npm - cyberia - Versions diffs - 3.0.3 → 3.2.5 - Mend

cyberia 3.0.3 → 3.2.5

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (296) hide show

package/{.env.production → .env.example} +20 -4
package/.github/workflows/engine-cyberia.cd.yml +43 -10
package/.github/workflows/engine-cyberia.ci.yml +48 -26
package/.github/workflows/ghpkg.ci.yml +5 -5
package/.github/workflows/gitlab.ci.yml +1 -1
package/.github/workflows/hardhat.ci.yml +82 -0
package/.github/workflows/npmpkg.ci.yml +60 -14
package/.github/workflows/publish.ci.yml +26 -7
package/.github/workflows/publish.cyberia.ci.yml +5 -5
package/.github/workflows/pwa-microservices-template-page.cd.yml +6 -7
package/.github/workflows/pwa-microservices-template-test.ci.yml +4 -4
package/.github/workflows/release.cd.yml +14 -8
package/.vscode/extensions.json +9 -8
package/.vscode/settings.json +3 -2
package/CHANGELOG.md +643 -1
package/CLI-HELP.md +132 -57
package/Dockerfile +4 -2
package/README.md +347 -22
package/WHITE-PAPER.md +1540 -0
package/bin/build.js +21 -12
package/bin/cyberia.js +2640 -106
package/bin/deploy.js +258 -372
package/bin/file.js +5 -1
package/bin/index.js +2640 -106
package/bin/vs.js +3 -3
package/conf.js +169 -105
package/deployment.yaml +236 -20
package/hardhat/.env.example +31 -0
package/hardhat/README.md +531 -0
package/hardhat/WHITE-PAPER.md +1540 -0
package/hardhat/contracts/ObjectLayerToken.sol +391 -0
package/hardhat/deployments/.gitkeep +0 -0
package/hardhat/deployments/hardhat-ObjectLayerToken.json +11 -0
package/hardhat/hardhat.config.js +136 -0
package/hardhat/ignition/modules/ObjectLayerToken.js +21 -0
package/hardhat/networks/besu-object-layer.network.json +138 -0
package/hardhat/package-lock.json +4323 -0
package/hardhat/package.json +36 -0
package/hardhat/scripts/deployObjectLayerToken.js +98 -0
package/hardhat/test/ObjectLayerToken.js +592 -0
package/hardhat/types/ethers-contracts/ObjectLayerToken.ts +690 -0
package/hardhat/types/ethers-contracts/common.ts +92 -0
package/hardhat/types/ethers-contracts/factories/ObjectLayerToken__factory.ts +1055 -0
package/hardhat/types/ethers-contracts/factories/index.ts +4 -0
package/hardhat/types/ethers-contracts/hardhat.d.ts +47 -0
package/hardhat/types/ethers-contracts/index.ts +6 -0
package/jsdoc.dd-cyberia.json +68 -0
package/jsdoc.json +65 -49
package/manifests/cronjobs/dd-cron/dd-cron-backup.yaml +5 -4
package/manifests/cronjobs/dd-cron/dd-cron-dns.yaml +5 -4
package/manifests/deployment/dd-cyberia-development/deployment.yaml +562 -0
package/manifests/deployment/dd-cyberia-development/proxy.yaml +297 -0
package/manifests/deployment/dd-cyberia-development/pv-pvc.yaml +132 -0
package/manifests/deployment/dd-default-development/deployment.yaml +2 -2
package/manifests/deployment/dd-test-development/deployment.yaml +88 -74
package/manifests/deployment/dd-test-development/proxy.yaml +13 -4
package/manifests/deployment/playwright/deployment.yaml +1 -1
package/manifests/pv-pvc-dd.yaml +1 -1
package/nodemon.json +1 -1
package/package.json +60 -48
package/proxy.yaml +118 -10
package/pv-pvc.yaml +132 -0
package/scripts/k3s-node-setup.sh +1 -1
package/scripts/ports-ls.sh +2 -0
package/scripts/rhel-grpc-setup.sh +56 -0
package/src/api/atlas-sprite-sheet/atlas-sprite-sheet.controller.js +47 -1
package/src/api/atlas-sprite-sheet/atlas-sprite-sheet.model.js +17 -2
package/src/api/atlas-sprite-sheet/atlas-sprite-sheet.router.js +5 -0
package/src/api/atlas-sprite-sheet/atlas-sprite-sheet.service.js +80 -7
package/src/api/cyberia-dialogue/cyberia-dialogue.controller.js +93 -0
package/src/api/cyberia-dialogue/cyberia-dialogue.model.js +36 -0
package/src/api/cyberia-dialogue/cyberia-dialogue.router.js +29 -0
