mcp-twin 1.2.0 → 1.4.0

package/dist/cloud/routes/auth.js

@@ -0,0 +1,291 @@
+"use strict";
+/**
+ * Auth Routes
+ * MCP Twin Cloud
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+const express_1 = require("express");
+const db_1 = require("../db");
+const auth_1 = require("../auth");
+const router = (0, express_1.Router)();
+/**
+ * POST /api/auth/signup
+ * Create a new account
+ */
+router.post('/signup', async (req, res) => {
+    try {
+        const { email, password } = req.body;
+        // Validate input
+        if (!email || !password) {
+            res.status(400).json({
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: 'Email and password are required',
+                },
+            });
+            return;
+        }
+        if (password.length < 8) {
+            res.status(400).json({
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: 'Password must be at least 8 characters',
+                },
+            });
+            return;
+        }
+        // Check if user exists
+        const existing = await (0, db_1.queryOne)('SELECT id FROM users WHERE email = $1', [email.toLowerCase()]);
+        if (existing) {
+            res.status(409).json({
+                error: {
+                    code: 'USER_EXISTS',
+                    message: 'An account with this email already exists',
+                },
+            });
+            return;
+        }
+        // Create user
+        const passwordHash = await (0, auth_1.hashPassword)(password);
+        const users = await (0, db_1.query)(`INSERT INTO users (email, password_hash)
+       VALUES ($1, $2)
+       RETURNING id, email, tier, created_at`, [email.toLowerCase(), passwordHash]);
+        const user = users[0];
+        // Generate initial API key
+        const { key, hash, prefix } = await (0, auth_1.generateApiKey)();
+        await (0, db_1.query)(`INSERT INTO api_keys (user_id, key_hash, key_prefix, name)
+       VALUES ($1, $2, $3, $4)`, [user.id, hash, prefix, 'Default API Key']);
+        // Generate session token
+        const sessionToken = (0, auth_1.generateSessionToken)({
+            id: user.id,
+            email: user.email,
+            tier: user.tier,
+        });
+        res.status(201).json({
+            message: 'Account created successfully',
+            user: {
+                id: user.id,
+                email: user.email,
+                tier: user.tier,
+            },
+            apiKey: key,
+            sessionToken,
+        });
+    }
+    catch (error) {
+        console.error('[Auth] Signup error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Failed to create account',
+            },
+        });
+    }
+});
+/**
+ * POST /api/auth/login
+ * Login and get session token
+ */
+router.post('/login', async (req, res) => {
+    try {
+        const { email, password } = req.body;
+        if (!email || !password) {
+            res.status(400).json({
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: 'Email and password are required',
+                },
+            });
+            return;
+        }
+        // Find user
+        const user = await (0, db_1.queryOne)('SELECT * FROM users WHERE email = $1', [email.toLowerCase()]);
+        if (!user) {
+            res.status(401).json({
+                error: {
+                    code: 'INVALID_CREDENTIALS',
+                    message: 'Invalid email or password',
+                },
+            });
+            return;
+        }
+        // Verify password
+        const valid = await (0, auth_1.verifyPassword)(password, user.password_hash);
+        if (!valid) {
+            res.status(401).json({
+                error: {
+                    code: 'INVALID_CREDENTIALS',
+                    message: 'Invalid email or password',
+                },
+            });
+            return;
+        }
+        // Generate session token
+        const sessionToken = (0, auth_1.generateSessionToken)({
+            id: user.id,
+            email: user.email,
+            tier: user.tier,
+        });
+        res.json({
+            message: 'Login successful',
+            user: {
