modelence 0.16.0 → 0.17.0-dev.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/chunk-52CM66XJ.js +3 -0
- package/dist/chunk-52CM66XJ.js.map +1 -0
- package/dist/{package-GDCAE67E.js → package-WKD57CCF.js} +2 -2
- package/dist/{package-GDCAE67E.js.map → package-WKD57CCF.js.map} +1 -1
- package/dist/server.js +12 -12
- package/dist/server.js.map +1 -1
- package/package.json +1 -1
- package/dist/chunk-S7G3G6KJ.js +0 -3
- package/dist/chunk-S7G3G6KJ.js.map +0 -1
|
@@ -0,0 +1,3 @@
|
|
|
1
|
+
var s="module",i="modelence",r="0.17.0-dev.0",o="The Node.js Framework for Real-Time MongoDB Apps",n="dist/index.js",c="dist/global.d.ts",p={".":"./dist/index.js","./client":"./dist/client.js","./server":"./dist/server.js","./telemetry":"./dist/telemetry.js","./mongodb":"./dist/mongo.js","./types":{types:"./dist/types.d.ts",default:"./dist/types.js"}},d=["dist","dist/bin"],l={modelence:"./dist/bin/modelence.js"},a={build:"tsup",dev:"tsup --watch",format:'prettier --write "src/**/*.{ts,tsx,js,jsx,json,css,md}"',"format:check":'prettier --check "src/**/*.{ts,tsx,js,jsx,json,css,md}"',lint:"eslint src --ext .ts,.tsx --fix","lint:check":"eslint src --ext .ts,.tsx",prepublishOnly:"npm run build",bench:"tsx src/bench/index.ts",test:"NODE_OPTIONS=--experimental-vm-modules jest","test:watch":"NODE_OPTIONS=--experimental-vm-modules jest --watch","test:coverage":"NODE_OPTIONS=--experimental-vm-modules jest --coverage",postversion:"git push && git push --tags",prepare:"cd ../.. && git config core.hooksPath .husky"},m={type:"git",url:"git+https://github.com/modelence/modelence.git"},y="Modelence",u="SEE LICENSE IN LICENSE",h={url:"https://github.com/modelence/modelence/issues"},j="https://modelence.com",g={"@types/archiver":"^6.0.3","@types/bcrypt":"^6.0.0","@types/cookie-parser":"^1.4.9","@types/express":"^5.0.0","@types/fs-extra":"^11.0.4","@types/jest":"^30.0.0","@types/node":"^22.5.1","@types/react":"^19.0.0","@types/react-dom":"^19.0.1","@types/socket.io":"^3.0.1","@typescript-eslint/eslint-plugin":"^8.17.0","@typescript-eslint/parser":"^8.17.0",eslint:"^9.37.0",husky:"^9.1.7",jest:"^30.2.0","lint-staged":"^16.2.7",prettier:"^3.6.2",react:"^19.0.0","react-dom":"^19.0.0","ts-jest":"^29.4.5","ts-node":"^10.9.2"},x={"@socket.io/mongo-adapter":"^0.4.0","@vitejs/plugin-react":"^4.3.4",archiver:"^7.0.1",bcrypt:"^6.0.0",commander:"^12.0.0","cookie-parser":"^1.4.7",dotenv:"^16.4.5","elastic-apm-node":"^4.15.0",express:"^4.21.0","fs-extra":"^11.2.0",jiti:"^2.4.2",mongodb:"^6.8.1",open:"^10.1.0","socket.io":"^4.8.1","socket.io-client":"^4.8.1",tsup:"^8.3.6",tsx:"^4.19.3",typescript:"^5.7.2",vite:"^6.0.3","vite-plugin-eslint":"^1.8.1",winston:"^3.15.0","winston-elasticsearch":"^0.19.0",zod:"^3.23.8",zustand:"^5.0.2"},v={react:">=18.0.0","react-dom":">=18.0.0"},b={type:s,name:i,version:r,description:o,main:n,types:c,exports:p,files:d,bin:l,scripts:a,"lint-staged":{"src/**/*.{ts,tsx,js,jsx,json,css,md}":"prettier --write"},repository:m,author:y,license:u,bugs:h,homepage:j,devDependencies:g,dependencies:x,peerDependencies:v};
|
|
2
|
+
export{s as a,i as b,r as c,o as d,n as e,c as f,p as g,d as h,l as i,a as j,m as k,y as l,u as m,h as n,j as o,g as p,x as q,v as r,b as s};//# sourceMappingURL=chunk-52CM66XJ.js.map
|
|
3
|
+
//# sourceMappingURL=chunk-52CM66XJ.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"sources":["../package.json"],"names":["type","name","version","description","main","types","exports","files","bin","scripts","repository","author","license","bugs","homepage","devDependencies","dependencies","peerDependencies","package_default"],"mappings":"AACE,IAAAA,CAAAA,CAAQ,QAAA,CACRC,CAAAA,CAAQ,WAAA,CACRC,CAAAA,CAAW,eACXC,CAAAA,CAAe,kDAAA,CACfC,CAAAA,CAAQ,eAAA,CACRC,CAAAA,CAAS,kBAAA,CACTC,EAAW,CACT,GAAA,CAAK,iBAAA,CACL,UAAA,CAAY,kBAAA,CACZ,UAAA,CAAY,kBAAA,CACZ,aAAA,CAAe,qBAAA,CACf,WAAA,CAAa,iBAAA,CACb,SAAA,CAAW,CACT,KAAA,CAAS,oBACT,OAAA,CAAW,iBACb,CACF,CAAA,CACAC,CAAAA,CAAS,CACP,MAAA,CACA,UACF,CAAA,CACAC,CAAAA,CAAO,CACL,SAAA,CAAa,yBACf,CAAA,CACAC,EAAW,CACT,KAAA,CAAS,MAAA,CACT,GAAA,CAAO,cAAA,CACP,MAAA,CAAU,yDAAA,CACV,cAAA,CAAgB,yDAAA,CAChB,IAAA,CAAQ,iCAAA,CACR,YAAA,CAAc,2BAAA,CACd,cAAA,CAAkB,gBAClB,KAAA,CAAS,wBAAA,CACT,IAAA,CAAQ,6CAAA,CACR,YAAA,CAAc,qDAAA,CACd,eAAA,CAAiB,wDAAA,CACjB,WAAA,CAAe,6BAAA,CACf,OAAA,CAAW,8CACb,CAAA,CAIAC,CAAAA,CAAc,CACZ,IAAA,CAAQ,KAAA,CACR,GAAA,CAAO,gDACT,CAAA,CACAC,CAAAA,CAAU,WAAA,CACVC,CAAAA,CAAW,wBAAA,CACXC,CAAAA,CAAQ,CACN,GAAA,CAAO,+CACT,CAAA,CACAC,EAAY,uBAAA,CACZC,CAAAA,CAAmB,CACjB,iBAAA,CAAmB,QAAA,CACnB,eAAA,CAAiB,QAAA,CACjB,sBAAA,CAAwB,QAAA,CACxB,gBAAA,CAAkB,QAAA,CAClB,iBAAA,CAAmB,SAAA,CACnB,aAAA,CAAe,UACf,aAAA,CAAe,SAAA,CACf,cAAA,CAAgB,SAAA,CAChB,kBAAA,CAAoB,SAAA,CACpB,kBAAA,CAAoB,QAAA,CACpB,kCAAA,CAAoC,SAAA,CACpC,2BAAA,CAA6B,SAAA,CAC7B,MAAA,CAAU,SAAA,CACV,MAAS,QAAA,CACT,IAAA,CAAQ,SAAA,CACR,aAAA,CAAe,SAAA,CACf,QAAA,CAAY,SACZ,KAAA,CAAS,SAAA,CACT,WAAA,CAAa,SAAA,CACb,SAAA,CAAW,SAAA,CACX,UAAW,SACb,CAAA,CACAC,CAAAA,CAAgB,CACd,0BAAA,CAA4B,QAAA,CAC5B,sBAAA,CAAwB,QAAA,CACxB,QAAA,CAAY,QAAA,CACZ,MAAA,CAAU,QAAA,CACV,SAAA,CAAa,SAAA,CACb,gBAAiB,QAAA,CACjB,MAAA,CAAU,SAAA,CACV,kBAAA,CAAoB,SAAA,CACpB,OAAA,CAAW,SAAA,CACX,UAAA,CAAY,SAAA,CACZ,IAAA,CAAQ,QAAA,CACR,OAAA,CAAW,QAAA,CACX,IAAA,CAAQ,UACR,WAAA,CAAa,QAAA,CACb,kBAAA,CAAoB,QAAA,CACpB,IAAA,CAAQ,QAAA,CACR,GAAA,CAAO,SAAA,CACP,UAAA,CAAc,QAAA,CACd,IAAA,CAAQ,QAAA,CACR,oBAAA,CAAsB,QAAA,CACtB,QAAW,SAAA,CACX,uBAAA,CAAyB,SAAA,CACzB,GAAA,CAAO,SAAA,CACP,OAAA,CAAW,QACb,CAAA,CACAC,CAAAA,CAAoB,CAClB,KAAA,CAAS,UAAA,CACT,WAAA,CAAa,UACf,EAzGFC,CAAAA,CAAA,CACE,IAAA,CAAAlB,CAAAA,CACA,IAAA,CAAAC,CAAAA,CACA,OAAA,CAAAC,CAAAA,CACA,WAAA,CAAAC,CAAAA,CACA,IAAA,CAAAC,CAAAA,CACA,KAAA,CAAAC,CAAAA,CACA,QAAAC,CAAAA,CAWA,KAAA,CAAAC,CAAAA,CAIA,GAAA,CAAAC,CAAAA,CAGA,OAAA,CAAAC,CAAAA,CAeA,aAAA,CAAe,CACb,sCAAA,CAAwC,kBAC1C,CAAA,CACA,UAAA,CAAAC,CAAAA,CAIA,OAAAC,CAAAA,CACA,OAAA,CAAAC,CAAAA,CACA,IAAA,CAAAC,CAAAA,CAGA,QAAA,CAAAC,CAAAA,CACA,eAAA,CAAAC,CAAAA,CAuBA,YAAA,CAAAC,CAAAA,CA0BA,gBAAA,CAAAC,CAIF","file":"chunk-52CM66XJ.js","sourcesContent":["{\n \"type\": \"module\",\n \"name\": \"modelence\",\n \"version\": \"0.17.0-dev.0\",\n \"description\": \"The Node.js Framework for Real-Time MongoDB Apps\",\n \"main\": \"dist/index.js\",\n \"types\": \"dist/global.d.ts\",\n \"exports\": {\n \".\": \"./dist/index.js\",\n \"./client\": \"./dist/client.js\",\n \"./server\": \"./dist/server.js\",\n \"./telemetry\": \"./dist/telemetry.js\",\n \"./mongodb\": \"./dist/mongo.js\",\n \"./types\": {\n \"types\": \"./dist/types.d.ts\",\n \"default\": \"./dist/types.js\"\n }\n },\n \"files\": [\n \"dist\",\n \"dist/bin\"\n ],\n \"bin\": {\n \"modelence\": \"./dist/bin/modelence.js\"\n },\n \"scripts\": {\n \"build\": \"tsup\",\n \"dev\": \"tsup --watch\",\n \"format\": \"prettier --write \\\"src/**/*.{ts,tsx,js,jsx,json,css,md}\\\"\",\n \"format:check\": \"prettier --check \\\"src/**/*.{ts,tsx,js,jsx,json,css,md}\\\"\",\n \"lint\": \"eslint src --ext .ts,.tsx --fix\",\n \"lint:check\": \"eslint src --ext .ts,.tsx\",\n \"prepublishOnly\": \"npm run build\",\n \"bench\": \"tsx src/bench/index.ts\",\n \"test\": \"NODE_OPTIONS=--experimental-vm-modules jest\",\n \"test:watch\": \"NODE_OPTIONS=--experimental-vm-modules jest --watch\",\n \"test:coverage\": \"NODE_OPTIONS=--experimental-vm-modules jest --coverage\",\n \"postversion\": \"git push && git push --tags\",\n \"prepare\": \"cd ../.. && git config core.hooksPath .husky\"\n },\n \"lint-staged\": {\n \"src/**/*.{ts,tsx,js,jsx,json,css,md}\": \"prettier --write\"\n },\n \"repository\": {\n \"type\": \"git\",\n \"url\": \"git+https://github.com/modelence/modelence.git\"\n },\n \"author\": \"Modelence\",\n \"license\": \"SEE LICENSE IN LICENSE\",\n \"bugs\": {\n \"url\": \"https://github.com/modelence/modelence/issues\"\n },\n \"homepage\": \"https://modelence.com\",\n \"devDependencies\": {\n \"@types/archiver\": \"^6.0.3\",\n \"@types/bcrypt\": \"^6.0.0\",\n \"@types/cookie-parser\": \"^1.4.9\",\n \"@types/express\": \"^5.0.0\",\n \"@types/fs-extra\": \"^11.0.4\",\n \"@types/jest\": \"^30.0.0\",\n \"@types/node\": \"^22.5.1\",\n \"@types/react\": \"^19.0.0\",\n \"@types/react-dom\": \"^19.0.1\",\n \"@types/socket.io\": \"^3.0.1\",\n \"@typescript-eslint/eslint-plugin\": \"^8.17.0\",\n \"@typescript-eslint/parser\": \"^8.17.0\",\n \"eslint\": \"^9.37.0\",\n \"husky\": \"^9.1.7\",\n \"jest\": \"^30.2.0\",\n \"lint-staged\": \"^16.2.7\",\n \"prettier\": \"^3.6.2\",\n \"react\": \"^19.0.0\",\n \"react-dom\": \"^19.0.0\",\n \"ts-jest\": \"^29.4.5\",\n \"ts-node\": \"^10.9.2\"\n },\n \"dependencies\": {\n \"@socket.io/mongo-adapter\": \"^0.4.0\",\n \"@vitejs/plugin-react\": \"^4.3.4\",\n \"archiver\": \"^7.0.1\",\n \"bcrypt\": \"^6.0.0\",\n \"commander\": \"^12.0.0\",\n \"cookie-parser\": \"^1.4.7\",\n \"dotenv\": \"^16.4.5\",\n \"elastic-apm-node\": \"^4.15.0\",\n \"express\": \"^4.21.0\",\n \"fs-extra\": \"^11.2.0\",\n \"jiti\": \"^2.4.2\",\n \"mongodb\": \"^6.8.1\",\n \"open\": \"^10.1.0\",\n \"socket.io\": \"^4.8.1\",\n \"socket.io-client\": \"^4.8.1\",\n \"tsup\": \"^8.3.6\",\n \"tsx\": \"^4.19.3\",\n \"typescript\": \"^5.7.2\",\n \"vite\": \"^6.0.3\",\n \"vite-plugin-eslint\": \"^1.8.1\",\n \"winston\": \"^3.15.0\",\n \"winston-elasticsearch\": \"^0.19.0\",\n \"zod\": \"^3.23.8\",\n \"zustand\": \"^5.0.2\"\n },\n \"peerDependencies\": {\n \"react\": \">=18.0.0\",\n \"react-dom\": \">=18.0.0\"\n }\n}\n"]}
|
|
@@ -1,2 +1,2 @@
|
|
|
1
|
-
export{l as author,i as bin,n as bugs,s as default,q as dependencies,d as description,p as devDependencies,g as exports,h as files,o as homepage,m as license,e as main,b as name,r as peerDependencies,k as repository,j as scripts,a as type,f as types,c as version}from'./chunk-
|
|
2
|
-
//# sourceMappingURL=package-
|
|
1
|
+
export{l as author,i as bin,n as bugs,s as default,q as dependencies,d as description,p as devDependencies,g as exports,h as files,o as homepage,m as license,e as main,b as name,r as peerDependencies,k as repository,j as scripts,a as type,f as types,c as version}from'./chunk-52CM66XJ.js';//# sourceMappingURL=package-WKD57CCF.js.map
|
|
2
|
+
//# sourceMappingURL=package-WKD57CCF.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"sources":[],"names":[],"mappings":"","file":"package-
|
|
1
|
+
{"version":3,"sources":[],"names":[],"mappings":"","file":"package-WKD57CCF.js"}
|
package/dist/server.js
CHANGED
|
@@ -1,19 +1,19 @@
|
|
|
1
|
-
import {a as a$2,b as b$1}from'./chunk-5M6FUMUK.js';import {d as d$1,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b,f,e,g,c,h,k,d as d$2,j as j$1,i,l,m as m$1}from'./chunk-3SPXJEOR.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import {s}from'./chunk-S7G3G6KJ.js';import Xr from'dotenv';import zo from'fs/promises';import Bn from'os';import ft from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient,MongoServerError}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import q,{z as z$1}from'zod';import Mn from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import co from'@vitejs/plugin-react';import lo from'fs';import H,{Router}from'express';import Do from'cookie-parser';import Po from'http';var x=class{constructor(e,{stores:r=[],queries:n={},mutations:o={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:l=[]}={}){this.name=e,this.stores=r,this.queries=n,this.mutations=o,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=l;}getConfig(e){return a$1(`${this.name}.${e}`)}};function U(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:U(e.type)};if(e.typeName==="ZodObject"){let n=e.shape(),o={};for(let[i,s]of Object.entries(n))o[i]=U(s);return {type:"object",items:o}}if(e.typeName==="ZodOptional")return {...U(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...U(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(U)};if(e.typeName==="ZodEffects"){let r=e;return r.description?{type:"custom",typeName:r.description}:U(r.schema)}return {type:"custom",typeName:e.typeName}}function Ce(t){let e={};for(let[r,n]of Object.entries(t))Array.isArray(n)?e[r]=n.map(o=>typeof o=="object"&&"_def"in o?U(o):Ce(o)):typeof n=="object"&&"_def"in n?e[r]=U(n):e[r]=Ce(n);return e}var nn=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],qe=t=>typeof t=="object"&&t!==null&&!Array.isArray(t),on=t=>t.startsWith("_modelence_"),He=t=>{let e={};for(let r of nn){let n=t[r];n!==void 0&&(e[r]=n);}return e},sn=(t,e)=>{if(!qe(t)||!qe(e))return false;let r=Object.entries(t),n=Object.entries(e);return r.length!==n.length?false:r.every(([o,i],s)=>{let[a,c]=n[s]||[];return o===a&&isDeepStrictEqual(i,c)})},Mt=(t,e)=>sn(t.key,e.key)?isDeepStrictEqual(He(t),He(e)):false,Fe=t=>qe(t)?Object.entries(t).map(([e,r])=>`${e}:${JSON.stringify(r)}`).join("|"):null,an=async t=>{try{return await t.listIndexes().toArray()}catch(e){if(e instanceof MongoError&&e.code===26)return [];throw e}},cn=t=>Object.entries(t).map(([e,r])=>`${e}_${r}`).join("_"),ln=t=>{if(t.name){let r=t.name.startsWith("_modelence_")?t.name:`_modelence_${t.name}`;return {...t,name:r}}let e=cn(t.key);return {...t,name:`_modelence_${e}`}},T=class t{constructor(e,r){this._chainParent=null;this._chainChild=null;this.name=e,this.schema=r.schema,this.methods=r.methods,this.indexes=r.indexes.map(ln),this.searchIndexes=r.searchIndexes||[],this.indexCreationMode=r.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return Ce(this.schema)}getIndexes(){return this.indexes}getSearchIndexes(){return this.searchIndexes}getChainTail(){let e=this;for(;e._chainChild;)e=e._chainChild;return e}getChainRoot(){let e=this;for(;e._chainParent;)e=e._chainParent;return e}extend(e){let r=this.getChainTail();if(this.client||r.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);let n={...r.schema,...e.schema||{}},o=[...r.indexes,...e.indexes||[]],i=[...r.searchIndexes,...e.searchIndexes||[]],s={...r.methods||{},...e.methods||{}},a=new t(this.name,{schema:n,methods:s,indexes:o,searchIndexes:i,indexCreationMode:e.indexCreationMode??r.indexCreationMode});return r._chainChild=a,a._chainParent=r,a}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(e="full"){let r=this.requireCollection(),n=e!=="create-only",o=e!=="drop-only",i=await an(r),s=new Map,a=new Map,c=new Set,l=u=>{s.set(u.name,u);let y=Fe(u.key);if(!y)return;let g=a.get(y);g?g.add(u.name):a.set(y,new Set([u.name]));},p=u=>{let y=s.get(u);if(!y)return;s.delete(u);let g=Fe(y.key);if(!g)return;let E=a.get(g);E&&(E.delete(u),E.size===0&&a.delete(g));};for(let u of i)typeof u.name=="string"&&l({...u,name:u.name});let f=async u=>{if(!(u==="_id_"||c.has(u))){try{await r.dropIndex(u);}catch(y){if(!(y instanceof MongoError&&y.code===27))throw y}c.add(u),p(u);}};if(n){let u=new Set(this.indexes.map(g=>g.name).filter(g=>typeof g=="string")),y=[...s.values()].filter(g=>on(g.name)&&!u.has(g.name));for(let g of y)await f(g.name);}if(this.indexes.length>0)for(let u of this.indexes){if(!u.name)continue;let y=false,g=s.get(u.name);g&&!Mt(g,u)&&(n?await f(g.name):y=true);let E=Fe(u.key);if(E){let I=[...a.get(E)||[]];for(let A of I)A!==u.name&&(n?await f(A):y=true);}let N=s.get(u.name);!