modelence 0.18.0-dev.5 → 0.18.0-dev.rn.1

package/dist/index.js

@@ -1,2 +1,2 @@
-export{b as AuthError,a as ModelenceError,d as RateLimitError,c as ValidationError}from'./chunk-C3UESBRX.js';import'./chunk-55J6XMHW.js';export{a as time}from'./chunk-DO5TZLF5.js';//# sourceMappingURL=index.js.map
+export{b as AuthError,a as ModelenceError,d as RateLimitError,c as ValidationError}from'./chunk-C3UESBRX.js';export{a as time}from'./chunk-DO5TZLF5.js';import'./chunk-55J6XMHW.js';//# sourceMappingURL=index.js.map
 //# sourceMappingURL=index.js.map

package/dist/{package-U4D5AOYA.js → package-G6SV6T7V.js}

@@ -1,2 +1,2 @@
-export{l as author,i as bin,n as bugs,s as default,q as dependencies,d as description,p as devDependencies,g as exports,h as files,o as homepage,m as license,e as main,b as name,r as peerDependencies,k as repository,j as scripts,a as type,f as types,c as version}from'./chunk-X22U5KA3.js';//# sourceMappingURL=package-U4D5AOYA.js.map
-//# sourceMappingURL=package-U4D5AOYA.js.map
+export{l as author,i as bin,n as bugs,s as default,q as dependencies,d as description,p as devDependencies,g as exports,h as files,o as homepage,m as license,e as main,b as name,r as peerDependencies,k as repository,j as scripts,a as type,f as types,c as version}from'./chunk-DZKWVTHR.js';//# sourceMappingURL=package-G6SV6T7V.js.map
+//# sourceMappingURL=package-G6SV6T7V.js.map

package/dist/{package-U4D5AOYA.js.map → package-G6SV6T7V.js.map}

@@ -1 +1 @@
-{"version":3,"sources":[],"names":[],"mappings":"","file":"package-U4D5AOYA.js"}
+{"version":3,"sources":[],"names":[],"mappings":"","file":"package-G6SV6T7V.js"}

package/dist/server.d.ts

@@ -1,8 +1,8 @@
-import { A as AppServer } from './index-pPrHYnzB.js';
-import { c as ConfigParams, C as ConfigSchema, A as AnyMethodShape, S as ServerChannel, V as ValueType, f as SignupProps, U as UpdateProfileProps, g as AuthSuccessProps, h as AuthErrorProps, i as ConnectionInfo, j as User, k as OAuthErrorInfo, a as WebsocketServerProvider, R as RoleDefinition, M as MethodDefinition, b as ConfigKey, l as AppConfig, m as Session, n as UserInfo, o as Role } from './types-BmVlYelB.js';
-export { d as ConfigType } from './types-BmVlYelB.js';
-import { S as Store, R as RouteDefinition, C as CronJobInputParams, a as RateLimitRule, E as EmailProvider, b as RateLimitType, I as InferDocumentType, c as EmailPayload } from './types-V74rNt-g.js';
-export { H as HttpMethod, d as RouteHandler, e as RouteParams, f as RouteResponse, s as schema } from './types-V74rNt-g.js';
+import { A as AppServer } from './index-CLpVWWuj.js';
+import { d as ConfigParams, C as ConfigSchema, A as AnyMethodShape, S as ServerChannel, V as ValueType, g as SignupProps, U as UpdateProfileProps, h as AuthSuccessProps, i as AuthErrorProps, j as ConnectionInfo, k as User, l as OAuthErrorInfo, a as WebsocketServerProvider, R as RoleDefinition, M as MethodDefinition, c as ConfigKey, m as AppConfig, n as Session, o as UserInfo, p as Role } from './types-CzGfkwti.js';
+export { e as ConfigType } from './types-CzGfkwti.js';
+import { S as Store, R as RouteDefinition, C as CronJobInputParams, a as RateLimitRule, E as EmailProvider, b as RateLimitType, I as InferDocumentType, c as EmailPayload } from './types-JMIT4IDG.js';
+export { H as HttpMethod, d as RouteHandler, e as RouteParams, f as RouteResponse, s as schema } from './types-JMIT4IDG.js';
 import { ObjectId as ObjectId$1 } from 'mongodb';
 export { ObjectId } from 'mongodb';
 import * as zod from 'zod';

package/dist/server.js

@@ -1,2 +1,21 @@
-export{m as ObjectId,k as ServerChannel,a as consumeRateLimit,c as deleteFile,j as deleteUser,i as disableUser,d as downloadFile,e as getFileUrl,b as getUploadUrl,l as sendEmail,h as startApp}from'./chunk-3XTC4WGD.js';import'./chunk-X22U5KA3.js';export{r as LiveData,a as Module,b as Store,q as authenticate,t as createQuery,k as dbUsers,c as schema}from'./chunk-GZI4X3CV.js';import'./chunk-C3UESBRX.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import'./chunk-FL573BOT.js';import'./chunk-5M6FUMUK.js';import'./chunk-DO5TZLF5.js';//# sourceMappingURL=server.js.map
+import {a as a$2,b as b$2}from'./chunk-5M6FUMUK.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {a as a$1,b as b$1,f as f$1,e,g,c,h,k,d as d$1,j as j$1,i,l,m as m$1}from'./chunk-3SPXJEOR.js';export{a as getConfig}from'./chunk-3SPXJEOR.js';import {s}from'./chunk-DZKWVTHR.js';import ur from'dotenv';import oi from'fs/promises';import so from'os';import St from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient,MongoServerError}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import {isDeepStrictEqual}from'util';import H,{z as z$1}from'zod';import qr from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import Co from'@vitejs/plugin-react';import vo from'fs';import W,{Router}from'express';import Vo from'cookie-parser';import Bo from'http';var v=class{constructor(e,{stores:n=[],queries:r={},mutations:o={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:l=[]}={}){this.name=e,this.stores=n,this.queries=r,this.mutations=o,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=l;}getConfig(e){return a$1(`${this.name}.${e}`)}};function j(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:j(e.type)};if(e.typeName==="ZodObject"){let r=e.shape(),o={};for(let[i,s]of Object.entries(r))o[i]=j(s);return {type:"object",items:o}}if(e.typeName==="ZodOptional")return {...j(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...j(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(j)};if(e.typeName==="ZodEffects"){let n=e;return n.description?{type:"custom",typeName:n.description}:j(n.schema)}return {type:"custom",typeName:e.typeName}}function xe(t){let e={};for(let[n,r]of Object.entries(t))Array.isArray(r)?e[n]=r.map(o=>typeof o=="object"&&"_def"in o?j(o):xe(o)):typeof r=="object"&&"_def"in r?e[n]=j(r):e[n]=xe(r);return e}var Ce=t=>typeof t=="object"&&t!==null&&!Array.isArray(t),Ut=t=>Ce(t)&&"_def"in t,We=t=>t._def,$t=t=>{let e=We(t);if(e.typeName==="ZodOptional"||e.typeName==="ZodNullable"||e.typeName==="ZodDefault"||e.typeName==="ZodCatch"||e.typeName==="ZodReadonly")return e.innerType;if(e.typeName==="ZodEffects")return e.schema;if(e.typeName==="ZodBranded")return e.type;if(e.typeName==="ZodPipeline")return e.out},jt=t=>{let e=We(t);if(e.typeName==="ZodDefault")return {hasDefault:true,value:e.defaultValue()};let n=$t(t);return n?jt(n):{hasDefault:false}},He=(t,e)=>{let n=We(t);if(n.typeName==="ZodObject"&&Ce(e))return Ee(n.shape(),e);if(n.typeName==="ZodArray"&&Array.isArray(e))return e.map(o=>He(n.type,o));let r=$t(t);return r?He(r,e):e},ve=(t,e)=>Ut(t)?He(t,e):Array.isArray(t)&&Array.isArray(e)?t.length===1?e.map(n=>ve(t[0],n)):e.map((n,r)=>ve(t[r],n)):Ce(t)&&Ce(e)?Ee(t,e):e,Ee=(t,e)=>{let n={...e};for(let[r,o]of Object.entries(t)){let i=n[r];if(i===void 0){if(Ut(o)){let s=jt(o);s.hasDefault&&(n[r]=ve(o,s.value));}continue}n[r]=ve(o,i);}return n};var hr=["background","bits","bucketSize","collation","default_language","expireAfterSeconds","hidden","language_override","max","min","partialFilterExpression","sparse","storageEngine","textIndexVersion","unique","weights","wildcardProjection","2dsphereIndexVersion"],Ge=t=>typeof t=="object"&&t!