresQueryCompiler } from "kysely";
+import { MechSqlClient } from "./mech-sql-client.js";
+import { getDefaultLogger } from "./logger.js";
+/**
+ * Database connection implementation for Mech Storage
+ *
+ * Implements Kysely's DatabaseConnection interface by delegating SQL execution
+ * to the MechSqlClient, which uses Mech Storage's HTTP API.
+ *
+ * @internal
+ */
+class MechDatabaseConnection {
+    constructor(client) {
+        this.client = client;
+    }
+    async executeQuery(compiledQuery) {
+        const result = await this.client.execute(compiledQuery.sql, compiledQuery.parameters ?? []);
+        return {
+            rows: result.rows
+        };
+    }
+    async *streamQuery(compiledQuery) {
+        const result = await this.executeQuery(compiledQuery);
+        yield result;
+    }
+}
+class MechDriver {
+    constructor(config, logger) {
+        this.logger = logger ?? getDefaultLogger();
+        this.logger.debug("Creating MechDriver", { configProvided: !!config });
+        this.client = new MechSqlClient(config);
+    }
+    async init() {
+        this.logger.debug("MechDriver initialized");
+    }
+    async acquireConnection() {
+        return new MechDatabaseConnection(this.client);
+    }
+    async beginTransaction(_connection, _settings) { }
+    async commitTransaction(_connection) { }
+    async rollbackTransaction(_connection) { }
+    async releaseConnection(_connection) { }
+    async destroy() { }
+}
+class MechPostgresDialect {
+    constructor(config) {
+        this.config = config;
+    }
+    createAdapter() {
+        return new PostgresAdapter();
+    }
+    createDriver() {
+        return new MechDriver(this.config);
+    }
+    createIntrospector(db) {
+        return new PostgresIntrospector(db);
+    }
+    createQueryCompiler() {
+        return new PostgresQueryCompiler();
+    }
+}
+export function createMechKysely(config) {
+    const logger = config.logger ?? getDefaultLogger();
+    logger.debug("Creating Kysely instance with MechPostgresDialect");
+    const dialect = new MechPostgresDialect(config);
+    const db = new Kysely({ dialect });
+    logger.debug("Kysely instance created");
+    return db;
+}
+//# sourceMappingURL=mech-kysely.js.map

package/dist/mech-kysely.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"mech-kysely.js","sourceRoot":"","sources":["../src/mech-kysely.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EACL,MAAM,EAGN,eAAe,EACf,oBAAoB,EACpB,qBAAqB,EAMtB,MAAM,QAAQ,CAAA;AACf,OAAO,EAAE,aAAa,EAAuB,MAAM,sBAAsB,CAAA;AACzE,OAAO,EAAU,gBAAgB,EAAE,MAAM,aAAa,CAAA;AAEtD;;;;;;;GAOG;AACH,MAAM,sBAAsB;IAG1B,YAAY,MAAqB;QAC/B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAA;IACtB,CAAC;IAED,KAAK,CAAC,YAAY,CAAI,aAA4B;QAChD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,OAAO,CAAI,aAAa,CAAC,GAAG,EAAE,aAAa,CAAC,UAAU,IAAI,EAAE,CAAC,CAAA;QAC9F,OAAO;YACL,IAAI,EAAE,MAAM,CAAC,IAAI;SACA,CAAA;IACrB,CAAC;IAED,KAAK,CAAC,CAAC,WAAW,CAAI,aAA4B;QAChD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,YAAY,CAAI,aAAa,CAAC,CAAA;QACxD,MAAM,MAAM,CAAA;IACd,CAAC;CACF;AAED,MAAM,UAAU;IAId,YAAY,MAA2B,EAAE,MAAe;QACtD,IAAI,CAAC,MAAM,GAAG,MAAM,IAAI,gBAAgB,EAAE,CAAA;QAC1C,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE,EAAE,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,CAAA;QACtE,IAAI,CAAC,MAAM,GAAG,IAAI,aAAa,CAAC,MAAM,CAAC,CAAA;IACzC,CAAC;IAED,KAAK,CAAC,IAAI;QACR,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,CAAC,CAAA;IAC7C,CAAC;IAED,KAAK,CAAC,iBAAiB;QACrB,OAAO,IAAI,sBAAsB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IAChD,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,WAA+B,EAAE,SAA8B,IAAkB,CAAC;IAEzG,KAAK,CAAC,iBAAiB,CAAC,WAA+B,IAAkB,CAAC;IAE1E,KAAK,CAAC,mBAAmB,CAAC,WAA+B,IAAkB,CAAC;IAE5E,KAAK,CAAC,iBAAiB,CAAC,WAA+B,IAAkB,CAAC;IAE1E,KAAK,CAAC,OAAO,KAAmB,CAAC;CAClC;AAED,MAAM,mBAAmB;IAGvB,YAAY,MAA2B;QACrC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAA;IACtB,CAAC;IAED,aAAa;QACX,OAAO,IAAI,eAAe,EAAE,CAAA;IAC9B,CAAC;IAED,YAAY;QACV,OAAO,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IACpC,CAAC;IAED,kBAAkB,CAAC,EAAe;QAChC,OAAO,IAAI,oBAAoB,CAAC,EAAE,CAAC,CAAA;IACrC,CAAC;IAED,mBAAmB;QACjB,OAAO,IAAI,qBAAqB,EAAE,CAAA;IACpC,CAAC;CACF;AAID,MAAM,UAAU,gBAAgB,CAAC,MAAwB;IACvD,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,IAAI,gBAAgB,EAAE,CAAA;IAClD,MAAM,CAAC,KAAK,CAAC,mDAAmD,CAAC,CAAA;IACjE,MAAM,OAAO,GAAG,IAAI,mBAAmB,CAAC,MAAM,CAAC,CAAA;IAC/C,MAAM,EAAE,GAAG,IAAI,MAAM,CAAC,EAAE,OAAO,EAAE,CAAC,CAAA;IAClC,MAAM,CAAC,KAAK,CAAC,yBAAyB,CAAC,CAAA;IACvC,OAAO,EAAE,CAAA;AACX,CAAC"}