(!!N&&Mt(N,u))&&o&&!y&&(await r.createIndexes([u]),l({name:u.name,key:u.key,...He(u)}));}if(o&&this.searchIndexes.length>0)for(let u of this.searchIndexes)try{await r.createSearchIndexes([u]);}catch(y){if(y instanceof MongoError&&y.code===68&&u.name)await r.dropSearchIndex(u.name),await r.createSearchIndexes([u]);else throw y}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,r){let n=await this.requireCollection().findOne(e,r);return n?this.wrapDocument(n):null}async requireOne(e,r,n){let o=await this.findOne(e,r);if(!o)throw n?n():new Error(`Record not found in ${this.name}`);return o}find(e,r){let n=this.requireCollection().find(e,r?.projection?{projection:r.projection}:void 0);return r?.sort&&n.sort(r.sort),r?.limit&&n.limit(r.limit),r?.skip&&n.skip(r.skip),n}async findById(e){let r=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(r)}async requireById(e,r){let n=await this.findById(e);if(!n)throw r?r():new Error(`Record with id ${e} not found in ${this.name}`);return n}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,r){return (await this.find(e,r).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e,r){return await this.requireCollection().insertOne(e,r)}async insertMany(e,r){return await this.requireCollection().insertMany(e,r)}async updateOne(e,r,n){return await this.requireCollection().updateOne(this.getSelector(e),r,n)}async upsertOne(e,r,n){return await this.requireCollection().updateOne(this.getSelector(e),r,{upsert:true,...n})}async updateMany(e,r,n){return await this.requireCollection().updateMany(e,r,n)}async upsertMany(e,r,n){return await this.requireCollection().updateMany(e,r,{upsert:true,...n})}async deleteOne(e,r){return await this.requireCollection().deleteOne(e,r)}async deleteMany(e,r){return await this.requireCollection().deleteMany(e,r)}async findOneAndUpdate(e,r,n){let o=await this.requireCollection().findOneAndUpdate(this.getSelector(e),r,n??{});return o?this.wrapDocument(o):null}async findOneAndDelete(e,r){let n=await this.requireCollection().findOneAndDelete(this.getSelector(e),r??{});return n?this.wrapDocument(n):null}async findOneAndReplace(e,r,n){let o=await this.requireCollection().findOneAndReplace(this.getSelector(e),r,n??{});return o?this.wrapDocument(o):null}async replaceOne(e,r,n){return await this.requireCollection().replaceOne(this.getSelector(e),r,n)}async distinct(e,r,n){let o=r??{};return n!==void 0?await this.requireCollection().distinct(e,o,n):await this.requireCollection().distinct(e,o)}watch(e,r){return this.requireCollection().watch(e,r)}aggregate(e,r){return this.requireCollection().aggregate(e,r)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,r){let n=this.getDatabase();if(!this.collection||!n)throw new Error(`Store ${this.name} is not provisioned`);if((await n.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await n.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await n.collection(e).rename(this.name,r);}async vectorSearch({field:e,embedding:r,numCandidates:n,limit:o,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:r,numCandidates:n||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:r,similarity:n="cosine",indexName:o}){return {type:"vectorSearch",name:o||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:r,similarity:n}]}}}};var dn=z$1.string.bind(z$1),un=z$1.number.bind(z$1),pn=z$1.date.bind(z$1),mn=z$1.boolean.bind(z$1),fn=z$1.array.bind(z$1),hn=z$1.object.bind(z$1),gn=z$1.enum.bind(z$1),d={string:dn,number:un,date:pn,boolean:mn,array:fn,object:hn,enum:gn,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(t){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(t){return {}}};var G=new T("_modelenceSessions",{schema:{authToken:d.string(),createdAt:d.date(),expiresAt:d.date(),userId:d.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0},{key:{userId:1}}]});async function Dt(t){let e=t?await G.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await ce()}async function Pt(t,e){await G.updateOne({authToken:t},{$set:{userId:e}});}async function Nt(t){await G.updateOne({authToken:t},{$set:{userId:null}});}async function Lt(t){await G.deleteMany({userId:t});}async function ce(t=null){let e=randomBytes(32).toString("base64url"),r=Date.now(),n=new Date(r+a.days(7));return await G.insertOne({authToken:e,createdAt:new Date(r),expiresAt:n,userId:t}),{authToken:e,expiresAt:n,userId:t}}async function wn(t){let e=Date.now(),r=new Date(e+a.days(7));await G.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:r}});}function xe(t,e){t.cookie("authToken",e,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict",path:"/"});}var Ut=new x("_system.session",{stores:[G],mutations:{init:async function(t,{session:e,user:r}){return {session:e,user:r,configs:b()}},heartbeat:async function(t,{session:e}){e&&await wn(e);}}});var m=new T("_modelenceUsers",{schema:{handle:d.string(),emails:d.array(d.object({address:d.string(),verified:d.boolean()})).optional(),status:d.enum(["active","disabled","deleted"]).optional(),firstName:d.string().optional(),lastName:d.string().optional(),avatarUrl:d.string().optional(),createdAt:d.date(),disabledAt:d.date().optional(),deletedAt:d.date().optional(),roles:d.array(d.string()).optional(),authMethods:d.object({password:d.object({hash:d.string()}).optional(),google:d.object({id:d.string()}).optional(),github:d.object({id:d.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),le=new T("_modelenceDisposableEmailDomains",{schema:{domain:d.string(),addedAt:d.date()},indexes:[{key:{domain:1},unique:true}]}),$=new T("_modelenceEmailVerificationTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),D=new T("_modelenceResetPasswordTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var $t=new Map,te={authenticated:null,unauthenticated:null};function jt(t,e){te.authenticated=e.authenticated,te.unauthenticated=e.unauthenticated;for(let[r,n]of Object.entries(t))$t.set(r,n);}function ve(){return te.unauthenticated?[te.unauthenticated]:[]}function Ft(){return te.authenticated?[te.authenticated]:[]}function We(t,e){let r=e.find(n=>!bn(t,n));if(r)throw new Error(`Access denied - missing permission: '${r}'`)}function bn(t,e){for(let r of t)if($t.get(r)?.permissions?.includes(e))return true;return false}async function P(t){let e=await Dt(t),r=e.userId?await m.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,n=r?{id:r._id.toString(),handle:r.handle,roles:r.roles||[],hasRole:i=>(r.roles||[]).includes(i),requireRole:i=>{if(!(r.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}:null,o=n?Ft():ve();return {user:n,session:e,roles:o}}var de=new x("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},mongodbPoolSize:{type:"number",isPublic:false,default:10},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""},multiInstance:{type:"boolean",isPublic:false,default:false}}});var j=null;async function zt(){if(j)return j;let t=B();if(!t)throw new Error("MongoDB URI is not set");let e=de.getConfig("mongodbPoolSize");j=new MongoClient(t,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true,maxPoolSize:e});try{return await j.connect(),await j.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),j}catch(r){throw console.error(r),j=null,r}}function B(){return de.getConfig("mongodbUri")||void 0}function Ee(){return j}var re=class{constructor(e){this.fetch=e.fetch,this.watch=e.watch;}};function xn(){return typeof window!="object"}function F(){if(!xn())throw new Error("This function can only be called on the server")}function Te(t){return t.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var ke={};function Ge(t,e){return F(),Wt(t),Ae("query",t,e)}function qt(t,e){return F(),Wt(t),Ae("mutation",t,e)}function Ht(t,e){return F(),Gt(t),Ae("query",t,e)}function Vt(t,e){return F(),Gt(t),Ae("mutation",t,e)}function Wt(t){if(t.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${t})`)}function Gt(t){if(!t.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${t})`)}function Ae(t,e,r){if(F(),ke[e])throw new Error(`Method with name '${e}' is already defined.`);let n=typeof r=="function"?r:r.handler,o=typeof r=="function"?[]:r.permissions??[];ke[e]={type:t,name:e,handler:n,permissions:o};}async function Bt(t,e,r){F();let n=ke[t];if(!n)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=n,s=l("method",`method:${t}`,{type:o,args:e}),a;try{We(r.roles,n.permissions),a=await i(e,r);}catch(c){throw s.end("error"),c}return s.end(),a}async function Zt(t,e,r){F();let n=ke[t];if(!n)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=n;if(o!=="query")throw new Error("Live methods are only supported for queries");let s=l("method",`method:${t}:live`,{type:o,args:e}),a;try{if(We(r.roles,n.permissions),a=await i(e,r),!(a instanceof re))throw new Error(`Live query handler for '${t}' must return a LiveData object with fetch and watch functions. See https://docs.modelence.com/live-queries`)}catch(c){throw s.end("error"),c}return s.end(),a}var ue=new Map;function vn(t){let e=ue.get(t.id);return e||(e=new Map,ue.set(t.id,e)),e}async function Be(t,e){let r=z$1.object({subscriptionId:z$1.string().min(1),method:z$1.string().min(1),args:z$1.record(z$1.unknown()).default({}),authToken:z$1.string().nullish(),clientInfo:z$1.object({screenWidth:z$1.number(),screenHeight:z$1.number(),windowWidth:z$1.number(),windowHeight:z$1.number(),pixelRatio:z$1.number(),orientation:z$1.string().nullable()}).optional()}).safeParse(e);if(!r.success){t.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${r.error.message}`});return}let{subscriptionId:n,method:o,args:i,authToken:s,clientInfo:a}=r.data,c=vn(t),l=c.get(n);if(l)if(l.cleanup)try{l.cleanup();}catch(f){console.error("[LiveQuery] Error cleaning up existing subscription:",f);}else l.aborted=true;let p={cleanup:null};c.set(n,p);try{let{session:f,user:u,roles:y}=await P(s??null),g={session:f,user:u,roles:y,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:t.handshake.address,userAgent:t.handshake.headers["user-agent"]}},E=await Zt(o,i,g),N=async()=>{let _=a$2(await E.fetch());p.aborted||t.emit("liveQueryData",{subscriptionId:n,data:_,typeMap:b$1(_)});},O=!0,I=!1,A=()=>{p.aborted||!O||I||(O=!1,I=!0,N().catch(_=>{p.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,_),t.emit("liveQueryError",{subscriptionId:n,error:_ instanceof Error?_.message:String(_)}));}).finally(()=>{I=!1,A();}));},V=E.watch({publish:()=>{O=!0,A();}});if(p.aborted){if(V)try{V();}catch(_){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",_);}return}p.cleanup=V||null,A();}catch(f){c.delete(n),console.error(`[LiveQuery] Error in ${o}:`,f),t.emit("liveQueryError",{subscriptionId:n,error:f instanceof Error?f.message:String(f)});}}function Ze(t,e){let r=z$1.object({subscriptionId:z$1.string().min(1)}).safeParse(e);if(!r.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${r.error.message}`);return}let{subscriptionId:n}=r.data,o=ue.get(t.id);if(!o)return;let i=o.get(n);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;o.delete(n);}}function Je(t){let e=ue.get(t.id);if(e){for(let r of e.values())if(r.cleanup)try{r.cleanup();}catch(n){console.error("[LiveQuery] Error in cleanup on disconnect:",n);}else r.aborted=true;ue.delete(t.id);}}var pe=null,kn="_modelenceSocketio",Jt=60;async function An({httpServer:t,channels:e}){let r=Ee(),n=!!a$1("_system.multiInstance");console.log("Initializing Socket.IO server...");let o=null;if(n&&r){o=r.db().collection(kn);try{await o.createIndex({createdAt:1},{expireAfterSeconds:Jt,background:!0});}catch(i){if(i instanceof Error&&"code"in i&&i.code===85)try{await o.dropIndex("createdAt_1"),await o.createIndex({createdAt:1},{expireAfterSeconds:Jt,background:!0});}catch(s){console.error("Failed to recreate index on MongoDB collection for Socket.IO:",s);}else console.error("Failed to create index on MongoDB collection for Socket.IO:",i);}}pe=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:o?createAdapter(o):void 0,transports:["websocket"],perMessageDeflate:false}),pe.on("error",i=>{console.error("Socket.IO error:",i);}),pe.use(async(i,s)=>{let a=i.handshake.auth.token;try{i.data=await P(a);}finally{s();}}),pe.on("connection",i=>{i.on("disconnect",()=>{Je(i);}),i.on("joinChannel",async s=>{let[a]=s.split(":"),c=false;for(let l of e)if(l.category===a){(!l.canAccessChannel||await l.canAccessChannel(i.data))&&(i.join(s),c=true,i.emit("joinedChannel",s));break}c||i.emit("joinError",{channel:s,error:"Access denied"});}),i.on("leaveChannel",s=>{i.leave(s),console.log(`User ${i.id} left channel ${s}`),i.emit("leftChannel",s);}),i.on("subscribeLiveQuery",s=>Be(i,s)),i.on("unsubscribeLiveQuery",s=>Ze(i,s));}),console.log("Socket.IO server initialized");}function On({category:t,id:e,data:r}){pe?.to(`${t}:${e}`).emit(t,r);}var Kt={init:An,broadcast:On};async function Qt(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return false;let r=e[1];return !!await le.findOne({domain:r})}var Yt={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let r=(await t.text()).split(`
|
|
2
|
-
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),n=new Date,o=500;for(let i=0;i<r.length;i+=o){let
|
|
3
|
-
<p>Hi${
|
|
4
|
-
<p>Please verify your email address ${
|
|
1
|
+
