npm - emdash - Versions diffs - 0.19.0 → 0.21.0 - Mend

emdash 0.19.0 → 0.21.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (595) hide show

package/dist/astro/routes/api/admin/allowed-domains/_domain_.mjs CHANGED Viewed

@@ -1,9 +1,10 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import { n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import { S as allowedDomainUpdateBody } from "../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../byline-fields-51kg6Vuv.mjs";
+import { n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import { S as allowedDomainUpdateBody } from "../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
 import { createKyselyAdapter } from "@emdash-cms/auth/adapters/kysely";
 import { Role, roleFromLevel } from "@emdash-cms/auth";

package/dist/astro/routes/api/admin/allowed-domains/_domain_.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"_domain_.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/allowed-domains/[domain].ts"],"sourcesContent":["/*\n PATCH/DELETE /_emdash/api/admin/allowed-domains/[domain]\n \n Admin endpoints for managing a specific allowed domain.\n * PATCH - Update domain settings (enabled, defaultRole)\n * DELETE - Remove an allowed domain\n /\n\nimport type { APIRoute } from \"astro\";\n\nexport const prerender = false;\n\nimport { Role, roleFromLevel } from \"@emdash-cms/auth\";\nimport { createKyselyAdapter } from \"@emdash-cms/auth/adapters/kysely\";\n\nimport { apiError, apiSuccess, handleError } from \"#api/error.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { allowedDomainUpdateBody } from \"#api/schemas.js\";\n\n/\n PATCH - Update domain settings\n /\nexport const PATCH: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { domain } = params;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!domain) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Domain is required\", 400);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst body = await parseBody(request, allowedDomainUpdateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Check if domain exists\n\t\tconst existing = await adapter.getAllowedDomain(domain);\n\t\tif (!existing) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Domain not found\", 404);\n\t\t}\n\n\t\t// Role is already validated as RoleLevel by Zod schema\n\t\tconst defaultRole = body.defaultRole;\n\n\t\t// Update domain\n\t\tconst enabled = body.enabled ?? existing.enabled;\n\t\tawait adapter.updateAllowedDomain(domain, enabled, defaultRole);\n\n\t\t// Fetch updated domain\n\t\tconst updated = await adapter.getAllowedDomain(domain);\n\n\t\treturn apiSuccess({\n\t\t\tsuccess: true,\n\t\t\tdomain: updated\n\t\t\t\t? {\n\t\t\t\t\t\tdomain: updated.domain,\n\t\t\t\t\t\tdefaultRole: updated.defaultRole,\n\t\t\t\t\t\troleName: roleFromLevel(updated.defaultRole),\n\t\t\t\t\t\tenabled: updated.enabled,\n\t\t\t\t\t\tcreatedAt: updated.createdAt.toISOString(),\n\t\t\t\t\t}\n\t\t\t\t: null,\n\t\t});\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to update allowed domain\", \"DOMAIN_UPDATE_ERROR\");\n\t}\n};\n\n/\n DELETE - Remove an allowed domain\n */\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { domain } = params;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!domain) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Domain is required\", 400);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\t// Check if domain exists (optional - delete is idempotent)\n\t\tconst existing = await adapter.getAllowedDomain(domain);\n\t\tif (!existing) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Domain not found\", 404);\n\t\t}\n\n\t\tawait adapter.deleteAllowedDomain(domain);\n\n\t\treturn apiSuccess({ success: true });\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to delete allowed domain\", \"DOMAIN_DELETE_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;~~AAUA,MAAa,YAAY;;;;AAYzB,MAAa,QAAkB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACrE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,WAAW;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,OACJ,QAAO,SAAS,oBAAoB,sBAAsB,IAAI;AAG/D,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,wBAAwB;AAC9D,MAAI,aAAa,KAAK,CAAE,QAAO;EAG/B,MAAM,WAAW,MAAM,QAAQ,iBAAiB,OAAO;AACvD,MAAI,CAAC,SACJ,QAAO,SAAS,aAAa,oBAAoB,IAAI;EAItD,MAAM,cAAc,KAAK;EAGzB,MAAM,UAAU,KAAK,WAAW,SAAS;AACzC,QAAM,QAAQ,oBAAoB,QAAQ,SAAS,YAAY;EAG/D,MAAM,UAAU,MAAM,QAAQ,iBAAiB,OAAO;AAEtD,SAAO,WAAW;GACjB,SAAS;GACT,QAAQ,UACL;IACA,QAAQ,QAAQ;IAChB,aAAa,QAAQ;IACrB,UAAU,cAAc,QAAQ,YAAY;IAC5C,SAAS,QAAQ;IACjB,WAAW,QAAQ,UAAU,aAAa;IAC1C,GACA;GACH,CAAC;UACM,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB;;;;;;AAOrF,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,WAAW;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,OACJ,QAAO,SAAS,oBAAoB,sBAAsB,IAAI;AAG/D,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;AAGH,MAAI,CADa,MAAM,QAAQ,iBAAiB,OAAO,CAEtD,QAAO,SAAS,aAAa,oBAAoB,IAAI;AAGtD,QAAM,QAAQ,oBAAoB,OAAO;AAEzC,SAAO,WAAW,EAAE,SAAS,MAAM,CAAC;UAC5B,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB"}
1	+ {"version":3,"file":"_domain_.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/allowed-domains/[domain].ts"],"sourcesContent":["/*\n PATCH/DELETE /_emdash/api/admin/allowed-domains/[domain]\n \n Admin endpoints for managing a specific allowed domain.\n * PATCH - Update domain settings (enabled, defaultRole)\n * DELETE - Remove an allowed domain\n /\n\nimport type { APIRoute } from \"astro\";\n\nexport const prerender = false;\n\nimport { Role, roleFromLevel } from \"@emdash-cms/auth\";\nimport { createKyselyAdapter } from \"@emdash-cms/auth/adapters/kysely\";\n\nimport { apiError, apiSuccess, handleError } from \"#api/error.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { allowedDomainUpdateBody } from \"#api/schemas.js\";\n\n/\n PATCH - Update domain settings\n /\nexport const PATCH: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { domain } = params;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!domain) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Domain is required\", 400);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst body = await parseBody(request, allowedDomainUpdateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Check if domain exists\n\t\tconst existing = await adapter.getAllowedDomain(domain);\n\t\tif (!existing) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Domain not found\", 404);\n\t\t}\n\n\t\t// Role is already validated as RoleLevel by Zod schema\n\t\tconst defaultRole = body.defaultRole;\n\n\t\t// Update domain\n\t\tconst enabled = body.enabled ?? existing.enabled;\n\t\tawait adapter.updateAllowedDomain(domain, enabled, defaultRole);\n\n\t\t// Fetch updated domain\n\t\tconst updated = await adapter.getAllowedDomain(domain);\n\n\t\treturn apiSuccess({\n\t\t\tsuccess: true,\n\t\t\tdomain: updated\n\t\t\t\t? {\n\t\t\t\t\t\tdomain: updated.domain,\n\t\t\t\t\t\tdefaultRole: updated.defaultRole,\n\t\t\t\t\t\troleName: roleFromLevel(updated.defaultRole),\n\t\t\t\t\t\tenabled: updated.enabled,\n\t\t\t\t\t\tcreatedAt: updated.createdAt.toISOString(),\n\t\t\t\t\t}\n\t\t\t\t: null,\n\t\t});\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to update allowed domain\", \"DOMAIN_UPDATE_ERROR\");\n\t}\n};\n\n/\n DELETE - Remove an allowed domain\n */\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { domain } = params;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!domain) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Domain is required\", 400);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\t// Check if domain exists (optional - delete is idempotent)\n\t\tconst existing = await adapter.getAllowedDomain(domain);\n\t\tif (!existing) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Domain not found\", 404);\n\t\t}\n\n\t\tawait adapter.deleteAllowedDomain(domain);\n\n\t\treturn apiSuccess({ success: true });\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to delete allowed domain\", \"DOMAIN_DELETE_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;AAUA,MAAa,YAAY;;;;AAYzB,MAAa,QAAkB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACrE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,WAAW;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,OACJ,QAAO,SAAS,oBAAoB,sBAAsB,IAAI;AAG/D,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,wBAAwB;AAC9D,MAAI,aAAa,KAAK,CAAE,QAAO;EAG/B,MAAM,WAAW,MAAM,QAAQ,iBAAiB,OAAO;AACvD,MAAI,CAAC,SACJ,QAAO,SAAS,aAAa,oBAAoB,IAAI;EAItD,MAAM,cAAc,KAAK;EAGzB,MAAM,UAAU,KAAK,WAAW,SAAS;AACzC,QAAM,QAAQ,oBAAoB,QAAQ,SAAS,YAAY;EAG/D,MAAM,UAAU,MAAM,QAAQ,iBAAiB,OAAO;AAEtD,SAAO,WAAW;GACjB,SAAS;GACT,QAAQ,UACL;IACA,QAAQ,QAAQ;IAChB,aAAa,QAAQ;IACrB,UAAU,cAAc,QAAQ,YAAY;IAC5C,SAAS,QAAQ;IACjB,WAAW,QAAQ,UAAU,aAAa;IAC1C,GACA;GACH,CAAC;UACM,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB;;;;;;AAOrF,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,WAAW;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,OACJ,QAAO,SAAS,oBAAoB,sBAAsB,IAAI;AAG/D,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;AAGH,MAAI,CADa,MAAM,QAAQ,iBAAiB,OAAO,CAEtD,QAAO,SAAS,aAAa,oBAAoB,IAAI;AAGtD,QAAM,QAAQ,oBAAoB,OAAO;AAEzC,SAAO,WAAW,EAAE,SAAS,MAAM,CAAC;UAC5B,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB"}

package/dist/astro/routes/api/admin/allowed-domains/index.mjs CHANGED Viewed

@@ -1,9 +1,10 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import { n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import { x as allowedDomainCreateBody } from "../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../byline-fields-51kg6Vuv.mjs";
+import { n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import { x as allowedDomainCreateBody } from "../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
 import { createKyselyAdapter } from "@emdash-cms/auth/adapters/kysely";
 import { Role, roleFromLevel } from "@emdash-cms/auth";