package/src/api/cyberia-dialogue/cyberia-dialogue.service.js +51 -0
package/src/api/cyberia-entity/cyberia-entity.controller.js +74 -0
package/src/api/cyberia-entity/cyberia-entity.model.js +24 -0
package/src/api/cyberia-entity/cyberia-entity.router.js +27 -0
package/src/api/cyberia-entity/cyberia-entity.service.js +42 -0
package/src/api/cyberia-instance/cyberia-fallback-world.js +368 -0
package/src/api/cyberia-instance/cyberia-instance.controller.js +92 -0
package/src/api/cyberia-instance/cyberia-instance.model.js +84 -0
package/src/api/cyberia-instance/cyberia-instance.router.js +63 -0
package/src/api/cyberia-instance/cyberia-instance.service.js +191 -0
package/src/api/cyberia-instance/cyberia-portal-connector.js +486 -0
package/src/api/cyberia-instance-conf/cyberia-instance-conf.controller.js +74 -0
package/src/api/cyberia-instance-conf/cyberia-instance-conf.defaults.js +413 -0
package/src/api/cyberia-instance-conf/cyberia-instance-conf.model.js +228 -0
package/src/api/cyberia-instance-conf/cyberia-instance-conf.router.js +27 -0
package/src/api/cyberia-instance-conf/cyberia-instance-conf.service.js +42 -0
package/src/api/cyberia-map/cyberia-map.controller.js +79 -0
package/src/api/cyberia-map/cyberia-map.model.js +30 -0
package/src/api/cyberia-map/cyberia-map.router.js +40 -0
package/src/api/cyberia-map/cyberia-map.service.js +74 -0
package/src/api/document/document.service.js +1 -1
package/src/api/file/file.controller.js +3 -1
package/src/api/file/file.ref.json +18 -0
package/src/api/file/file.service.js +28 -5
package/src/api/ipfs/ipfs.controller.js +4 -25
package/src/api/ipfs/ipfs.model.js +43 -34
package/src/api/ipfs/ipfs.router.js +8 -13
package/src/api/ipfs/ipfs.service.js +56 -104
package/src/api/object-layer/README.md +347 -22
package/src/api/object-layer/object-layer.controller.js +6 -2
package/src/api/object-layer/object-layer.model.js +12 -8
package/src/api/object-layer/object-layer.router.js +698 -42
package/src/api/object-layer/object-layer.service.js +119 -37
package/src/api/object-layer-render-frames/object-layer-render-frames.model.js +1 -2
package/src/api/user/user.router.js +10 -5
package/src/api/user/user.service.js +15 -14
package/src/cli/baremetal.js +6 -10
package/src/cli/cloud-init.js +0 -3
package/src/cli/cluster.js +7 -7
package/src/cli/db.js +723 -857
package/src/cli/deploy.js +215 -105
package/src/cli/env.js +34 -5
package/src/cli/fs.js +5 -4
package/src/cli/image.js +0 -3
package/src/cli/index.js +83 -15
package/src/cli/kubectl.js +211 -0
package/src/cli/monitor.js +5 -6
package/src/cli/release.js +284 -0
package/src/cli/repository.js +708 -62
package/src/cli/run.js +371 -151
package/src/cli/secrets.js +73 -2
package/src/cli/ssh.js +1 -1
package/src/cli/test.js +3 -3
package/src/client/Cryptokoyn.index.js +3 -4
package/src/client/CyberiaPortal.index.js +3 -4
package/src/client/Default.index.js +3 -4
package/src/client/Itemledger.index.js +4 -963
package/src/client/Underpost.index.js +3 -4
package/src/client/components/core/AgGrid.js +20 -5
package/src/client/components/core/Alert.js +2 -2
package/src/client/components/core/AppStore.js +69 -0
package/src/client/components/core/CalendarCore.js +2 -2
package/src/client/components/core/Content.js +22 -3
package/src/client/components/core/Docs.js +30 -6
package/src/client/components/core/DropDown.js +137 -17
package/src/client/components/core/FileExplorer.js +71 -4
package/src/client/components/core/Input.js +1 -1
package/src/client/components/core/Keyboard.js +2 -2
package/src/client/components/core/LogIn.js +2 -2
package/src/client/components/core/LogOut.js +2 -2
package/src/client/components/core/Modal.js +20 -7
package/src/client/components/core/Panel.js +0 -1
package/src/client/components/core/PanelForm.js +19 -19
