deesse 0.2.7 → 0.2.9

package/dist/cache.d.ts

@@ -0,0 +1,16 @@
+export type CacheState<T> = {
+    instances: Map<string, T>;
+    promises: Map<string, Promise<T>>;
+};
+export declare const emptyCache: <T>() => CacheState<T>;
+export declare const setCacheInstance: <T>(state: CacheState<T>, key: string, instance: T) => CacheState<T>;
+export declare const setCachePromise: <T>(state: CacheState<T>, key: string, promise: Promise<T>) => CacheState<T>;
+export declare const getCacheEntry: <T>(state: CacheState<T>, key: string) => T | Promise<T> | undefined;
+export declare const removeCachePromise: <T>(state: CacheState<T>, key: string) => CacheState<T>;
+export type CreateCache = <T, Options>(createInstance: (options: Options) => Promise<T>) => {
+    get(key: string, options: Options): Promise<T>;
+    getState(): Readonly<CacheState<T>>;
+    clear(): void;
+};
+export declare const createCache: CreateCache;
+//# sourceMappingURL=cache.d.ts.map

package/dist/cache.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cache.d.ts","sourceRoot":"","sources":["../src/cache.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,UAAU,CAAC,CAAC,IAAI;IAC1B,SAAS,EAAE,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC1B,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;CACnC,CAAC;AAEF,eAAO,MAAM,UAAU,GAAI,CAAC,OAAK,UAAU,CAAC,CAAC,CAG3C,CAAC;AAEH,eAAO,MAAM,gBAAgB,GAAI,CAAC,EAAE,OAAO,UAAU,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,EAAE,UAAU,CAAC,KAAG,UAAU,CAAC,CAAC,CAO/F,CAAC;AAEH,eAAO,MAAM,eAAe,GAAI,CAAC,EAAE,OAAO,UAAU,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,EAAE,SAAS,OAAO,CAAC,CAAC,CAAC,KAAG,UAAU,CAAC,CAAC,CAGtG,CAAC;AAEH,eAAO,MAAM,aAAa,GAAI,CAAC,EAAE,OAAO,UAAU,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,KAAG,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,GAAG,SAIrF,CAAC;AAEF,eAAO,MAAM,kBAAkB,GAAI,CAAC,EAAE,OAAO,UAAU,CAAC,CAAC,CAAC,EAAE,KAAK,MAAM,KAAG,UAAU,CAAC,CAAC,CAOpF,CAAC;AAEH,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,EAAE,OAAO,EACnC,cAAc,EAAE,CAAC,OAAO,EAAE,OAAO,KAAK,OAAO,CAAC,CAAC,CAAC,KAC7C;IACH,GAAG,CAAC,GAAG,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;IAC/C,QAAQ,IAAI,QAAQ,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,KAAK,IAAI,IAAI,CAAC;CACf,CAAC;AAEF,eAAO,MAAM,WAAW,EAAE,WA+BzB,CAAC"}

package/dist/cache.js

@@ -0,0 +1,59 @@
+// Generic cache utility with immutable state
+export const emptyCache = () => ({
+    instances: new Map(),
+    promises: new Map(),
+});
+export const setCacheInstance = (state, key, instance) => ({
+    instances: new Map(state.instances).set(key, instance),
+    promises: (() => {
+        const m = new Map(state.promises);
+        m.delete(key);
+        return m;
+    })(),
+});
+export const setCachePromise = (state, key, promise) => ({
+    instances: state.instances,
+    promises: new Map(state.promises).set(key, promise),
+});
+export const getCacheEntry = (state, key) => {
+    const instance = state.instances.get(key);
+    if (instance !== undefined)
+        return instance;
+    return state.promises.get(key);
+};
+export const removeCachePromise = (state, key) => ({
+    instances: state.instances,
+    promises: (() => {
+        const m = new Map(state.promises);
+        m.delete(key);
+        return m;
+    })(),
+});
+export const createCache = (createInstance) => {
+    let state = emptyCache();
+    return {
+        async get(key, options) {
+            const cached = getCacheEntry(state, key);
+            if (cached !== undefined)
+                return cached;
+            const promise = createInstance(options);
+            state = setCachePromise(state, key, promise);
+            try {
+                const instance = await promise;
+                state = setCacheInstance(state, key, instance);
+                return instance;
+            }
+            catch (err) {
+                state = removeCachePromise(state, key);
+                throw err;
+            }
+        },
+        getState() {
+            return state;
+        },
+        clear() {
+            state = emptyCache();
+        },
+    };
+};
+//# sourceMappingURL=cache.js.map

