honertia 0.1.0

package/dist/effect/action.d.ts

@@ -0,0 +1,107 @@
+/**
+ * Effect Action Factories
+ *
+ * Pure function factories for creating Effect-based request handlers.
+ */
+import { Effect, Schema as S } from 'effect';
+import { DatabaseService, AuthUserService, RequestService, type AuthUser } from './services.js';
+import { ValidationError, UnauthorizedError } from './errors.js';
+import { Redirect } from './errors.js';
+/**
+ * Create an Effect action with schema validation.
+ *
+ * @example
+ * const createProject = effectAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input) => Effect.gen(function* () {
+ *     const db = yield* DatabaseService
+ *     yield* Effect.tryPromise(() => db.insert(projects).values(input))
+ *     return new Redirect({ url: '/projects', status: 303 })
+ *   })
+ * )
+ */
+export declare function effectAction<A, I, R, E>(schema: S.Schema<A, I>, handler: (input: A) => Effect.Effect<Response | Redirect, E, R>, options?: {
+    errorComponent?: string;
+    messages?: Record<string, string>;
+    attributes?: Record<string, string>;
+}): Effect.Effect<Response | Redirect, E | ValidationError, R | RequestService>;
+/**
+ * Create an Effect action that requires authentication and database access.
+ *
+ * @example
+ * const createProject = dbAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input, { db, user }) => Effect.gen(function* () {
+ *     yield* Effect.tryPromise(() =>
+ *       db.insert(projects).values({ ...input, userId: user.user.id })
+ *     )
+ *     return new Redirect({ url: '/projects', status: 303 })
+ *   })
+ * )
+ */
+export declare function dbAction<A, I, E>(schema: S.Schema<A, I>, handler: (input: A, deps: {
+    db: unknown;
+    user: AuthUser;
+}) => Effect.Effect<Response | Redirect, E, never>, options?: {
+    errorComponent?: string;
+    messages?: Record<string, string>;
+    attributes?: Record<string, string>;
+}): Effect.Effect<Response | Redirect, E | ValidationError | UnauthorizedError, RequestService | DatabaseService | AuthUserService>;
+/**
+ * Create an Effect action that requires authentication.
+ *
+ * @example
+ * const showDashboard = authAction(() => Effect.gen(function* () {
+ *   const user = yield* AuthUserService
+ *   const honertia = yield* HonertiaService
+ *   return yield* Effect.tryPromise(() => honertia.render('Dashboard', { user: user.user }))
+ * }))
+ */
+export declare function authAction<R, E>(handler: (user: AuthUser) => Effect.Effect<Response | Redirect, E, R>): Effect.Effect<Response | Redirect, E | UnauthorizedError, R | AuthUserService>;
+/**
+ * Create a simple Effect action without validation.
+ *
+ * @example
+ * const listProjects = simpleAction(() => Effect.gen(function* () {
+ *   const db = yield* DatabaseService
+ *   const user = yield* AuthUserService
+ *   const projects = yield* Effect.tryPromise(() => db.query.projects.findMany())
+ *   const honertia = yield* HonertiaService
+ *   return yield* Effect.tryPromise(() => honertia.render('Projects', { projects }))
+ * }))
+ */
+export declare function simpleAction<R, E>(handler: () => Effect.Effect<Response | Redirect, E, R>): Effect.Effect<Response | Redirect, E, R>;
+/**
+ * Inject additional data into the validated input.
+ *
+ * @example
+ * const createProject = effectAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input) => pipe(
+ *     injectUser(input),
+ *     Effect.flatMap(({ name, userId }) =>
+ *       Effect.tryPromise(() => db.insert(projects).values({ name, userId }))
+ *     )
+ *   )
+ * )
+ */
+export declare function injectUser<T extends Record<string, unknown>>(input: T): Effect.Effect<T & {
+    userId: string;
+}, UnauthorizedError, AuthUserService>;
+/**
+ * Run a database operation wrapped in Effect.
