modelence 0.15.2-dev.0 → 0.15.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/chunk-Z6AXX2IR.js +3 -0
- package/dist/chunk-Z6AXX2IR.js.map +1 -0
- package/dist/client.d.ts +1 -13
- package/dist/client.js +1 -1
- package/dist/client.js.map +1 -1
- package/dist/{package-O4GYADO2.js → package-FKRLR6XH.js} +2 -2
- package/dist/{package-O4GYADO2.js.map → package-FKRLR6XH.js.map} +1 -1
- package/dist/server.d.ts +2 -2
- package/dist/server.js +7 -7
- package/dist/server.js.map +1 -1
- package/dist/{types-CoDMtVYU.d.ts → types-CIL2Bj_2.d.ts} +21 -3
- package/dist/types.d.ts +1 -1
- package/package.json +1 -1
- package/dist/chunk-MF6PQMFH.js +0 -3
- package/dist/chunk-MF6PQMFH.js.map +0 -1
package/dist/server.js
CHANGED
|
@@ -1,19 +1,19 @@
|
|
|
1
|
-
import {a as a$2,b as b$1}from'./chunk-D6FY7A77.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b,f,e,g,c,h,k,d as d$1,j as j$1,i,l,m as m$1}from'./chunk-3SPXJEOR.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import {s}from'./chunk-MF6PQMFH.js';import qn from'dotenv';import Ao from'fs/promises';import Dr from'os';import ct from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient,MongoServerError}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import F,{z}from'zod';import yr from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import Jr from'@vitejs/plugin-react';import Kr from'fs';import z$1,{Router}from'express';import So from'cookie-parser';import vo from'http';var v=class{constructor(e,{stores:n=[],queries:r={},mutations:o={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:d=[]}={}){this.name=e,this.stores=n,this.queries=r,this.mutations=o,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=d;}getConfig(e){return a$1(`${this.name}.${e}`)}};function N(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:N(e.type)};if(e.typeName==="ZodObject"){let r=e.shape(),o={};for(let[i,s]of Object.entries(r))o[i]=N(s);return {type:"object",items:o}}if(e.typeName==="ZodOptional")return {...N(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...N(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(N)};if(e.typeName==="ZodEffects"){let n=e;return n.description?{type:"custom",typeName:n.description}:N(n.schema)}return {type:"custom",typeName:e.typeName}}function be(t){let e={};for(let[n,r]of Object.entries(t))Array.isArray(r)?e[n]=r.map(o=>typeof o=="object"&&"_def"in o?N(o):be(o)):typeof r=="object"&&"_def"in r?e[n]=N(r):e[n]=be(r);return e}var Wn=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],$e=t=>typeof t=="object"&&t!==null&&!Array.isArray(t),Gn=t=>t.startsWith("_modelence_"),je=t=>{let e={};for(let n of Wn){let r=t[n];r!==void 0&&(e[n]=r);}return e},Zn=(t,e)=>{if(!$e(t)||!$e(e))return false;let n=Object.entries(t),r=Object.entries(e);return n.length!==r.length?false:n.every(([o,i],s)=>{let[a,c]=r[s]||[];return o===a&&isDeepStrictEqual(i,c)})},Et=(t,e)=>Zn(t.key,e.key)?isDeepStrictEqual(je(t),je(e)):false,Le=t=>$e(t)?Object.entries(t).map(([e,n])=>`${e}:${JSON.stringify(n)}`).join("|"):null,Bn=async t=>{try{return await t.listIndexes().toArray()}catch(e){if(e instanceof MongoError&&e.code===26)return [];throw e}},Jn=t=>Object.entries(t).map(([e,n])=>`${e}_${n}`).join("_"),Kn=t=>{if(t.name){let n=t.name.startsWith("_modelence_")?t.name:`_modelence_${t.name}`;return {...t,name:n}}let e=Jn(t.key);return {...t,name:`_modelence_${e}`}},C=class t{constructor(e,n){this.name=e,this.schema=n.schema,this.methods=n.methods,this.indexes=n.indexes.map(Kn),this.searchIndexes=n.searchIndexes||[],this.indexCreationMode=n.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return be(this.schema)}extend(e){let n={...this.schema,...e.schema||{}},r=[...this.indexes,...e.indexes||[]],o=[...this.searchIndexes,...e.searchIndexes||[]],i={...this.methods||{},...e.methods||{}},s=new t(this.name,{schema:n,methods:i,indexes:r,searchIndexes:o,indexCreationMode:e.indexCreationMode??this.indexCreationMode});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(){let e=this.requireCollection(),n=await Bn(e),r=new Map,o=new Map,i=new Set,s=l=>{r.set(l.name,l);let h=Le(l.key);if(!h)return;let w=o.get(h);w?w.add(l.name):o.set(h,new Set([l.name]));},a=l=>{let h=r.get(l);if(!h)return;r.delete(l);let w=Le(h.key);if(!w)return;let y=o.get(w);y&&(y.delete(l),y.size===0&&o.delete(w));};for(let l of n)typeof l.name=="string"&&s({...l,name:l.name});let c=async l=>{if(!(l==="_id_"||i.has(l))){try{await e.dropIndex(l);}catch(h){if(!(h instanceof MongoError&&h.code===27))throw h}i.add(l),a(l);}},d=new Set(this.indexes.map(l=>l.name).filter(l=>typeof l=="string")),p=[...r.values()].filter(l=>Gn(l.name)&&!d.has(l.name));for(let l of p)await c(l.name);if(this.indexes.length>0)for(let l of this.indexes){if(!l.name)continue;let h=r.get(l.name);h&&!Et(h,l)&&await c(h.name);let w=Le(l.key);if(w){let Q=[...o.get(w)||[]];for(let k of Q)k!==l.name&&await c(k);}let y=r.get(l.name);!!y&&Et(y,l)||(await e.createIndexes([l]),s({name:l.name,key:l.key,...je(l)}));}if(this.searchIndexes.length>0)for(let l of this.searchIndexes)try{await e.createSearchIndexes([l]);}catch(h){if(h instanceof MongoError&&h.code===68&&l.name)await e.dropSearchIndex(l.name),await e.createSearchIndexes([l]);else throw h}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,n){let r=await this.requireCollection().findOne(e,n);return r?this.wrapDocument(r):null}async requireOne(e,n,r){let o=await this.findOne(e,n);if(!o)throw r?r():new Error(`Record not found in ${this.name}`);return o}find(e,n){let r=this.requireCollection().find(e,n?.projection?{projection:n.projection}:void 0);return n?.sort&&r.sort(n.sort),n?.limit&&r.limit(n.limit),n?.skip&&r.skip(n.skip),r}async findById(e){let n=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(n)}async requireById(e,n){let r=await this.findById(e);if(!r)throw n?n():new Error(`Record with id ${e} not found in ${this.name}`);return r}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,n){return (await this.find(e,n).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e,n){return await this.requireCollection().insertOne(e,n)}async insertMany(e,n){return await this.requireCollection().insertMany(e,n)}async updateOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,r)}async upsertOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,{upsert:true,...r})}async updateMany(e,n,r){return await this.requireCollection().updateMany(e,n,r)}async upsertMany(e,n,r){return await this.requireCollection().updateMany(e,n,{upsert:true,...r})}async deleteOne(e,n){return await this.requireCollection().deleteOne(e,n)}async deleteMany(e,n){return await this.requireCollection().deleteMany(e,n)}async findOneAndUpdate(e,n,r){let o=await this.requireCollection().findOneAndUpdate(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async findOneAndDelete(e,n){let r=await this.requireCollection().findOneAndDelete(this.getSelector(e),n??{});return r?this.wrapDocument(r):null}async findOneAndReplace(e,n,r){let o=await this.requireCollection().findOneAndReplace(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async replaceOne(e,n,r){return await this.requireCollection().replaceOne(this.getSelector(e),n,r)}async distinct(e,n,r){let o=n??{};return r!==void 0?await this.requireCollection().distinct(e,o,r):await this.requireCollection().distinct(e,o)}watch(e,n){return this.requireCollection().watch(e,n)}aggregate(e,n){return this.requireCollection().aggregate(e,n)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,n){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(e).rename(this.name,n);}async vectorSearch({field:e,embedding:n,numCandidates:r,limit:o,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:n,numCandidates:r||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:n,similarity:r="cosine",indexName:o}){return {type:"vectorSearch",name:o||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:n,similarity:r}]}}}};var Qn=z.string.bind(z),Yn=z.number.bind(z),Xn=z.date.bind(z),er=z.boolean.bind(z),tr=z.array.bind(z),nr=z.object.bind(z),rr=z.enum.bind(z),u={string:Qn,number:Yn,date:Xn,boolean:er,array:tr,object:nr,enum:rr,embedding(){return z.array(z.number())},objectId(){return z.instanceof(ObjectId).describe("ObjectId")},userId(){return z.instanceof(ObjectId).describe("UserId")},ref(t){return z.instanceof(ObjectId).describe("Ref")},union:z.union.bind(z),infer(t){return {}}};var X=new C("_modelenceSessions",{schema:{authToken:u.string(),createdAt:u.date(),expiresAt:u.date(),userId:u.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function kt(t){let e=t?await X.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await ze()}async function Ot(t,e){await X.updateOne({authToken:t},{$set:{userId:e}});}async function At(t){await X.updateOne({authToken:t},{$set:{userId:null}});}async function ze(t=null){let e=randomBytes(32).toString("base64url"),n=Date.now(),r=new Date(n+a.days(7));return await X.insertOne({authToken:e,createdAt:new Date(n),expiresAt:r,userId:t}),{authToken:e,expiresAt:r,userId:t}}async function ir(t){let e=Date.now(),n=new Date(e+a.days(7));await X.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:n}});}var _t=new v("_system.session",{stores:[X],mutations:{init:async function(t,{session:e,user:n}){return {session:e,user:n,configs:b()}},heartbeat:async function(t,{session:e}){e&&await ir(e);}}});var m=new C("_modelenceUsers",{schema:{handle:u.string(),emails:u.array(u.object({address:u.string(),verified:u.boolean()})).optional(),status:u.enum(["active","disabled","deleted"]).optional(),firstName:u.string().optional(),lastName:u.string().optional(),avatarUrl:u.string().optional(),createdAt:u.date(),disabledAt:u.date().optional(),deletedAt:u.date().optional(),roles:u.array(u.string()).optional(),authMethods:u.object({password:u.object({hash:u.string()}).optional(),google:u.object({id:u.string()}).optional(),github:u.object({id:u.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),ae=new C("_modelenceDisposableEmailDomains",{schema:{domain:u.string(),addedAt:u.date()},indexes:[{key:{domain:1},unique:true}]}),L=new C("_modelenceEmailVerificationTokens",{schema:{userId:u.objectId(),email:u.string().optional(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),I=new C("_modelenceResetPasswordTokens",{schema:{userId:u.objectId(),email:u.string().optional(),token:u.string(),createdAt:u.date(),expiresAt:u.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Rt=new Map,ee={authenticated:null,unauthenticated:null};function Mt(t,e){ee.authenticated=e.authenticated,ee.unauthenticated=e.unauthenticated;for(let[n,r]of Object.entries(t))Rt.set(n,r);}function Se(){return ee.unauthenticated?[ee.unauthenticated]:[]}function It(){return ee.authenticated?[ee.authenticated]:[]}function qe(t,e){let n=e.find(r=>!sr(t,r));if(n)throw new Error(`Access denied - missing permission: '${n}'`)}function sr(t,e){for(let n of t)if(Rt.get(n)?.permissions?.includes(e))return true;return false}async function D(t){let e=await kt(t),n=e.userId?await m.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,r=n?{id:n._id.toString(),handle:n.handle,roles:n.roles||[],hasRole:i=>(n.roles||[]).includes(i),requireRole:i=>{if(!(n.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:n.firstName??void 0,lastName:n.lastName??void 0,avatarUrl:n.avatarUrl??void 0}:null,o=r?It():Se();return {user:r,session:e,roles:o}}var ce=new v("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},mongodbPoolSize:{type:"number",isPublic:false,default:10},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});var U=null;async function Dt(){if(U)return U;let t=V();if(!t)throw new Error("MongoDB URI is not set");let e=ce.getConfig("mongodbPoolSize");U=new MongoClient(t,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true,maxPoolSize:e});try{return await U.connect(),await U.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),U}catch(n){throw console.error(n),U=null,n}}function V(){return ce.getConfig("mongodbUri")||void 0}function ve(){return U}var te=class{constructor(e){this.fetch=e.fetch,this.watch=e.watch;}};function lr(){return typeof window!="object"}function $(){if(!lr())throw new Error("This function can only be called on the server")}function Ce(t){return t.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var xe={};function He(t,e){return $(),Ut(t),Ee("query",t,e)}function Pt(t,e){return $(),Ut(t),Ee("mutation",t,e)}function Nt(t,e){return $(),$t(t),Ee("query",t,e)}function Lt(t,e){return $(),$t(t),Ee("mutation",t,e)}function Ut(t){if(t.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${t})`)}function $t(t){if(!t.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${t})`)}function Ee(t,e,n){if($(),xe[e])throw new Error(`Method with name '${e}' is already defined.`);let r=typeof n=="function"?n:n.handler,o=typeof n=="function"?[]:n.permissions??