package/src/client/components/core/RichText.js +1 -2
package/src/client/components/core/SocketIo.js +82 -29
package/src/client/components/core/SocketIoHandler.js +75 -0
package/src/client/components/core/Stream.js +143 -95
package/src/client/components/core/Webhook.js +40 -7
package/src/client/components/cryptokoyn/AppStoreCryptokoyn.js +5 -0
package/src/client/components/cryptokoyn/LogInCryptokoyn.js +3 -3
package/src/client/components/cryptokoyn/LogOutCryptokoyn.js +2 -2
package/src/client/components/cryptokoyn/MenuCryptokoyn.js +3 -3
package/src/client/components/cryptokoyn/SocketIoCryptokoyn.js +3 -51
package/src/client/components/cyberia/InstanceEngineCyberia.js +700 -0
package/src/client/components/cyberia/MapEngineCyberia.js +1359 -2
package/src/client/components/cyberia/ObjectLayerEngineModal.js +17 -6
package/src/client/components/cyberia/ObjectLayerEngineViewer.js +92 -54
package/src/client/components/cyberia-portal/AppStoreCyberiaPortal.js +5 -0
package/src/client/components/cyberia-portal/CommonCyberiaPortal.js +217 -30
package/src/client/components/cyberia-portal/CssCyberiaPortal.js +44 -2
package/src/client/components/cyberia-portal/LogInCyberiaPortal.js +3 -4
package/src/client/components/cyberia-portal/LogOutCyberiaPortal.js +2 -2
package/src/client/components/cyberia-portal/MenuCyberiaPortal.js +104 -9
package/src/client/components/cyberia-portal/RoutesCyberiaPortal.js +5 -0
package/src/client/components/cyberia-portal/SocketIoCyberiaPortal.js +3 -49
package/src/client/components/cyberia-portal/TranslateCyberiaPortal.js +4 -0
package/src/client/components/default/AppStoreDefault.js +5 -0
package/src/client/components/default/LogInDefault.js +3 -3
package/src/client/components/default/LogOutDefault.js +2 -2
package/src/client/components/default/MenuDefault.js +5 -5
package/src/client/components/default/SocketIoDefault.js +3 -51
package/src/client/components/itemledger/AppStoreItemledger.js +5 -0
package/src/client/components/itemledger/LogInItemledger.js +3 -3
package/src/client/components/itemledger/LogOutItemledger.js +2 -2
package/src/client/components/itemledger/MenuItemledger.js +3 -3
package/src/client/components/itemledger/SocketIoItemledger.js +3 -51
package/src/client/components/underpost/AppStoreUnderpost.js +5 -0
package/src/client/components/underpost/CssUnderpost.js +59 -0
package/src/client/components/underpost/LogInUnderpost.js +6 -3
package/src/client/components/underpost/LogOutUnderpost.js +4 -2
package/src/client/components/underpost/MenuUnderpost.js +104 -18
package/src/client/components/underpost/RoutesUnderpost.js +2 -0
package/src/client/components/underpost/SocketIoUnderpost.js +3 -51
package/src/client/public/cryptokoyn/assets/logo/base-icon.png +0 -0
package/src/client/public/cryptokoyn/browserconfig.xml +12 -0
package/src/client/public/cryptokoyn/microdata.json +85 -0
package/src/client/public/cryptokoyn/site.webmanifest +57 -0
package/src/client/public/cryptokoyn/sitemap +3 -3
package/src/client/public/default/sitemap +3 -3
package/src/client/public/itemledger/browserconfig.xml +2 -2
package/src/client/public/itemledger/manifest.webmanifest +4 -4
package/src/client/public/itemledger/microdata.json +71 -0
package/src/client/public/itemledger/sitemap +3 -3
package/src/client/public/itemledger/yandex-browser-manifest.json +2 -2
package/src/client/public/test/sitemap +3 -3
package/src/client/services/core/core.service.js +20 -8
package/src/client/services/cyberia-dialogue/cyberia-dialogue.service.js +105 -0
package/src/client/services/cyberia-entity/cyberia-entity.management.js +57 -0
package/src/client/services/cyberia-entity/cyberia-entity.service.js +105 -0
