npm - insforge - Versions diffs - 0.3.3 → 1.2.10 - Mend

insforge 0.3.3 → 1.2.10

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (507) hide show

package/backend/src/utils/cloud-token.ts DELETED Viewed

@@ -1,39 +0,0 @@
-import { createRemoteJWKSet, JWTPayload, jwtVerify } from 'jose';
-import { AppError } from '@/api/middleware/error.js';
-import { ERROR_CODES, NEXT_ACTION } from '@/types/error-constants.js';
-/**
- * Helper function to verify cloud backend JWT token
- * Validates JWT tokens from api.insforge.dev using JWKS
- */
-export async function verifyCloudToken(
-  token: string
-): Promise<{ projectId: string; payload: JWTPayload }> {
-  // Create JWKS endpoint for remote key set
-  const JWKS = createRemoteJWKSet(
-    new URL((process.env.CLOUD_API_HOST || 'https://api.insforge.dev') + '/.well-known/jwks.json')
-  );
-  // Verify the token with jose
-  const { payload } = await jwtVerify(token, JWKS, {
-    algorithms: ['RS256', 'RS384', 'RS512', 'ES256', 'ES384', 'ES512'],
-  });
-  // Verify project_id matches if configured
-  const tokenProjectId = payload['projectId'] as string;
-  const expectedProjectId = process.env.PROJECT_ID;
-  if (expectedProjectId && tokenProjectId !== expectedProjectId) {
-    throw new AppError(
-      'Project ID mismatch',
-      403,
-      ERROR_CODES.AUTH_UNAUTHORIZED,
-      NEXT_ACTION.CHECK_TOKEN
-    );
-  }
-  return {
-    projectId: tokenProjectId || expectedProjectId || 'local',
-    payload,
-  };
-}

package/backend/src/utils/helpers.ts DELETED Viewed

@@ -1,49 +0,0 @@
-import { ColumnType } from '@insforge/shared-schemas';
-export const convertSqlTypeToColumnType = (sqlType: string): ColumnType | string => {
-  switch (sqlType.toLowerCase()) {
-    case 'uuid':
-      return ColumnType.UUID;
-    case 'timestamptz':
-    case 'timestamp with time zone':
-      return ColumnType.DATETIME;
-    case 'date':
-      return ColumnType.DATE;
-    case 'integer':
-    case 'bigint':
-    case 'smallint':
-    case 'int':
-    case 'int2':
-    case 'int4':
-    case 'serial':
-    case 'serial2':
-    case 'serial4':
-    case 'serial8':
-    case 'smallserial':
-    case 'bigserial':
-      return ColumnType.INTEGER;
-    case 'double precision':
-    case 'real':
-    case 'numeric':
-    case 'float':
-    case 'float4':
-    case 'float8':
-    case 'decimal':
-      return ColumnType.FLOAT;
-    case 'boolean':
-    case 'bool':
-      return ColumnType.BOOLEAN;
-    case 'json':
-    case 'jsonb':
-    case 'array':
-      return ColumnType.JSON;
-    case 'text':
-    case 'varchar':
-    case 'char':
-    case 'character varying':
-    case 'character':
-      return ColumnType.STRING;
-    default:
-      return sqlType.slice(0, 5);
-  }
-};

package/backend/src/utils/uuid.ts DELETED Viewed

@@ -1,9 +0,0 @@
-import crypto from 'crypto';
-/**
- * Generate a UUID v4
- * @returns A UUID v4 string
- */
-export function generateUUID(): string {
-  return crypto.randomUUID();
-}