==null&&!Array.isArray(t),gr=t=>t.startsWith("_modelence_"),Ke=t=>{let e={};for(let n of hr){let r=t[n];r!==void 0&&(e[n]=r);}return e},yr=(t,e)=>{if(!Ge(t)||!Ge(e))return  false;let n=Object.entries(t),r=Object.entries(e);return n.length!==r.length?false:n.every(([o,i],s)=>{let[a,c]=r[s]||[];return o===a&&isDeepStrictEqual(i,c)})},Ft=(t,e)=>yr(t.key,e.key)?isDeepStrictEqual(Ke(t),Ke(e)):false,Ve=t=>Ge(t)?Object.entries(t).map(([e,n])=>`${e}:${JSON.stringify(n)}`).join("|"):null,wr=async t=>{try{return await t.listIndexes().toArray()}catch(e){if(e instanceof MongoError&&e.code===26)return [];throw e}},br=t=>Object.entries(t).map(([e,n])=>`${e}_${n}`).join("_"),Sr=t=>{if(t.name){let n=t.name.startsWith("_modelence_")?t.name:`_modelence_${t.name}`;return {...t,name:n}}let e=br(t.key);return {...t,name:`_modelence_${e}`}},T=class t{constructor(e,n){this._chainParent=null;this._chainChild=null;this.name=e,this.schema=n.schema,this.methods=n.methods,this.indexes=n.indexes.map(Sr),this.searchIndexes=n.searchIndexes||[],this.indexCreationMode=n.indexCreationMode??"background";}getName(){return this.name}getIndexCreationMode(){return this.indexCreationMode}getSchema(){return this.schema}getSerializedSchema(){return xe(this.schema)}getIndexes(){return this.indexes}getSearchIndexes(){return this.searchIndexes}getChainTail(){let e=this;for(;e._chainChild;)e=e._chainChild;return e}getChainRoot(){let e=this;for(;e._chainParent;)e=e._chainParent;return e}extend(e){let n=this.getChainTail();if(this.client||n.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);let r={...n.schema,...e.schema||{}},o=[...n.indexes,...e.indexes||[]],i=[...n.searchIndexes,...e.searchIndexes||[]],s={...n.methods||{},...e.methods||{}},a=new t(this.name,{schema:r,methods:s,indexes:o,searchIndexes:i,indexCreationMode:e.indexCreationMode??n.indexCreationMode});return n._chainChild=a,a._chainParent=n,a}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(e="full"){let n=this.requireCollection(),r=e!=="create-only",o=e!=="drop-only",i=await wr(n),s=new Map,a=new Map,c=new Set,l=u=>{s.set(u.name,u);let y=Ve(u.key);if(!y)return;let g=a.get(y);g?g.add(u.name):a.set(y,new Set([u.name]));},d=u=>{let y=s.get(u);if(!y)return;s.delete(u);let g=Ve(y.key);if(!g)return;let S=a.get(g);S&&(S.delete(u),S.size===0&&a.delete(g));};for(let u of i)typeof u.name=="string"&&l({...u,name:u.name});let p=async u=>{if(!(u==="_id_"||c.has(u))){try{await n.dropIndex(u);}catch(y){if(!(y instanceof MongoError&&y.code===27))throw y}c.add(u),d(u);}};if(r){let u=new Set(this.indexes.map(g=>g.name).filter(g=>typeof g=="string")),y=[...s.values()].filter(g=>gr(g.name)&&!u.has(g.name));for(let g of y)await p(g.name);}if(this.indexes.length>0)for(let u of this.indexes){if(!u.name)continue;let y=false,g=s.get(u.name);g&&!Ft(g,u)&&(r?await p(g.name):y=true);let S=Ve(u.key);if(S){let M=[...a.get(S)||[]];for(let A of M)A!==u.name&&(r?await p(A):y=true);}let U=s.get(u.name);!(!!U&&Ft(U,u))&&o&&!y&&(await n.createIndexes([u]),l({name:u.name,key:u.key,...Ke(u)}));}if(o&&this.searchIndexes.length>0)for(let u of this.searchIndexes)try{await n.createSearchIndexes([u]);}catch(y){if(y instanceof MongoError&&y.code===68&&u.name)await n.dropSearchIndex(u.name),await n.createSearchIndexes([u]);else throw y}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,n){let r=await this.requireCollection().findOne(e,n);return r?this.wrapDocument(r):null}async requireOne(e,n,r){let o=await this.findOne(e,n);if(!o)throw r?r():new Error(`Record not found in ${this.name}`);return o}find(e,n){let r=this.requireCollection().find(e,n?.projection?{projection:n.projection}:void 0);return n?.sort&&r.sort(n.sort),n?.limit&&r.limit(n.limit),n?.skip&&r.skip(n.skip),r}async findById(e){let n=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(n)}async requireById(e,n){let r=await this.findById(e);if(!r)throw n?n():new Error(`Record with id ${e} not found in ${this.name}`);return r}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,n){return (await this.find(e,n).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e,n){return await this.requireCollection().insertOne(e,n)}async create(e,n){let r=Ee(this.schema,{_id:new ObjectId,...e});return await this.requireCollection().insertOne(r,n),this.wrapDocument(r)}async insertMany(e,n){return await this.requireCollection().insertMany(e,n)}async updateOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,r)}async upsertOne(e,n,r){return await this.requireCollection().updateOne(this.getSelector(e),n,{upsert:true,...r})}async updateMany(e,n,r){return await this.requireCollection().updateMany(e,n,r)}async upsertMany(e,n,r){return await this.requireCollection().updateMany(e,n,{upsert:true,...r})}async deleteOne(e,n){return await this.requireCollection().deleteOne(this.getSelector(e),n)}async deleteMany(e,n){return await this.requireCollection().deleteMany(e,n)}async findOneAndUpdate(e,n,r){let o=await this.requireCollection().findOneAndUpdate(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async findOneAndDelete(e,n){let r=await this.requireCollection().findOneAndDelete(this.getSelector(e),n??{});return r?this.wrapDocument(r):null}async findOneAndReplace(e,n,r){let o=await this.requireCollection().findOneAndReplace(this.getSelector(e),n,r??{});return o?this.wrapDocument(o):null}async replaceOne(e,n,r){return await this.requireCollection().replaceOne(this.getSelector(e),n,r)}async distinct(e,n,r){let o=n??{};return r!==void 0?await this.requireCollection().distinct(e,o,r):await this.requireCollection().distinct(e,o)}watch(e,n){return this.requireCollection().watch(e,n)}aggregate(e,n){return this.requireCollection().aggregate(e,n)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,n){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(e).rename(this.name,n);}async vectorSearch({field:e,embedding:n,numCandidates:r,limit:o,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:n,numCandidates:r||100,limit:o||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:n,similarity:r="cosine",indexName:o}){return {type:"vectorSearch",name:o||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:n,similarity:r}]}}}};var xr=z$1.string.bind(z$1),Cr=z$1.number.bind(z$1),vr=z$1.date.bind(z$1),Er=z$1.boolean.bind(z$1),Tr=z$1.array.bind(z$1),kr=z$1.object.bind(z$1),Ar=z$1.enum.bind(z$1),m={string:xr,number:Cr,date:vr,boolean:Er,array:Tr,object:kr,enum:Ar,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(t){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(t){return {}}};var P=new T("_modelenceSessions",{schema:{authToken:m.string(),createdAt:m.date(),expiresAt:m.date(),userId:m.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0},{key:{userId:1}}]});async function qt(t){let e=t?await P.