package/dist/astro/routes/api/admin/allowed-domains/index.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/allowed-domains/index.ts"],"sourcesContent":["/*\n GET/POST /_emdash/api/admin/allowed-domains\n \n Admin endpoints for managing allowed signup domains.\n * GET - List all allowed domains\n * POST - Add a new allowed domain\n /\n\nimport type { APIRoute } from \"astro\";\n\nexport const prerender = false;\n\nimport { Role, roleFromLevel } from \"@emdash-cms/auth\";\nimport { createKyselyAdapter } from \"@emdash-cms/auth/adapters/kysely\";\n\nimport { apiError, apiSuccess, handleError } from \"#api/error.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { allowedDomainCreateBody } from \"#api/schemas.js\";\n\nconst DOMAIN_REGEX = /^[a-zA-Z0-9][a-zA-Z0-9-](\\.[a-zA-Z0-9-]+)+$/;\n\n/*\n GET - List all allowed domains\n /\nexport const GET: APIRoute = async ({ locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst domains = await adapter.getAllowedDomains();\n\n\t\treturn apiSuccess({\n\t\t\tdomains: domains.map((d) => ({\n\t\t\t\tdomain: d.domain,\n\t\t\t\tdefaultRole: d.defaultRole,\n\t\t\t\troleName: roleFromLevel(d.defaultRole),\n\t\t\t\tenabled: d.enabled,\n\t\t\t\tcreatedAt: d.createdAt.toISOString(),\n\t\t\t})),\n\t\t});\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to list allowed domains\", \"DOMAIN_LIST_ERROR\");\n\t}\n};\n\n/\n POST - Add a new allowed domain\n */\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst body = await parseBody(request, allowedDomainCreateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Role is already validated as RoleLevel by Zod schema\n\t\tconst defaultRole = body.defaultRole;\n\n\t\t// Validate domain format (no protocol, just domain)\n\t\tconst cleanDomain = body.domain.toLowerCase().trim();\n\t\tif (!DOMAIN_REGEX.test(cleanDomain)) {\n\t\t\treturn apiError(\"VALIDATION_ERROR\", \"Invalid domain format\", 400);\n\t\t}\n\n\t\t// Check if domain already exists\n\t\tconst existing = await adapter.getAllowedDomain(cleanDomain);\n\t\tif (existing) {\n\t\t\treturn apiError(\"CONFLICT\", \"Domain already exists\", 409);\n\t\t}\n\n\t\tconst domain = await adapter.createAllowedDomain(cleanDomain, defaultRole);\n\n\t\treturn apiSuccess(\n\t\t\t{\n\t\t\t\tsuccess: true,\n\t\t\t\tdomain: {\n\t\t\t\t\tdomain: domain.domain,\n\t\t\t\t\tdefaultRole: domain.defaultRole,\n\t\t\t\t\troleName: roleFromLevel(domain.defaultRole),\n\t\t\t\t\tenabled: domain.enabled,\n\t\t\t\t\tcreatedAt: domain.createdAt.toISOString(),\n\t\t\t\t},\n\t\t\t},\n\t\t\t201,\n\t\t);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to create allowed domain\", \"DOMAIN_CREATE_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;~~AAUA,MAAa,YAAY;AASzB,MAAM,eAAe;;;;AAKrB,MAAa,MAAgB,OAAO,EAAE,aAAa;CAClD,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;AAGH,SAAO,WAAW,EACjB,UAHe,MAAM,QAAQ,mBAAmB,EAG/B,KAAK,OAAO;GAC5B,QAAQ,EAAE;GACV,aAAa,EAAE;GACf,UAAU,cAAc,EAAE,YAAY;GACtC,SAAS,EAAE;GACX,WAAW,EAAE,UAAU,aAAa;GACpC,EAAE,EACH,CAAC;UACM,OAAO;AACf,SAAO,YAAY,OAAO,kCAAkC,oBAAoB;;;;;;AAOlF,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,wBAAwB;AAC9D,MAAI,aAAa,KAAK,CAAE,QAAO;EAG/B,MAAM,cAAc,KAAK;EAGzB,MAAM,cAAc,KAAK,OAAO,aAAa,CAAC,MAAM;AACpD,MAAI,CAAC,aAAa,KAAK,YAAY,CAClC,QAAO,SAAS,oBAAoB,yBAAyB,IAAI;AAKlE,MADiB,MAAM,QAAQ,iBAAiB,YAAY,CAE3D,QAAO,SAAS,YAAY,yBAAyB,IAAI;EAG1D,MAAM,SAAS,MAAM,QAAQ,oBAAoB,aAAa,YAAY;AAE1E,SAAO,WACN;GACC,SAAS;GACT,QAAQ;IACP,QAAQ,OAAO;IACf,aAAa,OAAO;IACpB,UAAU,cAAc,OAAO,YAAY;IAC3C,SAAS,OAAO;IAChB,WAAW,OAAO,UAAU,aAAa;IACzC;GACD,EACD,IACA;UACO,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB"}
1	+ {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/allowed-domains/index.ts"],"sourcesContent":["/*\n GET/POST /_emdash/api/admin/allowed-domains\n \n Admin endpoints for managing allowed signup domains.\n * GET - List all allowed domains\n * POST - Add a new allowed domain\n /\n\nimport type { APIRoute } from \"astro\";\n\nexport const prerender = false;\n\nimport { Role, roleFromLevel } from \"@emdash-cms/auth\";\nimport { createKyselyAdapter } from \"@emdash-cms/auth/adapters/kysely\";\n\nimport { apiError, apiSuccess, handleError } from \"#api/error.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { allowedDomainCreateBody } from \"#api/schemas.js\";\n\nconst DOMAIN_REGEX = /^[a-zA-Z0-9][a-zA-Z0-9-](\\.[a-zA-Z0-9-]+)+$/;\n\n/*\n GET - List all allowed domains\n /\nexport const GET: APIRoute = async ({ locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst domains = await adapter.getAllowedDomains();\n\n\t\treturn apiSuccess({\n\t\t\tdomains: domains.map((d) => ({\n\t\t\t\tdomain: d.domain,\n\t\t\t\tdefaultRole: d.defaultRole,\n\t\t\t\troleName: roleFromLevel(d.defaultRole),\n\t\t\t\tenabled: d.enabled,\n\t\t\t\tcreatedAt: d.createdAt.toISOString(),\n\t\t\t})),\n\t\t});\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to list allowed domains\", \"DOMAIN_LIST_ERROR\");\n\t}\n};\n\n/\n POST - Add a new allowed domain\n */\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"Database not configured\", 500);\n\t}\n\n\tif (!user \|\| user.role < Role.ADMIN) {\n\t\treturn apiError(\"FORBIDDEN\", \"Admin privileges required\", 403);\n\t}\n\n\tconst adapter = createKyselyAdapter(emdash.db);\n\n\ttry {\n\t\tconst body = await parseBody(request, allowedDomainCreateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Role is already validated as RoleLevel by Zod schema\n\t\tconst defaultRole = body.defaultRole;\n\n\t\t// Validate domain format (no protocol, just domain)\n\t\tconst cleanDomain = body.domain.toLowerCase().trim();\n\t\tif (!DOMAIN_REGEX.test(cleanDomain)) {\n\t\t\treturn apiError(\"VALIDATION_ERROR\", \"Invalid domain format\", 400);\n\t\t}\n\n\t\t// Check if domain already exists\n\t\tconst existing = await adapter.getAllowedDomain(cleanDomain);\n\t\tif (existing) {\n\t\t\treturn apiError(\"CONFLICT\", \"Domain already exists\", 409);\n\t\t}\n\n\t\tconst domain = await adapter.createAllowedDomain(cleanDomain, defaultRole);\n\n\t\treturn apiSuccess(\n\t\t\t{\n\t\t\t\tsuccess: true,\n\t\t\t\tdomain: {\n\t\t\t\t\tdomain: domain.domain,\n\t\t\t\t\tdefaultRole: domain.defaultRole,\n\t\t\t\t\troleName: roleFromLevel(domain.defaultRole),\n\t\t\t\t\tenabled: domain.enabled,\n\t\t\t\t\tcreatedAt: domain.createdAt.toISOString(),\n\t\t\t\t},\n\t\t\t},\n\t\t\t201,\n\t\t);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to create allowed domain\", \"DOMAIN_CREATE_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;AAUA,MAAa,YAAY;AASzB,MAAM,eAAe;;;;AAKrB,MAAa,MAAgB,OAAO,EAAE,aAAa;CAClD,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;AAGH,SAAO,WAAW,EACjB,UAHe,MAAM,QAAQ,mBAAmB,EAG/B,KAAK,OAAO;GAC5B,QAAQ,EAAE;GACV,aAAa,EAAE;GACf,UAAU,cAAc,EAAE,YAAY;GACtC,SAAS,EAAE;GACX,WAAW,EAAE,UAAU,aAAa;GACpC,EAAE,EACH,CAAC;UACM,OAAO;AACf,SAAO,YAAY,OAAO,kCAAkC,oBAAoB;;;;;;AAOlF,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,2BAA2B,IAAI;AAGlE,KAAI,CAAC,QAAQ,KAAK,OAAO,KAAK,MAC7B,QAAO,SAAS,aAAa,6BAA6B,IAAI;CAG/D,MAAM,UAAU,oBAAoB,OAAO,GAAG;AAE9C,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,wBAAwB;AAC9D,MAAI,aAAa,KAAK,CAAE,QAAO;EAG/B,MAAM,cAAc,KAAK;EAGzB,MAAM,cAAc,KAAK,OAAO,aAAa,CAAC,MAAM;AACpD,MAAI,CAAC,aAAa,KAAK,YAAY,CAClC,QAAO,SAAS,oBAAoB,yBAAyB,IAAI;AAKlE,MADiB,MAAM,QAAQ,iBAAiB,YAAY,CAE3D,QAAO,SAAS,YAAY,yBAAyB,IAAI;EAG1D,MAAM,SAAS,MAAM,QAAQ,oBAAoB,aAAa,YAAY;AAE1E,SAAO,WACN;GACC,SAAS;GACT,QAAQ;IACP,QAAQ,OAAO;IACf,aAAa,OAAO;IACpB,UAAU,cAAc,OAAO,YAAY;IAC3C,SAAS,OAAO;IAChB,WAAW,OAAO,UAAU,aAAa;IACzC;GACD,EACD,IACA;UACO,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,sBAAsB"}

package/dist/astro/routes/api/admin/api-tokens/_id_.mjs CHANGED Viewed

@@ -1,8 +1,8 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import { a as unwrapResult, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import "../../../../../api-tokens-B6VgoE6M.mjs";
-import { r as handleApiTokenRevoke } from "../../../../../api-tokens-VrXNiNvV.mjs";
+import { a as unwrapResult, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import "../../../../../api-tokens-C7ywRx7l.mjs";
+import { r as handleApiTokenRevoke } from "../../../../../api-tokens-BFFkB0jB.mjs";
 import { Role } from "@emdash-cms/auth";
 //#region src/astro/routes/api/admin/api-tokens/[id].ts

package/dist/astro/routes/api/admin/api-tokens/index.mjs CHANGED Viewed

@@ -1,9 +1,9 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import { a as unwrapResult, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import { n as VALID_SCOPES } from "../../../../../api-tokens-B6VgoE6M.mjs";
-import { n as handleApiTokenList, t as handleApiTokenCreate } from "../../../../../api-tokens-VrXNiNvV.mjs";
+import { a as unwrapResult, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import { n as VALID_SCOPES } from "../../../../../api-tokens-C7ywRx7l.mjs";
+import { n as handleApiTokenList, t as handleApiTokenCreate } from "../../../../../api-tokens-BFFkB0jB.mjs";
 import { z } from "zod";
 import { Role } from "@emdash-cms/auth";

package/dist/astro/routes/api/admin/byline-fields/_slug_/usage.mjs CHANGED Viewed

@@ -1,9 +1,9 @@
 import "../../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../../types-BXSUSAjt.mjs";
-import "../../../../../../byline-registry-CWP7I71B.mjs";
-import { a as unwrapResult, i as requireDb, t as apiError } from "../../../../../../error-RwM4dD35.mjs";
-import { n as requirePerm } from "../../../../../../authorize-C_8t2KGa.mjs";
-import { s as handleBylineFieldUsage } from "../../../../../../byline-fields-C_OsR-KF.mjs";
+import "../../../../../../byline-registry-DedidtqC.mjs";
+import { a as unwrapResult, i as requireDb, t as apiError } from "../../../../../../error-CNn_w7jf.mjs";
+import { n as requirePerm } from "../../../../../../authorize-D5gfBVU5.mjs";
+import { s as handleBylineFieldUsage } from "../../../../../../byline-fields-nBVqK_Ff.mjs";
 //#region src/astro/routes/api/admin/byline-fields/[slug]/usage.ts
 const prerender = false;

package/dist/astro/routes/api/admin/byline-fields/_slug_.mjs CHANGED Viewed

@@ -1,13 +1,14 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import "../../../../../byline-registry-CWP7I71B.mjs";
-import { a as unwrapResult, i as requireDb, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import "../../../../../redirects-DEygMrRO.mjs";
-import { a as bylineFieldUpdateBody } from "../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../byline-registry-DedidtqC.mjs";
+import { a as unwrapResult, i as requireDb, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import "../../../../../redirects-6Zg2SoYo.mjs";
+import { a as bylineFieldUpdateBody } from "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { n as handleBylineFieldDelete, o as handleBylineFieldUpdate, r as handleBylineFieldGet } from "../../../../../byline-fields-C_OsR-KF.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { n as handleBylineFieldDelete, o as handleBylineFieldUpdate, r as handleBylineFieldGet } from "../../../../../byline-fields-nBVqK_Ff.mjs";
 //#region src/astro/routes/api/admin/byline-fields/[slug].ts
 const prerender = false;

