npm - emdash - Versions diffs - 0.0.0-a → 0.0.1 - Mend

emdash 0.0.0-a → 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (661) hide show

package/README.md +87 -1
package/dist/adapters-BLMa4JGD.d.mts +106 -0
package/dist/adapters-BLMa4JGD.d.mts.map +1 -0
package/dist/apply-Bjfq_b4-.mjs +1293 -0
package/dist/apply-Bjfq_b4-.mjs.map +1 -0
package/dist/astro/index.d.mts +51 -0
package/dist/astro/index.d.mts.map +1 -0
package/dist/astro/index.mjs +1333 -0
package/dist/astro/index.mjs.map +1 -0
package/dist/astro/middleware/auth.d.mts +31 -0
package/dist/astro/middleware/auth.d.mts.map +1 -0
package/dist/astro/middleware/auth.mjs +654 -0
package/dist/astro/middleware/auth.mjs.map +1 -0
package/dist/astro/middleware/redirect.d.mts +22 -0
package/dist/astro/middleware/redirect.d.mts.map +1 -0
package/dist/astro/middleware/redirect.mjs +63 -0
package/dist/astro/middleware/redirect.mjs.map +1 -0
package/dist/astro/middleware/request-context.d.mts +18 -0
package/dist/astro/middleware/request-context.d.mts.map +1 -0
package/dist/astro/middleware/request-context.mjs +1310 -0
package/dist/astro/middleware/request-context.mjs.map +1 -0
package/dist/astro/middleware/setup.d.mts +20 -0
package/dist/astro/middleware/setup.d.mts.map +1 -0
package/dist/astro/middleware/setup.mjs +47 -0
package/dist/astro/middleware/setup.mjs.map +1 -0
package/dist/astro/middleware.d.mts +13 -0
package/dist/astro/middleware.d.mts.map +1 -0
package/dist/astro/middleware.mjs +1613 -0
package/dist/astro/middleware.mjs.map +1 -0
package/dist/astro/types.d.mts +250 -0
package/dist/astro/types.d.mts.map +1 -0
package/dist/astro/types.mjs +1 -0
package/dist/base64-MBPo9ozB.mjs +59 -0
package/dist/base64-MBPo9ozB.mjs.map +1 -0
package/dist/byline-CL847F26.mjs +213 -0
package/dist/byline-CL847F26.mjs.map +1 -0
package/dist/bylines-C2a-2TGt.mjs +136 -0
package/dist/bylines-C2a-2TGt.mjs.map +1 -0
package/dist/chunk-ClPoSABd.mjs +21 -0
package/dist/cli/index.d.mts +1 -0
package/dist/cli/index.mjs +3909 -0
package/dist/cli/index.mjs.map +1 -0
package/dist/client/cf-access.d.mts +60 -0
package/dist/client/cf-access.d.mts.map +1 -0
package/dist/client/cf-access.mjs +179 -0
package/dist/client/cf-access.mjs.map +1 -0
package/dist/client/index.d.mts +398 -0
package/dist/client/index.d.mts.map +1 -0
package/dist/client/index.mjs +346 -0
package/dist/client/index.mjs.map +1 -0
package/dist/config-CKE8p9xM.mjs +55 -0
package/dist/config-CKE8p9xM.mjs.map +1 -0
package/dist/connection-B4zVnQIa.mjs +40 -0
package/dist/connection-B4zVnQIa.mjs.map +1 -0
package/dist/content-D6C2WsZC.mjs +824 -0
package/dist/content-D6C2WsZC.mjs.map +1 -0
package/dist/db/index.d.mts +4 -0
package/dist/db/index.mjs +62 -0
package/dist/db/index.mjs.map +1 -0
package/dist/db/libsql.d.mts +11 -0
package/dist/db/libsql.d.mts.map +1 -0
package/dist/db/libsql.mjs +17 -0
package/dist/db/libsql.mjs.map +1 -0
package/dist/db/postgres.d.mts +11 -0
package/dist/db/postgres.d.mts.map +1 -0
package/dist/db/postgres.mjs +30 -0
package/dist/db/postgres.mjs.map +1 -0
package/dist/db/sqlite.d.mts +11 -0
package/dist/db/sqlite.d.mts.map +1 -0
package/dist/db/sqlite.mjs +16 -0
package/dist/db/sqlite.mjs.map +1 -0
package/dist/default-Cyi4aAxu.mjs +81 -0
package/dist/default-Cyi4aAxu.mjs.map +1 -0
package/dist/dialect-helpers-B9uSp2GJ.mjs +90 -0
package/dist/dialect-helpers-B9uSp2GJ.mjs.map +1 -0
package/dist/error-Cxz0tQeO.mjs +27 -0
package/dist/error-Cxz0tQeO.mjs.map +1 -0
package/dist/index-C1xF3OGh.d.mts +4527 -0
package/dist/index-C1xF3OGh.d.mts.map +1 -0
package/dist/index.d.mts +16 -0
package/dist/index.mjs +30 -0
package/dist/load-yOOlckBj.mjs +28 -0
package/dist/load-yOOlckBj.mjs.map +1 -0
package/dist/loader-fz8Q_3EO.mjs +447 -0
package/dist/loader-fz8Q_3EO.mjs.map +1 -0
package/dist/manifest-schema-Dcl0R6nM.mjs +184 -0
package/dist/manifest-schema-Dcl0R6nM.mjs.map +1 -0
package/dist/media/index.d.mts +26 -0
package/dist/media/index.d.mts.map +1 -0
package/dist/media/index.mjs +55 -0
package/dist/media/index.mjs.map +1 -0
package/dist/media/local-runtime.d.mts +39 -0
package/dist/media/local-runtime.d.mts.map +1 -0
package/dist/media/local-runtime.mjs +133 -0
package/dist/media/local-runtime.mjs.map +1 -0
package/dist/media-DqHVh136.mjs +200 -0
package/dist/media-DqHVh136.mjs.map +1 -0
package/dist/mode-C2EzN1uE.mjs +23 -0
package/dist/mode-C2EzN1uE.mjs.map +1 -0
package/dist/page/index.d.mts +140 -0
package/dist/page/index.d.mts.map +1 -0
package/dist/page/index.mjs +416 -0
package/dist/page/index.mjs.map +1 -0
package/dist/placeholder-CmGAmqeO.d.mts +276 -0
package/dist/placeholder-CmGAmqeO.d.mts.map +1 -0
package/dist/placeholder-SmpOx-_v.mjs +243 -0
package/dist/placeholder-SmpOx-_v.mjs.map +1 -0
package/dist/plugin-utils.d.mts +58 -0
package/dist/plugin-utils.d.mts.map +1 -0
package/dist/plugin-utils.mjs +78 -0
package/dist/plugin-utils.mjs.map +1 -0
package/dist/plugins/adapt-sandbox-entry.d.mts +22 -0
package/dist/plugins/adapt-sandbox-entry.d.mts.map +1 -0
package/dist/plugins/adapt-sandbox-entry.mjs +113 -0
package/dist/plugins/adapt-sandbox-entry.mjs.map +1 -0
package/dist/query-CS_iSj34.mjs +460 -0
package/dist/query-CS_iSj34.mjs.map +1 -0
package/dist/redirect-DIfIni3r.mjs +329 -0
package/dist/redirect-DIfIni3r.mjs.map +1 -0
package/dist/registry-D_w5HW4G.mjs +863 -0
package/dist/registry-D_w5HW4G.mjs.map +1 -0
package/dist/request-context.d.mts +49 -0
package/dist/request-context.d.mts.map +1 -0
package/dist/request-context.mjs +43 -0
package/dist/request-context.mjs.map +1 -0
package/dist/runner-B-u2F2b6.mjs +1412 -0
package/dist/runner-B-u2F2b6.mjs.map +1 -0
package/dist/runner-EAtf0ZIe.d.mts +27 -0
package/dist/runner-EAtf0ZIe.d.mts.map +1 -0
package/dist/runtime.d.mts +26 -0
package/dist/runtime.d.mts.map +1 -0
package/dist/runtime.mjs +42 -0
package/dist/runtime.mjs.map +1 -0
package/dist/search-DG603UrT.mjs +9211 -0
package/dist/search-DG603UrT.mjs.map +1 -0
package/dist/seed/index.d.mts +3 -0
package/dist/seed/index.mjs +15 -0
package/dist/seo/index.d.mts +70 -0
package/dist/seo/index.d.mts.map +1 -0
package/dist/seo/index.mjs +70 -0
package/dist/seo/index.mjs.map +1 -0
package/dist/storage/local.d.mts +39 -0
package/dist/storage/local.d.mts.map +1 -0
package/dist/storage/local.mjs +166 -0
package/dist/storage/local.mjs.map +1 -0
package/dist/storage/s3.d.mts +32 -0