+                id: user.id,
+                email: user.email,
+                tier: user.tier,
+            },
+            sessionToken,
+            expiresIn: '7d',
+        });
+    }
+    catch (error) {
+        console.error('[Auth] Login error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Login failed',
+            },
+        });
+    }
+});
+/**
+ * GET /api/auth/me
+ * Get current user info
+ */
+router.get('/me', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        const user = await (0, db_1.queryOne)('SELECT id, email, tier, stripe_customer_id, created_at FROM users WHERE id = $1', [req.user.id]);
+        if (!user) {
+            res.status(404).json({
+                error: {
+                    code: 'NOT_FOUND',
+                    message: 'User not found',
+                },
+            });
+            return;
+        }
+        // Get API key count
+        const apiKeys = await (0, db_1.query)('SELECT COUNT(*) as count FROM api_keys WHERE user_id = $1 AND revoked_at IS NULL', [user.id]);
+        // Get twin count
+        const twins = await (0, db_1.query)('SELECT COUNT(*) as count FROM twins WHERE user_id = $1', [user.id]);
+        res.json({
+            user: {
+                id: user.id,
+                email: user.email,
+                tier: user.tier,
+                createdAt: user.created_at,
+            },
+            stats: {
+                apiKeys: parseInt(apiKeys[0]?.count || '0'),
+                twins: parseInt(twins[0]?.count || '0'),
+            },
+        });
+    }
+    catch (error) {
+        console.error('[Auth] Get me error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Failed to get user info',
+            },
+        });
+    }
+});
+/**
+ * POST /api/auth/api-keys
+ * Create a new API key
+ */
+router.post('/api-keys', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        const { name } = req.body;
+        // Generate new key
+        const { key, hash, prefix } = await (0, auth_1.generateApiKey)();
+        const keys = await (0, db_1.query)(`INSERT INTO api_keys (user_id, key_hash, key_prefix, name)
+       VALUES ($1, $2, $3, $4)
+       RETURNING id, key_prefix, name, created_at`, [req.user.id, hash, prefix, name || 'API Key']);
+        res.status(201).json({
+            message: 'API key created',
+            apiKey: {
+                id: keys[0].id,
+                key, // Only returned once at creation
+                prefix: keys[0].key_prefix,
+                name: keys[0].name,
+                createdAt: keys[0].created_at,
+            },
+        });
+    }
+    catch (error) {
+        console.error('[Auth] Create API key error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Failed to create API key',
+            },
+        });
+    }
+});
+/**
+ * GET /api/auth/api-keys
+ * List user's API keys
+ */
+router.get('/api-keys', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        const keys = await (0, db_1.query)(`SELECT id, key_prefix, name, last_used_at, created_at
+       FROM api_keys
+       WHERE user_id = $1 AND revoked_at IS NULL
+       ORDER BY created_at DESC`, [req.user.id]);
+        res.json({
+            apiKeys: keys.map((k) => ({
+                id: k.id,
+                prefix: k.key_prefix,
+                name: k.name,
+                lastUsedAt: k.last_used_at,
+                createdAt: k.created_at,
+            })),
+        });
+    }
+    catch (error) {
+        console.error('[Auth] List API keys error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Failed to list API keys',
+            },
+        });
+    }
+});
+/**
+ * DELETE /api/auth/api-keys/:id
+ * Revoke an API key
+ */
+router.delete('/api-keys/:id', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        const { id } = req.params;
+        const result = await (0, db_1.query)(`UPDATE api_keys
+       SET revoked_at = NOW()
+       WHERE id = $1 AND user_id = $2 AND revoked_at IS NULL
+       RETURNING id`, [id, req.user.id]);
+        if (result.length === 0) {
+            res.status(404).json({
+                error: {
+                    code: 'NOT_FOUND',
