hazo_notify 1.0.0 → 1.0.1

package/src/app/api/hazo_notify/emailer/send/route.ts

@@ -1,537 +0,0 @@
-/**
- * API route for sending emails
- * Handles POST requests to send emails via the emailer service
- */
-
-import { NextRequest, NextResponse } from 'next/server';
-import { send_email, SendEmailOptions, load_emailer_config } from '@/lib/emailer';
-import { HazoConfig } from 'hazo_config';
-import { join } from 'path';
-import { log_error, log_info, create_log_entry } from '@/lib/emailer/utils/logger';
-import { validate_email_address, validate_subject_length, validate_body_length, validate_attachment_size } from '@/lib/emailer/utils/validation';
-import { DEFAULT_RATE_LIMIT_REQUESTS, DEFAULT_RATE_LIMIT_WINDOW, DEFAULT_MAX_ATTACHMENT_SIZE, DEFAULT_MAX_ATTACHMENTS } from '@/lib/emailer/utils/constants';
-
-// In-memory rate limiting store
-// In production, consider using Redis or a proper rate limiting service
-interface RateLimitEntry {
-  count: number;
-  reset_time: number;
-}
-
-const rate_limit_store = new Map<string, RateLimitEntry>();
-
-/**
- * Check rate limit for an IP address
- * @param ip - IP address to check
- * @param max_requests - Maximum requests allowed
- * @param window_seconds - Time window in seconds
- * @returns true if within limit, false if rate limited
- */
-function check_rate_limit(ip: string, max_requests: number, window_seconds: number): boolean {
-  const now = Date.now();
-  const entry = rate_limit_store.get(ip);
-  
-  if (!entry || now > entry.reset_time) {
-    // Create new entry or reset expired entry
-    rate_limit_store.set(ip, {
-      count: 1,
-      reset_time: now + (window_seconds * 1000),
-    });
-    return true;
-  }
-  
-  if (entry.count >= max_requests) {
-    return false;
-  }
-  
-  entry.count++;
-  return true;
-}
-
-/**
- * Get client IP address from request
- * @param request - Next.js request object
- * @returns IP address string
- */
-function get_client_ip(request: NextRequest): string {
-  // Try various headers for IP address
-  const forwarded = request.headers.get('x-forwarded-for');
-  if (forwarded) {
-    return forwarded.split(',')[0].trim();
-  }
-  
-  const real_ip = request.headers.get('x-real-ip');
-  if (real_ip) {
-    return real_ip;
-  }
-  
-  // Fallback to a default if IP cannot be determined
-  return 'unknown';
-}
-
-/**
- * Get CORS headers based on configuration
- * @param allowed_origins - Comma-separated list of allowed origins
- * @param request_origin - Origin from request header
- * @returns CORS headers object
- */
-function get_cors_headers(allowed_origins: string, request_origin: string | null): Record<string, string> {
-  const headers: Record<string, string> = {};
-  
-  if (!allowed_origins || allowed_origins.trim() === '') {
-    // Default: same-origin only (no CORS headers)
-    return headers;
-  }
-  
-  const origins = allowed_origins.split(',').map(o => o.trim());
-  
-  if (origins.includes('*')) {
-    // Allow all origins (not recommended for production)
-    headers['Access-Control-Allow-Origin'] = '*';
-  } else if (request_origin && origins.includes(request_origin)) {
-    // Allow specific origin
-    headers['Access-Control-Allow-Origin'] = request_origin;
-  }
-  
-  if (headers['Access-Control-Allow-Origin']) {
-    headers['Access-Control-Allow-Methods'] = 'POST, OPTIONS';
-    headers['Access-Control-Allow-Headers'] = 'Content-Type';
-    headers['Access-Control-Max-Age'] = '86400'; // 24 hours
-  }
-  
-  return headers;
-}
-
-/**
- * Check if UI component is enabled
- * @returns boolean indicating if UI is enabled
- */
-function is_ui_enabled(): boolean {
-  try {
-    const config_file_path = join(process.cwd(), 'hazo_notify_config.ini');
-    const hazo_config = new HazoConfig({ filePath: config_file_path });
-    const ui_section = hazo_config.getSection('ui') || {};
-    const value: unknown = ui_section?.enable_ui;
-    
-    // Check for various truthy values
-    return value === 'true' || value === true || value === '1' || value === 1;
-  } catch (error) {
-    // If config cannot be read, default to disabled for security
-    console.error('Error checking UI enabled status:', error);
-    return false;
-  }
-}
-
-/**
- * OPTIONS handler for CORS preflight requests
- */
-export async function OPTIONS(request: NextRequest) {