+ */
+export declare function dbOperation<T>(operation: (db: unknown) => Promise<T>): Effect.Effect<T, Error, DatabaseService>;
+/**
+ * Prepare validation data by transforming it before validation.
+ */
+export declare function prepareData<T extends Record<string, unknown>>(transform: (data: Record<string, unknown>) => T | Promise<T>): Effect.Effect<T, never, RequestService>;
+/**
+ * Create an action with custom data preparation.
+ */
+export declare function preparedAction<A, I, R, E>(schema: S.Schema<A, I>, prepare: (data: Record<string, unknown>) => Record<string, unknown> | Promise<Record<string, unknown>>, handler: (input: A) => Effect.Effect<Response | Redirect, E, R>, options?: {
+    errorComponent?: string;
+    messages?: Record<string, string>;
+    attributes?: Record<string, string>;
+}): Effect.Effect<Response | Redirect, E | ValidationError, R | RequestService>;
+//# sourceMappingURL=action.d.ts.map

package/dist/effect/action.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"action.d.ts","sourceRoot":"","sources":["../../src/effect/action.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,IAAI,CAAC,EAAE,MAAM,QAAQ,CAAA;AAC5C,OAAO,EACL,eAAe,EACf,eAAe,EAEf,cAAc,EAEd,KAAK,QAAQ,EACd,MAAM,eAAe,CAAA;AACtB,OAAO,EAAE,eAAe,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAA;AAEhE,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAA;AAEtC;;;;;;;;;;;;GAYG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EACrC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EACtB,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,KAAK,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC,EAC/D,OAAO,CAAC,EAAE;IACR,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CACpC,GACA,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,GAAG,eAAe,EAAE,CAAC,GAAG,cAAc,CAAC,CAS7E;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,QAAQ,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EACtB,OAAO,EAAE,CACP,KAAK,EAAE,CAAC,EACR,IAAI,EAAE;IAAE,EAAE,EAAE,OAAO,CAAC;IAAC,IAAI,EAAE,QAAQ,CAAA;CAAE,KAClC,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,KAAK,CAAC,EACjD,OAAO,CAAC,EAAE;IACR,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CACpC,GACA,MAAM,CAAC,MAAM,CACd,QAAQ,GAAG,QAAQ,EACnB,CAAC,GAAG,eAAe,GAAG,iBAAiB,EACvC,cAAc,GAAG,eAAe,GAAG,eAAe,CACnD,CAWA;AAED;;;;;;;;;GASG;AACH,wBAAgB,UAAU,CAAC,CAAC,EAAE,CAAC,EAC7B,OAAO,EAAE,CAAC,IAAI,EAAE,QAAQ,KAAK,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC,GACpE,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,GAAG,iBAAiB,EAAE,CAAC,GAAG,eAAe,CAAC,CAKhF;AAED;;;;;;;;;;;GAWG;AACH,wBAAgB,YAAY,CAAC,CAAC,EAAE,CAAC,EAC/B,OAAO,EAAE,MAAM,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC,GACtD,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC,CAE1C;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,UAAU,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC1D,KAAK,EAAE,CAAC,GACP,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG;IAAE,MAAM,EAAE,MAAM,CAAA;CAAE,EAAE,iBAAiB,EAAE,eAAe,CAAC,CAK3E;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,CAAC,EAC3B,SAAS,EAAE,CAAC,EAAE,EAAE,OAAO,KAAK,OAAO,CAAC,CAAC,CAAC,GACrC,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,KAAK,EAAE,eAAe,CAAC,CAQ1C;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAC3D,SAAS,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,CAAC,GAAG,OAAO,CAAC,CAAC,CAAC,GAC3D,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,KAAK,EAAE,cAAc,CAAC,CAQzC;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,EACvC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,EACtB,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,EACtG,OAAO,EAAE,CAAC,KAAK,EAAE,CAAC,KAAK,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,EAAE,CAAC,CAAC,EAC/D,OAAO,CAAC,EAAE;IACR,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;IACjC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;CACpC,GACA,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,QAAQ,EAAE,CAAC,GAAG,eAAe,EAAE,CAAC,GAAG,cAAc,CAAC,CAc7E"}

package/dist/effect/action.js

@@ -0,0 +1,150 @@
+/**
+ * Effect Action Factories
+ *
+ * Pure function factories for creating Effect-based request handlers.