+                    message: 'API key not found',
+                },
+            });
+            return;
+        }
+        res.json({
+            message: 'API key revoked',
+        });
+    }
+    catch (error) {
+        console.error('[Auth] Revoke API key error:', error);
+        res.status(500).json({
+            error: {
+                code: 'INTERNAL_ERROR',
+                message: 'Failed to revoke API key',
+            },
+        });
+    }
+});
+exports.default = router;
+//# sourceMappingURL=auth.js.map

package/dist/cloud/routes/auth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../src/cloud/routes/auth.ts"],"names":[],"mappings":";AAAA;;;GAGG;;AAEH,qCAAoD;AACpD,8BAAwC;AACxC,kCAQiB;AAEjB,MAAM,MAAM,GAAG,IAAA,gBAAM,GAAE,CAAC;AAExB;;;GAGG;AACH,MAAM,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC3D,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAErC,iBAAiB;QACjB,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,kBAAkB;oBACxB,OAAO,EAAE,iCAAiC;iBAC3C;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,kBAAkB;oBACxB,OAAO,EAAE,wCAAwC;iBAClD;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,uBAAuB;QACvB,MAAM,QAAQ,GAAG,MAAM,IAAA,aAAQ,EAC7B,uCAAuC,EACvC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CACtB,CAAC;QAEF,IAAI,QAAQ,EAAE,CAAC;YACb,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,aAAa;oBACnB,OAAO,EAAE,2CAA2C;iBACrD;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,cAAc;QACd,MAAM,YAAY,GAAG,MAAM,IAAA,mBAAY,EAAC,QAAQ,CAAC,CAAC;QAClD,MAAM,KAAK,GAAG,MAAM,IAAA,UAAK,EACvB;;6CAEuC,EACvC,CAAC,KAAK,CAAC,WAAW,EAAE,EAAE,YAAY,CAAC,CACpC,CAAC;QAEF,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QAEtB,2BAA2B;QAC3B,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,IAAA,qBAAc,GAAE,CAAC;QACrD,MAAM,IAAA,UAAK,EACT;+BACyB,EACzB,CAAC,IAAI,CAAC,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,iBAAiB,CAAC,CAC3C,CAAC;QAEF,yBAAyB;QACzB,MAAM,YAAY,GAAG,IAAA,2BAAoB,EAAC;YACxC,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,IAAI,CAAC,IAAI;SAChB,CAAC,CAAC;QAEH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,8BAA8B;YACvC,IAAI,EAAE;gBACJ,EAAE,EAAE,IAAI,CAAC,EAAE;gBACX,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;aAChB;YACD,MAAM,EAAE,GAAG;YACX,YAAY;SACb,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;QAC7C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,0BAA0B;aACpC;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC1D,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAErC,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,kBAAkB;oBACxB,OAAO,EAAE,iCAAiC;iBAC3C;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,YAAY;QACZ,MAAM,IAAI,GAAG,MAAM,IAAA,aAAQ,EACzB,sCAAsC,EACtC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,CACtB,CAAC;QAEF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,qBAAqB;oBAC3B,OAAO,EAAE,2BAA2B;iBACrC;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,kBAAkB;QAClB,MAAM,KAAK,GAAG,MAAM,IAAA,qBAAc,EAAC,QAAQ,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC;QACjE,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,qBAAqB;oBAC3B,OAAO,EAAE,2BAA2B;iBACrC;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,yBAAyB;QACzB,MAAM,YAAY,GAAG,IAAA,2BAAoB,EAAC;YACxC,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,KAAK,EAAE,IAAI,CAAC,KAAK;YACjB,IAAI,EAAE,IAAI,CAAC,IAAI;SAChB,CAAC,CAAC;QAEH,GAAG,CAAC,IAAI,CAAC;YACP,OAAO,EAAE,kBAAkB;YAC3B,IAAI,EAAE;gBACJ,EAAE,EAAE,IAAI,CAAC,EAAE;gBACX,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;aAChB;YACD,YAAY;YACZ,SAAS,EAAE,IAAI;SAChB,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,qBAAqB,EAAE,KAAK,CAAC,CAAC;QAC5C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,cAAc;aACxB;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,GAAG,CAAC,KAAK,EAAE,yBAAkB,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAC1E,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,IAAA,aAAQ,EACzB,iFAAiF,EACjF,CAAC,GAAG,CAAC,IAAK,CAAC,EAAE,CAAC,CACf,CAAC;QAEF,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,WAAW;oBACjB,OAAO,EAAE,gBAAgB;iBAC1B;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,oBAAoB;QACpB,MAAM,OAAO,GAAG,MAAM,IAAA,UAAK,EACzB,kFAAkF,EAClF,CAAC,IAAI,CAAC,EAAE,CAAC,CACV,CAAC;QAEF,iBAAiB;QACjB,MAAM,KAAK,GAAG,MAAM,IAAA,UAAK,EACvB,wDAAwD,EACxD,CAAC,IAAI,CAAC,EAAE,CAAC,CACV,CAAC;QAEF,GAAG,CAAC,IAAI,CAAC;YACP,IAAI,EAAE;gBACJ,EAAE,EAAE,IAAI,CAAC,EAAE;gBACX,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,SAAS,EAAE,IAAI,CAAC,UAAU;aAC3B;YACD,KAAK,EAAE;gBACL,OAAO,EAAE,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,GAAG,CAAC;gBAC3C,KAAK,EAAE,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,GAAG,CAAC;aACxC;SACF,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;QAC7C,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,yBAAyB;aACnC;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,IAAI,CAAC,WAAW,EAAE,yBAAkB,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IACjF,IAAI,CAAC;QACH,MAAM,EAAE,IAAI,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC;QAE1B,mBAAmB;QACnB,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,IAAA,qBAAc,GAAE,CAAC;QAErD,MAAM,IAAI,GAAG,MAAM,IAAA,UAAK,EACtB;;kDAE4C,EAC5C,CAAC,GAAG,CAAC,IAAK,CAAC,EAAE,EAAE,IAAI,EAAE,MAAM,EAAE,IAAI,IAAI,SAAS,CAAC,CAChD,CAAC;QAEF,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,iBAAiB;YAC1B,MAAM,EAAE;gBACN,EAAE,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE;gBACd,GAAG,EAAE,iCAAiC;gBACtC,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,UAAU;gBAC1B,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI;gBAClB,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,CAAC,UAAU;aAC9B;SACF,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,8BAA8B,EAAE,KAAK,CAAC,CAAC;QACrD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,0BAA0B;aACpC;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,GAAG,CAAC,WAAW,EAAE,yBAAkB,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IAChF,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,IAAA,UAAK,EACtB;;;gCAG0B,EAC1B,CAAC,GAAG,CAAC,IAAK,CAAC,EAAE,CAAC,CACf,CAAC;QAEF,GAAG,CAAC,IAAI,CAAC;YACP,OAAO,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;gBACxB,EAAE,EAAE,CAAC,CAAC,EAAE;gBACR,MAAM,EAAE,CAAC,CAAC,UAAU;gBACpB,IAAI,EAAE,CAAC,CAAC,IAAI;gBACZ,UAAU,EAAE,CAAC,CAAC,YAAY;gBAC1B,SAAS,EAAE,CAAC,CAAC,UAAU;aACxB,CAAC,CAAC;SACJ,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,6BAA6B,EAAE,KAAK,CAAC,CAAC;QACpD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,yBAAyB;aACnC;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH;;;GAGG;AACH,MAAM,CAAC,MAAM,CAAC,eAAe,EAAE,yBAAkB,EAAE,KAAK,EAAE,GAAY,EAAE,GAAa,EAAE,EAAE;IACvF,IAAI,CAAC;QACH,MAAM,EAAE,EAAE,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC;QAE1B,MAAM,MAAM,GAAG,MAAM,IAAA,UAAK,EACxB;;;oBAGc,EACd,CAAC,EAAE,EAAE,GAAG,CAAC,IAAK,CAAC,EAAE,CAAC,CACnB,CAAC;QAEF,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;gBACnB,KAAK,EAAE;oBACL,IAAI,EAAE,WAAW;oBACjB,OAAO,EAAE,mBAAmB;iBAC7B;aACF,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,GAAG,CAAC,IAAI,CAAC;YACP,OAAO,EAAE,iBAAiB;SAC3B,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,OAAO,CAAC,KAAK,CAAC,8BAA8B,EAAE,KAAK,CAAC,CAAC;QACrD,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;YACnB,KAAK,EAAE;gBACL,IAAI,EAAE,gBAAgB;gBACtB,OAAO,EAAE,0BAA0B;aACpC;SACF,CAAC,CAAC;IACL,CAAC;AACH,CAAC,CAAC,CAAC;AAEH,kBAAe,MAAM,CAAC"}

package/dist/cloud/routes/billing.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Billing Routes
+ * MCP Twin Cloud
+ */
+declare const router: import("express-serve-static-core").Router;
+export default router;
+//# sourceMappingURL=billing.d.ts.map

package/dist/cloud/routes/billing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"billing.d.ts","sourceRoot":"","sources":["../../../src/cloud/routes/billing.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAgBH,QAAA,MAAM,MAAM,4CAAW,CAAC;AAwbxB,eAAe,MAAM,CAAC"}

package/dist/cloud/routes/billing.js

@@ -0,0 +1,368 @@
+"use strict";
+/**
+ * Billing Routes
+ * MCP Twin Cloud
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+const express_1 = require("express");
+const db_1 = require("../db");
+const auth_1 = require("../auth");
+const stripe_1 = require("../stripe");
+const router = (0, express_1.Router)();
+/**
+ * GET /api/billing/status
+ * Get billing status and current plan
+ */