[];xe[e]={type:t,name:e,handler:r,permissions:o};}async function jt(t,e,n){$();let r=xe[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r,s=l("method",`method:${t}`,{type:o,args:e}),a;try{qe(n.roles,r.permissions),a=await i(e,n);}catch(c){throw s.end("error"),c}return s.end(),a}async function Ft(t,e,n){$();let r=xe[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r;if(o!=="query")throw new Error("Live methods are only supported for queries");let s=l("method",`method:${t}:live`,{type:o,args:e}),a;try{if(qe(n.roles,r.permissions),a=await i(e,n),!(a instanceof te))throw new Error(`Live query handler for '${t}' must return a LiveData object with fetch and watch functions.`)}catch(c){throw s.end("error"),c}return s.end(),a}var le=new Map;function dr(t){let e=le.get(t.id);return e||(e=new Map,le.set(t.id,e)),e}async function Ve(t,e){let n=z.object({subscriptionId:z.string().min(1),method:z.string().min(1),args:z.record(z.unknown()).default({}),authToken:z.string().nullish(),clientInfo:z.object({screenWidth:z.number(),screenHeight:z.number(),windowWidth:z.number(),windowHeight:z.number(),pixelRatio:z.number(),orientation:z.string().nullable()}).optional()}).safeParse(e);if(!n.success){t.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${n.error.message}`});return}let{subscriptionId:r,method:o,args:i,authToken:s,clientInfo:a}=n.data,c=dr(t),d=c.get(r);if(d)if(d.cleanup)try{d.cleanup();}catch(l){console.error("[LiveQuery] Error cleaning up existing subscription:",l);}else d.aborted=true;let p={cleanup:null};c.set(r,p);try{let{session:l,user:h,roles:w}=await D(s??null),y={session:l,user:h,roles:w,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:t.handshake.address,userAgent:t.handshake.headers["user-agent"]}},T=await Ft(o,i,y),Q=async()=>{let A=a$2(await T.fetch());p.aborted||t.emit("liveQueryData",{subscriptionId:r,data:A,typeMap:b$1(A)});},k=!0,R=!1,M=()=>{p.aborted||!k||R||(k=!1,R=!0,Q().catch(A=>{p.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,A),t.emit("liveQueryError",{subscriptionId:r,error:A instanceof Error?A.message:String(A)}));}).finally(()=>{R=!1,M();}));},q=T.watch({publish:()=>{k=!0,M();}});if(p.aborted){if(q)try{q();}catch(A){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",A);}return}p.cleanup=q||null,M();}catch(l){c.delete(r),console.error(`[LiveQuery] Error in ${o}:`,l),t.emit("liveQueryError",{subscriptionId:r,error:l instanceof Error?l.message:String(l)});}}function We(t,e){let n=z.object({subscriptionId:z.string().min(1)}).safeParse(e);if(!n.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${n.error.message}`);return}let{subscriptionId:r}=n.data,o=le.get(t.id);if(!o)return;let i=o.get(r);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;o.delete(r);}}function Ge(t){let e=le.get(t.id);if(e){for(let n of e.values())if(n.cleanup)try{n.cleanup();}catch(r){console.error("[LiveQuery] Error in cleanup on disconnect:",r);}else n.aborted=true;le.delete(t.id);}}var de=null,mr="_modelenceSocketio";async function fr({httpServer:t,channels:e}){let n=ve();console.log("Initializing Socket.IO server...");let r=null;if(n){r=n.db().collection(mr);try{await r.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(o){console.error("Failed to create index on MongoDB collection for Socket.IO:",o);}}de=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:r?createAdapter(r):void 0,transports:["websocket"],perMessageDeflate:false}),de.on("error",o=>{console.error("Socket.IO error:",o);}),de.use(async(o,i)=>{let s=o.handshake.auth.token;try{o.data=await D(s);}finally{i();}}),de.on("connection",o=>{o.on("disconnect",()=>{Ge(o);}),o.on("joinChannel",async i=>{let[s]=i.split(":"),a=false;for(let c of e)if(c.category===s){(!c.canAccessChannel||await c.canAccessChannel(o.data))&&(o.join(i),a=true,o.emit("joinedChannel",i));break}a||o.emit("joinError",{channel:i,error:"Access denied"});}),o.on("leaveChannel",i=>{o.leave(i),console.log(`User ${o.id} left channel ${i}`),o.emit("leftChannel",i);}),o.on("subscribeLiveQuery",i=>Ve(o,i)),o.on("unsubscribeLiveQuery",i=>We(o,i));}),console.log("Socket.IO server initialized");}function hr({category:t,id:e,data:n}){de?.to(`${t}:${e}`).emit(t,n);}var zt={init:fr,broadcast:hr};async function qt(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return false;let n=e[1];return !!await ae.findOne({domain:n})}var Ht={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let n=(await t.text()).split(`
|
|
2
|
-
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),r=new Date,o=500;for(let i=0;i<n.length;i+=o){let s=n.slice(i,i+o);try{await
|
|
1
|
+
import {a as a$2,b as b$1}from'./chunk-D6FY7A77.js';import {d as d$1,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b,f,e,g,c,h,k,d as d$2,j as j$1,i,l,m as m$1}from'./chunk-3SPXJEOR.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import {s}from'./chunk-Z6AXX2IR.js';import Jn from'dotenv';import Uo from'fs/promises';import qr from'os';import ut from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient,MongoServerError}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import z$1,{z}from'zod';import kr from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import ro from'@vitejs/plugin-react';import oo from'fs';import q,{Router}from'express';import Ao from'cookie-parser';import _o from'http';var C=class{constructor(e,{stores:n=[],queries:r={},mutations:o={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:l=[]}={}){this.name=e,this.stores=n,this.queries=r,this.mutations=o,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=l;}getConfig(e){return a$1(`${this.name}.${e}`)}};function U(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:U(e.type)};if(e.typeName==="ZodObject"){let r=e.shape(),o={};for(let[i,s]of Object.entries(r))o[i]=U(s);return {type:"object",items:o}}if(e.typeName==="ZodOptional")return {...U(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...U(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(U)};if(e.typeName==="ZodEffects"){let n=e;return n.description?{type:"custom",typeName:n.description}:U(n.schema)}return {type:"custom",typeName:e.typeName}}function Se(t){let e={};for(let[n,r]of Object.entries(t))Array.isArray(r)?e[n]=r.map(o=>typeof o=="object"&&"_def"in o?U(o):Se(o)):typeof r=="object"&&"_def"in r?e[n]=U(r):e[n]=Se(r);return e}var Xn=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],ze=t=>typeof t=="object"&&t!==null&&!Array.isArray(t),er=t=>t.startsWith("_modelence_"),qe=t=>{let e={};for(let n of Xn){let r=t[n];r!==void 0&&(e[n]=r);}return e},tr=(t,e)=>{if(!ze(t)||!ze(e))return false;let n=Object.entries(t),r=Object.entries(e);return n.length!==r.length?false:n.every(([o,i],s)=>{let[a,c]=r[s]||[];return o===a&&isDeepStrictEqual(i,c)})},At=(t,e)=>tr(t.key,e.key)?isDeepStrictEqual(qe(t),qe(e)):false,je=t=>ze(t)?Object.entries(t).map(([e,n])=>`${e}:${JSON.stringify(n)}`).join("|"):null,nr=async t=>{try{return await t.listIndexes().toArray()}catch(e){if(e instanceof MongoError&&e.code===26)return [];throw e}},rr=t=>Object.entries(t).map(([e,n])=>`${e}_${n}`).join("_"),or=t=>{if(t.name){let n=t.name.startsWith("_modelence_")?t.name:`_modelence_${t.name}`;return {...t,name:n}}let e=rr(t.key);return {...t,name:`_modelence_${e}`}},v=class t{constructor(e,n){this._chainParent=null;this._chainChild=null;this.name=e,this.schema=n.schema,this.methods=n.methods,this.indexes=n.indexes.map(or),this.searchIndexes=n.searchIndexes||[],this.indexCreationMode=n.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return Se(this.schema)}getIndexes(){return this.indexes}getSearchIndexes(){return this.searchIndexes}getChainTail(){let e=this;for(;e._chainChild;)e=e._chainChild;return e}getChainRoot(){let e=this;for(;e._chainParent;)e=e._chainParent;return e}extend(e){let n=this.getChainTail();if(this.client||n.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);let r={...n.schema,...e.schema||{}},o=[...n.indexes,...e.indexes||[]],i=[...n.searchIndexes,...e.searchIndexes||[]],s={...n.methods||{},...e.methods||{}},a=new t(this.name,{schema:r,methods:s,indexes:o,searchIndexes:i,indexCreationMode:e.indexCreationMode??n.indexCreationMode});return n._chainChild=a,a._chainParent=n,a}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(e="full"){let n=this.requireCollection(),r=e!=="create-only",o=e!=="drop-only",i=await nr(n),s=new Map,a=new Map,c=new Set,l=u=>{s.set(u.name,u);let y=je(u.key);if(!y)return;let g=a.get(y);g?g.add(u.name):a.set(y,new Set([u.name]));},p=u=>{let y=s.get(u);if(!y)return;s.delete(u);let g=je(y.key);if(!g)return;let x=a.get(g);x&&(x.delete(u),x.size===0&&a.delete(g));};for(let u of i)typeof u.name=="string"&&l({...u,name:u.name});let f=async u=>{if(!(u==="_id_"||c.has(u))){try{await n.dropIndex(u);}catch(y){if(!(y instanceof MongoError&&y.code===27))throw y}c.add(u),p(u);}};if(r){let u=new Set(this.indexes.map(g=>g.name).filter(g=>typeof g=="string")),y=[...s.values()].filter(g=>er(g.name)&&!u.has(g.name));for(let g of y)await f(g.name);}if(this.indexes.length>0)for(let u of this.indexes){if(!u.name)continue;let y=false,g=s.get(u.name);g&&!At(g,u)&&(r?await f(g.name):y=true);let x=je(u.key);if(x){let M=[...a.get(x)||[]];for(let k of M)k!==u.name&&(r?await f(k):y=true);}let P=s.get(u.name);!(!!P&&At(P,u))&&o&&!y&&(await n.createIndexes([u]),l({name:u.name,key:u.key,...qe(u)}));}if(o&&this.searchIndexes.length>0)for(let u of this.searchIndexes)try{await n.createSearchIndexes([u]);}catch(y){if(y instanceof MongoError&&y.code===68&&u.name)await n.dropSearchIndex(u.name),await n.createSearchIndexes([u]);else throw y}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,n){let r=await this.requireCollection().findOne(e,n);return r?this.wrapDocument(r):null}async requireOne(e,n,r){let o=await this.findOne(e,n);if(!o)throw r?r():new Error(`Record not found in ${this.name}`);return o}find(e,n){let r=this.requireCollection().find(e,n?.projection?{projection:n.projection}:void 0);return n?.sort&&r.sort(n.sort),n?.limit&&r.limit(n.limit),n?.skip&&r.skip(n.skip),r}async findById(e){let n=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(n)}async requireById(e,n){let r=await this.findById(e);if(!r)throw n?n():new Error(`Record with id ${e} not found in ${this.name}`);return r}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,n){return (await this.find(e,n).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e,n){return await this.requireCollection().insertOne(e,n)}async insertMany(e,n){return await this.requireCollection().insertMany(e,n)}async updateOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,r)}async upsertOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,{upsert:true,...r})}async updateMany(e,n,r){return await this.requireCollection().updateMany(e,n,r)}async upsertMany(e,n,r){return await this.requireCollection().updateMany(e,n,{upsert:true,...r})}async deleteOne(e,n){return await this.requireCollection().deleteOne(e,n)}async deleteMany(e,n){return await this.requireCollection().deleteMany(e,n)}async findOneAndUpdate(e,n,r){let o=await this.requireCollection().findOneAndUpdate(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async findOneAndDelete(e,n){let r=await this.requireCollection().findOneAndDelete(this.getSelector(e),n??{});return r?this.wrapDocument(r):null}async findOneAndReplace(e,n,r){let o=await this.requireCollection().findOneAndReplace(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async replaceOne(e,n,r){return await this.requireCollection().replaceOne(this.getSelector(e),n,r)}async distinct(e,n,r){let o=n??{};return r!==void 0?await this.requireCollection().distinct(e,o,r):await this.requireCollection().distinct(e,o)}watch(e,n){return this.requireCollection().watch(e,n)}aggregate(e,n){return this.requireCollection().aggregate(e,n)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,n){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(e).rename(this.name,n);}async vectorSearch({field:e,embedding:n,numCandidates:r,limit:o,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:n,numCandidates:r||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:n,similarity:r="cosine",indexName:o}){return {type:"vectorSearch",name:o||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:n,similarity:r}]}}}};var ir=z.string.bind(z),sr=z.number.bind(z),ar=z.date.bind(z),cr=z.boolean.bind(z),lr=z.array.bind(z),dr=z.object.bind(z),ur=z.enum.bind(z),d={string:ir,number:sr,date:ar,boolean:cr,array:lr,object:dr,enum:ur,embedding(){return z.array(z.number())},objectId(){return z.instanceof(ObjectId).describe("ObjectId")},userId(){return z.instanceof(ObjectId).describe("UserId")},ref(t){return z.instanceof(ObjectId).describe("Ref")},union:z.union.bind(z),infer(t){return {}}};var W=new v("_modelenceSessions",{schema:{authToken:d.string(),createdAt:d.date(),expiresAt:d.date(),userId:d.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0},{key:{userId:1}}]});async function Rt(t){let e=t?await W.