package/backend/tests/manual/test-better-auth.sh DELETED Viewed

@@ -1,303 +0,0 @@
-#!/bin/bash
-# Better Auth test script
-# Tests the Better Auth v2 endpoints including admin functionality
-# Get the directory where this script is located
-SCRIPT_DIR="$( cd "$( dirname "${BASH_SOURCE[0]}" )" && pwd )"
-# Test configuration
-TEST_API_BASE="${TEST_API_BASE:-http://localhost:7130/api}"
-TEST_ADMIN_EMAIL="${TEST_ADMIN_EMAIL:-${ADMIN_EMAIL:-admin@example.com}}"
-TEST_ADMIN_PASSWORD="${TEST_ADMIN_PASSWORD:-${ADMIN_PASSWORD:-change-this-password}}"
-TEST_USER_EMAIL_PREFIX="${TEST_USER_EMAIL_PREFIX:-testuser_}"
-# Colors for output
-RED='\033[0;31m'
-GREEN='\033[0;32m'
-YELLOW='\033[1;33m'
-BLUE='\033[0;34m'
-NC='\033[0m' # No Color
-# Utility functions
-print_success() {
-    echo -e "${GREEN}✅ $1${NC}"
-}
-print_fail() {
-    echo -e "${RED}❌ $1${NC}"
-}
-print_info() {
-    echo -e "${YELLOW}$1${NC}"
-}
-# Simple cleanup tracking
-declare -a TEST_USERS_CREATED=()
-register_test_user() {
-    local user_email=$1
-    TEST_USERS_CREATED+=("$user_email")
-}
-echo "🧪 Testing Better Auth v2..."
-# Use configuration from test-config.sh
-API_BASE="$TEST_API_BASE"
-BETTER_AUTH_BASE="${API_BASE}/auth/v2"
-ADMIN_TOKEN=""
-USER_TOKEN=""
-# Test function
-# $1: method, $2: endpoint, $3: data, $4: description, $5: expected status (optional)
-test_endpoint() {
-    local method=$1
-    local endpoint=$2
-    local data=$3
-    local description=$4
-    local expected_status=${5:-200}
-    local token=${6:-""}
-    print_info "Test: $description"
-    local response
-    if [ "$method" = "GET" ]; then
-        if [ -n "$token" ]; then
-            response=$(curl -s -w "\n%{http_code}" -X GET "$endpoint" \
-                -H "Content-Type: application/json" \
-                -H "Authorization: Bearer $token")
-        else
-            response=$(curl -s -w "\n%{http_code}" -X GET "$endpoint" \
-                -H "Content-Type: application/json")
-        fi
-    elif [ "$method" = "POST" ]; then
-        if [ -n "$token" ]; then
-            response=$(curl -s -w "\n%{http_code}" -X POST "$endpoint" \
-                -H "Content-Type: application/json" \
-                -H "Authorization: Bearer $token" \
-                -d "$data")
-        else
-            response=$(curl -s -w "\n%{http_code}" -X POST "$endpoint" \
-                -H "Content-Type: application/json" \
-                -d "$data")
-        fi
-    elif [ "$method" = "DELETE" ]; then
-        if [ -n "$token" ]; then
-            response=$(curl -s -w "\n%{http_code}" -X DELETE "$endpoint" \
-                -H "Content-Type: application/json" \
-                -H "Authorization: Bearer $token")
-        else
-            response=$(curl -s -w "\n%{http_code}" -X DELETE "$endpoint" \
-                -H "Content-Type: application/json")
-        fi
-    fi
-    # Split response into body and status code
-    # Use sed instead of head -n -1 for better compatibility
-    body=$(echo "$response" | sed '$d')
-    status=$(echo "$response" | tail -n 1)
-    if [ "$status" = "$expected_status" ]; then
-        print_success "Success ($status)"
-        if [ -n "$body" ]; then
-            echo "Response: $body" | head -c 200
-            echo ""
-        fi
-    else