+router.get('/status', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        if (!(0, stripe_1.isStripeConfigured)()) {
+            res.json({
+                configured: false,
+                message: 'Stripe is not configured. Set STRIPE_SECRET_KEY to enable billing.',
+            });
+            return;
+        }
+        const user = await (0, db_1.queryOne)('SELECT id, email, tier, stripe_customer_id, stripe_subscription_id FROM users WHERE id = $1', [req.user.id]);
+        if (!user) {
+            res.status(404).json({
+                error: { code: 'NOT_FOUND', message: 'User not found' },
+            });
+            return;
+        }
+        res.json({
+            configured: true,
+            tier: user.tier,
+            hasSubscription: !!user.stripe_subscription_id,
+            customerId: user.stripe_customer_id ? `cus_...${user.stripe_customer_id.slice(-4)}` : null,
+        });
+    }
+    catch (error) {
+        console.error('[Billing] Status error:', error);
+        res.status(500).json({
+            error: { code: 'INTERNAL_ERROR', message: 'Failed to get billing status' },
+        });
+    }
+});
+/**
+ * GET /api/billing/plans
+ * Get available plans
+ */
+router.get('/plans', async (req, res) => {
+    res.json({
+        plans: [
+            {
+                id: 'free',
+                name: 'Free',
+                price: 0,
+                interval: null,
+                features: [
+                    '1 twin',
+                    '10,000 requests/month',
+                    '24-hour log retention',
+                    'Community support',
+                ],
+            },
+            {
+                id: 'starter',
+                name: 'Starter',
+                price: 29,
+                interval: 'month',
+                priceId: stripe_1.TIER_TO_PRICE.starter,
+                features: [
+                    '5 twins',
+                    '100,000 requests/month',
+                    '7-day log retention',
+                    'Email support',
+                ],
+            },
+            {
+                id: 'pro',
+                name: 'Professional',
+                price: 149,
+                interval: 'month',
+                priceId: stripe_1.TIER_TO_PRICE.pro,
+                features: [
+                    'Unlimited twins',
+                    '1,000,000 requests/month',
+                    '30-day log retention',
+                    'Priority support',
+                    'Custom integrations',
+                ],
+            },
+            {
+                id: 'enterprise',
+                name: 'Enterprise',
+                price: null,
+                interval: null,
+                features: [
+                    'Unlimited everything',
+                    '90-day log retention',
+                    'Dedicated support',
+                    'SLA guarantee',
+                    'SSO/SAML',
+                    'Custom contracts',
+                ],
+                contactSales: true,
+            },
+        ],
+    });
+});
+/**
+ * POST /api/billing/checkout
+ * Create a Stripe checkout session
+ */
+router.post('/checkout', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        if (!(0, stripe_1.isStripeConfigured)()) {
+            res.status(400).json({
+                error: {
+                    code: 'STRIPE_NOT_CONFIGURED',
+                    message: 'Stripe is not configured',
+                },
+            });
+            return;
+        }
+        const { plan, successUrl, cancelUrl } = req.body;
+        if (!plan || !successUrl || !cancelUrl) {
+            res.status(400).json({
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: 'plan, successUrl, and cancelUrl are required',
+                },
+            });
+            return;
+        }
+        const priceId = stripe_1.TIER_TO_PRICE[plan];
+        if (!priceId) {
+            res.status(400).json({
+                error: {
+                    code: 'INVALID_PLAN',
+                    message: `Invalid plan: ${plan}. Valid plans: starter, pro`,
+                },
+            });
+            return;
+        }