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await ce()}async function Zt(t,e){await P.updateOne({authToken:t},{$set:{userId:e}});}async function Ht(t){await P.updateOne({authToken:t},{$set:{userId:null}});}async function Wt(t){await P.deleteMany({userId:t});}async function ce(t=null){let e=randomBytes(32).toString("base64url"),n=Date.now(),r=new Date(n+a.days(7));return await P.insertOne({authToken:e,createdAt:new Date(n),expiresAt:r,userId:t}),{authToken:e,expiresAt:r,userId:t}}async function Rr(t){let e=Date.now(),n=new Date(e+a.days(7));await P.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:n}});}function ke(t,e){t.cookie("authToken",e,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict",path:"/"});}var Vt=new v("_system.session",{stores:[P],mutations:{init:async function(t,{session:e,user:n}){return {session:e,user:n,configs:b$1()}},heartbeat:async function(t,{session:e}){e&&await Rr(e);}}});var f=new T("_modelenceUsers",{schema:{handle:m.string(),emails:m.array(m.object({address:m.string(),verified:m.boolean()})).optional(),status:m.enum(["active","disabled","deleted"]).optional(),firstName:m.string().optional(),lastName:m.string().optional(),avatarUrl:m.string().optional(),createdAt:m.date(),disabledAt:m.date().optional(),deletedAt:m.date().optional(),roles:m.array(m.string()).optional(),authMethods:m.object({password:m.object({hash:m.string()}).optional(),google:m.object({id:m.string()}).optional(),github:m.object({id:m.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1},sparse:true,unique:true},{key:{"authMethods.github.id":1},sparse:true,unique:true}]}),le=new T("_modelenceDisposableEmailDomains",{schema:{domain:m.string(),addedAt:m.date()},indexes:[{key:{domain:1},unique:true}]}),F=new T("_modelenceEmailVerificationTokens",{schema:{userId:m.objectId(),email:m.string().optional(),token:m.string(),createdAt:m.date(),expiresAt:m.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),N=new T("_modelenceResetPasswordTokens",{schema:{userId:m.objectId(),email:m.string().optional(),token:m.string(),createdAt:m.date(),expiresAt:m.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Bt=new Map,ne={authenticated:null,unauthenticated:null};function Gt(t,e){ne.authenticated=e.authenticated,ne.unauthenticated=e.unauthenticated;for(let[n,r]of Object.entries(t))Bt.set(n,r);}function Ae(){return ne.unauthenticated?[ne.unauthenticated]:[]}function Kt(){return ne.authenticated?[ne.authenticated]:[]}function Qe(t,e){let n=e.find(r=>!_r(t,r));if(n)throw new Error(`Access denied - missing permission: '${n}'`)}function _r(t,e){for(let n of t)if(Bt.get(n)?.permissions?.includes(e))return  true;return  false}async function L(t){let e=await qt(t),n=e.userId?await f.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,r=n?{id:n._id.toString(),handle:n.handle,roles:n.roles||[],hasRole:i=>(n.roles||[]).includes(i),requireRole:i=>{if(!(n.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)},firstName:n.firstName??void 0,lastName:n.lastName??void 0,avatarUrl:n.avatarUrl??void 0}:null,o=r?Kt():Ae();return {user:r,session:e,roles:o}}var de=new v("_system",{configSchema:{mongodbUri:{type:"secret",isPublic:false,default:""},mongodbPoolSize:{type:"number",isPublic:false,default:10},"env.type":{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""},multiInstance:{type:"boolean",isPublic:false,default:false}}});var z=null;async function Jt(){if(z)return z;let t=G();if(!t)throw new Error("MongoDB URI is not set");let e=de.getConfig("mongodbPoolSize");z=new MongoClient(t,{driverInfo:{name:"Modelence",version:s.version},ignoreUndefined:true,maxPoolSize:e});try{return await z.connect(),await z.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),z}catch(n){throw console.error(n),z=null,n}}function G(){return de.getConfig("mongodbUri")||void 0}function Oe(){return z}var re=class{constructor(e){this.fetch=e.fetch,this.watch=e.watch;}};function Dr(){return typeof window!="object"}function q(){if(!Dr())throw new Error("This function can only be called on the server")}function Re(t){return t.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var _e={};function Ye(t,e){return q(),en(t),Ie("query",t,e)}function Qt(t,e){return q(),en(t),Ie("mutation",t,e)}function Yt(t,e){return q(),tn(t),Ie("query",t,e)}function Xt(t,e){return q(),tn(t),Ie("mutation",t,e)}function en(t){if(t.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${t})`)}function tn(t){if(!t.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${t})`)}function Ie(t,e,n){if(q(),_e[e])throw new Error(`Method with name '${e}' is already defined.`);let r=typeof n=="function"?n:n.handler,o=typeof n=="function"?[]:n.permissions??[];_e[e]={type:t,name:e,handler:r,permissions:o};}async function nn(t,e,n){q();let r=_e[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r,s=l("method",`method:${t}`,{type:o,args:e}),a;try{Qe(n.roles,r.permissions),a=await i(e,n);}catch(c){throw s.end("error"),c}return s.end(),a}async function rn(t,e,n){q();let r=_e[t];if(!r)throw new Error(`Method with name '${t}' is not defined.`);let{type:o,handler:i}=r;if(o!=="query")throw new Error("Live methods are only supported for queries");let s=l("method",`method:${t}:live`,{type:o,args:e}),a;try{if(Qe(n.roles,r.permissions),a=await i(e,n),!(a instanceof re))throw new Error(`Live query handler for '${t}' must return a LiveData object with fetch and watch functions. See https://docs.modelence.com/live-queries`)}catch(c){throw s.end("error"),c}return s.end(),a}var ue=new Map;function Pr(t){let e=ue.get(t.id);return e||(e=new Map,ue.set(t.id,e)),e}async function Xe(t,e){let n=z$1.object({subscriptionId:z$1.string().min(1),method:z$1.string().min(1),args:z$1.record(z$1.unknown()).default({}),authToken:z$1.string().nullish(),clientInfo:z$1.object({screenWidth:z$1.number(),screenHeight:z$1.number(),windowWidth:z$1.number(),windowHeight:z$1.number(),pixelRatio:z$1.number(),orientation:z$1.string().nullable()}).optional()}).safeParse(e);if(!n.success){t.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${n.error.message}`});return}let{subscriptionId:r,method:o,args:i,authToken:s,clientInfo:a}=n.data,c=Pr(t),l=c.get(r);if(l)if(l.cleanup)try{l.cleanup();}catch(p){console.error("[LiveQuery] Error cleaning up existing subscription:",p);}else l.aborted=true;let d={cleanup:null};c.set(r,d);try{let{session:p,user:u,roles:y}=await L(s??null),g={session:p,user:u,roles:y,clientInfo:a??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},connectionInfo:{ip:t.handshake.address,userAgent:t.handshake.headers["user-agent"]}},S=await rn(o,i,g),U=async()=>{let _=a$2(await S.fetch());d.aborted||t.emit("liveQueryData",{subscriptionId:r,data:_,typeMap:b$2(_)});},R=!0,M=!1,A=()=>{d.aborted||!R||M||(R=!1,M=!0,U().catch(_=>{d.aborted||(console.error(`[LiveQuery] Error fetching data for ${o}:`,_),t.emit("liveQueryError",{subscriptionId:r,error:_ instanceof Error?_.message:String(_)}));}).finally(()=>{M=!1,A();}));},V=S.watch({publish:()=>{R=!0,A();}});if(d.aborted){if(V)try{V();}catch(_){console.error("[LiveQuery] Error cleaning up after disconnect during setup:",_);}return}d.cleanup=V||null,A();}catch(p){c.delete(r),console.error(`[LiveQuery] Error in ${o}:`,p),t.emit("liveQueryError",{subscriptionId:r,error:p instanceof Error?p.message:String(p)});}}function et(t,e){let n=z$1.object({subscriptionId:z$1.string().min(1)}).safeParse(e);if(!n.