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await ae()}async function Mt(t,e){await W.updateOne({authToken:t},{$set:{userId:e}});}async function It(t){await W.updateOne({authToken:t},{$set:{userId:null}});}async function Dt(t){await W.deleteMany({userId:t});}async function ae(t=null){let e=randomBytes(32).toString("base64url"),n=Date.now(),r=new Date(n+a.days(7));return await W.insertOne({authToken:e,createdAt:new Date(n),expiresAt:r,userId:t}),{authToken:e,expiresAt:r,userId:t}}async function mr(t){let e=Date.now(),n=new Date(e+a.days(7));await W.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:n}});}function Ce(t,e){t.cookie("authToken",e,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict",path:"/"});}var Pt=new C("_system.session",{stores:[W],mutations:{init:async function(t,{session:e,user:n}){return {session:e,user:n,configs:b()}},heartbeat:async function(t,{session:e}){e&&await mr(e);}}});var m=new v("_modelenceUsers",{schema:{handle:d.string(),emails:d.array(d.object({address:d.string(),verified:d.boolean()})).optional(),status:d.enum(["active","disabled","deleted"]).optional(),firstName:d.string().optional(),lastName:d.string().optional(),avatarUrl:d.string().optional(),createdAt:d.date(),disabledAt:d.date().optional(),deletedAt:d.date().optional(),roles:d.array(d.string()).optional(),authMethods:d.object({password:d.object({hash:d.string()}).optional(),google:d.object({id:d.string()}).optional(),github:d.object({id:d.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),ce=new v("_modelenceDisposableEmailDomains",{schema:{domain:d.string(),addedAt:d.date()},indexes:[{key:{domain:1},unique:true}]}),L=new v("_modelenceEmailVerificationTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),I=new v("_modelenceResetPasswordTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Nt=new Map,ee={authenticated:null,unauthenticated:null};function Ut(t,e){ee.authenticated=e.authenticated,ee.unauthenticated=e.unauthenticated;for(let[n,r]of Object.entries(t))Nt.set(n,r);}function xe(){return ee.unauthenticated?[ee.unauthenticated]:[]}function Lt(){return ee.authenticated?[ee.authenticated]:[]}function Ve(t,e){let n=e.find(r=>!fr(t,r));if(n)throw new Error(`Access denied - missing permission: '${n}'`)}function fr(t,e){for(let n of t)if(Nt.get(n)?.permissions?.includes(e))return true;return false}async function D(t){let e=await Rt(t),n=e.userId?await m.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,r=n?{id:n._id.toString(),handle:n.handle,roles:n.roles||[],hasRole:i=>(n.roles||[]).includes(i),requireRole:i=>{if(!(n.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:n.firstName??void 0,lastName:n.lastName??void 0,avatarUrl:n.avatarUrl??void 0}:null,o=r?Lt():xe();return {user:r,session:e,roles:o}}var le=new C("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},mongodbPoolSize:{type:"number",isPublic:false,default:10},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""},multiInstance:{type:"boolean",isPublic:false,default:false}}});var $=null;async function $t(){if($)return $;let t=G();if(!t)throw new Error("MongoDB URI is not set");let e=le.getConfig("mongodbPoolSize");$=new MongoClient(t,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true,maxPoolSize:e});try{return await $.connect(),await $.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),$}catch(n){throw console.error(n),$=null,n}}function G(){return le.getConfig("mongodbUri")||void 0}function ve(){return $}var te=class{constructor(e){this.fetch=e.fetch,this.watch=e.watch;}};function yr(){return typeof window!="object"}function j(){if(!yr())throw new Error("This function can only be called on the server")}function Ee(t){return t.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var Te={};function We(t,e){return j(),qt(t),ke("query",t,e)}function jt(t,e){return j(),qt(t),ke("mutation",t,e)}function Ft(t,e){return j(),Ht(t),ke("query",t,e)}function zt(t,e){return j(),Ht(t),ke("mutation",t,e)}function qt(t){if(t.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${t})`)}function Ht(t){if(!t.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${t})`)}function ke(t,e,n){if(j(),Te[e])throw new Error(`Method with name '${e}' is already defined.`);let r=typeof n=="function"?n:n.handler,o=typeof n=="function"?[]:n.permissions??[];Te[e]={type:t,name:e,handler:r,permissions:o};}async function Vt(t,e,n){j();let r=Te[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r,s=l("method",`method:${t}`,{type:o,args:e}),a;try{Ve(n.roles,r.permissions),a=await i(e,n);}catch(c){throw s.end("error"),c}return s.end(),a}async function Wt(t,e,n){j();let r=Te[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r;if(o!=="query")throw new Error("Live methods are only supported for queries");let s=l("method",`method:${t}:live`,{type:o,args:e}),a;try{if(Ve(n.roles,r.permissions),a=await i(e,n),!(a instanceof te))throw new Error(`Live query handler for '${t}' must return a LiveData object with fetch and watch functions. See https://docs.modelence.com/live-queries`)}catch(c){throw s.end("error"),c}return s.end(),a}var de=new Map;function wr(t){let e=de.get(t.id);return e||(e=new Map,de.set(t.id,e)),e}async function Ge(t,e){let n=z.object({subscriptionId:z.string().min(1),method:z.string().min(1),args:z.record(z.unknown()).default({}),authToken:z.string().nullish(),clientInfo:z.object({screenWidth:z.number(),screenHeight:z.number(),windowWidth:z.number(),windowHeight:z.number(),pixelRatio:z.number(),orientation:z.string().nullable()}).optional()}).safeParse(e);if(!n.success){t.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${n.error.message}`});return}let{subscriptionId:r,method:o,args:i,authToken:s,clientInfo:a}=n.data,c=wr(t),l=c.get(r);if(l)if(l.cleanup)try{l.cleanup();}catch(f){console.error("[LiveQuery] Error cleaning up existing subscription:",f);}else l.aborted=true;let p={cleanup:null};c.set(r,p);try{let{session:f,user:u,roles:y}=await D(s??null),g={session:f,user:u,roles:y,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:t.handshake.address,userAgent:t.handshake.headers["user-agent"]}},x=await Wt(o,i,g),P=async()=>{let _=a$2(await x.fetch());p.aborted||t.emit("liveQueryData",{subscriptionId:r,data:_,typeMap:b$1(_)});},O=!0,M=!1,k=()=>{p.aborted||!O||M||(O=!1,M=!0,P().catch(_=>{p.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,_),t.emit("liveQueryError",{subscriptionId:r,error:_ instanceof Error?_.message:String(_)}));}).finally(()=>{M=!1,k();}));},H=x.watch({publish:()=>{O=!0,k();}});if(p.aborted){if(H)try{H();}catch(_){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",_);}return}p.cleanup=H||null,k();}catch(f){c.delete(r),console.error(`[LiveQuery] Error in ${o}:`,f),t.emit("liveQueryError",{subscriptionId:r,error:f instanceof Error?f.message:String(f)});}}function Be(t,e){let n=z.object({subscriptionId:z.string().min(1)}).safeParse(e);if(!n.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${n.error.message}`);return}let{subscriptionId:r}=n.data,o=de.get(t.id);if(!o)return;let i=o.get(r);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;o.delete(r);}}function Ze(t){let e=de.get(t.id);if(e){for(let n of e.values())if(n.cleanup)try{n.cleanup();}catch(r){console.error("[LiveQuery] Error in cleanup on disconnect:",r);}else n.aborted=true;de.delete(t.id);}}var ue=null,Cr="_modelenceSocketio",Gt=60;async function xr({httpServer:t,channels:e}){let n=ve(),r=!!a$1("_system.multiInstance");console.log("Initializing Socket.IO server...");let o=null;if(r&&n){o=n.db().collection(Cr);try{await o.createIndex({createdAt:1},{expireAfterSeconds:Gt,background:!0});}catch(i){if(i instanceof Error&&"code"in i&&i.code===85)try{await o.dropIndex("createdAt_1"),await o.createIndex({createdAt:1},{expireAfterSeconds:Gt,background:!0});}catch(s){console.error("Failed to recreate index on MongoDB collection for Socket.IO:",s);}else console.error("Failed to create index on MongoDB collection for Socket.IO:",i);}}ue=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:o?createAdapter(o):void 0,transports:["websocket"],perMessageDeflate:false}),ue.on("error",i=>{console.error("Socket.IO error:",i);}),ue.use(async(i,s)=>{let a=i.handshake.auth.token;try{i.data=await D(a);}finally{s();}}),ue.on("connection",i=>{i.on("disconnect",()=>{Ze(i);}),i.on("joinChannel",async s=>{let[a]=s.split(":"),c=false;for(let l of e)if(l.category===a){(!l.canAccessChannel||await l.canAccessChannel(i.data))&&(i.join(s),c=true,i.emit("joinedChannel",s));break}c||i.emit("joinError",{channel:s,error:"Access denied"});}),i.on("leaveChannel",s=>{i.leave(s),console.log(`User ${i.id} left channel ${s}`),i.emit("leftChannel",s);}),i.on("subscribeLiveQuery",s=>Ge(i,s)),i.on("unsubscribeLiveQuery",s=>Be(i,s));}),console.log("Socket.IO server initialized");}function vr({category:t,id:e,data:n}){ue?.to(`${t}:${e}`).emit(t,n);}var Bt={init:xr,broadcast:vr};async function Zt(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return false;let n=e[1];return !!await ce.findOne({domain:n})}var Jt={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let n=(await t.text()).split(`
|
|
2
|
+
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),r=new Date,o=500;for(let i=0;i<n.length;i+=o){let s=n.slice(i,i+o);try{await ce.insertMany(s.map(a=>({domain:a,addedAt:r})));}catch(a){a&&typeof a=="object"&&"name"in a&&a.name;}}}};var Oe=3,B=50,Kt=t=>z.string().trim().min(t.min??1,{message:`must be at least ${t.min??1} characters`}).max(t.max,{message:`must be at most ${t.max} characters`}),Je=t=>z.string().trim().max(t.max,{message:`must be at most ${t.max} characters`}).transform(e=>e===""?void 0:e).optional(),Er=z.object({firstName:Je({max:50}),lastName:Je({max:50}),avatarUrl:Je({max:400}),handle:Kt({min:Oe,max:B})}).strict();function Ae(t){let e=Er.partial().safeParse(t);if(!e.success){let n=e.error.issues[0],r=n.path.join("."),o=r?`${r}: ${n.message}`:n.message;throw new Error(o)}return e.data}function _e(t){return z.string().min(8,{message:"Password must contain at least 8 characters"}).parse(t)}function F(t){return z.string().email({message:"Invalid email address"}).parse(t).toLowerCase()}function Qt(t){return Kt({min:Oe,max:B}).parse(t)}function Re(t){return {id:t._id,handle:t.handle,roles:t.roles||[],firstName:t.firstName??void 0,lastName:t.lastName??void 0,avatarUrl:t.avatarUrl??void 0}}async function Yt(t){let e=t.slice(0,B);try{if(!await m.findOne({handle:e},{collation:{locale:"en",strength:2}}))return e}catch(o){throw new Error(`Database error while checking handle availability: ${o}`)}let n=51;for(let o=2;o<=n;o++){let i=`_${o}`,s=`${e.slice(0,B-i.length)}${i}`;try{if(!await m.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}let r=10;for(let o=0;o<r;o++){let i=`_${randomBytes(3).toString("hex")}`,s=`${e.slice(0,B-i.length)}${i}`;try{if(!await m.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}throw new Error(`Could not generate a unique handle for base "${t}" after exhausting all attempts.`)}async function Z(t,e,{throwOnConflict:n=true}={}){if(t!=null&&String(t).trim()!==""){let o=Qt(String(t).trim());if(n){if(await m.findOne({handle:o},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");return o}return Yt(o)}let r=e.split("@")[0].padEnd(Oe,"_").slice(0,B);return Yt(r)}var Ke=Object.freeze({});function Xt(t){Ke=Object.freeze(Object.assign({},Ke,t));}function S(){return Ke}var Qe=Object.freeze({});function en(t){Qe=Object.freeze(Object.assign({},Qe,t));}function E(){return Qe}async function nn(t,{user:e,session:n,connectionInfo:r}){try{if(!n)throw new Error("Session is not initialized");let o=r?.ip;o&&await R({bucket:"signin",type:"ip",value:o});let i=F(t.email),s=z.string().parse(t.password),a=await m.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),c=a?.authMethods?.password?.hash;if(!c)throw tn();if(!a.emails?.find(f=>f.address.toLowerCase()===i)?.verified&&S()?.provider)throw new Error("Your email address hasn't been verified yet. Please check your inbox for the verification email.");if(!await kr.compare(s,c))throw tn();return await Mt(n.authToken,a._id),E().onAfterLogin?.({provider:"email",user:a,session:n,connectionInfo:r}),E().login?.onSuccess?.(a),{user:Re(a)}}catch(o){throw o instanceof Error&&(E().onLoginError?.({provider:"email",error:o,session:n,connectionInfo:r}),E().login?.onError?.(o)),o}}async function rn(t,{session:e}){if(!e)throw new Error("Session is not initialized");await It(e.authToken);}function tn(){return new Error("Incorrect email/password combination")}async function on(t,{user:e}){if(!e)throw new Error("Not authenticated");let n=await m.requireById(e.id);return {handle:n.handle,emails:n.emails,authMethods:Object.keys(n.authMethods||{}),firstName:n.firstName??void 0,lastName:n.lastName??void 0,avatarUrl:n.avatarUrl??void 0}}async function sn(t,{user:e}){if(!e)throw new Error("Not authenticated");let n=await m.requireById(e.id),r=Ae(t);if(await E().validateProfileUpdate?.(r),"handle"in r&&r.handle!