-  try {
-    const config = load_emailer_config();
-    const request_origin = request.headers.get('origin');
-    const cors_headers = get_cors_headers(config.cors_allowed_origins || '', request_origin);
-    
-    return new NextResponse(null, {
-      status: 204,
-      headers: cors_headers,
-    });
-  } catch {
-    return new NextResponse(null, { status: 204 });
-  }
-}
-
-/**
- * POST handler for sending emails
- * @param request - Next.js request object
- * @returns Next.js response with email send result
- */
-export async function POST(request: NextRequest) {
-  const filename = 'route.ts';
-  const function_name = 'POST';
-  const route_path = '/api/hazo_notify/emailer/send';
-  const is_production = process.env.NODE_ENV === 'production';
-  const request_origin = request.headers.get('origin');
-
-  // Check if UI is enabled - if not, disable API route too
-  if (!is_ui_enabled()) {
-    // Try to get CORS headers even for disabled API
-    let cors_headers: Record<string, string> = {};
-    try {
-      const config = load_emailer_config();
-      cors_headers = get_cors_headers(config.cors_allowed_origins || '', request_origin);
-    } catch {
-      // Ignore config errors for disabled API
-    }
-    
-    return NextResponse.json(
-      {
-        success: false,
-        error: 'Emailer API is disabled',
-        message: 'Emailer API is disabled. Set enable_ui=true in hazo_notify_config.ini to enable.',
-      },
-      { 
-        status: 403,
-        headers: cors_headers,
-      }
-    );
-  }
-
-  // Load configuration for rate limiting and CORS
-  let config;
-  try {
-    config = load_emailer_config();
-  } catch (error: unknown) {
-    const error_message = error instanceof Error ? error.message : 'Failed to load configuration';
-    log_error(create_log_entry(filename, function_name, error_message, { route_path }));
-    
-    return NextResponse.json(
-      {
-        success: false,
-        error: is_production ? 'Internal server error' : error_message,
-        message: is_production ? 'Internal server error' : error_message,
-      },
-      { status: 500 }
-    );
-  }
-
-  // Check rate limiting
-  const client_ip = get_client_ip(request);
-  const max_requests = config.rate_limit_requests || DEFAULT_RATE_LIMIT_REQUESTS;
-  const window_seconds = config.rate_limit_window || DEFAULT_RATE_LIMIT_WINDOW;
-  
-  if (!check_rate_limit(client_ip, max_requests, window_seconds)) {
-    log_error(create_log_entry(
-      filename,
-      function_name,
-      'Rate limit exceeded',
-      { route_path, client_ip, max_requests, window_seconds }
-    ));
-    
-    // Get CORS headers for rate limit response
-    const cors_headers = get_cors_headers(config.cors_allowed_origins || '', request_origin);
-    
-    return NextResponse.json(
-      {
-        success: false,
-        error: 'Rate limit exceeded',
-        message: `Too many requests. Maximum ${max_requests} requests per ${window_seconds} seconds.`,
-      },
-      { 
-        status: 429,
-        headers: cors_headers,
-      }
-    );
-  }
-
-  // Get CORS headers
-  const cors_headers = get_cors_headers(config.cors_allowed_origins || '', request_origin);
-
-  try {
-    // Parse request body with better error handling
-    let body: Record<string, unknown>;
-    try {
-      body = await request.json() as Record<string, unknown>;
-    } catch (json_error: unknown) {
-      const error_message = json_error instanceof Error ? json_error.message : 'Invalid JSON in request body';
-      log_error(create_log_entry(filename, function_name, error_message, { route_path }));
-      
-      return NextResponse.json(
-        {
-          success: false,
-          error: 'Invalid JSON in request body',
-          message: 'Invalid JSON in request body',
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    // Validate request body
-    if (!body.to) {
-      return NextResponse.json(
-        {
-          success: false,
-          error: 'Recipient email address(es) are required',
-          message: 'Recipient email address(es) are required',
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    // Validate email addresses
-    const to_emails = Array.isArray(body.to) ? body.to : [body.to];
-    for (const email of to_emails) {
