modelence 0.12.7 → 0.14.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/chunk-DIWBKGBL.js +3 -0
- package/dist/chunk-DIWBKGBL.js.map +1 -0
- package/dist/{chunk-DDOFIHWT.js → chunk-S7LR4K37.js} +3 -3
- package/dist/{chunk-DDOFIHWT.js.map → chunk-S7LR4K37.js.map} +1 -1
- package/dist/client.d.ts +65 -2
- package/dist/client.js +1 -1
- package/dist/client.js.map +1 -1
- package/dist/index.d.ts +1 -1
- package/dist/{package-XSWVND4S.js → package-D325NQFE.js} +2 -2
- package/dist/{package-XSWVND4S.js.map → package-D325NQFE.js.map} +1 -1
- package/dist/server.d.ts +55 -6
- package/dist/server.js +8 -8
- package/dist/server.js.map +1 -1
- package/dist/telemetry.js +1 -1
- package/dist/{types-l1amQvLa.d.ts → types-BtENzxGq.d.ts} +43 -8
- package/dist/{types-Dr14pZxy.d.ts → types-CSQ5Qjb4.d.ts} +94 -2
- package/dist/types-DLDzAym7.d.ts +8 -0
- package/dist/types.d.ts +2 -2
- package/package.json +1 -1
- package/dist/chunk-PB6WQQ4L.js +0 -3
- package/dist/chunk-PB6WQQ4L.js.map +0 -1
package/dist/server.d.ts
CHANGED
|
@@ -1,10 +1,12 @@
|
|
|
1
1
|
import { A as AppServer } from './index-CwdohC5n.js';
|
|
2
|
-
import { M as MethodDefinition, C as ConfigSchema, S as ServerChannel, A as AuthSuccessProps,
|
|
3
|
-
|
|
4
|
-
|
|
2
|
+
import { M as MethodDefinition, C as ConfigSchema, S as ServerChannel, d as SignupProps, U as UpdateProfileProps, A as AuthSuccessProps, e as AuthErrorProps, f as User, W as WebsocketServerProvider, R as RoleDefinition, b as ConfigKey, g as AppConfig, h as Session, i as UserInfo, j as Role } from './types-CSQ5Qjb4.js';
|
|
3
|
+
export { k as ConfigType } from './types-CSQ5Qjb4.js';
|
|
4
|
+
import { S as Store, R as RouteDefinition, C as CronJobInputParams, a as RateLimitRule, E as EmailProvider, I as InferDocumentType, b as RateLimitType, c as EmailPayload } from './types-BtENzxGq.js';
|
|
5
|
+
export { H as HttpMethod, d as RouteHandler, e as RouteParams, f as RouteResponse, s as schema } from './types-BtENzxGq.js';
|
|
5
6
|
import { ObjectId as ObjectId$1 } from 'mongodb';
|
|
6
7
|
export { ObjectId } from 'mongodb';
|
|
7
8
|
import * as zod from 'zod';
|
|
9
|
+
import { F as FileVisibility, G as GetUploadUrlResult } from './types-DLDzAym7.js';
|
|
8
10
|
import 'express';
|
|
9
11
|
import 'http';
|
|
10
12
|
|
|
@@ -107,6 +109,11 @@ type EmailConfig = {
|
|
|
107
109
|
emailVerifiedRedirectUrl?: string;
|
|
108
110
|
};
|
|
109
111
|
|
|
112
|
+
type GenerateHandleProps = {
|
|
113
|
+
email: string;
|
|
114
|
+
firstName?: string;
|
|
115
|
+
lastName?: string;
|
|
116
|
+
};
|
|
110
117
|
/**
|
|
111
118
|
* Callback options for authentication operations
|
|
112
119
|
*/
|
|
@@ -125,6 +132,12 @@ type AuthOption = {
|
|
|
125
132
|
*
|
|
126
133
|
* startApp({
|
|
127
134
|
* auth: {
|
|
135
|
+
* validateSignup: ({ email, firstName, lastName, password, handle, avatarUrl }) => {
|
|
136
|
+
* // Validating the signup data
|
|
137
|
+
* if (!email || !password) {
|
|
138
|
+
* throw new Error('Email and password are required');
|
|
139
|
+
* }
|
|
140
|
+
* },
|
|
128
141
|
* onAfterLogin: ({ user }) => {
|
|
129
142
|
* console.log('User logged in:', user.name);
|
|
130
143
|
* // Redirect to dashboard
|
|
@@ -139,22 +152,37 @@ type AuthOption = {
|
|
|
139
152
|
* },
|
|
140
153
|
* onSignupError: ({ error }) => {
|
|
141
154
|
* console.error('Signup failed:', error.message);
|
|
142
|
-
* }
|
|
155
|
+
* },
|
|
156
|
+
* generateHandle: ({ email }) => {
|
|
157
|
+
* console.log('Generating handle for:', email);
|
|
158
|
+
* // Generate handle
|
|
159
|
+
* return 'user123';
|
|
160
|
+
* },
|
|
143
161
|
* }
|
|
144
162
|
* });
|
|
145
163
|
* ```
|
|
146
164
|
*/
|
|
147
165
|
type AuthConfig = {
|
|
166
|
+
validateSignup?: (props: SignupProps) => void | Promise<void>;
|
|
167
|
+
validateProfileUpdate?: (props: UpdateProfileProps) => void | Promise<void>;
|
|
148
168
|
onAfterLogin?: (props: AuthSuccessProps) => void;
|
|
149
169
|
onLoginError?: (props: AuthErrorProps) => void;
|
|
150
170
|
onAfterSignup?: (props: AuthSuccessProps) => void;
|
|
151
171
|
onSignupError?: (props: AuthErrorProps) => void;
|
|
152
172
|
onAfterEmailVerification?: (props: AuthSuccessProps) => void;
|
|
153
173
|
onEmailVerificationError?: (props: AuthErrorProps) => void;
|
|
174
|
+
generateHandle?: (props: GenerateHandleProps) => Promise<string> | string;
|
|
154
175
|
/** deprecated: use onAfterLogin and onLoginError */
|
|
155
176
|
login?: AuthOption;
|
|
156
177
|
/** deprecated: user onAfterSignup and onSignupError */
|
|
157
178
|
signup?: AuthOption;
|
|
179
|
+
/**
|
|
180
|
+
* Controls how OAuth providers handle existing accounts with matching email.
|
|
181
|
+
* - 'manual' (default): Returns an error when an OAuth login matches an existing email.
|
|
182
|
+
* - 'auto': Automatically links the OAuth provider to the existing account
|
|
183
|
+
* if the provider email is verified.
|
|
184
|
+
*/
|
|
185
|
+
oauthAccountLinking?: 'auto' | 'manual';
|
|
158
186
|
};
|
|
159
187
|
|
|
160
188
|
/**
|
|
@@ -451,6 +479,9 @@ declare const usersCollection: Store<{
|
|
|
451
479
|
verified: boolean;
|
|
452
480
|
}>, "many">>;
|
|
453
481
|
status: zod.ZodOptional<zod.ZodEnum<["active", "disabled", "deleted"]>>;
|
|
482
|
+
firstName: zod.ZodOptional<zod.ZodString>;
|
|
483
|
+
lastName: zod.ZodOptional<zod.ZodString>;
|
|
484
|
+
avatarUrl: zod.ZodOptional<zod.ZodString>;
|
|
454
485
|
createdAt: zod.ZodDate;
|
|
455
486
|
disabledAt: zod.ZodOptional<zod.ZodDate>;
|
|
456
487
|
deletedAt: zod.ZodOptional<zod.ZodDate>;
|
|
@@ -511,6 +542,9 @@ declare const usersCollection: Store<{
|
|
|
511
542
|
verified: boolean;
|
|
512
543
|
}>, "many">>;
|
|
513
544
|
status: zod.ZodOptional<zod.ZodEnum<["active", "disabled", "deleted"]>>;
|
|
545
|
+
firstName: zod.ZodOptional<zod.ZodString>;
|
|
546
|
+
lastName: zod.ZodOptional<zod.ZodString>;
|
|
547
|
+
avatarUrl: zod.ZodOptional<zod.ZodString>;
|
|
514
548
|
createdAt: zod.ZodDate;
|
|
515
549
|
disabledAt: zod.ZodOptional<zod.ZodDate>;
|
|
516
550
|
deletedAt: zod.ZodOptional<zod.ZodDate>;
|
|
@@ -558,7 +592,7 @@ declare const usersCollection: Store<{
|
|
|
558
592
|
hash: string;
|
|
559
593
|
} | undefined;
|
|
560
594
|
}>;
|
|
561
|
-
}>, "handle" | "
|
|
595
|
+
}>, "handle" | "emails" | "status" | "firstName" | "lastName" | "avatarUrl" | "createdAt" | "disabledAt" | "deletedAt" | "roles" | "authMethods"> & {
|
|
562
596
|
_id: ObjectId;
|
|
563
597
|
}, ...args: any[]) => any>>;
|
|
564
598
|
|
|
@@ -650,4 +684,19 @@ declare function authenticate(authToken: string | null): Promise<{
|
|
|
650
684
|
|
|
651
685
|
declare function sendEmail(payload: EmailPayload): Promise<void> | undefined;
|
|
652
686
|
|
|
653
|
-
|
|
687
|
+
type DownloadFileResult = {
|
|
688
|
+
downloadUrl: string;
|
|
689
|
+
};
|
|
690
|
+
type GetFileUrlResult = {
|
|
691
|
+
url: string;
|
|
692
|
+
};
|
|
693
|
+
declare function getUploadUrl({ filePath, contentType, visibility, }: {
|
|
694
|
+
filePath: string;
|
|
695
|
+
contentType: string;
|
|
696
|
+
visibility: FileVisibility;
|
|
697
|
+
}): Promise<GetUploadUrlResult>;
|
|
698
|
+
declare function deleteFile(filePath: string): Promise<void>;
|
|
699
|
+
declare function downloadFile(filePath: string): Promise<DownloadFileResult>;
|
|
700
|
+
declare function getFileUrl(filePath: string): Promise<GetFileUrlResult>;
|
|
701
|
+
|
|
702
|
+
export { type AppOptions, type AuthConfig, type AuthOption, type CloudBackendConnectResponse, ConfigSchema, CronJobInputParams, FileVisibility, LiveData, type LiveDataConfig, type LiveQueryCleanup, type LiveQueryPublish, type LiveQueryWatch, Module, RateLimitRule, RateLimitType, RoleDefinition, RouteDefinition, type SecurityConfig, ServerChannel, Store, UserInfo, authenticate, consumeRateLimit, createQuery, usersCollection as dbUsers, deleteFile, deleteUser, disableUser, downloadFile, getConfig, getFileUrl, getUploadUrl, sendEmail, startApp };
|
package/dist/server.js
CHANGED
|
@@ -1,19 +1,19 @@
|
|
|
1
|
-
import {a as a$2}from'./chunk-3S2FFBNS.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b as b$1,e,d as d$1,c,f as f$1,g,j,i,h,k,l}from'./chunk-PB6WQQ4L.js';export{a as getConfig}from'./chunk-PB6WQQ4L.js';import {s}from'./chunk-DDOFIHWT.js';import yo from'dotenv';import Gr from'fs/promises';import rr from'os';import He from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import $,{z as z$1}from'zod';import Jo from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import Sr from'@vitejs/plugin-react';import xr from'fs';import j$1,{Router}from'express';import zr from'cookie-parser';import Fr from'http';var x=class{constructor(t,{stores:o=[],queries:r={},mutations:n={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:l=[],channels:d=[]}){this.name=t,this.stores=o,this.queries=r,this.mutations=n,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=l,this.channels=d;}};function R(e){let t=e._def;if(t.typeName==="ZodString")return {type:"string"};if(t.typeName==="ZodNumber")return {type:"number"};if(t.typeName==="ZodBoolean")return {type:"boolean"};if(t.typeName==="ZodDate")return {type:"date"};if(t.typeName==="ZodArray")return {type:"array",items:R(t.type)};if(t.typeName==="ZodObject"){let r=t.shape(),n={};for(let[i,s]of Object.entries(r))n[i]=R(s);return {type:"object",items:n}}if(t.typeName==="ZodOptional")return {...R(t.innerType),optional:true};if(t.typeName==="ZodNullable")return {...R(t.innerType),optional:true};if(t.typeName==="ZodEnum")return {type:"enum",items:t.values};if(t.typeName==="ZodUnion")return {type:"union",items:t.options.map(R)};if(t.typeName==="ZodEffects"){let o=t;return o.description?{type:"custom",typeName:o.description}:R(o.schema)}return {type:"custom",typeName:t.typeName}}function ue(e){let t={};for(let[o,r]of Object.entries(e))Array.isArray(r)?t[o]=r.map(n=>typeof n=="object"&&"_def"in n?R(n):ue(n)):typeof r=="object"&&"_def"in r?t[o]=R(r):t[o]=ue(r);return t}var So=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],Te=e=>typeof e=="object"&&e!==null&&!Array.isArray(e),xo=e=>e.startsWith("_modelence_"),ke=e=>{let t={};for(let o of So){let r=e[o];r!==void 0&&(t[o]=r);}return t},Eo=(e,t)=>{if(!Te(e)||!Te(t))return false;let o=Object.entries(e),r=Object.entries(t);return o.length!==r.length?false:o.every(([n,i],s)=>{let[a,l]=r[s]||[];return n===a&&isDeepStrictEqual(i,l)})},st=(e,t)=>Eo(e.key,t.key)?isDeepStrictEqual(ke(e),ke(t)):false,Ce=e=>Te(e)?Object.entries(e).map(([t,o])=>`${t}:${JSON.stringify(o)}`).join("|"):null,Co=async e=>{try{return await e.listIndexes().toArray()}catch(t){if(t instanceof MongoError&&t.code===26)return [];throw t}},vo=e=>Object.entries(e).map(([t,o])=>`${t}_${o}`).join("_"),To=e=>{if(e.name){let o=e.name.startsWith("_modelence_")?e.name:`_modelence_${e.name}`;return {...e,name:o}}let t=vo(e.key);return {...e,name:`_modelence_${t}`}},S=class e{constructor(t,o){this.name=t,this.schema=o.schema,this.methods=o.methods,this.indexes=o.indexes.map(To),this.searchIndexes=o.searchIndexes||[],this.indexCreationMode=o.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return ue(this.schema)}extend(t){let o={...this.schema,...t.schema||{}},r=[...this.indexes,...t.indexes||[]],n=[...this.searchIndexes,...t.searchIndexes||[]],i={...this.methods||{},...t.methods||{}},s=new e(this.name,{schema:o,methods:i,indexes:r,searchIndexes:n,indexCreationMode:t.indexCreationMode??this.indexCreationMode});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(t){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=t,this.collection=this.client.db().collection(this.name);}async createIndexes(){let t=this.requireCollection(),o=await Co(t),r=new Map,n=new Map,i=new Set,s=c=>{r.set(c.name,c);let h=Ce(c.key);if(!h)return;let E=n.get(h);E?E.add(c.name):n.set(h,new Set([c.name]));},a=c=>{let h=r.get(c);if(!h)return;r.delete(c);let E=Ce(h.key);if(!E)return;let v=n.get(E);v&&(v.delete(c),v.size===0&&n.delete(E));};for(let c of o)typeof c.name=="string"&&s({...c,name:c.name});let l=async c=>{if(!(c==="_id_"||i.has(c))){try{await t.dropIndex(c);}catch(h){if(!(h instanceof MongoError&&h.code===27))throw h}i.add(c),a(c);}},d=new Set(this.indexes.map(c=>c.name).filter(c=>typeof c=="string")),p=[...r.values()].filter(c=>xo(c.name)&&!d.has(c.name));for(let c of p)await l(c.name);if(this.indexes.length>0)for(let c of this.indexes){if(!c.name)continue;let h=r.get(c.name);h&&!st(h,c)&&await l(h.name);let E=Ce(c.key);if(E){let ce=[...n.get(E)||[]];for(let A of ce)A!==c.name&&await l(A);}let v=r.get(c.name);!!v&&st(v,c)||(await t.createIndexes([c]),s({name:c.name,key:c.key,...ke(c)}));}if(this.searchIndexes.length>0)for(let c of this.searchIndexes)try{await t.createSearchIndexes([c]);}catch(h){if(h instanceof MongoError&&h.code===68&&c.name)await t.dropSearchIndex(c.name),await t.createSearchIndexes([c]);else throw h}}wrapDocument(t){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...t,...this.methods})):t}getSelector(t){return typeof t=="string"?{_id:new ObjectId(t)}:t instanceof ObjectId?{_id:t}:t}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(t,o){let r=await this.requireCollection().findOne(t,o);return r?this.wrapDocument(r):null}async requireOne(t,o,r){let n=await this.findOne(t,o);if(!n)throw r?r():new Error(`Record not found in ${this.name}`);return n}find(t,o){let r=this.requireCollection().find(t);return o?.sort&&r.sort(o.sort),o?.limit&&r.limit(o.limit),o?.skip&&r.skip(o.skip),r}async findById(t){let o=typeof t=="string"?