==void 0&&await m.findOne({handle:r.handle,_id:{$ne:n._id}},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");if(Object.keys(r).length>0){let o={},i={};for(let[a,c]of Object.entries(r))c===void 0?i[a]="":o[a]=c;let s={};Object.keys(o).length>0&&(s.$set=o),Object.keys(i).length>0&&(s.$unset=i);try{await m.updateOne({_id:n._id},s);let a=Object.fromEntries(Object.keys(i).map(c=>[c,void 0]));n={...n,...o,...a};}catch(a){throw a instanceof Error&&"code"in a&&a.code===11e3?new Error("Handle already taken."):a}}return {user:Re(n)}}var Ye=["google","github"];async function an({provider:t},{user:e}){if(!e)throw new Error("You must be signed in to unlink a provider.");if(typeof t!="string"||!Ye.includes(t))throw new Error(`Invalid provider. Supported providers are: ${Ye.join(", ")}.`);let n=await m.requireById(e.id),r=n.authMethods??{};if(!r[t])throw new Error(`${t} is not linked to your account.`);if(Object.values(r).filter(Boolean).length<=1)throw new Error("Cannot unlink your only authentication method. Please add another method first.");let s=Object.keys(r).filter(l=>l!==t&&r[l]),a=s.length>0?{$or:s.map(l=>({[`authMethods.${l}`]:{$exists:true}}))}:{};if((await m.updateOne({_id:n._id,...a},{$unset:{[`authMethods.${t}`]:""}})).matchedCount===0)throw new Error("Cannot unlink your only authentication method. Please add another method first.")}var me=new v("_modelenceRateLimits",{schema:{bucket:d.string(),type:d.enum(["ip","user","email"]),value:d.string(),windowMs:d.number(),windowStart:d.date(),windowCount:d.number(),prevWindowCount:d.number(),expiresAt:d.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Xe=[];function cn(t){if(Xe.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");Xe=t;}async function R(t){let{bucket:e,type:n,value:r,message:o}=t,i=Xe.filter(a=>a.bucket===e&&a.type===n),s=o?()=>new d$1(o):void 0;for(let a of i)await Ar(a,r,s);}async function Ar(t,e,n){let r=()=>n?n():new d$1(`Rate limit exceeded for ${t.bucket}`),o=await me.findOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window}),i=Date.now(),s=Math.floor(i/t.window)*t.window,{count:a,modifier:c}=o?_r(o,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+t.window+t.window)}}};if(a>=t.limit)throw r();await me.upsertOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window},c);}function _r(t,e,n){let r=e-t.windowMs;if(t.windowStart.getTime()===e){let o=t.windowCount,i=t.prevWindowCount,s=1-(n-e)/t.windowMs;return {count:Math.round(o+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(e),prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}if(t.windowStart.getTime()===r){let o=1-(n-e)/t.windowMs;return {count:Math.round(t.windowCount*o),modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:t.windowCount,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}function ln({name:t,email:e,verificationUrl:n}){return `
|
|
3
3
|
<p>Hi${t?` ${t}`:""},</p>
|
|
4
4
|
<p>Please verify your email address ${e} by clicking the link below:</p>
|
|
5
5
|
<p><a href="${n}">${n}</a></p>
|
|
6
6
|
<p>If you did not request this, please ignore this email.</p>
|
|
7
|
-
`}async function
|
|
7
|
+
`}async function Ir(t){let e=await L.findOne({token:t,expiresAt:{$gt:new Date}});if(!e)throw new Error("Invalid or expired verification token");if(!await m.findOne({_id:e.userId,status:{$nin:["deleted","disabled"]}}))throw new Error("User not found");let r=e.email;if(!r)throw new Error("Email not found in token");let o=await m.findOneAndUpdate({_id:e.userId,status:{$nin:["deleted","disabled"]},"emails.address":r,"emails.verified":{$ne:true}},{$set:{"emails.$.verified":true}},{returnDocument:"after"});if(!o)throw await m.findOne({_id:e.userId,"emails.address":r})?new Error("Email is already verified"):new Error("Email address not found for this user");return await L.deleteOne({_id:e._id}),{userDoc:o,email:r}}async function dn(t){let e=a$1("_system.site.url"),n=S().verification?.redirectUrl||S().emailVerifiedRedirectUrl||e||"/";try{let r=z.string().parse(t.query.token),{userDoc:o}=await Ir(r);E().onAfterEmailVerification?.({provider:"email",user:o,session:null,connectionInfo:{baseUrl:e,ip:t.req.ip||t.req.socket.remoteAddress,userAgent:t.headers["user-agent"],acceptLanguage:t.headers["accept-language"],referrer:t.headers.referer}});let{authToken:s}=await ae(o._id);return Ce(t.res,s),{status:301,redirect:`${n}?status=verified`}}catch(r){let o=r instanceof Error?r.message:"An unexpected error occurred";return r instanceof Error&&(E().onEmailVerificationError?.({provider:"email",error:r,session:null,connectionInfo:{baseUrl:e,ip:t.req.ip||t.req.socket.remoteAddress,userAgent:t.headers["user-agent"],acceptLanguage:t.headers["accept-language"],referrer:t.headers.referer}}),console.error("Error verifying email:",r)),{status:301,redirect:`${n}?status=error&message=${encodeURIComponent(o)}`}}}async function tt({userId:t,email:e,baseUrl:n=a$1("_system.site.url")}){if(S().provider){let r=S().provider,o=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await L.insertOne({userId:t,email:e,token:o,createdAt:new Date,expiresAt:i});let s=`${n}/api/_internal/auth/verify-email?token=${o}`,c=(S()?.verification?.template||ln)({name:"",email:e,verificationUrl:s}),l=Ee(c);await r?.sendEmail({to:e,from:S()?.from||"noreply@modelence.com",subject:S()?.verification?.subject||"Verify your email address",text:l,html:c});}}var et={success:true,message:"If that email is registered and not yet verified, a verification email has been sent"};async function un(t,{connectionInfo:e}){let n=F(t.email),r=await m.findOne({"emails.address":n,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!r)return et;let o=r.emails?.find(i=>i.address.toLowerCase()===n);if(!o||o.verified)return et;if(!S().provider)throw new Error("Email provider is not configured");return await R({bucket:"verification",type:"user",value:r._id.toString(),message:"Please wait at least 60 seconds before requesting another verification email"}),await tt({userId:r._id,email:n,baseUrl:e?.baseUrl}),et}async function pn(t,{user:e,session:n,connectionInfo:r}){let o=E();try{let i=t,{firstName:s,lastName:a,avatarUrl:c,handle:l}=i,p=F(i.email),f=_e(i.password),u=r?.ip;if(u&&await R({bucket:"signupAttempt",type:"ip",value:u}),await Zt(p))throw new Error("Please use a permanent email address");let y=await m.findOne({"emails.address":p},{collation:{locale:"en",strength:2}});if(y){let k=y.emails?.find(H=>H.address.toLowerCase()===p);throw y.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${k?.address}`)}u&&await R({bucket:"signup",type:"ip",value:u});let g=Ae({firstName:s,lastName:a,avatarUrl:c,handle:l});await o.validateSignup?.({email:p,password:f,...g});let x;if(g.handle)x=await Z(g.handle,p);else if(o.generateHandle){let k=await o.generateHandle({email:p,firstName:g.firstName,lastName:g.lastName});x=await Z(k,p,{throwOnConflict:!1});}else x=await Z(void 0,p);let P=await kr.hash(f,10),O=await m.insertOne({handle:x,status:"active",emails:[{address:p,verified:!1}],createdAt:new Date,authMethods:{password:{hash:P}},...g.firstName!==void 0&&{firstName:g.firstName},...g.lastName!==void 0&&{lastName:g.lastName},...g.avatarUrl!==void 0&&{avatarUrl:g.avatarUrl}}),M=await m.findOne({_id:O.insertedId},{readPreference:"primary"});if(!M)throw new Error("User not found");return await tt({userId:O?.insertedId,email:p,baseUrl:r?.baseUrl}),o.onAfterSignup?.({provider:"email",user:M,session:n,connectionInfo:r}),o.signup?.onSuccess?.(M),O.insertedId}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:"email",error:i,session:n,connectionInfo:r}),o.signup?.onError?.(i)),i}}function Lr(t,e){return e?e.startsWith("http://")||e.startsWith("https://")?e:`${t}${e.startsWith("/")?"":"/"}${e}`:t}function $r({email:t,resetUrl:e}){return `
|
|
8
8
|
<p>Hi,</p>
|
|
9
9
|
<p>We received a request to reset your password for ${t}.</p>
|
|
10
10
|
<p>Click the link below to reset your password:</p>
|
|
11
11
|
<p><a href="${e}">${e}</a></p>
|
|
12
12
|
<p>This link will expire in 1 hour.</p>
|
|
13
13
|
<p>If you did not request this password reset, please ignore this email.</p>
|
|
14
|
-
`}var et={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function an(t,{connectionInfo:e}){let n=j(t.email),r=e?.ip;r&&await _({bucket:"passwordReset",type:"ip",value:r}),await _({bucket:"passwordReset",type:"email",value:n});let o=await m.findOne({"emails.address":n,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return et;let i=S().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),c=new Date(a$2),d=new Date(a$2+a.hours(1));await I.insertOne({userId:o._id,email:n,token:s,createdAt:c,expiresAt:d});let p=a$1("_system.site.url")||e?.baseUrl,h=`${Ar(p,S().passwordReset?.redirectUrl)}?token=${s}`,y=(S()?.passwordReset?.template||_r)({email:n,resetUrl:h,name:""}),T=Ce(y);return await i.sendEmail({to:n,from:S()?.from||"noreply@modelence.com",subject:S()?.passwordReset?.subject||"Reset your password",text:T,html:y}),et}async function cn(t,{}){let e=z.string().parse(t.token),n=Oe(t.password),r=await I.findOne({token:e});if(!r)throw new Error("Invalid or expired reset token");if(r.expiresAt<new Date)throw await I.deleteOne({token:e}),new Error("Reset token has expired");let o=await m.findOne({_id:r.userId});if(!o)throw new Error("User not found");let i=await yr.hash(n,10);return await m.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),r.email&&await m.updateOne({_id:o._id,"emails.address":r.email},{$set:{"emails.$.verified":true}}),await I.deleteOne({token:e}),{success:true,message:"Password has been reset successfully"}}var ln=new v("_system.user",{stores:[m,ae,L,I],queries:{getOwnProfile:Qt},mutations:{signupWithPassword:sn,loginWithPassword:Jt,logout:Kt,resendEmailVerification:rn,sendResetPasswordToken:an,resetPassword:cn,updateProfile:Yt,unlinkOAuthProvider:Xt},cronJobs:{updateDisposableEmailList:Ht},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.seconds(60),limit:1},{bucket:"verification",type:"user",window:a.days(1),limit:10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:nn}}]});var Rr={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MONGODB_POOL_SIZE:"_system.mongodbPoolSize",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function Mr(t,e){if(e==="number"){let n=Number(t);if(isNaN(n))throw new Error(`Invalid number value for config: ${t}`);return n}if(e==="boolean"){if(t.toLowerCase()==="true")return true;if(t.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${t}`)}return t}function Ir(t,e){let n=[];for(let[r,o]of Object.entries(t)){let i=process.env[r],s=e[o];if(i){let a=s?.type??"string";n.push({key:o,type:a,value:Mr(i,a)});}}return n}function Ae(t,e="withoutRemoteServer"){let n=Rr[e];return Ir(n,t)}async function dn({configSchema:t,cronJobsMetadata:e,stores:n,roles:r}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=Object.values(n).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2})),s=await tt("/api/connect","POST",{hostname:Dr.hostname(),containerId:o,dataModels:i,configSchema:t,cronJobsMetadata:e,roles:r});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function un(){return tt("/api/configs","GET")}async function pn(){return await tt("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function tt(t,e,n){return ne(t,e,n?JSON.stringify(n):void 0,n?{"Content-Type":"application/json"}:{})}async function ne(t,e,n,r){let{MODELENCE_SERVICE_ENDPOINT:o,MODELENCE_SERVICE_TOKEN:i}=process.env;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let s=await fetch(`${o}${t}`,{method:e,headers:{Authorization:`Bearer ${i}`,...r},body:n});if(!s.ok){let a=await s.text();try{let c=JSON.parse(a);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${c?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${a}`)}}if(!(s.status===204||s.headers?.get("content-length")==="0"))return await s.json()}var nt=false,Pr=a.seconds(10);function mn(){setInterval(async()=>{if(!nt){nt=true;try{await pn();}catch(t){console.error("Error syncing status",t);}try{await Nr();}catch(t){console.error("Error syncing config",t);}nt=false;}},Pr);}function rt(t){c(t),c(Ae(d$1(),"withRemoteServer"));}async function Nr(){let{configs:t}=await un();rt(t);}var Z=new C("_modelenceLocks",{schema:{_id:u.string(),instanceId:u.string(),acquiredAt:u.date(),resource:u.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var B={},fn=a.seconds(10),wn=randomBytes(32).toString("base64url"),$r=a.seconds(30),re=new Map,ot=t=>t instanceof MongoError&&t.code===11e3,hn=(t,e)=>typeof t.keyPattern=="object"&&t.keyPattern!==null&&Object.prototype.hasOwnProperty.call(t.keyPattern,e),jr=async({error:t,resource:e})=>{if(hn(t,"resource"))return true;if(hn(t,"_id"))return false;let n=await Z.findOne({resource:e});return !!n&&n._id!==e},gn=async({resource:t,staleThresholdDate:e,instanceId:n})=>{let r=await Z.upsertOne({_id:t,$or:[{instanceId:n},{acquiredAt:{$lt:e}}]},{$set:{resource:t,instanceId:n,acquiredAt:new Date},$setOnInsert:{_id:t}});return r.upsertedCount>0||r.modifiedCount>0},bn=async({resource:t,instanceId:e,staleThresholdDate:n})=>{let r=n?