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${n.error.message}`);return}let{subscriptionId:r}=n.data,o=ue.get(t.id);if(!o)return;let i=o.get(r);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}else i.aborted=true;o.delete(r);}}function tt(t){let e=ue.get(t.id);if(e){for(let n of e.values())if(n.cleanup)try{n.cleanup();}catch(r){console.error("[LiveQuery] Error in cleanup on disconnect:",r);}else n.aborted=true;ue.delete(t.id);}}var me=null,Ur="_modelenceSocketio",on=60;async function $r({httpServer:t,channels:e}){let n=Oe(),r=!!a$1("_system.multiInstance");console.log("Initializing Socket.IO server...");let o=null;if(r&&n){o=n.db().collection(Ur);try{await o.createIndex({createdAt:1},{expireAfterSeconds:on,background:!0});}catch(i){if(i instanceof Error&&"code"in i&&i.code===85)try{await o.dropIndex("createdAt_1"),await o.createIndex({createdAt:1},{expireAfterSeconds:on,background:!0});}catch(s){console.error("Failed to recreate index on MongoDB collection for Socket.IO:",s);}else console.error("Failed to create index on MongoDB collection for Socket.IO:",i);}}me=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:o?createAdapter(o):void 0,transports:["websocket"],perMessageDeflate:false}),me.on("error",i=>{console.error("Socket.IO error:",i);}),me.use(async(i,s)=>{let a=i.handshake.auth.token;try{i.data=await L(a);}finally{s();}}),me.on("connection",i=>{i.on("disconnect",()=>{tt(i);}),i.on("joinChannel",async s=>{let[a]=s.split(":"),c=false;for(let l of e)if(l.category===a){(!l.canAccessChannel||await l.canAccessChannel(i.data))&&(i.join(s),c=true,i.emit("joinedChannel",s));break}c||i.emit("joinError",{channel:s,error:"Access denied"});}),i.on("leaveChannel",s=>{i.leave(s),console.log(`User ${i.id} left channel ${s}`),i.emit("leftChannel",s);}),i.on("subscribeLiveQuery",s=>Xe(i,s)),i.on("unsubscribeLiveQuery",s=>et(i,s));}),console.log("Socket.IO server initialized");}function jr({category:t,id:e,data:n}){me?.to(`${t}:${e}`).emit(t,n);}var sn={init:$r,broadcast:jr};async function an(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return  false;let n=e[1];return !!await le.findOne({domain:n})}var cn={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let n=(await t.text()).split(`
+`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),r=new Date,o=500;for(let i=0;i<n.length;i+=o){let s=n.slice(i,i+o);try{await le.insertMany(s.map(a=>({domain:a,addedAt:r})));}catch(a){a&&typeof a=="object"&&"name"in a&&a.name;}}}};var Me=3,K=50,ln=8,dn=128,un=254,mn=t=>z$1.string().trim().min(t.min??1,{message:`must be at least ${t.min??1} characters`}).max(t.max,{message:`must be at most ${t.max} characters`}),nt=t=>z$1.string().trim().max(t.max,{message:`must be at most ${t.max} characters`}).transform(e=>e===""?void 0:e).optional(),Fr=z$1.object({firstName:nt({max:50}),lastName:nt({max:50}),avatarUrl:nt({max:400}),handle:mn({min:Me,max:K})}).strict();function De(t){let e=Fr.partial().safeParse(t);if(!e.success){let n=e.error.issues[0],r=n.path.join("."),o=r?`${r}: ${n.message}`:n.message;throw new Error(o)}return e.data}function Pe(t){return z$1.string().min(ln,{message:`Password must contain at least ${ln} characters`}).max(dn,{message:`Password must be at most ${dn} characters`}).parse(t)}function Z(t){return z$1.string().max(un,{message:`Email must be at most ${un} characters`}).email({message:"Invalid email address"}).parse(t).toLowerCase()}function pn(t){return mn({min:Me,max:K}).parse(t)}function Ne(t){return {id:t._id,handle:t.handle,roles:t.roles||[],firstName:t.firstName??void 0,lastName:t.lastName??void 0,avatarUrl:t.avatarUrl??void 0}}async function fn(t){let e=t.slice(0,K);try{if(!await f.findOne({handle:e},{collation:{locale:"en",strength:2}}))return e}catch(o){throw new Error(`Database error while checking handle availability: ${o}`)}let n=51;for(let o=2;o<=n;o++){let i=`_${o}`,s=`${e.slice(0,K-i.length)}${i}`;try{if(!await f.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}let r=10;for(let o=0;o<r;o++){let i=`_${randomBytes(3).toString("hex")}`,s=`${e.slice(0,K-i.length)}${i}`;try{if(!await f.findOne({handle:s},{collation:{locale:"en",strength:2}}))return s}catch(a){throw new Error(`Database error while checking handle "${s}": ${a}`)}}throw new Error(`Could not generate a unique handle for base "${t}" after exhausting all attempts.`)}async function J(t,e,{throwOnConflict:n=true}={}){if(t!=null&&String(t).trim()!==""){let o=pn(String(t).trim());if(n){if(await f.findOne({handle:o},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");return o}return fn(o)}let r=e.split("@")[0].padEnd(Me,"_").slice(0,K);return fn(r)}var rt=Object.freeze({});function ot(t){rt=Object.freeze(Object.assign({},rt,t));}function C(){return rt}var it=Object.freeze({});function hn(t){it=Object.freeze(Object.assign({},it,t));}function E(){return it}async function yn(t,{user:e,session:n,connectionInfo:r}){try{if(!n)throw new Error("Session is not initialized");let o=r?.ip;o&&await I({bucket:"signin",type:"ip",value:o});let i=Z(t.email),s=z$1.string().parse(t.password),a=await f.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),c=a?.authMethods?.password?.hash;if(!c)throw gn();if(!a.emails?.find(p=>p.address.toLowerCase()===i)?.verified&&C()?.provider)throw new Error("Your email address hasn't been verified yet. Please check your inbox for the verification email.");if(!await qr.compare(s,c))throw gn();return await Zt(n.authToken,a._id),E().onAfterLogin?.({provider:"email",user:a,session:n,connectionInfo:r}),E().login?.onSuccess?.(a),{user:Ne(a),session:{authToken:n.authToken}}}catch(o){throw o instanceof Error&&(E().onLoginError?.({provider:"email",error:o,session:n,connectionInfo:r}),E().login?.onError?.(o)),o}}async function wn(t,{session:e}){if(!e)throw new Error("Session is not initialized");await Ht(e.authToken);}function gn(){return new Error("Incorrect email/password combination")}async function bn(t,{user:e}){if(!e)throw new Error("Not authenticated");let n=await f.requireById(e.id);return {handle:n.handle,emails:n.emails,authMethods:Object.keys(n.authMethods||{}),firstName:n.firstName??void 0,lastName:n.lastName??void 0,avatarUrl:n.avatarUrl??void 0}}async function Sn(t,{user:e}){if(!e)throw new Error("Not authenticated");let n=await f.requireById(e.id),r=De(t);if(await E().validateProfileUpdate?.(r),"handle"in r&&r.handle!==void 0&&await f.findOne({handle:r.handle,_id:{$ne:n._id}},{collation:{locale:"en",strength:2}}))throw new Error("Handle already taken.");if(Object.keys(r).length>0){let o={},i={};for(let[a,c]of Object.entries(r))c===void 0?i[a]="":o[a]=c;let s={};Object.keys(o).length>0&&(s.$set=o),Object.keys(i).length>0&&(s.$unset=i);try{await f.updateOne({_id:n._id},s);let a=Object.fromEntries(Object.keys(i).map(c=>[c,void 0]));n={...n,...o,...a};}catch(a){throw a instanceof Error&&"code"in a&&a.code===11e3?new Error("Handle already taken."):a}}return {user:Ne(n)}}var st=["google","github"];async function xn({provider:t},{user:e}){if(!e)throw new Error("You must be signed in to unlink a provider.");if(typeof t!