{_id:new ObjectId(t)}:{_id:t};return await this.findOne(o)}async requireById(t,o){let r=await this.findById(t);if(!r)throw o?o():new Error(`Record with id ${t} not found in ${this.name}`);return r}countDocuments(t){return this.requireCollection().countDocuments(t)}async fetch(t,o){return (await this.find(t,o).toArray()).map(this.wrapDocument.bind(this))}async insertOne(t){return await this.requireCollection().insertOne(t)}async insertMany(t){return await this.requireCollection().insertMany(t)}async updateOne(t,o){return await this.requireCollection().updateOne(this.getSelector(t),o)}async upsertOne(t,o){return await this.requireCollection().updateOne(this.getSelector(t),o,{upsert:true})}async updateMany(t,o,r){return await this.requireCollection().updateMany(t,o,r)}async upsertMany(t,o){return await this.requireCollection().updateMany(t,o,{upsert:true})}async deleteOne(t){return await this.requireCollection().deleteOne(t)}async deleteMany(t){return await this.requireCollection().deleteMany(t)}aggregate(t,o){return this.requireCollection().aggregate(t,o)}bulkWrite(t){return this.requireCollection().bulkWrite(t)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(t,o){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:t}).toArray()).length===0)throw new Error(`Collection ${t} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(t).rename(this.name,o);}async vectorSearch({field:t,embedding:o,numCandidates:r,limit:n,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||t+"VectorSearch",path:t,queryVector:o,numCandidates:r||100,limit:n||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:t,dimensions:o,similarity:r="cosine",indexName:n}){return {type:"vectorSearch",name:n||t+"VectorSearch",definition:{fields:[{type:"vector",path:t,numDimensions:o,similarity:r}]}}}};var ko=z$1.string.bind(z$1),Do=z$1.number.bind(z$1),_o=z$1.date.bind(z$1),Ao=z$1.boolean.bind(z$1),Mo=z$1.array.bind(z$1),Ro=z$1.object.bind(z$1),Oo=z$1.enum.bind(z$1),u={string:ko,number:Do,date:_o,boolean:Ao,array:Mo,object:Ro,enum:Oo,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(e){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(e){return {}}};var Z=new S("_modelenceSessions",{schema:{authToken:u.string(),createdAt:u.date(),expiresAt:u.date(),userId:u.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function ct(e){let t=e?await Z.findOne({authToken:e}):null;return t?{authToken:String(t.authToken),expiresAt:new Date(t.expiresAt),userId:t.userId??null}:await _e()}async function lt(e,t){await Z.updateOne({authToken:e},{$set:{userId:t}});}async function dt(e){await Z.updateOne({authToken:e},{$set:{userId:null}});}async function _e(e=null){let t=randomBytes(32).toString("base64url"),o=Date.now(),r=new Date(o+a.days(7));return await Z.insertOne({authToken:t,createdAt:new Date(o),expiresAt:r,userId:e}),{authToken:t,expiresAt:r,userId:e}}async function Lo(e){let t=Date.now(),o=new Date(t+a.days(7));await Z.updateOne({authToken:e.authToken},{$set:{lastActiveDate:new Date(t),expiresAt:o}});}var ut=new x("_system.session",{stores:[Z],mutations:{init:async function(e,{session:t,user:o}){return {session:t,user:o,configs:b$1()}},heartbeat:async function(e,{session:t}){t&&await Lo(t);}}});var f=new S("_modelenceUsers",{schema:{handle:u.string(),emails:u.array(u.object({address:u.string(),verified:u.boolean()})).optional(),status:u.enum(["active","disabled","deleted"]).optional(),createdAt:u.date(),disabledAt:u.date().optional(),deletedAt:u.date().optional(),roles:u.array(u.string()).optional(),authMethods:u.object({password:u.object({hash:u.string()}).optional(),google:u.object({id:u.string()}).optional(),github:u.object({id:u.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1,status:1},sparse:true},{key:{"authMethods.github.id":1,status:1},sparse:true}]}),te=new S("_modelenceDisposableEmailDomains",{schema:{domain:u.string(),addedAt:u.date()},indexes:[{key:{domain:1},unique:true}]}),O=new S("_modelenceEmailVerificationTokens",{schema:{userId:u.objectId(),email:u.string().optional(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),D=new S("_modelenceResetPasswordTokens",{schema:{userId:u.objectId(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var mt=new Map,V={authenticated:null,unauthenticated:null};function pt(e,t){V.authenticated=t.authenticated,V.unauthenticated=t.unauthenticated;for(let[o,r]of Object.entries(e))mt.set(o,r);}function me(){return V.unauthenticated?[V.unauthenticated]:[]}function ft(){return V.authenticated?[V.authenticated]:[]}function Ae(e,t){let o=t.find(r=>!Po(e,r));if(o)throw new Error(`Access denied - missing permission: '${o}'`)}function Po(e,t){for(let o of e)if(mt.get(o)?.permissions?.includes(t))return true;return false}async function _(e){let t=await ct(e),o=t.userId?await f.findOne({_id:new ObjectId(t.userId),status:{$nin:["deleted","disabled"]}}):null,r=o?{id:o._id.toString(),handle:o.handle,roles:o.roles||[],hasRole:i=>(o.roles||[]).includes(i),requireRole:i=>{if(!(o.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)}}:null,n=r?ft():me();return {user:r,session:t,roles:n}}var I=null;async function ht(){if(I)return I;let e=z();if(!e)throw new Error("MongoDB URI is not set");I=new MongoClient(e,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true});try{return await I.connect(),await I.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),I}catch(t){throw console.error(t),I=null,t}}function z(){let e=a$1("_system.mongodbUri");return e?String(e):void 0}function pe(){return I}var G=class{constructor(t){this.fetch=t.fetch,this.watch=t.watch;}};function Uo(){return typeof window!="object"}function L(){if(!Uo())throw new Error("This function can only be called on the server")}function fe(e){return e.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var he={};function Me(e,t){return L(),bt(e),ge("query",e,t)}function gt(e,t){return L(),bt(e),ge("mutation",e,t)}function yt(e,t){return L(),St(e),ge("query",e,t)}function wt(e,t){return L(),St(e),ge("mutation",e,t)}function bt(e){if(e.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${e})`)}function St(e){if(!e.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${e})`)}function ge(e,t,o){if(L(),he[t])throw new Error(`Method with name '${t}' is already defined.`);let r=typeof o=="function"?o:o.handler,n=typeof o=="function"?[]:o.permissions??[];he[t]={type:e,name:t,handler:r,permissions:n};}async function xt(e,t,o){L();let r=he[e];if(!r)throw new Error(`Method with name '${e}' is not defined.`);let{type:n,handler:i}=r,s=k("method",`method:${e}`,{type:n,args:t}),a;try{Ae(o.roles,r.permissions),a=await i(t,o);}catch(l){throw s.end("error"),l}return s.end(),a}async function Et(e,t,o){L();let r=he[e];if(!r)throw new Error(`Method with name '${e}' is not defined.`);let{type:n,handler:i}=r;if(n!=="query")throw new Error("Live methods are only supported for queries");let s=k("method",`method:${e}:live`,{type:n,args:t}),a;try{if(Ae(o.roles,r.permissions),a=await i(t,o),!(a instanceof G))throw new Error(`Live query handler for '${e}' must return a LiveData object with fetch and watch functions.`)}catch(l){throw s.end("error"),l}return s.end(),a}var oe=new Map;function No(e){let t=oe.get(e.id);return t||(t=new Map,oe.set(e.id,t)),t}async function Re(e,t){let o=z$1.object({subscriptionId:z$1.string().min(1),method:z$1.string().min(1),args:z$1.record(z$1.unknown()).default({}),authToken:z$1.string().nullish(),clientInfo:z$1.object({screenWidth:z$1.number(),screenHeight:z$1.number(),windowWidth:z$1.number(),windowHeight:z$1.number(),pixelRatio:z$1.number(),orientation:z$1.string().nullable()}).optional()}).safeParse(t);if(!o.success){e.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${o.error.message}`});return}let{subscriptionId:r,method:n,args:i,authToken:s,clientInfo:a}=o.data,l=No(e),d=l.get(r);if(d)if(d.cleanup)try{d.cleanup();}catch(c){console.error("[LiveQuery] Error cleaning up existing subscription:",c);}else d.aborted=true;let p={cleanup:null};l.set(r,p);try{let{session:c,user:h,roles:E}=await _(s??null),v={session:c,user:h,roles:E,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:e.handshake.address,userAgent:e.handshake.headers["user-agent"]}},U=await Et(n,i,v),ce=async()=>{let k=await U.fetch();p.aborted||e.emit("liveQueryData",{subscriptionId:r,data:k,typeMap:a$2(k)});},A=!0,K=!1,Y=()=>{p.aborted||!A||K||(A=!1,K=!0,ce().catch(k=>{p.aborted||(console.error(`[LiveQuery] Error fetching data for ${n}:`,k),e.emit("liveQueryError",{subscriptionId:r,error:k instanceof Error?k.message:String(k)}));}).finally(()=>{K=!1,Y();}));},X=U.watch({publish:()=>{A=!0,Y();}});if(p.aborted){if(X)try{X();}catch(k){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",k);}return}p.cleanup=X||null,Y();}catch(c){l.delete(r),console.error(`[LiveQuery] Error in ${n}:`,c),e.emit("liveQueryError",{subscriptionId:r,error:c instanceof Error?c.message:String(c)});}}function Oe(e,t){let o=z$1.object({subscriptionId:z$1.string().min(1)}).safeParse(t);if(!o.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${o.error.message}`);return}let{subscriptionId:r}=o.data,n=oe.get(e.id);if(!n)return;let i=n.get(r);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;n.delete(r);}}function Ie(e){let t=oe.get(e.id);if(t){for(let o of t.values())if(o.cleanup)try{o.cleanup();}catch(r){console.error("[LiveQuery] Error in cleanup on disconnect:",r);}else o.aborted=true;oe.delete(e.id);}}var re=null,qo="_modelenceSocketio";async function Wo({httpServer:e,channels:t}){let o=pe();console.log("Initializing Socket.IO server...");let r=null;if(o){r=o.db().collection(qo);try{await r.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(n){console.error("Failed to create index on MongoDB collection for Socket.IO:",n);}}re=new Server(e,{cors:{origin:"*",methods:["GET","POST"]},adapter:r?createAdapter(r):void 0,transports:["websocket"],perMessageDeflate:false}),re.on("error",n=>{console.error("Socket.IO error:",n);}),re.use(async(n,i)=>{let s=n.handshake.auth.token;try{n.data=await _(s);}finally{i();}}),re.on("connection",n=>{n.on("disconnect",()=>{Ie(n);}),n.on("joinChannel",async i=>{let[s]=i.split(":"),a=false;for(let l of t)if(l.category===s){(!l.canAccessChannel||await l.canAccessChannel(n.data))&&(n.join(i),a=true,n.emit("joinedChannel",i));break}a||n.emit("joinError",{channel:i,error:"Access denied"});}),n.on("leaveChannel",i=>{n.leave(i),console.log(`User ${n.id} left channel ${i}`),n.emit("leftChannel",i);}),n.on("subscribeLiveQuery",i=>Re(n,i)),n.on("unsubscribeLiveQuery",i=>Oe(n,i));}),console.log("Socket.IO server initialized");}function Bo({category:e,id:t,data:o}){re?.to(`${e}:${t}`).emit(e,o);}var Ct={init:Wo,broadcast:Bo};async function vt(e){let t=e.toLowerCase().trim().split("@");if(t.length!==2)return false;let o=t[1];return !!await te.findOne({domain:o})}var Tt={interval:a.days(1),async handler(){let e=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!e.ok)throw new Error(`HTTP ${e.status}: ${e.statusText}`);let o=(await e.text()).split(`
|
|
2
|
-
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),
|
|
1
|
+
import {a as a$2}from'./chunk-3S2FFBNS.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b,f as f$1,e,g,c,h,k,d as d$1,j,i,l,m}from'./chunk-DIWBKGBL.js';export{a as getConfig}from'./chunk-DIWBKGBL.js';import {s}from'./chunk-S7LR4K37.js';import Pr from'dotenv';import So from'fs/promises';import kn from'os';import et from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import j$1,{z}from'zod';import fn from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import qn from'@vitejs/plugin-react';import Hn from'fs';import F,{Router}from'express';import mo from'cookie-parser';import po from'http';var C=class{constructor(t,{stores:r=[],queries:n={},mutations:o={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:d=[]}){this.name=t,this.stores=r,this.queries=n,this.mutations=o,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=d;}};function P(e){let t=e._def;if(t.typeName==="ZodString")return {type:"string"};if(t.typeName==="ZodNumber")return {type:"number"};if(t.typeName==="ZodBoolean")return {type:"boolean"};if(t.typeName==="ZodDate")return {type:"date"};if(t.typeName==="ZodArray")return {type:"array",items:P(t.type)};if(t.typeName==="ZodObject"){let n=t.shape(),o={};for(let[i,s]of Object.entries(n))o[i]=P(s);return {type:"object",items:o}}if(t.typeName==="ZodOptional")return {...P(t.innerType),optional:true};if(t.typeName==="ZodNullable")return {...P(t.innerType),optional:true};if(t.typeName==="ZodEnum")return {type:"enum",items:t.values};if(t.typeName==="ZodUnion")return {type:"union",items:t.options.map(P)};if(t.typeName==="ZodEffects"){let r=t;return r.description?{type:"custom",typeName:r.description}:P(r.schema)}return {type:"custom",typeName:t.typeName}}function he(e){let t={};for(let[r,n]of Object.entries(e))Array.isArray(n)?t[r]=n.map(o=>typeof o=="object"&&"_def"in o?P(o):he(o)):typeof n=="object"&&"_def"in n?t[r]=P(n):t[r]=he(n);return t}var Ur=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],De=e=>typeof e=="object"&&e!