{resource:t,_id:{$ne:t},$or:[{instanceId:e},{acquiredAt:{$lt:n}}]}:{resource:t,instanceId:e};return (await Z.deleteOne(r)).deletedCount>0},Fr=t=>{let e=t,n=re.get(e);n&&(n.stopRequested=true,n.timer&&(clearTimeout(n.timer),n.timer=null),re.delete(e));},yn=({resource:t,lockDuration:e,instanceId:n})=>{let r=Math.floor(e/3),o=t,i$1=re.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===r&&i$1.lockDuration===e)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),re.delete(o));let s={timer:null,stopRequested:false,lockDuration:e,heartbeatInterval:r},a=()=>{s.timer=setTimeout(()=>{J(t,{lockDuration:e,bypassCache:true,instanceId:n}).then(c=>{c||(s.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${t}`,{source:"lock",resource:t,instanceId:n}));}).finally(()=>{if(s.stopRequested){re.delete(o);return}a();});},r);};re.set(o,s),a();};async function J(t,{lockDuration:e=$r,successfulLockCacheDuration:n=fn,failedLockCacheDuration:r=fn,heartbeat:o,bypassCache:i$1,instanceId:s=wn}={}){let a=Date.now();if(!i$1&&B[t]&&a<B[t].expiresAt)return B[t].value&&o&&yn({resource:t,lockDuration:e,instanceId:s}),B[t].value;let c=new Date(a-e);i(`Attempting to acquire lock: ${t}`,{source:"lock",resource:t,instanceId:s});try{let d=await zr({resource:t,staleThresholdDate:c,instanceId:s});return B[t]={value:d,expiresAt:a+(d?n:r)},d?(o&&yn({resource:t,lockDuration:e,instanceId:s}),i(`Lock acquired: ${t}`,{source:"lock",resource:t,instanceId:s})):i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),d}catch{return B[t]={value:false,expiresAt:a+r},i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),false}}var zr=async({resource:t,staleThresholdDate:e,instanceId:n})=>{try{return await gn({resource:t,staleThresholdDate:e,instanceId:n})}catch(r){if(ot(r)&&await jr({error:r,resource:t})){if(!await bn({resource:t,staleThresholdDate:e,instanceId:n}))return false;try{return await gn({resource:t,staleThresholdDate:e,instanceId:n})}catch(i){if(ot(i))return false;throw i}}if(ot(r))return false;throw r}};async function me(t,{instanceId:e=wn}={}){Fr(t);try{let n=await Z.deleteOne({_id:t,instanceId:e});return n.deletedCount===0?await bn({resource:t,instanceId:e}):n.deletedCount>0}catch{return false}finally{delete B[t];}}var K={},it=null,st=new C("_modelenceCronJobs",{schema:{alias:u.string(),lastStartDate:u.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function vn(t,{description:e="",interval:n,timeout:r=Math.min(Math.max(n,a.minutes(1)),a.days(1)),handler:o}){if(K[t])throw new Error(`Duplicate cron job declaration: '${t}' already exists`);if(it)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${t}]`);if(n<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${t}]`);if(r>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${t}]`);K[t]={alias:t,params:{description:e,interval:n,timeout:r},handler:o,state:{isRunning:false}};}async function Cn(){if(it)throw new Error("Cron jobs already started");let t=Object.keys(K);if(t.length>0){let e={alias:{$in:t}},n=await st.fetch(e),r=Date.now();n.forEach(o=>{let i=K[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:r);}),Object.values(K).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=r);}),it=setInterval(qr,a.seconds(1));}}async function qr(){let t=Date.now();await J("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(K).forEach(async n=>{let{params:r,state:o}=n;if(o.isRunning){o.startTs&&o.startTs+r.timeout<t&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=t&&await Hr(n);});}async function Hr(t){let{alias:e,params:n,handler:r,state:o}=t;o.isRunning=true,o.startTs=Date.now(),await st.updateOne({alias:e},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${e}`);try{await r(),Sn(o,n),i.end("success");}catch(s){Sn(o,n);let a=s instanceof Error?s:new Error(String(s));m$1(a),i.end("error"),console.error(`Error in cron job '${e}':`,s);}}function Sn(t,e){t.scheduledRunTs=t.startTs?t.startTs+e.interval:Date.now(),t.startTs=void 0,t.isRunning=false;}function xn(){return Object.values(K).map(({alias:t,params:e})=>({alias:t,description:e.description,interval:e.interval,timeout:e.timeout}))}var En=new v("_system.cron",{stores:[st]});var at=new v("_system.lock",{stores:[Z]});var fe=new C("_modelenceMigrations",{schema:{version:u.number(),status:u.enum(["completed","failed"]),description:u.string().optional(),output:u.string().optional(),appliedAt:u.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function Vr(t){if(t.length===0)return;if(!await J("migrations")){j$1("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let n=t.map(({version:s})=>s),r=await fe.fetch({version:{$in:n}}),o=new Set(r.map(({version:s})=>s)),i=t.filter(({version:s})=>!o.has(s));if(i.length===0)return;j$1(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i){j$1(`Running migration v${s}: ${a}`,{source:"migrations"});try{let p=(await c()||"").toString().trim(),l=15*1024*1024,h=p.length>l?p.slice(0,l)+`
|
|
15
|
-
[Output truncated - exceeded size limit]`:p;await fe.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:h,appliedAt:new Date}}),j$1(`Migration v${s} complete`,{source:"migrations"});}catch(d){d instanceof Error&&(await fe.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:d.message||"",appliedAt:new Date}}),j$1(`Migration v${s} is failed: ${d.message}`,{source:"migrations"}));}}}finally{await me("migrations");}}function Tn(t){setTimeout(()=>{Vr(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var kn=new v("_system.migration",{stores:[fe]});var On=new v("_system.rateLimit",{stores:[pe]});async function An({filePath:t,contentType:e,visibility:n}){return await ne("/api/files/upload","POST",JSON.stringify({filePath:t,contentType:e,visibility:n}),{"Content-Type":"application/json"})}async function _n(t){await ne("/api/files/delete","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"});}async function Rn(t){return await ne("/api/files/download","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}async function Mn(t){return await ne("/api/files/url","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}var In=new v("_system.files",{queries:{async downloadFile({filePath:t}){return Rn(t)},async getFileUrl({filePath:t}){return Mn(t)}},mutations:{async getUploadUrl({filePath:t,contentType:e,visibility:n}){return An({filePath:t,contentType:e,visibility:n})},async deleteFile({filePath:t}){return _n(t)}}});var lt=class{async init({httpServer:e}){this.config=await Xr(this.isDev()?e:void 0),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[z$1.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(z$1.static(this.config.publicDir)),e}handler(e,n){if(this.isDev())try{n.setHeader("Cache-Control","no-store"),n.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),n.status(500).send("Internal Server Error");}else n.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function Qr(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function Yr(t,e){let n=mergeConfig(t,e);if(n.plugins&&Array.isArray(n.plugins)){let r=new Set;n.plugins=n.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return true;let i=o.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),n.plugins.reverse();}return n}async function Xr(t){let e=process.cwd(),n=await Qr(),r=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(s=>Kr.existsSync(ct.join(e,s))),o=[Jr(),eo()];if(r){let s=(await import('vite-plugin-eslint')).default;o.push(s({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:ct.resolve(e,r)}));}let i=defineConfig({plugins:o,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true,hmr:t?{server:t}:void 0},root:"./src/client",resolve:{alias:{"@":ct.resolve(e,"src").replace(/\\/g,"/")}}});return Yr(i,n)}function eo(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var Pn=new lt;async function dt(t,e){let{authToken:n}=await ze(e);t.cookie("authToken",n,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict",path:"/"}),t.status(302),t.redirect("/");}async function no(t,e,n,r,o){let i=x();try{if(n.status==="disabled"||n.status==="deleted"){t.status(400).json({error:"User account is not active."});return}let s={};n.firstName===void 0&&e.firstName&&(s.firstName=e.firstName),n.lastName===void 0&&e.lastName&&(s.lastName=e.lastName),n.avatarUrl===void 0&&e.avatarUrl&&(s.avatarUrl=e.avatarUrl);let a=n;Object.keys(s).length>0&&(await m.updateOne({_id:n._id},{$set:s}),a={...n,...s}),await dt(t,n._id),i.onAfterLogin?.({provider:e.providerName,user:a,session:r,connectionInfo:o}),i.login?.onSuccess?.(a);}catch(s){throw s instanceof Error&&(i.login?.onError?.(s),i.onLoginError?.({provider:e.providerName,error:s,session:r,connectionInfo:o})),s}}async function ro(t,e,n,r,o){let i=x();if((i.oauthAccountLinking??"manual")==="auto"&&e.emailVerified){if(n.status==="disabled"||n.status==="deleted"){t.status(400).json({error:"User account is not active."});return}if(!n.emails?.find(c=>c.address.toLowerCase()===e.email.toLowerCase())?.verified){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}try{let c={...n.firstName===void 0&&e.firstName&&{firstName:e.firstName},...n.lastName===void 0&&e.lastName&&{lastName:e.lastName},...n.avatarUrl===void 0&&e.avatarUrl&&{avatarUrl:e.avatarUrl}};if(!((await m.updateOne({_id:n._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${e.providerName}.id`]:{$exists:!1}},{[`authMethods.${e.providerName}.id`]:e.id}]},{$set:{[`authMethods.${e.providerName}.id`]:e.id,...c}})).matchedCount>0)){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}await dt(t,n._id);let l={...n,...c,authMethods:{...n.authMethods,[e.providerName]:{id:e.id}}};i.onAfterLogin?.({provider:e.providerName,user:l,session:r,connectionInfo:o}),i.login?.onSuccess?.(l);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:e.providerName,error:c,session:r,connectionInfo:o})),c}}t.status(400).json({error:"User with this email already exists. Please log in instead."});}async function oo(t,e,n,r){let o=x();try{let i;if(o.generateHandle){let d=await o.generateHandle({email:e.email,firstName:e.firstName,lastName:e.lastName});i=await G(d,e.email,{throwOnConflict:!1});}else i=await G(void 0,e.email);let s={handle:i,status:"active",emails:[{address:e.email,verified:e.emailVerified}],createdAt:new Date,authMethods:{[e.providerName]:{id:e.id}},...e.firstName!==void 0&&{firstName:e.firstName},...e.lastName!==void 0&&{lastName:e.lastName},...e.avatarUrl!==void 0&&{avatarUrl:e.avatarUrl}},a=await m.insertOne(s);await dt(t,a.insertedId);let c=await m.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:e.providerName,user:c,session:n,connectionInfo:r}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:e.providerName,error:i,session:n,connectionInfo:r}),o.signup?.onError?.(i)),i}}function ie(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function _e(t,e,n){let r=await m.findOne({[`authMethods.${n.providerName}.id`]:n.id}),{session:o,connectionInfo:i}=await he(t);if(r)return no(e,n,r,o,i);if(!n.email){e.status(400).json({error:`Email address is required for ${n.providerName} authentication.`});return}let s;try{s=await m.findOne({"emails.address":n.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(a){if(a instanceof Error){let c=x();c.onSignupError?.({provider:n.providerName,error:a,session:o,connectionInfo:i}),c.signup?.onError?.(a);}throw a}return s?ro(e,n,s,o,i):oo(e,n,o,i)}function O(t){t.cookie("oauthLinkToken","",{httpOnly:true,maxAge:0,path:"/api/_internal/auth/",sameSite:"lax",secure:process.env.NODE_ENV==="production"});}function oe(t){if(t)try{t();}catch(e){console.error("Error executing OAuth hook:",e);}}function Re(t,e,n){let r=t.query.state,o=t.cookies[n],[i,s]=(o||"").split(":");return !r||!o||r!==i?(e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"}),null):(e.clearCookie(n),s||"login")}async function Me(t,e,n){let r=x(),{session:o,connectionInfo:i}=await he(t);if(!o?.userId){O(e),e.status(401).json({error:"You must be signed in to link a provider."});return}let s=o.userId;try{let a=`authMethods.${n.providerName}.id`;if((await m.updateOne({_id:s,status:{$nin:["deleted","disabled"]},$or:[{[a]:{$exists:!1}},{[a]:n.id}]},{$set:{[a]:n.id}})).matchedCount===0){let p=await m.findOne({_id:s});if(!p||p.status==="deleted"||p.status==="disabled"){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error("User account not found or not active"),session:o,connectionInfo:i})),O(e),e.status(400).json({error:"User account is not active."});return}let l=p?.authMethods?.[n.providerName]?.id;if(l&&l!==n.id){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error(`User already has a different ${n.providerName} account linked`),session:o,connectionInfo:i})),O(e),e.status(400).json({error:`You have already linked a different ${n.providerName} account.`});return}oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error(`Unexpected OAuth linking state for ${n.providerName}`),session:o,connectionInfo:i})),O(e),e.status(400).json({error:`Unable to link ${n.providerName} account.