-      if (typeof email !== 'string' || !validate_email_address(email)) {
-        return NextResponse.json(
-          {
-            success: false,
-            error: `Invalid recipient email address: ${email}`,
-            message: `Invalid recipient email address: ${email}`,
-          },
-          { 
-            status: 400,
-            headers: cors_headers,
-          }
-        );
-      }
-    }
-
-    if (!body.subject || typeof body.subject !== 'string') {
-      return NextResponse.json(
-        {
-          success: false,
-          error: 'Email subject is required',
-          message: 'Email subject is required',
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    // Validate subject length
-    if (!validate_subject_length(body.subject)) {
-      const max_length = config.max_subject_length || 255;
-      return NextResponse.json(
-        {
-          success: false,
-          error: `Email subject exceeds maximum length of ${max_length} characters`,
-          message: `Email subject exceeds maximum length of ${max_length} characters`,
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    if (!body.content || (typeof body.content !== 'object')) {
-      return NextResponse.json(
-        {
-          success: false,
-          error: 'Email content (text or html) is required',
-          message: 'Email content (text or html) is required',
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    const content = body.content as { text?: string; html?: string };
-    
-    if (!content.text && !content.html) {
-      return NextResponse.json(
-        {
-          success: false,
-          error: 'Email content (text or html) is required',
-          message: 'Email content (text or html) is required',
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    // Validate body length
-    if (content.text && typeof content.text === 'string' && !validate_body_length(content.text)) {
-      const max_length = config.max_body_length || 1048576;
-      return NextResponse.json(
-        {
-          success: false,
-          error: `Email text body exceeds maximum size of ${max_length} bytes`,
-          message: `Email text body exceeds maximum size of ${max_length} bytes`,
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    if (content.html && typeof content.html === 'string' && !validate_body_length(content.html)) {
-      const max_length = config.max_body_length || 1048576;
-      return NextResponse.json(
-        {
-          success: false,
-          error: `Email HTML body exceeds maximum size of ${max_length} bytes`,
-          message: `Email HTML body exceeds maximum size of ${max_length} bytes`,
-        },
-        { 
-          status: 400,
-          headers: cors_headers,
-        }
-      );
-    }
-
-    // Validate attachments
-    if (body.attachments) {
-      if (!Array.isArray(body.attachments)) {
-        return NextResponse.json(
-          {
-            success: false,
-            error: 'Attachments must be an array',
-            message: 'Attachments must be an array',
-          },
-          { 
-            status: 400,
-            headers: cors_headers,
-          }
-        );
-      }
-
-      const max_attachments = config.max_attachments || DEFAULT_MAX_ATTACHMENTS;
-      if (body.attachments.length > max_attachments) {
-        return NextResponse.json(
-          {
-            success: false,
-            error: `Maximum ${max_attachments} attachments allowed`,
-            message: `Maximum ${max_attachments} attachments allowed`,
-          },
-          { 
-            status: 400,
-            headers: cors_headers,
-          }
-        );
-      }
-
-      const max_size = config.max_attachment_size || DEFAULT_MAX_ATTACHMENT_SIZE;
-      for (const attachment of body.attachments) {
-        if (typeof attachment !== 'object' || !attachment || !('content' in attachment)) {
-          return NextResponse.json(
-            {
-              success: false,
-              error: 'Invalid attachment format',
-              message: 'Invalid attachment format',
-            },
-            { 
-              status: 400,
-              headers: cors_headers,
-            }
-          );
-        }
-
-        const att = attachment as { content: string; filename?: string };