package/dist/cache.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cache.js","sourceRoot":"","sources":["../src/cache.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAO7C,MAAM,CAAC,MAAM,UAAU,GAAG,GAAqB,EAAE,CAAC,CAAC;IACjD,SAAS,EAAE,IAAI,GAAG,EAAE;IACpB,QAAQ,EAAE,IAAI,GAAG,EAAE;CACpB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAI,KAAoB,EAAE,GAAW,EAAE,QAAW,EAAiB,EAAE,CAAC,CAAC;IACrG,SAAS,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC;IACtD,QAAQ,EAAE,CAAC,GAAG,EAAE;QACd,MAAM,CAAC,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAClC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,OAAO,CAAC,CAAC;IACX,CAAC,CAAC,EAAE;CACL,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,eAAe,GAAG,CAAI,KAAoB,EAAE,GAAW,EAAE,OAAmB,EAAiB,EAAE,CAAC,CAAC;IAC5G,SAAS,EAAE,KAAK,CAAC,SAAS;IAC1B,QAAQ,EAAE,IAAI,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,GAAG,EAAE,OAAO,CAAC;CACpD,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,aAAa,GAAG,CAAI,KAAoB,EAAE,GAAW,EAA8B,EAAE;IAChG,MAAM,QAAQ,GAAG,KAAK,CAAC,SAAS,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC1C,IAAI,QAAQ,KAAK,SAAS;QAAE,OAAO,QAAQ,CAAC;IAC5C,OAAO,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;AACjC,CAAC,CAAC;AAEF,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAI,KAAoB,EAAE,GAAW,EAAiB,EAAE,CAAC,CAAC;IAC1F,SAAS,EAAE,KAAK,CAAC,SAAS;IAC1B,QAAQ,EAAE,CAAC,GAAG,EAAE;QACd,MAAM,CAAC,GAAG,IAAI,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAClC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACd,OAAO,CAAC,CAAC;IACX,CAAC,CAAC,EAAE;CACL,CAAC,CAAC;AAUH,MAAM,CAAC,MAAM,WAAW,GAAgB,CACtC,cAAgD,EAChD,EAAE;IACF,IAAI,KAAK,GAAkB,UAAU,EAAK,CAAC;IAE3C,OAAO;QACL,KAAK,CAAC,GAAG,CAAC,GAAW,EAAE,OAAgB;YACrC,MAAM,MAAM,GAAG,aAAa,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YACzC,IAAI,MAAM,KAAK,SAAS;gBAAE,OAAO,MAAW,CAAC;YAE7C,MAAM,OAAO,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC;YACxC,KAAK,GAAG,eAAe,CAAC,KAAK,EAAE,GAAG,EAAE,OAAO,CAAC,CAAC;YAE7C,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC;gBAC/B,KAAK,GAAG,gBAAgB,CAAC,KAAK,EAAE,GAAG,EAAE,QAAQ,CAAC,CAAC;gBAC/C,OAAO,QAAQ,CAAC;YAClB,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,KAAK,GAAG,kBAAkB,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;gBACvC,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QAED,QAAQ;YACN,OAAO,KAAK,CAAC;QACf,CAAC;QAED,KAAK;YACH,KAAK,GAAG,UAAU,EAAK,CAAC;QAC1B,CAAC;KACF,CAAC;AACJ,CAAC,CAAC"}

package/dist/client.d.ts

@@ -0,0 +1,27 @@
+import type { AuthClient, BetterAuthClientOptions } from "better-auth/client";
+export interface DeesseClientOptions {
+    auth: BetterAuthClientOptions;
+}
+export interface DeesseClient {
+    auth: AuthClient<BetterAuthClientOptions>;
+}
+/**
+ * Creates a type-safe authentication client.
+ * Wraps better-auth's createAuthClient with a simpler API.
+ *
+ * @example
+ * ```typescript
+ * import { createClient } from "deesse";
+ *
+ * export const client = createClient({
+ *   auth: {
+ *     baseURL: "/api/auth",
+ *   },
+ * });
+ *
+ * // In a component:
+ * const { data, isPending } = client.auth.useSession();
+ * ```
+ */
+export declare function createClient(options: DeesseClientOptions): DeesseClient;
+//# sourceMappingURL=client.d.ts.map

package/dist/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EACV,UAAU,EACV,uBAAuB,EACxB,MAAM,oBAAoB,CAAC;AAE5B,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,uBAAuB,CAAC;CAC/B;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,UAAU,CAAC,uBAAuB,CAAC,CAAC;CAC3C;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,YAAY,CAC1B,OAAO,EAAE,mBAAmB,GAC3B,YAAY,CAId"}

package/dist/client.js

@@ -0,0 +1,24 @@
+import { createAuthClient } from "better-auth/react";
+/**
+ * Creates a type-safe authentication client.
+ * Wraps better-auth's createAuthClient with a simpler API.
+ *
+ * @example
+ * ```typescript
+ * import { createClient } from "deesse";
+ *
+ * export const client = createClient({
+ *   auth: {
+ *     baseURL: "/api/auth",
+ *   },
+ * });
+ *
+ * // In a component:
+ * const { data, isPending } = client.auth.useSession();
+ * ```
+ */
+export function createClient(options) {
+    const auth = createAuthClient(options.auth);
+    return { auth };
+}
+//# sourceMappingURL=client.js.map

package/dist/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../src/client.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,gBAAgB,EAAE,MAAM,mBAAmB,CAAC;AAcrD;;;;;;;;;;;;;;;;;GAiBG;AACH,MAAM,UAAU,YAAY,CAC1B,OAA4B;IAE5B,MAAM,IAAI,GAAG,gBAAgB,CAAC,OAAO,CAAC,IAAI,CAAmD,CAAC;IAE9F,OAAO,EAAE,IAAI,EAAE,CAAC;AAClB,CAAC"}

package/dist/config/define.d.ts

@@ -1,10 +1,25 @@
 import type { PostgresJsDatabase } from 'drizzle-orm/postgres-js';
+import type { BetterAuthPlugin } from 'better-auth';
 import type { Plugin } from './plugin';
 import type { PageTree } from './page';
 export type Config = {
+    name?: string;
     database: PostgresJsDatabase;
     plugins?: Plugin[];
     pages?: PageTree[];
+    secret: string;
+    auth: {
+        baseURL: string;
+    };
 };
-export declare function defineConfig(config: Config): Config;
+/**
+ * Internal config type used at runtime - includes admin plugin
+ */
+export type InternalConfig = Config & {
+    auth: {
+        baseURL: string;
+        plugins: BetterAuthPlugin[];
+    };
+};
+export declare function defineConfig(config: Config): InternalConfig;
 //# sourceMappingURL=define.d.ts.map