`});return}let d=await m.findOne({_id:s},{readPreference:"primary"});d&&oe(()=>r.onAfterOAuthLink?.({provider:n.providerName,user:d,session:o,connectionInfo:i})),O(e),e.status(302).redirect("/");}catch(a){if(a instanceof MongoServerError&&a.code===11e3){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:a,session:o,connectionInfo:i})),O(e),e.status(400).json({error:`This ${n.providerName} account is already linked to a different user.`});return}if(a instanceof Error&&oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:a,session:o,connectionInfo:i})),O(e),!e.headersSent)throw a}}function Ie(t){return !t||typeof t!="string"?null:t}async function ao(t,e,n,r){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:n,redirect_uri:r,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function co(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function lo(t,e){let n=Ie(t.query.code);if(!n){e.status(400).json({error:"Missing authorization code"});return}let r=Re(t,e,"authStateGoogle");if(!r)return;let o=String(a$1("_system.user.auth.google.clientId")),i=String(a$1("_system.user.auth.google.clientSecret")),s=ie("google");try{let a=await ao(n,o,i,s),c=await co(a.access_token),d={id:c.id,email:c.email,emailVerified:c.verified_email,providerName:"google",firstName:c.given_name||void 0,lastName:c.family_name||void 0,avatarUrl:c.picture||void 0};r==="link"?await Me(t,e,d):await _e(t,e,d);}catch(a){console.error("Google OAuth error:",a),r==="link"&&O(e),e.status(500).json({error:"Authentication failed"});}}function uo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"Google authentication is not configured"});return}o();};return t.get("/api/_internal/auth/google",e,(n,r)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=ie("google"),s=randomBytes(32).toString("hex"),a$2=n.query.mode==="link"?"link":"login";r.cookie("authStateGoogle",`${s}:${a$2}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let c=new URL("https://accounts.google.com/o/oauth2/v2/auth");c.searchParams.append("client_id",o),c.searchParams.append("redirect_uri",i),c.searchParams.append("response_type","code"),c.searchParams.append("scope","profile email"),c.searchParams.append("access_type","online"),c.searchParams.append("state",s),r.redirect(c.toString());}),t.get("/api/_internal/auth/google/callback",e,lo),t}var Nn=uo;async function fo(t,e,n,r){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:n,code:t,redirect_uri:r})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function ho(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function go(t){let e=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user emails: ${e.statusText}`);return e.json()}async function yo(t,e){return t.email?t.email:(await go(e)).find(r=>r.primary&&r.verified)?.email??null}async function wo(t,e){let n=Ie(t.query.code);if(!n){e.status(400).json({error:"Missing authorization code"});return}let r=Re(t,e,"authStateGithub");if(!r)return;let o=String(a$1("_system.user.auth.github.clientId")),i=String(a$1("_system.user.auth.github.clientSecret")),s=ie("github");try{let a=await fo(n,o,i,s),c=await ho(a.access_token),d=await yo(c,a.access_token);if(!d){r==="link"&&O(e),e.status(400).json({error:"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary."});return}let p=c.name?c.name.trim().split(/\s+/):[],l=p[0]||void 0,h=p.length>1?p.slice(1).join(" "):void 0,w={id:String(c.id),email:d,emailVerified:!0,providerName:"github",firstName:l,lastName:h,avatarUrl:c.avatar_url||void 0};r==="link"?await Me(t,e,w):await _e(t,e,w);}catch(a){console.error("GitHub OAuth error:",a),r==="link"&&O(e),e.status(500).json({error:"Authentication failed"});}}function bo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"GitHub authentication is not configured"});return}o();};return t.get("/api/_internal/auth/github",e,(n,r)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=ie("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(l=>l.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex"),d=n.query.mode==="link"?"link":"login";r.cookie("authStateGithub",`${c}:${d}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let p=new URL("https://github.com/login/oauth/authorize");p.searchParams.append("client_id",o),p.searchParams.append("redirect_uri",i),p.searchParams.append("scope",a$2),p.searchParams.append("state",c),r.redirect(p.toString());}),t.get("/api/_internal/auth/github/callback",e,wo),t}var Ln=bo;function Un(t,e,n){return async(r,o,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&V())try{let{session:d,user:p}=await D(s);a={session:d,user:p};}catch{}let c=l("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:r.query,body:r.body,params:r.params});try{let d=await n({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:o,next:i},a);c.end(),d&&(o.status(d.status||200),d.redirect&&o.redirect(d.redirect),d.headers&&Object.entries(d.headers).forEach(([p,l])=>{o.setHeader(p,l);}),o.send(d.data));}catch(d){c.end("error"),d instanceof a$3?o.status(d.status).send(d.message):(console.error(`Error in route handler: ${r.path}`),console.error(d),o.status(500).send(String(d)));}}}var ut=Object.freeze({});function $n(t){ut=Object.freeze(Object.assign({},ut,t));}function jn(){return ut}var pt=Object.freeze({});function Fn(t){pt=Object.freeze(Object.assign({},pt,t));}function De(){return pt}function Co(t){let e=[];if(!t)return e.push(z$1.json({limit:"16mb"})),e.push(z$1.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let n=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(z$1.json(n));}if(t.urlencoded!==false){let n=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(z$1.urlencoded(n));}if(t.raw){let n=typeof t.raw=="object"?t.raw:{},r={limit:n.limit||"16mb",type:n.type||"*/*"};e.push(z$1.raw(r));}return e}function xo(t,e){for(let n of e)for(let r of n.routes){let{path:o,handlers:i,body:s}=r,a=Co(s);Object.entries(i).forEach(([c,d])=>{t[c](o,...a,Un(c,o,d));});}}async function zn(t,{combinedModules:e,channels:n}){let r=z$1();r.use(So()),r.use(ko()),xo(r,e),r.use(z$1.json({limit:"16mb"})),r.use(z$1.urlencoded({extended:true,limit:"16mb"})),r.use(Nn()),r.use(Ln()),r.post("/api/_internal/auth/set-link-cookie",async(a,c)=>{let{session:d}=await he(a);if(!d?.userId){c.status(401).json({error:"Not authenticated"});return}c.cookie("oauthLinkToken",d.authToken,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",path:"/api/_internal/auth/",maxAge:10*60*1e3}),c.json({ok:true});}),r.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:d}=a.params,p=await he(a);try{let l=a$2(await jt(d,a.body.args,p));c.json({data:l,typeMap:b$1(l)});}catch(l){Eo(c,d,l);}});let o=vo.createServer(r);await t.init({httpServer:o}),t.middlewares&&r.use(t.middlewares()),r.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let i=De()?.provider;i&&i.init({httpServer:o,channels:n});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(s,()=>{j$1("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
|
|
14
|
+
`}var nt={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function mn(t,{connectionInfo:e}){let n=F(t.email),r=e?.ip;r&&await R({bucket:"passwordReset",type:"ip",value:r}),await R({bucket:"passwordReset",type:"email",value:n});let o=await m.findOne({"emails.address":n,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return nt;let i=S().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),c=new Date(a$2),l=new Date(a$2+a.hours(1));await I.insertOne({userId:o._id,email:n,token:s,createdAt:c,expiresAt:l});let p=a$1("_system.site.url")||e?.baseUrl,u=`${Lr(p,S().passwordReset?.redirectUrl)}?token=${s}`,g=(S()?.passwordReset?.template||$r)({email:n,resetUrl:u,name:""}),x=Ee(g);return await i.sendEmail({to:n,from:S()?.from||"noreply@modelence.com",subject:S()?.passwordReset?.subject||"Reset your password",text:x,html:g}),nt}async function fn(t,{}){let e=z.string().parse(t.token),n=_e(t.password),r=await I.findOne({token:e});if(!r)throw new Error("Invalid or expired reset token");if(r.expiresAt<new Date)throw await I.deleteOne({token:e}),new Error("Reset token has expired");let o=await m.findOne({_id:r.userId});if(!o)throw new Error("User not found");let i=await kr.hash(n,10);return await m.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),r.email&&await m.updateOne({_id:o._id,"emails.address":r.email},{$set:{"emails.$.verified":true}}),await Dt(o._id),await I.deleteOne({token:e}),{success:true,message:"Password has been reset successfully"}}var hn=new C("_system.user",{stores:[m,ce,L,I],queries:{getOwnProfile:on},mutations:{signupWithPassword:pn,loginWithPassword:nn,logout:rn,resendEmailVerification:un,sendResetPasswordToken:mn,resetPassword:fn,updateProfile:sn,unlinkOAuthProvider:an},cronJobs:{updateDisposableEmailList:Jt},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.seconds(60),limit:1},{bucket:"verification",type:"user",window:a.days(1),limit:10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:dn}}]});var jr={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MONGODB_POOL_SIZE:"_system.mongodbPoolSize",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_MULTI_INSTANCE:"_system.multiInstance",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function Fr(t,e){if(e==="number"){let n=Number(t);if(isNaN(n))throw new Error(`Invalid number value for config: ${t}`);return n}if(e==="boolean"){if(t.toLowerCase()==="true")return true;if(t.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${t}`)}return t}function zr(t,e){let n=[];for(let[r,o]of Object.entries(t)){let i=process.env[r],s=e[o];if(i){let a=s?.type??"string";n.push({key:o,type:a,value:Fr(i,a)});}}return n}function Me(t,e="withoutRemoteServer"){let n=jr[e];return zr(n,t)}async function gn({configSchema:t,cronJobsMetadata:e,stores:n,roles:r}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=(n??[]).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2,indexes:a.getIndexes(),searchIndexes:a.getSearchIndexes(),indexCreationMode:a.getIndexCreationMode()})),s=await rt("/api/connect","POST",{hostname:qr.hostname(),containerId:o,dataModels:i,configSchema:t,cronJobsMetadata:e,roles:r});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function yn(){return rt("/api/configs","GET")}async function wn(){return await rt("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function rt(t,e,n){return ne(t,e,n?JSON.stringify(n):void 0,n?{"Content-Type":"application/json"}:{})}async function ne(t,e,n,r){let{MODELENCE_SERVICE_ENDPOINT:o,MODELENCE_SERVICE_TOKEN:i}=process.env;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let s=await fetch(`${o}${t}`,{method:e,headers:{Authorization:`Bearer ${i}`,...r},body:n});if(!s.ok){let a=await s.text();try{let c=JSON.parse(a);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${c?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${a}`)}}if(!(s.status===204||s.headers?.get("content-length")==="0"))return await s.json()}var ot=false,Hr=a.seconds(10);function bn(){setInterval(async()=>{if(!ot){ot=true;try{await wn();}catch(t){console.error("Error syncing status",t);}try{await Vr();}catch(t){console.error("Error syncing config",t);}ot=false;}},Hr);}function it(t){c(t),c(Me(d$2(),"withRemoteServer"));}async function Vr(){let{configs:t}=await yn();it(t);}var J=new v("_modelenceLocks",{schema:{_id:d.string(),instanceId:d.string(),acquiredAt:d.date(),resource:d.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var K={},Sn=a.seconds(10),En=randomBytes(32).toString("base64url"),Br=a.seconds(30),re=new Map,st=t=>t instanceof MongoError&&t.code===11e3,Cn=(t,e)=>typeof t.keyPattern=="object"&&t.keyPattern!==null&&Object.prototype.hasOwnProperty.call(t.keyPattern,e),Zr=async({error:t,resource:e})=>{if(Cn(t,"resource"))return true;if(Cn(t,"_id"))return false;let n=await J.findOne({resource:e});return !!n&&n._id!==e},xn=async({resource:t,staleThresholdDate:e,instanceId:n})=>{let r=await J.upsertOne({_id:t,$or:[{instanceId:n},{acquiredAt:{$lt:e}}]},{$set:{resource:t,instanceId:n,acquiredAt:new Date},$setOnInsert:{_id:t}});return r.upsertedCount>0||r.modifiedCount>0},Tn=async({resource:t,instanceId:e,staleThresholdDate:n})=>{let r=n?{resource:t,_id:{$ne:t},$or:[{instanceId:e},{acquiredAt:{$lt:n}}]}:{resource:t,instanceId:e};return (await J.deleteOne(r)).deletedCount>0},Jr=t=>{let e=t,n=re.get(e);n&&(n.stopRequested=true,n.timer&&(clearTimeout(n.timer),n.timer=null),re.delete(e));},vn=({resource:t,lockDuration:e,instanceId:n})=>{let r=Math.floor(e/3),o=t,i$1=re.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===r&&i$1.lockDuration===e)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),re.delete(o));let s={timer:null,stopRequested:false,lockDuration:e,heartbeatInterval:r},a=()=>{s.timer=setTimeout(()=>{Q(t,{lockDuration:e,bypassCache:true,instanceId:n}).then(c=>{c||(s.