+ */
+import { Effect } from 'effect';
+import { DatabaseService, AuthUserService, } from './services.js';
+import { validateRequest, getValidationData, validate } from './validation.js';
+/**
+ * Create an Effect action with schema validation.
+ *
+ * @example
+ * const createProject = effectAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input) => Effect.gen(function* () {
+ *     const db = yield* DatabaseService
+ *     yield* Effect.tryPromise(() => db.insert(projects).values(input))
+ *     return new Redirect({ url: '/projects', status: 303 })
+ *   })
+ * )
+ */
+export function effectAction(schema, handler, options) {
+    return Effect.gen(function* () {
+        const input = yield* validateRequest(schema, {
+            errorComponent: options?.errorComponent,
+            messages: options?.messages,
+            attributes: options?.attributes,
+        });
+        return yield* handler(input);
+    });
+}
+/**
+ * Create an Effect action that requires authentication and database access.
+ *
+ * @example
+ * const createProject = dbAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input, { db, user }) => Effect.gen(function* () {
+ *     yield* Effect.tryPromise(() =>
+ *       db.insert(projects).values({ ...input, userId: user.user.id })
+ *     )
+ *     return new Redirect({ url: '/projects', status: 303 })
+ *   })
+ * )
+ */
+export function dbAction(schema, handler, options) {
+    return Effect.gen(function* () {
+        const db = yield* DatabaseService;
+        const user = yield* AuthUserService;
+        const input = yield* validateRequest(schema, {
+            errorComponent: options?.errorComponent,
+            messages: options?.messages,
+            attributes: options?.attributes,
+        });
+        return yield* handler(input, { db, user });
+    });
+}
+/**
+ * Create an Effect action that requires authentication.
+ *
+ * @example
+ * const showDashboard = authAction(() => Effect.gen(function* () {
+ *   const user = yield* AuthUserService
+ *   const honertia = yield* HonertiaService
+ *   return yield* Effect.tryPromise(() => honertia.render('Dashboard', { user: user.user }))
+ * }))
+ */
+export function authAction(handler) {
+    return Effect.gen(function* () {
+        const user = yield* AuthUserService;
+        return yield* handler(user);
+    });
+}
+/**
+ * Create a simple Effect action without validation.
+ *
+ * @example
+ * const listProjects = simpleAction(() => Effect.gen(function* () {
+ *   const db = yield* DatabaseService
+ *   const user = yield* AuthUserService
+ *   const projects = yield* Effect.tryPromise(() => db.query.projects.findMany())
+ *   const honertia = yield* HonertiaService
+ *   return yield* Effect.tryPromise(() => honertia.render('Projects', { projects }))
+ * }))
+ */
+export function simpleAction(handler) {
+    return handler();
+}
+/**
+ * Inject additional data into the validated input.
+ *
+ * @example
+ * const createProject = effectAction(
+ *   S.Struct({ name: requiredString }),
+ *   (input) => pipe(
+ *     injectUser(input),
+ *     Effect.flatMap(({ name, userId }) =>
+ *       Effect.tryPromise(() => db.insert(projects).values({ name, userId }))
+ *     )
+ *   )
+ * )
+ */
+export function injectUser(input) {
+    return Effect.gen(function* () {
+        const authUser = yield* AuthUserService;
+        return { ...input, userId: authUser.user.id };
+    });
+}
+/**
+ * Run a database operation wrapped in Effect.
+ */
+export function dbOperation(operation) {
+    return Effect.gen(function* () {
+        const db = yield* DatabaseService;
+        return yield* Effect.tryPromise({
+            try: () => operation(db),
+            catch: (error) => error instanceof Error ? error : new Error(String(error)),
+        });
+    });
+}
+/**
+ * Prepare validation data by transforming it before validation.