="string"||!st.includes(t))throw new Error(`Invalid provider. Supported providers are: ${st.join(", ")}.`);let n=await f.requireById(e.id),r=n.authMethods??{};if(!r[t])throw new Error(`${t} is not linked to your account.`);if(Object.values(r).filter(Boolean).length<=1)throw new Error("Cannot unlink your only authentication method. Please add another method first.");let s=Object.keys(r).filter(l=>l!==t&&r[l]),a=s.length>0?{$or:s.map(l=>({[`authMethods.${l}`]:{$exists:true}}))}:{};if((await f.updateOne({_id:n._id,...a},{$unset:{[`authMethods.${t}`]:""}})).matchedCount===0)throw new Error("Cannot unlink your only authentication method. Please add another method first.")}var fe=new T("_modelenceRateLimits",{schema:{bucket:m.string(),type:m.enum(["ip","user","email"]),value:m.string(),windowMs:m.number(),windowStart:m.date(),windowCount:m.number(),prevWindowCount:m.number(),expiresAt:m.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var at=[];function Cn(t){if(at.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");at=t;}async function I(t){let{bucket:e,type:n,value:r,message:o}=t,i=at.filter(a=>a.bucket===e&&a.type===n),s=o?()=>new d(o):void 0;for(let a of i)await Hr(a,r,s);}async function Hr(t,e,n){let r=()=>n?n():new d(`Rate limit exceeded for ${t.bucket}`),o=await fe.findOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window}),i=Date.now(),s=Math.floor(i/t.window)*t.window,{count:a,modifier:c}=o?Wr(o,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+t.window+t.window)}}};if(a>=t.limit)throw r();await fe.upsertOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window},c);}function Wr(t,e,n){let r=e-t.windowMs;if(t.windowStart.getTime()===e){let o=t.windowCount,i=t.prevWindowCount,s=1-(n-e)/t.windowMs;return {count:Math.round(o+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(e),prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}if(t.windowStart.getTime()===r){let o=1-(n-e)/t.windowMs;return {count:Math.round(t.windowCount*o),modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:t.windowCount,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}function vn({name:t,email:e,verificationUrl:n}){return `
+    <p>Hi${t?` ${t}`:""},</p>
+    <p>Please verify your email address ${e} by clicking the link below:</p>
+    <p><a href="${n}">${n}</a></p>
+    <p>If you did not request this, please ignore this email.</p>
+  `}async function Gr(t){let e=await F.findOne({token:t,expiresAt:{$gt:new Date}});if(!e)throw new Error("Invalid or expired verification token");if(!await f.findOne({_id:e.userId,status:{$nin:["deleted","disabled"]}}))throw new Error("User not found");let r=e.email;if(!r)throw new Error("Email not found in token");let o=await f.findOneAndUpdate({_id:e.userId,status:{$nin:["deleted","disabled"]},"emails.address":r,"emails.verified":{$ne:true}},{$set:{"emails.$.verified":true}},{returnDocument:"after"});if(!o)throw await f.findOne({_id:e.userId,"emails.address":r})?new Error("Email is already verified"):new Error("Email address not found for this user");return await F.deleteOne({_id:e._id}),{userDoc:o,email:r}}async function En(t){let e=a$1("_system.site.url"),n=C().verification?.redirectUrl||C().emailVerifiedRedirectUrl||e||"/";try{let r=z$1.string().parse(t.query.token),{userDoc:o}=await Gr(r);E().onAfterEmailVerification?.({provider:"email",user:o,session:null,connectionInfo:{baseUrl:e,ip:t.req.ip||t.req.socket.remoteAddress,userAgent:t.headers["user-agent"],acceptLanguage:t.headers["accept-language"],referrer:t.headers.referer}});let{authToken:s}=await ce(o._id);return ke(t.res,s),{status:301,redirect:`${n}?status=verified`}}catch(r){let o=r instanceof Error?r.message:"An unexpected error occurred";return r instanceof Error&&(E().onEmailVerificationError?.({provider:"email",error:r,session:null,connectionInfo:{baseUrl:e,ip:t.req.ip||t.req.socket.remoteAddress,userAgent:t.headers["user-agent"],acceptLanguage:t.headers["accept-language"],referrer:t.headers.referer}}),console.error("Error verifying email:",r)),{status:301,redirect:`${n}?status=error&message=${encodeURIComponent(o)}`}}}async function lt({userId:t,email:e,baseUrl:n=a$1("_system.site.url")}){if(C().provider){let r=C().provider,o=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await F.insertOne({userId:t,email:e,token:o,createdAt:new Date,expiresAt:i});let s=`${n}/api/_internal/auth/verify-email?token=${o}`,c=(C()?.verification?.template||vn)({name:"",email:e,verificationUrl:s}),l=Re(c);await r?.sendEmail({to:e,from:C()?.from||"noreply@modelence.com",subject:C()?.verification?.subject||"Verify your email address",text:l,html:c});}}var ct={success:true,message:"If that email is registered and not yet verified, a verification email has been sent"};async function Tn(t,{connectionInfo:e}){let n=Z(t.email),r=await f.findOne({"emails.address":n,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!r)return ct;let o=r.emails?.find(i=>i.address.toLowerCase()===n);if(!o||o.verified)return ct;if(!C().provider)throw new Error("Email provider is not configured");return await I({bucket:"verification",type:"user",value:r._id.toString(),message:"Please wait at least 60 seconds before requesting another verification email"}),await lt({userId:r._id,email:n,baseUrl:e?.baseUrl}),ct}async function kn(t,{user:e,session:n,connectionInfo:r}){let o=E();try{let i=t,{firstName:s,lastName:a,avatarUrl:c,handle:l}=i,d=Z(i.email),p=Pe(i.password),u=r?.ip;if(u&&await I({bucket:"signupAttempt",type:"ip",value:u}),!o.allowDisposableEmails&&await an(d))throw new Error("Please use a permanent email address");let y=await f.findOne({"emails.address":d},{collation:{locale:"en",strength:2}});if(y){let A=y.emails?.find(V=>V.address.toLowerCase()===d);throw y.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${A?.address}`)}await o.onBeforeSignup?.({email:d,firstName:s,lastName:a,handle:l,provider:"email",connectionInfo:r}),u&&await I({bucket:"signup",type:"ip",value:u});let g=De({firstName:s,lastName:a,avatarUrl:c,handle:l});await o.validateSignup?.({email:d,password:p,...g});let S;if(g.handle)S=await J(g.handle,d);else if(o.generateHandle){let A=await o.generateHandle({email:d,firstName:g.firstName,lastName:g.lastName});S=await J(A,d,{throwOnConflict:!1});}else S=await J(void 0,d);let U=await qr.hash(p,10),R=await f.insertOne({handle:S,status:"active",emails:[{address:d,verified:!1}],createdAt:new Date,authMethods:{password:{hash:U}},...g.firstName!==void 0&&{firstName:g.firstName},...g.lastName!==void 0&&{lastName:g.lastName},...g.avatarUrl!==void 0&&{avatarUrl:g.avatarUrl}}),M=await f.findOne({_id:R.insertedId},{readPreference:"primary"});if(!M)throw new Error("User not found");return await lt({userId:R?.insertedId,email:d,baseUrl:r?.baseUrl}),o.onAfterSignup?.({provider:"email",user:M,session:n,connectionInfo:r}),o.signup?.onSuccess?.(M),R.insertedId}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:"email",error:i,session:n,connectionInfo:r}),o.signup?.onError?.(i)),i}}function Xr(t,e){return e?e.startsWith("http://")||e.startsWith("https://")?e:`${t}${e.startsWith("/")?"":"/"}${e}`:t}function eo({email:t,resetUrl:e}){return `