package/dist/config/define.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"define.d.ts","sourceRoot":"","sources":["../../src/config/define.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAClE,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AAEvC,MAAM,MAAM,MAAM,GAAG;IACnB,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,QAAQ,EAAE,CAAC;CACpB,CAAC;AAEF,wBAAgB,YAAY,CAAC,MAAM,EAAE,MAAM,UAE1C"}
+{"version":3,"file":"define.d.ts","sourceRoot":"","sources":["../../src/config/define.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,yBAAyB,CAAC;AAClE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AACpD,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC;AAGvC,MAAM,MAAM,MAAM,GAAG;IACnB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,kBAAkB,CAAC;IAC7B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,KAAK,CAAC,EAAE,QAAQ,EAAE,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,IAAI,EAAE;QACJ,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,MAAM,GAAG;IACpC,IAAI,EAAE;QACJ,OAAO,EAAE,MAAM,CAAC;QAChB,OAAO,EAAE,gBAAgB,EAAE,CAAC;KAC7B,CAAC;CACH,CAAC;AAEF,wBAAgB,YAAY,CAAC,MAAM,EAAE,MAAM,GAAG,cAAc,CAW3D"}

package/dist/config/define.js

@@ -1,4 +1,13 @@
+import { admin } from 'better-auth/plugins';
 export function defineConfig(config) {
-    return config;
+    // Always include admin plugin - user cannot remove it
+    const authPlugins = [admin()];
+    return {
+        ...config,
+        auth: {
+            ...config.auth,
+            plugins: authPlugins,
+        },
+    };
 }
 //# sourceMappingURL=define.js.map

package/dist/config/define.js.map

@@ -1 +1 @@
-{"version":3,"file":"define.js","sourceRoot":"","sources":["../../src/config/define.ts"],"names":[],"mappings":"AAUA,MAAM,UAAU,YAAY,CAAC,MAAc;IACzC,OAAO,MAAM,CAAC;AAChB,CAAC"}
+{"version":3,"file":"define.js","sourceRoot":"","sources":["../../src/config/define.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,KAAK,EAAE,MAAM,qBAAqB,CAAC;AAuB5C,MAAM,UAAU,YAAY,CAAC,MAAc;IACzC,sDAAsD;IACtD,MAAM,WAAW,GAAuB,CAAC,KAAK,EAAE,CAAC,CAAC;IAElD,OAAO;QACL,GAAG,MAAM;QACT,IAAI,EAAE;YACJ,GAAG,MAAM,CAAC,IAAI;YACd,OAAO,EAAE,WAAW;SACrB;KACgB,CAAC;AACtB,CAAC"}

package/dist/config/index.d.ts

@@ -1,5 +1,5 @@
 export { defineConfig } from "./define";
-export type { Config } from "./define";
+export type { Config, InternalConfig } from "./define";
 export { plugin } from "./plugin";
 export type { Plugin } from "./plugin";
 export { page, section } from "./page";

package/dist/config/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/config/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAClC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC;AACvC,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/config/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AACvD,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAClC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,QAAQ,CAAC;AACvC,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,QAAQ,CAAC"}

package/dist/config/page.d.ts

@@ -11,6 +11,7 @@ export type Section = {
     type: "section";
     name: string;
     slug: string;
+    bottom?: boolean;
     children: PageTree[];
 };
 export type PageTree = Page | Section;
@@ -23,6 +24,7 @@ export declare function page(config: {
 export declare function section(config: {
     name: string;
     slug?: string;
+    bottom?: boolean;
     children: PageTree[];
 }): Section;
 //# sourceMappingURL=page.d.ts.map

package/dist/config/page.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"page.d.ts","sourceRoot":"","sources":["../../src/config/page.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AACvC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,MAAM,MAAM,IAAI,GAAG;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,OAAO,EAAE,SAAS,GAAG,IAAI,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,OAAO,GAAG;IACpB,IAAI,EAAE,SAAS,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,EAAE,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,QAAQ,GAAG,IAAI,GAAG,OAAO,CAAC;AAMtC,wBAAgB,IAAI,CAAC,MAAM,EAAE;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,OAAO,EAAE,SAAS,GAAG,IAAI,CAAC;CAC3B,GAAG,IAAI,CAQP;AAED,wBAAgB,OAAO,CAAC,MAAM,EAAE;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,QAAQ,EAAE,CAAC;CACtB,GAAG,OAAO,CAOV"}
+{"version":3,"file":"page.d.ts","sourceRoot":"","sources":["../../src/config/page.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,OAAO,CAAC;AACvC,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE/C,MAAM,MAAM,IAAI,GAAG;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,OAAO,EAAE,SAAS,GAAG,IAAI,CAAC;CAC3B,CAAC;AAEF,MAAM,MAAM,OAAO,GAAG;IACpB,IAAI,EAAE,SAAS,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,QAAQ,EAAE,CAAC;CACtB,CAAC;AAEF,MAAM,MAAM,QAAQ,GAAG,IAAI,GAAG,OAAO,CAAC;AAMtC,wBAAgB,IAAI,CAAC,MAAM,EAAE;IAC3B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,UAAU,CAAC;IAClB,OAAO,EAAE,SAAS,GAAG,IAAI,CAAC;CAC3B,GAAG,IAAI,CAQP;AAED,wBAAgB,OAAO,CAAC,MAAM,EAAE;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,QAAQ,EAAE,CAAC;CACtB,GAAG,OAAO,CAQV"}

package/dist/config/page.js

@@ -15,6 +15,7 @@ export function section(config) {
         type: "section",
         name: config.name,
         slug: config.slug ?? toSlug(config.name),
+        bottom: config.bottom,
         children: config.children,
     };
 }

package/dist/config/page.js.map

@@ -1 +1 @@
-{"version":3,"file":"page.js","sourceRoot":"","sources":["../../src/config/page.ts"],"names":[],"mappings":"AAoBA,SAAS,MAAM,CAAC,IAAY;IAC1B,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;AACjD,CAAC;AAED,MAAM,UAAU,IAAI,CAAC,MAKpB;IACC,OAAO;QACL,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;QACxC,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,OAAO,EAAE,MAAM,CAAC,OAAO;KACxB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,OAAO,CAAC,MAIvB;IACC,OAAO;QACL,IAAI,EAAE,SAAS;QACf,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;QACxC,QAAQ,EAAE,MAAM,CAAC,QAAQ;KAC1B,CAAC;AACJ,CAAC"}
+{"version":3,"file":"page.js","sourceRoot":"","sources":["../../src/config/page.ts"],"names":[],"mappings":"AAqBA,SAAS,MAAM,CAAC,IAAY;IAC1B,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;AACjD,CAAC;AAED,MAAM,UAAU,IAAI,CAAC,MAKpB;IACC,OAAO;QACL,IAAI,EAAE,MAAM;QACZ,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;QACxC,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,OAAO,EAAE,MAAM,CAAC,OAAO;KACxB,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,OAAO,CAAC,MAKvB;IACC,OAAO;QACL,IAAI,EAAE,SAAS;QACf,IAAI,EAAE,MAAM,CAAC,IAAI;QACjB,IAAI,EAAE,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;QACxC,MAAM,EAAE,MAAM,CAAC,MAAM;QACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;KAC1B,CAAC;AACJ,CAAC"}

package/dist/index.d.ts

@@ -1,9 +1,32 @@
+import type { InternalConfig } from "./config/define";
+import { type Deesse } from "./server";
 export { defineConfig } from "./config";
-export type { Config } from "./config";
+export type { Config, InternalConfig } from "./config";
 export { plugin } from "./config";
 export type { Plugin } from "./config";
 export { page, section } from "./config";
 export type { Page, Section, PageTree } from "./config";
 export { z } from "zod";
 export type { ZodSchema } from "zod";
+export type { Deesse } from "./server";
+export { createClient } from "./client";
+export type { DeesseClient, DeesseClientOptions } from "./client";
+export { isDatabaseEmpty, requireDatabaseNotEmpty, validateAdminEmail } from "./lib/admin";
+export type { EmailValidationOptions } from "./lib/admin";
+export { isPublicEmailDomain, isAllowedAdminEmail, getAllowedDomains, validateAdminEmailDomain, PUBLIC_EMAIL_DOMAINS } from "./lib/validation";
+/**
+ * Get the Deesse singleton instance.
+ * Cached on global to persist across HMR.
+ */
+export declare const getDeesse: (config: InternalConfig) => Promise<Deesse>;
+/**
+ * Clear the Deesse singleton cache.
+ * Primarily useful for testing.
+ */
+export declare const clearDeesseCache: () => void;
+/**
+ * Graceful shutdown - call this on process exit.
+ * Ensures all database connections are properly closed.
+ */
+export declare const shutdownDeesse: () => Promise<void>;
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAClC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AACzC,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAC;AAExD,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,YAAY,EAAE,SAAS,EAAE,MAAM,KAAK,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAEA,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAEtD,OAAO,EAAgB,KAAK,MAAM,EAAE,MAAM,UAAU,CAAC;AAErD,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM,UAAU,CAAC;AACvD,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAClC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AACvC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AACzC,YAAY,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAC;AAExD,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,YAAY,EAAE,SAAS,EAAE,MAAM,KAAK,CAAC;AAErC,YAAY,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAEvC,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,YAAY,EAAE,YAAY,EAAE,mBAAmB,EAAE,MAAM,UAAU,CAAC;AAElE,OAAO,EAAE,eAAe,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC3F,YAAY,EAAE,sBAAsB,EAAE,MAAM,aAAa,CAAC;AAC1D,OAAO,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,wBAAwB,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AA+C/I;;;GAGG;AACH,eAAO,MAAM,SAAS,GACpB,QAAQ,cAAc,KACrB,OAAO,CAAC,MAAM,CA4BhB,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,gBAAgB,QAAO,IAKnC,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,cAAc,QAAa,OAAO,CAAC,IAAI,CAcnD,CAAC"}