import {a as a$2,b as b$1}from'./chunk-5M6FUMUK.js';import {d as d$1,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b,f as f$1,e,g,c,h,k,d as d$2,j as j$1,i,l,m}from'./chunk-3SPXJEOR.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import {s}from'./chunk-52CM66XJ.js';import Xr from'dotenv';import Wo from'fs/promises';import Gn from'os';import ft from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient,MongoServerError}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import H,{z as z$1}from'zod';import Mn from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import co from'@vitejs/plugin-react';import lo from'fs';import V,{Router}from'express';import Do from'cookie-parser';import Po from'http';var E=class{constructor(t,{stores:r=[],queries:n={},mutations:o={},routes:i=[],cronJobs:a={},configSchema:s={},rateLimits:c=[],channels:l=[]}={}){this.name=t,this.stores=r,this.queries=n,this.mutations=o,this.routes=i,this.cronJobs=a,this.configSchema=s,this.rateLimits=c,this.channels=l;}getConfig(t){return a$1(`${this.name}.${t}`)}};function $(e){let t=e._def;if(t.typeName==="ZodString")return {type:"string"};if(t.typeName==="ZodNumber")return {type:"number"};if(t.typeName==="ZodBoolean")return {type:"boolean"};if(t.typeName==="ZodDate")return {type:"date"};if(t.typeName==="ZodArray")return {type:"array",items:$(t.type)};if(t.typeName==="ZodObject"){let n=t.shape(),o={};for(let[i,a]of Object.entries(n))o[i]=$(a);return {type:"object",items:o}}if(t.typeName==="ZodOptional")return {...$(t.innerType),optional:true};if(t.typeName==="ZodNullable")return {...$(t.innerType),optional:true};if(t.typeName==="ZodEnum")return {type:"enum",items:t.values};if(t.typeName==="ZodUnion")return {type:"union",items:t.options.map($)};if(t.typeName==="ZodEffects"){let r=t;return r.description?{type:"custom",typeName:r.description}:$(r.schema)}return {type:"custom",typeName:t.typeName}}function xe(e){let t={};for(let[r,n]of Object.entries(e))Array.isArray(n)?t[r]=n.map(o=>typeof o=="object"&&"_def"in o?$(o):xe(o)):typeof n=="object"&&"_def"in n?t[r]=$(n):t[r]=xe(n);return t}var nn=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],qe=e=>typeof e=="object"&&e!==null&&!Array.isArray(e),on=e=>e.startsWith("_modelence_"),He=e=>{let t={};for(let r of nn){let n=e[r];n!==void 0&&(t[r]=n);}return t},sn=(e,t)=>{if(!qe(e)||!qe(t))return false;let r=Object.entries(e),n=Object.entries(t);return r.length!==n.length?false:r.every(([o,i],a)=>{let[s,c]=n[a]||[];return o===s&&isDeepStrictEqual(i,c)})},Mt=(e,t)=>sn(e.key,t.key)?isDeepStrictEqual(He(e),He(t)):false,Fe=e=>qe(e)?Object.entries(e).map(([t,r])=>`${t}:${JSON.stringify(r)}`).join("|"):null,an=async e=>{try{return await e.listIndexes().toArray()}catch(t){if(t instanceof MongoError&&t.code===26)return [];throw t}},cn=e=>Object.entries(e).map(([t,r])=>`${t}_${r}`).join("_"),ln=e=>{if(e.name){let r=e.name.startsWith("_modelence_")?e.name:`_modelence_${e.name}`;return {...e,name:r}}let t=cn(e.key);return {...e,name:`_modelence_${t}`}},T=class e{constructor(t,r){this._chainParent=null;this._chainChild=null;this.name=t,this.schema=r.schema,this.methods=r.methods,this.indexes=r.indexes.map(ln),this.searchIndexes=r.searchIndexes||[],this.indexCreationMode=r.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return xe(this.schema)}getIndexes(){return this.indexes}getSearchIndexes(){return this.searchIndexes}getChainTail(){let t=this;for(;t._chainChild;)t=t._chainChild;return t}getChainRoot(){let t=this;for(;t._chainParent;)t=t._chainParent;return t}extend(t){let r=this.getChainTail();if(this.client||r.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);let n={...r.schema,...t.schema||{}},o=[...r.indexes,...t.indexes||[]],i=[...r.searchIndexes,...t.searchIndexes||[]],a={...r.methods||{},...t.methods||{}},s=new e(this.name,{schema:n,methods:a,indexes:o,searchIndexes:i,indexCreationMode:t.indexCreationMode??r.indexCreationMode});return r._chainChild=s,s._chainParent=r,s}init(t){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=t,this.collection=this.client.db().collection(this.name);}async createIndexes(t="full"){let r=this.requireCollection(),n=t!=="create-only",o=t!=="drop-only",i=await an(r),a=new Map,s=new Map,c=new Set,l=m=>{a.set(m.name,m);let y=Fe(m.key);if(!y)return;let g=s.get(y);g?g.add(m.name):s.set(y,new Set([m.name]));},u=m=>{let y=a.get(m);if(!y)return;a.delete(m);let g=Fe(y.key);if(!g)return;let v=s.get(g);v&&(v.delete(m),v.size===0&&s.delete(g));};for(let m of i)typeof m.name=="string"&&l({...m,name:m.name});let p=async m=>{if(!(m==="_id_"||c.has(m))){try{await r.dropIndex(m);}catch(y){if(!(y instanceof MongoError&&y.code===27))throw y}c.add(m),u(m);}};if(n){let m=new Set(this.indexes.map(g=>g.name).filter(g=>typeof g=="string")),y=[...a.values()].filter(g=>on(g.name)&&!m.has(g.name));for(let g of y)await p(g.name);}if(this.indexes.length>0)for(let m of this.indexes){if(!m.name)continue;let y=false,g=a.get(m.name);g&&!Mt(g,m)&&(n?await p(g.name):y=true);let v=Fe(m.key);if(v){let I=[...s.get(v)||[]];for(let A of I)A!==m.name&&(n?await p(A):y=true);}let L=a.get(m.name);!(!!L&&Mt(L,m))&&o&&!y&&(await r.createIndexes([m]),l({name:m.name,key:m.key,...He(m)}));}if(o&&this.searchIndexes.length>0)for(let m of this.searchIndexes)try{await r.createSearchIndexes([m]);}catch(y){if(y instanceof MongoError&&y.code===68&&m.name)await r.dropSearchIndex(m.name),await r.createSearchIndexes([m]);else throw y}}wrapDocument(t){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...t,...this.methods})):t}getSelector(t){return typeof t=="string"?{_id:new ObjectId(t)}:t instanceof ObjectId?{_id:t}:t}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(t,r){let n=await this.requireCollection().findOne(t,r);return n?this.wrapDocument(n):null}async requireOne(t,r,n){let o=await this.findOne(t,r);if(!o)throw n?n():new Error(`Record not found in ${this.name}`);return o}find(t,r){let n=this.requireCollection().find(t,r?.projection?{projection:r.projection}:void 0);return r?.sort&&n.sort(r.sort),r?.limit&&n.limit(r.limit),r?.skip&&n.skip(r.skip),n}async findById(t){let r=typeof t=="string"?{_id:new ObjectId(t)}:{_id:t};return await this.findOne(r)}async requireById(t,r){let n=await this.findById(t);if(!n)throw r?r():new Error(`Record with id ${t} not found in ${this.name}`);return n}countDocuments(t){return this.requireCollection().countDocuments(t)}async fetch(t,r){return (await this.find(t,r).toArray()).map(this.wrapDocument.bind(this))}async insertOne(t,r){return await this.requireCollection().insertOne(t,r)}async insertMany(t,r){return await this.requireCollection().insertMany(t,r)}async updateOne(t,r,n){return await this.requireCollection().updateOne(this.getSelector(t),r,n)}async upsertOne(t,r,n){return await this.requireCollection().updateOne(this.getSelector(t),r,{upsert:true,...n})}async updateMany(t,r,n){return await this.requireCollection().updateMany(t,r,n)}async upsertMany(t,r,n){return await this.requireCollection().updateMany(t,r,{upsert:true,...n})}async deleteOne(t,r){return await this.requireCollection().deleteOne(t,r)}async deleteMany(t,r){return await this.requireCollection().deleteMany(t,r)}async findOneAndUpdate(t,r,n){let o=await this.requireCollection().findOneAndUpdate(this.getSelector(t),r,n??{});return o?this.wrapDocument(o):null}async findOneAndDelete(t,r){let n=await this.requireCollection().findOneAndDelete(this.getSelector(t),r??{});return n?this.wrapDocument(n):null}async findOneAndReplace(t,r,n){let o=await this.requireCollection().findOneAndReplace(this.getSelector(t),r,n??{});return o?this.wrapDocument(o):null}async replaceOne(t,r,n){return await this.requireCollection().replaceOne(this.getSelector(t),r,n)}async distinct(t,r,n){let o=r??{};return n!==void 0?await this.requireCollection().distinct(t,o,n):await this.requireCollection().distinct(t,o)}watch(t,r){return this.requireCollection().watch(t,r)}aggregate(t,r){return this.requireCollection().aggregate(t,r)}bulkWrite(t){return this.requireCollection().bulkWrite(t)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(t,r){let n=this.getDatabase();if(!this.collection||!n)throw new Error(`Store ${this.name} is not provisioned`);if((await n.listCollections({name:t}).toArray()).length===0)throw new Error(`Collection ${t} not found`);if((await n.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await n.collection(t).rename(this.name,r);}async vectorSearch({field:t,embedding:r,numCandidates:n,limit:o,projection:i,indexName:a}){return this.aggregate([{$vectorSearch:{index:a||t+"VectorSearch",path:t,queryVector:r,numCandidates:n||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:t,dimensions:r,similarity:n="cosine",indexName:o}){return {type:"vectorSearch",name:o||t+"VectorSearch",definition:{fields:[{type:"vector",path:t,numDimensions:r,similarity:n}]}}}};var dn=z$1.string.bind(z$1),un=z$1.number.bind(z$1),mn=z$1.date.bind(z$1),pn=z$1.boolean.bind(z$1),fn=z$1.array.bind(z$1),hn=z$1.object.bind(z$1),gn=z$1.enum.bind(z$1),d={string:dn,number:un,date:mn,boolean:pn,array:fn,object:hn,enum:gn,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(e){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(e){return {}}};var G=new T("_modelenceSessions",{schema:{authToken:d.string(),createdAt:d.date(),expiresAt:d.date(),userId:d.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0},{key:{userId:1}}]});async function Dt(e){let t=e?await G.findOne({authToken:e}):null;return t?{authToken:String(t.authToken),expiresAt:new Date(t.expiresAt),userId:t.userId??null}:await ce()}async function Pt(e,t){await G.updateOne({authToken:e},{$set:{userId:t}});}async function Nt(e){await G.updateOne({authToken:e},{$set:{userId:null}});}async function Lt(e){await G.deleteMany({userId:e});}async function ce(e=null){let t=randomBytes(32).toString("base64url"),r=Date.now(),n=new Date(r+a.days(7));return await G.insertOne({authToken:t,createdAt:new Date(r),expiresAt:n,userId:e}),{authToken:t,expiresAt:n,userId:e}}async function wn(e){let t=Date.now(),r=new Date(t+a.days(7));await G.updateOne({authToken:e.authToken},{$set:{lastActiveDate:new Date(t),expiresAt:r}});}function Ee(e,t){e.cookie("authToken",t,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict",path:"/"});}var Ut=new E("_system.session",{stores:[G],mutations:{init:async function(e,{session:t,user:r}){return {session:t,user:r,configs:b()}},heartbeat:async function(e,{session:t}){t&&await wn(t);}}});var f=new T("_modelenceUsers",{schema:{handle:d.string(),emails:d.array(d.object({address:d.string(),verified:d.boolean()})).optional(),status:d.enum(["active","disabled","deleted"]).optional(),firstName:d.string().optional(),lastName:d.string().optional(),avatarUrl:d.string().optional(),createdAt:d.date(),disabledAt:d.date().optional(),deletedAt:d.date().optional(),roles:d.array(d.string()).optional(),authMethods:d.object({password:d.object({hash:d.string()}).optional(),google:d.object({id:d.string()}).optional(),github:d.object({id:d.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),le=new T("_modelenceDisposableEmailDomains",{schema:{domain:d.string(),addedAt:d.date()},indexes:[{key:{domain:1},unique:true}]}),j=new T("_modelenceEmailVerificationTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),P=new T("_modelenceResetPasswordTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var $t=new Map,re={authenticated:null,unauthenticated:null};function jt(e,t){re.authenticated=t.authenticated,re.unauthenticated=t.unauthenticated;for(let[r,n]of Object.entries(e))$t.set(r,n);}function Ce(){return re.unauthenticated?[re.unauthenticated]:[]}function Ft(){return re.authenticated?[re.authenticated]:[]}function We(e,t){let r=t.find(n=>!bn(e,n));if(r)throw new Error(`Access denied - missing permission: '${r}'`)}function bn(e,t){for(let r of e)if($t.get(r)?.permissions?.includes(t))return true;return false}async function N(e){let t=await Dt(e),r=t.userId?await f.findOne({_id:new ObjectId(t.userId),status:{$nin:["deleted","disabled"]}}):null,n=r?{id:r._id.toString(),handle:r.handle,roles:r.roles||[],hasRole:i=>(r.roles||[]).includes(i),requireRole:i=>{if(!(r.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}:null,o=n?Ft():Ce();return {user:n,session:t,roles:o}}var de=new E("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},mongodbPoolSize:{type:"number",isPublic:false,default:10},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""},multiInstance:{type:"boolean",isPublic:false,default:false}}});var F=null;async function zt(){if(F)return F;let e=Z();if(!e)throw new Error("MongoDB URI is not set");let t=de.getConfig("mongodbPoolSize");F=new MongoClient(e,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true,maxPoolSize:t});try{return await F.connect(),await F.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),F}catch(r){throw console.error(r),F=null,r}}function Z(){return de.getConfig("mongodbUri")||void 0}function ve(){return F}var ne=class{constructor(t){this.fetch=t.fetch,this.watch=t.watch;}};function En(){return typeof window!="object"}function z(){if(!En())throw new Error("This function can only be called on the server")}function Te(e){return e.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var ke={};function Be(e,t){return z(),Wt(e),Ae("query",e,t)}function qt(e,t){return z(),Wt(e),Ae("mutation",e,t)}function Ht(e,t){return z(),Bt(e),Ae("query",e,t)}function Vt(e,t){return z(),Bt(e),Ae("mutation",e,t)}function Wt(e){if(e.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${e})`)}function Bt(e){if(!e.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${e})`)}function Ae(e,t,r){if(z(),ke[t])throw new Error(`Method with name '${t}' is already defined.`);let n=typeof r=="function"?r:r.handler,o=typeof r=="function"?[]:r.permissions??[];ke[t]={type:e,name:t,handler:n,permissions:o};}async function Gt(e,t,r){z();let n=ke[e];if(!n)throw new Error(`Method with name '${e}' is not defined.`);let{type:o,handler:i}=n,a=l("method",`method:${e}`,{type:o,args:t}),s;try{We(r.roles,n.permissions),s=await i(t,r);}catch(c){throw a.end("error"),c}return a.end(),s}async function Zt(e,t,r){z();let n=ke[e];if(!n)throw new Error(`Method with name '${e}' is not defined.`);let{type:o,handler:i}=n;if(o!=="query")throw new Error("Live methods are only supported for queries");let a=l("method",`method:${e}:live`,{type:o,args:t}),s;try{if(We(r.roles,n.permissions),s=await i(t,r),!(s instanceof ne))throw new Error(`Live query handler for '${e}' must return a LiveData object with fetch and watch functions. See https://docs.modelence.com/live-queries`)}catch(c){throw a.end("error"),c}return a.end(),s}var ue=new Map;function Cn(e){let t=ue.get(e.id);return t||(t=new Map,ue.set(e.id,t)),t}async function Ge(e,t){let r=z$1.object({subscriptionId:z$1.string().min(1),method:z$1.string().min(1),args:z$1.record(z$1.unknown()).default({}),authToken:z$1.string().nullish(),clientInfo:z$1.object({screenWidth:z$1.number(),screenHeight:z$1.number(),windowWidth:z$1.number(),windowHeight:z$1.number(),pixelRatio:z$1.number(),orientation:z$1.string().nullable()}).optional()}).safeParse(t);if(!r.success){e.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${r.error.message}`});return}let{subscriptionId:n,method:o,args:i,authToken:a,clientInfo:s}=r.data,c=Cn(e),l=c.get(n);if(l)if(l.cleanup)try{l.cleanup();}catch(p){console.error("[LiveQuery] Error cleaning up existing subscription:",p);}else l.aborted=true;let u={cleanup:null};c.set(n,u);try{let{session:p,user:m,roles:y}=await N(a??null),g={session:p,user:m,roles:y,clientInfo:s??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:e.handshake.address,userAgent:e.handshake.headers["user-agent"]}},v=await Zt(o,i,g),L=async()=>{let _=a$2(await v.fetch());u.aborted||e.emit("liveQueryData",{subscriptionId:n,data:_,typeMap:b$1(_)});},O=!0,I=!1,A=()=>{u.aborted||!O||I||(O=!1,I=!0,L().catch(_=>{u.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,_),e.emit("liveQueryError",{subscriptionId:n,error:_ instanceof Error?_.message:String(_)}));}).finally(()=>{I=!1,A();}));},W=v.watch({publish:()=>{O=!0,A();}});if(u.aborted){if(W)try{W();}catch(_){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",_);}return}u.cleanup=W||null,A();}catch(p){c.delete(n),console.error(`[LiveQuery] Error in ${o}:`,p),e.emit("liveQueryError",{subscriptionId:n,error:p instanceof Error?p.message:String(p)});}}function Ze(e,t){let r=z$1.object({subscriptionId:z$1.string().min(1)}).safeParse(t);if(!r.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${r.error.message}`);return}let{subscriptionId:n}=r.data,o=ue.get(e.id);if(!o)return;let i=o.get(n);if(i){if(i.cleanup)try{i.cleanup();}catch(a){console.error("[LiveQuery] Error in cleanup:",a);}else i.aborted=true;o.delete(n);}}function Ke(e){let t=ue.get(e.id);if(t){for(let r of t.values())if(r.cleanup)try{r.cleanup();}catch(n){console.error("[LiveQuery] Error in cleanup on disconnect:",n);}else r.aborted=true;ue.delete(e.id);}}var me=null,kn="_modelenceSocketio",Kt=60;async function An({httpServer:e,channels:t}){let r=ve(),n=!!a$1("_system.multiInstance");console.log("Initializing Socket.IO server...");let o=null;if(n&&r){o=r.db().collection(kn);try{await o.createIndex({createdAt:1},{expireAfterSeconds:Kt,background:!0});}catch(i){if(i instanceof Error&&"code"in i&&i.code===85)try{await o.dropIndex("createdAt_1"),await o.createIndex({createdAt:1},{expireAfterSeconds:Kt,background:!0});}catch(a){console.error("Failed to recreate index on MongoDB collection for Socket.IO:",a);}else console.error("Failed to create index on MongoDB collection for Socket.IO:",i);}}me=new Server(e,{cors:{origin:"*",methods:["GET","POST"]},adapter:o?createAdapter(o):void 0,transports:["websocket"],perMessageDeflate:false}),me.on("error",i=>{console.error("Socket.IO error:",i);}),me.use(async(i,a)=>{let s=i.handshake.auth.token;try{i.data=await N(s);}finally{a();}}),me.on("connection",i=>{i.on("disconnect",()=>{Ke(i);}),i.on("joinChannel",async a=>{let[s]=a.split(":"),c=false;for(let l of t)if(l.category===s){(!l.canAccessChannel||await l.canAccessChannel(i.data))&&(i.join(a),c=true,i.emit("joinedChannel",a));break}c||i.emit("joinError",{channel:a,error:"Access denied"});}),i.on("leaveChannel",a=>{i.leave(a),console.log(`User ${i.id} left channel ${a}`),i.emit("leftChannel",a);}),i.on("subscribeLiveQuery",a=>Ge(i,a)),i.on("unsubscribeLiveQuery",a=>Ze(i,a));}),console.log("Socket.IO server initialized");}function On({category:e,id:t,data:r}){me?.to(`${e}:${t}`).emit(e,r);}var Jt={init:An,broadcast:On};async function Qt(e){let t=e.toLowerCase().trim().split("@");if(t.length!==2)return false;let r=t[1];return !!await le.findOne({domain:r})}var Yt={interval:a.days(1),async handler(){let e=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!e.ok)throw new Error(`HTTP ${e.status}: ${e.statusText}`);let r=(await e.text()).split(`