package/src/client/services/cyberia-instance/cyberia-instance.management.js +194 -0
package/src/client/services/cyberia-instance/cyberia-instance.service.js +122 -0
package/src/client/services/cyberia-instance-conf/cyberia-instance-conf.service.js +105 -0
package/src/client/services/cyberia-map/cyberia-map.management.js +193 -0
package/src/client/services/cyberia-map/cyberia-map.service.js +126 -0
package/src/client/services/instance/instance.management.js +2 -2
package/src/client/services/ipfs/ipfs.service.js +3 -23
package/src/client/services/object-layer/object-layer.management.js +3 -3
package/src/client/services/object-layer/object-layer.service.js +21 -0
package/src/client/services/user/user.management.js +2 -2
package/src/client/ssr/body/404.js +15 -11
package/src/client/ssr/body/500.js +15 -11
package/src/client/ssr/body/SwaggerDarkMode.js +285 -0
package/src/client/ssr/head/PwaItemledger.js +60 -0
package/src/client/ssr/offline/NoNetworkConnection.js +11 -10
package/src/client/ssr/pages/CyberiaServerMetrics.js +1 -1
package/src/client/ssr/pages/Test.js +11 -10
package/src/client.build.js +0 -3
package/src/client.dev.js +0 -3
package/src/db/DataBaseProvider.js +17 -2
package/src/db/mariadb/MariaDB.js +14 -9
package/src/db/mongo/MongooseDB.js +17 -1
package/src/grpc/cyberia/OFF_CHAIN_ECONOMY.md +305 -0
package/src/grpc/cyberia/README.md +326 -0
package/src/grpc/cyberia/grpc-server.js +530 -0
package/src/index.js +24 -1
package/src/proxy.js +0 -3
package/src/runtime/express/Dockerfile +4 -0
package/src/runtime/express/Express.js +33 -10
package/src/runtime/lampp/Dockerfile +13 -2
package/src/runtime/lampp/Lampp.js +33 -17
package/src/runtime/wp/Dockerfile +68 -0
package/src/runtime/wp/Wp.js +639 -0
package/src/server/auth.js +36 -15
package/src/server/backup.js +39 -12
package/src/server/besu-genesis-generator.js +1630 -0
package/src/server/client-build-docs.js +133 -17
package/src/server/client-build-live.js +9 -18
package/src/server/client-build.js +229 -101
package/src/server/client-dev-server.js +14 -13
package/src/server/client-formatted.js +109 -57
package/src/server/conf.js +391 -164
package/src/server/cron.js +27 -24
package/src/server/dns.js +29 -12
package/src/server/downloader.js +0 -2
package/src/server/ipfs-client.js +24 -1
package/src/server/logger.js +27 -9
package/src/server/object-layer.js +217 -103
package/src/server/peer.js +8 -2
package/src/server/process.js +1 -50
package/src/server/proxy.js +4 -8
package/src/server/runtime.js +30 -9
package/src/server/semantic-layer-generator-floor.js +359 -0
package/src/server/semantic-layer-generator-skin.js +1294 -0
package/src/server/semantic-layer-generator.js +116 -555
package/src/server/ssr.js +0 -3
package/src/server/start.js +19 -12
package/src/server/tls.js +0 -2
package/src/server.js +0 -4
package/src/ws/IoInterface.js +1 -10
package/src/ws/IoServer.js +14 -33
package/src/ws/core/channels/core.ws.chat.js +65 -20
package/src/ws/core/channels/core.ws.mailer.js +113 -32
package/src/ws/core/channels/core.ws.stream.js +90 -31
package/src/ws/core/core.ws.connection.js +12 -33
package/src/ws/core/core.ws.emit.js +10 -26
package/src/ws/core/core.ws.server.js +25 -58
package/src/ws/default/channels/default.ws.main.js +53 -12
package/src/ws/default/default.ws.connection.js +26 -13
package/src/ws/default/default.ws.server.js +30 -12
package/.env.development +0 -43
package/.env.test +0 -43
package/hardhat/contracts/CryptoKoyn.sol +0 -59
package/hardhat/contracts/ItemLedger.sol +0 -73
package/hardhat/contracts/Lock.sol +0 -34
package/hardhat/hardhat.config.cjs +0 -45
package/hardhat/ignition/modules/Lock.js +0 -18
package/hardhat/networks/cryptokoyn-itemledger.network.json +0 -29
package/hardhat/scripts/deployCryptokoyn.cjs +0 -25