package/dist/storage/s3.d.mts.map +1 -0
package/dist/storage/s3.mjs +175 -0
package/dist/storage/s3.mjs.map +1 -0
package/dist/tokens-DpgrkrXK.mjs +171 -0
package/dist/tokens-DpgrkrXK.mjs.map +1 -0
package/dist/transport-BFGblqwG.d.mts +42 -0
package/dist/transport-BFGblqwG.d.mts.map +1 -0
package/dist/transport-yxiQsi8I.mjs +418 -0
package/dist/transport-yxiQsi8I.mjs.map +1 -0
package/dist/types-BRuPJGdV.d.mts +102 -0
package/dist/types-BRuPJGdV.d.mts.map +1 -0
package/dist/types-C4-fAxN3.d.mts +182 -0
package/dist/types-C4-fAxN3.d.mts.map +1 -0
package/dist/types-CMMN0pNg.mjs +31 -0
package/dist/types-CMMN0pNg.mjs.map +1 -0
package/dist/types-CUBbjgmP.mjs +16 -0
package/dist/types-CUBbjgmP.mjs.map +1 -0
package/dist/types-DRjfYOEv.d.mts +426 -0
package/dist/types-DRjfYOEv.d.mts.map +1 -0
package/dist/types-DY5zk5HN.mjs +73 -0
package/dist/types-DY5zk5HN.mjs.map +1 -0
package/dist/types-DaNLHo_T.d.mts +184 -0
package/dist/types-DaNLHo_T.d.mts.map +1 -0
package/dist/types-DvhsUmSJ.d.mts +1111 -0
package/dist/types-DvhsUmSJ.d.mts.map +1 -0
package/dist/validate-CpBtVMsD.d.mts +378 -0
package/dist/validate-CpBtVMsD.d.mts.map +1 -0
package/dist/validate-CqRJb_xU.mjs +97 -0
package/dist/validate-CqRJb_xU.mjs.map +1 -0
package/dist/validate-O7PWmlnq.mjs +328 -0
package/dist/validate-O7PWmlnq.mjs.map +1 -0
package/locals.d.ts +46 -0
package/package.json +233 -19
package/src/api/authorize.ts +63 -0
package/src/api/csrf.ts +48 -0
package/src/api/error.ts +99 -0
package/src/api/errors.ts +445 -0
package/src/api/escape.ts +9 -0
package/src/api/handlers/api-tokens.ts +240 -0
package/src/api/handlers/comments.ts +314 -0
package/src/api/handlers/content.ts +1315 -0
package/src/api/handlers/dashboard.ts +205 -0
package/src/api/handlers/device-flow.ts +687 -0
package/src/api/handlers/index.ts +163 -0
package/src/api/handlers/manifest.ts +158 -0
package/src/api/handlers/marketplace.ts +930 -0
package/src/api/handlers/media.ts +207 -0
package/src/api/handlers/menus.ts +493 -0
package/src/api/handlers/oauth-authorization.ts +429 -0
package/src/api/handlers/oauth-clients.ts +353 -0
package/src/api/handlers/oauth-user-lookup.ts +39 -0
package/src/api/handlers/plugins.ts +254 -0
package/src/api/handlers/redirects.ts +360 -0
package/src/api/handlers/revision.ts +145 -0
package/src/api/handlers/schema.ts +534 -0
package/src/api/handlers/sections.ts +289 -0
package/src/api/handlers/seo.ts +115 -0
package/src/api/handlers/settings.ts +49 -0
package/src/api/handlers/snapshot.ts +350 -0
package/src/api/handlers/taxonomies.ts +523 -0
package/src/api/index.ts +6 -0
package/src/api/openapi/document.ts +2368 -0
package/src/api/openapi/index.ts +1 -0
package/src/api/parse.ts +139 -0
package/src/api/redirect.ts +14 -0
package/src/api/rev.ts +67 -0
package/src/api/schemas/auth.ts +112 -0
package/src/api/schemas/bylines.ts +85 -0
package/src/api/schemas/comments.ts +117 -0
package/src/api/schemas/common.ts +89 -0
package/src/api/schemas/content.ts +191 -0
package/src/api/schemas/import.ts +52 -0
package/src/api/schemas/index.ts +17 -0
package/src/api/schemas/media.ts +116 -0
package/src/api/schemas/menus.ts +111 -0
package/src/api/schemas/redirects.ts +155 -0
package/src/api/schemas/schema.ts +203 -0
package/src/api/schemas/search.ts +63 -0
package/src/api/schemas/sections.ts +67 -0
package/src/api/schemas/settings.ts +63 -0
package/src/api/schemas/setup.ts +37 -0
package/src/api/schemas/taxonomies.ts +113 -0
package/src/api/schemas/users.ts +96 -0
package/src/api/schemas/widgets.ts +80 -0
package/src/api/site-url.ts +25 -0
package/src/api/types.ts +82 -0
package/src/astro/index.ts +27 -0
package/src/astro/integration/index.ts +303 -0
package/src/astro/integration/routes.ts +834 -0
package/src/astro/integration/runtime.ts +338 -0
package/src/astro/integration/virtual-modules.ts +469 -0
package/src/astro/integration/vite-config.ts +328 -0
package/src/astro/middleware/auth.ts +743 -0
package/src/astro/middleware/redirect.ts +89 -0
package/src/astro/middleware/request-context.ts +129 -0
package/src/astro/middleware/setup.ts +89 -0
package/src/astro/middleware.ts +398 -0
package/src/astro/routes/PluginRegistry.tsx +15 -0
package/src/astro/routes/admin.astro +81 -0
package/src/astro/routes/api/admin/allowed-domains/[domain].ts +112 -0
package/src/astro/routes/api/admin/allowed-domains/index.ts +108 -0
package/src/astro/routes/api/admin/api-tokens/[id].ts +40 -0
package/src/astro/routes/api/admin/api-tokens/index.ts +68 -0
package/src/astro/routes/api/admin/bylines/[id]/index.ts +87 -0
package/src/astro/routes/api/admin/bylines/index.ts +72 -0
package/src/astro/routes/api/admin/comments/[id]/status.ts +120 -0
package/src/astro/routes/api/admin/comments/[id].ts +64 -0
package/src/astro/routes/api/admin/comments/bulk.ts +42 -0
package/src/astro/routes/api/admin/comments/counts.ts +30 -0
package/src/astro/routes/api/admin/comments/index.ts +46 -0
package/src/astro/routes/api/admin/hooks/exclusive/[hookName].ts +91 -0
package/src/astro/routes/api/admin/hooks/exclusive/index.ts +51 -0
package/src/astro/routes/api/admin/oauth-clients/[id].ts +110 -0
package/src/astro/routes/api/admin/oauth-clients/index.ts +71 -0
package/src/astro/routes/api/admin/plugins/[id]/disable.ts +39 -0
package/src/astro/routes/api/admin/plugins/[id]/enable.ts +39 -0
package/src/astro/routes/api/admin/plugins/[id]/index.ts +38 -0
package/src/astro/routes/api/admin/plugins/[id]/uninstall.ts +48 -0
package/src/astro/routes/api/admin/plugins/[id]/update.ts +59 -0
package/src/astro/routes/api/admin/plugins/index.ts +32 -0
package/src/astro/routes/api/admin/plugins/marketplace/[id]/icon.ts +61 -0
package/src/astro/routes/api/admin/plugins/marketplace/[id]/index.ts +33 -0
package/src/astro/routes/api/admin/plugins/marketplace/[id]/install.ts +62 -0
package/src/astro/routes/api/admin/plugins/marketplace/index.ts +38 -0
package/src/astro/routes/api/admin/plugins/updates.ts +28 -0
package/src/astro/routes/api/admin/themes/marketplace/[id]/index.ts +33 -0
package/src/astro/routes/api/admin/themes/marketplace/[id]/thumbnail.ts +61 -0
package/src/astro/routes/api/admin/themes/marketplace/index.ts +45 -0
package/src/astro/routes/api/admin/users/[id]/disable.ts +69 -0
package/src/astro/routes/api/admin/users/[id]/enable.ts +48 -0
package/src/astro/routes/api/admin/users/[id]/index.ts +146 -0