|
|
2
|
+
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),n=new Date,o=500;for(let i=0;i<r.length;i+=o){let a=r.slice(i,i+o);try{await le.insertMany(a.map(s=>({domain:s,addedAt:n})));}catch(s){s&&typeof s=="object"&&"name"in s&&s.name;}}}};var Oe=3,K=50,Xt=8,er=128,tr=254,rr=e=>z$1.string().trim().min(e.min??1,{message:`must be at least ${e.min??1} characters`}).max(e.max,{message:`must be at most ${e.max} characters`}),Je=e=>z$1.string().trim().max(e.max,{message:`must be at most ${e.max} characters`}).transform(t=>t===""?void 0:t).optional(),Rn=z$1.object({firstName:Je({max:50}),lastName:Je({max:50}),avatarUrl:Je({max:400}),handle:rr({min:Oe,max:K})}).strict();function Re(e){let t=Rn.partial().safeParse(e);if(!t.success){let r=t.error.issues[0],n=r.path.join("."),o=n?`${n}: ${r.message}`:r.message;throw new Error(o)}return t.data}function _e(e){return z$1.string().min(Xt,{message:`Password must contain at least ${Xt} characters`}).max(er,{message:`Password must be at most ${er} characters`}).parse(e)}function q(e){return z$1.string().max(tr,{message:`Email must be at most ${tr} characters`}).email({message:"Invalid email address"}).parse(e).toLowerCase()}function nr(e){return rr({min:Oe,max:K}).parse(e)}function Me(e){return {id:e._id,handle:e.handle,roles:e.roles||[],firstName:e.firstName??void 0,lastName:e.lastName??void 0,avatarUrl:e.avatarUrl??void 0}}async function or(e){let t=e.slice(0,K);try{if(!await f.findOne({handle:t},{collation:{locale:"en",strength:2}}))return t}catch(o){throw new Error(`Database error while checking handle availability: ${o}`)}let r=51;for(let o=2;o<=r;o++){let i=`_${o}`,a=`${t.slice(0,K-i.length)}${i}`;try{if(!await f.findOne({handle:a},{collation:{locale:"en",strength:2}}))return a}catch(s){throw new Error(`Database error while checking handle "${a}": ${s}`)}}let n=10;for(let o=0;o<n;o++){let i=`_${randomBytes(3).toString("hex")}`,a=`${t.slice(0,K-i.length)}${i}`;try{if(!await f.findOne({handle:a},{collation:{locale:"en",strength:2}}))return a}catch(s){throw new Error(`Database error while checking handle "${a}": ${s}`)}}throw new Error(`Could not generate a unique handle for base "${e}" after exhausting all attempts.`)}async function J(e,t,{throwOnConflict:r=true}={}){if(e!=null&&String(e).trim()!==""){let o=nr(String(e).trim());if(r){if(await f.findOne({handle:o},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");return o}return or(o)}let n=t.split("@")[0].padEnd(Oe,"_").slice(0,K);return or(n)}var Qe=Object.freeze({});function Ye(e){Qe=Object.freeze(Object.assign({},Qe,e));}function x(){return Qe}var Xe=Object.freeze({});function ir(e){Xe=Object.freeze(Object.assign({},Xe,e));}function C(){return Xe}async function ar(e,{user:t,session:r,connectionInfo:n}){try{if(!r)throw new Error("Session is not initialized");let o=n?.ip;o&&await M({bucket:"signin",type:"ip",value:o});let i=q(e.email),a=z$1.string().parse(e.password),s=await f.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),c=s?.authMethods?.password?.hash;if(!c)throw sr();if(!s.emails?.find(p=>p.address.toLowerCase()===i)?.verified&&x()?.provider)throw new Error("Your email address hasn't been verified yet. Please check your inbox for the verification email.");if(!await Mn.compare(a,c))throw sr();return await Pt(r.authToken,s._id),C().onAfterLogin?.({provider:"email",user:s,session:r,connectionInfo:n}),C().login?.onSuccess?.(s),{user:Me(s)}}catch(o){throw o instanceof Error&&(C().onLoginError?.({provider:"email",error:o,session:r,connectionInfo:n}),C().login?.onError?.(o)),o}}async function cr(e,{session:t}){if(!t)throw new Error("Session is not initialized");await Nt(t.authToken);}function sr(){return new Error("Incorrect email/password combination")}async function lr(e,{user:t}){if(!t)throw new Error("Not authenticated");let r=await f.requireById(t.id);return {handle:r.handle,emails:r.emails,authMethods:Object.keys(r.authMethods||{}),firstName:r.firstName??void 0,lastName:r.lastName??void 0,avatarUrl:r.avatarUrl??void 0}}async function dr(e,{user:t}){if(!t)throw new Error("Not authenticated");let r=await f.requireById(t.id),n=Re(e);if(await C().validateProfileUpdate?.(n),"handle"in n&&n.handle!==void 0&&await f.findOne({handle:n.handle,_id:{$ne:r._id}},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");if(Object.keys(n).length>0){let o={},i={};for(let[s,c]of Object.entries(n))c===void 0?i[s]="":o[s]=c;let a={};Object.keys(o).length>0&&(a.$set=o),Object.keys(i).length>0&&(a.$unset=i);try{await f.updateOne({_id:r._id},a);let s=Object.fromEntries(Object.keys(i).map(c=>[c,void 0]));r={...r,...o,...s};}catch(s){throw s instanceof Error&&"code"in s&&s.code===11e3?new Error("Handle already taken."):s}}return {user:Me(r)}}var et=["google","github"];async function ur({provider:e},{user:t}){if(!t)throw new Error("You must be signed in to unlink a provider.");if(typeof e!="string"||!et.includes(e))throw new Error(`Invalid provider. Supported providers are: ${et.join(", ")}.`);let r=await f.requireById(t.id),n=r.authMethods??{};if(!n[e])throw new Error(`${e} is not linked to your account.`);if(Object.values(n).filter(Boolean).length<=1)throw new Error("Cannot unlink your only authentication method. Please add another method first.");let a=Object.keys(n).filter(l=>l!==e&&n[l]),s=a.length>0?{$or:a.map(l=>({[`authMethods.${l}`]:{$exists:true}}))}:{};if((await f.updateOne({_id:r._id,...s},{$unset:{[`authMethods.${e}`]:""}})).matchedCount===0)throw new Error("Cannot unlink your only authentication method. Please add another method first.")}var fe=new T("_modelenceRateLimits",{schema:{bucket:d.string(),type:d.enum(["ip","user","email"]),value:d.string(),windowMs:d.number(),windowStart:d.date(),windowCount:d.number(),prevWindowCount:d.number(),expiresAt:d.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var tt=[];function mr(e){if(tt.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");tt=e;}async function M(e){let{bucket:t,type:r,value:n,message:o}=e,i=tt.filter(s=>s.bucket===t&&s.type===r),a=o?()=>new d$1(o):void 0;for(let s of i)await Dn(s,n,a);}async function Dn(e,t,r){let n=()=>r?r():new d$1(`Rate limit exceeded for ${e.bucket}`),o=await fe.findOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window}),i=Date.now(),a=Math.floor(i/e.window)*e.window,{count:s,modifier:c}=o?Pn(o,a,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(a),windowCount:1,prevWindowCount:0,expiresAt:new Date(a+e.window+e.window)}}};if(s>=e.limit)throw n();await fe.upsertOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window},c);}function Pn(e,t,r){let n=t-e.windowMs;if(e.windowStart.getTime()===t){let o=e.windowCount,i=e.prevWindowCount,a=1-(r-t)/e.windowMs;return {count:Math.round(o+i*a),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(t),prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}if(e.windowStart.getTime()===n){let o=1-(r-t)/e.windowMs;return {count:Math.round(e.windowCount*o),modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:e.windowCount,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}function pr({name:e,email:t,verificationUrl:r}){return `
|
|
3
|
+
<p>Hi${e?` ${e}`:""},</p>
|
|
4
|
+
<p>Please verify your email address ${t} by clicking the link below:</p>
|
|
5
5
|
<p><a href="${r}">${r}</a></p>
|
|
6
6
|
<p>If you did not request this, please ignore this email.</p>
|
|
7
|
-
`}async function Un(
|
|
7
|
+
`}async function Un(e){let t=await j.findOne({token:e,expiresAt:{$gt:new Date}});if(!t)throw new Error("Invalid or expired verification token");if(!await f.findOne({_id:t.userId,status:{$nin:["deleted","disabled"]}}))throw new Error("User not found");let n=t.email;if(!n)throw new Error("Email not found in token");let o=await f.findOneAndUpdate({_id:t.userId,status:{$nin:["deleted","disabled"]},"emails.address":n,"emails.verified":{$ne:true}},{$set:{"emails.$.verified":true}},{returnDocument:"after"});if(!o)throw await f.findOne({_id:t.userId,"emails.address":n})?new Error("Email is already verified"):new Error("Email address not found for this user");return await j.deleteOne({_id:t._id}),{userDoc:o,email:n}}async function fr(e){let t=a$1("_system.site.url"),r=x().verification?.redirectUrl||x().emailVerifiedRedirectUrl||t||"/";try{let n=z$1.string().parse(e.query.token),{userDoc:o}=await Un(n);C().onAfterEmailVerification?.({provider:"email",user:o,session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}});let{authToken:a}=await ce(o._id);return Ee(e.res,a),{status:301,redirect:`${r}?status=verified`}}catch(n){let o=n instanceof Error?n.message:"An unexpected error occurred";return n instanceof Error&&(C().onEmailVerificationError?.({provider:"email",error:n,session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}}),console.error("Error verifying email:",n)),{status:301,redirect:`${r}?status=error&message=${encodeURIComponent(o)}`}}}async function nt({userId:e,email:t,baseUrl:r=a$1("_system.site.url")}){if(x().provider){let n=x().provider,o=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await j.insertOne({userId:e,email:t,token:o,createdAt:new Date,expiresAt:i});let a$1=`${r}/api/_internal/auth/verify-email?token=${o}`,c=(x()?.verification?.template||pr)({name:"",email:t,verificationUrl:a$1}),l=Te(c);await n?.sendEmail({to:t,from:x()?.from||"noreply@modelence.com",subject:x()?.verification?.subject||"Verify your email address",text:l,html:c});}}var rt={success:true,message:"If that email is registered and not yet verified, a verification email has been sent"};async function hr(e,{connectionInfo:t}){let r=q(e.email),n=await f.findOne({"emails.address":r,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!n)return rt;let o=n.emails?.find(i=>i.address.toLowerCase()===r);if(!o||o.verified)return rt;if(!x().provider)throw new Error("Email provider is not configured");return await M({bucket:"verification",type:"user",value:n._id.toString(),message:"Please wait at least 60 seconds before requesting another verification email"}),await nt({userId:n._id,email:r,baseUrl:t?.baseUrl}),rt}async function gr(e,{user:t,session:r,connectionInfo:n}){let o=C();try{let i=e,{firstName:a,lastName:s,avatarUrl:c,handle:l}=i,u=q(i.email),p=_e(i.password),m=n?.ip;if(m&&await M({bucket:"signupAttempt",type:"ip",value:m}),await Qt(u))throw new Error("Please use a permanent email address");let y=await f.findOne({"emails.address":u},{collation:{locale:"en",strength:2}});if(y){let A=y.emails?.find(W=>W.address.toLowerCase()===u);throw y.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${A?.address}`)}m&&await M({bucket:"signup",type:"ip",value:m});let g=Re({firstName:a,lastName:s,avatarUrl:c,handle:l});await o.validateSignup?.({email:u,password:p,...g});let v;if(g.handle)v=await J(g.handle,u);else if(o.generateHandle){let A=await o.generateHandle({email:u,firstName:g.firstName,lastName:g.lastName});v=await J(A,u,{throwOnConflict:!1});}else v=await J(void 0,u);let L=await Mn.hash(p,10),O=await f.insertOne({handle:v,status:"active",emails:[{address:u,verified:!1}],createdAt:new Date,authMethods:{password:{hash:L}},...g.firstName!==void 0&&{firstName:g.firstName},...g.lastName!==void 0&&{lastName:g.lastName},...g.avatarUrl!==void 0&&{avatarUrl:g.avatarUrl}}),I=await f.findOne({_id:O.insertedId},{readPreference:"primary"});if(!I)throw new Error("User not found");return await nt({userId:O?.insertedId,email:u,baseUrl:n?.baseUrl}),o.onAfterSignup?.({provider:"email",user:I,session:r,connectionInfo:n}),o.signup?.onSuccess?.(I),O.insertedId}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:"email",error:i,session:r,connectionInfo:n}),o.signup?.onError?.(i)),i}}function qn(e,t){return t?t.startsWith("http://")||t.startsWith("https://")?t:`${e}${t.startsWith("/")?"":"/"}${t}`:e}function Hn({email:e,resetUrl:t}){return `
|
|
8
8
|
<p>Hi,</p>
|
|
9
|
-
<p>We received a request to reset your password for ${
|
|
9
|
+
<p>We received a request to reset your password for ${e}.</p>
|
|
10
10
|
<p>Click the link below to reset your password:</p>
|
|
11
|
-
<p><a href="${
|
|
11
|
+
<p><a href="${t}">${t}</a></p>
|
|
12
12
|
<p>This link will expire in 1 hour.</p>
|
|
13
13
|
<p>If you did not request this password reset, please ignore this email.</p>
|
|
14
|
-