==null&&!Array.isArray(e),$r=e=>e.startsWith("_modelence_"),Ie=e=>{let t={};for(let r of Ur){let n=e[r];n!==void 0&&(t[r]=n);}return t},jr=(e,t)=>{if(!De(e)||!De(t))return false;let r=Object.entries(e),n=Object.entries(t);return r.length!==n.length?false:r.every(([o,i],s)=>{let[a,c]=n[s]||[];return o===a&&isDeepStrictEqual(i,c)})},yt=(e,t)=>jr(e.key,t.key)?isDeepStrictEqual(Ie(e),Ie(t)):false,Ae=e=>De(e)?Object.entries(e).map(([t,r])=>`${t}:${JSON.stringify(r)}`).join("|"):null,Fr=async e=>{try{return await e.listIndexes().toArray()}catch(t){if(t instanceof MongoError&&t.code===26)return [];throw t}},zr=e=>Object.entries(e).map(([t,r])=>`${t}_${r}`).join("_"),qr=e=>{if(e.name){let r=e.name.startsWith("_modelence_")?e.name:`_modelence_${e.name}`;return {...e,name:r}}let t=zr(e.key);return {...e,name:`_modelence_${t}`}},x=class e{constructor(t,r){this.name=t,this.schema=r.schema,this.methods=r.methods,this.indexes=r.indexes.map(qr),this.searchIndexes=r.searchIndexes||[],this.indexCreationMode=r.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return he(this.schema)}extend(t){let r={...this.schema,...t.schema||{}},n=[...this.indexes,...t.indexes||[]],o=[...this.searchIndexes,...t.searchIndexes||[]],i={...this.methods||{},...t.methods||{}},s=new e(this.name,{schema:r,methods:i,indexes:n,searchIndexes:o,indexCreationMode:t.indexCreationMode??this.indexCreationMode});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(t){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=t,this.collection=this.client.db().collection(this.name);}async createIndexes(){let t=this.requireCollection(),r=await Fr(t),n=new Map,o=new Map,i=new Set,s=l=>{n.set(l.name,l);let h=Ae(l.key);if(!h)return;let w=o.get(h);w?w.add(l.name):o.set(h,new Set([l.name]));},a=l=>{let h=n.get(l);if(!h)return;n.delete(l);let w=Ae(h.key);if(!w)return;let g=o.get(w);g&&(g.delete(l),g.size===0&&o.delete(w));};for(let l of r)typeof l.name=="string"&&s({...l,name:l.name});let c=async l=>{if(!(l==="_id_"||i.has(l))){try{await t.dropIndex(l);}catch(h){if(!(h instanceof MongoError&&h.code===27))throw h}i.add(l),a(l);}},d=new Set(this.indexes.map(l=>l.name).filter(l=>typeof l=="string")),m=[...n.values()].filter(l=>$r(l.name)&&!d.has(l.name));for(let l of m)await c(l.name);if(this.indexes.length>0)for(let l of this.indexes){if(!l.name)continue;let h=n.get(l.name);h&&!yt(h,l)&&await c(h.name);let w=Ae(l.key);if(w){let Q=[...o.get(w)||[]];for(let k of Q)k!==l.name&&await c(k);}let g=n.get(l.name);!!g&&yt(g,l)||(await t.createIndexes([l]),s({name:l.name,key:l.key,...Ie(l)}));}if(this.searchIndexes.length>0)for(let l of this.searchIndexes)try{await t.createSearchIndexes([l]);}catch(h){if(h instanceof MongoError&&h.code===68&&l.name)await t.dropSearchIndex(l.name),await t.createSearchIndexes([l]);else throw h}}wrapDocument(t){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...t,...this.methods})):t}getSelector(t){return typeof t=="string"?{_id:new ObjectId(t)}:t instanceof ObjectId?{_id:t}:t}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(t,r){let n=await this.requireCollection().findOne(t,r);return n?this.wrapDocument(n):null}async requireOne(t,r,n){let o=await this.findOne(t,r);if(!o)throw n?n():new Error(`Record not found in ${this.name}`);return o}find(t,r){let n=this.requireCollection().find(t,r?.projection?{projection:r.projection}:void 0);return r?.sort&&n.sort(r.sort),r?.limit&&n.limit(r.limit),r?.skip&&n.skip(r.skip),n}async findById(t){let r=typeof t=="string"?{_id:new ObjectId(t)}:{_id:t};return await this.findOne(r)}async requireById(t,r){let n=await this.findById(t);if(!n)throw r?r():new Error(`Record with id ${t} not found in ${this.name}`);return n}countDocuments(t){return this.requireCollection().countDocuments(t)}async fetch(t,r){return (await this.find(t,r).toArray()).map(this.wrapDocument.bind(this))}async insertOne(t){return await this.requireCollection().insertOne(t)}async insertMany(t){return await this.requireCollection().insertMany(t)}async updateOne(t,r){return await this.requireCollection().updateOne(this.getSelector(t),r)}async upsertOne(t,r){return await this.requireCollection().updateOne(this.getSelector(t),r,{upsert:true})}async updateMany(t,r,n){return await this.requireCollection().updateMany(t,r,n)}async upsertMany(t,r){return await this.requireCollection().updateMany(t,r,{upsert:true})}async deleteOne(t){return await this.requireCollection().deleteOne(t)}async deleteMany(t){return await this.requireCollection().deleteMany(t)}aggregate(t,r){return this.requireCollection().aggregate(t,r)}bulkWrite(t){return this.requireCollection().bulkWrite(t)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(t,r){let n=this.getDatabase();if(!this.collection||!n)throw new Error(`Store ${this.name} is not provisioned`);if((await n.listCollections({name:t}).toArray()).length===0)throw new Error(`Collection ${t} not found`);if((await n.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await n.collection(t).rename(this.name,r);}async vectorSearch({field:t,embedding:r,numCandidates:n,limit:o,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||t+"VectorSearch",path:t,queryVector:r,numCandidates:n||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:t,dimensions:r,similarity:n="cosine",indexName:o}){return {type:"vectorSearch",name:o||t+"VectorSearch",definition:{fields:[{type:"vector",path:t,numDimensions:r,similarity:n}]}}}};var Hr=z.string.bind(z),Wr=z.number.bind(z),Vr=z.date.bind(z),Zr=z.boolean.bind(z),Gr=z.array.bind(z),Br=z.object.bind(z),Jr=z.enum.bind(z),u={string:Hr,number:Wr,date:Vr,boolean:Zr,array:Gr,object:Br,enum:Jr,embedding(){return z.array(z.number())},objectId(){return z.instanceof(ObjectId).describe("ObjectId")},userId(){return z.instanceof(ObjectId).describe("UserId")},ref(e){return z.instanceof(ObjectId).describe("Ref")},union:z.union.bind(z),infer(e){return {}}};var X=new x("_modelenceSessions",{schema:{authToken:u.string(),createdAt:u.date(),expiresAt:u.date(),userId:u.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function bt(e){let t=e?await X.findOne({authToken:e}):null;return t?{authToken:String(t.authToken),expiresAt:new Date(t.expiresAt),userId:t.userId??null}:await Ne()}async function St(e,t){await X.updateOne({authToken:e},{$set:{userId:t}});}async function Ct(e){await X.updateOne({authToken:e},{$set:{userId:null}});}async function Ne(e=null){let t=randomBytes(32).toString("base64url"),r=Date.now(),n=new Date(r+a.days(7));return await X.insertOne({authToken:t,createdAt:new Date(r),expiresAt:n,userId:e}),{authToken:t,expiresAt:n,userId:e}}async function Kr(e){let t=Date.now(),r=new Date(t+a.days(7));await X.updateOne({authToken:e.authToken},{$set:{lastActiveDate:new Date(t),expiresAt:r}});}var xt=new C("_system.session",{stores:[X],mutations:{init:async function(e,{session:t,user:r}){return {session:t,user:r,configs:b()}},heartbeat:async function(e,{session:t}){t&&await Kr(t);}}});var f=new x("_modelenceUsers",{schema:{handle:u.string(),emails:u.array(u.object({address:u.string(),verified:u.boolean()})).optional(),status:u.enum(["active","disabled","deleted"]).optional(),firstName:u.string().optional(),lastName:u.string().optional(),avatarUrl:u.string().optional(),createdAt:u.date(),disabledAt:u.date().optional(),deletedAt:u.date().optional(),roles:u.array(u.string()).optional(),authMethods:u.object({password:u.object({hash:u.string()}).optional(),google:u.object({id:u.string()}).optional(),github:u.object({id:u.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),ie=new x("_modelenceDisposableEmailDomains",{schema:{domain:u.string(),addedAt:u.date()},indexes:[{key:{domain:1},unique:true}]}),N=new x("_modelenceEmailVerificationTokens",{schema:{userId:u.objectId(),email:u.string().optional(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),M=new x("_modelenceResetPasswordTokens",{schema:{userId:u.objectId(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Et=new Map,Y={authenticated:null,unauthenticated:null};function vt(e,t){Y.authenticated=t.authenticated,Y.unauthenticated=t.unauthenticated;for(let[r,n]of Object.entries(e))Et.set(r,n);}function ge(){return Y.unauthenticated?[Y.unauthenticated]:[]}function Tt(){return Y.authenticated?[Y.authenticated]:[]}function Le(e,t){let r=t.find(n=>!Xr(e,n));if(r)throw new Error(`Access denied - missing permission: '${r}'`)}function Xr(e,t){for(let r of e)if(Et.get(r)?.permissions?.includes(t))return true;return false}async function D(e){let t=await bt(e),r=t.userId?await f.findOne({_id:new ObjectId(t.userId),status:{$nin:["deleted","disabled"]}}):null,n=r?{id:r._id.toString(),handle:r.handle,roles:r.roles||[],hasRole:i=>(r.roles||[]).includes(i),requireRole:i=>{if(!(r.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}:null,o=n?Tt():ge();return {user:n,session:t,roles:o}}var L=null;async function kt(){if(L)return L;let e=H();if(!e)throw new Error("MongoDB URI is not set");L=new MongoClient(e,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true});try{return await L.connect(),await L.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),L}catch(t){throw console.error(t),L=null,t}}function H(){let e=a$1("_system.mongodbUri");return e?String(e):void 0}function ye(){return L}var ee=class{constructor(t){this.fetch=t.fetch,this.watch=t.watch;}};function tn(){return typeof window!="object"}function U(){if(!tn())throw new Error("This function can only be called on the server")}function we(e){return e.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var be={};function Ue(e,t){return U(),At(e),Se("query",e,t)}function _t(e,t){return U(),At(e),Se("mutation",e,t)}function Rt(e,t){return U(),Mt(e),Se("query",e,t)}function Ot(e,t){return U(),Mt(e),Se("mutation",e,t)}function At(e){if(e.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${e})`)}function Mt(e){if(!e.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${e})`)}function Se(e,t,r){if(U(),be[t])throw new Error(`Method with name '${t}' is already defined.`);let n=typeof r=="function"?r:r.handler,o=typeof r=="function"?[]:r.permissions??[];be[t]={type:e,name:t,handler:n,permissions:o};}async function Dt(e,t,r){U();let n=be[e];if(!n)throw new Error(`Method with name '${e}' is not defined.`);let{type:o,handler:i}=n,s=l("method",`method:${e}`,{type:o,args:t}),a;try{Le(r.roles,n.permissions),a=await i(t,r);}catch(c){throw s.end("error"),c}return s.end(),a}async function It(e,t,r){U();let n=be[e];if(!n)throw new Error(`Method with name '${e}' is not defined.`);let{type:o,handler:i}=n;if(o!=="query")throw new Error("Live methods are only supported for queries");let s=l("method",`method:${e}:live`,{type:o,args:t}),a;try{if(Le(r.roles,n.permissions),a=await i(t,r),!(a instanceof ee))throw new Error(`Live query handler for '${e}' must return a LiveData object with fetch and watch functions.`)}catch(c){throw s.end("error"),c}return s.end(),a}var se=new Map;function rn(e){let t=se.get(e.id);return t||(t=new Map,se.set(e.id,t)),t}async function $e(e,t){let r=z.object({subscriptionId:z.string().min(1),method:z.string().min(1),args:z.record(z.unknown()).default({}),authToken:z.string().nullish(),clientInfo:z.object({screenWidth:z.number(),screenHeight:z.number(),windowWidth:z.number(),windowHeight:z.number(),pixelRatio:z.number(),orientation:z.string().nullable()}).optional()}).safeParse(t);if(!r.success){e.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${r.error.message}`});return}let{subscriptionId:n,method:o,args:i,authToken:s,clientInfo:a}=r.data,c=rn(e),d=c.get(n);if(d)if(d.cleanup)try{d.cleanup();}catch(l){console.error("[LiveQuery] Error cleaning up existing subscription:",l);}else d.aborted=true;let m={cleanup:null};c.set(n,m);try{let{session:l,user:h,roles:w}=await D(s??null),g={session:l,user:h,roles:w,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:e.handshake.address,userAgent:e.handshake.headers["user-agent"]}},T=await It(o,i,g),Q=async()=>{let R=await T.fetch();m.aborted||e.emit("liveQueryData",{subscriptionId:n,data:R,typeMap:a$2(R)});},k=!0,O=!1,A=()=>{m.aborted||!k||O||(k=!1,O=!0,Q().catch(R=>{m.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,R),e.emit("liveQueryError",{subscriptionId:n,error:R instanceof Error?R.message:String(R)}));}).finally(()=>{O=!1,A();}));},z=T.watch({publish:()=>{k=!0,A();}});if(m.aborted){if(z)try{z();}catch(R){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",R);}return}m.cleanup=z||null,A();}catch(l){c.delete(n),console.error(`[LiveQuery] Error in ${o}:`,l),e.emit("liveQueryError",{subscriptionId:n,error:l instanceof Error?l.message:String(l)});}}function je(e,t){let r=z.object({subscriptionId:z.string().min(1)}).safeParse(t);if(!r.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${r.error.message}`);return}let{subscriptionId:n}=r.data,o=se.get(e.id);if(!o)return;let i=o.get(n);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;o.delete(n);}}function Fe(e){let t=se.get(e.id);if(t){for(let r of t.values())if(r.cleanup)try{r.cleanup();}catch(n){console.error("[LiveQuery] Error in cleanup on disconnect:",n);}else r.aborted=true;se.delete(e.id);}}var ae=null,sn="_modelenceSocketio";async function an({httpServer:e,channels:t}){let r=ye();console.log("Initializing Socket.IO server...");let n=null;if(r){n=r.db().collection(sn);try{await n.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(o){console.error("Failed to create index on MongoDB collection for Socket.IO:",o);}}ae=new Server(e,{cors:{origin:"*",methods:["GET","POST"]},adapter:n?createAdapter(n):void 0,transports:["websocket"],perMessageDeflate:false}),ae.on("error",o=>{console.error("Socket.IO error:",o);}),ae.use(async(o,i)=>{let s=o.handshake.auth.token;try{o.data=await D(s);}finally{i();}}),ae.on("connection",o=>{o.on("disconnect",()=>{Fe(o);}),o.on("joinChannel",async i=>{let[s]=i.split(":"),a=false;for(let c of t)if(c.category===s){(!c.canAccessChannel||await c.canAccessChannel(o.data))&&(o.join(i),a=true,o.emit("joinedChannel",i));break}a||o.emit("joinError",{channel:i,error:"Access denied"});}),o.on("leaveChannel",i=>{o.leave(i),console.log(`User ${o.id} left channel ${i}`),o.emit("leftChannel",i);}),o.on("subscribeLiveQuery",i=>$e(o,i)),o.on("unsubscribeLiveQuery",i=>je(o,i));}),console.log("Socket.IO server initialized");}function cn({category:e,id:t,data:r}){ae?.to(`${e}:${t}`).emit(e,r);}var Pt={init:an,broadcast:cn};async function Nt(e){let t=e.toLowerCase().trim().split("@");if(t.length!==2)return false;let r=t[1];return !!await ie.findOne({domain:r})}var Lt={interval:a.days(1),async handler(){let e=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!e.ok)throw new Error(`HTTP ${e.status}: ${e.statusText}`);let r=(await e.text()).split(`