package/src/astro/routes/api/admin/users/[id]/send-recovery.ts +72 -0
package/src/astro/routes/api/admin/users/index.ts +66 -0
package/src/astro/routes/api/auth/dev-bypass.ts +139 -0
package/src/astro/routes/api/auth/invite/accept.ts +52 -0
package/src/astro/routes/api/auth/invite/complete.ts +84 -0
package/src/astro/routes/api/auth/invite/index.ts +99 -0
package/src/astro/routes/api/auth/logout.ts +40 -0
package/src/astro/routes/api/auth/magic-link/send.ts +89 -0
package/src/astro/routes/api/auth/magic-link/verify.ts +71 -0
package/src/astro/routes/api/auth/me.ts +60 -0
package/src/astro/routes/api/auth/oauth/[provider]/callback.ts +219 -0
package/src/astro/routes/api/auth/oauth/[provider].ts +119 -0
package/src/astro/routes/api/auth/passkey/[id].ts +124 -0
package/src/astro/routes/api/auth/passkey/index.ts +54 -0
package/src/astro/routes/api/auth/passkey/options.ts +82 -0
package/src/astro/routes/api/auth/passkey/register/options.ts +86 -0
package/src/astro/routes/api/auth/passkey/register/verify.ts +117 -0
package/src/astro/routes/api/auth/passkey/verify.ts +66 -0
package/src/astro/routes/api/auth/signup/complete.ts +85 -0
package/src/astro/routes/api/auth/signup/request.ts +77 -0
package/src/astro/routes/api/auth/signup/verify.ts +53 -0
package/src/astro/routes/api/comments/[collection]/[contentId]/index.ts +312 -0
package/src/astro/routes/api/content/[collection]/[id]/compare.ts +28 -0
package/src/astro/routes/api/content/[collection]/[id]/discard-draft.ts +54 -0
package/src/astro/routes/api/content/[collection]/[id]/duplicate.ts +61 -0
package/src/astro/routes/api/content/[collection]/[id]/permanent.ts +33 -0
package/src/astro/routes/api/content/[collection]/[id]/preview-url.ts +107 -0
package/src/astro/routes/api/content/[collection]/[id]/publish.ts +56 -0
package/src/astro/routes/api/content/[collection]/[id]/restore.ts +54 -0
package/src/astro/routes/api/content/[collection]/[id]/revisions.ts +31 -0
package/src/astro/routes/api/content/[collection]/[id]/schedule.ts +105 -0
package/src/astro/routes/api/content/[collection]/[id]/terms/[taxonomy].ts +140 -0
package/src/astro/routes/api/content/[collection]/[id]/translations.ts +30 -0
package/src/astro/routes/api/content/[collection]/[id]/unpublish.ts +56 -0
package/src/astro/routes/api/content/[collection]/[id].ts +137 -0
package/src/astro/routes/api/content/[collection]/index.ts +59 -0
package/src/astro/routes/api/content/[collection]/trash.ts +33 -0
package/src/astro/routes/api/dashboard.ts +32 -0
package/src/astro/routes/api/dev/emails.ts +36 -0
package/src/astro/routes/api/import/probe.ts +47 -0
package/src/astro/routes/api/import/wordpress/analyze.ts +510 -0
package/src/astro/routes/api/import/wordpress/execute.ts +283 -0
package/src/astro/routes/api/import/wordpress/media.ts +338 -0
package/src/astro/routes/api/import/wordpress/prepare.ts +181 -0
package/src/astro/routes/api/import/wordpress/rewrite-urls.ts +393 -0
package/src/astro/routes/api/import/wordpress-plugin/analyze.ts +111 -0
package/src/astro/routes/api/import/wordpress-plugin/callback.ts +58 -0
package/src/astro/routes/api/import/wordpress-plugin/execute.ts +347 -0
package/src/astro/routes/api/manifest.ts +62 -0
package/src/astro/routes/api/mcp.ts +124 -0
package/src/astro/routes/api/media/[id]/confirm.ts +93 -0
package/src/astro/routes/api/media/[id].ts +145 -0
package/src/astro/routes/api/media/file/[key].ts +79 -0
package/src/astro/routes/api/media/providers/[providerId]/[itemId].ts +86 -0
package/src/astro/routes/api/media/providers/[providerId]/index.ts +111 -0
package/src/astro/routes/api/media/providers/index.ts +30 -0
package/src/astro/routes/api/media/upload-url.ts +137 -0
package/src/astro/routes/api/media.ts +190 -0
package/src/astro/routes/api/menus/[name]/items.ts +87 -0
package/src/astro/routes/api/menus/[name]/reorder.ts +33 -0
package/src/astro/routes/api/menus/[name].ts +65 -0
package/src/astro/routes/api/menus/index.ts +47 -0
package/src/astro/routes/api/oauth/authorize.ts +412 -0
package/src/astro/routes/api/oauth/device/authorize.ts +45 -0
package/src/astro/routes/api/oauth/device/code.ts +51 -0
package/src/astro/routes/api/oauth/device/token.ts +69 -0
package/src/astro/routes/api/oauth/token/refresh.ts +38 -0
package/src/astro/routes/api/oauth/token/revoke.ts +38 -0
package/src/astro/routes/api/oauth/token.ts +184 -0
package/src/astro/routes/api/openapi.json.ts +32 -0
package/src/astro/routes/api/plugins/[pluginId]/[...path].ts +92 -0
package/src/astro/routes/api/redirects/404s/index.ts +72 -0
package/src/astro/routes/api/redirects/404s/summary.ts +33 -0
package/src/astro/routes/api/redirects/[id].ts +84 -0
package/src/astro/routes/api/redirects/index.ts +52 -0
package/src/astro/routes/api/revisions/[revisionId]/index.ts +29 -0
package/src/astro/routes/api/revisions/[revisionId]/restore.ts +62 -0
package/src/astro/routes/api/schema/collections/[slug]/fields/[fieldSlug].ts +76 -0
package/src/astro/routes/api/schema/collections/[slug]/fields/index.ts +52 -0
package/src/astro/routes/api/schema/collections/[slug]/fields/reorder.ts +32 -0
package/src/astro/routes/api/schema/collections/[slug]/index.ts +80 -0
package/src/astro/routes/api/schema/collections/index.ts +47 -0
package/src/astro/routes/api/schema/index.ts +109 -0
package/src/astro/routes/api/schema/orphans/[slug].ts +36 -0
package/src/astro/routes/api/schema/orphans/index.ts +26 -0
package/src/astro/routes/api/search/enable.ts +64 -0
package/src/astro/routes/api/search/index.ts +55 -0
package/src/astro/routes/api/search/rebuild.ts +72 -0
package/src/astro/routes/api/search/stats.ts +35 -0
package/src/astro/routes/api/search/suggest.ts +53 -0
package/src/astro/routes/api/sections/[slug].ts +84 -0
package/src/astro/routes/api/sections/index.ts +52 -0
package/src/astro/routes/api/settings/email.ts +150 -0
package/src/astro/routes/api/settings.ts +67 -0
package/src/astro/routes/api/setup/admin-verify.ts +100 -0
package/src/astro/routes/api/setup/admin.ts +94 -0
package/src/astro/routes/api/setup/dev-bypass.ts +199 -0
package/src/astro/routes/api/setup/dev-reset.ts +40 -0
package/src/astro/routes/api/setup/index.ts +126 -0
package/src/astro/routes/api/setup/status.ts +122 -0
package/src/astro/routes/api/snapshot.ts +75 -0
package/src/astro/routes/api/taxonomies/[name]/terms/[slug].ts +95 -0
package/src/astro/routes/api/taxonomies/[name]/terms/index.ts +69 -0