+ */
+export function prepareData(transform) {
+    return Effect.gen(function* () {
+        const data = yield* getValidationData;
+        return yield* Effect.tryPromise({
+            try: () => Promise.resolve(transform(data)),
+            catch: () => new Error('Transform failed'),
+        }).pipe(Effect.catchAll(() => Effect.succeed(data)));
+    });
+}
+/**
+ * Create an action with custom data preparation.
+ */
+export function preparedAction(schema, prepare, handler, options) {
+    return Effect.gen(function* () {
+        const rawData = yield* getValidationData;
+        const preparedData = yield* Effect.tryPromise({
+            try: () => Promise.resolve(prepare(rawData)),
+            catch: () => new Error('Prepare failed'),
+        }).pipe(Effect.catchAll(() => Effect.succeed(rawData)));
+        const input = yield* validate(schema, {
+            errorComponent: options?.errorComponent,
+            messages: options?.messages,
+            attributes: options?.attributes,
+        })(preparedData);
+        return yield* handler(input);
+    });
+}

package/dist/effect/auth.d.ts

@@ -0,0 +1,94 @@
+/**
+ * Effect Auth Layers and Helpers
+ *
+ * Authentication and authorization via Effect Layers.
+ */
+import { Effect, Layer } from 'effect';
+import type { Hono, MiddlewareHandler, Env } from 'hono';
+import { AuthUserService, HonertiaService, type AuthUser } from './services.js';
+import { UnauthorizedError } from './errors.js';
+/**
+ * Layer that requires an authenticated user.
+ * Fails with UnauthorizedError if no user is present.
+ *
+ * @example
+ * effectRoutes(app)
+ *   .provide(RequireAuthLayer)
+ *   .get('/dashboard', showDashboard)
+ */
+export declare const RequireAuthLayer: Layer.Layer<AuthUserService, UnauthorizedError, never>;
+/**
+ * Layer that requires no authenticated user (guest only).
+ * Fails if a user is present, succeeds (as a no-op) if no user.
+ *
+ * @example
+ * effectRoutes(app)
+ *   .provide(RequireGuestLayer)
+ *   .get('/login', showLogin)
+ */
+export declare const RequireGuestLayer: Layer.Layer<never, UnauthorizedError, never>;
+/**
+ * Check if user is authenticated without failing.
+ */
+export declare const isAuthenticated: Effect.Effect<boolean, never, never>;
+/**
+ * Get the current user if authenticated.
+ */
+export declare const currentUser: Effect.Effect<AuthUser | null, never, never>;
+/**
+ * Require authentication or redirect.
+ */
+export declare const requireAuth: (redirectTo?: string) => Effect.Effect<AuthUser, UnauthorizedError, never>;
+/**
+ * Require guest status or redirect.
+ */
+export declare const requireGuest: (redirectTo?: string) => Effect.Effect<void, UnauthorizedError, never>;
+/**
+ * Share auth state with Honertia.
+ */
+export declare const shareAuth: Effect.Effect<void, never, HonertiaService>;
+/**
+ * Middleware version of shareAuth for use with app.use().
+ */
+export declare function shareAuthMiddleware<E extends Env>(): MiddlewareHandler<E>;
+/**
+ * Configuration for auth routes.
+ */
+export interface AuthRoutesConfig<E extends Env> {
+    loginPath?: string;
+    registerPath?: string;
+    logoutPath?: string;
+    apiPath?: string;
+    logoutRedirect?: string;
+    loginRedirect?: string;
+    loginComponent?: string;
+    registerComponent?: string;
+    sessionCookie?: string;
+    /**
+     * CORS configuration for auth API routes.
+     * If provided, adds CORS headers to `/api/auth/*` routes.
+     */
+    cors?: {
+        origin: string | string[] | ((origin: string) => string | undefined | null);
+        credentials?: boolean;
+    };
+}
+/**
+ * Register standard auth routes.