|
|
2
|
+
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),n=new Date,o=500;for(let i=0;i<r.length;i+=o){let s=r.slice(i,i+o);try{await ie.insertMany(s.map(a=>({domain:a,addedAt:n})));}catch(a){a&&typeof a=="object"&&"name"in a&&a.name;}}}};var ze=Object.freeze({});function Ut(e){ze=Object.freeze(Object.assign({},ze,e));}function S(){return ze}function $t({name:e,email:t,verificationUrl:r}){return `
|
|
3
3
|
<p>Hi${e?` ${e}`:""},</p>
|
|
4
4
|
<p>Please verify your email address ${t} by clicking the link below:</p>
|
|
5
|
-
<p><a href="${
|
|
5
|
+
<p><a href="${r}">${r}</a></p>
|
|
6
6
|
<p>If you did not request this, please ignore this email.</p>
|
|
7
|
-
`}var Pe=Object.freeze({});function _t(e){Pe=Object.freeze(Object.assign({},Pe,e));}function y(){return Pe}function ye(e){return z$1.string().min(8,{message:"Password must contain at least 8 characters"}).parse(e)}function P(e){return z$1.string().email({message:"Invalid email address"}).parse(e).toLowerCase()}var ne=new S("_modelenceRateLimits",{schema:{bucket:u.string(),type:u.enum(["ip","user","email"]),value:u.string(),windowMs:u.number(),windowStart:u.date(),windowCount:u.number(),prevWindowCount:u.number(),expiresAt:u.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var $e=[];function Mt(e){if($e.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");$e=e;}async function T(e){let{bucket:t,type:o,value:r,message:n}=e,i=$e.filter(a=>a.bucket===t&&a.type===o),s=n?()=>new d(n):void 0;for(let a of i)await Ho(a,r,s);}async function Ho(e,t,o){let r=()=>o?o():new d(`Rate limit exceeded for ${e.bucket}`),n=await ne.findOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window}),i=Date.now(),s=Math.floor(i/e.window)*e.window,{count:a,modifier:l}=n?Zo(n,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+e.window+e.window)}}};if(a>=e.limit)throw r();await ne.upsertOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window},l);}function Zo(e,t,o){let r=t-e.windowMs;if(e.windowStart.getTime()===t){let n=e.windowCount,i=e.prevWindowCount,s=1-(o-t)/e.windowMs;return {count:Math.round(n+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(t),prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}if(e.windowStart.getTime()===r){let n=1-(o-t)/e.windowMs;return {count:Math.round(e.windowCount*n),modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:e.windowCount,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}async function Rt(e){let t=a$1("_system.site.url"),o=b().verification?.redirectUrl||b().emailVerifiedRedirectUrl||t||"/";try{let r=z$1.string().parse(e.query.token),n=await O.findOne({token:r,expiresAt:{$gt:new Date}});if(!n)throw new Error("Invalid or expired verification token");if(!await f.findOne({_id:n.userId}))throw new Error("User not found");let s=n.email;if(!s)throw new Error("Email not found in token");if((await f.updateOne({_id:n.userId,"emails.address":s,"emails.verified":{$ne:!0}},{$set:{"emails.$.verified":!0}})).matchedCount===0)throw await f.findOne({_id:n.userId,"emails.address":s})?new Error("Email is already verified"):new Error("Email address not found for this user");await O.deleteOne({_id:n._id}),y().onAfterEmailVerification?.({provider:"email",user:await f.findOne({"emails.address":n?.email}),session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}});}catch(r){if(r instanceof Error)return y().onEmailVerificationError?.({provider:"email",error:r,session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}}),console.error("Error verifying email:",r),{status:301,redirect:`${o}?status=error&message=${encodeURIComponent(r.message)}`}}return {status:301,redirect:`${o}?status=verified`}}async function ie({userId:e,email:t,baseUrl:o=a$1("_system.site.url")}){if(b().provider){let r=b().provider,n=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await O.insertOne({userId:e,email:t,token:n,createdAt:new Date,expiresAt:i});let s=`${o}/api/_internal/auth/verify-email?token=${n}`,l=(b()?.verification?.template||Dt)({name:"",email:t,verificationUrl:s}),d=fe(l);await r?.sendEmail({to:t,from:b()?.from||"noreply@modelence.com",subject:b()?.verification?.subject||"Verify your email address",text:d,html:l});}}var je={success:true,message:"If that email is registered and not yet verified, a verification email has been sent"};async function Ot(e,{connectionInfo:t}){let o=P(e.email),r=await f.findOne({"emails.address":o,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!r)return je;let n=r.emails?.find(i=>i.address.toLowerCase()===o);if(!n||n.verified)return je;if(!b().provider)throw new Error("Email provider is not configured");return await T({bucket:"verification",type:"user",value:r._id.toString(),message:"Please wait at least 60 seconds before requesting another verification email"}),await ie({userId:r._id,email:o,baseUrl:t?.baseUrl}),je}async function Lt(e,{user:t,session:o,connectionInfo:r}){try{if(!o)throw new Error("Session is not initialized");let n=r?.ip;n&&await T({bucket:"signin",type:"ip",value:n});let i=P(e.email),s=z$1.string().parse(e.password),a=await f.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),l=a?.authMethods?.password?.hash;if(!l)throw It();if(!a.emails?.find(c=>c.address.toLowerCase()===i)?.verified&&b()?.provider){if(n)try{await T({bucket:"verification",type:"user",value:a._id.toString()});}catch{throw new Error("Your email address hasn't been verified yet. Please use the verification email we've send earlier to your inbox.")}throw await ie({userId:a?._id,email:i,baseUrl:r?.baseUrl}),new Error("Your email address hasn't been verified yet. We've sent a new verification email to your inbox.")}if(!await Jo.compare(s,l))throw It();return await lt(o.authToken,a._id),y().onAfterLogin?.({provider:"email",user:a,session:o,connectionInfo:r}),y().login?.onSuccess?.(a),{user:{id:a._id,handle:a.handle,roles:a.roles||[]}}}catch(n){throw n instanceof Error&&(y().onLoginError?.({provider:"email",error:n,session:o,connectionInfo:r}),y().login?.onError?.(n)),n}}async function Pt(e,{session:t}){if(!t)throw new Error("Session is not initialized");await dt(t.authToken);}function It(){return new Error("Incorrect email/password combination")}async function $t(e,{user:t}){if(!t)throw new Error("Not authenticated");let o=await f.requireById(t.id);return {handle:o.handle,emails:o.emails,authMethods:Object.keys(o.authMethods||{})}}async function jt(e,{user:t,session:o,connectionInfo:r}){try{let n=P(e.email),i=ye(e.password),s=r?.ip;if(s&&await T({bucket:"signupAttempt",type:"ip",value:s}),await vt(n))throw new Error("Please use a permanent email address");let a=await f.findOne({"emails.address":n},{collation:{locale:"en",strength:2}});if(a){let c=a.emails?.find(h=>h.address.toLowerCase()===n);throw a.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${c?.address}`)}s&&await T({bucket:"signup",type:"ip",value:s});let l=await Jo.hash(i,10),d=await f.insertOne({handle:n,status:"active",emails:[{address:n,verified:!1}],createdAt:new Date,authMethods:{password:{hash:l}}}),p=await f.findOne({_id:d.insertedId},{readPreference:"primary"});if(!p)throw new Error("User not found");return await ie({userId:d?.insertedId,email:n,baseUrl:r?.baseUrl}),y().onAfterSignup?.({provider:"email",user:p,session:o,connectionInfo:r}),y().signup?.onSuccess?.(p),d.insertedId}catch(n){throw n instanceof Error&&(y().onSignupError?.({provider:"email",error:n,session:o,connectionInfo:r}),y().signup?.onError?.(n)),n}}function tr(e,t){return t?t.startsWith("http://")||t.startsWith("https://")?t:`${e}${t.startsWith("/")?"":"/"}${t}`:e}function or({email:e,resetUrl:t}){return `
|
|
7
|
+
`}var qe=Object.freeze({});function jt(e){qe=Object.freeze(Object.assign({},qe,e));}function E(){return qe}var Ce=3,W=50,Ft=e=>z.string().trim().min(e.min??1,{message:`must be at least ${e.min??1} characters`}).max(e.max,{message:`must be at most ${e.max} characters`}),He=e=>z.string().trim().max(e.max,{message:`must be at most ${e.max} characters`}).transform(t=>t===""?void 0:t).optional(),ln=z.object({firstName:He({max:50}),lastName:He({max:50}),avatarUrl:He({max:400}),handle:Ft({min:Ce,max:W})}).strict();function xe(e){let t=ln.partial().safeParse(e);if(!t.success){let r=t.error.issues[0],n=r.path.join("."),o=n?`${n}: ${r.message}`:r.message;throw new Error(o)}return t.data}function Ee(e){return z.string().min(8,{message:"Password must contain at least 8 characters"}).parse(e)}function $(e){return z.string().email({message:"Invalid email address"}).parse(e).toLowerCase()}function zt(e){return Ft({min:Ce,max:W}).parse(e)}var le=new x("_modelenceRateLimits",{schema:{bucket:u.string(),type:u.enum(["ip","user","email"]),value:u.string(),windowMs:u.number(),windowStart:u.date(),windowCount:u.number(),prevWindowCount:u.number(),expiresAt:u.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var We=[];function qt(e){if(We.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");We=e;}async function _(e){let{bucket:t,type:r,value:n,message:o}=e,i=We.filter(a=>a.bucket===t&&a.type===r),s=o?()=>new d(o):void 0;for(let a of i)await dn(a,n,s);}async function dn(e,t,r){let n=()=>r?r():new d(`Rate limit exceeded for ${e.bucket}`),o=await le.findOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window}),i=Date.now(),s=Math.floor(i/e.window)*e.window,{count:a,modifier:c}=o?un(o,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+e.window+e.window)}}};if(a>=e.limit)throw n();await le.upsertOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window},c);}function un(e,t,r){let n=t-e.windowMs;if(e.windowStart.getTime()===t){let o=e.windowCount,i=e.prevWindowCount,s=1-(r-t)/e.windowMs;return {count:Math.round(o+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(t),prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}if(e.windowStart.getTime()===n){let o=1-(r-t)/e.windowMs;return {count:Math.round(e.windowCount*o),modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:e.windowCount,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}async function Ht(e){let t=a$1("_system.site.url"),r=S().verification?.redirectUrl||S().emailVerifiedRedirectUrl||t||"/";try{let n=z.string().parse(e.query.token),o=await N.findOne({token:n,expiresAt:{$gt:new Date}});if(!o)throw new Error("Invalid or expired verification token");if(!await f.findOne({_id:o.userId}))throw new Error("User not found");let s=o.email;if(!s)throw new Error("Email not found in token");if((await f.updateOne({_id:o.userId,"emails.address":s,"emails.verified":{$ne:!0}},{$set:{"emails.$.verified":!0}})).matchedCount===0)throw await f.findOne({_id:o.userId,"emails.address":s})?new Error("Email is already verified"):new Error("Email address not found for this user");await N.deleteOne({_id:o._id}),E().onAfterEmailVerification?.({provider:"email",user:await f.findOne({"emails.address":o?.email}),session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}});}catch(n){if(n instanceof Error)return E().onEmailVerificationError?.({provider:"email",error:n,session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}}),console.error("Error verifying email:",n),{status:301,redirect:`${r}?status=error&message=${encodeURIComponent(n.message)}`}}return {status:301,redirect:`${r}?status=verified`}}async function de({userId:e,email:t,baseUrl:r=a$1("_system.site.url")}){if(S().provider){let n=S().provider,o=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await N.insertOne({userId:e,email:t,token:o,createdAt:new Date,expiresAt:i});let s=`${r}/api/_internal/auth/verify-email?token=${o}`,c=(S()?.verification?.template||$t)({name:"",email:t,verificationUrl:s}),d=we(c);await n?.sendEmail({to:t,from:S()?.from||"noreply@modelence.com",subject:S()?.verification?.subject||"Verify your email address",text:d,html:c});}}var Ve={success:true,message:"If that email is registered and not yet verified, a verification email has been sent"};async function Wt(e,{connectionInfo:t}){let r=$(e.email),n=await f.findOne({"emails.address":r,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!n)return Ve;let o=n.emails?.find(i=>i.address.toLowerCase()===r);if(!o||o.verified)return Ve;if(!S().provider)throw new Error("Email provider is not configured");return await _({bucket:"verification",type:"user",value:n._id.toString(),message:"Please wait at least 60 seconds before requesting another verification email"}),await de({userId:n._id,email:r,baseUrl:t?.baseUrl}),Ve}async function Zt(e,{user:t,session:r,connectionInfo:n}){try{if(!r)throw new Error("Session is not initialized");let o=n?.ip;o&&await _({bucket:"signin",type:"ip",value:o});let i=$(e.email),s=z.string().parse(e.password),a=await f.