package/src/astro/routes/api/taxonomies/index.ts +59 -0
package/src/astro/routes/api/themes/preview.ts +77 -0
package/src/astro/routes/api/typegen.ts +114 -0
package/src/astro/routes/api/well-known/auth.ts +68 -0
package/src/astro/routes/api/well-known/oauth-authorization-server.ts +44 -0
package/src/astro/routes/api/well-known/oauth-protected-resource.ts +37 -0
package/src/astro/routes/api/widget-areas/[name]/reorder.ts +72 -0
package/src/astro/routes/api/widget-areas/[name]/widgets/[id].ts +127 -0
package/src/astro/routes/api/widget-areas/[name]/widgets.ts +80 -0
package/src/astro/routes/api/widget-areas/[name].ts +87 -0
package/src/astro/routes/api/widget-areas/index.ts +99 -0
package/src/astro/routes/api/widget-components.ts +22 -0
package/src/astro/routes/robots.txt.ts +77 -0
package/src/astro/routes/sitemap.xml.ts +97 -0
package/src/astro/storage/adapters.ts +74 -0
package/src/astro/storage/index.ts +19 -0
package/src/astro/storage/types.ts +60 -0
package/src/astro/types.ts +346 -0
package/src/auth/api-tokens.ts +25 -0
package/src/auth/challenge-store.ts +80 -0
package/src/auth/mode.ts +96 -0
package/src/auth/oauth-state-store.ts +96 -0
package/src/auth/passkey-config.ts +27 -0
package/src/auth/rate-limit.ts +158 -0
package/src/auth/scopes.ts +33 -0
package/src/auth/types.ts +104 -0
package/src/aws-sdk.d.ts +100 -0
package/src/bylines/index.ts +237 -0
package/src/cleanup.ts +153 -0
package/src/cli/client-factory.ts +100 -0
package/src/cli/commands/auth.ts +46 -0
package/src/cli/commands/bundle-utils.ts +247 -0
package/src/cli/commands/bundle.ts +609 -0
package/src/cli/commands/content.ts +442 -0
package/src/cli/commands/dev.ts +191 -0
package/src/cli/commands/doctor.ts +211 -0
package/src/cli/commands/export-seed.ts +630 -0
package/src/cli/commands/import/wordpress.ts +1056 -0
package/src/cli/commands/init.ts +192 -0
package/src/cli/commands/login.ts +547 -0
package/src/cli/commands/media.ts +165 -0
package/src/cli/commands/menu.ts +67 -0
package/src/cli/commands/plugin-init.ts +291 -0
package/src/cli/commands/plugin-validate.ts +31 -0
package/src/cli/commands/plugin.ts +33 -0
package/src/cli/commands/publish.ts +699 -0
package/src/cli/commands/schema.ts +233 -0
package/src/cli/commands/search-cmd.ts +54 -0
package/src/cli/commands/seed.ts +288 -0
package/src/cli/commands/taxonomy.ts +128 -0
package/src/cli/commands/types.ts +68 -0
package/src/cli/credentials.ts +236 -0
package/src/cli/index.ts +70 -0
package/src/cli/output.ts +75 -0
package/src/cli/wxr/parser.ts +969 -0
package/src/client/cf-access.ts +193 -0
package/src/client/index.ts +854 -0
package/src/client/portable-text.ts +413 -0
package/src/client/transport.ts +200 -0
package/src/comments/moderator.ts +46 -0
package/src/comments/notifications.ts +144 -0
package/src/comments/query.ts +105 -0
package/src/comments/service.ts +213 -0
package/src/components/Break.astro +45 -0
package/src/components/Button.astro +71 -0
package/src/components/Buttons.astro +49 -0
package/src/components/Code.astro +59 -0
package/src/components/Columns.astro +59 -0
package/src/components/CommentForm.astro +315 -0
package/src/components/Comments.astro +232 -0
package/src/components/Cover.astro +128 -0
package/src/components/EmDashBodyEnd.astro +32 -0
package/src/components/EmDashBodyStart.astro +32 -0
package/src/components/EmDashHead.astro +53 -0
package/src/components/EmDashImage.astro +178 -0
package/src/components/EmDashMedia.astro +167 -0
package/src/components/Embed.astro +128 -0
package/src/components/File.astro +122 -0
package/src/components/Gallery.astro +93 -0
package/src/components/HtmlBlock.astro +33 -0
package/src/components/Image.astro +178 -0
package/src/components/InlineEditor.astro +27 -0
package/src/components/InlinePortableTextEditor.tsx +1905 -0
package/src/components/LiveSearch.astro +614 -0
package/src/components/PortableText.astro +51 -0
package/src/components/Pullquote.astro +51 -0
package/src/components/Table.astro +108 -0
package/src/components/WidgetArea.astro +22 -0
package/src/components/WidgetRenderer.astro +72 -0
package/src/components/index.ts +116 -0
package/src/components/marks/Link.astro +31 -0
package/src/components/marks/StrikeThrough.astro +7 -0
package/src/components/marks/Subscript.astro +7 -0
package/src/components/marks/Superscript.astro +7 -0
package/src/components/marks/Underline.astro +7 -0
package/src/components/widgets/Archives.astro +65 -0
package/src/components/widgets/Categories.astro +35 -0
package/src/components/widgets/RecentPosts.astro +51 -0
package/src/components/widgets/Search.astro +18 -0
package/src/components/widgets/Tags.astro +38 -0
package/src/content/converters/index.ts +9 -0
package/src/content/converters/portable-text-to-prosemirror.ts +385 -0
package/src/content/converters/prosemirror-to-portable-text.ts +413 -0
package/src/content/converters/types.ts +120 -0
package/src/content/index.ts +5 -0
package/src/database/connection.ts +67 -0
package/src/database/dialect-helpers.ts +138 -0
package/src/database/index.ts +5 -0
package/src/database/migrations/001_initial.ts +136 -0
package/src/database/migrations/002_media_status.ts +26 -0
package/src/database/migrations/003_schema_registry.ts +79 -0
package/src/database/migrations/004_plugins.ts +62 -0
package/src/database/migrations/005_menus.ts +67 -0
package/src/database/migrations/006_taxonomy_defs.ts +51 -0
package/src/database/migrations/007_widgets.ts +42 -0
package/src/database/migrations/008_auth.ts +194 -0
package/src/database/migrations/009_user_disabled.ts +27 -0
package/src/database/migrations/011_sections.ts +65 -0
package/src/database/migrations/012_search.ts +25 -0
package/src/database/migrations/013_scheduled_publishing.ts +51 -0
package/src/database/migrations/014_draft_revisions.ts +72 -0
package/src/database/migrations/015_indexes.ts +82 -0
package/src/database/migrations/016_api_tokens.ts +89 -0
package/src/database/migrations/017_authorization_codes.ts +45 -0
package/src/database/migrations/018_seo.ts +56 -0
package/src/database/migrations/019_i18n.ts +618 -0
package/src/database/migrations/020_collection_url_pattern.ts +23 -0
package/src/database/migrations/021_remove_section_categories.ts +43 -0
package/src/database/migrations/022_marketplace_plugin_state.ts +46 -0
package/src/database/migrations/023_plugin_metadata.ts +33 -0