+    <p>Hi,</p>
+    <p>We received a request to reset your password for ${t}.</p>
+    <p>Click the link below to reset your password:</p>
+    <p><a href="${e}">${e}</a></p>
+    <p>This link will expire in 1 hour.</p>
+    <p>If you did not request this password reset, please ignore this email.</p>
+  `}var dt={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function An(t,{connectionInfo:e}){let n=Z(t.email),r=e?.ip;r&&await I({bucket:"passwordReset",type:"ip",value:r}),await I({bucket:"passwordReset",type:"email",value:n});let o=await f.findOne({"emails.address":n,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!o||!o.authMethods?.password)return dt;let i=C().provider;if(!i)throw new Error("Email provider is not configured");let s=randomBytes(32).toString("hex"),a$2=Date.now(),c=new Date(a$2),l=new Date(a$2+a.hours(1));await N.insertOne({userId:o._id,email:n,token:s,createdAt:c,expiresAt:l});let d=a$1("_system.site.url")||e?.baseUrl,u=`${Xr(d,C().passwordReset?.redirectUrl)}?token=${s}`,g=(C()?.passwordReset?.template||eo)({email:n,resetUrl:u,name:""}),S=Re(g);return await i.sendEmail({to:n,from:C()?.from||"noreply@modelence.com",subject:C()?.passwordReset?.subject||"Reset your password",text:S,html:g}),dt}async function On(t,{}){let e=z$1.string().parse(t.token),n=Pe(t.password),r=await N.findOne({token:e});if(!r)throw new Error("Invalid or expired reset token");if(r.expiresAt<new Date)throw await N.deleteOne({token:e}),new Error("Reset token has expired");let o=await f.findOne({_id:r.userId});if(!o)throw new Error("User not found");let i=await qr.hash(n,10);return await f.updateOne({_id:o._id},{$set:{"authMethods.password.hash":i}}),r.email&&await f.updateOne({_id:o._id,"emails.address":r.email},{$set:{"emails.$.verified":true}}),await Wt(o._id),await N.deleteOne({token:e}),{success:true,message:"Password has been reset successfully"}}function Rn(t){return `${t.bucket}
+${t.type}
+${t.window}`}function to(){return [{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.seconds(60),limit:1},{bucket:"verification",type:"user",window:a.days(1),limit:10},{bucket:"passwordReset",type:"ip",window:a.minutes(15),limit:10},{bucket:"passwordReset",type:"ip",window:a.days(1),limit:100},{bucket:"passwordReset",type:"email",window:a.hours(1),limit:5},{bucket:"passwordReset",type:"email",window:a.days(1),limit:10}]}function no(t){let e=[],n=["signup","signupAttempt","signin","verification","passwordReset"];for(let r of n){let o=t[r];if(o!==void 0)for(let i of o)e.push({bucket:r,...i});}return e}function ut(t={}){let e=to(),n=no(t),r=new Map;for(let s of n)r.set(Rn(s),s);let o=[],i=new Set;for(let s of e){let a=Rn(s),c=r.get(a);c!==void 0?(o.push(c),i.add(a)):o.push(s);}for(let[s,a]of r)i.has(s)||o.push(a);return o}var mt=new v("_system.user",{stores:[f,le,F,N],queries:{getOwnProfile:bn},mutations:{signupWithPassword:kn,loginWithPassword:yn,logout:wn,resendEmailVerification:Tn,sendResetPasswordToken:An,resetPassword:On,updateProfile:Sn,unlinkOAuthProvider:xn},cronJobs:{updateDisposableEmailList:cn},rateLimits:ut(),configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:En}}]});var ro={withoutRemoteServer:{MONGODB_URI:"_system.mongodbUri",MONGODB_POOL_SIZE:"_system.mongodbPoolSize",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV_TYPE:"_system.env.type",MODELENCE_MULTI_INSTANCE:"_system.multiInstance",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"},withRemoteServer:{MODELENCE_SITE_URL:"_system.site.url"}};function oo(t,e){if(e==="number"){let n=Number(t);if(isNaN(n))throw new Error(`Invalid number value for config: ${t}`);return n}if(e==="boolean"){if(t.toLowerCase()==="true")return  true;if(t.toLowerCase()==="false")return  false;throw new Error(`Invalid boolean value for config: ${t}`)}return t}function io(t,e){let n=[];for(let[r,o]of Object.entries(t)){let i=process.env[r],s=e[o];if(i){let a=s?.type??"string";n.push({key:o,type:a,value:oo(i,a)});}}return n}function Le(t,e="withoutRemoteServer"){let n=ro[e];return io(n,t)}async function _n({configSchema:t,cronJobsMetadata:e,stores:n,roles:r}){let o=process.env.MODELENCE_CONTAINER_ID;if(!o)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let i=(n??[]).map(a=>({name:a.getName(),schema:a.getSerializedSchema(),collections:[a.getName()],version:2,indexes:a.getIndexes(),searchIndexes:a.getSearchIndexes(),indexCreationMode:a.getIndexCreationMode()})),s=await D("/api/connect","POST",{hostname:so.hostname(),containerId:o,dataModels:i,configSchema:t,cronJobsMetadata:e,roles:r});if(s.status==="error")throw new Error(s.error);return console.log("Successfully connected to Modelence Cloud"),s}catch(i){throw console.error("Unable to connect to Modelence Cloud:",i),i}}async function In(){return D("/api/configs","GET")}async function Mn(){return await D("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function D(t,e,n){let{MODELENCE_SERVICE_ENDPOINT:r,MODELENCE_SERVICE_TOKEN:o}=process.env;if(!r)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let i=await fetch(`${r}${t}`,{method:e,headers:{Authorization:`Bearer ${o}`,...n?{"Content-Type":"application/json"}:{}},body:n?JSON.stringify(n):void 0});if(!i.ok){let s=await i.text(),a,c=s;try{a=JSON.parse(s);let d=a.error;if(typeof d=="string")c=d;else if(d&&typeof d=="object"){let p=d.message;typeof p=="string"&&(c=p);}}catch{}let l=new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${c}`);throw a!==void 0&&(l.responseBody=a),l.status=i.status,l}if(!(i.status===204||i.headers?.get("content-length")==="0"))return await i.json()}var pt=false,ao=a.seconds(10);function Dn(){setInterval(async()=>{if(!pt){pt=true;try{await Mn();}catch(t){console.error("Error syncing status",t);}try{await co();}catch(t){console.error("Error syncing config",t);}pt=false;}},ao);}function ft(t){c(t),c(Le(d$1(),"withRemoteServer"));}async function co(){let{configs:t}=await In();ft(t);}var Q=new T("_modelenceLocks",{schema:{_id:m.string(),instanceId:m.string(),acquiredAt:m.date(),resource:m.string()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}],indexCreationMode:"blocking"});var Y={},Pn=a.seconds(10),$n=randomBytes(32).toString("base64url"),mo=a.seconds(30),oe=new Map,ht=t=>t instanceof MongoError&&t.code===11e3,Nn=(t,e)=>typeof t.keyPattern=="object"&&t.keyPattern!==null&&Object.prototype.hasOwnProperty.call(t.keyPattern,e),po=async({error:t,resource:e})=>{if(Nn(t,"resource"))return  true;if(Nn(t,"_id"))return  false;let n=await Q.findOne({resource:e});return !!n&&n._id!==e},Ln=async({resource:t,staleThresholdDate:e,instanceId:n})=>{let r=await Q.upsertOne({_id:t,$or:[{instanceId:n},{acquiredAt:{$lt:e}}]},{$set:{resource:t,instanceId:n,acquiredAt:new Date},$setOnInsert:{_id:t}});return r.upsertedCount>0||r.modifiedCount>0},jn=async({resource:t,instanceId:e,staleThresholdDate:n})=>{let r=n?