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),c=a?.authMethods?.password?.hash;if(!c)throw Vt();if(!a.emails?.find(l=>l.address.toLowerCase()===i)?.verified&&S()?.provider){if(o)try{await _({bucket:"verification",type:"user",value:a._id.toString()});}catch{throw new Error("Your email address hasn't been verified yet. Please use the verification email we've send earlier to your inbox.")}throw await de({userId:a?._id,email:i,baseUrl:n?.baseUrl}),new Error("Your email address hasn't been verified yet. We've sent a new verification email to your inbox.")}if(!await fn.compare(s,c))throw Vt();return await St(r.authToken,a._id),E().onAfterLogin?.({provider:"email",user:a,session:r,connectionInfo:n}),E().login?.onSuccess?.(a),{user:{id:a._id,handle:a.handle,roles:a.roles||[],firstName:a.firstName??void 0,lastName:a.lastName??void 0,avatarUrl:a.avatarUrl??void 0}}}catch(o){throw o instanceof Error&&(E().onLoginError?.({provider:"email",error:o,session:r,connectionInfo:n}),E().login?.onError?.(o)),o}}async function Gt(e,{session:t}){if(!t)throw new Error("Session is not initialized");await Ct(t.authToken);}function Vt(){return new Error("Incorrect email/password combination")}async function Bt(e,{user:t}){if(!t)throw new Error("Not authenticated");let r=await f.requireById(t.id);return {handle:r.handle,emails:r.emails,authMethods:Object.keys(r.authMethods||{}),firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}}async function Jt(e,{user:t}){if(!t)throw new Error("Not authenticated");let r=await f.requireById(t.id),n=xe(e);if(await E().validateProfileUpdate?.(n),"handle"in n&&n.handle!==void 0&&await f.findOne({handle:n.handle,_id:{$ne:r._id}},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");if(Object.keys(n).length>0){let o={},i={};for(let[a,c]of Object.entries(n))c===void 0?i[a]="":o[a]=c;let s={};Object.keys(o).length>0&&(s.$set=o),Object.keys(i).length>0&&(s.$unset=i);try{await f.updateOne({_id:r._id},s);let a=Object.fromEntries(Object.keys(i).map(c=>[c,void 0]));r={...r,...o,...a};}catch(a){throw a instanceof Error&&"code"in a&&a.code===11e3?new Error("Handle already taken."):a}}return {user:{id:r._id,handle:r.handle,roles:r.roles||[],firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}}}async function Qt(e){let t=e.slice(0,W);try{if(!await f.findOne({handle:t},{collation:{locale:"en",strength:2}}))return t}catch(o){throw new Error(`Database error while checking handle availability: ${o}`)}let r=51;for(let o=2;o<=r;o++){let i=`_${o}`,s=`${t.slice(0,W-i.length)}${i}`;try{if(!await f.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}let n=10;for(let o=0;o<n;o++){let i=`_${randomBytes(3).toString("hex")}`,s=`${t.slice(0,W-i.length)}${i}`;try{if(!await f.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}throw new Error(`Could not generate a unique handle for base "${e}" after exhausting all attempts.`)}async function V(e,t,{throwOnConflict:r=true}={}){if(e!=null&&String(e).trim()!==""){let o=zt(String(e).trim());if(r){if(await f.findOne({handle:o},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");return o}return Qt(o)}let n=t.split("@")[0].padEnd(Ce,"_").slice(0,W);return Qt(n)}async function Kt(e,{user:t,session:r,connectionInfo:n}){let o=E();try{let i=e,{firstName:s,lastName:a,avatarUrl:c,handle:d}=i,m=$(i.email),l=Ee(i.password),h=n?.ip;if(h&&await _({bucket:"signupAttempt",type:"ip",value:h}),await Nt(m))throw new Error("Please use a permanent email address");let w=await f.findOne({"emails.address":m},{collation:{locale:"en",strength:2}});if(w){let A=w.emails?.find(z=>z.address.toLowerCase()===m);throw w.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${A?.address}`)}h&&await _({bucket:"signup",type:"ip",value:h});let g=xe({firstName:s,lastName:a,avatarUrl:c,handle:d});await o.validateSignup?.({email:m,password:l,...g});let T;if(g.handle)T=await V(g.handle,m);else if(o.generateHandle){let A=await o.generateHandle({email:m,firstName:g.firstName,lastName:g.lastName});T=await V(A,m,{throwOnConflict:!1});}else T=await V(void 0,m);let Q=await fn.hash(l,10),k=await f.insertOne({handle:T,status:"active",emails:[{address:m,verified:!1}],createdAt:new Date,authMethods:{password:{hash:Q}},...g.firstName!==void 0&&{firstName:g.firstName},...g.lastName!==void 0&&{lastName:g.lastName},...g.avatarUrl!==void 0&&{avatarUrl:g.avatarUrl}}),O=await f.findOne({_id:k.insertedId},{readPreference:"primary"});if(!O)throw new Error("User not found");return await de({userId:k?.insertedId,email:m,baseUrl:n?.baseUrl}),o.onAfterSignup?.({provider:"email",user:O,session:r,connectionInfo:n}),o.signup?.onSuccess?.(O),k.insertedId}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:"email",error:i,session:r,connectionInfo:n}),o.signup?.onError?.(i)),i}}function Cn(e,t){return t?t.startsWith("http://")||t.startsWith("https://")?t:`${e}${t.startsWith("/")?"":"/"}${t}`:e}function xn({email:e,resetUrl:t}){return `
|
|
8
8
|
<p>Hi,</p>
|
|
9
9
|
<p>We received a request to reset your password for ${e}.</p>
|
|
10
10
|
<p>Click the link below to reset your password:</p>
|
|
11
11
|
<p><a href="${t}">${t}</a></p>
|
|
12
12
|
<p>This link will expire in 1 hour.</p>
|
|
13
13
|
<p>If you did not request this password reset, please ignore this email.</p>
|
|
14
|
-
`}var Ue={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function Ut(e,{connectionInfo:t}){let o=P(e.email),r=t?.ip;r&&await T({bucket:"passwordReset",type:"ip",value:r}),await T({bucket:"passwordReset",type:"email",value:o});let n=await f.findOne({"emails.address":o,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!n||!n.authMethods?.password)return Ue;let i=b().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),l=new Date(a$2),d=new Date(a$2+a.hours(1));await D.insertOne({userId:n._id,token:s,createdAt:l,expiresAt:d});let p=a$1("_system.site.url")||t?.baseUrl,h=`${tr(p,b().passwordReset?.redirectUrl)}?token=${s}`,v=(b()?.passwordReset?.template||or)({email:o,resetUrl:h,name:""}),U=fe(v);return await i.sendEmail({to:o,from:b()?.from||"noreply@modelence.com",subject:b()?.passwordReset?.subject||"Reset your password",text:U,html:v}),Ue}async function Nt(e,{}){let t=z$1.string().parse(e.token),o=ye(e.password),r=await D.findOne({token:t});if(!r)throw new Error("Invalid or expired reset token");if(r.expiresAt<new Date)throw await D.deleteOne({token:t}),new Error("Reset token has expired");let n=await f.findOne({_id:r.userId});if(!n)throw new Error("User not found");let i=await Jo.hash(o,10);return await f.updateOne({_id:n._id},{$set:{"authMethods.password.hash":i}}),await D.deleteOne({token:t}),{success:true,message:"Password has been reset successfully"}}var zt=new x("_system.user",{stores:[f,te,O,D],queries:{getOwnProfile:$t},mutations:{signupWithPassword:jt,loginWithPassword:Lt,logout:Pt,resendEmailVerification:Ot,sendResetPasswordToken:Ut,resetPassword:Nt},cronJobs:{updateDisposableEmailList:Tt},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.seconds(60),limit:1},{bucket:"verification",type:"user",window:a.days(1),limit:10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:Rt}}]});async function Ft({configSchema:e,cronJobsMetadata:t,stores:o,roles:r}){let n=process.env.MODELENCE_CONTAINER_ID;if(!n)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=Object.values(o).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2})),s=await Ne("/api/connect","POST",{hostname:rr.hostname(),containerId:n,dataModels:i,configSchema:e,cronJobsMetadata:t,roles:r});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function qt(){return await Ne("/api/configs","GET")}async function Wt(){return await Ne("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function Ne(e,t,o){let{MODELENCE_SERVICE_ENDPOINT:r,MODELENCE_SERVICE_TOKEN:n}=process.env;if(!r)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let i=await fetch(`${r}${e}`,{method:t,headers:{Authorization:`Bearer ${n}`,...o?{"Content-Type":"application/json"}:{}},body:o?JSON.stringify(o):void 0});if(!i.ok){let s=await i.text();try{let a=JSON.parse(s);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${a?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${s}`)}}return await i.json()}var ze=false,nr=a.seconds(10);function Bt(){setInterval(async()=>{if(!ze){ze=true;try{await Wt();}catch(e){console.error("Error syncing status",e);}try{await ir();}catch(e){console.error("Error syncing config",e);}ze=false;}},nr);}async function ir(){let{configs:e}=await qt();c(e);}var F=new S("_modelenceLocks",{schema:{_id:u.string(),instanceId:u.string(),acquiredAt:u.date(),resource:u.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var q={},Ht=a.seconds(10),Jt=randomBytes(32).toString("base64url"),cr=a.seconds(30),J=new Map,Fe=e=>e instanceof MongoError&&e.code===11e3,Zt=(e,t)=>typeof e.keyPattern=="object"&&e.keyPattern!==null&&Object.prototype.hasOwnProperty.call(e.keyPattern,t),lr=async({error:e,resource:t})=>{if(Zt(e,"resource"))return true;if(Zt(e,"_id"))return false;let o=await F.findOne({resource:t});return !!o&&o._id!==t},Vt=async({resource:e,staleThresholdDate:t,instanceId:o})=>{let r=await F.upsertOne({_id:e,$or:[{instanceId:o},{acquiredAt:{$lt:t}}]},{$set:{resource:e,instanceId:o,acquiredAt:new Date},$setOnInsert:{_id:e}});return r.upsertedCount>0||r.modifiedCount>0},Qt=async({resource:e,instanceId:t,staleThresholdDate:o})=>{let r=o?{resource:e,_id:{$ne:e},$or:[{instanceId:t},{acquiredAt:{$lt:o}}]}:{resource:e,instanceId:t};return (await F.deleteOne(r)).deletedCount>0},dr=e=>{let t=e,o=J.get(t);o&&(o.stopRequested=true,o.timer&&(clearTimeout(o.timer),o.timer=null),J.delete(t));},Gt=({resource:e,lockDuration:t,instanceId:o})=>{let r=Math.floor(t/3),n=e,i=J.get(n);if(i&&!i.stopRequested&&i.heartbeatInterval===r&&i.lockDuration===t)return;i&&(i.stopRequested=true,i.timer&&(clearTimeout(i.timer),i.timer=null),J.delete(n));let s={timer:null,stopRequested:false,lockDuration:t,heartbeatInterval:r},a=()=>{s.timer=setTimeout(()=>{W(e,{lockDuration:t,bypassCache:true,instanceId:o}).then(l=>{l||(s.stopRequested=true,h(`Lost lock while refreshing heartbeat: ${e}`,{source:"lock",resource:e,instanceId:o}));}).finally(()=>{if(s.stopRequested){J.delete(n);return}a();});},r);};J.set(n,s),a();};async function W(e,{lockDuration:t=cr,successfulLockCacheDuration:o=Ht,failedLockCacheDuration:r=Ht,heartbeat:n,bypassCache:i,instanceId:s=Jt}={}){let a=Date.now();if(!i&&q[e]&&a<q[e].expiresAt)return q[e].value&&n&&Gt({resource:e,lockDuration:t,instanceId:s}),q[e].value;let l=new Date(a-t);h(`Attempting to acquire lock: ${e}`,{source:"lock",resource:e,instanceId:s});try{let d=await ur({resource:e,staleThresholdDate:l,instanceId:s});return q[e]={value:d,expiresAt:a+(d?o:r)},d?(n&&Gt({resource:e,lockDuration:t,instanceId:s}),h(`Lock acquired: ${e}`,{source:"lock",resource:e,instanceId:s})):h(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:s}),d}catch{return q[e]={value:false,expiresAt:a+r},h(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:s}),false}}var ur=async({resource:e,staleThresholdDate:t,instanceId:o})=>{try{return await Vt({resource:e,staleThresholdDate:t,instanceId:o})}catch(r){if(Fe(r)&&await lr({error:r,resource:e})){if(!await Qt({resource:e,staleThresholdDate:t,instanceId:o}))return false;try{return await Vt({resource:e,staleThresholdDate:t,instanceId:o})}catch(i){if(Fe(i))return false;throw i}}if(Fe(r))return false;throw r}};async function se(e,{instanceId:t=Jt}={}){dr(e);try{let o=await F.deleteOne({_id:e,instanceId:t});return o.deletedCount===0?await Qt({resource:e,instanceId:t}):o.deletedCount>0}catch{return false}finally{delete q[e];}}var mr=a.minutes(1),B={},qe=null,We=new S("_modelenceCronJobs",{schema:{alias:u.string(),lastStartDate:u.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function Yt(e,{description:t="",interval:o,timeout:r=mr,handler:n}){if(B[e])throw new Error(`Duplicate cron job declaration: '${e}' already exists`);if(qe)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${e}]`);if(o<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${e}]`);if(r>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${e}]`);B[e]={alias:e,params:{description:t,interval:o,timeout:r},handler:n,state:{isRunning:false}};}async function Xt(){if(qe)throw new Error("Cron jobs already started");let e=Object.keys(B);if(e.length>0){let t={alias:{$in:e}},o=await We.fetch(t),r=Date.now();o.forEach(n=>{let i=B[n.alias];i&&(i.state.scheduledRunTs=n.lastStartDate?n.lastStartDate.getTime()+i.params.interval:r);}),Object.values(B).forEach(n=>{n.state.scheduledRunTs||(n.state.scheduledRunTs=r);}),qe=setInterval(pr,a.seconds(1));}}async function pr(){let e=Date.now();await W("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(B).forEach(async o=>{let{params:r,state:n}=o;if(n.isRunning){n.startTs&&n.startTs+r.timeout<e&&(n.isRunning=false);return}n.scheduledRunTs&&n.scheduledRunTs<=e&&await fr(o);});}async function fr(e){let{alias:t,params:o,handler:r,state:n}=e;n.isRunning=true,n.startTs=Date.now(),await We.updateOne({alias:t},{$set:{lastStartDate:new Date(n.startTs)}});let i=k("cron",`cron:${t}`);try{await r(),Kt(n,o),i.end("success");}catch(s){Kt(n,o);let a=s instanceof Error?s:new Error(String(s));l(a),i.end("error"),console.error(`Error in cron job '${t}':`,s);}}function Kt(e,t){e.scheduledRunTs=e.startTs?e.startTs+t.interval:Date.now(),e.startTs=void 0,e.isRunning=false;}function eo(){return Object.values(B).map(({alias:e,params:t})=>({alias:e,description:t.description,interval:t.interval,timeout:t.timeout}))}var to=new x("_system.cron",{stores:[We]});var Be=new x("_system.lock",{stores:[F]});var ae=new S("_modelenceMigrations",{schema:{version:u.number(),status:u.enum(["completed","failed"]),description:u.string().optional(),output:u.string().optional(),appliedAt:u.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function hr(e){if(e.length===0)return;if(!await W("migrations")){i("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let o=e.map(({version:s})=>s),r=await ae.fetch({version:{$in:o}}),n=new Set(r.map(({version:s})=>s)),i$1=e.filter(({version:s})=>!n.has(s));if(i$1.length===0)return;i(`Running migrations (${i$1.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:l}of i$1){i(`Running migration v${s}: ${a}`,{source:"migrations"});try{let p=(await l()||"").toString().trim(),c=15*1024*1024,h=p.length>c?p.slice(0,c)+`