package/dist/astro/routes/api/admin/byline-fields/_slug_.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"_slug_.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/[slug].ts"],"sourcesContent":["/*\n Byline custom-field schema management — single field CRUD.\n \n - GET /_emdash/api/admin/byline-fields/{slug} read one definition\n * - PATCH /_emdash/api/admin/byline-fields/{slug} update label / required /\n * translatable / validation /\n * sort order\n * - DELETE /_emdash/api/admin/byline-fields/{slug} drop the definition and all\n * stored values (FK CASCADE +\n * app-level cleanup; see\n * `BylineSchemaRegistry.deleteField`)\n \n Thin wrappers around the handler layer; status mapping happens in\n * `unwrapResult`. `slug` and `type` are immutable post-create — see\n * `bylineFieldUpdateBody`. Flipping `translatable` while value rows\n * exist surfaces as a 409 `TRANSLATABLE_LOCKED`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, requireDb, unwrapResult } from \"#api/error.js\";\nimport {\n\thandleBylineFieldDelete,\n\thandleBylineFieldGet,\n\thandleBylineFieldUpdate,\n} from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldUpdateBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\n// GET requires `schema:read` (Editor+); see sibling `index.ts` GET\n// for rationale.\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:read\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst result = await handleBylineFieldGet(emdash.db, slug);\n\treturn unwrapResult(result);\n};\n\nexport const PATCH: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst body = await parseBody(request, bylineFieldUpdateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldUpdate(emdash.db, slug, {\n\t\tlabel: body.label,\n\t\trequired: body.required,\n\t\ttranslatable: body.translatable,\n\t\t// `null` clears the stored validation; `undefined` leaves it as-is.\n\t\t// The zod schema makes `validation` itself optional, so an absent\n\t\t// key reaches the handler as `undefined`.\n\t\tvalidation: body.validation,\n\t\tsortOrder: body.sortOrder,\n\t});\n\treturn unwrapResult(result);\n};\n\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst result = await handleBylineFieldDelete(emdash.db, slug);\n\treturn unwrapResult(result);\n};\n"],"mappings":"~~;;;;;;;;;;;;~~AAgCA,MAAa,YAAY;AAIzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,cAAc;AAC/C,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;AAG1E,QAAO,aADQ,MAAM,qBAAqB,OAAO,IAAI,KAAK,CAC/B;;AAG5B,MAAa,QAAkB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACrE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;CAE1E,MAAM,OAAO,MAAM,UAAU,SAAS,sBAAsB;AAC5D,KAAI,aAAa,KAAK,CAAE,QAAO;AAY/B,QAAO,aAVQ,MAAM,wBAAwB,OAAO,IAAI,MAAM;EAC7D,OAAO,KAAK;EACZ,UAAU,KAAK;EACf,cAAc,KAAK;EAInB,YAAY,KAAK;EACjB,WAAW,KAAK;EAChB,CAAC,CACyB;;AAG5B,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;AAG1E,QAAO,aADQ,MAAM,wBAAwB,OAAO,IAAI,KAAK,CAClC"}
1	+ {"version":3,"file":"_slug_.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/[slug].ts"],"sourcesContent":["/*\n Byline custom-field schema management — single field CRUD.\n \n - GET /_emdash/api/admin/byline-fields/{slug} read one definition\n * - PATCH /_emdash/api/admin/byline-fields/{slug} update label / required /\n * translatable / validation /\n * sort order\n * - DELETE /_emdash/api/admin/byline-fields/{slug} drop the definition and all\n * stored values (FK CASCADE +\n * app-level cleanup; see\n * `BylineSchemaRegistry.deleteField`)\n \n Thin wrappers around the handler layer; status mapping happens in\n * `unwrapResult`. `slug` and `type` are immutable post-create — see\n * `bylineFieldUpdateBody`. Flipping `translatable` while value rows\n * exist surfaces as a 409 `TRANSLATABLE_LOCKED`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, requireDb, unwrapResult } from \"#api/error.js\";\nimport {\n\thandleBylineFieldDelete,\n\thandleBylineFieldGet,\n\thandleBylineFieldUpdate,\n} from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldUpdateBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\n// GET requires `schema:read` (Editor+); see sibling `index.ts` GET\n// for rationale.\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:read\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst result = await handleBylineFieldGet(emdash.db, slug);\n\treturn unwrapResult(result);\n};\n\nexport const PATCH: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst body = await parseBody(request, bylineFieldUpdateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldUpdate(emdash.db, slug, {\n\t\tlabel: body.label,\n\t\trequired: body.required,\n\t\ttranslatable: body.translatable,\n\t\t// `null` clears the stored validation; `undefined` leaves it as-is.\n\t\t// The zod schema makes `validation` itself optional, so an absent\n\t\t// key reaches the handler as `undefined`.\n\t\tvalidation: body.validation,\n\t\tsortOrder: body.sortOrder,\n\t});\n\treturn unwrapResult(result);\n};\n\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst slug = params.slug;\n\tif (!slug) return apiError(\"MISSING_PARAM\", \"Field slug is required\", 400);\n\n\tconst result = await handleBylineFieldDelete(emdash.db, slug);\n\treturn unwrapResult(result);\n};\n"],"mappings":";;;;;;;;;;;;;AAgCA,MAAa,YAAY;AAIzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,cAAc;AAC/C,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;AAG1E,QAAO,aADQ,MAAM,qBAAqB,OAAO,IAAI,KAAK,CAC/B;;AAG5B,MAAa,QAAkB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACrE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;CAE1E,MAAM,OAAO,MAAM,UAAU,SAAS,sBAAsB;AAC5D,KAAI,aAAa,KAAK,CAAE,QAAO;AAY/B,QAAO,aAVQ,MAAM,wBAAwB,OAAO,IAAI,MAAM;EAC7D,OAAO,KAAK;EACZ,UAAU,KAAK;EACf,cAAc,KAAK;EAInB,YAAY,KAAK;EACjB,WAAW,KAAK;EAChB,CAAC,CACyB;;AAG5B,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,OAAO;AACpB,KAAI,CAAC,KAAM,QAAO,SAAS,iBAAiB,0BAA0B,IAAI;AAG1E,QAAO,aADQ,MAAM,wBAAwB,OAAO,IAAI,KAAK,CAClC"}

package/dist/astro/routes/api/admin/byline-fields/index.mjs CHANGED Viewed

@@ -1,13 +1,14 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import "../../../../../byline-registry-CWP7I71B.mjs";
-import { a as unwrapResult, i as requireDb } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import "../../../../../redirects-DEygMrRO.mjs";
-import { t as bylineFieldCreateBody } from "../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../byline-registry-DedidtqC.mjs";
+import { a as unwrapResult, i as requireDb } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import "../../../../../redirects-6Zg2SoYo.mjs";
+import { t as bylineFieldCreateBody } from "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { i as handleBylineFieldList, t as handleBylineFieldCreate } from "../../../../../byline-fields-C_OsR-KF.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { i as handleBylineFieldList, t as handleBylineFieldCreate } from "../../../../../byline-fields-nBVqK_Ff.mjs";
 //#region src/astro/routes/api/admin/byline-fields/index.ts
 const prerender = false;

package/dist/astro/routes/api/admin/byline-fields/index.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/index.ts"],"sourcesContent":["/*\n Byline custom-field schema management — list + create.\n \n - GET /_emdash/api/admin/byline-fields list every registered field\n * - POST /_emdash/api/admin/byline-fields create a new field definition\n \n Thin wrappers around `handleBylineFieldList` / `handleBylineFieldCreate`\n * in `api/handlers/byline-fields.ts`. Both endpoints require\n * `schema:manage`. Reserved-slug + identifier validation runs at the\n * zod layer in `bylineFieldCreateBody`; the registry repeats the check\n * for defence-in-depth. Domain errors surface as typed `ErrorCode`s and\n * are mapped to HTTP statuses by `unwrapResult` → `mapErrorStatus`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineFieldCreate, handleBylineFieldList } from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldCreateBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\n// GET requires `schema:read` (Editor+), not `schema:manage` — Phase 6\n// of #1174 surfaced the split: editors need to read field definitions\n// to render custom-field inputs in the byline edit form, while only\n// admins manage the registry. The Phase 4 review-round constraint\n// \"every endpoint returns 403 for a user without schema:manage\" is\n// superseded for the read endpoints; mutations remain admin-only.\nexport const GET: APIRoute = async ({ locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:read\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst result = await handleBylineFieldList(emdash.db);\n\treturn unwrapResult(result);\n};\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineFieldCreateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldCreate(emdash.db, {\n\t\tslug: body.slug,\n\t\tlabel: body.label,\n\t\ttype: body.type,\n\t\trequired: body.required,\n\t\ttranslatable: body.translatable,\n\t\tvalidation: body.validation ?? null,\n\t\tsortOrder: body.sortOrder,\n\t});\n\treturn unwrapResult(result, 201);\n};\n"],"mappings":"~~;;;;;;;;;;;;~~AAwBA,MAAa,YAAY;AAQzB,MAAa,MAAgB,OAAO,EAAE,aAAa;CAClD,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,cAAc;AAC/C,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;AAGlB,QAAO,aADQ,MAAM,sBAAsB,OAAO,GAAG,CAC1B;;AAG5B,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,sBAAsB;AAC5D,KAAI,aAAa,KAAK,CAAE,QAAO;AAW/B,QAAO,aATQ,MAAM,wBAAwB,OAAO,IAAI;EACvD,MAAM,KAAK;EACX,OAAO,KAAK;EACZ,MAAM,KAAK;EACX,UAAU,KAAK;EACf,cAAc,KAAK;EACnB,YAAY,KAAK,cAAc;EAC/B,WAAW,KAAK;EAChB,CAAC,EAC0B,IAAI"}
1	+ {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/index.ts"],"sourcesContent":["/*\n Byline custom-field schema management — list + create.\n \n - GET /_emdash/api/admin/byline-fields list every registered field\n * - POST /_emdash/api/admin/byline-fields create a new field definition\n \n Thin wrappers around `handleBylineFieldList` / `handleBylineFieldCreate`\n * in `api/handlers/byline-fields.ts`. Both endpoints require\n * `schema:manage`. Reserved-slug + identifier validation runs at the\n * zod layer in `bylineFieldCreateBody`; the registry repeats the check\n * for defence-in-depth. Domain errors surface as typed `ErrorCode`s and\n * are mapped to HTTP statuses by `unwrapResult` → `mapErrorStatus`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineFieldCreate, handleBylineFieldList } from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldCreateBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\n// GET requires `schema:read` (Editor+), not `schema:manage` — Phase 6\n// of #1174 surfaced the split: editors need to read field definitions\n// to render custom-field inputs in the byline edit form, while only\n// admins manage the registry. The Phase 4 review-round constraint\n// \"every endpoint returns 403 for a user without schema:manage\" is\n// superseded for the read endpoints; mutations remain admin-only.\nexport const GET: APIRoute = async ({ locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:read\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst result = await handleBylineFieldList(emdash.db);\n\treturn unwrapResult(result);\n};\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineFieldCreateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldCreate(emdash.db, {\n\t\tslug: body.slug,\n\t\tlabel: body.label,\n\t\ttype: body.type,\n\t\trequired: body.required,\n\t\ttranslatable: body.translatable,\n\t\tvalidation: body.validation ?? null,\n\t\tsortOrder: body.sortOrder,\n\t});\n\treturn unwrapResult(result, 201);\n};\n"],"mappings":";;;;;;;;;;;;;AAwBA,MAAa,YAAY;AAQzB,MAAa,MAAgB,OAAO,EAAE,aAAa;CAClD,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,cAAc;AAC/C,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;AAGlB,QAAO,aADQ,MAAM,sBAAsB,OAAO,GAAG,CAC1B;;AAG5B,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,sBAAsB;AAC5D,KAAI,aAAa,KAAK,CAAE,QAAO;AAW/B,QAAO,aATQ,MAAM,wBAAwB,OAAO,IAAI;EACvD,MAAM,KAAK;EACX,OAAO,KAAK;EACZ,MAAM,KAAK;EACX,UAAU,KAAK;EACf,cAAc,KAAK;EACnB,YAAY,KAAK,cAAc;EAC/B,WAAW,KAAK;EAChB,CAAC,EAC0B,IAAI"}