-        print_fail "Failed - Expected $expected_status, got $status"
-        echo "Error: $body"
-    fi
-    echo ""
-}
-echo "=== Admin Authentication Tests ==="
-echo ""
-# 1. Test admin sign-in with correct credentials
-print_info "1. Admin sign-in with correct credentials"
-admin_response=$(curl -s -X POST "$BETTER_AUTH_BASE/admin/sign-in" \
-    -H "Content-Type: application/json" \
-    -d "{\"email\":\"$TEST_ADMIN_EMAIL\",\"password\":\"$TEST_ADMIN_PASSWORD\"}")
-if echo "$admin_response" | grep -q '"token"'; then
-    print_success "Admin sign-in successful"
-    ADMIN_TOKEN=$(echo "$admin_response" | grep -o '"token":"[^"]*"' | cut -d'"' -f4)
-    admin_user=$(echo "$admin_response" | grep -o '"user":{[^}]*}' || echo "")
-    echo "Admin info: $admin_user"
-else
-    print_fail "Admin sign-in failed"
-    echo "Response: $admin_response"
-fi
-echo ""
-# 2. Test admin sign-in with wrong password
-test_endpoint "POST" "$BETTER_AUTH_BASE/admin/sign-in" \
-    "{\"email\":\"$TEST_ADMIN_EMAIL\",\"password\":\"wrong-password\"}" \
-    "Admin sign-in with wrong password (should fail)" \
-    "401"
-# 3. Test admin sign-in with non-admin email
-test_endpoint "POST" "$BETTER_AUTH_BASE/admin/sign-in" \
-    "{\"email\":\"notadmin@example.com\",\"password\":\"$TEST_ADMIN_PASSWORD\"}" \
-    "Admin sign-in with non-admin email (should fail)" \
-    "403"
-# 4. Test admin register (should fail - already exists)
-test_endpoint "POST" "$BETTER_AUTH_BASE/admin/register" \
-    "{\"email\":\"$TEST_ADMIN_EMAIL\",\"password\":\"$TEST_ADMIN_PASSWORD\",\"name\":\"Admin\"}" \
-    "Admin register when already exists (should fail)" \
-    "409"
-echo "=== Regular User Registration Tests ==="
-echo ""
-# 5. Register a regular user
-USER_EMAIL="${TEST_USER_EMAIL_PREFIX}betterauth_$(date +%s)@example.com"
-USER_PASS="testpass123"
-USER_NAME="Better Auth Test User"
-register_test_user "$USER_EMAIL"
-print_info "5. Registering new user: $USER_EMAIL"
-register_response=$(curl -s -X POST "$BETTER_AUTH_BASE/sign-up/email" \
-    -H "Content-Type: application/json" \
-    -d "{\"email\":\"$USER_EMAIL\",\"password\":\"$USER_PASS\",\"name\":\"$USER_NAME\"}")
-if echo "$register_response" | grep -q '"user"'; then
-    print_success "User registration successful"
-    user_info=$(echo "$register_response" | grep -o '"user":{[^}]*}' || echo "")
-    echo "User info: $user_info"
-else
-    print_fail "User registration failed"
-    echo "Response: $register_response"
-fi
-echo ""
-# 6. Sign in as regular user
-print_info "6. Sign in as regular user"
-signin_response=$(curl -s -X POST "$BETTER_AUTH_BASE/sign-in/email" \
-    -H "Content-Type: application/json" \
-    -d "{\"email\":\"$USER_EMAIL\",\"password\":\"$USER_PASS\"}")
-if echo "$signin_response" | grep -q '"token"'; then
-    print_success "User sign-in successful"
-    USER_TOKEN=$(echo "$signin_response" | grep -o '"token":"[^"]*"' | cut -d'"' -f4)
-else
-    print_fail "User sign-in failed"
-    echo "Response: $signin_response"
-fi
-echo ""
-# 7. Test duplicate registration
-test_endpoint "POST" "$BETTER_AUTH_BASE/sign-up/email" \
-    "{\"email\":\"$USER_EMAIL\",\"password\":\"$USER_PASS\",\"name\":\"Duplicate\"}" \
-    "Duplicate user registration (should fail)" \
-    "422"