package/hardhat/scripts/deployItemledger.cjs +0 -25
package/hardhat/test/Lock.js +0 -126
package/hardhat/white-paper.md +0 -581
package/src/client/components/cryptokoyn/CommonCryptokoyn.js +0 -29
package/src/client/components/cryptokoyn/ElementsCryptokoyn.js +0 -38
package/src/client/components/cyberia-portal/ElementsCyberiaPortal.js +0 -38
package/src/client/components/default/ElementsDefault.js +0 -38
package/src/client/components/itemledger/CommonItemledger.js +0 -29
package/src/client/components/itemledger/ElementsItemledger.js +0 -38
package/src/client/components/underpost/CommonUnderpost.js +0 -29
package/src/client/components/underpost/ElementsUnderpost.js +0 -38
package/src/ws/core/management/core.ws.chat.js +0 -8
package/src/ws/core/management/core.ws.mailer.js +0 -16
package/src/ws/core/management/core.ws.stream.js +0 -8
package/src/ws/default/management/default.ws.main.js +0 -8
package/white-paper.md +0 -581

package/src/api/ipfs/ipfs.model.js CHANGED Viewed

@@ -1,6 +1,22 @@
 /**
- * Mongoose model for IPFS API – a general-purpose pin record that relates
- * a user to a CID.
+ * Mongoose model for the IPFS CID Registry.
+ *
+ * Purpose: tracks every CID that the Engine has pinned to IPFS so that:
+ *   1. Deletions can cleanly unpin the right CID from the IPFS node/cluster.
+ *   2. Admins can run a health-check that verifies every DB-registered CID is
+ *      still actually pinned (GET /ipfs/verify).
+ *   3. Garbage-collection jobs can discover orphaned CIDs (pinned on the node
+ *      but not referenced by any DB document).
+ *
+ * Fields:
+ *   cid          - IPFS Content Identifier (CIDv0 or CIDv1).
+ *   resourceType - What kind of asset this CID belongs to:
+ *                    'object-layer-data'  - JSON payload of an ObjectLayer document.
+ *                    'atlas-sprite-sheet' - PNG sprite-sheet of an ObjectLayer.
+ *                    'atlas-metadata'     - JSON metadata of an AtlasSpriteSheet.
+ *   mfsPath      - MFS (Mutable File System) path used when the CID was added,
+ *                  e.g. /object-layer/sword/sword_data.json.
+ *                  Enables targeted removal via files/rm without knowing the CID.
  *
  * @module src/api/ipfs/ipfs.model.js
  * @namespace IpfsModel
@@ -8,14 +24,6 @@
 import { Schema, model } from 'mongoose';
-/**
- * @typedef {Object} Ipfs
- * @property {string}         cid       – IPFS Content Identifier (CIDv0 or CIDv1).
- * @property {Types.ObjectId} userId    – Reference to the User who owns / requested the pin.
- * @property {Date}           createdAt – Auto-managed by Mongoose.
- * @property {Date}           updatedAt – Auto-managed by Mongoose.
- * @memberof IpfsModel
- */
 const IpfsSchema = new Schema(
   {
     cid: {
@@ -23,10 +31,19 @@ const IpfsSchema = new Schema(
       required: true,
       trim: true,
     },
-    userId: {
-      type: Schema.Types.ObjectId,
-      ref: 'User',
+    // Asset category - determines which service owns this CID.
+    resourceType: {
+      type: String,
       required: true,
+      trim: true,
+      enum: ['object-layer-data', 'atlas-sprite-sheet', 'atlas-metadata'],
+    },
+    // MFS path used when the content was added to IPFS.
+    // Empty string when the content was added without an MFS copy.
+    mfsPath: {
+      type: String,
+      default: '',
+      trim: true,
     },
   },
   {
@@ -34,14 +51,14 @@ const IpfsSchema = new Schema(
   },
 );
-// Compound index: one pin record per user + CID pair.
-IpfsSchema.index({ cid: 1, userId: 1 }, { unique: true });
+// One DB record per (CID, resourceType) pair.
+IpfsSchema.index({ cid: 1, resourceType: 1 }, { unique: true });
-// Fast look-ups by user.