package/dist/index.js

@@ -1,6 +1,110 @@
 // @deessejs/deesse core package
+import { createDeesse } from "./server";
 export { defineConfig } from "./config";
 export { plugin } from "./config";
 export { page, section } from "./config";
 export { z } from "zod";
+export { createClient } from "./client";
+export { isDatabaseEmpty, requireDatabaseNotEmpty, validateAdminEmail } from "./lib/admin";
+export { isPublicEmailDomain, isAllowedAdminEmail, getAllowedDomains, validateAdminEmailDomain, PUBLIC_EMAIL_DOMAINS } from "./lib/validation";
+/**
+ * Symbol-based global storage for Deesse instance.
+ * Using Symbol.for ensures uniqueness across the process.
+ */
+const DEESSE_GLOBAL_KEY = Symbol.for("@deessejs/core.instance");
+function getGlobalCache() {
+    const g = global;
+    if (!g[DEESSE_GLOBAL_KEY]) {
+        g[DEESSE_GLOBAL_KEY] = {
+            instance: undefined,
+            config: undefined,
+            pool: undefined,
+        };
+    }
+    return g[DEESSE_GLOBAL_KEY];
+}
+/**
+ * Deep equality check for config comparison.
+ * Required because config objects are recreated on HMR.
+ */
+function isConfigEqual(a, b) {
+    if (a.secret !== b.secret)
+        return false;
+    if (a.name !== b.name)
+        return false;
+    if (a.auth.baseURL !== b.auth.baseURL)
+        return false;
+    return true;
+}
+/**
+ * Extract pool reference from database.
+ * For pg Pool passed to drizzle-orm/node-postgres, the pool is stored in $client.
+ */
+function extractPool(db) {
+    return db.$client;
+}
+/**
+ * Get the Deesse singleton instance.
+ * Cached on global to persist across HMR.
+ */
+export const getDeesse = async (config) => {
+    const cache = getGlobalCache();
+    // Case 1: Instance exists and config is semantically equal
+    if (cache.instance && cache.config && isConfigEqual(cache.config, config)) {
+        return cache.instance;
+    }
+    // Case 2: Instance exists but config changed - hot reload
+    // IMPORTANT: Don't close the pool! cache.instance still uses the old pool.
+    // The new config's pool will be garbage collected when the HMR module reference is dropped.
+    if (cache.instance &&
+        cache.config &&
+        !isConfigEqual(cache.config, config)) {
+        console.info("[deesse] Config changed, performing hot reload...");
+        cache.config = config;
+        return cache.instance;
+    }
+    // Case 3: No instance exists - create one
+    const instance = createDeesse(config);
+    cache.pool = extractPool(instance.database);
+    cache.instance = instance;
+    cache.config = config;
+    return instance;
+};
+/**
+ * Clear the Deesse singleton cache.
+ * Primarily useful for testing.
+ */
+export const clearDeesseCache = () => {
+    const cache = getGlobalCache();
+    cache.instance = undefined;
+    cache.config = undefined;
+    cache.pool = undefined;
+};
+/**
+ * Graceful shutdown - call this on process exit.
+ * Ensures all database connections are properly closed.
+ */
+export const shutdownDeesse = async () => {
+    const cache = getGlobalCache();
+    if (cache.pool) {
+        console.info("[deesse] Closing database pool...");
+        const pool = cache.pool;
+        if (pool && typeof pool.end === "function") {
+            await pool.end();
+        }
+        cache.pool = undefined;
+    }
+    cache.instance = undefined;
+    cache.config = undefined;
+};
+// Register graceful shutdown hooks
+if (process.env["NODE_ENV"] !== "test") {
+    const shutdown = () => {
+        shutdownDeesse()
+            .catch(console.error)
+            .finally(() => process.exit(0));
+    };
+    process.on("SIGINT", shutdown);
+    process.on("SIGTERM", shutdown);
+}
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAEhC,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAExC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAElC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AAGzC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAIhC,OAAO,EAAE,YAAY,EAAe,MAAM,UAAU,CAAC;AAErD,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAExC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAC;AAElC,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AAGzC,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAKxB,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AAGxC,OAAO,EAAE,eAAe,EAAE,uBAAuB,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAE3F,OAAO,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,iBAAiB,EAAE,wBAAwB,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAE/I;;;GAGG;AACH,MAAM,iBAAiB,GAAG,MAAM,CAAC,GAAG,CAAC,yBAAyB,CAAC,CAAC;AAQhE,SAAS,cAAc;IACrB,MAAM,CAAC,GAAG,MAET,CAAC;IACF,IAAI,CAAC,CAAC,CAAC,iBAAiB,CAAC,EAAE,CAAC;QAC1B,CAAC,CAAC,iBAAiB,CAAC,GAAG;YACrB,QAAQ,EAAE,SAAS;YACnB,MAAM,EAAE,SAAS;YACjB,IAAI,EAAE,SAAS;SAChB,CAAC;IACJ,CAAC;IACD,OAAO,CAAC,CAAC,iBAAiB,CAAE,CAAC;AAC/B,CAAC;AAED;;;GAGG;AACH,SAAS,aAAa,CAAC,CAAiB,EAAE,CAAiB;IACzD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM;QAAE,OAAO,KAAK,CAAC;IACxC,IAAI,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI;QAAE,OAAO,KAAK,CAAC;IACpC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,KAAK,CAAC,CAAC,IAAI,CAAC,OAAO;QAAE,OAAO,KAAK,CAAC;IACpD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;GAGG;AACH,SAAS,WAAW,CAAC,EAAsB;IACzC,OAAQ,EAAuC,CAAC,OAAO,CAAC;AAC1D,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,MAAM,SAAS,GAAG,KAAK,EAC5B,MAAsB,EACL,EAAE;IACnB,MAAM,KAAK,GAAG,cAAc,EAAE,CAAC;IAE/B,2DAA2D;IAC3D,IAAI,KAAK,CAAC,QAAQ,IAAI,KAAK,CAAC,MAAM,IAAI,aAAa,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC;QAC1E,OAAO,KAAK,CAAC,QAAQ,CAAC;IACxB,CAAC;IAED,0DAA0D;IAC1D,2EAA2E;IAC3E,4FAA4F;IAC5F,IACE,KAAK,CAAC,QAAQ;QACd,KAAK,CAAC,MAAM;QACZ,CAAC,aAAa,CAAC,KAAK,CAAC,MAAM,EAAE,MAAM,CAAC,EACpC,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,mDAAmD,CAAC,CAAC;QAClE,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC;QACtB,OAAO,KAAK,CAAC,QAAQ,CAAC;IACxB,CAAC;IAED,0CAA0C;IAC1C,MAAM,QAAQ,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IACtC,KAAK,CAAC,IAAI,GAAG,WAAW,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC5C,KAAK,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC1B,KAAK,CAAC,MAAM,GAAG,MAAM,CAAC;IAEtB,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAS,EAAE;IACzC,MAAM,KAAK,GAAG,cAAc,EAAE,CAAC;IAC/B,KAAK,CAAC,QAAQ,GAAG,SAAS,CAAC;IAC3B,KAAK,CAAC,MAAM,GAAG,SAAS,CAAC;IACzB,KAAK,CAAC,IAAI,GAAG,SAAS,CAAC;AACzB,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG,KAAK,IAAmB,EAAE;IACtD,MAAM,KAAK,GAAG,cAAc,EAAE,CAAC;IAE/B,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC;QACf,OAAO,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC;QAClD,MAAM,IAAI,GAAG,KAAK,CAAC,IAAqC,CAAC;QACzD,IAAI,IAAI,IAAI,OAAO,IAAI,CAAC,GAAG,KAAK,UAAU,EAAE,CAAC;YAC3C,MAAM,IAAI,CAAC,GAAG,EAAE,CAAC;QACnB,CAAC;QACD,KAAK,CAAC,IAAI,GAAG,SAAS,CAAC;IACzB,CAAC;IAED,KAAK,CAAC,QAAQ,GAAG,SAAS,CAAC;IAC3B,KAAK,CAAC,MAAM,GAAG,SAAS,CAAC;AAC3B,CAAC,CAAC;AAEF,mCAAmC;AACnC,IAAI,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,MAAM,EAAE,CAAC;IACvC,MAAM,QAAQ,GAAG,GAAG,EAAE;QACpB,cAAc,EAAE;aACb,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC;aACpB,OAAO,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,CAAC,CAAC;IACF,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC/B,OAAO,CAAC,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;AAClC,CAAC"}