-echo "=== Admin User Management Tests ==="
-echo ""
-# 8. List users with admin token
-print_info "8. List all users (admin only)"
-if [ -n "$ADMIN_TOKEN" ]; then
-    users_response=$(curl -s -X GET "$BETTER_AUTH_BASE/admin/users" \
-        -H "Authorization: Bearer $ADMIN_TOKEN")
-    if echo "$users_response" | grep -q '"users"'; then
-        print_success "List users successful"
-        user_count=$(echo "$users_response" | grep -o '"total":[0-9]*' | cut -d':' -f2 || echo "0")
-        echo "Total non-admin users: $user_count"
-        # Verify admin is not in the list
-        if echo "$users_response" | grep -q "$TEST_ADMIN_EMAIL"; then
-            print_fail "Admin user should not be in regular user list!"
-        else
-            print_success "Admin correctly excluded from user list"
-        fi
-    else
-        print_fail "List users failed"
-        echo "Response: $users_response"
-    fi
-else
-    print_fail "No admin token available"
-fi
-echo ""
-# 9. List users with pagination
-test_endpoint "GET" "$BETTER_AUTH_BASE/admin/users?limit=5&offset=0" \
-    "" \
-    "List users with pagination (limit=5)" \
-    "200" \
-    "$ADMIN_TOKEN"
-# 10. Try to access admin endpoint without token
-test_endpoint "GET" "$BETTER_AUTH_BASE/admin/users" \
-    "" \
-    "Access admin endpoint without token (should fail)" \
-    "401"
-# 11. Try to access admin endpoint with regular user token
-if [ -n "$USER_TOKEN" ]; then
-    test_endpoint "GET" "$BETTER_AUTH_BASE/admin/users" \
-        "" \
-        "Access admin endpoint with regular user token (should fail)" \
-        "401" \
-        "$USER_TOKEN"
-fi
-echo "=== Token Verification Tests ==="
-echo ""
-# 12. Verify admin JWT claims
-if [ -n "$ADMIN_TOKEN" ]; then
-    print_info "12. Verifying admin JWT claims"
-    # Decode JWT payload (base64 decode the middle part)
-    payload=$(echo "$ADMIN_TOKEN" | cut -d'.' -f2 | base64 -d 2>/dev/null || echo "")
-    if echo "$payload" | grep -q '"role":"project_admin"'; then
-        print_success "Admin token has correct role claim"
-    else
-        print_fail "Admin token missing project_admin role"
-    fi
-    if echo "$payload" | grep -q '"type":"admin"'; then
-        print_success "Admin token has correct type claim"
-    else
-        print_fail "Admin token missing admin type"
-    fi
-fi
-# 13. Note about regular user tokens
-if [ -n "$USER_TOKEN" ]; then
-    print_info "13. Regular user tokens"
-    print_success "Regular users receive session tokens (not JWTs)"
-    echo "Token format: $USER_TOKEN" | cut -c1-50
-    echo "..."
-fi
-echo ""
-echo "=== Additional Better Auth Tests ==="
-echo ""
-# 17. Test error handling
-test_endpoint "POST" "$BETTER_AUTH_BASE/sign-in/email" \
-    "{\"email\":\"invalid-email\",\"password\":\"pass\"}" \
-    "Sign in with invalid email format" \
-    "400"
-test_endpoint "POST" "$BETTER_AUTH_BASE/sign-up/email" \
-    "{\"email\":\"test@example.com\"}" \
-    "Register without password" \
-    "500"
-echo ""
-print_success "🎉 Better Auth test completed!"
-# Simple cleanup
-if [ ${#TEST_USERS_CREATED[@]} -gt 0 ]; then
-    print_info "Test users created: ${#TEST_USERS_CREATED[@]}"
-    print_info "Manual cleanup may be required for test users"
-fi
-echo ""
-print_info "Test completed!"