`}var nt={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function wr(t,{connectionInfo:e}){let r=z(t.email),n=e?.ip;n&&await M({bucket:"passwordReset",type:"ip",value:n}),await M({bucket:"passwordReset",type:"email",value:r});let o=await m.findOne({"emails.address":r,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return nt;let i=C().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),c=new Date(a$2),l=new Date(a$2+a.hours(1));await D.insertOne({userId:o._id,email:r,token:s,createdAt:c,expiresAt:l});let p=a$1("_system.site.url")||e?.baseUrl,u=`${qn(p,C().passwordReset?.redirectUrl)}?token=${s}`,g=(C()?.passwordReset?.template||Hn)({email:r,resetUrl:u,name:""}),E=Te(g);return await i.sendEmail({to:r,from:C()?.from||"noreply@modelence.com",subject:C()?.passwordReset?.subject||"Reset your password",text:E,html:g}),nt}async function br(t,{}){let e=z$1.string().parse(t.token),r=_e(t.password),n=await D.findOne({token:e});if(!n)throw new Error("Invalid or expired reset token");if(n.expiresAt<new Date)throw await D.deleteOne({token:e}),new Error("Reset token has expired");let o=await m.findOne({_id:n.userId});if(!o)throw new Error("User not found");let i=await Mn.hash(r,10);return await m.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),n.email&&await m.updateOne({_id:o._id,"emails.address":n.email},{$set:{"emails.$.verified":true}}),await Lt(o._id),await D.deleteOne({token:e}),{success:true,message:"Password has been reset successfully"}}function ot(t={}){return [{bucket:"signup",type:"ip",window:a.minutes(15),limit:t.signup?.perIp15Minutes??20},{bucket:"signup",type:"ip",window:a.days(1),limit:t.signup?.perIpPerDay??200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:t.signupAttempt?.perIp15Minutes??50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:t.signupAttempt?.perIpPerDay??500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:t.signin?.perIp15Minutes??50},{bucket:"signin",type:"ip",window:a.days(1),limit:t.signin?.perIpPerDay??500},{bucket:"verification",type:"user",window:a.seconds(60),limit:t.verification?.perUserPerMinute??1},{bucket:"verification",type:"user",window:a.days(1),limit:t.verification?.perUserPerDay??10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:t.passwordReset?.perIp15Minutes??10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:t.passwordReset?.perIpPerDay??100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:t.passwordReset?.perEmailPerHour??5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:t.passwordReset?.perEmailPerDay??10}]}var it=new x("_system.user",{stores:[m,le,$,D],queries:{getOwnProfile:dr},mutations:{signupWithPassword:yr,loginWithPassword:cr,logout:lr,resendEmailVerification:gr,sendResetPasswordToken:wr,resetPassword:br,updateProfile:ur,unlinkOAuthProvider:pr},cronJobs:{updateDisposableEmailList:Yt},rateLimits:ot(),configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:hr}}]});var Vn={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MONGODB_POOL_SIZE:"_system.mongodbPoolSize",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_MULTI_INSTANCE:"_system.multiInstance",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function Wn(t,e){if(e==="number"){let r=Number(t);if(isNaN(r))throw new Error(`Invalid number value for config: ${t}`);return r}if(e==="boolean"){if(t.toLowerCase()==="true")return true;if(t.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${t}`)}return t}function Gn(t,e){let r=[];for(let[n,o]of Object.entries(t)){let i=process.env[n],s=e[o];if(i){let a=s?.type??"string";r.push({key:o,type:a,value:Wn(i,a)});}}return r}function Ie(t,e="withoutRemoteServer"){let r=Vn[e];return Gn(r,t)}async function Sr({configSchema:t,cronJobsMetadata:e,stores:r,roles:n}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=(r??[]).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2,indexes:a.getIndexes(),searchIndexes:a.getSearchIndexes(),indexCreationMode:a.getIndexCreationMode()})),s=await st("/api/connect","POST",{hostname:Bn.hostname(),containerId:o,dataModels:i,configSchema:t,cronJobsMetadata:e,roles:n});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function Cr(){return st("/api/configs","GET")}async function xr(){return await st("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function st(t,e,r){return ne(t,e,r?JSON.stringify(r):void 0,r?{"Content-Type":"application/json"}:{})}async function ne(t,e,r,n){let{MODELENCE_SERVICE_ENDPOINT:o,MODELENCE_SERVICE_TOKEN:i}=process.env;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let s=await fetch(`${o}${t}`,{method:e,headers:{Authorization:`Bearer ${i}`,...n},body:r});if(!s.ok){let a=await s.text();try{let c=JSON.parse(a);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${c?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${s.status}, ${a}`)}}if(!(s.status===204||s.headers?.get("content-length")==="0"))return await s.json()}var at=false,Zn=a.seconds(10);function vr(){setInterval(async()=>{if(!at){at=true;try{await xr();}catch(t){console.error("Error syncing status",t);}try{await Jn();}catch(t){console.error("Error syncing config",t);}at=false;}},Zn);}function ct(t){c(t),c(Ie(d$2(),"withRemoteServer"));}async function Jn(){let{configs:t}=await Cr();ct(t);}var K=new T("_modelenceLocks",{schema:{_id:d.string(),instanceId:d.string(),acquiredAt:d.date(),resource:d.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var Q={},Er=a.seconds(10),Or=randomBytes(32).toString("base64url"),Yn=a.seconds(30),oe=new Map,lt=t=>t instanceof MongoError&&t.code===11e3,Tr=(t,e)=>typeof t.keyPattern=="object"&&t.keyPattern!==null&&Object.prototype.hasOwnProperty.call(t.keyPattern,e),Xn=async({error:t,resource:e})=>{if(Tr(t,"resource"))return true;if(Tr(t,"_id"))return false;let r=await K.findOne({resource:e});return !!r&&r._id!==e},kr=async({resource:t,staleThresholdDate:e,instanceId:r})=>{let n=await K.upsertOne({_id:t,$or:[{instanceId:r},{acquiredAt:{$lt:e}}]},{$set:{resource:t,instanceId:r,acquiredAt:new Date},$setOnInsert:{_id:t}});return n.upsertedCount>0||n.modifiedCount>0},Rr=async({resource:t,instanceId:e,staleThresholdDate:r})=>{let n=r?{resource:t,_id:{$ne:t},$or:[{instanceId:e},{acquiredAt:{$lt:r}}]}:{resource:t,instanceId:e};return (await K.deleteOne(n)).deletedCount>0},eo=t=>{let e=t,r=oe.get(e);r&&(r.stopRequested=true,r.timer&&(clearTimeout(r.timer),r.timer=null),oe.delete(e));},Ar=({resource:t,lockDuration:e,instanceId:r})=>{let n=Math.floor(e/3),o=t,i$1=oe.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===n&&i$1.lockDuration===e)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),oe.delete(o));let s={timer:null,stopRequested:false,lockDuration:e,heartbeatInterval:n},a=()=>{s.timer=setTimeout(()=>{Y(t,{lockDuration:e,bypassCache:true,instanceId:r}).then(c=>{c||(s.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${t}`,{source:"lock",resource:t,instanceId:r}));}).finally(()=>{if(s.stopRequested){oe.delete(o);return}a();});},n);};oe.set(o,s),a();};async function Y(t,{lockDuration:e=Yn,successfulLockCacheDuration:r=Er,failedLockCacheDuration:n=Er,heartbeat:o,bypassCache:i$1,instanceId:s=Or}={}){let a=Date.now();if(!i$1&&Q[t]&&a<Q[t].expiresAt)return Q[t].value&&o&&Ar({resource:t,lockDuration:e,instanceId:s}),Q[t].value;let c=new Date(a-e);i(`Attempting to acquire lock: ${t}`,{source:"lock",resource:t,instanceId:s});try{let l=await to({resource:t,staleThresholdDate:c,instanceId:s});return Q[t]={value:l,expiresAt:a+(l?r:n)},l?(o&&Ar({resource:t,lockDuration:e,instanceId:s}),i(`Lock acquired: ${t}`,{source:"lock",resource:t,instanceId:s})):i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),l}catch{return Q[t]={value:false,expiresAt:a+n},i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),false}}var to=async({resource:t,staleThresholdDate:e,instanceId:r})=>{try{return await kr({resource:t,staleThresholdDate:e,instanceId:r})}catch(n){if(lt(n)&&await Xn({error:n,resource:t})){if(!await Rr({resource:t,staleThresholdDate:e,instanceId:r}))return false;try{return await kr({resource:t,staleThresholdDate:e,instanceId:r})}catch(i){if(lt(i))return false;throw i}}if(lt(n))return false;throw n}};async function he(t,{instanceId:e=Or}={}){eo(t);try{let r=await K.deleteOne({_id:t,instanceId:e});return r.deletedCount===0?await Rr({resource:t,instanceId:e}):r.deletedCount>0}catch{return false}finally{delete Q[t];}}var X={},dt=null,ut=new T("_modelenceCronJobs",{schema:{alias:d.string(),lastStartDate:d.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function Mr(t,{description:e="",interval:r,timeout:n=Math.min(Math.max(r,a.minutes(1)),a.days(1)),handler:o}){if(X[t])throw new Error(`Duplicate cron job declaration: '${t}' already exists`);if(dt)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${t}]`);if(r<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${t}]`);if(n>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${t}]`);X[t]={alias:t,params:{description:e,interval:r,timeout:n},handler:o,state:{isRunning:false}};}async function Ir(){if(dt)throw new Error("Cron jobs already started");let t=Object.keys(X);if(t.length>0){let e={alias:{$in:t}},r=await ut.fetch(e),n=Date.now();r.forEach(o=>{let i=X[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:n);}),Object.values(X).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=n);}),dt=setInterval(ro,a.seconds(1));}}async function ro(){let t=Date.now();await Y("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(X).forEach(async r=>{let{params:n,state:o}=r;if(o.isRunning){o.startTs&&o.startTs+n.timeout<t&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=t&&await no(r);});}async function no(t){let{alias:e,params:r,handler:n,state:o}=t;o.isRunning=true,o.startTs=Date.now(),await ut.updateOne({alias:e},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${e}`);try{await n(),_r(o,r),i.end("success");}catch(s){_r(o,r);let a=s instanceof Error?s:new Error(String(s));m$1(a),i.end("error"),console.error(`Error in cron job '${e}':`,s);}}function _r(t,e){t.scheduledRunTs=t.startTs?t.startTs+e.interval:Date.now(),t.startTs=void 0,t.isRunning=false;}function Dr(){return Object.values(X).map(({alias:t,params:e})=>({alias:t,description:e.description,interval:e.interval,timeout:e.timeout}))}var Pr=new x("_system.cron",{stores:[ut]});function Nr(t){let e=[...new Set(t)],r=new Map;for(let i of e){let s=i.getChainRoot();r.set(s,s.getChainTail());}let n=[...new Set(r.values())],o=new Map;for(let[i,s]of r){let a=s.getName(),c=o.get(a);if(c!==void 0&&c!==i)throw new Error(`Store collision: multiple unrelated stores use collection name '${a}'. Use .extend() to create a single extension chain instead of independent stores.`);o.set(a,i);}return {storesToInit:e,effectiveStores:n}}var pt=new x("_system.lock",{stores:[K]});var ge=new T("_modelenceMigrations",{schema:{version:d.number(),status:d.enum(["completed","failed"]),description:d.string().optional(),output:d.string().optional(),appliedAt:d.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function mt(t,{lockMode:e="acquire"}={}){if(t.length!==0){if(e==="acquire"&&!await Y("migrations")){j$1("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let r=t.map(({version:s})=>s),n=await ge.fetch({version:{$in:r}}),o=new Set(n.map(({version:s})=>s)),i=t.filter(({version:s})=>!o.has(s));if(i.length===0)return;j$1(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i){j$1(`Running migration v${s}: ${a}`,{source:"migrations"});try{let p=(await c()||"").toString().trim(),f=15*1024*1024,u=p.length>f?p.slice(0,f)+`
|
|
15
|
-
[Output truncated - exceeded size limit]`:p;await ge.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:u,appliedAt:new Date}}),j$1(`Migration v${s} complete`,{source:"migrations"});}catch(l){l instanceof Error&&(await ge.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:l.message||"",appliedAt:new Date}}),j$1(`Migration v${s} is failed: ${l.message}`,{source:"migrations"}));}}}finally{e==="acquire"&&await he("migrations");}}}function Lr(t){setTimeout(()=>{mt(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var Ur=new x("_system.migration",{stores:[ge]});var $r=new x("_system.rateLimit",{stores:[fe]});async function jr({filePath:t,contentType:e,visibility:r}){return await ne("/api/files/upload","POST",JSON.stringify({filePath:t,contentType:e,visibility:r}),{"Content-Type":"application/json"})}async function Fr(t){await ne("/api/files/delete","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"});}async function zr(t){return await ne("/api/files/download","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}async function qr(t){return await ne("/api/files/url","POST",JSON.stringify({filePath:t}),{"Content-Type":"application/json"})}var Hr=new x("_system.files",{queries:{async downloadFile({filePath:t}){return zr(t)},async getFileUrl({filePath:t}){return qr(t)}},mutations:{async getUploadUrl({filePath:t,contentType:e,visibility:r}){return jr({filePath:t,contentType:e,visibility:r})},async deleteFile({filePath:t}){return Fr(t)}}});var ht=class{async init({httpServer:e}){this.config=await mo(this.isDev()?e:void 0),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[H.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(H.static(this.config.publicDir)),e}handler(e,r){if(this.isDev())try{r.setHeader("Cache-Control","no-store"),r.sendFile("index.html",{root:"./src/client"});}catch(n){console.error("Error serving index.html:",n),r.status(500).send("Internal Server Error");}else r.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function uo(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function po(t,e){let r=mergeConfig(t,e);if(r.plugins&&Array.isArray(r.plugins)){let n=new Set;r.plugins=r.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return true;let i=o.name;return !i||n.has(i)?false:(n.add(i),true)}).reverse(),r.plugins.reverse();}return r}async function mo(t){let e=process.cwd(),r=await uo(),n=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(s=>lo.existsSync(ft.join(e,s))),o=[co(),fo()];if(n){let s=(await import('vite-plugin-eslint')).default;o.push(s({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:ft.resolve(e,n)}));}let i=defineConfig({plugins:o,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true,hmr:t?{server:t}:void 0},root:"./src/client",resolve:{alias:{"@":ft.resolve(e,"src").replace(/\\/g,"/")}}});return po(i,r)}function fo(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var Wr=new ht;function S(t,e,r){let n=v(),o=t.status(e);if(n.errorComponent)try{let i=n.errorComponent({error:r,statusCode:e});if(i)return o.send(i)}catch(i){console.error("Unhandled error in authConfig.errorComponent:",i);}return o.json({error:r})}async function gt(t,e){let{authToken:r}=await ce(e);xe(t,r),t.status(302),t.redirect("/");}async function go(t,e,r,n,o){let i=v();try{if(r.status==="disabled"||r.status==="deleted"){S(t,400,"User account is not active.");return}let s={};r.firstName===void 0&&e.firstName&&(s.firstName=e.firstName),r.lastName===void 0&&e.lastName&&(s.lastName=e.lastName),r.avatarUrl===void 0&&e.avatarUrl&&(s.avatarUrl=e.avatarUrl);let a=r;Object.keys(s).length>0&&(await m.updateOne({_id:r._id},{$set:s}),a={...r,...s}),await gt(t,r._id),i.onAfterLogin?.({provider:e.providerName,user:a,session:n,connectionInfo:o}),i.login?.onSuccess?.(a);}catch(s){throw s instanceof Error&&(i.login?.onError?.(s),i.onLoginError?.({provider:e.providerName,error:s,session:n,connectionInfo:o})),s}}async function yo(t,e,r,n,o){let i=v();if((i.oauthAccountLinking??"manual")==="auto"&&e.emailVerified){if(r.status==="disabled"||r.status==="deleted"){S(t,400,"User account is not active.");return}if(!r.emails?.find(c=>c.address.toLowerCase()===e.email.toLowerCase())?.verified){S(t,400,"User with this email already exists. Please log in instead.");return}try{let c={...r.firstName===void 0&&e.firstName&&{firstName:e.firstName},...r.lastName===void 0&&e.lastName&&{lastName:e.lastName},...r.avatarUrl===void 0&&e.avatarUrl&&{avatarUrl:e.avatarUrl}};if(!((await m.updateOne({_id:r._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${e.providerName}.id`]:{$exists:!1}},{[`authMethods.${e.providerName}.id`]:e.id}]},{$set:{[`authMethods.${e.providerName}.id`]:e.id,...c}})).matchedCount>0)){S(t,400,"User with this email already exists. Please log in instead.");return}await gt(t,r._id);let f={...r,...c,authMethods:{...r.authMethods,[e.providerName]:{id:e.id}}};i.onAfterLogin?.