+ *
+ * @example
+ * effectAuthRoutes(app, {
+ *   loginComponent: 'Auth/Login',
+ *   registerComponent: 'Auth/Register',
+ * })
+ */
+export declare function effectAuthRoutes<E extends Env>(app: Hono<E>, config?: AuthRoutesConfig<E>): void;
+/**
+ * Middleware to load the authenticated user.
+ * This should be used early in the middleware chain.
+ */
+export declare function loadUser<E extends Env>(config?: {
+    userKey?: string;
+    sessionCookie?: string;
+}): MiddlewareHandler<E>;
+//# sourceMappingURL=auth.d.ts.map

package/dist/effect/auth.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../../src/effect/auth.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,MAAM,EAAE,KAAK,EAAU,MAAM,QAAQ,CAAA;AAC9C,OAAO,KAAK,EAAE,IAAI,EAAE,iBAAiB,EAAE,GAAG,EAAE,MAAM,MAAM,CAAA;AACxD,OAAO,EAAE,eAAe,EAAe,eAAe,EAAkB,KAAK,QAAQ,EAAE,MAAM,eAAe,CAAA;AAC5G,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAA;AAI/C;;;;;;;;GAQG;AACH,eAAO,MAAM,gBAAgB,wDAiB5B,CAAA;AAED;;;;;;;;GAQG;AACH,eAAO,MAAM,iBAAiB,8CAe7B,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,eAAe,EAAE,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,KAAK,EAAE,KAAK,CACM,CAAA;AAEvE;;GAEG;AACH,eAAO,MAAM,WAAW,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,IAAI,EAAE,KAAK,EAAE,KAAK,CAGlE,CAAA;AAEH;;GAEG;AACH,eAAO,MAAM,WAAW,GACtB,mBAAqB,KACpB,MAAM,CAAC,MAAM,CAAC,QAAQ,EAAE,iBAAiB,EAAE,KAAK,CAQhD,CAAA;AAEH;;GAEG;AACH,eAAO,MAAM,YAAY,GACvB,mBAAgB,KACf,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,iBAAiB,EAAE,KAAK,CAQ5C,CAAA;AAEH;;GAEG;AACH,eAAO,MAAM,SAAS,EAAE,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,eAAe,CAK9D,CAAA;AAEJ;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,CAAC,SAAS,GAAG,KAAK,iBAAiB,CAAC,CAAC,CAAC,CASzE;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB,CAAC,CAAC,SAAS,GAAG;IAC7C,SAAS,CAAC,EAAE,MAAM,CAAA;IAClB,YAAY,CAAC,EAAE,MAAM,CAAA;IACrB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB,cAAc,CAAC,EAAE,MAAM,CAAA;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAA;IAC1B,aAAa,CAAC,EAAE,MAAM,CAAA;IACtB;;;OAGG;IACH,IAAI,CAAC,EAAE;QACL,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,CAAC,CAAC,MAAM,EAAE,MAAM,KAAK,MAAM,GAAG,SAAS,GAAG,IAAI,CAAC,CAAA;QAC3E,WAAW,CAAC,EAAE,OAAO,CAAA;KACtB,CAAA;CACF;AAED;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAAC,CAAC,SAAS,GAAG,EAC5C,GAAG,EAAE,IAAI,CAAC,CAAC,CAAC,EACZ,MAAM,GAAE,gBAAgB,CAAC,CAAC,CAAM,GAC/B,IAAI,CAoGN;AAED;;;GAGG;AACH,wBAAgB,QAAQ,CAAC,CAAC,SAAS,GAAG,EACpC,MAAM,GAAE;IACN,OAAO,CAAC,EAAE,MAAM,CAAA;IAChB,aAAa,CAAC,EAAE,MAAM,CAAA;CAClB,GACL,iBAAiB,CAAC,CAAC,CAAC,CAwBtB"}

package/dist/effect/auth.js

@@ -0,0 +1,204 @@
+/**
+ * Effect Auth Layers and Helpers
+ *
+ * Authentication and authorization via Effect Layers.