|
|
15
|
-
[Output truncated - exceeded size limit]`:p;await ae.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:h,appliedAt:new Date}}),i(`Migration v${s} complete`,{source:"migrations"});}catch(d){d instanceof Error&&(await ae.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:d.message||"",appliedAt:new Date}}),i(`Migration v${s} is failed: ${d.message}`,{source:"migrations"}));}}}finally{await se("migrations");}}function oo(e){setTimeout(()=>{hr(e).catch(t=>{console.error("Error running migrations:",t);});},0);}var ro=new x("_system.migration",{stores:[ae]});var no=new x("_system.rateLimit",{stores:[ne]});var io=new x("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});var Ze=class{async init(){this.config=await vr(),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let t=[j$1.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&t.push(j$1.static(this.config.publicDir)),t}handler(t,o){if(this.isDev())try{o.setHeader("Cache-Control","no-store"),o.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),o.status(500).send("Internal Server Error");}else o.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function Er(){let e=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,e))?.config||{}}catch(t){return console.warn("Could not load vite config:",t),{}}}function Cr(e,t){let o=mergeConfig(e,t);if(o.plugins&&Array.isArray(o.plugins)){let r=new Set;o.plugins=o.plugins.flat().filter(n=>{if(!n||typeof n!="object"||Array.isArray(n))return true;let i=n.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),o.plugins.reverse();}return o}async function vr(){let e=process.cwd(),t=await Er(),o=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(i=>xr.existsSync(He.join(e,i))),r=[Sr(),Tr()];if(o){let i=(await import('vite-plugin-eslint')).default;r.push(i({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:He.resolve(e,o)}));}let n=defineConfig({plugins:r,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true},root:"./src/client",resolve:{alias:{"@":He.resolve(e,"src").replace(/\\/g,"/")}}});return Cr(n,t)}function Tr(){return {name:"modelence-asset-handler",async transform(e,t){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(t))return process.env.NODE_ENV==="development",e}}}var ao=new Ze;async function co(e,t){let{authToken:o}=await _e(t);e.cookie("authToken",o,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict"}),e.status(301),e.redirect("/");}function Q(e){return `${a$1("_system.site.url")}/api/_internal/auth/${e}/callback`}async function we(e,t,o){let r=await f.findOne({[`authMethods.${o.providerName}.id`]:o.id}),{session:n,connectionInfo:i}=await Ve(e);try{if(r){await co(t,r._id),y().onAfterLogin?.({provider:o.providerName,user:r,session:n,connectionInfo:i}),y().login?.onSuccess?.(r);return}}catch(s){throw s instanceof Error&&(y().login?.onError?.(s),y().onLoginError?.({provider:o.providerName,error:s,session:n,connectionInfo:i})),s}try{if(!o.email){t.status(400).json({error:`Email address is required for ${o.providerName} authentication.`});return}if(await f.findOne({"emails.address":o.email},{collation:{locale:"en",strength:2}})){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}let a=await f.insertOne({handle:o.email,status:"active",emails:[{address:o.email,verified:o.emailVerified}],createdAt:new Date,authMethods:{[o.providerName]:{id:o.id}}});await co(t,a.insertedId);let l=await f.findOne({_id:a.insertedId},{readPreference:"primary"});l&&(y().onAfterSignup?.({provider:o.providerName,user:l,session:n,connectionInfo:i}),y().signup?.onSuccess?.(l));}catch(s){throw s instanceof Error&&(y().onSignupError?.({provider:o.providerName,error:s,session:n,connectionInfo:i}),y().signup?.onError?.(s)),s}}function be(e){return !e||typeof e!="string"?null:e}async function _r(e,t,o,r){let n=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:e,client_id:t,client_secret:o,redirect_uri:r,grant_type:"authorization_code"})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function Ar(e){let t=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${e}`}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function Mr(e,t){let o=be(e.query.code),r=e.query.state,n=e.cookies.authStateGoogle;if(!o){t.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGoogle");let i=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret")),a=Q("google");try{let l=await _r(o,i,s,a),d=await Ar(l.access_token),p={id:d.id,email:d.email,emailVerified:d.verified_email,providerName:"google"};await we(e,t,p);}catch(l){console.error("Google OAuth error:",l),t.status(500).json({error:"Authentication failed"});}}function Rr(){let e=Router(),t=(o,r,n)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"Google authentication is not configured"});return}n();};return e.get("/api/_internal/auth/google",t,(o,r)=>{let n=String(a$1("_system.user.auth.google.clientId")),i=Q("google"),s=randomBytes(32).toString("hex");r.cookie("authStateGoogle",s,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let a$2=new URL("https://accounts.google.com/o/oauth2/v2/auth");a$2.searchParams.append("client_id",n),a$2.searchParams.append("redirect_uri",i),a$2.searchParams.append("response_type","code"),a$2.searchParams.append("scope","profile email"),a$2.searchParams.append("access_type","online"),a$2.searchParams.append("state",s),r.redirect(a$2.toString());}),e.get("/api/_internal/auth/google/callback",t,Mr),e}var lo=Rr;async function Lr(e,t,o,r){let n=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:t,client_secret:o,code:e,redirect_uri:r})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function Pr(e){let t=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function $r(e){let t=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user emails: ${t.statusText}`);return t.json()}async function jr(e,t){return e.email?e.email:(await $r(t)).find(r=>r.primary&&r.verified)?.email??null}async function Ur(e,t){let o=be(e.query.code),r=e.query.state,n=e.cookies.authStateGithub;if(!o){t.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGithub");let i=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret")),a=Q("github");try{let l=await Lr(o,i,s,a),d=await Pr(l.access_token),p=await jr(d,l.access_token);if(!p){t.status(400).json({error:"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary."});return}let c={id:String(d.id),email:p,emailVerified:!0,providerName:"github"};await we(e,t,c);}catch(l){console.error("GitHub OAuth error:",l),t.status(500).json({error:"Authentication failed"});}}function Nr(){let e=Router(),t=(o,r,n)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"GitHub authentication is not configured"});return}n();};return e.get("/api/_internal/auth/github",t,(o,r)=>{let n=String(a$1("_system.user.auth.github.clientId")),i=Q("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(p=>p.trim()).join(" "):"user:email",l=randomBytes(32).toString("hex");r.cookie("authStateGithub",l,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let d=new URL("https://github.com/login/oauth/authorize");d.searchParams.append("client_id",n),d.searchParams.append("redirect_uri",i),d.searchParams.append("scope",a$2),d.searchParams.append("state",l),r.redirect(d.toString());}),e.get("/api/_internal/auth/github/callback",t,Ur),e}var uo=Nr;function mo(e,t,o){return async(r,n,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&z())try{let{session:d,user:p}=await _(s);a={session:d,user:p};}catch{}let l=k("route",`route:${e.toLowerCase()}:${t}`,{method:e,path:t,query:r.query,body:r.body,params:r.params});try{let d=await o({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:n,next:i},a);l.end(),d&&(n.status(d.status||200),d.redirect&&n.redirect(d.redirect),d.headers&&Object.entries(d.headers).forEach(([p,c])=>{n.setHeader(p,c);}),n.send(d.data));}catch(d){l.end("error"),d instanceof a$3?n.status(d.status).send(d.message):(console.error(`Error in route handler: ${r.path}`),console.error(d),n.status(500).send(String(d)));}}}var Ge=Object.freeze({});function po(e){Ge=Object.freeze(Object.assign({},Ge,e));}function fo(){return Ge}var Je=Object.freeze({});function ho(e){Je=Object.freeze(Object.assign({},Je,e));}function Se(){return Je}function qr(e){let t=[];if(!e)return t.push(j$1.json({limit:"16mb"})),t.push(j$1.urlencoded({extended:true,limit:"16mb"})),t;if(e.json!==false){let o=typeof e.json=="object"?e.json:{limit:"16mb"};t.push(j$1.json(o));}if(e.urlencoded!==false){let o=typeof e.urlencoded=="object"?e.urlencoded:{extended:true,limit:"16mb"};t.push(j$1.urlencoded(o));}if(e.raw){let o=typeof e.raw=="object"?e.raw:{},r={limit:o.limit||"16mb",type:o.type||"*/*"};t.push(j$1.raw(r));}return t}function Wr(e,t){for(let o of t)for(let r of o.routes){let{path:n,handlers:i,body:s}=r,a=qr(s);Object.entries(i).forEach(([l,d])=>{e[l](n,...a,mo(l,n,d));});}}async function go(e,{combinedModules:t,channels:o}){let r=j$1();r.use(zr()),r.use(Zr()),Wr(r,t),r.use(j$1.json({limit:"16mb"})),r.use(j$1.urlencoded({extended:true,limit:"16mb"})),r.use(lo()),r.use(uo()),r.post("/api/_internal/method/:methodName(*)",async(a,l)=>{let{methodName:d}=a.params,p=await Ve(a);try{let c=await xt(d,a.body.args,p);l.json({data:c,typeMap:a$2(c)});}catch(c){Br(l,d,c);}}),await e.init(),e.middlewares&&r.use(e.middlewares()),r.all("*",(a,l)=>e.handler(a,l)),process.on("unhandledRejection",(a,l)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",l);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let n=Fr.createServer(r),i$1=Se()?.provider;i$1&&i$1.init({httpServer:n,channels:o});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;n.listen(s,()=>{i("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
|
|
14
|
+