-        if (typeof att.content !== 'string' || !validate_attachment_size(att.content, max_size)) {
-          return NextResponse.json(
-            {
-              success: false,
-              error: `Attachment "${att.filename || 'unknown'}" exceeds maximum size of ${max_size} bytes`,
-              message: `Attachment "${att.filename || 'unknown'}" exceeds maximum size of ${max_size} bytes`,
-            },
-            { 
-              status: 400,
-              headers: cors_headers,
-            }
-          );
-        }
-      }
-    }
-
-    // Prepare email options
-    const email_options: SendEmailOptions = {
-      to: body.to as string | string[],
-      subject: body.subject as string,
-      content: {
-        text: typeof content.text === 'string' ? content.text : undefined,
-        html: typeof content.html === 'string' ? content.html : undefined,
-      },
-      attachments: body.attachments as SendEmailOptions['attachments'],
-      from: typeof body.from === 'string' ? body.from : undefined,
-      from_name: typeof body.from_name === 'string' ? body.from_name : undefined,
-      reply_to: typeof body.reply_to === 'string' ? body.reply_to : undefined,
-      cc: body.cc as string | string[] | undefined,
-      bcc: body.bcc as string | string[] | undefined,
-    };
-
-    // Send email
-    const result = await send_email(email_options);
-
-    // Return response
-    if (result.success) {
-      return NextResponse.json(
-        {
-          success: true,
-          message_id: result.message_id,
-          message: result.message,
-          raw_response: result.raw_response,
-        },
-        { 
-          status: 200,
-          headers: cors_headers,
-        }
-      );
-    } else {
-      // Log error
-      log_error(create_log_entry(
-        filename,
-        function_name,
-        result.error || 'Failed to send email',
-        {
-          route_path,
-          email_options: {
-            to: email_options.to,
-            subject: email_options.subject,
-            has_text: !!email_options.content.text,
-            has_html: !!email_options.content.html,
-            attachments_count: email_options.attachments?.length || 0,
-          },
-          response: result.raw_response,
-        }
-      ));
-
-      return NextResponse.json(
-        {
-          success: false,
-          error: result.error || 'Failed to send email',
-          message: result.message,
-          raw_response: is_production ? undefined : result.raw_response,
-        },
-        { 
-          status: 500,
-          headers: cors_headers,
-        }
-      );
-    }
-  } catch (error: unknown) {
-    // Log error
-    const error_message = error instanceof Error ? error.message : 'Internal server error';
-    const error_string = error instanceof Error ? error.toString() : String(error);
-    const stack = error instanceof Error ? error.stack : undefined;
-    
-    log_error(create_log_entry(
-      filename,
-      function_name,
-      error_message,
-      {
-        line_number: stack || 'unknown',
-        route_path,
-        error: error_string,
-      }
-    ));
-
-    return NextResponse.json(
-      {
-        success: false,
-        error: is_production ? 'Internal server error' : error_message,
-        message: is_production ? 'Internal server error' : error_message,
-        raw_response: is_production ? undefined : {
-          error: error_string,
-          stack: stack,
-        },
-      },
-      { 
-        status: 500,
-        headers: cors_headers,
-      }
-    );
-  }
-}

package/src/app/editor-00/page.tsx

@@ -1,47 +0,0 @@
-"use client"
-
-import { useState } from "react"
-import { SerializedEditorState } from "lexical"
-
-import { Editor } from "@/components/blocks/editor-00/editor"
-
-const initialValue = {
-  root: {
-    children: [
-      {
-        children: [
-          {
-            detail: 0,
-            format: 0,
-            mode: "normal",
-            style: "",
-            text: "Hello World 🚀",
-            type: "text",
-            version: 1,
-          },
-        ],
-        direction: "ltr",
-        format: "",
-        indent: 0,
-        type: "paragraph",
-        version: 1,
-      },
-    ],
-    direction: "ltr",
-    format: "",
-    indent: 0,
-    type: "root",
-    version: 1,