package/dist/astro/routes/api/admin/byline-fields/reorder.mjs CHANGED Viewed

@@ -1,13 +1,14 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import "../../../../../byline-registry-CWP7I71B.mjs";
-import { a as unwrapResult, i as requireDb } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import "../../../../../redirects-DEygMrRO.mjs";
-import { i as bylineFieldReorderBody } from "../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../byline-registry-DedidtqC.mjs";
+import { a as unwrapResult, i as requireDb } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import "../../../../../redirects-6Zg2SoYo.mjs";
+import { i as bylineFieldReorderBody } from "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { a as handleBylineFieldReorder } from "../../../../../byline-fields-C_OsR-KF.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { a as handleBylineFieldReorder } from "../../../../../byline-fields-nBVqK_Ff.mjs";
 //#region src/astro/routes/api/admin/byline-fields/reorder.ts
 const prerender = false;

package/dist/astro/routes/api/admin/byline-fields/reorder.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"reorder.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/reorder.ts"],"sourcesContent":["/*\n Byline field reorder.\n \n POST /_emdash/api/admin/byline-fields/reorder\n \n Body: `{ slugs: string[] }` — the exact set of currently registered\n * slugs in the desired order. The registry rejects any drift\n * (`REORDER_MISMATCH` → 400). Empty `[]` against an empty registered\n * set is a no-op by registry contract; the zod schema permits it.\n \n Thin wrapper around `handleBylineFieldReorder`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineFieldReorder } from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldReorderBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineFieldReorderBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldReorder(emdash.db, body.slugs);\n\treturn unwrapResult(result);\n};\n"],"mappings":"~~;;;;;;;;;;;;~~AAuBA,MAAa,YAAY;AAEzB,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,uBAAuB;AAC7D,KAAI,aAAa,KAAK,CAAE,QAAO;AAG/B,QAAO,aADQ,MAAM,yBAAyB,OAAO,IAAI,KAAK,MAAM,CACzC"}
1	+ {"version":3,"file":"reorder.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/byline-fields/reorder.ts"],"sourcesContent":["/*\n Byline field reorder.\n \n POST /_emdash/api/admin/byline-fields/reorder\n \n Body: `{ slugs: string[] }` — the exact set of currently registered\n * slugs in the desired order. The registry rejects any drift\n * (`REORDER_MISMATCH` → 400). Empty `[]` against an empty registered\n * set is a no-op by registry contract; the zod schema permits it.\n \n Thin wrapper around `handleBylineFieldReorder`.\n \n Phase 4 of Discussion #1174.\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineFieldReorder } from \"#api/handlers/byline-fields.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineFieldReorderBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"schema:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineFieldReorderBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineFieldReorder(emdash.db, body.slugs);\n\treturn unwrapResult(result);\n};\n"],"mappings":";;;;;;;;;;;;;AAuBA,MAAa,YAAY;AAEzB,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,gBAAgB;AACjD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,uBAAuB;AAC7D,KAAI,aAAa,KAAK,CAAE,QAAO;AAG/B,QAAO,aADQ,MAAM,yBAAyB,OAAO,IAAI,KAAK,MAAM,CACzC"}

package/dist/astro/routes/api/admin/bylines/_id_/index.mjs CHANGED Viewed

@@ -1,19 +1,21 @@
 import "../../../../../../dialect-helpers-DRI5pyY3.mjs";
 import "../../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../../types-BXSUSAjt.mjs";
-import "../../../../../../request-cache-D32LpnmI.mjs";
-import "../../../../../../byline-registry-CWP7I71B.mjs";
-import { t as BylineRepository } from "../../../../../../byline-DUx48sJp.mjs";
-import "../../../../../../loader-CpZKpFz0.mjs";
-import "../../../../../../resolve-BqYMVG0D.mjs";
-import { a as unwrapResult, i as requireDb, n as apiSuccess, r as handleError, t as apiError } from "../../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../../parse-CrGndy1A.mjs";
-import { wn as bylineUpdateBody } from "../../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../../init-lock-DlBHjf9-.mjs";
+import "../../../../../../request-cache-UwmBAiUK.mjs";
+import "../../../../../../byline-registry-DedidtqC.mjs";
+import { t as BylineRepository } from "../../../../../../byline-V_Qp1Ziw.mjs";
+import "../../../../../../loader-BqWjcH3h.mjs";
+import "../../../../../../resolve-B3NUUtVY.mjs";
+import { a as unwrapResult, i as requireDb, n as apiSuccess, r as handleError, t as apiError } from "../../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../../parse-DzSrk1t8.mjs";
+import { wn as bylineUpdateBody } from "../../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../../status-2gZklYuj.mjs";
 import "../../../../../../api/schemas/index.mjs";
-import { a as invalidateBylineCache } from "../../../../../../bylines-wurS258E.mjs";
-import { n as requirePerm } from "../../../../../../authorize-C_8t2KGa.mjs";
-import { r as handleBylineUpdate } from "../../../../../../bylines-Cx5n-WqP.mjs";
+import { a as invalidateBylineCache } from "../../../../../../bylines-DfGDnred.mjs";
+import { n as requirePerm } from "../../../../../../authorize-D5gfBVU5.mjs";
+import { r as handleBylineUpdate } from "../../../../../../bylines-B2NWnIwS.mjs";
 //#region src/astro/routes/api/admin/bylines/[id]/index.ts
 const prerender = false;

package/dist/astro/routes/api/admin/bylines/_id_/index.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/bylines/[id]/index.ts"],"sourcesContent":["import type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineUpdate } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineUpdateBody } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst byline = await repo.findById(params.id!);\n\t\tif (!byline) return apiError(\"NOT_FOUND\", \"Byline not found\", 404);\n\t\treturn apiSuccess(byline);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to get byline\", \"BYLINE_GET_ERROR\");\n\t}\n};\n\nexport const PUT: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineUpdateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineUpdate(emdash.db, params.id!, {\n\t\tslug: body.slug,\n\t\tdisplayName: body.displayName,\n\t\tbio: body.bio ?? null,\n\t\tavatarMediaId: body.avatarMediaId ?? null,\n\t\twebsiteUrl: body.websiteUrl ?? null,\n\t\tuserId: body.userId ?? null,\n\t\tisGuest: body.isGuest,\n\t\t// Forward `customFields` only when present so the repo treats an\n\t\t// omitted key as \"leave existing values untouched\". An empty\n\t\t// object also no-ops by repo convention — see\n\t\t// `BylineRepository.update`. Validation (unknown slug, type\n\t\t// mismatch, select-choice) happens inside the repo and surfaces\n\t\t// as `EmDashValidationError`, which the handler maps to a 400\n\t\t// `VALIDATION_ERROR` for `unwrapResult` / `mapErrorStatus`.\n\t\tcustomFields: body.customFields,\n\t});\n\n\tif (result.success) invalidateBylineCache();\n\treturn unwrapResult(result);\n};\n\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst deleted = await repo.delete(params.id!);\n\t\tif (!deleted) return apiError(\"NOT_FOUND\", \"Byline not found\", 404);\n\t\tinvalidateBylineCache();\n\t\treturn apiSuccess({ deleted: true });\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to delete byline\", \"BYLINE_DELETE_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;;;;;;;;~~AAUA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;AAGpE,KAAI;EAEH,MAAM,SAAS,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS,OAAO,GAAI;AAC9C,MAAI,CAAC,OAAQ,QAAO,SAAS,aAAa,oBAAoB,IAAI;AAClE,SAAO,WAAW,OAAO;UACjB,OAAO;AACf,SAAO,YAAY,OAAO,wBAAwB,mBAAmB;;;AAIvE,MAAa,MAAgB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACnE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,iBAAiB;AACvD,KAAI,aAAa,KAAK,CAAE,QAAO;CAE/B,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI,OAAO,IAAK;EAC9D,MAAM,KAAK;EACX,aAAa,KAAK;EAClB,KAAK,KAAK,OAAO;EACjB,eAAe,KAAK,iBAAiB;EACrC,YAAY,KAAK,cAAc;EAC/B,QAAQ,KAAK,UAAU;EACvB,SAAS,KAAK;EAQd,cAAc,KAAK;EACnB,CAAC;AAEF,KAAI,OAAO,QAAS,wCAAuB;AAC3C,QAAO,aAAa,OAAO;;AAG5B,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;AAGpE,KAAI;AAGH,MAAI,CADY,MADH,IAAI,iBAAiB,OAAO,GAAG,CACjB,OAAO,OAAO,GAAI,CAC/B,QAAO,SAAS,aAAa,oBAAoB,IAAI;AACnE,yCAAuB;AACvB,SAAO,WAAW,EAAE,SAAS,MAAM,CAAC;UAC5B,OAAO;AACf,SAAO,YAAY,OAAO,2BAA2B,sBAAsB"}
1	+ {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/bylines/[id]/index.ts"],"sourcesContent":["import type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineUpdate } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineUpdateBody } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst byline = await repo.findById(params.id!);\n\t\tif (!byline) return apiError(\"NOT_FOUND\", \"Byline not found\", 404);\n\t\treturn apiSuccess(byline);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to get byline\", \"BYLINE_GET_ERROR\");\n\t}\n};\n\nexport const PUT: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst body = await parseBody(request, bylineUpdateBody);\n\tif (isParseError(body)) return body;\n\n\tconst result = await handleBylineUpdate(emdash.db, params.id!, {\n\t\tslug: body.slug,\n\t\tdisplayName: body.displayName,\n\t\tbio: body.bio ?? null,\n\t\tavatarMediaId: body.avatarMediaId ?? null,\n\t\twebsiteUrl: body.websiteUrl ?? null,\n\t\tuserId: body.userId ?? null,\n\t\tisGuest: body.isGuest,\n\t\t// Forward `customFields` only when present so the repo treats an\n\t\t// omitted key as \"leave existing values untouched\". An empty\n\t\t// object also no-ops by repo convention — see\n\t\t// `BylineRepository.update`. Validation (unknown slug, type\n\t\t// mismatch, select-choice) happens inside the repo and surfaces\n\t\t// as `EmDashValidationError`, which the handler maps to a 400\n\t\t// `VALIDATION_ERROR` for `unwrapResult` / `mapErrorStatus`.\n\t\tcustomFields: body.customFields,\n\t});\n\n\tif (result.success) invalidateBylineCache();\n\treturn unwrapResult(result);\n};\n\nexport const DELETE: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst deleted = await repo.delete(params.id!);\n\t\tif (!deleted) return apiError(\"NOT_FOUND\", \"Byline not found\", 404);\n\t\tinvalidateBylineCache();\n\t\treturn apiSuccess({ deleted: true });\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to delete byline\", \"BYLINE_DELETE_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAUA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;AAGpE,KAAI;EAEH,MAAM,SAAS,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS,OAAO,GAAI;AAC9C,MAAI,CAAC,OAAQ,QAAO,SAAS,aAAa,oBAAoB,IAAI;AAClE,SAAO,WAAW,OAAO;UACjB,OAAO;AACf,SAAO,YAAY,OAAO,wBAAwB,mBAAmB;;;AAIvE,MAAa,MAAgB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACnE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,OAAO,MAAM,UAAU,SAAS,iBAAiB;AACvD,KAAI,aAAa,KAAK,CAAE,QAAO;CAE/B,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI,OAAO,IAAK;EAC9D,MAAM,KAAK;EACX,aAAa,KAAK;EAClB,KAAK,KAAK,OAAO;EACjB,eAAe,KAAK,iBAAiB;EACrC,YAAY,KAAK,cAAc;EAC/B,QAAQ,KAAK,UAAU;EACvB,SAAS,KAAK;EAQd,cAAc,KAAK;EACnB,CAAC;AAEF,KAAI,OAAO,QAAS,wCAAuB;AAC3C,QAAO,aAAa,OAAO;;AAG5B,MAAa,SAAmB,OAAO,EAAE,QAAQ,aAAa;CAC7D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;AAEnB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;AAGpE,KAAI;AAGH,MAAI,CADY,MADH,IAAI,iBAAiB,OAAO,GAAG,CACjB,OAAO,OAAO,GAAI,CAC/B,QAAO,SAAS,aAAa,oBAAoB,IAAI;AACnE,yCAAuB;AACvB,SAAO,WAAW,EAAE,SAAS,MAAM,CAAC;UAC5B,OAAO;AACf,SAAO,YAAY,OAAO,2BAA2B,sBAAsB"}