`}var Ze={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function Xt(e,{connectionInfo:t}){let r=$(e.email),n=t?.ip;n&&await _({bucket:"passwordReset",type:"ip",value:n}),await _({bucket:"passwordReset",type:"email",value:r});let o=await f.findOne({"emails.address":r,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return Ze;let i=S().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),c=new Date(a$2),d=new Date(a$2+a.hours(1));await M.insertOne({userId:o._id,token:s,createdAt:c,expiresAt:d});let m=a$1("_system.site.url")||t?.baseUrl,h=`${Cn(m,S().passwordReset?.redirectUrl)}?token=${s}`,g=(S()?.passwordReset?.template||xn)({email:r,resetUrl:h,name:""}),T=we(g);return await i.sendEmail({to:r,from:S()?.from||"noreply@modelence.com",subject:S()?.passwordReset?.subject||"Reset your password",text:T,html:g}),Ze}async function Yt(e,{}){let t=z.string().parse(e.token),r=Ee(e.password),n=await M.findOne({token:t});if(!n)throw new Error("Invalid or expired reset token");if(n.expiresAt<new Date)throw await M.deleteOne({token:t}),new Error("Reset token has expired");let o=await f.findOne({_id:n.userId});if(!o)throw new Error("User not found");let i=await fn.hash(r,10);return await f.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),await M.deleteOne({token:t}),{success:true,message:"Password has been reset successfully"}}var er=new C("_system.user",{stores:[f,ie,N,M],queries:{getOwnProfile:Bt},mutations:{signupWithPassword:Kt,loginWithPassword:Zt,logout:Gt,resendEmailVerification:Wt,sendResetPasswordToken:Xt,resetPassword:Yt,updateProfile:Jt},cronJobs:{updateDisposableEmailList:Lt},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.seconds(60),limit:1},{bucket:"verification",type:"user",window:a.days(1),limit:10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:Ht}}]});var En={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function vn(e,t){if(t==="number"){let r=Number(e);if(isNaN(r))throw new Error(`Invalid number value for config: ${e}`);return r}if(t==="boolean"){if(e.toLowerCase()==="true")return true;if(e.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${e}`)}return e}function Tn(e,t){let r=[];for(let[n,o]of Object.entries(e)){let i=process.env[n],s=t[o];if(i){let a=s?.type??"string";r.push({key:o,type:a,value:vn(i,a)});}}return r}function ve(e,t="withoutRemoteServer"){let r=En[t];return Tn(r,e)}async function tr({configSchema:e,cronJobsMetadata:t,stores:r,roles:n}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=Object.values(r).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2})),s=await Ge("/api/connect","POST",{hostname:kn.hostname(),containerId:o,dataModels:i,configSchema:e,cronJobsMetadata:t,roles:n});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function rr(){return Ge("/api/configs","GET")}async function nr(){return await Ge("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function Ge(e,t,r){return te(e,t,r?JSON.stringify(r):void 0,r?{"Content-Type":"application/json"}:{})}async function te(e,t,r,n){let{MODELENCE_SERVICE_ENDPOINT:o,MODELENCE_SERVICE_TOKEN:i}=process.env;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let s=await fetch(`${o}${e}`,{method:t,headers:{Authorization:`Bearer ${i}`,...n},body:r});if(!s.ok){let a=await s.text();try{let c=JSON.parse(a);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${c?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${a}`)}}if(!(s.status===204||s.headers?.get("content-length")==="0"))return await s.json()}var Be=false,_n=a.seconds(10);function or(){setInterval(async()=>{if(!Be){Be=true;try{await nr();}catch(e){console.error("Error syncing status",e);}try{await Rn();}catch(e){console.error("Error syncing config",e);}Be=false;}},_n);}function Je(e){c(e),c(ve(d$1(),"withRemoteServer"));}async function Rn(){let{configs:e}=await rr();Je(e);}var Z=new x("_modelenceLocks",{schema:{_id:u.string(),instanceId:u.string(),acquiredAt:u.date(),resource:u.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var G={},ir=a.seconds(10),lr=randomBytes(32).toString("base64url"),Mn=a.seconds(30),re=new Map,Qe=e=>e instanceof MongoError&&e.code===11e3,sr=(e,t)=>typeof e.keyPattern=="object"&&e.keyPattern!==null&&Object.prototype.hasOwnProperty.call(e.keyPattern,t),Dn=async({error:e,resource:t})=>{if(sr(e,"resource"))return true;if(sr(e,"_id"))return false;let r=await Z.findOne({resource:t});return !!r&&r._id!==t},ar=async({resource:e,staleThresholdDate:t,instanceId:r})=>{let n=await Z.upsertOne({_id:e,$or:[{instanceId:r},{acquiredAt:{$lt:t}}]},{$set:{resource:e,instanceId:r,acquiredAt:new Date},$setOnInsert:{_id:e}});return n.upsertedCount>0||n.modifiedCount>0},dr=async({resource:e,instanceId:t,staleThresholdDate:r})=>{let n=r?{resource:e,_id:{$ne:e},$or:[{instanceId:t},{acquiredAt:{$lt:r}}]}:{resource:e,instanceId:t};return (await Z.deleteOne(n)).deletedCount>0},In=e=>{let t=e,r=re.get(t);r&&(r.stopRequested=true,r.timer&&(clearTimeout(r.timer),r.timer=null),re.delete(t));},cr=({resource:e,lockDuration:t,instanceId:r})=>{let n=Math.floor(t/3),o=e,i$1=re.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===n&&i$1.lockDuration===t)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),re.delete(o));let s={timer:null,stopRequested:false,lockDuration:t,heartbeatInterval:n},a=()=>{s.timer=setTimeout(()=>{B(e,{lockDuration:t,bypassCache:true,instanceId:r}).then(c=>{c||(s.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${e}`,{source:"lock",resource:e,instanceId:r}));}).finally(()=>{if(s.stopRequested){re.delete(o);return}a();});},n);};re.set(o,s),a();};async function B(e,{lockDuration:t=Mn,successfulLockCacheDuration:r=ir,failedLockCacheDuration:n=ir,heartbeat:o,bypassCache:i$1,instanceId:s=lr}={}){let a=Date.now();if(!i$1&&G[e]&&a<G[e].expiresAt)return G[e].value&&o&&cr({resource:e,lockDuration:t,instanceId:s}),G[e].value;let c=new Date(a-t);i(`Attempting to acquire lock: ${e}`,{source:"lock",resource:e,instanceId:s});try{let d=await Pn({resource:e,staleThresholdDate:c,instanceId:s});return G[e]={value:d,expiresAt:a+(d?r:n)},d?(o&&cr({resource:e,lockDuration:t,instanceId:s}),i(`Lock acquired: ${e}`,{source:"lock",resource:e,instanceId:s})):i(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:s}),d}catch{return G[e]={value:false,expiresAt:a+n},i(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:s}),false}}var Pn=async({resource:e,staleThresholdDate:t,instanceId:r})=>{try{return await ar({resource:e,staleThresholdDate:t,instanceId:r})}catch(n){if(Qe(n)&&await Dn({error:n,resource:e})){if(!await dr({resource:e,staleThresholdDate:t,instanceId:r}))return false;try{return await ar({resource:e,staleThresholdDate:t,instanceId:r})}catch(i){if(Qe(i))return false;throw i}}if(Qe(n))return false;throw n}};async function ue(e,{instanceId:t=lr}={}){In(e);try{let r=await Z.deleteOne({_id:e,instanceId:t});return r.deletedCount===0?await dr({resource:e,instanceId:t}):r.deletedCount>0}catch{return false}finally{delete G[e];}}var J={},Ke=null,Xe=new x("_modelenceCronJobs",{schema:{alias:u.string(),lastStartDate:u.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function mr(e,{description:t="",interval:r,timeout:n=Math.min(Math.max(r,a.minutes(1)),a.days(1)),handler:o}){if(J[e])throw new Error(`Duplicate cron job declaration: '${e}' already exists`);if(Ke)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${e}]`);if(r<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${e}]`);if(n>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${e}]`);J[e]={alias:e,params:{description:t,interval:r,timeout:n},handler:o,state:{isRunning:false}};}async function pr(){if(Ke)throw new Error("Cron jobs already started");let e=Object.keys(J);if(e.length>0){let t={alias:{$in:e}},r=await Xe.fetch(t),n=Date.now();r.forEach(o=>{let i=J[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:n);}),Object.values(J).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=n);}),Ke=setInterval(Nn,a.seconds(1));}}async function Nn(){let e=Date.now();await B("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(J).forEach(async r=>{let{params:n,state:o}=r;if(o.isRunning){o.startTs&&o.startTs+n.timeout<e&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=e&&await Ln(r);});}async function Ln(e){let{alias:t,params:r,handler:n,state:o}=e;o.isRunning=true,o.startTs=Date.now(),await Xe.updateOne({alias:t},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${t}`);try{await n(),ur(o,r),i.end("success");}catch(s){ur(o,r);let a=s instanceof Error?s:new Error(String(s));m(a),i.end("error"),console.error(`Error in cron job '${t}':`,s);}}function ur(e,t){e.scheduledRunTs=e.startTs?e.startTs+t.interval:Date.now(),e.startTs=void 0,e.isRunning=false;}function fr(){return Object.values(J).map(({alias:e,params:t})=>({alias:e,description:t.description,interval:t.interval,timeout:t.timeout}))}var hr=new C("_system.cron",{stores:[Xe]});var Ye=new C("_system.lock",{stores:[Z]});var me=new x("_modelenceMigrations",{schema:{version:u.number(),status:u.enum(["completed","failed"]),description:u.string().optional(),output:u.string().optional(),appliedAt:u.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function Un(e){if(e.length===0)return;if(!await B("migrations")){j("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let r=e.map(({version:s})=>s),n=await me.fetch({version:{$in:r}}),o=new Set(n.map(({version:s})=>s)),i=e.filter(({version:s})=>!o.has(s));if(i.length===0)return;j(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i){j(`Running migration v${s}: ${a}`,{source:"migrations"});try{let m=(await c()||"").toString().trim(),l=15*1024*1024,h=m.length>l?m.slice(0,l)+`
|
|
15
|
+
[Output truncated - exceeded size limit]`:m;await me.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:h,appliedAt:new Date}}),j(`Migration v${s} complete`,{source:"migrations"});}catch(d){d instanceof Error&&(await me.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:d.message||"",appliedAt:new Date}}),j(`Migration v${s} is failed: ${d.message}`,{source:"migrations"}));}}}finally{await ue("migrations");}}function gr(e){setTimeout(()=>{Un(e).catch(t=>{console.error("Error running migrations:",t);});},0);}var yr=new C("_system.migration",{stores:[me]});var wr=new C("_system.rateLimit",{stores:[le]});var br=new C("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});async function Sr({filePath:e,contentType:t,visibility:r}){return await te("/api/files/upload","POST",JSON.stringify({filePath:e,contentType:t,visibility:r}),{"Content-Type":"application/json"})}async function Cr(e){await te("/api/files/delete","POST",JSON.stringify({filePath:e}),{"Content-Type":"application/json"});}async function xr(e){return await te("/api/files/download","POST",JSON.stringify({filePath:e}),{"Content-Type":"application/json"})}async function Er(e){return await te("/api/files/url","POST",JSON.stringify({filePath:e}),{"Content-Type":"application/json"})}var vr=new C("_system.files",{queries:{async downloadFile({filePath:e}){return xr(e)},async getFileUrl({filePath:e}){return Er(e)}},mutations:{async getUploadUrl({filePath:e,contentType:t,visibility:r}){return Sr({filePath:e,contentType:t,visibility:r})},async deleteFile({filePath:e}){return Cr(e)}}});var tt=class{async init(){this.config=await Zn(),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let t=[F.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&t.push(F.static(this.config.publicDir)),t}handler(t,r){if(this.isDev())try{r.setHeader("Cache-Control","no-store"),r.sendFile("index.html",{root:"./src/client"});}catch(n){console.error("Error serving index.html:",n),r.status(500).send("Internal Server Error");}else r.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function Wn(){let e=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,e))?.config||{}}catch(t){return console.warn("Could not load vite config:",t),{}}}function Vn(e,t){let r=mergeConfig(e,t);if(r.plugins&&Array.isArray(r.plugins)){let n=new Set;r.plugins=r.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return true;let i=o.name;return !i||n.has(i)?false:(n.add(i),true)}).reverse(),r.plugins.reverse();}return r}async function Zn(){let e=process.cwd(),t=await Wn(),r=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(i=>Hn.existsSync(et.join(e,i))),n=[qn(),Gn()];if(r){let i=(await import('vite-plugin-eslint')).default;n.push(i({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:et.resolve(e,r)}));}let o=defineConfig({plugins:n,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true},root:"./src/client",resolve:{alias:{"@":et.resolve(e,"src").replace(/\\/g,"/")}}});return Vn(o,t)}function Gn(){return {name:"modelence-asset-handler",async transform(e,t){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(t))return process.env.NODE_ENV==="development",e}}}var kr=new tt;async function rt(e,t){let{authToken:r}=await Ne(t);e.cookie("authToken",r,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict"}),e.status(302),e.redirect("/");}async function Bn(e,t,r,n,o){let i=E();try{if(r.status==="disabled"||r.status==="deleted"){e.status(400).json({error:"User account is not active."});return}let s={};r.firstName===void 0&&t.firstName&&(s.firstName=t.firstName),r.lastName===void 0&&t.lastName&&(s.lastName=t.lastName),r.avatarUrl===void 0&&t.avatarUrl&&(s.avatarUrl=t.avatarUrl);let a=r;Object.keys(s).length>0&&(await f.updateOne({_id:r._id},{$set:s}),a={...r,...s}),await rt(e,r._id),i.onAfterLogin?.({provider:t.providerName,user:a,session:n,connectionInfo:o}),i.login?.onSuccess?.(a);}catch(s){throw s instanceof Error&&(i.login?.onError?.(s),i.onLoginError?.({provider:t.providerName,error:s,session:n,connectionInfo:o})),s}}async function Jn(e,t,r,n,o){let i=E();if((i.oauthAccountLinking??"manual")==="auto"&&t.emailVerified){if(r.status==="disabled"||r.status==="deleted"){e.status(400).json({error:"User account is not active."});return}if(!r.emails?.find(c=>c.address.toLowerCase()===t.email.toLowerCase())?.verified){e.status(400).json({error:"User with this email already exists. Please log in instead."});return}try{let c={...r.firstName===void 0&&t.firstName&&{firstName:t.firstName},...r.lastName===void 0&&t.lastName&&{lastName:t.lastName},...r.avatarUrl===void 0&&t.avatarUrl&&{avatarUrl:t.avatarUrl}};if(!((await f.updateOne({_id:r._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${t.providerName}.id`]:{$exists:!1}},{[`authMethods.${t.providerName}.id`]:t.id}]},{$set:{[`authMethods.${t.providerName}.id`]:t.id,...c}})).matchedCount>0)){e.status(400).json({error:"User with this email already exists. Please log in instead."});return}await rt(e,r._id);let l={...r,...c,authMethods:{...r.authMethods,[t.providerName]:{id:t.id}}};i.onAfterLogin?.({provider:t.providerName,user:l,session:n,connectionInfo:o}),i.login?.onSuccess?.(l);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:t.providerName,error:c,session:n,connectionInfo:o})),c}}e.status(400).json({error:"User with this email already exists. Please log in instead."});}async function Qn(e,t,r,n){let o=E();try{let i;if(o.generateHandle){let d=await o.generateHandle({email:t.email,firstName:t.firstName,lastName:t.lastName});i=await V(d,t.email,{throwOnConflict:!1});}else i=await V(void 0,t.email);let s={handle:i,status:"active",emails:[{address:t.email,verified:t.emailVerified}],createdAt:new Date,authMethods:{[t.providerName]:{id:t.id}},...t.firstName!