package/dist/mech-sql-client.d.ts

@@ -0,0 +1,85 @@
+import { Logger } from "./logger.js";
+/**
+ * Response type from Mech Storage PostgreSQL API
+ */
+export type MechSqlResponse = {
+    success: boolean;
+    rows?: unknown[];
+    rowCount?: number;
+    error?: {
+        code: string;
+        message: string;
+        hints?: string[];
+    };
+};
+/**
+ * Configuration for MechSqlClient
+ *
+ * Minimal required config:
+ * - appId: Your Mech app ID
+ * - apiKey: Your Mech API key
+ *
+ * All other fields have sensible defaults:
+ * - baseUrl: defaults to "https://storage.mechdna.net"
+ * - appSchemaId: defaults to appId (most common case)
+ * - timeout: defaults to 30000ms
+ * - maxRetries: defaults to 2
+ */
+export type MechSqlClientConfig = {
+    /** Mech Storage base URL. Defaults to "https://storage.mechdna.net" */
+    baseUrl?: string;
+    /** Mech App ID. Required */
+    appId: string;
+    /** Mech App Schema ID. Defaults to appId if not provided */
+    appSchemaId?: string;
+    /** Mech API Key. Required */
+    apiKey: string;
+    /** Request timeout in ms. Defaults to 30000 */
+    timeout?: number;
+    /** Custom logger instance */
+    logger?: Logger;
+    /** Max retry attempts for failed requests. Defaults to 2 */
+    maxRetries?: number;
+};
+/**
+ * HTTP client for Mech Storage PostgreSQL API
+ *
+ * @example
+ * ```ts
+ * const client = new MechSqlClient()
+ * const { rows } = await client.execute("SELECT * FROM users WHERE id = $1", [123])
+ * ```
+ */
+export declare class MechSqlClient {
+    private readonly baseUrl;
+    private readonly appId;
+    private readonly appSchemaId;
+    private readonly apiKey;
+    private readonly timeout;
+    private readonly logger;
+    private readonly maxRetries;
+    constructor(config: MechSqlClientConfig);
+    /**
+     * Execute a SQL query against Mech Storage
+     *
+     * @param sql - SQL query string (use $1, $2, etc. for parameters)
+     * @param params - Query parameters
+     * @returns Object with rows and rowCount
+     * @throws ClearAuthSqlError, ClearAuthNetworkError, ClearAuthTimeoutError, ClearAuthRateLimitError
+     *
+     * @example
+     * ```ts
+     * const { rows } = await client.execute(
+     *   "SELECT * FROM users WHERE email = $1",
+     *   ["user@example.com"]
+     * )
+     * ```
+     */
+    execute<R = unknown>(sql: string, params?: readonly unknown[]): Promise<{
+        rows: R[];
+        rowCount: number;
+    }>;
+    private executeWithRetry;
+    private executeOnce;
+    private isRetryable;
+}