package/dist/astro/routes/api/admin/bylines/_id_/translations.mjs CHANGED Viewed

@@ -1,19 +1,21 @@
 import "../../../../../../dialect-helpers-DRI5pyY3.mjs";
 import "../../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../../types-BXSUSAjt.mjs";
-import "../../../../../../request-cache-D32LpnmI.mjs";
-import "../../../../../../byline-registry-CWP7I71B.mjs";
-import { t as BylineRepository } from "../../../../../../byline-DUx48sJp.mjs";
-import "../../../../../../loader-CpZKpFz0.mjs";
-import "../../../../../../resolve-BqYMVG0D.mjs";
-import { a as unwrapResult, i as requireDb, r as handleError } from "../../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../../parse-CrGndy1A.mjs";
-import { Sn as bylineTranslationCreateBody } from "../../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../../init-lock-DlBHjf9-.mjs";
+import "../../../../../../request-cache-UwmBAiUK.mjs";
+import "../../../../../../byline-registry-DedidtqC.mjs";
+import { t as BylineRepository } from "../../../../../../byline-V_Qp1Ziw.mjs";
+import "../../../../../../loader-BqWjcH3h.mjs";
+import "../../../../../../resolve-B3NUUtVY.mjs";
+import { a as unwrapResult, i as requireDb, r as handleError } from "../../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../../parse-DzSrk1t8.mjs";
+import { Sn as bylineTranslationCreateBody } from "../../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../../status-2gZklYuj.mjs";
 import "../../../../../../api/schemas/index.mjs";
-import { a as invalidateBylineCache } from "../../../../../../bylines-wurS258E.mjs";
-import { n as requirePerm } from "../../../../../../authorize-C_8t2KGa.mjs";
-import { n as handleBylineTranslations, t as handleBylineCreate } from "../../../../../../bylines-Cx5n-WqP.mjs";
+import { a as invalidateBylineCache } from "../../../../../../bylines-DfGDnred.mjs";
+import { n as requirePerm } from "../../../../../../authorize-D5gfBVU5.mjs";
+import { n as handleBylineTranslations, t as handleBylineCreate } from "../../../../../../bylines-B2NWnIwS.mjs";
 //#region src/astro/routes/api/admin/bylines/[id]/translations.ts
 const prerender = false;

package/dist/astro/routes/api/admin/bylines/_id_/translations.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"translations.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/bylines/[id]/translations.ts"],"sourcesContent":["/*\n Byline translation endpoints\n \n GET /_emdash/api/admin/bylines/:id/translations — list every translation\n * of a byline (siblings\n * in the same\n * translation_group)\n * POST /_emdash/api/admin/bylines/:id/translations — create a new locale\n * variant joining the\n * source's\n * translation_group\n * (body: { locale, ... })\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineCreate, handleBylineTranslations } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineTranslationCreateBody } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst id = params.id!;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst result = await handleBylineTranslations(emdash.db, id);\n\t\treturn unwrapResult(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to fetch byline translations\", \"BYLINE_TRANSLATIONS_ERROR\");\n\t}\n};\n\nexport const POST: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst id = params.id!;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst body = await parseBody(request, bylineTranslationCreateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Look up the source byline so we can:\n\t\t// (a) emit a clean 404 when it doesn't exist (route layer);\n\t\t// (b) fall back to its slug + display_name + avatar/website when\n\t\t// the body omits them. Editors creating a translation often\n\t\t// want to keep the slug stable and only enter the localized\n\t\t// bio/displayName — defaulting saves clicks.\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst source = await repo.findById(id);\n\t\tif (!source) {\n\t\t\treturn new Response(\n\t\t\t\tJSON.stringify({ error: { code: \"NOT_FOUND\", message: \"Byline not found\" } }),\n\t\t\t\t{ status: 404, headers: { \"Content-Type\": \"application/json\" } },\n\t\t\t);\n\t\t}\n\n\t\tconst result = await handleBylineCreate(emdash.db, {\n\t\t\tslug: body.slug ?? source.slug,\n\t\t\tdisplayName: body.displayName ?? source.displayName,\n\t\t\tbio: body.bio ?? null,\n\t\t\tavatarMediaId: body.avatarMediaId ?? source.avatarMediaId,\n\t\t\twebsiteUrl: body.websiteUrl ?? source.websiteUrl,\n\t\t\t// Translations don't inherit the source's user_id or guest flag —\n\t\t\t// the partial unique on (user_id, locale) means a single user can\n\t\t\t// own one byline per locale, but the editor must opt into linking\n\t\t\t// the new row by editing it after creation.\n\t\t\tuserId: null,\n\t\t\tisGuest: source.isGuest,\n\t\t\tlocale: body.locale,\n\t\t\ttranslationOf: id,\n\t\t});\n\n\t\tif (result.success) invalidateBylineCache();\n\t\treturn unwrapResult(result, 201);\n\t} catch (error) {\n\t\treturn handleError(\n\t\t\terror,\n\t\t\t\"Failed to create byline translation\",\n\t\t\t\"BYLINE_TRANSLATION_CREATE_ERROR\",\n\t\t);\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;;;;;;;;~~AAwBA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,KAAK,OAAO;CAElB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;AAEnB,KAAI;AAEH,SAAO,aADQ,MAAM,yBAAyB,OAAO,IAAI,GAAG,CACjC;UACnB,OAAO;AACf,SAAO,YAAY,OAAO,uCAAuC,4BAA4B;;;AAI/F,MAAa,OAAiB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACpE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,KAAK,OAAO;CAElB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;AAEnB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,4BAA4B;AAClE,MAAI,aAAa,KAAK,CAAE,QAAO;EAS/B,MAAM,SAAS,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS,GAAG;AACtC,MAAI,CAAC,OACJ,QAAO,IAAI,SACV,KAAK,UAAU,EAAE,OAAO;GAAE,MAAM;GAAa,SAAS;GAAoB,EAAE,CAAC,EAC7E;GAAE,QAAQ;GAAK,SAAS,EAAE,gBAAgB,oBAAoB;GAAE,CAChE;EAGF,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI;GAClD,MAAM,KAAK,QAAQ,OAAO;GAC1B,aAAa,KAAK,eAAe,OAAO;GACxC,KAAK,KAAK,OAAO;GACjB,eAAe,KAAK,iBAAiB,OAAO;GAC5C,YAAY,KAAK,cAAc,OAAO;GAKtC,QAAQ;GACR,SAAS,OAAO;GAChB,QAAQ,KAAK;GACb,eAAe;GACf,CAAC;AAEF,MAAI,OAAO,QAAS,wCAAuB;AAC3C,SAAO,aAAa,QAAQ,IAAI;UACxB,OAAO;AACf,SAAO,YACN,OACA,uCACA,kCACA"}
1	+ {"version":3,"file":"translations.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/bylines/[id]/translations.ts"],"sourcesContent":["/*\n Byline translation endpoints\n \n GET /_emdash/api/admin/bylines/:id/translations — list every translation\n * of a byline (siblings\n * in the same\n * translation_group)\n * POST /_emdash/api/admin/bylines/:id/translations — create a new locale\n * variant joining the\n * source's\n * translation_group\n * (body: { locale, ... })\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleBylineCreate, handleBylineTranslations } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { bylineTranslationCreateBody } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ params, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst id = params.id!;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst result = await handleBylineTranslations(emdash.db, id);\n\t\treturn unwrapResult(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to fetch byline translations\", \"BYLINE_TRANSLATIONS_ERROR\");\n\t}\n};\n\nexport const POST: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst id = params.id!;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst body = await parseBody(request, bylineTranslationCreateBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Look up the source byline so we can:\n\t\t// (a) emit a clean 404 when it doesn't exist (route layer);\n\t\t// (b) fall back to its slug + display_name + avatar/website when\n\t\t// the body omits them. Editors creating a translation often\n\t\t// want to keep the slug stable and only enter the localized\n\t\t// bio/displayName — defaulting saves clicks.\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst source = await repo.findById(id);\n\t\tif (!source) {\n\t\t\treturn new Response(\n\t\t\t\tJSON.stringify({ error: { code: \"NOT_FOUND\", message: \"Byline not found\" } }),\n\t\t\t\t{ status: 404, headers: { \"Content-Type\": \"application/json\" } },\n\t\t\t);\n\t\t}\n\n\t\tconst result = await handleBylineCreate(emdash.db, {\n\t\t\tslug: body.slug ?? source.slug,\n\t\t\tdisplayName: body.displayName ?? source.displayName,\n\t\t\tbio: body.bio ?? null,\n\t\t\tavatarMediaId: body.avatarMediaId ?? source.avatarMediaId,\n\t\t\twebsiteUrl: body.websiteUrl ?? source.websiteUrl,\n\t\t\t// Translations don't inherit the source's user_id or guest flag —\n\t\t\t// the partial unique on (user_id, locale) means a single user can\n\t\t\t// own one byline per locale, but the editor must opt into linking\n\t\t\t// the new row by editing it after creation.\n\t\t\tuserId: null,\n\t\t\tisGuest: source.isGuest,\n\t\t\tlocale: body.locale,\n\t\t\ttranslationOf: id,\n\t\t});\n\n\t\tif (result.success) invalidateBylineCache();\n\t\treturn unwrapResult(result, 201);\n\t} catch (error) {\n\t\treturn handleError(\n\t\t\terror,\n\t\t\t\"Failed to create byline translation\",\n\t\t\t\"BYLINE_TRANSLATION_CREATE_ERROR\",\n\t\t);\n\t}\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAwBA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,aAAa;CAC1D,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,KAAK,OAAO;CAElB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;AAEnB,KAAI;AAEH,SAAO,aADQ,MAAM,yBAAyB,OAAO,IAAI,GAAG,CACjC;UACnB,OAAO;AACf,SAAO,YAAY,OAAO,uCAAuC,4BAA4B;;;AAI/F,MAAa,OAAiB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACpE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,KAAK,OAAO;CAElB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;AAEnB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,4BAA4B;AAClE,MAAI,aAAa,KAAK,CAAE,QAAO;EAS/B,MAAM,SAAS,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS,GAAG;AACtC,MAAI,CAAC,OACJ,QAAO,IAAI,SACV,KAAK,UAAU,EAAE,OAAO;GAAE,MAAM;GAAa,SAAS;GAAoB,EAAE,CAAC,EAC7E;GAAE,QAAQ;GAAK,SAAS,EAAE,gBAAgB,oBAAoB;GAAE,CAChE;EAGF,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI;GAClD,MAAM,KAAK,QAAQ,OAAO;GAC1B,aAAa,KAAK,eAAe,OAAO;GACxC,KAAK,KAAK,OAAO;GACjB,eAAe,KAAK,iBAAiB,OAAO;GAC5C,YAAY,KAAK,cAAc,OAAO;GAKtC,QAAQ;GACR,SAAS,OAAO;GAChB,QAAQ,KAAK;GACb,eAAe;GACf,CAAC;AAEF,MAAI,OAAO,QAAS,wCAAuB;AAC3C,SAAO,aAAa,QAAQ,IAAI;UACxB,OAAO;AACf,SAAO,YACN,OACA,uCACA,kCACA"}