==void 0&&{firstName:t.firstName},...t.lastName!==void 0&&{lastName:t.lastName},...t.avatarUrl!==void 0&&{avatarUrl:t.avatarUrl}},a=await f.insertOne(s);await rt(e,a.insertedId);let c=await f.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:t.providerName,user:c,session:r,connectionInfo:n}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:t.providerName,error:i,session:r,connectionInfo:n}),o.signup?.onError?.(i)),i}}function ne(e){return `${a$1("_system.site.url")}/api/_internal/auth/${e}/callback`}async function Te(e,t,r){let n=await f.findOne({[`authMethods.${r.providerName}.id`]:r.id}),{session:o,connectionInfo:i}=await nt(e);if(n)return Bn(t,r,n,o,i);if(!r.email){t.status(400).json({error:`Email address is required for ${r.providerName} authentication.`});return}let s;try{s=await f.findOne({"emails.address":r.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(a){if(a instanceof Error){let c=E();c.onSignupError?.({provider:r.providerName,error:a,session:o,connectionInfo:i}),c.signup?.onError?.(a);}throw a}return s?Jn(t,r,s,o,i):Qn(t,r,o,i)}function ke(e){return !e||typeof e!="string"?null:e}async function Yn(e,t,r,n){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:e,client_id:t,client_secret:r,redirect_uri:n,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function eo(e){let t=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${e}`}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function to(e,t){let r=ke(e.query.code),n=e.query.state,o=e.cookies.authStateGoogle;if(!r){t.status(400).json({error:"Missing authorization code"});return}if(!n||!o||n!==o){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGoogle");let i=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret")),a=ne("google");try{let c=await Yn(r,i,s,a),d=await eo(c.access_token),m={id:d.id,email:d.email,emailVerified:d.verified_email,providerName:"google",firstName:d.given_name||void 0,lastName:d.family_name||void 0,avatarUrl:d.picture||void 0};await Te(e,t,m);}catch(c){console.error("Google OAuth error:",c),t.status(500).json({error:"Authentication failed"});}}function ro(){let e=Router(),t=(r,n,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){n.status(503).json({error:"Google authentication is not configured"});return}o();};return e.get("/api/_internal/auth/google",t,(r,n)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=ne("google"),s=randomBytes(32).toString("hex");n.cookie("authStateGoogle",s,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let a$2=new URL("https://accounts.google.com/o/oauth2/v2/auth");a$2.searchParams.append("client_id",o),a$2.searchParams.append("redirect_uri",i),a$2.searchParams.append("response_type","code"),a$2.searchParams.append("scope","profile email"),a$2.searchParams.append("access_type","online"),a$2.searchParams.append("state",s),n.redirect(a$2.toString());}),e.get("/api/_internal/auth/google/callback",t,to),e}var _r=ro;async function io(e,t,r,n){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:t,client_secret:r,code:e,redirect_uri:n})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function so(e){let t=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function ao(e){let t=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user emails: ${t.statusText}`);return t.json()}async function co(e,t){return e.email?e.email:(await ao(t)).find(n=>n.primary&&n.verified)?.email??null}async function lo(e,t){let r=ke(e.query.code),n=e.query.state,o=e.cookies.authStateGithub;if(!r){t.status(400).json({error:"Missing authorization code"});return}if(!n||!o||n!==o){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGithub");let i=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret")),a=ne("github");try{let c=await io(r,i,s,a),d=await so(c.access_token),m=await co(d,c.access_token);if(!m){t.status(400).json({error:"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary."});return}let l=d.name?d.name.trim().split(/\s+/):[],h=l[0]||void 0,w=l.length>1?l.slice(1).join(" "):void 0,g={id:String(d.id),email:m,emailVerified:!0,providerName:"github",firstName:h,lastName:w,avatarUrl:d.avatar_url||void 0};await Te(e,t,g);}catch(c){console.error("GitHub OAuth error:",c),t.status(500).json({error:"Authentication failed"});}}function uo(){let e=Router(),t=(r,n,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){n.status(503).json({error:"GitHub authentication is not configured"});return}o();};return e.get("/api/_internal/auth/github",t,(r,n)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=ne("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(m=>m.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex");n.cookie("authStateGithub",c,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let d=new URL("https://github.com/login/oauth/authorize");d.searchParams.append("client_id",o),d.searchParams.append("redirect_uri",i),d.searchParams.append("scope",a$2),d.searchParams.append("state",c),n.redirect(d.toString());}),e.get("/api/_internal/auth/github/callback",t,lo),e}var Rr=uo;function Or(e,t,r){return async(n,o,i)=>{let s=n.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&H())try{let{session:d,user:m}=await D(s);a={session:d,user:m};}catch{}let c=l("route",`route:${e.toLowerCase()}:${t}`,{method:e,path:t,query:n.query,body:n.body,params:n.params});try{let d=await r({query:n.query,body:n.body,params:n.params,headers:n.headers,cookies:n.cookies,rawBody:Buffer.isBuffer(n.body)?n.body:void 0,req:n,res:o,next:i},a);c.end(),d&&(o.status(d.status||200),d.redirect&&o.redirect(d.redirect),d.headers&&Object.entries(d.headers).forEach(([m,l])=>{o.setHeader(m,l);}),o.send(d.data));}catch(d){c.end("error"),d instanceof a$3?o.status(d.status).send(d.message):(console.error(`Error in route handler: ${n.path}`),console.error(d),o.status(500).send(String(d)));}}}var ot=Object.freeze({});function Ar(e){ot=Object.freeze(Object.assign({},ot,e));}function Mr(){return ot}var it=Object.freeze({});function Dr(e){it=Object.freeze(Object.assign({},it,e));}function _e(){return it}function fo(e){let t=[];if(!e)return t.push(F.json({limit:"16mb"})),t.push(F.urlencoded({extended:true,limit:"16mb"})),t;if(e.json!==false){let r=typeof e.json=="object"?e.json:{limit:"16mb"};t.push(F.json(r));}if(e.urlencoded!==false){let r=typeof e.urlencoded=="object"?e.urlencoded:{extended:true,limit:"16mb"};t.push(F.urlencoded(r));}if(e.raw){let r=typeof e.raw=="object"?e.raw:{},n={limit:r.limit||"16mb",type:r.type||"*/*"};t.push(F.raw(n));}return t}function ho(e,t){for(let r of t)for(let n of r.routes){let{path:o,handlers:i,body:s}=n,a=fo(s);Object.entries(i).forEach(([c,d])=>{e[c](o,...a,Or(c,o,d));});}}async function Ir(e,{combinedModules:t,channels:r}){let n=F();n.use(mo()),n.use(wo()),ho(n,t),n.use(F.json({limit:"16mb"})),n.use(F.urlencoded({extended:true,limit:"16mb"})),n.use(_r()),n.use(Rr()),n.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:d}=a.params,m=await nt(a);try{let l=await Dt(d,a.body.args,m);c.json({data:l,typeMap:a$2(l)});}catch(l){go(c,d,l);}}),await e.init(),e.middlewares&&n.use(e.middlewares()),n.all("*",(a,c)=>e.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let o=po.createServer(n),i=_e()?.provider;i&&i.init({httpServer:o,channels:r});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(s,()=>{j("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
|
|
16
16
|
Application started on ${a}
|
|
17
|
-
`);});}async function
|
|
18
|
-
export{
|
|
17
|
+
`);});}async function nt(e){let t=j$1.string().nullish().transform(i=>i??null).parse(e.cookies.authToken||e.body.authToken),r=j$1.object({screenWidth:j$1.number(),screenHeight:j$1.number(),windowWidth:j$1.number(),windowHeight:j$1.number(),pixelRatio:j$1.number(),orientation:j$1.string().nullable()}).nullish().parse(e.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},n={ip:bo(e),userAgent:e.get("user-agent"),acceptLanguage:e.get("accept-language"),referrer:e.get("referrer"),baseUrl:e.protocol+"://"+e.get("host")};if(!!H()){let{session:i,user:s,roles:a}=await D(t);return {clientInfo:r,connectionInfo:n,session:i,user:s,roles:a}}return {clientInfo:r,connectionInfo:n,session:null,user:null,roles:ge()}}function go(e,t,r){if(r instanceof a$3){r.status>=500&&r.status<600&&console.error(`Error calling ${t}:`,r),e.status(r.status).send(r.message);return}if(r instanceof Error&&r?.constructor?.name==="ZodError"&&"errors"in r){let n="";try{n=yo(r);}catch(o){console.error(`Error parsing Zod error in ${t}:`,o),n="Validation failed";}e.status(400).send(n);return}console.error(`Error calling ${t}:`,r),e.status(500).send(r instanceof Error?r.message:String(r));}function yo(e){let t=e.flatten(),r=Object.entries(t.fieldErrors).map(([i,s])=>`${i}: ${(s??[]).join(", ")}`),n=t.formErrors;return [...r,...n].filter(Boolean).join("; ")}function wo(){let{frameAncestors:e}=Mr(),t=e&&e.length>0,r=t?["'self'",...e].join(" "):"'self'";return (n,o,i)=>{o.setHeader("Content-Security-Policy",`frame-ancestors ${r}`),t||o.setHeader("X-Frame-Options","SAMEORIGIN"),i();}}function bo(e){let t=e.headers["x-forwarded-for"];if(t)return (Array.isArray(t)?t[0]:t.split(",")[0]).trim();let r=e.ip||e.socket?.remoteAddress;if(r)return r.startsWith("::ffff:")?r.substring(7):r}async function Eo({modules:e$1=[],roles:t={},defaultRoles:r={},server:n=kr,migrations:o=[],email:i={},auth:s={},security:a={},websocket:c$1={}}){Pr.config(),Pr.config({path:".modelence.env"});let d=!!process.env.MODELENCE_SERVICE_ENDPOINT;Po().then(()=>{}).catch(()=>{});let m=[er,xt,hr,yr,wr,br,Ye,vr],l=[...m,...e$1];f$1(),To(m),vo(e$1),vt(t,r);let h$1=Mo(l);e(h$1);let w=ko(l),g$1=_o(l);Do(l);let T=Ro(l);if(qt(T),d){let{configs:k,environmentId:O,appAlias:A,environmentAlias:z,telemetry:R}=await tr({configSchema:h$1,cronJobsMetadata:fr(),stores:w,roles:t});Je(k),g({environmentId:O,appAlias:A,environmentAlias:z,telemetry:R});}else c(ve(h$1));Ut(i),jt(s),Ar(a),Dr({...c$1,provider:c$1.provider||Pt}),H()&&(await kt(),Io(w),await Ao(w)),gr(o),d&&(await h(),or()),pr().catch(console.error),await Ir(n,{combinedModules:l,channels:g$1});}function vo(e){for(let t of e){for(let[r,n]of Object.entries(t.queries))Ue(`${t.name}.${r}`,n);for(let[r,n]of Object.entries(t.mutations))_t(`${t.name}.${r}`,n);}}function To(e){for(let t of e){for(let[r,n]of Object.entries(t.queries))Rt(`${t.name}.${r}`,n);for(let[r,n]of Object.entries(t.mutations))Ot(`${t.name}.${r}`,n);}}function ko(e){return e.flatMap(t=>t.stores)}function _o(e){return e.flatMap(t=>t.channels)}function Ro(e){return e.flatMap(t=>t.rateLimits)}function Oo(e,t){console.warn(`Failed to create indexes for store '${e}'. Continuing startup.`,t);}var st="indexes";async function Ao(e){if(!await B(st,{lockDuration:a.seconds(30),heartbeat:true}))return;let r=false;try{let n=e.filter(i=>i.getIndexCreationMode()==="blocking"),o=e.filter(i=>i.getIndexCreationMode()==="background");for(let i of n)await Nr(i);o.length>0&&(r=!0,Promise.resolve().then(async()=>{try{for(let i of o)await Nr(i);}finally{await ue(st);}}));}finally{r||await ue(st);}}async function Nr(e){let t=e.getName();try{await e.createIndexes();}catch(r){Oo(t,r);}}function Mo(e){let t={};for(let r of e)for(let[n,o]of Object.entries(r.configSchema)){let i=`${r.name}.${n}`;if(i in t)throw new Error(`Duplicate config schema key: ${i} (${r.name})`);t[i]=o;}return t}function Do(e){for(let t of e)for(let[r,n]of Object.entries(t.cronJobs))mr(`${t.name}.${r}`,n);}function Io(e){let t=ye();if(!t)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let r of e)r.init(t);}async function Po(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let t=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",r=process.env.MODELENCE_ENVIRONMENT_ID,n=await No(),o=await import('./package-D325NQFE.js');await fetch(`${t}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:n.name,version:o.default.version,localHostname:kn.hostname(),environmentId:r})});}}async function No(){try{let e=et.join(process.cwd(),"package.json"),t=await So.readFile(e,"utf-8");return {name:JSON.parse(t).name||"unknown"}}catch{return {name:"unknown"}}}async function Lr(e){await N.deleteMany({userId:e}),await M.deleteMany({userId:e});}async function Uo(e){await Lr(e),await f.updateOne(e,{$set:{status:"disabled",disabledAt:new Date}});}async function $o(e){await Lr(e),await f.updateOne({_id:e},{$set:{handle:`deleted-${e}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var at=class{constructor(t,r){this.category=t,this.canAccessChannel=r||null;}broadcast(t,r){let n=_e().provider;if(!n){k("Websockets provider should be added to startApp",{});return}n.broadcast({category:this.category,id:t,data:r});}};function jo(e){if(!S().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return S().provider?.sendEmail(e)}
|
|
18
|
+
export{ee as LiveData,C as Module,at as ServerChannel,x as Store,D as authenticate,_ as consumeRateLimit,Ue as createQuery,f as dbUsers,Cr as deleteFile,$o as deleteUser,Uo as disableUser,xr as downloadFile,Er as getFileUrl,Sr as getUploadUrl,u as schema,jo as sendEmail,Eo as startApp};//# sourceMappingURL=server.js.map
|
|
19
19
|
//# sourceMappingURL=server.js.map
|