({provider:e.providerName,user:f,session:n,connectionInfo:o}),i.login?.onSuccess?.(f);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:e.providerName,error:c,session:n,connectionInfo:o})),c}}S(t,400,"User with this email already exists. Please log in instead.");}async function wo(t,e,r,n){let o=v();try{let i;if(o.generateHandle){let l=await o.generateHandle({email:e.email,firstName:e.firstName,lastName:e.lastName});i=await J(l,e.email,{throwOnConflict:!1});}else i=await J(void 0,e.email);let s={handle:i,status:"active",emails:[{address:e.email,verified:e.emailVerified}],createdAt:new Date,authMethods:{[e.providerName]:{id:e.id}},...e.firstName!==void 0&&{firstName:e.firstName},...e.lastName!==void 0&&{lastName:e.lastName},...e.avatarUrl!==void 0&&{avatarUrl:e.avatarUrl}},a=await m.insertOne(s);await gt(t,a.insertedId);let c=await m.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:e.providerName,user:c,session:r,connectionInfo:n}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:e.providerName,error:i,session:r,connectionInfo:n}),o.signup?.onError?.(i)),i}}function se(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function De(t,e,r){let n=await m.findOne({[`authMethods.${r.providerName}.id`]:r.id}),{session:o,connectionInfo:i}=await ye(t);if(n)return go(e,r,n,o,i);if(!r.email){S(e,400,`Email address is required for ${r.providerName} authentication.`);return}let s;try{s=await m.findOne({"emails.address":r.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(a){if(a instanceof Error){let c=v();c.onSignupError?.({provider:r.providerName,error:a,session:o,connectionInfo:i}),c.signup?.onError?.(a);}throw a}return s?yo(e,r,s,o,i):wo(e,r,o,i)}function R(t){t.cookie("oauthLinkToken","",{httpOnly:true,maxAge:0,path:"/api/_internal/auth/",sameSite:"lax",secure:process.env.NODE_ENV==="production"});}function ie(t){if(t)try{t();}catch(e){console.error("Error executing OAuth hook:",e);}}function Pe(t,e,r){let n=t.query.state,o=t.cookies[r],[i,s]=(o||"").split(":");return !n||!o||n!==i?(S(e,400,"Invalid OAuth state - possible CSRF attack"),null):(e.clearCookie(r),s||"login")}async function Ne(t,e,r){let n=v(),{session:o,connectionInfo:i}=await ye(t);if(!o?.userId){R(e),S(e,401,"You must be signed in to link a provider.");return}let s=o.userId;try{let a=`authMethods.${r.providerName}.id`;if((await m.updateOne({_id:s,status:{$nin:["deleted","disabled"]},$or:[{[a]:{$exists:!1}},{[a]:r.id}]},{$set:{[a]:r.id}})).matchedCount===0){let p=await m.findOne({_id:s});if(!p||p.status==="deleted"||p.status==="disabled"){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error("User account not found or not active"),session:o,connectionInfo:i})),R(e),S(e,400,"User account is not active.");return}let f=p?.authMethods?.[r.providerName]?.id;if(f&&f!==r.id){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error(`User already has a different ${r.providerName} account linked`),session:o,connectionInfo:i})),R(e),S(e,400,`You have already linked a different ${r.providerName} account.`);return}ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error(`Unexpected OAuth linking state for ${r.providerName}`),session:o,connectionInfo:i})),R(e),S(e,400,`Unable to link ${r.providerName} account.`);return}let l=await m.findOne({_id:s},{readPreference:"primary"});l&&ie(()=>n.onAfterOAuthLink?.({provider:r.providerName,user:l,session:o,connectionInfo:i})),R(e),e.status(302).redirect("/");}catch(a){if(a instanceof MongoServerError&&a.code===11e3){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:a,session:o,connectionInfo:i})),R(e),S(e,400,`This ${r.providerName} account is already linked to a different user.`);return}if(a instanceof Error&&ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:a,session:o,connectionInfo:i})),R(e),!e.headersSent)throw a}}function Le(t){return !t||typeof t!="string"?null:t}async function Co(t,e,r,n){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:r,redirect_uri:n,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function xo(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function vo(t,e){let r=Le(t.query.code);if(!r){S(e,400,"Missing authorization code");return}let n=Pe(t,e,"authStateGoogle");if(!n)return;let o=String(a$1("_system.user.auth.google.clientId")),i=String(a$1("_system.user.auth.google.clientSecret")),s=se("google");try{let a=await Co(r,o,i,s),c=await xo(a.access_token),l={id:c.id,email:c.email,emailVerified:c.verified_email,providerName:"google",firstName:c.given_name||void 0,lastName:c.family_name||void 0,avatarUrl:c.picture||void 0};n==="link"?await Ne(t,e,l):await De(t,e,l);}catch(a){console.error("Google OAuth error:",a),n==="link"&&R(e),S(e,500,"Authentication failed");}}function Eo(){let t=Router(),e=(r,n,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){S(n,503,"Google authentication is not configured");return}o();};return t.get("/api/_internal/auth/google",e,(r,n)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=se("google"),s=randomBytes(32).toString("hex"),a$2=r.query.mode==="link"?"link":"login";n.cookie("authStateGoogle",`${s}:${a$2}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let c=new URL("https://accounts.google.com/o/oauth2/v2/auth");c.searchParams.append("client_id",o),c.searchParams.append("redirect_uri",i),c.searchParams.append("response_type","code"),c.searchParams.append("scope","profile email"),c.searchParams.append("access_type","online"),c.searchParams.append("state",s),n.redirect(c.toString());}),t.get("/api/_internal/auth/google/callback",e,vo),t}var Gr=Eo;async function Ao(t,e,r,n){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:r,code:t,redirect_uri:n})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function Oo(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Ro(t){let e=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user emails: ${e.statusText}`);return e.json()}async function _o(t,e){return t.email?t.email:(await Ro(e)).find(n=>n.primary&&n.verified)?.email??null}async function Mo(t,e){let r=Le(t.query.code);if(!r){S(e,400,"Missing authorization code");return}let n=Pe(t,e,"authStateGithub");if(!n)return;let o=String(a$1("_system.user.auth.github.clientId")),i=String(a$1("_system.user.auth.github.clientSecret")),s=se("github");try{let a=await Ao(r,o,i,s),c=await Oo(a.access_token),l=await _o(c,a.access_token);if(!l){n==="link"&&R(e),S(e,400,"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary.");return}let p=c.name?c.name.trim().split(/\s+/):[],f=p[0]||void 0,u=p.length>1?p.slice(1).join(" "):void 0,y={id:String(c.id),email:l,emailVerified:!0,providerName:"github",firstName:f,lastName:u,avatarUrl:c.avatar_url||void 0};n==="link"?await Ne(t,e,y):await De(t,e,y);}catch(a){console.error("GitHub OAuth error:",a),n==="link"&&R(e),S(e,500,"Authentication failed");}}function Io(){let t=Router(),e=(r,n,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){S(n,503,"GitHub authentication is not configured");return}o();};return t.get("/api/_internal/auth/github",e,(r,n)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=se("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(f=>f.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex"),l=r.query.mode==="link"?"link":"login";n.cookie("authStateGithub",`${c}:${l}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let p=new URL("https://github.com/login/oauth/authorize");p.searchParams.append("client_id",o),p.searchParams.append("redirect_uri",i),p.searchParams.append("scope",a$2),p.searchParams.append("state",c),n.redirect(p.toString());}),t.get("/api/_internal/auth/github/callback",e,Mo),t}var Br=Io;function Zr(t,e,r){return async(n,o,i)=>{let s=n.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&B())try{let{session:l,user:p}=await P(s);a={session:l,user:p};}catch{}let c=l("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:n.query,body:n.body,params:n.params});try{let l=await r({query:n.query,body:n.body,params:n.params,headers:n.headers,cookies:n.cookies,rawBody:Buffer.isBuffer(n.body)?n.body:void 0,req:n,res:o,next:i},a);c.end(),l&&(o.status(l.status||200),l.redirect&&o.redirect(l.redirect),l.headers&&Object.entries(l.headers).forEach(([p,f])=>{o.setHeader(p,f);}),o.send(l.data));}catch(l){c.end("error"),l instanceof a$3?o.status(l.status).send(l.message):(console.error(`Error in route handler: ${n.path}`),console.error(l),o.status(500).send(String(l)));}}}var yt=Object.freeze({});function Jr(t){yt=Object.freeze(Object.assign({},yt,t));}function Kr(){return yt}var wt=Object.freeze({});function Qr(t){wt=Object.freeze(Object.assign({},wt,t));}function Ue(){return wt}function No(t){let e=[];if(!t)return e.push(H.json({limit:"16mb"})),e.push(H.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let r=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(H.json(r));}if(t.urlencoded!==false){let r=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(H.urlencoded(r));}if(t.raw){let r=typeof t.raw=="object"?t.raw:{},n={limit:r.limit||"16mb",type:r.type||"*/*"};e.push(H.raw(n));}return e}function Lo(t,e){for(let r of e)for(let n of r.routes){let{path:o,handlers:i,body:s}=n,a=No(s);Object.entries(i).forEach(([c,l])=>{t[c](o,...a,Zr(c,o,l));});}}async function Yr(t,{combinedModules:e,channels:r}){let n=H();n.use(Do()),n.use(jo()),Lo(n,e),n.use(H.json({limit:"16mb"})),n.use(H.urlencoded({extended:true,limit:"16mb"})),n.use(Gr()),n.use(Br()),n.post("/api/_internal/auth/set-link-cookie",async(a,c)=>{let{session:l}=await ye(a);if(!l?.userId){c.status(401).json({error:"Not authenticated"});return}c.cookie("oauthLinkToken",l.authToken,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",path:"/api/_internal/auth/",maxAge:10*60*1e3}),c.json({ok:true});}),n.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:l}=a.params,p=await ye(a);try{let f=a$2(await Bt(l,a.body.args,p));c.json({data:f,typeMap:b$1(f)});}catch(f){Uo(c,l,f);}});let o=Po.createServer(n);await t.init({httpServer:o}),t.middlewares&&n.use(t.middlewares()),n.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let i=Ue()?.provider;i&&i.init({httpServer:o,channels:r});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(s,()=>{j$1("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
|
|
16
|
-
Application started on ${
|
|
17
|
-
`);});}async function ye(
|
|
18
|
-
export{
|
|
14
|
+
`}var ot={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function yr(e,{connectionInfo:t}){let r=q(e.email),n=t?.ip;n&&await M({bucket:"passwordReset",type:"ip",value:n}),await M({bucket:"passwordReset",type:"email",value:r});let o=await f.findOne({"emails.address":r,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return ot;let i=x().provider;if(!i)throw new Error("Email provider is not configured");let a$2=randomBytes(32).toString("hex"),s=Date.now(),c=new Date(s),l=new Date(s+a.hours(1));await P.insertOne({userId:o._id,email:r,token:a$2,createdAt:c,expiresAt:l});let u=a$1("_system.site.url")||t?.baseUrl,m=`${qn(u,x().passwordReset?.redirectUrl)}?token=${a$2}`,g=(x()?.passwordReset?.template||Hn)({email:r,resetUrl:m,name:""}),v=Te(g);return await i.sendEmail({to:r,from:x()?.from||"noreply@modelence.com",subject:x()?.passwordReset?.subject||"Reset your password",text:v,html:g}),ot}async function wr(e,{}){let t=z$1.string().parse(e.token),r=_e(e.password),n=await P.findOne({token:t});if(!n)throw new Error("Invalid or expired reset token");if(n.expiresAt<new Date)throw await P.deleteOne({token:t}),new Error("Reset token has expired");let o=await f.findOne({_id:n.userId});if(!o)throw new Error("User not found");let i=await Mn.hash(r,10);return await f.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),n.email&&await f.updateOne({_id:o._id,"emails.address":n.email},{$set:{"emails.$.verified":true}}),await Lt(o._id),await P.deleteOne({token:t}),{success:true,message:"Password has been reset successfully"}}function it(e={}){return [{bucket:"signup",type:"ip",window:a.minutes(15),limit:e.signup?.perIp15Minutes??20},{bucket:"signup",type:"ip",window:a.days(1),limit:e.signup?.perIpPerDay??200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:e.signupAttempt?.perIp15Minutes??50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:e.signupAttempt?.perIpPerDay??500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:e.signin?.perIp15Minutes??50},{bucket:"signin",type:"ip",window:a.days(1),limit:e.signin?.perIpPerDay??500},{bucket:"verification",type:"user",window:a.seconds(60),limit:e.verification?.perUserPerMinute??1},{bucket:"verification",type:"user",window:a.days(1),limit:e.verification?.perUserPerDay??10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:e.passwordReset?.perIp15Minutes??10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:e.passwordReset?.perIpPerDay??100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:e.passwordReset?.perEmailPerHour??5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:e.passwordReset?.perEmailPerDay??10}]}var st=new E("_system.user",{stores:[f,le,j,P],queries:{getOwnProfile:lr},mutations:{signupWithPassword:gr,loginWithPassword:ar,logout:cr,resendEmailVerification:hr,sendResetPasswordToken:yr,resetPassword:wr,updateProfile:dr,unlinkOAuthProvider:ur},cronJobs:{updateDisposableEmailList:Yt},rateLimits:it(),configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:fr}}]});var Vn={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MONGODB_POOL_SIZE:"_system.mongodbPoolSize",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_MULTI_INSTANCE:"_system.multiInstance",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function Wn(e,t){if(t==="number"){let r=Number(e);if(isNaN(r))throw new Error(`Invalid number value for config: ${e}`);return r}if(t==="boolean"){if(e.toLowerCase()==="true")return true;if(e.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${e}`)}return e}function Bn(e,t){let r=[];for(let[n,o]of Object.entries(e)){let i=process.env[n],a=t[o];if(i){let s=a?.type??"string";r.push({key:o,type:s,value:Wn(i,s)});}}return r}function Ie(e,t="withoutRemoteServer"){let r=Vn[t];return Bn(r,e)}async function br({configSchema:e,cronJobsMetadata:t,stores:r,roles:n}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=(r??[]).map(s=>({name:s.getName(),schema:s.getSerializedSchema(),collections:[s.getName()],version:2,indexes:s.getIndexes(),searchIndexes:s.getSearchIndexes(),indexCreationMode:s.getIndexCreationMode()})),a=await D("/api/connect","POST",{hostname:Gn.hostname(),containerId:o,dataModels:i,configSchema:e,cronJobsMetadata:t,roles:n});if(a.status==="error")throw new Error(a.error);return console.log("Successfully connected to Modelence Cloud"),a}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function Sr(){return D("/api/configs","GET")}async function xr(){return await D("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function D(e,t,r){let{MODELENCE_SERVICE_ENDPOINT:n,MODELENCE_SERVICE_TOKEN:o}=process.env;if(!n)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let i=await fetch(`${n}${e}`,{method:t,headers:{Authorization:`Bearer ${o}`,...r?