package/dist/astro/routes/api/admin/bylines/index.mjs CHANGED Viewed

@@ -2,19 +2,21 @@ import "../../../../../dialect-helpers-DRI5pyY3.mjs";
 import { n as getI18nConfig } from "../../../../../config-CVssduLe.mjs";
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
-import "../../../../../request-cache-D32LpnmI.mjs";
-import "../../../../../byline-registry-CWP7I71B.mjs";
-import { t as BylineRepository } from "../../../../../byline-DUx48sJp.mjs";
-import "../../../../../loader-CpZKpFz0.mjs";
-import "../../../../../resolve-BqYMVG0D.mjs";
-import { a as unwrapResult, n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { i as parseQuery, n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import { Tn as bylinesListQuery, vn as bylineCreateBody } from "../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../byline-fields-51kg6Vuv.mjs";
+import "../../../../../init-lock-DlBHjf9-.mjs";
+import "../../../../../request-cache-UwmBAiUK.mjs";
+import "../../../../../byline-registry-DedidtqC.mjs";
+import { t as BylineRepository } from "../../../../../byline-V_Qp1Ziw.mjs";
+import "../../../../../loader-BqWjcH3h.mjs";
+import "../../../../../resolve-B3NUUtVY.mjs";
+import { a as unwrapResult, n as apiSuccess, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { i as parseQuery, n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import { Tn as bylinesListQuery, vn as bylineCreateBody } from "../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
-import { a as invalidateBylineCache } from "../../../../../bylines-wurS258E.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { t as handleBylineCreate } from "../../../../../bylines-Cx5n-WqP.mjs";
+import { a as invalidateBylineCache } from "../../../../../bylines-DfGDnred.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { t as handleBylineCreate } from "../../../../../bylines-B2NWnIwS.mjs";
 //#region src/astro/routes/api/admin/bylines/index.ts
 const prerender = false;

package/dist/astro/routes/api/admin/bylines/index.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/bylines/index.ts"],"sourcesContent":["import type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, unwrapResult } from \"#api/error.js\";\nimport { handleBylineCreate } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody, parseQuery } from \"#api/parse.js\";\nimport { bylineCreateBody, bylinesListQuery } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nimport { getI18nConfig } from \"../../../../../i18n/config.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ url, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\tconst query = parseQuery(url, bylinesListQuery);\n\tif (isParseError(query)) return query;\n\n\tconst i18n = getI18nConfig();\n\tif (query.locale && i18n && !i18n.locales.includes(query.locale)) {\n\t\treturn apiError(\n\t\t\t\"VALIDATION_ERROR\",\n\t\t\t`Locale \"${query.locale}\" is not configured for this site`,\n\t\t\t400,\n\t\t);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst result = await repo.findMany({\n\t\t\tsearch: query.search,\n\t\t\tisGuest: query.isGuest,\n\t\t\tuserId: query.userId,\n\t\t\tlocale: query.locale,\n\t\t\tcursor: query.cursor,\n\t\t\tlimit: query.limit,\n\t\t});\n\n\t\treturn apiSuccess(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to list bylines\", \"BYLINE_LIST_ERROR\");\n\t}\n};\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tconst body = await parseBody(request, bylineCreateBody);\n\tif (isParseError(body)) return body;\n\n\ttry {\n\t\tconst result = await handleBylineCreate(emdash.db, {\n\t\t\tslug: body.slug,\n\t\t\tdisplayName: body.displayName,\n\t\t\tbio: body.bio ?? null,\n\t\t\tavatarMediaId: body.avatarMediaId ?? null,\n\t\t\twebsiteUrl: body.websiteUrl ?? null,\n\t\t\tuserId: body.userId ?? null,\n\t\t\tisGuest: body.isGuest,\n\t\t\tlocale: body.locale,\n\t\t\ttranslationOf: body.translationOf,\n\t\t\tcustomFields: body.customFields,\n\t\t});\n\n\t\tif (result.success) invalidateBylineCache();\n\t\treturn unwrapResult(result, 201);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to create byline\", \"BYLINE_CREATE_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;;;;;;;;;~~AAYA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,KAAK,aAAa;CACvD,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;CAGpE,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,WAAW,KAAK,iBAAiB;AAC/C,KAAI,aAAa,MAAM,CAAE,QAAO;CAEhC,MAAM,OAAO,eAAe;AAC5B,KAAI,MAAM,UAAU,QAAQ,CAAC,KAAK,QAAQ,SAAS,MAAM,OAAO,CAC/D,QAAO,SACN,oBACA,WAAW,MAAM,OAAO,oCACxB,IACA;AAGF,KAAI;AAWH,SAAO,WATQ,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS;GAClC,QAAQ,MAAM;GACd,SAAS,MAAM;GACf,QAAQ,MAAM;GACd,QAAQ,MAAM;GACd,QAAQ,MAAM;GACd,OAAO,MAAM;GACb,CAAC,CAEuB;UACjB,OAAO;AACf,SAAO,YAAY,OAAO,0BAA0B,oBAAoB;;;AAI1E,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;CAGpE,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;CAEnB,MAAM,OAAO,MAAM,UAAU,SAAS,iBAAiB;AACvD,KAAI,aAAa,KAAK,CAAE,QAAO;AAE/B,KAAI;EACH,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI;GAClD,MAAM,KAAK;GACX,aAAa,KAAK;GAClB,KAAK,KAAK,OAAO;GACjB,eAAe,KAAK,iBAAiB;GACrC,YAAY,KAAK,cAAc;GAC/B,QAAQ,KAAK,UAAU;GACvB,SAAS,KAAK;GACd,QAAQ,KAAK;GACb,eAAe,KAAK;GACpB,cAAc,KAAK;GACnB,CAAC;AAEF,MAAI,OAAO,QAAS,wCAAuB;AAC3C,SAAO,aAAa,QAAQ,IAAI;UACxB,OAAO;AACf,SAAO,YAAY,OAAO,2BAA2B,sBAAsB"}
1	+ {"version":3,"file":"index.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/bylines/index.ts"],"sourcesContent":["import type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, unwrapResult } from \"#api/error.js\";\nimport { handleBylineCreate } from \"#api/handlers/bylines.js\";\nimport { isParseError, parseBody, parseQuery } from \"#api/parse.js\";\nimport { bylineCreateBody, bylinesListQuery } from \"#api/schemas.js\";\nimport { invalidateBylineCache } from \"#bylines/index.js\";\nimport { BylineRepository } from \"#db/repositories/byline.js\";\n\nimport { getI18nConfig } from \"../../../../../i18n/config.js\";\n\nexport const prerender = false;\n\nexport const GET: APIRoute = async ({ url, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\tconst denied = requirePerm(user, \"bylines:read\");\n\tif (denied) return denied;\n\n\tconst query = parseQuery(url, bylinesListQuery);\n\tif (isParseError(query)) return query;\n\n\tconst i18n = getI18nConfig();\n\tif (query.locale && i18n && !i18n.locales.includes(query.locale)) {\n\t\treturn apiError(\n\t\t\t\"VALIDATION_ERROR\",\n\t\t\t`Locale \"${query.locale}\" is not configured for this site`,\n\t\t\t400,\n\t\t);\n\t}\n\n\ttry {\n\t\tconst repo = new BylineRepository(emdash.db);\n\t\tconst result = await repo.findMany({\n\t\t\tsearch: query.search,\n\t\t\tisGuest: query.isGuest,\n\t\t\tuserId: query.userId,\n\t\t\tlocale: query.locale,\n\t\t\tcursor: query.cursor,\n\t\t\tlimit: query.limit,\n\t\t});\n\n\t\treturn apiSuccess(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to list bylines\", \"BYLINE_LIST_ERROR\");\n\t}\n};\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tif (!emdash?.db) {\n\t\treturn apiError(\"NOT_CONFIGURED\", \"EmDash is not initialized\", 500);\n\t}\n\n\tconst denied = requirePerm(user, \"bylines:manage\");\n\tif (denied) return denied;\n\n\tconst body = await parseBody(request, bylineCreateBody);\n\tif (isParseError(body)) return body;\n\n\ttry {\n\t\tconst result = await handleBylineCreate(emdash.db, {\n\t\t\tslug: body.slug,\n\t\t\tdisplayName: body.displayName,\n\t\t\tbio: body.bio ?? null,\n\t\t\tavatarMediaId: body.avatarMediaId ?? null,\n\t\t\twebsiteUrl: body.websiteUrl ?? null,\n\t\t\tuserId: body.userId ?? null,\n\t\t\tisGuest: body.isGuest,\n\t\t\tlocale: body.locale,\n\t\t\ttranslationOf: body.translationOf,\n\t\t\tcustomFields: body.customFields,\n\t\t});\n\n\t\tif (result.success) invalidateBylineCache();\n\t\treturn unwrapResult(result, 201);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to create byline\", \"BYLINE_CREATE_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;AAYA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,KAAK,aAAa;CACvD,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;CAGpE,MAAM,SAAS,YAAY,MAAM,eAAe;AAChD,KAAI,OAAQ,QAAO;CAEnB,MAAM,QAAQ,WAAW,KAAK,iBAAiB;AAC/C,KAAI,aAAa,MAAM,CAAE,QAAO;CAEhC,MAAM,OAAO,eAAe;AAC5B,KAAI,MAAM,UAAU,QAAQ,CAAC,KAAK,QAAQ,SAAS,MAAM,OAAO,CAC/D,QAAO,SACN,oBACA,WAAW,MAAM,OAAO,oCACxB,IACA;AAGF,KAAI;AAWH,SAAO,WATQ,MADF,IAAI,iBAAiB,OAAO,GAAG,CAClB,SAAS;GAClC,QAAQ,MAAM;GACd,SAAS,MAAM;GACf,QAAQ,MAAM;GACd,QAAQ,MAAM;GACd,QAAQ,MAAM;GACd,OAAO,MAAM;GACb,CAAC,CAEuB;UACjB,OAAO;AACf,SAAO,YAAY,OAAO,0BAA0B,oBAAoB;;;AAI1E,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;AAEzB,KAAI,CAAC,QAAQ,GACZ,QAAO,SAAS,kBAAkB,6BAA6B,IAAI;CAGpE,MAAM,SAAS,YAAY,MAAM,iBAAiB;AAClD,KAAI,OAAQ,QAAO;CAEnB,MAAM,OAAO,MAAM,UAAU,SAAS,iBAAiB;AACvD,KAAI,aAAa,KAAK,CAAE,QAAO;AAE/B,KAAI;EACH,MAAM,SAAS,MAAM,mBAAmB,OAAO,IAAI;GAClD,MAAM,KAAK;GACX,aAAa,KAAK;GAClB,KAAK,KAAK,OAAO;GACjB,eAAe,KAAK,iBAAiB;GACrC,YAAY,KAAK,cAAc;GAC/B,QAAQ,KAAK,UAAU;GACvB,SAAS,KAAK;GACd,QAAQ,KAAK;GACb,eAAe,KAAK;GACpB,cAAc,KAAK;GACnB,CAAC;AAEF,MAAI,OAAO,QAAS,wCAAuB;AAC3C,SAAO,aAAa,QAAQ,IAAI;UACxB,OAAO;AACf,SAAO,YAAY,OAAO,2BAA2B,sBAAsB"}