-IpfsSchema.index({ userId: 1 });
+// Fast look-ups for health-check and garbage-collection by type.
+IpfsSchema.index({ resourceType: 1 });
-// Fast look-ups by CID.
-IpfsSchema.index({ cid: 1 });
+// Fast look-ups for targeted MFS cleanup.
+IpfsSchema.index({ mfsPath: 1 });
 const IpfsModel = model('Ipfs', IpfsSchema);
@@ -49,21 +66,13 @@ const ProviderSchema = IpfsSchema;
 const IpfsDto = {
   select: {
-    get: () => {
-      return {
-        _id: 1,
-        cid: 1,
-        userId: 1,
-        createdAt: 1,
-        updatedAt: 1,
-      };
-    },
-  },
-  populate: {
-    user: () => ({
-      path: 'userId',
-      model: 'User',
-      select: '_id username email role',
+    get: () => ({
+      _id: 1,
+      cid: 1,
+      resourceType: 1,
+      mfsPath: 1,
+      createdAt: 1,
+      updatedAt: 1,
     }),
   },
 };

package/src/api/ipfs/ipfs.router.js CHANGED Viewed

@@ -8,19 +8,14 @@ const logger = loggerFactory(import.meta);
 const IpfsRouter = (options) => {
   const router = express.Router();
   const authMiddleware = options.authMiddleware;
-  router.post(`/pin`, authMiddleware, adminGuard, async (req, res) => await IpfsController.pin(req, res, options));
-  router.delete(
-    `/pin/:cid`,
-    authMiddleware,
-    adminGuard,
-    async (req, res) => await IpfsController.unpin(req, res, options),
-  );
-  router.post(`/:id`, authMiddleware, async (req, res) => await IpfsController.post(req, res, options));
-  router.post(`/`, authMiddleware, async (req, res) => await IpfsController.post(req, res, options));
-  router.get(`/:id`, authMiddleware, async (req, res) => await IpfsController.get(req, res, options));
-  router.get(`/`, authMiddleware, async (req, res) => await IpfsController.get(req, res, options));
-  router.put(`/:id`, authMiddleware, async (req, res) => await IpfsController.put(req, res, options));
-  router.put(`/`, authMiddleware, async (req, res) => await IpfsController.put(req, res, options));
+  // Health / audit — must come before /:id to avoid matching conflicts.
+  router.get(`/verify`, authMiddleware, adminGuard, async (req, res) => await IpfsController.verify(req, res, options));
+  router.post(`/:id`, authMiddleware, adminGuard, async (req, res) => await IpfsController.post(req, res, options));
+  router.post(`/`, authMiddleware, adminGuard, async (req, res) => await IpfsController.post(req, res, options));
+  router.get(`/:id`, authMiddleware, adminGuard, async (req, res) => await IpfsController.get(req, res, options));
+  router.get(`/`, authMiddleware, adminGuard, async (req, res) => await IpfsController.get(req, res, options));
+  router.put(`/:id`, authMiddleware, adminGuard, async (req, res) => await IpfsController.put(req, res, options));
+  router.put(`/`, authMiddleware, adminGuard, async (req, res) => await IpfsController.put(req, res, options));
   router.delete(`/:id`, authMiddleware, adminGuard, async (req, res) => await IpfsController.delete(req, res, options));
   router.delete(`/`, authMiddleware, adminGuard, async (req, res) => await IpfsController.delete(req, res, options));
   return router;

package/src/api/ipfs/ipfs.service.js CHANGED Viewed

@@ -7,47 +7,40 @@ import { IpfsDto } from './ipfs.model.js';
 const logger = loggerFactory(import.meta);
 /**
- * Create (or upsert) an IPFS pin record for a given user + CID pair.
- * This is a helper consumed by other services (ObjectLayer, AtlasSpriteSheet, …)
- * so they don't need to know about the Ipfs model directly.
+ * Upsert a CID registry entry.
+ * Called by asset services (ObjectLayer, AtlasSpriteSheet) after a successful
+ * IPFS pin so the registry always reflects what is actually pinned.
  *
- * @param {object}  opts
- * @param {string}  opts.cid      – IPFS Content Identifier.
- * @param {string}  opts.userId   – Mongoose ObjectId string of the owning user.
- * @param {object}  opts.options  – Router options ({ host, path }) for DB lookup.