+ */
+import { Effect, Layer, Option } from 'effect';
+import { AuthUserService, AuthService, HonertiaService, RequestService } from './services.js';
+import { UnauthorizedError } from './errors.js';
+import { effectRoutes } from './routing.js';
+import { render } from './responses.js';
+/**
+ * Layer that requires an authenticated user.
+ * Fails with UnauthorizedError if no user is present.
+ *
+ * @example
+ * effectRoutes(app)
+ *   .provide(RequireAuthLayer)
+ *   .get('/dashboard', showDashboard)
+ */
+export const RequireAuthLayer = Layer.effect(AuthUserService, Effect.gen(function* () {
+    // Try to get existing AuthUserService
+    const maybeUser = yield* Effect.serviceOption(AuthUserService);
+    if (Option.isNone(maybeUser)) {
+        return yield* Effect.fail(new UnauthorizedError({
+            message: 'Authentication required',
+            redirectTo: '/login',
+        }));
+    }
+    return maybeUser.value;
+}));
+/**
+ * Layer that requires no authenticated user (guest only).
+ * Fails if a user is present, succeeds (as a no-op) if no user.
+ *
+ * @example
+ * effectRoutes(app)
+ *   .provide(RequireGuestLayer)
+ *   .get('/login', showLogin)
+ */
+export const RequireGuestLayer = Layer.effectDiscard(Effect.gen(function* () {
+    const maybeUser = yield* Effect.serviceOption(AuthUserService);
+    if (Option.isSome(maybeUser)) {
+        return yield* Effect.fail(new UnauthorizedError({
+            message: 'Already authenticated',
+            redirectTo: '/',
+        }));
+    }
+    // Guest confirmed - no user present, succeed silently
+}));
+/**
+ * Check if user is authenticated without failing.
+ */
+export const isAuthenticated = Effect.serviceOption(AuthUserService).pipe(Effect.map(Option.isSome));
+/**
+ * Get the current user if authenticated.
+ */
+export const currentUser = Effect.serviceOption(AuthUserService).pipe(Effect.map((option) => (Option.isSome(option) ? option.value : null)));
+/**
+ * Require authentication or redirect.
+ */
+export const requireAuth = (redirectTo = '/login') => Effect.serviceOption(AuthUserService).pipe(Effect.flatMap((option) => {
+    if (Option.isNone(option)) {
+        return Effect.fail(new UnauthorizedError({ message: 'Unauthenticated', redirectTo }));
+    }
+    return Effect.succeed(option.value);
+}));
+/**
+ * Require guest status or redirect.
+ */
+export const requireGuest = (redirectTo = '/') => Effect.serviceOption(AuthUserService).pipe(Effect.flatMap((option) => {
+    if (Option.isSome(option)) {
+        return Effect.fail(new UnauthorizedError({ message: 'Already authenticated', redirectTo }));
+    }
+    return Effect.void;
+}));
+/**
+ * Share auth state with Honertia.
+ */
+export const shareAuth = Effect.gen(function* () {
+    const honertia = yield* HonertiaService;
+    const user = yield* currentUser;
+    honertia.share('auth', { user: user?.user ?? null });
+});
+/**
+ * Middleware version of shareAuth for use with app.use().
+ */
+export function shareAuthMiddleware() {
+    return async (c, next) => {
+        const honertia = c.var?.honertia;
+        const authUser = c.var?.authUser;
+        if (honertia) {
+            honertia.share('auth', { user: authUser?.user ?? null });
+        }
+        await next();
+    };
+}
+/**
+ * Register standard auth routes.