package/src/database/migrations/024_media_placeholders.ts +32 -0
package/src/database/migrations/025_oauth_clients.ts +28 -0
package/src/database/migrations/026_cron_tasks.ts +49 -0
package/src/database/migrations/027_comments.ts +87 -0
package/src/database/migrations/028_drop_author_url.ts +9 -0
package/src/database/migrations/029_redirects.ts +67 -0
package/src/database/migrations/030_widen_scheduled_index.ts +48 -0
package/src/database/migrations/031_bylines.ts +90 -0
package/src/database/migrations/032_rate_limits.ts +42 -0
package/src/database/migrations/runner.ts +170 -0
package/src/database/repositories/audit.ts +294 -0
package/src/database/repositories/byline.ts +387 -0
package/src/database/repositories/comment.ts +458 -0
package/src/database/repositories/content.ts +1144 -0
package/src/database/repositories/index.ts +30 -0
package/src/database/repositories/media.ts +347 -0
package/src/database/repositories/options.ts +150 -0
package/src/database/repositories/plugin-storage.ts +373 -0
package/src/database/repositories/redirect.ts +480 -0
package/src/database/repositories/revision.ts +200 -0
package/src/database/repositories/seo.ts +176 -0
package/src/database/repositories/taxonomy.ts +294 -0
package/src/database/repositories/types.ts +132 -0
package/src/database/repositories/user.ts +258 -0
package/src/database/transaction.ts +54 -0
package/src/database/types.ts +501 -0
package/src/database/validate.ts +138 -0
package/src/db/adapters.ts +125 -0
package/src/db/index.ts +37 -0
package/src/db/libsql.ts +23 -0
package/src/db/postgres.ts +30 -0
package/src/db/sqlite.ts +27 -0
package/src/emdash-runtime.ts +2096 -0
package/src/fields/boolean.ts +34 -0
package/src/fields/datetime.ts +44 -0
package/src/fields/file.ts +41 -0
package/src/fields/image.ts +34 -0
package/src/fields/index.ts +42 -0
package/src/fields/integer.ts +50 -0
package/src/fields/json.ts +37 -0
package/src/fields/multiselect.ts +48 -0
package/src/fields/number.ts +52 -0
package/src/fields/portable-text.ts +33 -0
package/src/fields/reference.ts +29 -0
package/src/fields/richtext.ts +31 -0
package/src/fields/select.ts +46 -0
package/src/fields/slug.ts +38 -0
package/src/fields/text.ts +55 -0
package/src/fields/textarea.ts +52 -0
package/src/fields/types.ts +64 -0
package/src/i18n/config.ts +68 -0
package/src/import/index.ts +90 -0
package/src/import/menus.ts +436 -0
package/src/import/registry.ts +111 -0
package/src/import/sections.ts +103 -0
package/src/import/settings.ts +281 -0
package/src/import/sources/wordpress-plugin.ts +641 -0
package/src/import/sources/wordpress-rest.ts +191 -0
package/src/import/sources/wxr.ts +330 -0
package/src/import/ssrf.ts +260 -0
package/src/import/types.ts +418 -0
package/src/import/utils.ts +412 -0
package/src/index.ts +481 -0
package/src/loader.ts +770 -0
package/src/mcp/server.ts +1463 -0
package/src/media/index.ts +32 -0
package/src/media/local-runtime.ts +213 -0
package/src/media/local.ts +46 -0
package/src/media/normalize.ts +190 -0
package/src/media/placeholder.ts +150 -0
package/src/media/provider-loader.ts +78 -0
package/src/media/types.ts +279 -0
package/src/menus/index.ts +324 -0
package/src/menus/types.ts +112 -0
package/src/page/context.ts +93 -0
package/src/page/fragments.ts +89 -0
package/src/page/index.ts +58 -0
package/src/page/jsonld.ts +94 -0
package/src/page/metadata.ts +185 -0
package/src/page/seo-contributions.ts +136 -0
package/src/plugin-utils.ts +80 -0
package/src/plugins/adapt-sandbox-entry.ts +207 -0
package/src/plugins/context.ts +833 -0
package/src/plugins/cron.ts +361 -0
package/src/plugins/define-plugin.ts +259 -0
package/src/plugins/email-console.ts +73 -0
package/src/plugins/email.ts +209 -0
package/src/plugins/hooks.ts +1273 -0
package/src/plugins/index.ts +193 -0
package/src/plugins/manager.ts +595 -0
package/src/plugins/manifest-schema.ts +230 -0
package/src/plugins/marketplace.ts +460 -0
package/src/plugins/request-meta.ts +139 -0
package/src/plugins/routes.ts +302 -0
package/src/plugins/sandbox/index.ts +18 -0
package/src/plugins/sandbox/noop.ts +76 -0
package/src/plugins/sandbox/types.ts +173 -0
package/src/plugins/scheduler/node.ts +122 -0
package/src/plugins/scheduler/piggyback.ts +71 -0
package/src/plugins/scheduler/types.ts +27 -0
package/src/plugins/state.ts +208 -0
package/src/plugins/storage-indexes.ts +326 -0
package/src/plugins/storage-query.ts +240 -0
package/src/plugins/types.ts +1284 -0
package/src/preview/helpers.ts +27 -0
package/src/preview/index.ts +40 -0
package/src/preview/tokens.ts +279 -0
package/src/preview/urls.ts +118 -0
package/src/query.ts +674 -0
package/src/redirects/patterns.ts +224 -0
package/src/request-context.ts +67 -0
package/src/runtime.ts +21 -0
package/src/schema/index.ts +29 -0
package/src/schema/query.ts +44 -0
package/src/schema/registry.ts +965 -0
package/src/schema/types.ts +276 -0
package/src/schema/zod-generator.ts +413 -0
package/src/search/fts-manager.ts +452 -0
package/src/search/index.ts +26 -0
package/src/search/query.ts +396 -0
package/src/search/text-extraction.ts +162 -0
package/src/search/types.ts +114 -0
package/src/sections/index.ts +226 -0
package/src/sections/types.ts +86 -0
package/src/seed/apply.ts +1141 -0
package/src/seed/default.ts +86 -0
package/src/seed/index.ts +28 -0
package/src/seed/load.ts +35 -0
package/src/seed/types.ts +341 -0
package/src/seed/validate.ts +642 -0
package/src/seo/index.ts +179 -0
package/src/settings/index.ts +203 -0
package/src/settings/types.ts +58 -0
package/src/storage/index.ts +28 -0
package/src/storage/local.ts +253 -0
package/src/storage/s3.ts +271 -0
package/src/storage/types.ts +204 -0
package/src/taxonomies/index.ts +309 -0
package/src/taxonomies/types.ts +61 -0
package/src/ui.ts +75 -0
package/src/utils/base64.ts +73 -0
package/src/utils/hash.ts +36 -0
package/src/utils/sanitize.ts +20 -0
package/src/utils/slugify.ts +29 -0
package/src/utils/url.ts +48 -0
package/src/virtual-modules.d.ts +111 -0
package/src/visual-editing/editable.ts +108 -0
package/src/visual-editing/toolbar.ts +1229 -0
package/src/widgets/components.ts +105 -0
package/src/widgets/index.ts +131 -0
package/src/widgets/types.ts +81 -0

package/src/astro/middleware.ts ADDED Viewed

@@ -0,0 +1,398 @@
+/**
+ * EmDash middleware
+ *
+ * Thin wrapper that initializes EmDashRuntime and attaches it to locals.