+ * @param {object} opts
+ * @param {string} opts.cid          - IPFS Content Identifier.
+ * @param {string} opts.resourceType - Asset category ('object-layer-data' | 'atlas-sprite-sheet' | 'atlas-metadata').
+ * @param {string} [opts.mfsPath]    - MFS path used when adding the content.
+ * @param {object} opts.options      - Router options ({ host, path }) for DB lookup.
  * @returns {Promise<import('mongoose').Document>}
  */
-const createPinRecord = async ({ cid, userId, options }) => {
+const createPinRecord = async ({ cid, resourceType, mfsPath = '', options }) => {
   const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
-  // Upsert: if a record for this user + CID already exists, just touch it.
   const record = await Ipfs.findOneAndUpdate(
-    { cid, userId },
-    { cid, userId },
-    { upsert: true, new: true, setDefaultsOnInsert: true },
+    { cid, resourceType },
+    { cid, resourceType, mfsPath },
+    { upsert: true, returnDocument: 'after', setDefaultsOnInsert: true },
   );
-  logger.info(`IPFS pin record upserted – CID: ${cid}, userId: ${userId}`);
+  logger.info(`IPFS registry upserted – CID: ${cid}, type: ${resourceType}, mfsPath: ${mfsPath}`);
   return record;
 };
 /**
- * Remove all DB pin records for a CID, then best-effort unpin from IPFS node/cluster.
- * Always deletes the DB records first so that even if the IPFS node is unreachable
- * the database stays clean.
+ * Remove all DB registry entries for a CID, then best-effort unpin from the IPFS node.
+ * Always deletes DB records first so the registry stays clean even if the node is down.
  *
- * @param {string} cid     – IPFS Content Identifier to clean up.
- * @param {object} options – Router options ({ host, path }) for DB lookup.
+ * @param {string} cid     - IPFS Content Identifier to remove.
+ * @param {object} options - Router options ({ host, path }) for DB lookup.
  * @returns {Promise<void>}
  */
 const removePinRecordsAndUnpin = async (cid, options) => {
   const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
-  // 1. Remove all DB pin records for this CID first
   await Ipfs.deleteMany({ cid });
-  logger.info(`Removed all IPFS pin records for CID: ${cid}`);
-  // 2. Best-effort unpin from IPFS node/cluster (ignore "not pinned" errors)
+  logger.info(`Removed IPFS registry entries for CID: ${cid}`);
   try {
     await IpfsClient.unpinCid(cid);
   } catch (err) {
@@ -65,128 +58,87 @@ const IpfsService = {
   // ──────────────────────────────────────────────
   post: async (req, res, options) => {
-    /** @type {import('./ipfs.model.js').IpfsModel} */
     const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
-    // Accept { cid, userId? } in body.
-    // If userId is omitted, fall back to the authenticated user.
-    const body = { ...req.body };
-    if (!body.userId && req.auth && req.auth.user) {
-      body.userId = req.auth.user._id;
-    }
-    // Strip pinType if sent by legacy clients
-    delete body.pinType;
-    return await new Ipfs(body).save();
+    return await new Ipfs(req.body).save();
   },
   get: async (req, res, options) => {
-    /** @type {import('./ipfs.model.js').IpfsModel} */
     const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
     if (req.params.id) {
-      return await Ipfs.findById(req.params.id).select(IpfsDto.select.get()).populate(IpfsDto.populate.user());
+      return await Ipfs.findById(req.params.id).select(IpfsDto.select.get());
     }
     const { query, sort, skip, limit, page } = DataQuery.parse(req.query);
     const [data, total] = await Promise.all([
-      Ipfs.find(query)
-        .select(IpfsDto.select.get())
-        .sort(sort)
-        .limit(limit)
-        .skip(skip)
-        .populate(IpfsDto.populate.user()),
+      Ipfs.find(query).select(IpfsDto.select.get()).sort(sort).limit(limit).skip(skip),
       Ipfs.countDocuments(query),
     ]);
     const totalPages = Math.ceil(total / limit);
     return { data, total, page, totalPages };
   },
   put: async (req, res, options) => {
-    /** @type {import('./ipfs.model.js').IpfsModel} */
     const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
-    return await Ipfs.findByIdAndUpdate(req.params.id, req.body, { new: true });
+    return await Ipfs.findByIdAndUpdate(req.params.id, req.body, { returnDocument: 'after' });
   },
   delete: async (req, res, options) => {
-    /** @type {import('./ipfs.model.js').IpfsModel} */
     const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
     if (req.params.id) {
       const record = await Ipfs.findById(req.params.id);
       if (record) {
-        // Remove DB record first, then best-effort unpin
         await Ipfs.findByIdAndDelete(req.params.id);
-        try {
-          // Only unpin from IPFS if no other records reference this CID
-          const remaining = await Ipfs.countDocuments({ cid: record.cid });
-          if (remaining === 0) {
+        // Only unpin from the node when no other registry entries reference this CID.