-  },
-} as unknown as SerializedEditorState
-
-export default function EditorPage() {
-  const [editorState, setEditorState] =
-    useState<SerializedEditorState>(initialValue)
-  return (
-    <Editor
-      editorSerializedState={editorState}
-      onSerializedChange={(value) => setEditorState(value)}
-    />
-  )
-}

package/src/app/globals.css

@@ -1,69 +0,0 @@
-@tailwind base;
-@tailwind components;
-@tailwind utilities;
-
-@layer base {
-  :root {
-    --background: 0 0% 100%;
-    --foreground: 222.2 84% 4.9%;
-    --card: 0 0% 100%;
-    --card-foreground: 222.2 84% 4.9%;
-    --popover: 0 0% 100%;
-    --popover-foreground: 222.2 84% 4.9%;
-    --primary: 222.2 47.4% 11.2%;
-    --primary-foreground: 210 40% 98%;
-    --secondary: 210 40% 96.1%;
-    --secondary-foreground: 222.2 47.4% 11.2%;
-    --muted: 210 40% 96.1%;
-    --muted-foreground: 215.4 16.3% 46.9%;
-    --accent: 210 40% 96.1%;
-    --accent-foreground: 222.2 47.4% 11.2%;
-    --destructive: 0 84.2% 60.2%;
-    --destructive-foreground: 210 40% 98%;
-    --border: 214.3 31.8% 91.4%;
-    --input: 214.3 31.8% 91.4%;
-    --ring: 222.2 84% 4.9%;
-    --chart-1: 12 76% 61%;
-    --chart-2: 173 58% 39%;
-    --chart-3: 197 37% 24%;
-    --chart-4: 43 74% 66%;
-    --chart-5: 27 87% 67%;
-    --radius: 0.5rem;
-  }
-
-  .dark {
-    --background: 222.2 84% 4.9%;
-    --foreground: 210 40% 98%;
-    --card: 222.2 84% 4.9%;
-    --card-foreground: 210 40% 98%;
-    --popover: 222.2 84% 4.9%;
-    --popover-foreground: 210 40% 98%;
-    --primary: 210 40% 98%;
-    --primary-foreground: 222.2 47.4% 11.2%;
-    --secondary: 217.2 32.6% 17.5%;
-    --secondary-foreground: 210 40% 98%;
-    --muted: 217.2 32.6% 17.5%;
-    --muted-foreground: 215 20.2% 65.1%;
-    --accent: 217.2 32.6% 17.5%;
-    --accent-foreground: 210 40% 98%;
-    --destructive: 0 62.8% 30.6%;
-    --destructive-foreground: 210 40% 98%;
-    --border: 217.2 32.6% 17.5%;
-    --input: 217.2 32.6% 17.5%;
-    --ring: 212.7 26.8% 83.9%;
-    --chart-1: 220 70% 50%;
-    --chart-2: 160 60% 45%;
-    --chart-3: 30 80% 55%;
-    --chart-4: 280 65% 60%;
-    --chart-5: 340 75% 55%;
-  }
-}
-
-@layer base {
-  * {
-    @apply border-border;
-  }
-  body {
-    @apply bg-background text-foreground;
-  }
-}

package/src/app/hazo_notify/emailer_test/layout.tsx

@@ -1,53 +0,0 @@
-/**
- * Layout for emailer test page
- * Checks if UI component is enabled in config
- * If disabled, shows a message instead of the page content
- */
-
-import { HazoConfig } from 'hazo_config';
-import { join } from 'path';
-
-/**
- * Check if UI component is enabled
- * @returns boolean indicating if UI is enabled
- */
-function is_ui_enabled(): boolean {
-  try {
-    const config_file_path = join(process.cwd(), 'hazo_notify_config.ini');
-    const hazo_config = new HazoConfig({ filePath: config_file_path });
-    const ui_section = hazo_config.getSection('ui') || {};
-    const value: unknown = ui_section?.enable_ui;
-    
-    // Check for various truthy values
-    return value === 'true' || value === true || value === '1' || value === 1;
-  } catch (error) {
-    // If config cannot be read, default to disabled for security
-    console.error('Error checking UI enabled status:', error);
-    return false;
-  }
-}
-
-export default function EmailerTestLayout({
-  children,
-}: {
-  children: React.ReactNode;
-}) {
-  const is_enabled = is_ui_enabled();
-
-  if (!is_enabled) {
-    return (
-      <div className="cls_emailer_test_disabled flex items-center justify-center h-full p-6">
-        <div className="cls_emailer_test_disabled_message text-center max-w-2xl">
-          <h1 className="cls_emailer_test_disabled_title text-2xl font-bold mb-4">
-            UI Component is Disabled
-          </h1>
-          <p className="cls_emailer_test_disabled_description text-muted-foreground">
-            To enable the UI component and all routes, set <code className="cls_emailer_test_disabled_code bg-muted px-2 py-1 rounded">enable_ui=true</code> in the <code className="cls_emailer_test_disabled_code bg-muted px-2 py-1 rounded">[ui]</code> section of <code className="cls_emailer_test_disabled_code bg-muted px-2 py-1 rounded">hazo_notify_config.ini</code>.
-          </p>
-        </div>
-      </div>
-    );
-  }
-
-  return <>{children}</>;
-}