+ * All heavy lifting happens in EmDashRuntime.
+ */
+import { defineMiddleware } from "astro:middleware";
+import { Kysely } from "kysely";
+// Import from virtual modules (populated by integration at build time)
+// @ts-ignore - virtual module
+import virtualConfig from "virtual:emdash/config";
+// @ts-ignore - virtual module
+import {
+	createDialect as virtualCreateDialect,
+	isSessionEnabled as virtualIsSessionEnabled,
+	getD1Binding as virtualGetD1Binding,
+	getDefaultConstraint as virtualGetDefaultConstraint,
+	getBookmarkCookieName as virtualGetBookmarkCookieName,
+	createSessionDialect as virtualCreateSessionDialect,
+} from "virtual:emdash/dialect";
+// @ts-ignore - virtual module
+import { mediaProviders as virtualMediaProviders } from "virtual:emdash/media-providers";
+// @ts-ignore - virtual module
+import { plugins as virtualPlugins } from "virtual:emdash/plugins";
+import {
+	createSandboxRunner as virtualCreateSandboxRunner,
+	sandboxEnabled as virtualSandboxEnabled,
+	// @ts-ignore - virtual module
+} from "virtual:emdash/sandbox-runner";
+// @ts-ignore - virtual module
+import { sandboxedPlugins as virtualSandboxedPlugins } from "virtual:emdash/sandboxed-plugins";
+// @ts-ignore - virtual module
+import { createStorage as virtualCreateStorage } from "virtual:emdash/storage";
+import {
+	EmDashRuntime,
+	type RuntimeDependencies,
+	type SandboxedPluginEntry,
+	type MediaProviderEntry,
+} from "../emdash-runtime.js";
+import { setI18nConfig } from "../i18n/config.js";
+import type { Database, Storage } from "../index.js";
+import type { SandboxRunner } from "../plugins/sandbox/types.js";
+import type { ResolvedPlugin } from "../plugins/types.js";
+import { runWithContext } from "../request-context.js";
+import type { EmDashConfig } from "./integration/runtime.js";
+// Cached runtime instance (persists across requests within worker)
+let runtimeInstance: EmDashRuntime | null = null;
+// Whether initialization is in progress (prevents concurrent init attempts)
+let runtimeInitializing = false;
+/** Whether i18n config has been initialized from the virtual module */
+let i18nInitialized = false;
+/**
+ * Get EmDash configuration from virtual module
+ */
+function getConfig(): EmDashConfig | null {
+	if (virtualConfig && typeof virtualConfig === "object") {
+		// Initialize i18n config on first access (once per worker lifetime)
+		if (!i18nInitialized) {
+			i18nInitialized = true;
+			// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module checked as object above
+			const config = virtualConfig as Record<string, unknown>;
+			if (config.i18n && typeof config.i18n === "object") {
+				setI18nConfig(
+					// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- runtime-checked above
+					config.i18n as {
+						defaultLocale: string;
+						locales: string[];
+						fallback?: Record<string, string>;
+					},
+				);
+			} else {
+				setI18nConfig(null);
+			}
+		}
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		return virtualConfig as EmDashConfig;
+	}
+	return null;
+}
+/**
+ * Get plugins from virtual module
+ */
+function getPlugins(): ResolvedPlugin[] {
+	// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+	return (virtualPlugins as ResolvedPlugin[]) || [];
+}
+/**
+ * Build runtime dependencies from virtual modules
+ */
+function buildDependencies(config: EmDashConfig): RuntimeDependencies {
+	return {
+		config,
+		plugins: getPlugins(),
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		createDialect: virtualCreateDialect as (config: Record<string, unknown>) => unknown,
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		createStorage: virtualCreateStorage as ((config: Record<string, unknown>) => Storage) | null,
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		sandboxEnabled: virtualSandboxEnabled as boolean,
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		sandboxedPluginEntries: (virtualSandboxedPlugins as SandboxedPluginEntry[]) || [],
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		createSandboxRunner: virtualCreateSandboxRunner as
+			| ((opts: { db: Kysely<Database> }) => SandboxRunner)
+			| null,
+		// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module import is untyped (@ts-ignore above)
+		mediaProviderEntries: (virtualMediaProviders as MediaProviderEntry[]) || [],
+	};
+}
+/**
+ * Get or create the runtime instance
+ */
+async function getRuntime(config: EmDashConfig): Promise<EmDashRuntime> {
+	// Return cached instance if available
+	if (runtimeInstance) {
+		return runtimeInstance;
+	}
+	// If another request is already initializing, wait and retry.
+	// We don't share the promise across requests because workerd flags
+	// cross-request promise resolution (causes warnings + potential hangs).
+	if (runtimeInitializing) {
+		// Poll until the initializing request finishes
+		await new Promise((resolve) => setTimeout(resolve, 50));
+		return getRuntime(config);
+	}
+	runtimeInitializing = true;
+	try {
+		const deps = buildDependencies(config);
+		const runtime = await EmDashRuntime.create(deps);
+		runtimeInstance = runtime;
+		return runtime;
+	} finally {
+		runtimeInitializing = false;
+	}
+}
+/**
+ * Baseline security headers applied to all responses.
+ * Admin routes get additional headers (strict CSP) from auth middleware.
+ */
+function setBaselineSecurityHeaders(response: Response): void {
+	// Prevent MIME type sniffing
+	response.headers.set("X-Content-Type-Options", "nosniff");
+	// Control referrer information
+	response.headers.set("Referrer-Policy", "strict-origin-when-cross-origin");
+	// Restrict access to sensitive browser APIs
+	response.headers.set(
+		"Permissions-Policy",
+		"camera=(), microphone=(), geolocation=(), payment=()",
+	);
+	// Prevent clickjacking (non-admin routes; admin CSP uses frame-ancestors)
+	if (!response.headers.has("Content-Security-Policy")) {
+		response.headers.set("X-Frame-Options", "SAMEORIGIN");
+	}
+}
+/** Public routes that require the runtime (sitemap, robots.txt, etc.) */
+const PUBLIC_RUNTIME_ROUTES = new Set(["/sitemap.xml", "/robots.txt"]);
+export const onRequest = defineMiddleware(async (context, next) => {
+	const { request, locals, cookies } = context;
+	const url = context.url;
+	// Process /_emdash routes and public routes with an active session
+	// (logged-in editors need the runtime for toolbar/visual editing on public pages)
+	const isEmDashRoute = url.pathname.startsWith("/_emdash");
+	const isPublicRuntimeRoute = PUBLIC_RUNTIME_ROUTES.has(url.pathname);
+	// Check for edit mode cookie - editors viewing public pages need the runtime
+	// so auth middleware can verify their session for visual editing
+	const hasEditCookie = cookies.get("emdash-edit-mode")?.value === "true";
+	const hasPreviewToken = url.searchParams.has("_preview");
+	// Playground mode: the playground middleware stashes the per-session DO database
+	// on locals.__playgroundDb. When present, use runWithContext() to make it
+	// available to getDb() and the runtime's db getter via the correct ALS instance.
+	const playgroundDb = locals.__playgroundDb;
+	if (!isEmDashRoute && !isPublicRuntimeRoute && !hasEditCookie && !hasPreviewToken) {
+		const sessionUser = await context.session?.get("user");
+		if (!sessionUser && !playgroundDb) {
+			const response = await next();
+			setBaselineSecurityHeaders(response);
+			return response;
+		}
+	}
+	const config = getConfig();
+	if (!config) {
+		console.error("EmDash: No configuration found");
+		return next();
+	}
+	// In playground mode, wrap the entire runtime init + request handling in
+	// runWithContext so that getDatabase() and all init queries use the real
+	// DO database via the same AsyncLocalStorage instance as the loader.