+        const user = await (0, db_1.queryOne)('SELECT id, email, stripe_customer_id FROM users WHERE id = $1', [req.user.id]);
+        if (!user) {
+            res.status(404).json({
+                error: { code: 'NOT_FOUND', message: 'User not found' },
+            });
+            return;
+        }
+        // Get or create Stripe customer
+        const customerId = await (0, stripe_1.getOrCreateCustomer)(user.id, user.email, user.stripe_customer_id);
+        // Update user with customer ID if new
+        if (!user.stripe_customer_id) {
+            await (0, db_1.query)('UPDATE users SET stripe_customer_id = $1 WHERE id = $2', [customerId, user.id]);
+        }
+        // Create checkout session
+        const session = await (0, stripe_1.createCheckoutSession)(customerId, priceId, successUrl, cancelUrl);
+        res.json({
+            sessionId: session.id,
+            url: session.url,
+        });
+    }
+    catch (error) {
+        console.error('[Billing] Checkout error:', error);
+        res.status(500).json({
+            error: { code: 'INTERNAL_ERROR', message: 'Failed to create checkout session' },
+        });
+    }
+});
+/**
+ * POST /api/billing/portal
+ * Create a Stripe billing portal session
+ */
+router.post('/portal', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        if (!(0, stripe_1.isStripeConfigured)()) {
+            res.status(400).json({
+                error: {
+                    code: 'STRIPE_NOT_CONFIGURED',
+                    message: 'Stripe is not configured',
+                },
+            });
+            return;
+        }
+        const { returnUrl } = req.body;
+        if (!returnUrl) {
+            res.status(400).json({
+                error: {
+                    code: 'VALIDATION_ERROR',
+                    message: 'returnUrl is required',
+                },
+            });
+            return;
+        }
+        const user = await (0, db_1.queryOne)('SELECT stripe_customer_id FROM users WHERE id = $1', [req.user.id]);
+        if (!user?.stripe_customer_id) {
+            res.status(400).json({
+                error: {
+                    code: 'NO_SUBSCRIPTION',
+                    message: 'No billing account found. Subscribe to a plan first.',
+                },
+            });
+            return;
+        }
+        const session = await (0, stripe_1.createPortalSession)(user.stripe_customer_id, returnUrl);
+        res.json({
+            url: session.url,
+        });
+    }
+    catch (error) {
+        console.error('[Billing] Portal error:', error);
+        res.status(500).json({
+            error: { code: 'INTERNAL_ERROR', message: 'Failed to create portal session' },
+        });
+    }
+});
+/**
+ * GET /api/billing/invoices
+ * Get user's invoices
+ */
+router.get('/invoices', auth_1.authenticateApiKey, async (req, res) => {
+    try {
+        if (!(0, stripe_1.isStripeConfigured)()) {
+            res.json({ invoices: [] });
+            return;
+        }
+        const user = await (0, db_1.queryOne)('SELECT stripe_customer_id FROM users WHERE id = $1', [req.user.id]);
+        if (!user?.stripe_customer_id) {
+            res.json({ invoices: [] });
+            return;
+        }
+        const invoices = await (0, stripe_1.getInvoices)(user.stripe_customer_id);
+        res.json({
+            invoices: invoices.map((inv) => ({
+                id: inv.id,
+                number: inv.number,
+                status: inv.status,
+                amount: inv.amount_due / 100,
+                currency: inv.currency,
+                created: new Date(inv.created * 1000).toISOString(),
+                pdfUrl: inv.invoice_pdf,
+                hostedUrl: inv.hosted_invoice_url,
+            })),
+        });
+    }
+    catch (error) {
+        console.error('[Billing] Invoices error:', error);
+        res.status(500).json({
+            error: { code: 'INTERNAL_ERROR', message: 'Failed to get invoices' },
+        });
+    }
+});
+/**
+ * POST /api/billing/webhook
+ * Handle Stripe webhooks
+ */
+router.post('/webhook', 
+// Use raw body for webhook signature verification