package/dist/astro/routes/api/admin/comments/_id_/status.mjs CHANGED Viewed

@@ -2,15 +2,16 @@ import "../../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../../types-BXSUSAjt.mjs";
 import "../../../../../../comment-sqQxNpN3.mjs";
 import "../../../../../../options-BPCVnesz.mjs";
-import { a as unwrapResult, i as requireDb, n as apiSuccess, r as handleError, t as apiError } from "../../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../../parse-CrGndy1A.mjs";
-import { vt as commentStatusBody } from "../../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../../byline-fields-51kg6Vuv.mjs";
+import { a as unwrapResult, i as requireDb, n as apiSuccess, r as handleError, t as apiError } from "../../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../../parse-DzSrk1t8.mjs";
+import { vt as commentStatusBody } from "../../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../../status-2gZklYuj.mjs";
 import "../../../../../../api/schemas/index.mjs";
-import { n as requirePerm } from "../../../../../../authorize-C_8t2KGa.mjs";
-import { a as handleCommentGet } from "../../../../../../comments-CJ0RZsYR.mjs";
-import { t as getSiteBaseUrl } from "../../../../../../site-url-mEVmwIFi.mjs";
-import { i as sendCommentNotification, n as moderateComment, r as lookupContentAuthor } from "../../../../../../service-DAxg8RPR.mjs";
+import { n as requirePerm } from "../../../../../../authorize-D5gfBVU5.mjs";
+import { a as handleCommentGet } from "../../../../../../comments-D2hNuxNa.mjs";
+import { t as getSiteBaseUrl } from "../../../../../../site-url-vtsuOvSD.mjs";
+import { i as sendCommentNotification, n as moderateComment, r as lookupContentAuthor } from "../../../../../../service-CDQQnT8W.mjs";
 //#region src/astro/routes/api/admin/comments/[id]/status.ts
 const prerender = false;

package/dist/astro/routes/api/admin/comments/_id_/status.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"status.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/comments/[id]/status.ts"],"sourcesContent":["/*\n Comment status change\n \n PUT /_emdash/api/admin/comments/:id/status - Change comment status\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleCommentGet } from \"#api/handlers/comments.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { commentStatusBody } from \"#api/schemas.js\";\nimport { getSiteBaseUrl } from \"#api/site-url.js\";\nimport { lookupContentAuthor, sendCommentNotification } from \"#comments/notifications.js\";\nimport { moderateComment, type CommentHookRunner } from \"#comments/service.js\";\nimport type { CommentStatus } from \"#db/repositories/comment.js\";\nimport type { ModerationDecision } from \"#plugins/types.js\";\n\nexport const prerender = false;\n\nexport const PUT: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { id } = params;\n\n\tif (!id) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Comment ID required\", 400);\n\t}\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"comments:moderate\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst body = await parseBody(request, commentStatusBody);\n\t\tif (isParseError(body)) return body;\n\n\t\tconst newStatus = body.status as CommentStatus;\n\n\t\t// Build hook runner for the service\n\t\tconst hookRunner: CommentHookRunner = {\n\t\t\tasync runBeforeCreate(event) {\n\t\t\t\treturn emdash.hooks.runCommentBeforeCreate(event);\n\t\t\t},\n\t\t\tasync runModerate(event) {\n\t\t\t\tconst result = await emdash.hooks.invokeExclusiveHook(\"comment:moderate\", event);\n\t\t\t\tif (!result) return { status: \"pending\" as const, reason: \"No moderator configured\" };\n\t\t\t\tif (result.error) return { status: \"pending\" as const, reason: \"Moderation error\" };\n\t\t\t\treturn result.result as ModerationDecision;\n\t\t\t},\n\t\t\tfireAfterCreate(event) {\n\t\t\t\temdash.hooks\n\t\t\t\t\t.runCommentAfterCreate(event)\n\t\t\t\t\t.catch((err) =>\n\t\t\t\t\t\tconsole.error(\n\t\t\t\t\t\t\t\"[comments] afterCreate error:\",\n\t\t\t\t\t\t\terr instanceof Error ? err.message : err,\n\t\t\t\t\t\t),\n\t\t\t\t\t);\n\t\t\t},\n\t\t\tfireAfterModerate(event) {\n\t\t\t\temdash.hooks\n\t\t\t\t\t.runCommentAfterModerate(event)\n\t\t\t\t\t.catch((err) =>\n\t\t\t\t\t\tconsole.error(\n\t\t\t\t\t\t\t\"[comments] afterModerate error:\",\n\t\t\t\t\t\t\terr instanceof Error ? err.message : err,\n\t\t\t\t\t\t),\n\t\t\t\t\t);\n\t\t\t},\n\t\t};\n\n\t\t// Read the comment before updating so we know the previous status\n\t\tconst existing = await handleCommentGet(emdash.db, id);\n\t\tif (!existing.success) {\n\t\t\treturn unwrapResult(existing);\n\t\t}\n\t\tconst previousStatus = existing.data.status;\n\n\t\tconst updated = await moderateComment(\n\t\t\temdash.db,\n\t\t\tid,\n\t\t\tnewStatus,\n\t\t\t{ id: user!.id, name: user!.name ?? null },\n\t\t\thookRunner,\n\t\t);\n\n\t\tif (!updated) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Comment not found\", 404);\n\t\t}\n\n\t\t// Send notification when a comment is newly approved\n\t\tif (newStatus === \"approved\" && previousStatus !== \"approved\" && emdash.email) {\n\t\t\ttry {\n\t\t\t\tconst adminBaseUrl = await getSiteBaseUrl(emdash.db, request);\n\t\t\t\tconst content = await lookupContentAuthor(emdash.db, updated.collection, updated.contentId);\n\t\t\t\tif (content?.author) {\n\t\t\t\t\tawait sendCommentNotification({\n\t\t\t\t\t\temail: emdash.email,\n\t\t\t\t\t\tcomment: updated,\n\t\t\t\t\t\tcontentAuthor: content.author,\n\t\t\t\t\t\tadminBaseUrl,\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t} catch (err) {\n\t\t\t\tconsole.error(\"[comments] notification error:\", err instanceof Error ? err.message : err);\n\t\t\t}\n\t\t}\n\n\t\treturn apiSuccess(updated);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to update comment status\", \"COMMENT_STATUS_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;;;;;~~AAmBA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACnE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,OAAO;AAEf,KAAI,CAAC,GACJ,QAAO,SAAS,oBAAoB,uBAAuB,IAAI;CAGhE,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,oBAAoB;AACrD,KAAI,OAAQ,QAAO;AAEnB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,kBAAkB;AACxD,MAAI,aAAa,KAAK,CAAE,QAAO;EAE/B,MAAM,YAAY,KAAK;EAGvB,MAAM,aAAgC;GACrC,MAAM,gBAAgB,OAAO;AAC5B,WAAO,OAAO,MAAM,uBAAuB,MAAM;;GAElD,MAAM,YAAY,OAAO;IACxB,MAAM,SAAS,MAAM,OAAO,MAAM,oBAAoB,oBAAoB,MAAM;AAChF,QAAI,CAAC,OAAQ,QAAO;KAAE,QAAQ;KAAoB,QAAQ;KAA2B;AACrF,QAAI,OAAO,MAAO,QAAO;KAAE,QAAQ;KAAoB,QAAQ;KAAoB;AACnF,WAAO,OAAO;;GAEf,gBAAgB,OAAO;AACtB,WAAO,MACL,sBAAsB,MAAM,CAC5B,OAAO,QACP,QAAQ,MACP,iCACA,eAAe,QAAQ,IAAI,UAAU,IACrC,CACD;;GAEH,kBAAkB,OAAO;AACxB,WAAO,MACL,wBAAwB,MAAM,CAC9B,OAAO,QACP,QAAQ,MACP,mCACA,eAAe,QAAQ,IAAI,UAAU,IACrC,CACD;;GAEH;EAGD,MAAM,WAAW,MAAM,iBAAiB,OAAO,IAAI,GAAG;AACtD,MAAI,CAAC,SAAS,QACb,QAAO,aAAa,SAAS;EAE9B,MAAM,iBAAiB,SAAS,KAAK;EAErC,MAAM,UAAU,MAAM,gBACrB,OAAO,IACP,IACA,WACA;GAAE,IAAI,KAAM;GAAI,MAAM,KAAM,QAAQ;GAAM,EAC1C,WACA;AAED,MAAI,CAAC,QACJ,QAAO,SAAS,aAAa,qBAAqB,IAAI;AAIvD,MAAI,cAAc,cAAc,mBAAmB,cAAc,OAAO,MACvE,KAAI;GACH,MAAM,eAAe,MAAM,eAAe,OAAO,IAAI,QAAQ;GAC7D,MAAM,UAAU,MAAM,oBAAoB,OAAO,IAAI,QAAQ,YAAY,QAAQ,UAAU;AAC3F,OAAI,SAAS,OACZ,OAAM,wBAAwB;IAC7B,OAAO,OAAO;IACd,SAAS;IACT,eAAe,QAAQ;IACvB;IACA,CAAC;WAEK,KAAK;AACb,WAAQ,MAAM,kCAAkC,eAAe,QAAQ,IAAI,UAAU,IAAI;;AAI3F,SAAO,WAAW,QAAQ;UAClB,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,uBAAuB"}
1	+ {"version":3,"file":"status.mjs","names":[],"sources":["../../../../../../../src/astro/routes/api/admin/comments/[id]/status.ts"],"sourcesContent":["/*\n Comment status change\n \n PUT /_emdash/api/admin/comments/:id/status - Change comment status\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { apiError, apiSuccess, handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleCommentGet } from \"#api/handlers/comments.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { commentStatusBody } from \"#api/schemas.js\";\nimport { getSiteBaseUrl } from \"#api/site-url.js\";\nimport { lookupContentAuthor, sendCommentNotification } from \"#comments/notifications.js\";\nimport { moderateComment, type CommentHookRunner } from \"#comments/service.js\";\nimport type { CommentStatus } from \"#db/repositories/comment.js\";\nimport type { ModerationDecision } from \"#plugins/types.js\";\n\nexport const prerender = false;\n\nexport const PUT: APIRoute = async ({ params, request, locals }) => {\n\tconst { emdash, user } = locals;\n\tconst { id } = params;\n\n\tif (!id) {\n\t\treturn apiError(\"VALIDATION_ERROR\", \"Comment ID required\", 400);\n\t}\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\tconst denied = requirePerm(user, \"comments:moderate\");\n\tif (denied) return denied;\n\n\ttry {\n\t\tconst body = await parseBody(request, commentStatusBody);\n\t\tif (isParseError(body)) return body;\n\n\t\tconst newStatus = body.status as CommentStatus;\n\n\t\t// Build hook runner for the service\n\t\tconst hookRunner: CommentHookRunner = {\n\t\t\tasync runBeforeCreate(event) {\n\t\t\t\treturn emdash.hooks.runCommentBeforeCreate(event);\n\t\t\t},\n\t\t\tasync runModerate(event) {\n\t\t\t\tconst result = await emdash.hooks.invokeExclusiveHook(\"comment:moderate\", event);\n\t\t\t\tif (!result) return { status: \"pending\" as const, reason: \"No moderator configured\" };\n\t\t\t\tif (result.error) return { status: \"pending\" as const, reason: \"Moderation error\" };\n\t\t\t\treturn result.result as ModerationDecision;\n\t\t\t},\n\t\t\tfireAfterCreate(event) {\n\t\t\t\temdash.hooks\n\t\t\t\t\t.runCommentAfterCreate(event)\n\t\t\t\t\t.catch((err) =>\n\t\t\t\t\t\tconsole.error(\n\t\t\t\t\t\t\t\"[comments] afterCreate error:\",\n\t\t\t\t\t\t\terr instanceof Error ? err.message : err,\n\t\t\t\t\t\t),\n\t\t\t\t\t);\n\t\t\t},\n\t\t\tfireAfterModerate(event) {\n\t\t\t\temdash.hooks\n\t\t\t\t\t.runCommentAfterModerate(event)\n\t\t\t\t\t.catch((err) =>\n\t\t\t\t\t\tconsole.error(\n\t\t\t\t\t\t\t\"[comments] afterModerate error:\",\n\t\t\t\t\t\t\terr instanceof Error ? err.message : err,\n\t\t\t\t\t\t),\n\t\t\t\t\t);\n\t\t\t},\n\t\t};\n\n\t\t// Read the comment before updating so we know the previous status\n\t\tconst existing = await handleCommentGet(emdash.db, id);\n\t\tif (!existing.success) {\n\t\t\treturn unwrapResult(existing);\n\t\t}\n\t\tconst previousStatus = existing.data.status;\n\n\t\tconst updated = await moderateComment(\n\t\t\temdash.db,\n\t\t\tid,\n\t\t\tnewStatus,\n\t\t\t{ id: user!.id, name: user!.name ?? null },\n\t\t\thookRunner,\n\t\t);\n\n\t\tif (!updated) {\n\t\t\treturn apiError(\"NOT_FOUND\", \"Comment not found\", 404);\n\t\t}\n\n\t\t// Send notification when a comment is newly approved\n\t\tif (newStatus === \"approved\" && previousStatus !== \"approved\" && emdash.email) {\n\t\t\ttry {\n\t\t\t\tconst adminBaseUrl = await getSiteBaseUrl(emdash.db, request);\n\t\t\t\tconst content = await lookupContentAuthor(emdash.db, updated.collection, updated.contentId);\n\t\t\t\tif (content?.author) {\n\t\t\t\t\tawait sendCommentNotification({\n\t\t\t\t\t\temail: emdash.email,\n\t\t\t\t\t\tcomment: updated,\n\t\t\t\t\t\tcontentAuthor: content.author,\n\t\t\t\t\t\tadminBaseUrl,\n\t\t\t\t\t});\n\t\t\t\t}\n\t\t\t} catch (err) {\n\t\t\t\tconsole.error(\"[comments] notification error:\", err instanceof Error ? err.message : err);\n\t\t\t}\n\t\t}\n\n\t\treturn apiSuccess(updated);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to update comment status\", \"COMMENT_STATUS_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;;;;;AAmBA,MAAa,YAAY;AAEzB,MAAa,MAAgB,OAAO,EAAE,QAAQ,SAAS,aAAa;CACnE,MAAM,EAAE,QAAQ,SAAS;CACzB,MAAM,EAAE,OAAO;AAEf,KAAI,CAAC,GACJ,QAAO,SAAS,oBAAoB,uBAAuB,IAAI;CAGhE,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;CAElB,MAAM,SAAS,YAAY,MAAM,oBAAoB;AACrD,KAAI,OAAQ,QAAO;AAEnB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,kBAAkB;AACxD,MAAI,aAAa,KAAK,CAAE,QAAO;EAE/B,MAAM,YAAY,KAAK;EAGvB,MAAM,aAAgC;GACrC,MAAM,gBAAgB,OAAO;AAC5B,WAAO,OAAO,MAAM,uBAAuB,MAAM;;GAElD,MAAM,YAAY,OAAO;IACxB,MAAM,SAAS,MAAM,OAAO,MAAM,oBAAoB,oBAAoB,MAAM;AAChF,QAAI,CAAC,OAAQ,QAAO;KAAE,QAAQ;KAAoB,QAAQ;KAA2B;AACrF,QAAI,OAAO,MAAO,QAAO;KAAE,QAAQ;KAAoB,QAAQ;KAAoB;AACnF,WAAO,OAAO;;GAEf,gBAAgB,OAAO;AACtB,WAAO,MACL,sBAAsB,MAAM,CAC5B,OAAO,QACP,QAAQ,MACP,iCACA,eAAe,QAAQ,IAAI,UAAU,IACrC,CACD;;GAEH,kBAAkB,OAAO;AACxB,WAAO,MACL,wBAAwB,MAAM,CAC9B,OAAO,QACP,QAAQ,MACP,mCACA,eAAe,QAAQ,IAAI,UAAU,IACrC,CACD;;GAEH;EAGD,MAAM,WAAW,MAAM,iBAAiB,OAAO,IAAI,GAAG;AACtD,MAAI,CAAC,SAAS,QACb,QAAO,aAAa,SAAS;EAE9B,MAAM,iBAAiB,SAAS,KAAK;EAErC,MAAM,UAAU,MAAM,gBACrB,OAAO,IACP,IACA,WACA;GAAE,IAAI,KAAM;GAAI,MAAM,KAAM,QAAQ;GAAM,EAC1C,WACA;AAED,MAAI,CAAC,QACJ,QAAO,SAAS,aAAa,qBAAqB,IAAI;AAIvD,MAAI,cAAc,cAAc,mBAAmB,cAAc,OAAO,MACvE,KAAI;GACH,MAAM,eAAe,MAAM,eAAe,OAAO,IAAI,QAAQ;GAC7D,MAAM,UAAU,MAAM,oBAAoB,OAAO,IAAI,QAAQ,YAAY,QAAQ,UAAU;AAC3F,OAAI,SAAS,OACZ,OAAM,wBAAwB;IAC7B,OAAO,OAAO;IACd,SAAS;IACT,eAAe,QAAQ;IACvB;IACA,CAAC;WAEK,KAAK;AACb,WAAQ,MAAM,kCAAkC,eAAe,QAAQ,IAAI,UAAU,IAAI;;AAI3F,SAAO,WAAW,QAAQ;UAClB,OAAO;AACf,SAAO,YAAY,OAAO,mCAAmC,uBAAuB"}