+	const doInit = async () => {
+		try {
+			// Get or create runtime
+			const runtime = await getRuntime(config);
+			// Get manifest (cached after first call)
+			const manifest = await runtime.getManifest();
+			// Attach to locals for route handlers
+			locals.emdashManifest = manifest;
+			locals.emdash = {
+				// Content handlers
+				handleContentList: runtime.handleContentList.bind(runtime),
+				handleContentGet: runtime.handleContentGet.bind(runtime),
+				handleContentCreate: runtime.handleContentCreate.bind(runtime),
+				handleContentUpdate: runtime.handleContentUpdate.bind(runtime),
+				handleContentDelete: runtime.handleContentDelete.bind(runtime),
+				// Trash handlers
+				handleContentListTrashed: runtime.handleContentListTrashed.bind(runtime),
+				handleContentRestore: runtime.handleContentRestore.bind(runtime),
+				handleContentPermanentDelete: runtime.handleContentPermanentDelete.bind(runtime),
+				handleContentCountTrashed: runtime.handleContentCountTrashed.bind(runtime),
+				handleContentGetIncludingTrashed: runtime.handleContentGetIncludingTrashed.bind(runtime),
+				// Duplicate handler
+				handleContentDuplicate: runtime.handleContentDuplicate.bind(runtime),
+				// Publishing & Scheduling handlers
+				handleContentPublish: runtime.handleContentPublish.bind(runtime),
+				handleContentUnpublish: runtime.handleContentUnpublish.bind(runtime),
+				handleContentSchedule: runtime.handleContentSchedule.bind(runtime),
+				handleContentUnschedule: runtime.handleContentUnschedule.bind(runtime),
+				handleContentCountScheduled: runtime.handleContentCountScheduled.bind(runtime),
+				handleContentDiscardDraft: runtime.handleContentDiscardDraft.bind(runtime),
+				handleContentCompare: runtime.handleContentCompare.bind(runtime),
+				handleContentTranslations: runtime.handleContentTranslations.bind(runtime),
+				// Media handlers
+				handleMediaList: runtime.handleMediaList.bind(runtime),
+				handleMediaGet: runtime.handleMediaGet.bind(runtime),
+				handleMediaCreate: runtime.handleMediaCreate.bind(runtime),
+				handleMediaUpdate: runtime.handleMediaUpdate.bind(runtime),
+				handleMediaDelete: runtime.handleMediaDelete.bind(runtime),
+				// Revision handlers
+				handleRevisionList: runtime.handleRevisionList.bind(runtime),
+				handleRevisionGet: runtime.handleRevisionGet.bind(runtime),
+				handleRevisionRestore: runtime.handleRevisionRestore.bind(runtime),
+				// Plugin routes
+				handlePluginApiRoute: runtime.handlePluginApiRoute.bind(runtime),
+				getPluginRouteMeta: runtime.getPluginRouteMeta.bind(runtime),
+				// Media provider methods
+				getMediaProvider: runtime.getMediaProvider.bind(runtime),
+				getMediaProviderList: runtime.getMediaProviderList.bind(runtime),
+				// Direct access (for advanced use cases)
+				storage: runtime.storage,
+				db: runtime.db,
+				hooks: runtime.hooks,
+				email: runtime.email,
+				configuredPlugins: runtime.configuredPlugins,
+				// Configuration (for checking database type, auth mode, etc.)
+				config,
+				// Manifest invalidation (call after schema changes)
+				invalidateManifest: runtime.invalidateManifest.bind(runtime),
+				// Sandbox runner (for marketplace plugin install/update)
+				getSandboxRunner: runtime.getSandboxRunner.bind(runtime),
+				// Sync marketplace plugin states (after install/update/uninstall)
+				syncMarketplacePlugins: runtime.syncMarketplacePlugins.bind(runtime),
+				// Update plugin enabled/disabled status and rebuild hook pipeline
+				setPluginStatus: runtime.setPluginStatus.bind(runtime),
+			};
+		} catch (error) {
+			console.error("EmDash middleware error:", error);
+		}
+		// =========================================================================
+		// D1 Read Replica Session Management
+		//
+		// When D1 sessions are enabled, we create a per-request D1 session and
+		// Kysely instance. The session is wrapped in ALS so `runtime.db` (a getter)
+		// picks up the per-request instance instead of the singleton.
+		//
+		// After the response, we extract the bookmark from the session and set
+		// it as a cookie for authenticated users (read-your-writes consistency).
+		// =========================================================================
+		const dbConfig = config?.database?.config;
+		const sessionEnabled =
+			dbConfig &&
+			typeof virtualIsSessionEnabled === "function" &&
+			// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module functions are untyped
+			(virtualIsSessionEnabled as (config: unknown) => boolean)(dbConfig);
+		if (
+			sessionEnabled &&
+			typeof virtualGetD1Binding === "function" &&
+			virtualCreateSessionDialect
+		) {
+			// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module functions are untyped
+			const d1Binding = (virtualGetD1Binding as (config: unknown) => unknown)(dbConfig);
+			if (d1Binding && typeof d1Binding === "object" && "withSession" in d1Binding) {
+				const isAuthenticated = !!(await context.session?.get("user"));
+				const isWrite = request.method !== "GET" && request.method !== "HEAD";
+				// Determine session constraint:
+				// - Config says "primary-first" → always "first-primary"
+				// - Authenticated writes → "first-primary" (need to hit primary)
+				// - Authenticated reads with bookmark → resume from bookmark
+				// - Otherwise → "first-unconstrained" (nearest replica)
+				// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module functions are untyped
+				const configConstraint = (virtualGetDefaultConstraint as (config: unknown) => string)(
+					dbConfig,
+				);
+				// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module functions are untyped
+				const cookieName = (virtualGetBookmarkCookieName as (config: unknown) => string)(dbConfig);
+				let constraint: string = configConstraint;
+				if (isAuthenticated && isWrite) {
+					constraint = "first-primary";
+				} else if (isAuthenticated) {
+					const bookmarkCookie = context.cookies.get(cookieName);
+					if (bookmarkCookie?.value) {
+						constraint = bookmarkCookie.value;
+					}
+				}
+				// Create the D1 session and per-request Kysely instance.
+				// D1DatabaseSession has the same prepare()/batch() interface as D1Database,
+				// so createSessionDialect passes it straight to D1Dialect.
+				// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- D1 binding with Sessions API, checked via "withSession" in d1Binding above
+				const withSession = (d1Binding as { withSession: (c: string) => unknown }).withSession;
+				const session = withSession.call(d1Binding, constraint);
+				const sessionDialect =
+					// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- virtual module functions are untyped
+					(virtualCreateSessionDialect as (db: unknown) => import("kysely").Dialect)(session);
+				const sessionDb = new Kysely<Database>({ dialect: sessionDialect });
+				// Wrap the request in ALS with the per-request db
+				return runWithContext({ editMode: false, db: sessionDb }, async () => {
+					const response = await next();
+					setBaselineSecurityHeaders(response);
+					// Set bookmark cookie for authenticated users only — they need
+					// read-your-writes consistency across requests. Anonymous visitors
+					// don't write, so they get "first-unconstrained" every time.