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${t}`,{source:"lock",resource:t,instanceId:n}));}).finally(()=>{if(s.stopRequested){re.delete(o);return}a();});},r);};re.set(o,s),a();};async function Q(t,{lockDuration:e=Br,successfulLockCacheDuration:n=Sn,failedLockCacheDuration:r=Sn,heartbeat:o,bypassCache:i$1,instanceId:s=En}={}){let a=Date.now();if(!i$1&&K[t]&&a<K[t].expiresAt)return K[t].value&&o&&vn({resource:t,lockDuration:e,instanceId:s}),K[t].value;let c=new Date(a-e);i(`Attempting to acquire lock: ${t}`,{source:"lock",resource:t,instanceId:s});try{let l=await Kr({resource:t,staleThresholdDate:c,instanceId:s});return K[t]={value:l,expiresAt:a+(l?n:r)},l?(o&&vn({resource:t,lockDuration:e,instanceId:s}),i(`Lock acquired: ${t}`,{source:"lock",resource:t,instanceId:s})):i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),l}catch{return K[t]={value:false,expiresAt:a+r},i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),false}}var Kr=async({resource:t,staleThresholdDate:e,instanceId:n})=>{try{return await xn({resource:t,staleThresholdDate:e,instanceId:n})}catch(r){if(st(r)&&await Zr({error:r,resource:t})){if(!await Tn({resource:t,staleThresholdDate:e,instanceId:n}))return false;try{return await xn({resource:t,staleThresholdDate:e,instanceId:n})}catch(i){if(st(i))return false;throw i}}if(st(r))return false;throw r}};async function fe(t,{instanceId:e=En}={}){Jr(t);try{let n=await J.deleteOne({_id:t,instanceId:e});return n.deletedCount===0?await Tn({resource:t,instanceId:e}):n.deletedCount>0}catch{return false}finally{delete K[t];}}var Y={},at=null,ct=new v("_modelenceCronJobs",{schema:{alias:d.string(),lastStartDate:d.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function On(t,{description:e="",interval:n,timeout:r=Math.min(Math.max(n,a.minutes(1)),a.days(1)),handler:o}){if(Y[t])throw new Error(`Duplicate cron job declaration: '${t}' already exists`);if(at)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${t}]`);if(n<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${t}]`);if(r>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${t}]`);Y[t]={alias:t,params:{description:e,interval:n,timeout:r},handler:o,state:{isRunning:false}};}async function An(){if(at)throw new Error("Cron jobs already started");let t=Object.keys(Y);if(t.length>0){let e={alias:{$in:t}},n=await ct.fetch(e),r=Date.now();n.forEach(o=>{let i=Y[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:r);}),Object.values(Y).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=r);}),at=setInterval(Qr,a.seconds(1));}}async function Qr(){let t=Date.now();await Q("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(Y).forEach(async n=>{let{params:r,state:o}=n;if(o.isRunning){o.startTs&&o.startTs+r.timeout<t&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=t&&await Yr(n);});}async function Yr(t){let{alias:e,params:n,handler:r,state:o}=t;o.isRunning=true,o.startTs=Date.now(),await ct.updateOne({alias:e},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${e}`);try{await r(),kn(o,n),i.end("success");}catch(s){kn(o,n);let a=s instanceof Error?s:new Error(String(s));m$1(a),i.end("error"),console.error(`Error in cron job '${e}':`,s);}}function kn(t,e){t.scheduledRunTs=t.startTs?t.startTs+e.interval:Date.now(),t.startTs=void 0,t.isRunning=false;}function _n(){return Object.values(Y).map(({alias:t,params:e})=>({alias:t,description:e.description,interval:e.interval,timeout:e.timeout}))}var Rn=new C("_system.cron",{stores:[ct]});function Mn(t){let e=[...new Set(t)],n=new Map;for(let i of e){let s=i.getChainRoot();n.set(s,s.getChainTail());}let r=[...new Set(n.values())],o=new Map;for(let[i,s]of n){let a=s.getName(),c=o.get(a);if(c!==void 0&&c!==i)throw new Error(`Store collision: multiple unrelated stores use collection name '${a}'. Use .extend() to create a single extension chain instead of independent stores.`);o.set(a,i);}return {storesToInit:e,effectiveStores:r}}var lt=new C("_system.lock",{stores:[J]});var he=new v("_modelenceMigrations",{schema:{version:d.number(),status:d.enum(["completed","failed"]),description:d.string().optional(),output:d.string().optional(),appliedAt:d.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function dt(t,{lockMode:e="acquire"}={}){if(t.length!==0){if(e==="acquire"&&!await Q("migrations")){j$1("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let n=t.map(({version:s})=>s),r=await he.fetch({version:{$in:n}}),o=new Set(r.map(({version:s})=>s)),i=t.filter(({version:s})=>!o.has(s));if(i.length===0)return;j$1(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i){j$1(`Running migration v${s}: ${a}`,{source:"migrations"});try{let p=(await c()||"").toString().trim(),f=15*1024*1024,u=p.length>f?p.slice(0,f)+`
|
|
15
|
+
[Output truncated - exceeded size limit]`:p;await he.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:u,appliedAt:new Date}}),j$1(`Migration v${s} complete`,{source:"migrations"});}catch(l){l instanceof Error&&(await he.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:l.message||"",appliedAt:new Date}}),j$1(`Migration v${s} is failed: ${l.message}`,{source:"migrations"}));}}}finally{e==="acquire"&&await fe("migrations");}}}function In(t){setTimeout(()=>{dt(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var Dn=new C("_system.migration",{stores:[he]});var Pn=new C("_system.rateLimit",{stores:[me]});async function Nn({filePath:t,contentType:e,visibility:n}){return await ne("/api/files/upload","POST",JSON.stringify({filePath:t,contentType:e,visibility:n}),{"Content-Type":"application/json"})}async function Un(t){await ne("/api/files/delete","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"});}async function Ln(t){return await ne("/api/files/download","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}async function $n(t){return await ne("/api/files/url","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}var jn=new C("_system.files",{queries:{async downloadFile({filePath:t}){return Ln(t)},async getFileUrl({filePath:t}){return $n(t)}},mutations:{async getUploadUrl({filePath:t,contentType:e,visibility:n}){return Nn({filePath:t,contentType:e,visibility:n})},async deleteFile({filePath:t}){return Un(t)}}});var pt=class{async init({httpServer:e}){this.config=await ao(this.isDev()?e:void 0),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[q.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(q.static(this.config.publicDir)),e}handler(e,n){if(this.isDev())try{n.setHeader("Cache-Control","no-store"),n.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),n.status(500).send("Internal Server Error");}else n.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function io(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function so(t,e){let n=mergeConfig(t,e);if(n.plugins&&Array.isArray(n.plugins)){let r=new Set;n.plugins=n.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return true;let i=o.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),n.plugins.reverse();}return n}async function ao(t){let e=process.cwd(),n=await io(),r=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(s=>oo.existsSync(ut.join(e,s))),o=[ro(),co()];if(r){let s=(await import('vite-plugin-eslint')).default;o.push(s({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:ut.resolve(e,r)}));}let i=defineConfig({plugins:o,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true,hmr:t?{server:t}:void 0},root:"./src/client",resolve:{alias:{"@":ut.resolve(e,"src").replace(/\\/g,"/")}}});return so(i,n)}function co(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var zn=new pt;async function mt(t,e){let{authToken:n}=await ae(e);Ce(t,n),t.status(302),t.redirect("/");}async function uo(t,e,n,r,o){let i=E();try{if(n.status==="disabled"||n.status==="deleted"){t.status(400).json({error:"User account is not active."});return}let s={};n.firstName===void 0&&e.firstName&&(s.firstName=e.firstName),n.lastName===void 0&&e.lastName&&(s.lastName=e.lastName),n.avatarUrl===void 0&&e.avatarUrl&&(s.avatarUrl=e.avatarUrl);let a=n;Object.keys(s).length>0&&(await m.updateOne({_id:n._id},{$set:s}),a={...n,...s}),await mt(t,n._id),i.onAfterLogin?.({provider:e.providerName,user:a,session:r,connectionInfo:o}),i.login?.onSuccess?.(a);}catch(s){throw s instanceof Error&&(i.login?.onError?.(s),i.onLoginError?.({provider:e.providerName,error:s,session:r,connectionInfo:o})),s}}async function po(t,e,n,r,o){let i=E();if((i.oauthAccountLinking??"manual")==="auto"&&e.emailVerified){if(n.status==="disabled"||n.status==="deleted"){t.status(400).json({error:"User account is not active."});return}if(!n.emails?.find(c=>c.address.toLowerCase()===e.email.toLowerCase())?.verified){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}try{let c={...n.firstName===void 0&&e.firstName&&{firstName:e.firstName},...n.lastName===void 0&&e.lastName&&{lastName:e.lastName},...n.avatarUrl===void 0&&e.avatarUrl&&{avatarUrl:e.avatarUrl}};if(!((await m.updateOne({_id:n._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${e.providerName}.id`]:{$exists:!1}},{[`authMethods.${e.providerName}.id`]:e.id}]},{$set:{[`authMethods.${e.providerName}.id`]:e.id,...c}})).matchedCount>0)){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}await mt(t,n._id);let f={...n,...c,authMethods:{...n.authMethods,[e.providerName]:{id:e.id}}};i.onAfterLogin?.({provider:e.providerName,user:f,session:r,connectionInfo:o}),i.login?.onSuccess?.(f);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:e.providerName,error:c,session:r,connectionInfo:o})),c}}t.status(400).json({error:"User with this email already exists. Please log in instead."});}async function mo(t,e,n,r){let o=E();try{let i;if(o.generateHandle){let l=await o.generateHandle({email:e.email,firstName:e.firstName,lastName:e.lastName});i=await Z(l,e.email,{throwOnConflict:!1});}else i=await Z(void 0,e.email);let s={handle:i,status:"active",emails:[{address:e.email,verified:e.emailVerified}],createdAt:new Date,authMethods:{[e.providerName]:{id:e.id}},...e.firstName!==void 0&&{firstName:e.firstName},...e.lastName!==void 0&&{lastName:e.lastName},...e.avatarUrl!==void 0&&{avatarUrl:e.avatarUrl}},a=await m.insertOne(s);await mt(t,a.insertedId);let c=await m.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:e.providerName,user:c,session:n,connectionInfo:r}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:e.providerName,error:i,session:n,connectionInfo:r}),o.signup?.onError?.(i)),i}}function ie(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function Ie(t,e,n){let r=await m.findOne({[`authMethods.${n.providerName}.id`]:n.id}),{session:o,connectionInfo:i}=await ge(t);if(r)return uo(e,n,r,o,i);if(!n.email){e.status(400).json({error:`Email address is required for ${n.providerName} authentication.`});return}let s;try{s=await m.findOne({"emails.address":n.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(a){if(a instanceof Error){let c=E();c.onSignupError?.({provider:n.providerName,error:a,session:o,connectionInfo:i}),c.signup?.onError?.(a);}throw a}return s?po(e,n,s,o,i):mo(e,n,o,i)}function A(t){t.cookie("oauthLinkToken","",{httpOnly:true,maxAge:0,path:"/api/_internal/auth/",sameSite:"lax",secure:process.env.NODE_ENV==="production"});}function oe(t){if(t)try{t();}catch(e){console.error("Error executing OAuth hook:",e);}}function De(t,e,n){let r=t.query.state,o=t.cookies[n],[i,s]=(o||"").split(":");return !r||!o||r!==i?(e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"}),null):(e.clearCookie(n),s||"login")}async function Pe(t,e,n){let r=E(),{session:o,connectionInfo:i}=await ge(t);if(!o?.userId){A(e),e.status(401).json({error:"You must be signed in to link a provider."});return}let s=o.userId;try{let a=`authMethods.${n.providerName}.id`;if((await m.updateOne({_id:s,status:{$nin:["deleted","disabled"]},$or:[{[a]:{$exists:!1}},{[a]:n.id}]},{$set:{[a]:n.id}})).matchedCount===0){let p=await m.findOne({_id:s});if(!p||p.status==="deleted"||p.status==="disabled"){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error("User account not found or not active"),session:o,connectionInfo:i})),A(e),e.status(400).json({error:"User account is not active."});return}let f=p?.authMethods?.[n.providerName]?.id;if(f&&f!==n.id){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error(`User already has a different ${n.providerName} account linked`),session:o,connectionInfo:i})),A(e),e.status(400).json({error:`You have already linked a different ${n.providerName} account.`});return}oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:new Error(`Unexpected OAuth linking state for ${n.providerName}`),session:o,connectionInfo:i})),A(e),e.status(400).json({error:`Unable to link ${n.providerName} account.`});return}let l=await m.findOne({_id:s},{readPreference:"primary"});l&&oe(()=>r.onAfterOAuthLink?.({provider:n.providerName,user:l,session:o,connectionInfo:i})),A(e),e.status(302).redirect("/");}catch(a){if(a instanceof MongoServerError&&a.code===11e3){oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:a,session:o,connectionInfo:i})),A(e),e.status(400).json({error:`This ${n.providerName} account is already linked to a different user.