package/dist/lib/admin.d.ts

@@ -0,0 +1,24 @@
+import type { Auth } from "better-auth";
+/**
+ * Check if the database has any users.
+ * Returns true if the database is empty (no users).
+ */
+export declare function isDatabaseEmpty(auth: Auth): Promise<boolean>;
+/**
+ * Require that the database is NOT empty.
+ * Throws if no users exist.
+ */
+export declare function requireDatabaseNotEmpty(auth: Auth): Promise<void>;
+export interface EmailValidationOptions {
+    allowedDomains?: string[];
+    blockedDomains?: string[];
+    requireOrganization?: boolean;
+}
+/**
+ * Validate an admin email against configured rules.
+ */
+export declare function validateAdminEmail(email: string, options?: EmailValidationOptions): {
+    valid: boolean;
+    error?: string;
+};
+//# sourceMappingURL=admin.d.ts.map

package/dist/lib/admin.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.d.ts","sourceRoot":"","sources":["../../src/lib/admin.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AAExC;;;GAGG;AACH,wBAAsB,eAAe,CAAC,IAAI,EAAE,IAAI,GAAG,OAAO,CAAC,OAAO,CAAC,CAQlE;AAED;;;GAGG;AACH,wBAAsB,uBAAuB,CAAC,IAAI,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,CAOvE;AAED,MAAM,WAAW,sBAAsB;IACrC,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,mBAAmB,CAAC,EAAE,OAAO,CAAC;CAC/B;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,KAAK,EAAE,MAAM,EACb,OAAO,GAAE,sBAA2B,GACnC;IAAE,KAAK,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CA0BpC"}

package/dist/lib/admin.js

@@ -0,0 +1,50 @@
+/**
+ * Check if the database has any users.
+ * Returns true if the database is empty (no users).
+ */
+export async function isDatabaseEmpty(auth) {
+    try {
+        const result = await auth.api.listUsers({ limit: 1 });
+        return !result?.users || result.users.length === 0;
+    }
+    catch {
+        // If listUsers fails, assume not empty (safer default)
+        return false;
+    }
+}
+/**
+ * Require that the database is NOT empty.
+ * Throws if no users exist.
+ */
+export async function requireDatabaseNotEmpty(auth) {
+    if (await isDatabaseEmpty(auth)) {
+        throw new Error("Database is empty. Cannot proceed with this operation. " +
+            "Use the First Admin Setup page to create the initial admin account.");
+    }
+}
+/**
+ * Validate an admin email against configured rules.
+ */
+export function validateAdminEmail(email, options = {}) {
+    const domain = email.split('@')[1]?.toLowerCase();
+    if (!domain) {
+        return { valid: false, error: "Invalid email format" };
+    }
+    // Check blocked domains
+    if (options.blockedDomains?.includes(domain)) {
+        return { valid: false, error: `Email domain ${domain} is blocked` };
+    }
+    // Check allowed domains (if specified)
+    if (options.allowedDomains?.length && !options.allowedDomains.includes(domain)) {
+        return { valid: false, error: `Email must be from: ${options.allowedDomains.join(', ')}` };
+    }
+    // Require organization (no public email domains)
+    if (options.requireOrganization) {
+        const PUBLIC_DOMAINS = ['gmail.com', 'yahoo.com', 'hotmail.com', 'outlook.com', 'icloud.com'];
+        if (PUBLIC_DOMAINS.includes(domain)) {
+            return { valid: false, error: "Personal email domains are not allowed. Use an organizational email." };
+        }
+    }
+    return { valid: true };
+}
+//# sourceMappingURL=admin.js.map