package/dist/astro/routes/api/admin/comments/_id_.mjs CHANGED Viewed

@@ -1,9 +1,9 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
 import "../../../../../comment-sqQxNpN3.mjs";
-import { a as unwrapResult, i as requireDb, r as handleError, t as apiError } from "../../../../../error-RwM4dD35.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { a as handleCommentGet, i as handleCommentDelete } from "../../../../../comments-CJ0RZsYR.mjs";
+import { a as unwrapResult, i as requireDb, r as handleError, t as apiError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { a as handleCommentGet, i as handleCommentDelete } from "../../../../../comments-D2hNuxNa.mjs";
 //#region src/astro/routes/api/admin/comments/[id].ts
 const prerender = false;

package/dist/astro/routes/api/admin/comments/bulk.mjs CHANGED Viewed

@@ -1,13 +1,14 @@
 import "../../../../../base64-CqR-7kqF.mjs";
 import "../../../../../types-BXSUSAjt.mjs";
 import "../../../../../comment-sqQxNpN3.mjs";
-import { a as unwrapResult, i as requireDb, r as handleError } from "../../../../../error-RwM4dD35.mjs";
-import { n as parseBody, t as isParseError } from "../../../../../parse-CrGndy1A.mjs";
-import { pt as commentBulkBody } from "../../../../../redirects-DEygMrRO.mjs";
-import "../../../../../byline-fields-51kg6Vuv.mjs";
+import { a as unwrapResult, i as requireDb, r as handleError } from "../../../../../error-CNn_w7jf.mjs";
+import { n as parseBody, t as isParseError } from "../../../../../parse-DzSrk1t8.mjs";
+import { pt as commentBulkBody } from "../../../../../redirects-6Zg2SoYo.mjs";
+import "../../../../../byline-fields-B0NO1yUB.mjs";
+import "../../../../../status-2gZklYuj.mjs";
 import "../../../../../api/schemas/index.mjs";
-import { n as requirePerm } from "../../../../../authorize-C_8t2KGa.mjs";
-import { n as handleCommentBulk } from "../../../../../comments-CJ0RZsYR.mjs";
+import { n as requirePerm } from "../../../../../authorize-D5gfBVU5.mjs";
+import { n as handleCommentBulk } from "../../../../../comments-D2hNuxNa.mjs";
 //#region src/astro/routes/api/admin/comments/bulk.ts
 const prerender = false;

package/dist/astro/routes/api/admin/comments/bulk.mjs.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"bulk.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/comments/bulk.ts"],"sourcesContent":["/*\n Bulk comment operations\n \n POST /_emdash/api/admin/comments/bulk - Bulk status change or delete\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleCommentBulk } from \"#api/handlers/comments.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { commentBulkBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\ttry {\n\t\tconst body = await parseBody(request, commentBulkBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Bulk delete requires ADMIN, bulk status change requires EDITOR\n\t\tif (body.action === \"delete\") {\n\t\t\tconst denied = requirePerm(user, \"comments:delete\");\n\t\t\tif (denied) return denied;\n\t\t} else {\n\t\t\tconst denied = requirePerm(user, \"comments:moderate\");\n\t\t\tif (denied) return denied;\n\t\t}\n\n\t\tconst result = await handleCommentBulk(emdash.db, body.ids, body.action);\n\n\t\treturn unwrapResult(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to perform bulk operation\", \"COMMENT_BULK_ERROR\");\n\t}\n};\n"],"mappings":"~~;;;;;;;;;;;;~~AAcA,MAAa,YAAY;AAEzB,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CAEzB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;AAElB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,gBAAgB;AACtD,MAAI,aAAa,KAAK,CAAE,QAAO;AAG/B,MAAI,KAAK,WAAW,UAAU;GAC7B,MAAM,SAAS,YAAY,MAAM,kBAAkB;AACnD,OAAI,OAAQ,QAAO;SACb;GACN,MAAM,SAAS,YAAY,MAAM,oBAAoB;AACrD,OAAI,OAAQ,QAAO;;AAKpB,SAAO,aAFQ,MAAM,kBAAkB,OAAO,IAAI,KAAK,KAAK,KAAK,OAAO,CAE7C;UACnB,OAAO;AACf,SAAO,YAAY,OAAO,oCAAoC,qBAAqB"}
1	+ {"version":3,"file":"bulk.mjs","names":[],"sources":["../../../../../../src/astro/routes/api/admin/comments/bulk.ts"],"sourcesContent":["/*\n Bulk comment operations\n \n POST /_emdash/api/admin/comments/bulk - Bulk status change or delete\n */\n\nimport type { APIRoute } from \"astro\";\n\nimport { requirePerm } from \"#api/authorize.js\";\nimport { handleError, requireDb, unwrapResult } from \"#api/error.js\";\nimport { handleCommentBulk } from \"#api/handlers/comments.js\";\nimport { isParseError, parseBody } from \"#api/parse.js\";\nimport { commentBulkBody } from \"#api/schemas.js\";\n\nexport const prerender = false;\n\nexport const POST: APIRoute = async ({ request, locals }) => {\n\tconst { emdash, user } = locals;\n\n\tconst dbErr = requireDb(emdash?.db);\n\tif (dbErr) return dbErr;\n\n\ttry {\n\t\tconst body = await parseBody(request, commentBulkBody);\n\t\tif (isParseError(body)) return body;\n\n\t\t// Bulk delete requires ADMIN, bulk status change requires EDITOR\n\t\tif (body.action === \"delete\") {\n\t\t\tconst denied = requirePerm(user, \"comments:delete\");\n\t\t\tif (denied) return denied;\n\t\t} else {\n\t\t\tconst denied = requirePerm(user, \"comments:moderate\");\n\t\t\tif (denied) return denied;\n\t\t}\n\n\t\tconst result = await handleCommentBulk(emdash.db, body.ids, body.action);\n\n\t\treturn unwrapResult(result);\n\t} catch (error) {\n\t\treturn handleError(error, \"Failed to perform bulk operation\", \"COMMENT_BULK_ERROR\");\n\t}\n};\n"],"mappings":";;;;;;;;;;;;;AAcA,MAAa,YAAY;AAEzB,MAAa,OAAiB,OAAO,EAAE,SAAS,aAAa;CAC5D,MAAM,EAAE,QAAQ,SAAS;CAEzB,MAAM,QAAQ,UAAU,QAAQ,GAAG;AACnC,KAAI,MAAO,QAAO;AAElB,KAAI;EACH,MAAM,OAAO,MAAM,UAAU,SAAS,gBAAgB;AACtD,MAAI,aAAa,KAAK,CAAE,QAAO;AAG/B,MAAI,KAAK,WAAW,UAAU;GAC7B,MAAM,SAAS,YAAY,MAAM,kBAAkB;AACnD,OAAI,OAAQ,QAAO;SACb;GACN,MAAM,SAAS,YAAY,MAAM,oBAAoB;AACrD,OAAI,OAAQ,QAAO;;AAKpB,SAAO,aAFQ,MAAM,kBAAkB,OAAO,IAAI,KAAK,KAAK,KAAK,OAAO,CAE7C;UACnB,OAAO;AACf,SAAO,YAAY,OAAO,oCAAoC,qBAAqB"}