+ *
+ * @example
+ * effectAuthRoutes(app, {
+ *   loginComponent: 'Auth/Login',
+ *   registerComponent: 'Auth/Register',
+ * })
+ */
+export function effectAuthRoutes(app, config = {}) {
+    const { loginPath = '/login', registerPath = '/register', logoutPath = '/logout', apiPath = '/api/auth', logoutRedirect = '/login', loginComponent = 'Auth/Login', registerComponent = 'Auth/Register', } = config;
+    const routes = effectRoutes(app);
+    // Login page (guest only)
+    routes.get(loginPath, Effect.gen(function* () {
+        yield* requireGuest(loginPath === '/login' ? '/' : loginPath);
+        return yield* render(loginComponent);
+    }));
+    // Register page (guest only)
+    routes.get(registerPath, Effect.gen(function* () {
+        yield* requireGuest(registerPath === '/register' ? '/' : registerPath);
+        return yield* render(registerComponent);
+    }));
+    // Logout (POST)
+    routes.post(logoutPath, Effect.gen(function* () {
+        const auth = yield* AuthService;
+        const request = yield* RequestService;
+        // Revoke session server-side
+        yield* Effect.tryPromise(() => auth.api.signOut({
+            headers: request.headers,
+        }));
+        // Clear cookie and redirect
+        const sessionCookie = config.sessionCookie ?? 'better-auth.session_token';
+        return new Response(null, {
+            status: 303,
+            headers: {
+                'Location': logoutRedirect,
+                'Set-Cookie': `${sessionCookie}=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT; HttpOnly; SameSite=Lax`,
+            },
+        });
+    }));
+    // Better-auth API handler (handles sign-in, sign-up, etc.)
+    // Apply CORS if configured
+    if (config.cors) {
+        const corsConfig = config.cors;
+        app.use(`${apiPath}/*`, async (c, next) => {
+            const origin = c.req.header('Origin');
+            // Determine allowed origin
+            let allowedOrigin = null;
+            if (typeof corsConfig.origin === 'function') {
+                allowedOrigin = origin ? corsConfig.origin(origin) ?? null : null;
+            }
+            else if (Array.isArray(corsConfig.origin)) {
+                allowedOrigin = origin && corsConfig.origin.includes(origin) ? origin : null;
+            }
+            else {
+                allowedOrigin = corsConfig.origin;
+            }
+            if (allowedOrigin) {
+                c.header('Access-Control-Allow-Origin', allowedOrigin);
+                if (corsConfig.credentials) {
+                    c.header('Access-Control-Allow-Credentials', 'true');
+                }
+            }
+            // Handle preflight
+            if (c.req.method === 'OPTIONS') {
+                c.header('Access-Control-Allow-Methods', 'GET, POST, PUT, DELETE, OPTIONS');
+                c.header('Access-Control-Allow-Headers', 'Content-Type, Authorization');
+                c.header('Access-Control-Max-Age', '86400');
+                return c.body(null, 204);
+            }
+            await next();
+        });
+    }
+    app.all(`${apiPath}/*`, async (c) => {
+        const auth = c.var?.auth;
+        if (!auth) {
+            return c.json({ error: 'Auth not configured' }, 500);
+        }
+        return auth.handler(c.req.raw);
+    });
+}
+/**
+ * Middleware to load the authenticated user.
+ * This should be used early in the middleware chain.
+ */
+export function loadUser(config = {}) {
+    const { userKey = 'authUser' } = config;
+    return async (c, next) => {
+        const auth = c.var?.auth;
+        if (!auth) {
+            await next();
+            return;
+        }
+        try {
+            const session = await auth.api.getSession({ headers: c.req.raw.headers });
+            if (session) {
+                c.set(userKey, {
+                    user: session.user,
+                    session: session.session,
+                });
+            }
+        }
+        catch {
+            // Session fetch failed, continue without user
+        }
+        await next();
+    };
+}

package/dist/effect/bridge.d.ts

@@ -0,0 +1,40 @@
+/**
+ * Hono-Effect Bridge
+ *
+ * Middleware that connects Hono's request handling to Effect's runtime.
+ */
+import { Layer, ManagedRuntime } from 'effect';
+import type { Context as HonoContext, MiddlewareHandler, Env } from 'hono';
+import { DatabaseService, AuthService, AuthUserService, HonertiaService, RequestService, ResponseFactoryService } from './services.js';
+/**
+ * Configuration for the Effect bridge.