package/dist/lib/admin.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"admin.js","sourceRoot":"","sources":["../../src/lib/admin.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CAAC,IAAU;IAC9C,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAO,IAAI,CAAC,GAAW,CAAC,SAAS,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,CAAC,CAAC;QAC/D,OAAO,CAAC,MAAM,EAAE,KAAK,IAAI,MAAM,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC;IACrD,CAAC;IAAC,MAAM,CAAC;QACP,uDAAuD;QACvD,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAAC,IAAU;IACtD,IAAI,MAAM,eAAe,CAAC,IAAI,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,KAAK,CACb,yDAAyD;YACzD,qEAAqE,CACtE,CAAC;IACJ,CAAC;AACH,CAAC;AAQD;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAChC,KAAa,EACb,UAAkC,EAAE;IAEpC,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;IAElD,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,sBAAsB,EAAE,CAAC;IACzD,CAAC;IAED,wBAAwB;IACxB,IAAI,OAAO,CAAC,cAAc,EAAE,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC7C,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,gBAAgB,MAAM,aAAa,EAAE,CAAC;IACtE,CAAC;IAED,uCAAuC;IACvC,IAAI,OAAO,CAAC,cAAc,EAAE,MAAM,IAAI,CAAC,OAAO,CAAC,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QAC/E,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,uBAAuB,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;IAC7F,CAAC;IAED,iDAAiD;IACjD,IAAI,OAAO,CAAC,mBAAmB,EAAE,CAAC;QAChC,MAAM,cAAc,GAAG,CAAC,WAAW,EAAE,WAAW,EAAE,aAAa,EAAE,aAAa,EAAE,YAAY,CAAC,CAAC;QAC9F,IAAI,cAAc,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACpC,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,sEAAsE,EAAE,CAAC;QACzG,CAAC;IACH,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACzB,CAAC"}

package/dist/lib/validation.d.ts

@@ -0,0 +1,32 @@
+/**
+ * Email validation utilities for admin email enforcement
+ */
+export declare const PUBLIC_EMAIL_DOMAINS: readonly ["gmail.com", "yahoo.com", "hotmail.com", "outlook.com", "icloud.com", "mail.com", "aol.com", "protonmail.com", "zoho.com", "yandex.com", "gmx.com"];
+export type PublicEmailDomain = (typeof PUBLIC_EMAIL_DOMAINS)[number];
+/**
+ * Check if an email uses a public email domain
+ */
+export declare function isPublicEmailDomain(email: string): boolean;
+/**
+ * Get allowed domains from ADMIN_ALLOWED_DOMAINS environment variable.
+ * Returns empty array if not configured (no restrictions).
+ */
+export declare function getAllowedDomains(): string[];
+/**
+ * Check if an email is from an allowed domain.
+ * If no allowed domains are configured, all domains are allowed.
+ */
+export declare function isAllowedAdminEmail(email: string): boolean;
+/**
+ * Validate admin email against organizational requirements.
+ * Returns an error message if validation fails.
+ */
+export declare function validateAdminEmailDomain(email: string): {
+    valid: true;
+} | {
+    valid: false;
+    code: string;
+    message: string;
+    suggestion?: string;
+};
+//# sourceMappingURL=validation.d.ts.map

package/dist/lib/validation.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.d.ts","sourceRoot":"","sources":["../../src/lib/validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,eAAO,MAAM,oBAAoB,+JAYvB,CAAC;AAEX,MAAM,MAAM,iBAAiB,GAAG,CAAC,OAAO,oBAAoB,CAAC,CAAC,MAAM,CAAC,CAAC;AAEtE;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAG1D;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,IAAI,MAAM,EAAE,CAO5C;AAED;;;GAGG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO,CAK1D;AAED;;;GAGG;AACH,wBAAgB,wBAAwB,CACtC,KAAK,EAAE,MAAM,GACZ;IAAE,KAAK,EAAE,IAAI,CAAA;CAAE,GAAG;IAAE,KAAK,EAAE,KAAK,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,EAAE,MAAM,CAAC;IAAC,UAAU,CAAC,EAAE,MAAM,CAAA;CAAE,CA8BxF"}