+async (req, res) => {
+    const webhookSecret = process.env.STRIPE_WEBHOOK_SECRET;
+    if (!webhookSecret) {
+        console.error('[Billing] STRIPE_WEBHOOK_SECRET not configured');
+        res.status(400).json({ error: 'Webhook not configured' });
+        return;
+    }
+    const signature = req.headers['stripe-signature'];
+    if (!signature) {
+        res.status(400).json({ error: 'Missing stripe-signature header' });
+        return;
+    }
+    let event;
+    try {
+        // req.body should be raw buffer for webhook verification
+        const rawBody = req.body;
+        event = (0, stripe_1.constructWebhookEvent)(rawBody, signature, webhookSecret);
+    }
+    catch (err) {
+        console.error('[Billing] Webhook signature verification failed:', err.message);
+        res.status(400).json({ error: `Webhook Error: ${err.message}` });
+        return;
+    }
+    console.log(`[Billing] Webhook received: ${event.type}`);
+    try {
+        switch (event.type) {
+            case 'checkout.session.completed': {
+                const session = event.data.object;
+                await handleCheckoutComplete(session);
+                break;
+            }
+            case 'customer.subscription.created':
+            case 'customer.subscription.updated': {
+                const subscription = event.data.object;
+                await handleSubscriptionUpdate(subscription);
+                break;
+            }
+            case 'customer.subscription.deleted': {
+                const subscription = event.data.object;
+                await handleSubscriptionDeleted(subscription);
+                break;
+            }
+            case 'invoice.payment_failed': {
+                const invoice = event.data.object;
+                await handlePaymentFailed(invoice);
+                break;
+            }
+            default:
+                console.log(`[Billing] Unhandled event type: ${event.type}`);
+        }
+        res.json({ received: true });
+    }
+    catch (error) {
+        console.error('[Billing] Webhook handler error:', error);
+        res.status(500).json({ error: 'Webhook handler failed' });
+    }
+});
+/**
+ * Handle checkout.session.completed
+ */
+async function handleCheckoutComplete(session) {
+    const customerId = session.customer;
+    const subscriptionId = session.subscription;
+    console.log(`[Billing] Checkout complete for customer ${customerId}`);
+    // Update user with subscription ID
+    await (0, db_1.query)(`UPDATE users
+     SET stripe_subscription_id = $1, updated_at = NOW()
+     WHERE stripe_customer_id = $2`, [subscriptionId, customerId]);
+}
+/**
+ * Handle subscription created/updated
+ */
+async function handleSubscriptionUpdate(subscription) {
+    const customerId = subscription.customer;
+    const status = subscription.status;
+    const priceId = subscription.items.data[0]?.price?.id;
+    console.log(`[Billing] Subscription update: ${customerId} -> ${status} (${priceId})`);
+    if (status === 'active' || status === 'trialing') {
+        // Determine tier from price
+        const tier = stripe_1.PRICE_TO_TIER[priceId] || 'free';
+        await (0, db_1.query)(`UPDATE users
+       SET tier = $1, stripe_subscription_id = $2, updated_at = NOW()
+       WHERE stripe_customer_id = $3`, [tier, subscription.id, customerId]);
+        console.log(`[Billing] User upgraded to ${tier}`);
+    }
+}
+/**
+ * Handle subscription deleted
+ */
+async function handleSubscriptionDeleted(subscription) {
+    const customerId = subscription.customer;
+    console.log(`[Billing] Subscription deleted for ${customerId}`);
+    // Downgrade to free tier
+    await (0, db_1.query)(`UPDATE users
+     SET tier = 'free', stripe_subscription_id = NULL, updated_at = NOW()
+     WHERE stripe_customer_id = $1`, [customerId]);
+}
+/**
+ * Handle payment failed
+ */
+async function handlePaymentFailed(invoice) {
+    const customerId = invoice.customer;
+    console.log(`[Billing] Payment failed for ${customerId}`);
+    // Could send email notification, etc.
+    // For now just log it
+}
+exports.default = router;
+//# sourceMappingURL=billing.js.map