{"Content-Type":"application/json"}:{}},body:r?JSON.stringify(r):void 0});if(!i.ok){let a=await i.text(),s,c=a;try{s=JSON.parse(a);let u=s.error;if(typeof u=="string")c=u;else if(u&&typeof u=="object"){let p=u.message;typeof p=="string"&&(c=p);}}catch{}let l=new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${c}`);throw s!==void 0&&(l.responseBody=s),l.status=i.status,l}if(!(i.status===204||i.headers?.get("content-length")==="0"))return await i.json()}var at=false,Zn=a.seconds(10);function Er(){setInterval(async()=>{if(!at){at=true;try{await xr();}catch(e){console.error("Error syncing status",e);}try{await Kn();}catch(e){console.error("Error syncing config",e);}at=false;}},Zn);}function ct(e){c(e),c(Ie(d$2(),"withRemoteServer"));}async function Kn(){let{configs:e}=await Sr();ct(e);}var Q=new T("_modelenceLocks",{schema:{_id:d.string(),instanceId:d.string(),acquiredAt:d.date(),resource:d.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var Y={},Cr=a.seconds(10),Ar=randomBytes(32).toString("base64url"),Yn=a.seconds(30),oe=new Map,lt=e=>e instanceof MongoError&&e.code===11e3,vr=(e,t)=>typeof e.keyPattern=="object"&&e.keyPattern!==null&&Object.prototype.hasOwnProperty.call(e.keyPattern,t),Xn=async({error:e,resource:t})=>{if(vr(e,"resource"))return true;if(vr(e,"_id"))return false;let r=await Q.findOne({resource:t});return !!r&&r._id!==t},Tr=async({resource:e,staleThresholdDate:t,instanceId:r})=>{let n=await Q.upsertOne({_id:e,$or:[{instanceId:r},{acquiredAt:{$lt:t}}]},{$set:{resource:e,instanceId:r,acquiredAt:new Date},$setOnInsert:{_id:e}});return n.upsertedCount>0||n.modifiedCount>0},Or=async({resource:e,instanceId:t,staleThresholdDate:r})=>{let n=r?{resource:e,_id:{$ne:e},$or:[{instanceId:t},{acquiredAt:{$lt:r}}]}:{resource:e,instanceId:t};return (await Q.deleteOne(n)).deletedCount>0},eo=e=>{let t=e,r=oe.get(t);r&&(r.stopRequested=true,r.timer&&(clearTimeout(r.timer),r.timer=null),oe.delete(t));},kr=({resource:e,lockDuration:t,instanceId:r})=>{let n=Math.floor(t/3),o=e,i$1=oe.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===n&&i$1.lockDuration===t)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),oe.delete(o));let a={timer:null,stopRequested:false,lockDuration:t,heartbeatInterval:n},s=()=>{a.timer=setTimeout(()=>{X(e,{lockDuration:t,bypassCache:true,instanceId:r}).then(c=>{c||(a.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${e}`,{source:"lock",resource:e,instanceId:r}));}).finally(()=>{if(a.stopRequested){oe.delete(o);return}s();});},n);};oe.set(o,a),s();};async function X(e,{lockDuration:t=Yn,successfulLockCacheDuration:r=Cr,failedLockCacheDuration:n=Cr,heartbeat:o,bypassCache:i$1,instanceId:a=Ar}={}){let s=Date.now();if(!i$1&&Y[e]&&s<Y[e].expiresAt)return Y[e].value&&o&&kr({resource:e,lockDuration:t,instanceId:a}),Y[e].value;let c=new Date(s-t);i(`Attempting to acquire lock: ${e}`,{source:"lock",resource:e,instanceId:a});try{let l=await to({resource:e,staleThresholdDate:c,instanceId:a});return Y[e]={value:l,expiresAt:s+(l?r:n)},l?(o&&kr({resource:e,lockDuration:t,instanceId:a}),i(`Lock acquired: ${e}`,{source:"lock",resource:e,instanceId:a})):i(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:a}),l}catch{return Y[e]={value:false,expiresAt:s+n},i(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:a}),false}}var to=async({resource:e,staleThresholdDate:t,instanceId:r})=>{try{return await Tr({resource:e,staleThresholdDate:t,instanceId:r})}catch(n){if(lt(n)&&await Xn({error:n,resource:e})){if(!await Or({resource:e,staleThresholdDate:t,instanceId:r}))return false;try{return await Tr({resource:e,staleThresholdDate:t,instanceId:r})}catch(i){if(lt(i))return false;throw i}}if(lt(n))return false;throw n}};async function he(e,{instanceId:t=Ar}={}){eo(e);try{let r=await Q.deleteOne({_id:e,instanceId:t});return r.deletedCount===0?await Or({resource:e,instanceId:t}):r.deletedCount>0}catch{return false}finally{delete Y[e];}}var ee={},dt=null,ut=new T("_modelenceCronJobs",{schema:{alias:d.string(),lastStartDate:d.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function _r(e,{description:t="",interval:r,timeout:n=Math.min(Math.max(r,a.minutes(1)),a.days(1)),handler:o}){if(ee[e])throw new Error(`Duplicate cron job declaration: '${e}' already exists`);if(dt)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${e}]`);if(r<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${e}]`);if(n>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${e}]`);ee[e]={alias:e,params:{description:t,interval:r,timeout:n},handler:o,state:{isRunning:false}};}async function Mr(){if(dt)throw new Error("Cron jobs already started");let e=Object.keys(ee);if(e.length>0){let t={alias:{$in:e}},r=await ut.fetch(t),n=Date.now();r.forEach(o=>{let i=ee[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:n);}),Object.values(ee).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=n);}),dt=setInterval(ro,a.seconds(1));}}async function ro(){let e=Date.now();await X("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(ee).forEach(async r=>{let{params:n,state:o}=r;if(o.isRunning){o.startTs&&o.startTs+n.timeout<e&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=e&&await no(r);});}async function no(e){let{alias:t,params:r,handler:n,state:o}=e;o.isRunning=true,o.startTs=Date.now(),await ut.updateOne({alias:t},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${t}`);try{await n(),Rr(o,r),i.end("success");}catch(a){Rr(o,r);let s=a instanceof Error?a:new Error(String(a));m(s),i.end("error"),console.error(`Error in cron job '${t}':`,a);}}function Rr(e,t){e.scheduledRunTs=e.startTs?e.startTs+t.interval:Date.now(),e.startTs=void 0,e.isRunning=false;}function Ir(){return Object.values(ee).map(({alias:e,params:t})=>({alias:e,description:t.description,interval:t.interval,timeout:t.timeout}))}var Dr=new E("_system.cron",{stores:[ut]});function Pr(e){let t=[...new Set(e)],r=new Map;for(let i of t){let a=i.getChainRoot();r.set(a,a.getChainTail());}let n=[...new Set(r.values())],o=new Map;for(let[i,a]of r){let s=a.getName(),c=o.get(s);if(c!==void 0&&c!==i)throw new Error(`Store collision: multiple unrelated stores use collection name '${s}'. Use .extend() to create a single extension chain instead of independent stores.`);o.set(s,i);}return {storesToInit:t,effectiveStores:n}}var mt=new E("_system.lock",{stores:[Q]});var ge=new T("_modelenceMigrations",{schema:{version:d.number(),status:d.enum(["completed","failed"]),description:d.string().optional(),output:d.string().optional(),appliedAt:d.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function pt(e,{lockMode:t="acquire"}={}){if(e.length!==0){if(t==="acquire"&&!await X("migrations")){j$1("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let r=e.map(({version:a})=>a),n=await ge.fetch({version:{$in:r}}),o=new Set(n.map(({version:a})=>a)),i=e.filter(({version:a})=>!o.has(a));if(i.length===0)return;j$1(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:a,description:s,handler:c}of i){j$1(`Running migration v${a}: ${s}`,{source:"migrations"});try{let u=(await c()||"").toString().trim(),p=15*1024*1024,m=u.length>p?u.slice(0,p)+`
|
|
15
|
+
[Output truncated - exceeded size limit]`:u;await ge.upsertOne({version:a},{$set:{version:a,status:"completed",description:s,output:m,appliedAt:new Date}}),j$1(`Migration v${a} complete`,{source:"migrations"});}catch(l){l instanceof Error&&(await ge.upsertOne({version:a},{$set:{version:a,status:"failed",description:s,output:l.message||"",appliedAt:new Date}}),j$1(`Migration v${a} is failed: ${l.message}`,{source:"migrations"}));}}}finally{t==="acquire"&&await he("migrations");}}}function Nr(e){setTimeout(()=>{pt(e).catch(t=>{console.error("Error running migrations:",t);});},0);}var Lr=new E("_system.migration",{stores:[ge]});var Ur=new E("_system.rateLimit",{stores:[fe]});async function $r({filePath:e,contentType:t,visibility:r}){return await D("/api/files/upload","POST",{filePath:e,contentType:t,visibility:r})}async function jr(e){await D("/api/files/delete","POST",{filePath:e});}async function Fr(e){return await D("/api/files/download","POST",{filePath:e})}async function zr(e){return await D("/api/files/url","POST",{filePath:e})}var qr=new E("_system.files",{queries:{async downloadFile({filePath:e}){return Fr(e)},async getFileUrl({filePath:e}){return zr(e)}},mutations:{async getUploadUrl({filePath:e,contentType:t,visibility:r}){return $r({filePath:e,contentType:t,visibility:r})},async deleteFile({filePath:e}){return jr(e)}}});var ht=class{async init({httpServer:t}){this.config=await po(this.isDev()?t:void 0),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let t=[V.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&t.push(V.static(this.config.publicDir)),t}handler(t,r){if(this.isDev())try{r.setHeader("Cache-Control","no-store"),r.sendFile("index.html",{root:"./src/client"});}catch(n){console.error("Error serving index.html:",n),r.status(500).send("Internal Server Error");}else r.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function uo(){let e=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,e))?.config||{}}catch(t){return console.warn("Could not load vite config:",t),{}}}function mo(e,t){let r=mergeConfig(e,t);if(r.plugins&&Array.isArray(r.plugins)){let n=new Set;r.plugins=r.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return true;let i=o.name;return !i||n.has(i)?false:(n.add(i),true)}).reverse(),r.plugins.reverse();}return r}async function po(e){let t=process.cwd(),r=await uo(),n=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(a=>lo.existsSync(ft.join(t,a))),o=[co(),fo()];if(n){let a=(await import('vite-plugin-eslint')).default;o.push(a({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:t,overrideConfigFile:ft.resolve(t,n)}));}let i=defineConfig({plugins:o,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true,hmr:e?{server:e}:void 0},root:"./src/client",resolve:{alias:{"@":ft.resolve(t,"src").replace(/\\/g,"/")}}});return mo(i,r)}function fo(){return {name:"modelence-asset-handler",async transform(e,t){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(t))return process.env.NODE_ENV==="development",e}}}var Vr=new ht;function S(e,t,r){let n=C(),o=e.status(t);if(n.errorComponent)try{let i=n.errorComponent({error:r,statusCode:t});if(i)return o.send(i)}catch(i){console.error("Unhandled error in authConfig.errorComponent:",i);}return o.json({error:r})}async function gt(e,t){let{authToken:r}=await ce(t);Ee(e,r),e.status(302),e.redirect("/");}async function go(e,t,r,n,o){let i=C();try{if(r.status==="disabled"||r.status==="deleted"){S(e,400,"User account is not active.");return}let a={};r.firstName===void 0&&t.firstName&&(a.firstName=t.firstName),r.lastName===void 0&&t.lastName&&(a.lastName=t.lastName),r.avatarUrl===void 0&&t.avatarUrl&&(a.avatarUrl=t.avatarUrl);let s=r;Object.keys(a).length>0&&(await f.updateOne({_id:r._id},{$set:a}),s={...r,...a}),await gt(e,r._id),i.onAfterLogin?.({provider:t.providerName,user:s,session:n,connectionInfo:o}),i.login?.onSuccess?.(s);}catch(a){throw a instanceof Error&&(i.login?.onError?.(a),i.onLoginError?.({provider:t.providerName,error:a,session:n,connectionInfo:o})),a}}async function yo(e,t,r,n,o){let i=C();if((i.oauthAccountLinking??"manual")==="auto"&&t.emailVerified){if(r.status==="disabled"||r.status==="deleted"){S(e,400,"User account is not active.");return}if(!r.emails?.find(c=>c.address.toLowerCase()===t.email.toLowerCase())?.verified){S(e,400,"User with this email already exists. Please log in instead.");return}try{let c={...r.firstName===void 0&&t.firstName&&{firstName:t.firstName},...r.lastName===void 0&&t.lastName&&{lastName:t.lastName},...r.avatarUrl===void 0&&t.avatarUrl&&{avatarUrl:t.avatarUrl}};if(!((await f.updateOne({_id:r._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${t.providerName}.id`]:{$exists:!1}},{[`authMethods.${t.providerName}.id`]:t.id}]},{$set:{[`authMethods.${t.providerName}.id`]:t.id,...c}})).matchedCount>0)){S(e,400,"User with this email already exists. Please log in instead.");return}await gt(e,r._id);let p={...r,...c,authMethods:{...r.authMethods,[t.providerName]:{id:t.id}}};i.onAfterLogin?.({provider:t.providerName,user:p,session:n,connectionInfo:o}),i.login?.onSuccess?.(p);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:t.providerName,error:c,session:n,connectionInfo:o})),c}}S(e,400,"User with this email already exists. Please log in instead.");}async function wo(e,t,r,n){let o=C();try{let i;if(o.generateHandle){let l=await o.generateHandle({email:t.email,firstName:t.firstName,lastName:t.lastName});i=await J(l,t.email,{throwOnConflict:!1});}else i=await J(void 0,t.email);let a={handle:i,status:"active",emails:[{address:t.email,verified:t.emailVerified}],createdAt:new Date,authMethods:{[t.providerName]:{id:t.id}},...t.firstName!==void 0&&{firstName:t.firstName},...t.lastName!==void 0&&{lastName:t.lastName},...t.avatarUrl!==void 0&&{avatarUrl:t.avatarUrl}},s=await f.insertOne(a);await gt(e,s.insertedId);let c=await f.findOne({_id:s.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:t.providerName,user:c,session:r,connectionInfo:n}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:t.providerName,error:i,session:r,connectionInfo:n}),o.signup?.onError?.(i)),i}}function se(e){return `${a$1("_system.site.url")}/api/_internal/auth/${e}/callback`}async function De(e,t,r){let n=await f.findOne({[`authMethods.${r.providerName}.id`]:r.id}),{session:o,connectionInfo:i}=await ye(e);if(n)return go(t,r,n,o,i);if(!r.email){S(t,400,`Email address is required for ${r.providerName} authentication.`);return}let a;try{a=await f.findOne({"emails.address":r.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(s){if(s instanceof Error){let c=C();c.onSignupError?.({provider:r.providerName,error:s,session:o,connectionInfo:i}),c.signup?.onError?.(s);}throw s}return a?yo(t,r,a,o,i):wo(t,r,o,i)}function R(e){e.cookie("oauthLinkToken","",{httpOnly:true,maxAge:0,path:"/api/_internal/auth/",sameSite:"lax",secure:process.env.NODE_ENV==="production"});}function ie(e){if(e)try{e();}catch(t){console.error("Error executing OAuth hook:",t);}}function Pe(e,t,r){let n=e.query.state,o=e.cookies[r],[i,a]=(o||"").split(":");return !n||!o||n!==i?(S(t,400,"Invalid OAuth state - possible CSRF attack"),null):(t.clearCookie(r),a||"login")}async function Ne(e,t,r){let n=C(),{session:o,connectionInfo:i}=await ye(e);if(!o?.userId){R(t),S(t,401,"You must be signed in to link a provider.");return}let a=o.userId;try{let s=`authMethods.${r.providerName}.id`;if((await f.updateOne({_id:a,status:{$nin:["deleted","disabled"]},$or:[{[s]:{$exists:!1}},{[s]:r.id}]},{$set:{[s]:r.id}})).matchedCount===0){let u=await f.findOne({_id:a});if(!u||u.status==="deleted"||u.status==="disabled"){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error("User account not found or not active"),session:o,connectionInfo:i})),R(t),S(t,400,"User account is not active.");return}let p=u?.authMethods?.[r.providerName]?.id;if(p&&p!==r.id){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error(`User already has a different ${r.providerName} account linked`),session:o,connectionInfo:i})),R(t),S(t,400,`You have already linked a different ${r.providerName} account.