package/docker-init/db/logs.sql DELETED Viewed

@@ -1,9 +0,0 @@
-\set pguser `echo "$POSTGRES_USER"`
-CREATE DATABASE _insforge WITH OWNER :pguser;
-\c _insforge
-create schema if not exists _analytics;
-alter schema _analytics owner to :pguser;
-\c insforge

package/frontend/README.md DELETED Viewed

@@ -1,112 +0,0 @@
-# Insforge Dashboard
-A React-based admin dashboard for managing Insforge projects and databases.
-## Features
-- **Dashboard Overview**: System statistics and project overview
-- **Project Management**: Create, view, and delete projects
-- **Database Viewer**: Browse tables, schemas, and data
-- **API Key Management**: Copy and manage project API keys
-- **User Authentication**: Secure admin login
-## Development
-```bash
-# Install dependencies
-npm install
-# Start development server (runs on port 7131)
-npm run dev
-# Build for production
-npm run build
-```
-## Built With
-- **React 18** - UI Framework
-- **TypeScript** - Type safety
-- **Tailwind CSS** - Styling
-- **Vite** - Build tool
-- **React Router** - Navigation
-- **Lucide React** - Icons
-## API Integration
-The dashboard communicates with the Insforge backend via REST API:
-### Authentication
-- `POST /api/auth/register` - User registration
-- `POST /api/auth/login` - User login (email/password)
-- `GET /api/auth/me` - Get current user info
-- `GET /api/auth/users` - List all users (admin only)
-### Database Management
-- `GET /api/database/tables` - List all tables
-- `POST /api/database/tables` - Create new table with schema
-- `DELETE /api/database/tables/:tablename` - Delete table
-- `GET /api/database/tables/:tablename/schema` - Get table schema
-- `PATCH /api/database/tables/:tablename/schema` - Modify table schema
-### Record Operations
-- `GET /api/database/records/:tablename` - Query records (supports pagination)
-- `POST /api/database/records/:tablename` - Insert records
-- `PATCH /api/database/records/:tablename?id=eq.:id` - Update specific record
-- `DELETE /api/database/records/:tablename?id=eq.:id` - Delete specific record
-### Storage
-- `GET /api/storage/buckets` - List all buckets
-- `POST /api/storage/buckets` - Create new bucket
-- `PATCH /api/storage/buckets/:bucketName` - Update bucket
-- `DELETE /api/storage/buckets/:bucketName` - Delete bucket
-- `GET /api/storage/buckets/:bucketName/objects` - List objects in bucket
-- `PUT /api/storage/buckets/:bucketName/objects/:objectKey` - Upload object with specific key
-- `POST /api/storage/buckets/:bucketName/objects` - Upload object with auto-generated key
-- `GET /api/storage/buckets/:bucketName/objects/:objectKey` - Download object
-- `DELETE /api/storage/buckets/:bucketName/objects/:objectKey` - Delete object
-### Metadata & Logs
-- `GET /api/metadata` - Get system metadata and statistics
-- `GET /api/logs` - Get activity logs (admin only)
-## Project Structure
-```
-frontend/
-├── src/
-│   ├── components/        # Reusable UI components
-│   │   ├── layout/       # Layout components
-│   │   └── table/        # Table components
-│   ├── features/         # Feature modules
-│   │   ├── auth/         # Authentication (login, users)
-│   │   ├── dashboard/    # Dashboard & metadata
-│   │   ├── database/     # Database management
-│   │   ├── logs/         # Activity logs
-│   │   └── storage/      # File storage
-│   ├── lib/              # Utilities and API client
-│   │   └── api/          # API client configuration
-│   ├── types/            # TypeScript type definitions
-│   ├── App.tsx           # Main app component
-│   └── main.tsx          # Entry point
-├── public/               # Static assets
-├── index.html            # HTML template
-├── vite.config.ts        # Vite configuration
-└── package.json          # Dependencies
-```
-## Usage
-1. Start the Insforge backend server
-2. Navigate to `http://localhost:7130` in your browser (production) or `http://localhost:7131` (development)
-3. Login with your admin credentials (from .env file)
-4. Create tables and manage data
-### Key Features
-- **Table Management**: Create tables with explicit schemas defining column types
-- **Data Types**: Support for string, integer, float, boolean, datetime, json, uuid, and file types
-- **Auto-generated Fields**: Every table gets id, created_at, and updated_at fields
-- **Record Management**: Full CRUD operations with pagination support
-- **API Key**: Single API key for all database operations (displayed in dashboard)
-The dashboard is automatically served by the backend when you access the root URL.