+ */
+export interface EffectBridgeConfig<E extends Env> {
+    database?: (c: HonoContext<E>) => unknown;
+}
+/**
+ * Symbol for storing Effect runtime in Hono context.
+ */
+declare const EFFECT_RUNTIME: unique symbol;
+/**
+ * Extend Hono context with Effect runtime.
+ */
+declare module 'hono' {
+    interface ContextVariableMap {
+        [EFFECT_RUNTIME]?: ManagedRuntime.ManagedRuntime<DatabaseService | AuthService | AuthUserService | HonertiaService | RequestService | ResponseFactoryService, never>;
+    }
+}
+/**
+ * Build the Effect layer from Hono context.
+ */
+export declare function buildContextLayer<E extends Env>(c: HonoContext<E>, config?: EffectBridgeConfig<E>): Layer.Layer<RequestService | ResponseFactoryService | HonertiaService | DatabaseService | AuthService | AuthUserService, never, never>;
+/**
+ * Get the Effect runtime from Hono context.
+ */
+export declare function getEffectRuntime<E extends Env>(c: HonoContext<E>): ManagedRuntime.ManagedRuntime<any, never> | undefined;
+/**
+ * Middleware that sets up the Effect runtime for each request.
+ */
+export declare function effectBridge<E extends Env>(config?: EffectBridgeConfig<E>): MiddlewareHandler<E>;
+export {};
+//# sourceMappingURL=bridge.d.ts.map

package/dist/effect/bridge.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"bridge.d.ts","sourceRoot":"","sources":["../../src/effect/bridge.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAU,KAAK,EAAE,cAAc,EAAW,MAAM,QAAQ,CAAA;AAC/D,OAAO,KAAK,EAAE,OAAO,IAAI,WAAW,EAAE,iBAAiB,EAAE,GAAG,EAAE,MAAM,MAAM,CAAA;AAC1E,OAAO,EACL,eAAe,EACf,WAAW,EACX,eAAe,EACf,eAAe,EACf,cAAc,EACd,sBAAsB,EAKvB,MAAM,eAAe,CAAA;AAEtB;;GAEG;AACH,MAAM,WAAW,kBAAkB,CAAC,CAAC,SAAS,GAAG;IAC/C,QAAQ,CAAC,EAAE,CAAC,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,KAAK,OAAO,CAAA;CAC1C;AAED;;GAEG;AACH,QAAA,MAAM,cAAc,eAA0B,CAAA;AAE9C;;GAEG;AACH,OAAO,QAAQ,MAAM,CAAC;IACpB,UAAU,kBAAkB;QAC1B,CAAC,cAAc,CAAC,CAAC,EAAE,cAAc,CAAC,cAAc,CAC5C,eAAe,GACf,WAAW,GACX,eAAe,GACf,eAAe,GACf,cAAc,GACd,sBAAsB,EACxB,KAAK,CACN,CAAA;KACF;CACF;AAqDD;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,CAAC,SAAS,GAAG,EAC7C,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,EACjB,MAAM,CAAC,EAAE,kBAAkB,CAAC,CAAC,CAAC,GAC7B,KAAK,CAAC,KAAK,CACV,cAAc,GACd,sBAAsB,GACtB,eAAe,GACf,eAAe,GACf,WAAW,GACX,eAAe,EACjB,KAAK,EACL,KAAK,CACN,CAmCA;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,CAAC,SAAS,GAAG,EAC5C,CAAC,EAAE,WAAW,CAAC,CAAC,CAAC,GAChB,cAAc,CAAC,cAAc,CAAC,GAAG,EAAE,KAAK,CAAC,GAAG,SAAS,CAEvD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,CAAC,SAAS,GAAG,EACxC,MAAM,CAAC,EAAE,kBAAkB,CAAC,CAAC,CAAC,GAC7B,iBAAiB,CAAC,CAAC,CAAC,CAetB"}