+        const remaining = await Ipfs.countDocuments({ cid: record.cid });
+        if (remaining === 0) {
+          try {
             await IpfsClient.unpinCid(record.cid);
+          } catch (err) {
+            logger.warn(`Failed to unpin CID ${record.cid}: ${err.message}`);
           }
-        } catch (err) {
-          logger.warn(`Failed to unpin CID ${record.cid} from IPFS node: ${err.message}`);
         }
         return record;
       }
       return null;
     }
     return await Ipfs.deleteMany();
   },
   // ──────────────────────────────────────────────
-  //  Pin / Unpin helpers (called via controller)
+  //  Health / audit
   // ──────────────────────────────────────────────
   /**
-   * POST /ipfs/pin  – add content to IPFS, pin it, and create a DB record.
-   * Body: { data: <string|object>, userId? }
+   * GET /ipfs/verify
+   *
+   * Iterates every CID in the registry and checks whether it is actually pinned
+   * on the connected IPFS node. Returns a summary suitable for admin dashboards
+   * and automated alerting.
+   *
+   * Response shape:
+   *   { total, pinned, unpinned, errors, entries: [{ cid, resourceType, mfsPath, pinned, error? }] }
    */
-  pin: async (req, res, options) => {
-    const userId = req.body.userId || (req.auth && req.auth.user ? req.auth.user._id : undefined);
-    if (!userId) throw new Error('userId is required to create a pin record');
-    const content = typeof req.body.data === 'string' ? req.body.data : JSON.stringify(req.body.data);
-    const result = await IpfsClient.addToIpfs(Buffer.from(content, 'utf-8'), req.body.filename || 'data');
-    if (!result) throw new Error('IPFS node is unreachable – content was not pinned');
-    const record = await createPinRecord({
-      cid: result.cid,
-      userId,
-      options,
-    });
-    return { cid: result.cid, size: result.size, record };
-  },
-  /**
-   * DELETE /ipfs/pin/:cid  – unpin a CID and remove the DB record for the current user.
-   */
-  unpin: async (req, res, options) => {
+  verify: async (req, res, options) => {
     const Ipfs = DataBaseProvider.instance[`${options.host}${options.path}`].mongoose.models.Ipfs;
-    const userId = req.auth && req.auth.user ? req.auth.user._id : undefined;
-    const cid = req.params.cid || req.params.id;
+    const records = await Ipfs.find({}).select(IpfsDto.select.get()).lean();
-    const record = await Ipfs.findOne({ cid, ...(userId ? { userId } : {}) });
-    if (!record) throw new Error(`No pin record found for CID ${cid}`);
-    // Remove DB record first
-    await Ipfs.findByIdAndDelete(record._id);
-    // Only unpin from the IPFS node when nobody else has a record for this CID
-    const remaining = await Ipfs.countDocuments({ cid });
-    if (remaining === 0) {
-      try {
-        await IpfsClient.unpinCid(cid);
-      } catch (err) {
-        logger.warn(`Best-effort IPFS unpin failed for CID ${cid}: ${err.message}`);
-      }
-    }
+    let pinned = 0;
+    let unpinned = 0;
+    let errors = 0;
+    const entries = await Promise.all(
+      records.map(async (r) => {
+        try {
+          const isPinned = await IpfsClient.isCidPinned(r.cid);
+          if (isPinned) pinned++;
+          else unpinned++;
+          return { cid: r.cid, resourceType: r.resourceType, mfsPath: r.mfsPath, pinned: isPinned };
+        } catch (err) {
+          errors++;
+          return { cid: r.cid, resourceType: r.resourceType, mfsPath: r.mfsPath, pinned: false, error: err.message };
+        }
+      }),
+    );
-    return { success: true, cid };
+    return { total: records.length, pinned, unpinned, errors, entries };
   },
 };