`});return}if(a instanceof Error&&oe(()=>r.onOAuthLinkError?.({provider:n.providerName,error:a,session:o,connectionInfo:i})),A(e),!e.headersSent)throw a}}function Ne(t){return !t||typeof t!="string"?null:t}async function go(t,e,n,r){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:n,redirect_uri:r,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function yo(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function wo(t,e){let n=Ne(t.query.code);if(!n){e.status(400).json({error:"Missing authorization code"});return}let r=De(t,e,"authStateGoogle");if(!r)return;let o=String(a$1("_system.user.auth.google.clientId")),i=String(a$1("_system.user.auth.google.clientSecret")),s=ie("google");try{let a=await go(n,o,i,s),c=await yo(a.access_token),l={id:c.id,email:c.email,emailVerified:c.verified_email,providerName:"google",firstName:c.given_name||void 0,lastName:c.family_name||void 0,avatarUrl:c.picture||void 0};r==="link"?await Pe(t,e,l):await Ie(t,e,l);}catch(a){console.error("Google OAuth error:",a),r==="link"&&A(e),e.status(500).json({error:"Authentication failed"});}}function bo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"Google authentication is not configured"});return}o();};return t.get("/api/_internal/auth/google",e,(n,r)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=ie("google"),s=randomBytes(32).toString("hex"),a$2=n.query.mode==="link"?"link":"login";r.cookie("authStateGoogle",`${s}:${a$2}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let c=new URL("https://accounts.google.com/o/oauth2/v2/auth");c.searchParams.append("client_id",o),c.searchParams.append("redirect_uri",i),c.searchParams.append("response_type","code"),c.searchParams.append("scope","profile email"),c.searchParams.append("access_type","online"),c.searchParams.append("state",s),r.redirect(c.toString());}),t.get("/api/_internal/auth/google/callback",e,wo),t}var qn=bo;async function xo(t,e,n,r){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:n,code:t,redirect_uri:r})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function vo(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Eo(t){let e=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user emails: ${e.statusText}`);return e.json()}async function To(t,e){return t.email?t.email:(await Eo(e)).find(r=>r.primary&&r.verified)?.email??null}async function ko(t,e){let n=Ne(t.query.code);if(!n){e.status(400).json({error:"Missing authorization code"});return}let r=De(t,e,"authStateGithub");if(!r)return;let o=String(a$1("_system.user.auth.github.clientId")),i=String(a$1("_system.user.auth.github.clientSecret")),s=ie("github");try{let a=await xo(n,o,i,s),c=await vo(a.access_token),l=await To(c,a.access_token);if(!l){r==="link"&&A(e),e.status(400).json({error:"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary."});return}let p=c.name?c.name.trim().split(/\s+/):[],f=p[0]||void 0,u=p.length>1?p.slice(1).join(" "):void 0,y={id:String(c.id),email:l,emailVerified:!0,providerName:"github",firstName:f,lastName:u,avatarUrl:c.avatar_url||void 0};r==="link"?await Pe(t,e,y):await Ie(t,e,y);}catch(a){console.error("GitHub OAuth error:",a),r==="link"&&A(e),e.status(500).json({error:"Authentication failed"});}}function Oo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"GitHub authentication is not configured"});return}o();};return t.get("/api/_internal/auth/github",e,(n,r)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=ie("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(f=>f.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex"),l=n.query.mode==="link"?"link":"login";r.cookie("authStateGithub",`${c}:${l}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let p=new URL("https://github.com/login/oauth/authorize");p.searchParams.append("client_id",o),p.searchParams.append("redirect_uri",i),p.searchParams.append("scope",a$2),p.searchParams.append("state",c),r.redirect(p.toString());}),t.get("/api/_internal/auth/github/callback",e,ko),t}var Hn=Oo;function Vn(t,e,n){return async(r,o,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&G())try{let{session:l,user:p}=await D(s);a={session:l,user:p};}catch{}let c=l("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:r.query,body:r.body,params:r.params});try{let l=await n({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:o,next:i},a);c.end(),l&&(o.status(l.status||200),l.redirect&&o.redirect(l.redirect),l.headers&&Object.entries(l.headers).forEach(([p,f])=>{o.setHeader(p,f);}),o.send(l.data));}catch(l){c.end("error"),l instanceof a$3?o.status(l.status).send(l.message):(console.error(`Error in route handler: ${r.path}`),console.error(l),o.status(500).send(String(l)));}}}var ft=Object.freeze({});function Wn(t){ft=Object.freeze(Object.assign({},ft,t));}function Gn(){return ft}var ht=Object.freeze({});function Bn(t){ht=Object.freeze(Object.assign({},ht,t));}function Ue(){return ht}function Ro(t){let e=[];if(!t)return e.push(q.json({limit:"16mb"})),e.push(q.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let n=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(q.json(n));}if(t.urlencoded!==false){let n=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(q.urlencoded(n));}if(t.raw){let n=typeof t.raw=="object"?t.raw:{},r={limit:n.limit||"16mb",type:n.type||"*/*"};e.push(q.raw(r));}return e}function Mo(t,e){for(let n of e)for(let r of n.routes){let{path:o,handlers:i,body:s}=r,a=Ro(s);Object.entries(i).forEach(([c,l])=>{t[c](o,...a,Vn(c,o,l));});}}async function Zn(t,{combinedModules:e,channels:n}){let r=q();r.use(Ao()),r.use(Po()),Mo(r,e),r.use(q.json({limit:"16mb"})),r.use(q.urlencoded({extended:true,limit:"16mb"})),r.use(qn()),r.use(Hn()),r.post("/api/_internal/auth/set-link-cookie",async(a,c)=>{let{session:l}=await ge(a);if(!l?.userId){c.status(401).json({error:"Not authenticated"});return}c.cookie("oauthLinkToken",l.authToken,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",path:"/api/_internal/auth/",maxAge:10*60*1e3}),c.json({ok:true});}),r.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:l}=a.params,p=await ge(a);try{let f=a$2(await Vt(l,a.body.args,p));c.json({data:f,typeMap:b$1(f)});}catch(f){Io(c,l,f);}});let o=_o.createServer(r);await t.init({httpServer:o}),t.middlewares&&r.use(t.middlewares()),r.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let i=Ue()?.provider;i&&i.init({httpServer:o,channels:n});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(s,()=>{j$1("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
|
|
16
16
|
Application started on ${a}
|
|
17
|
-
`);});}async function
|
|
18
|
-
export{te as LiveData,
|
|
17
|
+
`);});}async function ge(t){let e=(t.path??t.url??"").split("?")[0],n=e.startsWith("/api/_internal/auth/")&&e.endsWith("/callback"),r=z$1.string().nullish().transform(a=>a??null).parse(t.cookies.authToken||(n?t.cookies.oauthLinkToken:null)||t.body.authToken),o=z$1.object({screenWidth:z$1.number(),screenHeight:z$1.number(),windowWidth:z$1.number(),windowHeight:z$1.number(),pixelRatio:z$1.number(),orientation:z$1.string().nullable()}).nullish().parse(t.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},i={ip:No(t),userAgent:t.get("user-agent"),acceptLanguage:t.get("accept-language"),referrer:t.get("referrer"),baseUrl:t.protocol+"://"+t.get("host")};if(!!G()){let{session:a,user:c,roles:l}=await D(r);return {clientInfo:o,connectionInfo:i,session:a,user:c,roles:l}}return {clientInfo:o,connectionInfo:i,session:null,user:null,roles:xe()}}function Io(t,e,n){if(n instanceof a$3){n.status>=500&&n.status<600&&console.error(`Error calling ${e}:`,n),t.status(n.status).send(n.message);return}if(n instanceof Error&&n?.constructor?.name==="ZodError"&&"errors"in n){let r="";try{r=Do(n);}catch(o){console.error(`Error parsing Zod error in ${e}:`,o),r="Validation failed";}t.status(400).send(r);return}console.error(`Error calling ${e}:`,n),t.status(500).send(n instanceof Error?n.message:String(n));}function Do(t){let e=t.flatten(),n=Object.entries(e.fieldErrors).map(([i,s])=>`${i}: ${(s??[]).join(", ")}`),r=e.formErrors;return [...n,...r].filter(Boolean).join("; ")}function Po(){let{frameAncestors:t}=Gn(),e=t&&t.length>0,n=e?["'self'",...t].join(" "):"'self'";return (r,o,i)=>{o.setHeader("Content-Security-Policy",`frame-ancestors ${n}`),e||o.setHeader("X-Frame-Options","SAMEORIGIN"),i();}}function No(t){let e=t.headers["x-forwarded-for"];if(e)return (Array.isArray(e)?e[0]:e.split(",")[0]).trim();let n=t.ip||t.socket?.remoteAddress;if(n)return n.startsWith("::ffff:")?n.substring(7):n}async function jo({modules:t=[],roles:e$1={},defaultRoles:n={},server:r=zn,migrations:o=[],email:i={},auth:s={},security:a={},websocket:c$1={}}){Jn.config(),Jn.config({path:".modelence.env"});let l=!!process.env.MODELENCE_SERVICE_ENDPOINT;Ko().then(()=>{}).catch(()=>{});let p=[hn,Pt,Rn,Dn,Pn,le,lt,jn],f$1=[...p,...t];f(),zo(p),Fo(t),Ut(e$1,n);let u=Bo(f$1);e(u);let y=qo(f$1),g$1=Ho(f$1);Zo(f$1);let x=Vo(f$1);cn(x);let{storesToInit:P,effectiveStores:O}=Mn(y);if(l){let{configs:k,environmentId:H,appAlias:_,environmentAlias:Qn,telemetry:Yn}=await gn({configSchema:u,cronJobsMetadata:_n(),stores:O,roles:e$1});it(k),g({environmentId:H,appAlias:_,environmentAlias:Qn,telemetry:Yn});}else c(Me(u));if(Xt(i),en(s),Wn(a),Bn({...c$1,provider:c$1.provider||Bt}),G()){await $t();let k=[...new Set([...P,...O])];Jo(k),await Go(O,o);}else In(o);l&&(await h(),bn()),An().catch(console.error),await Zn(r,{combinedModules:f$1,channels:g$1});}function Fo(t){for(let e of t){for(let[n,r]of Object.entries(e.queries))We(`${e.name}.${n}`,r);for(let[n,r]of Object.entries(e.mutations))jt(`${e.name}.${n}`,r);}}function zo(t){for(let e of t){for(let[n,r]of Object.entries(e.queries))Ft(`${e.name}.${n}`,r);for(let[n,r]of Object.entries(e.mutations))zt(`${e.name}.${n}`,r);}}function qo(t){return t.flatMap(e=>e.stores)}function Ho(t){return t.flatMap(e=>e.channels)}function Vo(t){return t.flatMap(e=>e.rateLimits)}function Wo(t,e){console.warn(`Failed to create indexes for store '${t}'. Continuing startup.`,e);}var gt="migrations";async function Go(t,e){if(!await Q(gt,{lockDuration:a.seconds(30),heartbeat:true}))return;let r,o;try{r=t.filter(a=>a.getIndexCreationMode()==="blocking"),o=t.filter(a=>a.getIndexCreationMode()==="background");for(let a of r)await yt(a,"full");for(let a of o)await yt(a,"drop-only");}catch(a){throw await fe(gt),a}let i=(async()=>{for(let a of o)await yt(a,"create-only");})(),s=dt(e,{lockMode:"skip"});Promise.allSettled([i,s]).then(([a,c])=>{a.status==="rejected"&&console.error("Error creating background indexes:",a.reason),c.status==="rejected"&&console.error("Error running migrations:",c.reason);}).finally(async()=>{await fe(gt);});}async function yt(t,e="full"){let n=t.getName();try{await t.createIndexes(e);}catch(r){Wo(n,r);}}function Bo(t){let e={};for(let n of t)for(let[r,o]of Object.entries(n.configSchema)){let i=`${n.name}.${r}`;if(i in e)throw new Error(`Duplicate config schema key: ${i} (${n.name})`);e[i]=o;}return e}function Zo(t){for(let e of t)for(let[n,r]of Object.entries(e.cronJobs))On(`${e.name}.${n}`,r);}function Jo(t){let e=ve();if(!e)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let n of t)n.init(e);}async function Ko(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let e=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",n=process.env.MODELENCE_ENVIRONMENT_ID,r=await Qo(),o=await import('./package-FKRLR6XH.js');await fetch(`${e}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:r.name,version:o.default.version,localHostname:qr.hostname(),environmentId:n})});}}async function Qo(){try{let t=ut.join(process.cwd(),"package.json"),e=await Uo.readFile(t,"utf-8");return {name:JSON.parse(e).name||"unknown"}}catch{return {name:"unknown"}}}async function Kn(t){await L.deleteMany({userId:t}),await I.deleteMany({userId:t});}async function Xo(t){await Kn(t),await m.updateOne(t,{$set:{status:"disabled",disabledAt:new Date}});}async function ei(t){await Kn(t),await m.updateOne({_id:t},{$set:{handle:`deleted-${t}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var wt=class{constructor(e,n){this.category=e,this.canAccessChannel=n||null;}broadcast(e,n){let r=Ue().provider;if(!r){k("Websockets provider should be added to startApp",{});return}r.broadcast({category:this.category,id:e,data:n});}};function ti(t){if(!S().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return S().provider?.sendEmail(t)}
|
|
18
|
+
export{te as LiveData,C as Module,wt as ServerChannel,v as Store,D as authenticate,R as consumeRateLimit,We as createQuery,m as dbUsers,Un as deleteFile,ei as deleteUser,Xo as disableUser,Ln as downloadFile,$n as getFileUrl,Nn as getUploadUrl,d as schema,ti as sendEmail,jo as startApp};//# sourceMappingURL=server.js.map
|
|
19
19
|
//# sourceMappingURL=server.js.map
|