package/dist/lib/validation.js

@@ -0,0 +1,80 @@
+/**
+ * Email validation utilities for admin email enforcement
+ */
+export const PUBLIC_EMAIL_DOMAINS = [
+    'gmail.com',
+    'yahoo.com',
+    'hotmail.com',
+    'outlook.com',
+    'icloud.com',
+    'mail.com',
+    'aol.com',
+    'protonmail.com',
+    'zoho.com',
+    'yandex.com',
+    'gmx.com',
+];
+/**
+ * Check if an email uses a public email domain
+ */
+export function isPublicEmailDomain(email) {
+    const domain = email.split('@')[1]?.toLowerCase();
+    return PUBLIC_EMAIL_DOMAINS.includes(domain);
+}
+/**
+ * Get allowed domains from ADMIN_ALLOWED_DOMAINS environment variable.
+ * Returns empty array if not configured (no restrictions).
+ */
+export function getAllowedDomains() {
+    const envValue = process.env['ADMIN_ALLOWED_DOMAINS'];
+    if (!envValue)
+        return [];
+    return envValue
+        .split(',')
+        .map((d) => d.trim().toLowerCase())
+        .filter(Boolean);
+}
+/**
+ * Check if an email is from an allowed domain.
+ * If no allowed domains are configured, all domains are allowed.
+ */
+export function isAllowedAdminEmail(email) {
+    const allowed = getAllowedDomains();
+    if (!allowed.length)
+        return true; // No restriction configured
+    const domain = email.split('@')[1]?.toLowerCase();
+    return allowed.includes(domain);
+}
+/**
+ * Validate admin email against organizational requirements.
+ * Returns an error message if validation fails.
+ */
+export function validateAdminEmailDomain(email) {
+    // Check if email is from a public domain (warning level, not blocking)
+    const isPublic = isPublicEmailDomain(email);
+    const allowed = getAllowedDomains();
+    // If allowed domains are configured, enforce them strictly
+    if (allowed.length > 0) {
+        const domain = email.split('@')[1]?.toLowerCase();
+        if (!allowed.includes(domain)) {
+            return {
+                valid: false,
+                code: 'INVALID_EMAIL_DOMAIN',
+                message: `Admin email must be from an allowed domain. Allowed: ${allowed.join(', ')}`,
+                suggestion: 'Set ADMIN_ALLOWED_DOMAINS environment variable to configure allowed email domains',
+            };
+        }
+    }
+    // If email is from a public domain, return warning info (but allow through)
+    if (isPublic && allowed.length === 0) {
+        const domain = email.split('@')[1]?.toLowerCase();
+        return {
+            valid: false,
+            code: 'PUBLIC_EMAIL_DOMAIN',
+            message: `${email} is a public email domain. Admin accounts should use organizational email addresses.`,
+            suggestion: `Set ADMIN_ALLOWED_DOMAINS environment variable to restrict to organizational domains only (e.g., ADMIN_ALLOWED_DOMAINS=${domain})`,
+        };
+    }
+    return { valid: true };
+}
+//# sourceMappingURL=validation.js.map

package/dist/lib/validation.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validation.js","sourceRoot":"","sources":["../../src/lib/validation.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,WAAW;IACX,WAAW;IACX,aAAa;IACb,aAAa;IACb,YAAY;IACZ,UAAU;IACV,SAAS;IACT,gBAAgB;IAChB,UAAU;IACV,YAAY;IACZ,SAAS;CACD,CAAC;AAIX;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAa;IAC/C,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;IAClD,OAAO,oBAAoB,CAAC,QAAQ,CAAC,MAA2B,CAAC,CAAC;AACpE,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,iBAAiB;IAC/B,MAAM,QAAQ,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;IACtD,IAAI,CAAC,QAAQ;QAAE,OAAO,EAAE,CAAC;IACzB,OAAO,QAAQ;SACZ,KAAK,CAAC,GAAG,CAAC;SACV,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;SAClC,MAAM,CAAC,OAAO,CAAC,CAAC;AACrB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAa;IAC/C,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAC;IACpC,IAAI,CAAC,OAAO,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC,CAAC,4BAA4B;IAC9D,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;IAClD,OAAO,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;AAClC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,wBAAwB,CACtC,KAAa;IAEb,uEAAuE;IACvE,MAAM,QAAQ,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5C,MAAM,OAAO,GAAG,iBAAiB,EAAE,CAAC;IAEpC,2DAA2D;IAC3D,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;QAClD,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YAC9B,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,IAAI,EAAE,sBAAsB;gBAC5B,OAAO,EAAE,wDAAwD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBACrF,UAAU,EAAE,mFAAmF;aAChG,CAAC;QACJ,CAAC;IACH,CAAC;IAED,4EAA4E;IAC5E,IAAI,QAAQ,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC;QAClD,OAAO;YACL,KAAK,EAAE,KAAK;YACZ,IAAI,EAAE,qBAAqB;YAC3B,OAAO,EAAE,GAAG,KAAK,sFAAsF;YACvG,UAAU,EAAE,0HAA0H,MAAM,GAAG;SAChJ,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACzB,CAAC"}

package/dist/server.d.ts

@@ -0,0 +1,16 @@
+import type { PostgresJsDatabase } from "drizzle-orm/postgres-js";
+import type { BetterAuthPlugin } from "better-auth";
+import type { InternalConfig } from "./config/define";
+import { betterAuth } from "better-auth";
+import { drizzleAdapter } from "@better-auth/drizzle-adapter";
+export type Deesse = {
+    auth: Awaited<ReturnType<typeof betterAuth<{
+        database: ReturnType<typeof drizzleAdapter>;
+        baseURL: string;
+        secret: string;
+        plugins: BetterAuthPlugin[];
+    }>>>;
+    database: PostgresJsDatabase;
+};
+export declare function createDeesse(config: InternalConfig): Deesse;
+//# sourceMappingURL=server.d.ts.map