`);return}ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:new Error(`Unexpected OAuth linking state for ${r.providerName}`),session:o,connectionInfo:i})),R(t),S(t,400,`Unable to link ${r.providerName} account.`);return}let l=await f.findOne({_id:a},{readPreference:"primary"});l&&ie(()=>n.onAfterOAuthLink?.({provider:r.providerName,user:l,session:o,connectionInfo:i})),R(t),t.status(302).redirect("/");}catch(s){if(s instanceof MongoServerError&&s.code===11e3){ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:s,session:o,connectionInfo:i})),R(t),S(t,400,`This ${r.providerName} account is already linked to a different user.`);return}if(s instanceof Error&&ie(()=>n.onOAuthLinkError?.({provider:r.providerName,error:s,session:o,connectionInfo:i})),R(t),!t.headersSent)throw s}}function Le(e){return !e||typeof e!="string"?null:e}async function xo(e,t,r,n){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:e,client_id:t,client_secret:r,redirect_uri:n,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function Eo(e){let t=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${e}`}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function Co(e,t){let r=Le(e.query.code);if(!r){S(t,400,"Missing authorization code");return}let n=Pe(e,t,"authStateGoogle");if(!n)return;let o=String(a$1("_system.user.auth.google.clientId")),i=String(a$1("_system.user.auth.google.clientSecret")),a=se("google");try{let s=await xo(r,o,i,a),c=await Eo(s.access_token),l={id:c.id,email:c.email,emailVerified:c.verified_email,providerName:"google",firstName:c.given_name||void 0,lastName:c.family_name||void 0,avatarUrl:c.picture||void 0};n==="link"?await Ne(e,t,l):await De(e,t,l);}catch(s){console.error("Google OAuth error:",s),n==="link"&&R(t),S(t,500,"Authentication failed");}}function vo(){let e=Router(),t=(r,n,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),a=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!a||!s){S(n,503,"Google authentication is not configured");return}o();};return e.get("/api/_internal/auth/google",t,(r,n)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=se("google"),a$2=randomBytes(32).toString("hex"),s=r.query.mode==="link"?"link":"login";n.cookie("authStateGoogle",`${a$2}:${s}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let c=new URL("https://accounts.google.com/o/oauth2/v2/auth");c.searchParams.append("client_id",o),c.searchParams.append("redirect_uri",i),c.searchParams.append("response_type","code"),c.searchParams.append("scope","profile email"),c.searchParams.append("access_type","online"),c.searchParams.append("state",a$2),n.redirect(c.toString());}),e.get("/api/_internal/auth/google/callback",t,Co),e}var Wr=vo;async function Ao(e,t,r,n){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:t,client_secret:r,code:e,redirect_uri:n})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function Oo(e){let t=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function Ro(e){let t=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user emails: ${t.statusText}`);return t.json()}async function _o(e,t){return e.email?e.email:(await Ro(t)).find(n=>n.primary&&n.verified)?.email??null}async function Mo(e,t){let r=Le(e.query.code);if(!r){S(t,400,"Missing authorization code");return}let n=Pe(e,t,"authStateGithub");if(!n)return;let o=String(a$1("_system.user.auth.github.clientId")),i=String(a$1("_system.user.auth.github.clientSecret")),a=se("github");try{let s=await Ao(r,o,i,a),c=await Oo(s.access_token),l=await _o(c,s.access_token);if(!l){n==="link"&&R(t),S(t,400,"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary.");return}let u=c.name?c.name.trim().split(/\s+/):[],p=u[0]||void 0,m=u.length>1?u.slice(1).join(" "):void 0,y={id:String(c.id),email:l,emailVerified:!0,providerName:"github",firstName:p,lastName:m,avatarUrl:c.avatar_url||void 0};n==="link"?await Ne(e,t,y):await De(e,t,y);}catch(s){console.error("GitHub OAuth error:",s),n==="link"&&R(t),S(t,500,"Authentication failed");}}function Io(){let e=Router(),t=(r,n,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),a=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!a||!s){S(n,503,"GitHub authentication is not configured");return}o();};return e.get("/api/_internal/auth/github",t,(r,n)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=se("github"),a$2=a$1("_system.user.auth.github.scopes"),s=a$2?String(a$2).split(",").map(p=>p.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex"),l=r.query.mode==="link"?"link":"login";n.cookie("authStateGithub",`${c}:${l}`,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let u=new URL("https://github.com/login/oauth/authorize");u.searchParams.append("client_id",o),u.searchParams.append("redirect_uri",i),u.searchParams.append("scope",s),u.searchParams.append("state",c),n.redirect(u.toString());}),e.get("/api/_internal/auth/github/callback",t,Mo),e}var Br=Io;function Gr(e,t,r){return async(n,o,i)=>{let a=n.headers["x-modelence-auth-token"],s={session:null,user:null};if(typeof a=="string"&&Z())try{let{session:l,user:u}=await N(a);s={session:l,user:u};}catch{}let c=l("route",`route:${e.toLowerCase()}:${t}`,{method:e,path:t,query:n.query,body:n.body,params:n.params});try{let l=await r({query:n.query,body:n.body,params:n.params,headers:n.headers,cookies:n.cookies,rawBody:Buffer.isBuffer(n.body)?n.body:void 0,req:n,res:o,next:i},s);c.end(),l&&(o.status(l.status||200),l.redirect&&o.redirect(l.redirect),l.headers&&Object.entries(l.headers).forEach(([u,p])=>{o.setHeader(u,p);}),o.send(l.data));}catch(l){c.end("error"),l instanceof a$3?o.status(l.status).send(l.message):(console.error(`Error in route handler: ${n.path}`),console.error(l),o.status(500).send(String(l)));}}}var yt=Object.freeze({});function Zr(e){yt=Object.freeze(Object.assign({},yt,e));}function Kr(){return yt}var wt=Object.freeze({});function Jr(e){wt=Object.freeze(Object.assign({},wt,e));}function Ue(){return wt}function No(e){let t=[];if(!e)return t.push(V.json({limit:"16mb"})),t.push(V.urlencoded({extended:true,limit:"16mb"})),t;if(e.json!==false){let r=typeof e.json=="object"?e.json:{limit:"16mb"};t.push(V.json(r));}if(e.urlencoded!==false){let r=typeof e.urlencoded=="object"?e.urlencoded:{extended:true,limit:"16mb"};t.push(V.urlencoded(r));}if(e.raw){let r=typeof e.raw=="object"?e.raw:{},n={limit:r.limit||"16mb",type:r.type||"*/*"};t.push(V.raw(n));}return t}function Lo(e,t){for(let r of t)for(let n of r.routes){let{path:o,handlers:i,body:a}=n,s=No(a);Object.entries(i).forEach(([c,l])=>{e[c](o,...s,Gr(c,o,l));});}}async function Qr(e,{combinedModules:t,channels:r}){let n=V();n.use(Do()),n.use(jo()),Lo(n,t),n.use(V.json({limit:"16mb"})),n.use(V.urlencoded({extended:true,limit:"16mb"})),n.use(Wr()),n.use(Br()),n.post("/api/_internal/auth/set-link-cookie",async(s,c)=>{let{session:l}=await ye(s);if(!l?.userId){c.status(401).json({error:"Not authenticated"});return}c.cookie("oauthLinkToken",l.authToken,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",path:"/api/_internal/auth/",maxAge:10*60*1e3}),c.json({ok:true});}),n.post("/api/_internal/method/:methodName(*)",async(s,c)=>{let{methodName:l}=s.params,u=await ye(s);try{let p=a$2(await Gt(l,s.body.args,u));c.json({data:p,typeMap:b$1(p)});}catch(p){Uo(c,l,p);}});let o=Po.createServer(n);await e.init({httpServer:o}),e.middlewares&&n.use(e.middlewares()),n.all("*",(s,c)=>e.handler(s,c)),process.on("unhandledRejection",(s,c)=>{console.error("Unhandled Promise Rejection:"),console.error(s instanceof Error?s.stack:s),console.error("Promise:",c);}),process.on("uncaughtException",s=>{console.error("Uncaught Exception:"),console.error(s.stack),console.trace("Full application stack:");});let i=Ue()?.provider;i&&i.init({httpServer:o,channels:r});let a=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(a,()=>{j$1("Application started",{source:"app"});let s=a$1("_system.site.url")||`http://localhost:${a}`;console.log(`
|
|
16
|
+
Application started on ${s}
|
|
17
|
+
`);});}async function ye(e){let t=(e.path??e.url??"").split("?")[0],r=t.startsWith("/api/_internal/auth/")&&t.endsWith("/callback"),n=H.string().nullish().transform(s=>s??null).parse(e.cookies.authToken||(r?e.cookies.oauthLinkToken:null)||e.body.authToken),o=H.object({screenWidth:H.number(),screenHeight:H.number(),windowWidth:H.number(),windowHeight:H.number(),pixelRatio:H.number(),orientation:H.string().nullable()}).nullish().parse(e.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},i={ip:Fo(e),userAgent:e.get("user-agent"),acceptLanguage:e.get("accept-language"),referrer:e.get("referrer"),baseUrl:e.protocol+"://"+e.get("host")};if(!!Z()){let{session:s,user:c,roles:l}=await N(n);return {clientInfo:o,connectionInfo:i,session:s,user:c,roles:l}}return {clientInfo:o,connectionInfo:i,session:null,user:null,roles:Ce()}}function Uo(e,t,r){if(r instanceof a$3){r.status>=500&&r.status<600&&console.error(`Error calling ${t}:`,r),e.status(r.status).send(r.message);return}if(r instanceof Error&&r?.constructor?.name==="ZodError"&&"errors"in r){let n="";try{n=$o(r);}catch(o){console.error(`Error parsing Zod error in ${t}:`,o),n="Validation failed";}e.status(400).send(n);return}console.error(`Error calling ${t}:`,r),e.status(500).send(r instanceof Error?r.message:String(r));}function $o(e){let t=e.flatten(),r=Object.entries(t.fieldErrors).map(([i,a])=>`${i}: ${(a??[]).join(", ")}`),n=t.formErrors;return [...r,...n].filter(Boolean).join("; ")}function jo(){let{frameAncestors:e}=Kr(),t=e&&e.length>0,r=t?["'self'",...e].join(" "):"'self'";return (n,o,i)=>{o.setHeader("Content-Security-Policy",`frame-ancestors ${r}`),t||o.setHeader("X-Frame-Options","SAMEORIGIN"),i();}}function Fo(e){let t=e.headers["x-forwarded-for"];if(t)return (Array.isArray(t)?t[0]:t.split(",")[0]).trim();let r=e.ip||e.socket?.remoteAddress;if(r)return r.startsWith("::ffff:")?r.substring(7):r}function zo(e){return e?e.match(/^\s*"?([^"<]+?)"?\s*<[^>]+>\s*$/)?.[1]?.trim():void 0}function qo(e){if(e)return Array.isArray(e)?e:[e]}function Ho(e){return {to:Array.isArray(e.to)?e.to:[e.to],subject:e.subject,html:e.html,text:e.text,fromName:zo(e.from),replyTo:qo(e.replyTo)}}function Vo(e){if(!(e instanceof Error))return new Error("Managed email send failed");let t=e.responseBody,r=t?.error?.code,n=t?.error?.message;return r&&n?new Error(`Managed email rejected (${r}): ${n}`):e}var Yr={async sendEmail(e){if(e.cc||e.bcc||e.attachments||e.headers)throw new Error("Modelence managed email does not support cc, bcc, attachments, or custom headers in v1. Configure your own provider (Resend, SES, SMTP) to use these features. See https://docs.modelence.com/email/managed.");try{await D("/api/email/send","POST",Ho(e));}catch(t){throw Vo(t)}}};async function Zo({modules:e$1=[],roles:t={},defaultRoles:r={},server:n=Vr,migrations:o=[],email:i={},auth:a={},security:s={},websocket:c$1={}}){Xr.config(),Xr.config({path:".modelence.env"});let l=!!process.env.MODELENCE_SERVICE_ENDPOINT;ii().then(()=>{}).catch(()=>{});let u=[st,Ut,Dr,Lr,Ur,de,mt,qr],p=[...u,...e$1];f$1(),Jo(u),Ko(e$1),jt(t,r);let m=ri(p);e(m);let y=Qo(p),g$1=Yo(p);ni(p),st.rateLimits=it(a.rateLimits);let v=Xo(p);mr(v);let{storesToInit:L,effectiveStores:O}=Pr(y);if(l){let{configs:A,environmentId:W,appAlias:_,environmentAlias:tn,telemetry:rn}=await br({configSchema:m,cronJobsMetadata:Ir(),stores:O,roles:t});ct(A),g({environmentId:W,appAlias:_,environmentAlias:tn,telemetry:rn});}else c(Ie(m));if(l&&!i.provider?Ye({...i,provider:Yr}):Ye(i),ir(a),Zr(s),Jr({...c$1,provider:c$1.provider||Jt}),Z()){await zt();let A=[...new Set([...L,...O])];oi(A),await ti(O,o);}else Nr(o);l&&(await h(),Er()),Mr().catch(console.error),await Qr(n,{combinedModules:p,channels:g$1});}function Ko(e){for(let t of e){for(let[r,n]of Object.entries(t.queries))Be(`${t.name}.${r}`,n);for(let[r,n]of Object.entries(t.mutations))qt(`${t.name}.${r}`,n);}}function Jo(e){for(let t of e){for(let[r,n]of Object.entries(t.queries))Ht(`${t.name}.${r}`,n);for(let[r,n]of Object.entries(t.mutations))Vt(`${t.name}.${r}`,n);}}function Qo(e){return e.flatMap(t=>t.stores)}function Yo(e){return e.flatMap(t=>t.channels)}function Xo(e){return e.flatMap(t=>t.rateLimits)}function ei(e,t){console.warn(`Failed to create indexes for store '${e}'. Continuing startup.`,t);}var bt="migrations";async function ti(e,t){if(!await X(bt,{lockDuration:a.seconds(30),heartbeat:true}))return;let n,o;try{n=e.filter(s=>s.getIndexCreationMode()==="blocking"),o=e.filter(s=>s.getIndexCreationMode()==="background");for(let s of n)await St(s,"full");for(let s of o)await St(s,"drop-only");}catch(s){throw await he(bt),s}let i=(async()=>{for(let s of o)await St(s,"create-only");})(),a$1=pt(t,{lockMode:"skip"});Promise.allSettled([i,a$1]).then(([s,c])=>{s.status==="rejected"&&console.error("Error creating background indexes:",s.reason),c.status==="rejected"&&console.error("Error running migrations:",c.reason);}).finally(async()=>{await he(bt);});}async function St(e,t="full"){let r=e.getName();try{await e.createIndexes(t);}catch(n){ei(r,n);}}function ri(e){let t={};for(let r of e)for(let[n,o]of Object.entries(r.configSchema)){let i=`${r.name}.${n}`;if(i in t)throw new Error(`Duplicate config schema key: ${i} (${r.name})`);t[i]=o;}return t}function ni(e){for(let t of e)for(let[r,n]of Object.entries(t.cronJobs))_r(`${t.name}.${r}`,n);}function oi(e){let t=ve();if(!t)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let r of e)r.init(t);}async function ii(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let t=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",r=process.env.MODELENCE_ENVIRONMENT_ID,n=await si(),o=await import('./package-WKD57CCF.js');await fetch(`${t}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:n.name,version:o.default.version,localHostname:Gn.hostname(),environmentId:r})});}}async function si(){try{let e=ft.join(process.cwd(),"package.json"),t=await Wo.readFile(e,"utf-8");return {name:JSON.parse(t).name||"unknown"}}catch{return {name:"unknown"}}}async function en(e){await j.deleteMany({userId:e}),await P.deleteMany({userId:e});}async function ci(e){await en(e),await f.updateOne(e,{$set:{status:"disabled",disabledAt:new Date}});}async function li(e){await en(e),await f.updateOne({_id:e},{$set:{handle:`deleted-${e}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var xt=class{constructor(t,r){this.category=t,this.canAccessChannel=r||null;}broadcast(t,r){let n=Ue().provider;if(!n){k("Websockets provider should be added to startApp",{});return}n.broadcast({category:this.category,id:t,data:r});}};function di(e){if(!x().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return x().provider?.sendEmail(e)}
|
|
18
|
+
export{ne as LiveData,E as Module,xt as ServerChannel,T as Store,N as authenticate,M as consumeRateLimit,Be as createQuery,f as dbUsers,jr as deleteFile,li as deleteUser,ci as disableUser,Fr as downloadFile,zr as getFileUrl,$r as getUploadUrl,d as schema,di as sendEmail,Zo as startApp};//# sourceMappingURL=server.js.map
|
|
19
19
|
//# sourceMappingURL=server.js.map
|