{resource:t,_id:{$ne:t},$or:[{instanceId:e},{acquiredAt:{$lt:n}}]}:{resource:t,instanceId:e};return (await Q.deleteOne(r)).deletedCount>0},fo=t=>{let e=t,n=oe.get(e);n&&(n.stopRequested=true,n.timer&&(clearTimeout(n.timer),n.timer=null),oe.delete(e));},Un=({resource:t,lockDuration:e,instanceId:n})=>{let r=Math.floor(e/3),o=t,i$1=oe.get(o);if(i$1&&!i$1.stopRequested&&i$1.heartbeatInterval===r&&i$1.lockDuration===e)return;i$1&&(i$1.stopRequested=true,i$1.timer&&(clearTimeout(i$1.timer),i$1.timer=null),oe.delete(o));let s={timer:null,stopRequested:false,lockDuration:e,heartbeatInterval:r},a=()=>{s.timer=setTimeout(()=>{X(t,{lockDuration:e,bypassCache:true,instanceId:n}).then(c=>{c||(s.stopRequested=true,i(`Lost lock while refreshing heartbeat: ${t}`,{source:"lock",resource:t,instanceId:n}));}).finally(()=>{if(s.stopRequested){oe.delete(o);return}a();});},r);};oe.set(o,s),a();};async function X(t,{lockDuration:e=mo,successfulLockCacheDuration:n=Pn,failedLockCacheDuration:r=Pn,heartbeat:o,bypassCache:i$1,instanceId:s=$n}={}){let a=Date.now();if(!i$1&&Y[t]&&a<Y[t].expiresAt)return Y[t].value&&o&&Un({resource:t,lockDuration:e,instanceId:s}),Y[t].value;let c=new Date(a-e);i(`Attempting to acquire lock: ${t}`,{source:"lock",resource:t,instanceId:s});try{let l=await ho({resource:t,staleThresholdDate:c,instanceId:s});return Y[t]={value:l,expiresAt:a+(l?n:r)},l?(o&&Un({resource:t,lockDuration:e,instanceId:s}),i(`Lock acquired: ${t}`,{source:"lock",resource:t,instanceId:s})):i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),l}catch{return Y[t]={value:false,expiresAt:a+r},i(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:s}),false}}var ho=async({resource:t,staleThresholdDate:e,instanceId:n})=>{try{return await Ln({resource:t,staleThresholdDate:e,instanceId:n})}catch(r){if(ht(r)&&await po({error:r,resource:t})){if(!await jn({resource:t,staleThresholdDate:e,instanceId:n}))return  false;try{return await Ln({resource:t,staleThresholdDate:e,instanceId:n})}catch(i){if(ht(i))return  false;throw i}}if(ht(r))return  false;throw r}};async function he(t,{instanceId:e=$n}={}){fo(t);try{let n=await Q.deleteOne({_id:t,instanceId:e});return n.deletedCount===0?await jn({resource:t,instanceId:e}):n.deletedCount>0}catch{return  false}finally{delete Y[t];}}var ee={},gt=null,yt=new T("_modelenceCronJobs",{schema:{alias:m.string(),lastStartDate:m.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function zn(t,{description:e="",interval:n,timeout:r=Math.min(Math.max(n,a.minutes(1)),a.days(1)),handler:o}){if(ee[t])throw new Error(`Duplicate cron job declaration: '${t}' already exists`);if(gt)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${t}]`);if(n<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${t}]`);if(r>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${t}]`);ee[t]={alias:t,params:{description:e,interval:n,timeout:r},handler:o,state:{isRunning:false}};}async function qn(){if(gt)throw new Error("Cron jobs already started");let t=Object.keys(ee);if(t.length>0){let e={alias:{$in:t}},n=await yt.fetch(e),r=Date.now();n.forEach(o=>{let i=ee[o.alias];i&&(i.state.scheduledRunTs=o.lastStartDate?o.lastStartDate.getTime()+i.params.interval:r);}),Object.values(ee).forEach(o=>{o.state.scheduledRunTs||(o.state.scheduledRunTs=r);}),gt=setInterval(go,a.seconds(1));}}async function go(){let t=Date.now();await X("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(ee).forEach(async n=>{let{params:r,state:o}=n;if(o.isRunning){o.startTs&&o.startTs+r.timeout<t&&(o.isRunning=false);return}o.scheduledRunTs&&o.scheduledRunTs<=t&&await yo(n);});}async function yo(t){let{alias:e,params:n,handler:r,state:o}=t;o.isRunning=true,o.startTs=Date.now(),await yt.updateOne({alias:e},{$set:{lastStartDate:new Date(o.startTs)}});let i=l("cron",`cron:${e}`);try{await r(),Fn(o,n),i.end("success");}catch(s){Fn(o,n);let a=s instanceof Error?s:new Error(String(s));m$1(a),i.end("error"),console.error(`Error in cron job '${e}':`,s);}}function Fn(t,e){t.scheduledRunTs=t.startTs?t.startTs+e.interval:Date.now(),t.startTs=void 0,t.isRunning=false;}function Zn(){return Object.values(ee).map(({alias:t,params:e})=>({alias:t,description:e.description,interval:e.interval,timeout:e.timeout}))}var Hn=new v("_system.cron",{stores:[yt]});function Wn(t){let e=[...new Set(t)],n=new Map;for(let i of e){let s=i.getChainRoot();n.set(s,s.getChainTail());}let r=[...new Set(n.values())],o=new Map;for(let[i,s]of n){let a=s.getName(),c=o.get(a);if(c!==void 0&&c!==i)throw new Error(`Store collision: multiple unrelated stores use collection name '${a}'. Use .extend() to create a single extension chain instead of independent stores.`);o.set(a,i);}return {storesToInit:e,effectiveStores:r}}var wt=new v("_system.lock",{stores:[Q]});var ge=new T("_modelenceMigrations",{schema:{version:m.number(),status:m.enum(["completed","failed"]),description:m.string().optional(),output:m.string().optional(),appliedAt:m.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function bt(t,{lockMode:e="acquire"}={}){if(t.length!==0){if(e==="acquire"&&!await X("migrations")){j$1("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}try{let n=t.map(({version:s})=>s),r=await ge.fetch({version:{$in:n}}),o=new Set(r.map(({version:s})=>s)),i=t.filter(({version:s})=>!o.has(s));if(i.length===0)return;j$1(`Running migrations (${i.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i){j$1(`Running migration v${s}: ${a}`,{source:"migrations"});try{let d=(await c()||"").toString().trim(),p=15*1024*1024,u=d.length>p?d.slice(0,p)+`
+[Output truncated - exceeded size limit]`:d;await ge.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:u,appliedAt:new Date}}),j$1(`Migration v${s} complete`,{source:"migrations"});}catch(l){l instanceof Error&&(await ge.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:l.message||"",appliedAt:new Date}}),j$1(`Migration v${s} is failed: ${l.message}`,{source:"migrations"}));}}}finally{e==="acquire"&&await he("migrations");}}}function Vn(t){setTimeout(()=>{bt(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var Bn=new v("_system.migration",{stores:[ge]});var Gn=new v("_system.rateLimit",{stores:[fe]});async function Kn({filePath:t,contentType:e,visibility:n}){return await D("/api/files/upload","POST",{filePath:t,contentType:e,visibility:n})}async function Jn(t){await D("/api/files/delete","POST",{filePath:t});}async function Qn(t){return await D("/api/files/download","POST",{filePath:t})}async function Yn(t){return await D("/api/files/url","POST",{filePath:t})}var Xn=new v("_system.files",{queries:{async downloadFile({filePath:t}){return Qn(t)},async getFileUrl({filePath:t}){return Yn(t)}},mutations:{async getUploadUrl({filePath:t,contentType:e,visibility:n}){return Kn({filePath:t,contentType:e,visibility:n})},async deleteFile({filePath:t}){return Jn(t)}}});var xt=class{async init({httpServer:e}){this.config=await ko(this.isDev()?e:void 0),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[W.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(W.static(this.config.publicDir)),e}handler(e,n){if(this.isDev())try{n.setHeader("Cache-Control","no-store"),n.