+					if (
+						isAuthenticated &&
+						session &&
+						typeof session === "object" &&
+						"getBookmark" in session
+					) {
+						// eslint-disable-next-line typescript-eslint(no-unsafe-type-assertion) -- D1DatabaseSession with getBookmark()
+						const getBookmark = (session as { getBookmark: () => string | null }).getBookmark;
+						const newBookmark = getBookmark.call(session);
+						if (newBookmark) {
+							response.headers.append(
+								"Set-Cookie",
+								`${cookieName}=${newBookmark}; Path=/; HttpOnly; SameSite=Lax; Secure`,
+							);
+						}
+					}
+					return response;
+				});
+			}
+		}
+		const response = await next();
+		setBaselineSecurityHeaders(response);
+		return response;
+	}; // end doInit
+	if (playgroundDb) {
+		// Read the edit-mode cookie to determine if visual editing is active.
+		// Default to false -- editing is opt-in via the playground toolbar toggle.
+		const editMode = context.cookies.get("emdash-edit-mode")?.value === "true";
+		return runWithContext({ editMode, db: playgroundDb }, doInit);
+	}
+	return doInit();
+});
+export default onRequest;

package/src/astro/routes/PluginRegistry.tsx ADDED Viewed

@@ -0,0 +1,15 @@
+/**
+ * Admin Wrapper
+ *
+ * Imports plugin admin modules from the virtual module and passes them
+ * to AdminApp via props. This ensures plugin components are bundled
+ * together with the admin app and available via React context.
+ */
+import { AdminApp } from "@emdash-cms/admin";
+// @ts-ignore - virtual module generated by integration
+import { pluginAdmins } from "virtual:emdash/admin-registry";
+export default function AdminWrapper() {
+	return <AdminApp pluginAdmins={pluginAdmins} />;
+}

package/src/astro/routes/admin.astro ADDED Viewed

@@ -0,0 +1,81 @@
+---
+/**
+ * Admin shell route - injected by EmDash integration
+ *
+ * This page serves the EmDash admin React SPA.
+ * AdminWrapper imports plugin admin modules and passes them to AdminApp.
+ */
+import "@emdash-cms/admin/styles.css";
+// Use package-qualified import so Astro generates a proper module URL
+// (relative imports resolve to absolute paths which break client hydration)
+import AdminWrapper from "emdash/routes/PluginRegistry";
+export const prerender = false;
+---
+<!doctype html>
+<html lang="en">
+	<head>
+		<meta charset="UTF-8" />
+		<meta name="viewport" content="width=device-width, initial-scale=1.0" />
+		<link
+			rel="icon"
+			href="data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' viewBox='0 0 100 100'%3E%3Ctext y='.9em' font-size='90'%3E%F0%9F%92%AB%3C/text%3E%3C/svg%3E"
+		/>
+		<title>EmDash Admin</title>
+	</head>
+	<body>
+		<div id="admin-root" class="min-h-screen">
+			<div id="emdash-boot-loader">
+				<style>
+					#emdash-boot-loader {
+						display: flex;
+						align-items: center;
+						justify-content: center;
+						min-height: 100vh;
+						color-scheme: light dark;
+						background: light-dark(hsl(0 0% 100%), hsl(222.2 84% 4.9%));
+					}
+					#emdash-boot-loader .loader-inner {
+						text-align: center;
+					}
+					#emdash-boot-loader .spinner {
+						width: 24px;
+						height: 24px;
+						margin: 0 auto;
+						border: 2.5px solid
+							light-dark(
+								hsl(215.4 16.3% 46.9% / 0.3),
+								hsl(215 20.2% 65.1% / 0.3)
+							);
+						border-top-color: light-dark(
+							hsl(215.4 16.3% 46.9%),
+							hsl(215 20.2% 65.1%)
+						);
+						border-radius: 50%;
+						animation: emdash-spin 0.8s linear infinite;
+					}
+					#emdash-boot-loader p {
+						margin-top: 1rem;
+						font-family:
+							system-ui,
+							-apple-system,
+							sans-serif;
+						font-size: 0.875rem;
+						color: light-dark(hsl(215.4 16.3% 46.9%), hsl(215 20.2% 65.1%));
+					}
+					@keyframes emdash-spin {
+						to {
+							transform: rotate(360deg);
+						}
+					}
+				</style>
+				<div class="loader-inner">
+					<div class="spinner"></div>
+					<p>Loading EmDash...</p>
+				</div>
+			</div>
+			<AdminWrapper client:only="react" />
+		</div>
+	</body>
+</html>

package/src/astro/routes/api/admin/allowed-domains/[domain].ts ADDED Viewed

@@ -0,0 +1,112 @@
+/**
+ * PATCH/DELETE /_emdash/api/admin/allowed-domains/[domain]
+ *
+ * Admin endpoints for managing a specific allowed domain.
+ * PATCH - Update domain settings (enabled, defaultRole)
+ * DELETE - Remove an allowed domain
+ */
+import type { APIRoute } from "astro";
+export const prerender = false;
+import { Role, roleFromLevel } from "@emdash-cms/auth";
+import { createKyselyAdapter } from "@emdash-cms/auth/adapters/kysely";
+import { apiError, apiSuccess, handleError } from "#api/error.js";
+import { isParseError, parseBody } from "#api/parse.js";
+import { allowedDomainUpdateBody } from "#api/schemas.js";
+/**
+ * PATCH - Update domain settings
+ */
+export const PATCH: APIRoute = async ({ params, request, locals }) => {
+	const { emdash, user } = locals;
+	const { domain } = params;
+	if (!emdash?.db) {
+		return apiError("NOT_CONFIGURED", "Database not configured", 500);
+	}
+	if (!domain) {
+		return apiError("VALIDATION_ERROR", "Domain is required", 400);
+	}
+	if (!user || user.role < Role.ADMIN) {
+		return apiError("FORBIDDEN", "Admin privileges required", 403);
+	}
+	const adapter = createKyselyAdapter(emdash.db);
+	try {
+		const body = await parseBody(request, allowedDomainUpdateBody);
+		if (isParseError(body)) return body;
+		// Check if domain exists
+		const existing = await adapter.getAllowedDomain(domain);
+		if (!existing) {
+			return apiError("NOT_FOUND", "Domain not found", 404);
+		}
+		// Role is already validated as RoleLevel by Zod schema
+		const defaultRole = body.defaultRole;
+		// Update domain
+		const enabled = body.enabled ?? existing.enabled;
+		await adapter.updateAllowedDomain(domain, enabled, defaultRole);
+		// Fetch updated domain
+		const updated = await adapter.getAllowedDomain(domain);
+		return apiSuccess({
+			success: true,
+			domain: updated
+				? {
+						domain: updated.domain,
+						defaultRole: updated.defaultRole,
+						roleName: roleFromLevel(updated.defaultRole),
+						enabled: updated.enabled,
+						createdAt: updated.createdAt.toISOString(),
+					}
+				: null,
+		});
+	} catch (error) {
+		return handleError(error, "Failed to update allowed domain", "DOMAIN_UPDATE_ERROR");
+	}
+};
+/**
+ * DELETE - Remove an allowed domain
+ */
+export const DELETE: APIRoute = async ({ params, locals }) => {
+	const { emdash, user } = locals;
+	const { domain } = params;
+	if (!emdash?.db) {
+		return apiError("NOT_CONFIGURED", "Database not configured", 500);
+	}
+	if (!domain) {
+		return apiError("VALIDATION_ERROR", "Domain is required", 400);
+	}
+	if (!user || user.role < Role.ADMIN) {
+		return apiError("FORBIDDEN", "Admin privileges required", 403);
+	}
+	const adapter = createKyselyAdapter(emdash.db);
+	try {
+		// Check if domain exists (optional - delete is idempotent)
+		const existing = await adapter.getAllowedDomain(domain);
+		if (!existing) {
+			return apiError("NOT_FOUND", "Domain not found", 404);
+		}
+		await adapter.deleteAllowedDomain(domain);
+		return apiSuccess({ success: true });
+	} catch (error) {
+		return handleError(error, "Failed to delete allowed domain", "DOMAIN_DELETE_ERROR");
+	}
+};