package/frontend/src/components/datagrid/index.tsx DELETED Viewed

@@ -1,20 +0,0 @@
-export type {
-  Column,
-  SortColumn,
-  RenderCellProps,
-  RenderEditCellProps,
-  RenderHeaderCellProps,
-  CellClickArgs,
-  CellMouseEvent,
-} from 'react-data-grid';
-export * from './datagridTypes';
-import IdCell from './IdCell';
-import SortableHeaderRenderer from './SortableHeader';
-import { createDefaultCellRenderer } from './DefaultCellRenderer';
-import DataGrid, { type DataGridProps } from './DataGrid';
-export { IdCell, SortableHeaderRenderer, DataGrid, type DataGridProps, createDefaultCellRenderer };
-// Export cell editors
-export * from './cell-editors';

package/frontend/src/components/layout/CloudLayout.tsx DELETED Viewed

@@ -1,95 +0,0 @@
-import { useEffect } from 'react';
-import { useNavigate, useLocation } from 'react-router-dom';
-import { ThemeProvider } from '@/lib/contexts/ThemeContext';
-import { cn } from '@/lib/utils/utils';
-import { ServerEvents, useSocket } from '@/lib/contexts/SocketContext';
-interface CloudLayoutProps {
-  children: React.ReactNode;
-}
-interface RouterMessage {
-  type: 'ROUTE_CHANGE' | 'REFRESH';
-  path: string;
-}
-export default function CloudLayout({ children }: CloudLayoutProps) {
-  const navigate = useNavigate();
-  const location = useLocation();
-  const { socket } = useSocket();
-  useEffect(() => {
-    const handleCloudMessage = (event: MessageEvent) => {
-      try {
-        const message = event.data as RouterMessage;
-        if (message.type === 'ROUTE_CHANGE' && message.path) {
-          // Navigate to the corresponding cloud route
-          void navigate(message.path);
-        } else if (message.type === 'REFRESH') {
-          window.location.reload();
-        }
-      } catch (error) {
-        console.error('Error handling router message:', error);
-      }
-    };
-    // Add event listener for messages from parent window
-    window.addEventListener('message', handleCloudMessage);
-    // Cleanup listener on unmount
-    return () => {
-      window.removeEventListener('message', handleCloudMessage);
-    };
-  }, [navigate]);
-  useEffect(() => {
-    // Only send messages if we're in an iframe (not the main window)
-    if (window.parent !== window) {
-      // Send the current route to the parent cloud application
-      window.parent.postMessage(
-        {
-          type: 'APP_ROUTE_CHANGE',
-          path: location.pathname,
-        },
-        '*'
-      );
-    }
-  }, [location.pathname]);
-  // Listen for MCP connection events and forward to parent
-  useEffect(() => {
-    if (!socket || window.parent === window) {
-      return;
-    }
-    const handleMcpConnected = () => {
-      window.parent.postMessage(
-        {
-          type: 'MCP_CONNECTION_STATUS',
-          connected: true,
-        },
-        '*'
-      );
-    };
-    socket.on(ServerEvents.MCP_CONNECTED, handleMcpConnected);
-    return () => {
-      socket.off(ServerEvents.MCP_CONNECTED, handleMcpConnected);
-    };
-  }, [socket]);
-  return (
-    <ThemeProvider forcedTheme="dark">
-      <div
-        className={cn(
-          'h-screen bg-neutral-800',
-          location.pathname !== '/cloud/visualizer' && 'pt-13 pl-13'
-        )}
-      >
-        {children}
-      </div>
-    </ThemeProvider>
-  );
-}