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),n.status(500).send("Internal Server Error");}else n.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function Eo(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function To(t,e){let n=mergeConfig(t,e);if(n.plugins&&Array.isArray(n.plugins)){let r=new Set;n.plugins=n.plugins.flat().filter(o=>{if(!o||typeof o!="object"||Array.isArray(o))return  true;let i=o.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),n.plugins.reverse();}return n}async function ko(t){let e=process.cwd(),n=await Eo(),r=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(s=>vo.existsSync(St.join(e,s))),o=[Co(),Ao()];if(r){let s=(await import('vite-plugin-eslint')).default;o.push(s({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:St.resolve(e,r)}));}let i=defineConfig({plugins:o,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true,hmr:t?{server:t}:void 0},root:"./src/client",resolve:{alias:{"@":St.resolve(e,"src").replace(/\\/g,"/")}}});return To(i,n)}function Ao(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var tr=new xt;async function Ue(t){if(!t||typeof t!="string")return null;let e=await P.findOne({authToken:t});return e?.userId?String(e.userId):null}function b(t,e,n){let r=E(),o=t.status(e);if(r.errorComponent)try{let i=r.errorComponent({error:n,statusCode:e});if(i)return o.send(i)}catch(i){console.error("Unhandled error in authConfig.errorComponent:",i);}return o.json({error:n})}async function Ct(t,e){let{authToken:n}=await ce(e);ke(t,n),t.status(302),t.redirect("/");}async function Ro(t,e,n,r,o){let i=E();try{if(n.status==="disabled"||n.status==="deleted"){b(t,400,"User account is not active.");return}let s={};n.firstName===void 0&&e.firstName&&(s.firstName=e.firstName),n.lastName===void 0&&e.lastName&&(s.lastName=e.lastName),n.avatarUrl===void 0&&e.avatarUrl&&(s.avatarUrl=e.avatarUrl);let a=n;Object.keys(s).length>0&&(await f.updateOne({_id:n._id},{$set:s}),a={...n,...s}),await Ct(t,n._id),i.onAfterLogin?.({provider:e.providerName,user:a,session:r,connectionInfo:o}),i.login?.onSuccess?.(a);}catch(s){throw s instanceof Error&&(i.login?.onError?.(s),i.onLoginError?.({provider:e.providerName,error:s,session:r,connectionInfo:o})),s}}async function _o(t,e,n,r,o){let i=E();if((i.oauthAccountLinking??"manual")==="auto"&&e.emailVerified){if(n.status==="disabled"||n.status==="deleted"){b(t,400,"User account is not active.");return}if(!n.emails?.find(c=>c.address.toLowerCase()===e.email.toLowerCase())?.verified){b(t,400,"User with this email already exists. Please log in instead.");return}try{let c={...n.firstName===void 0&&e.firstName&&{firstName:e.firstName},...n.lastName===void 0&&e.lastName&&{lastName:e.lastName},...n.avatarUrl===void 0&&e.avatarUrl&&{avatarUrl:e.avatarUrl}};if(!((await f.updateOne({_id:n._id,status:{$nin:["deleted","disabled"]},$or:[{[`authMethods.${e.providerName}.id`]:{$exists:!1}},{[`authMethods.${e.providerName}.id`]:e.id}]},{$set:{[`authMethods.${e.providerName}.id`]:e.id,...c}})).matchedCount>0)){b(t,400,"User with this email already exists. Please log in instead.");return}await Ct(t,n._id);let p={...n,...c,authMethods:{...n.authMethods,[e.providerName]:{id:e.id}}};i.onAfterLogin?.({provider:e.providerName,user:p,session:r,connectionInfo:o}),i.login?.onSuccess?.(p);return}catch(c){throw c instanceof Error&&(i.login?.onError?.(c),i.onLoginError?.({provider:e.providerName,error:c,session:r,connectionInfo:o})),c}}b(t,400,"User with this email already exists. Please log in instead.");}async function Io(t,e,n,r){let o=E();try{let i;if(o.generateHandle){let l=await o.generateHandle({email:e.email,firstName:e.firstName,lastName:e.lastName});i=await J(l,e.email,{throwOnConflict:!1});}else i=await J(void 0,e.email);let s={handle:i,status:"active",emails:[{address:e.email,verified:e.emailVerified}],createdAt:new Date,authMethods:{[e.providerName]:{id:e.id}},...e.firstName!==void 0&&{firstName:e.firstName},...e.lastName!==void 0&&{lastName:e.lastName},...e.avatarUrl!==void 0&&{avatarUrl:e.avatarUrl}},a=await f.insertOne(s);await Ct(t,a.insertedId);let c=await f.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(o.onAfterSignup?.({provider:e.providerName,user:c,session:n,connectionInfo:r}),o.signup?.onSuccess?.(c));}catch(i){throw i instanceof Error&&(o.onSignupError?.({provider:e.providerName,error:i,session:n,connectionInfo:r}),o.signup?.onError?.(i)),i}}function se(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function $e(t,e,n){let r=await f.findOne({[`authMethods.${n.providerName}.id`]:n.id}),{session:o,connectionInfo:i}=await ye(t,e);if(r)return Ro(e,n,r,o,i);if(!n.email){b(e,400,`Email address is required for ${n.providerName} authentication.`);return}let s;try{s=await f.findOne({"emails.address":n.email,status:{$ne:"deleted"}},{collation:{locale:"en",strength:2}});}catch(a){if(a instanceof Error){let c=E();c.onSignupError?.({provider:n.providerName,error:a,session:o,connectionInfo:i}),c.signup?.onError?.(a);}throw a}return s?_o(e,n,s,o,i):Io(e,n,o,i)}function O(t){t.cookie("oauthLinkToken","",{httpOnly:true,maxAge:0,path:"/api/_internal/auth/",sameSite:"lax",secure:process.env.NODE_ENV==="production"});}function ie(t){if(t)try{t();}catch(e){console.error("Error executing OAuth hook:",e);}}function je(t,e,n){let r=t.query.state,o=t.cookies[n],[i,s,a]=(o||"").split(":");return !r||!o||r!==i?(b(e,400,"Invalid OAuth state - possible CSRF attack"),null):(e.clearCookie(n),{mode:s||"login",...a?{linkedUserId:a}:{}})}async function Fe(t,e,n,r){let o=E(),{session:i,connectionInfo:s}=await ye(t,e),a=i?.userId??null;if(!a&&r){if(!ObjectId.isValid(r)){O(e),b(e,400,"Invalid OAuth linking state.");return}a=new ObjectId(r);}if(!a){O(e),b(e,401,"You must be signed in to link a provider.");return}let c=a;try{let l=`authMethods.${n.providerName}.id`;if((await f.updateOne({_id:c,status:{$nin:["deleted","disabled"]},$or:[{[l]:{$exists:!1}},{[l]:n.id}]},{$set:{[l]:n.id}})).matchedCount===0){let u=await f.findOne({_id:c});if(!u||u.status==="deleted"||u.status==="disabled"){ie(()=>o.onOAuthLinkError?.({provider:n.providerName,error:new Error("User account not found or not active"),session:i,connectionInfo:s})),O(e),b(e,400,"User account is not active.");return}let y=u?.authMethods?.[n.providerName]?.id;if(y&&y!==n.id){ie(()=>o.onOAuthLinkError?.({provider:n.providerName,error:new Error(`User already has a different ${n.providerName} account linked`),session:i,connectionInfo:s})),O(e),b(e,400,`You have already linked a different ${n.providerName} account.`);return}ie(()=>o.onOAuthLinkError?.({provider:n.providerName,error:new Error(`Unexpected OAuth linking state for ${n.providerName}`),session:i,connectionInfo:s})),O(e),b(e,400,`Unable to link ${n.providerName} account.`);return}let p=await f.findOne({_id:c},{readPreference:"primary"});p&&ie(()=>o.onAfterOAuthLink?.({provider:n.providerName,user:p,session:i,connectionInfo:s})),O(e),e.status(302).redirect("/");}catch(l){if(l instanceof MongoServerError&&l.code===11e3){ie(()=>o.onOAuthLinkError?.({provider:n.providerName,error:l,session:i,connectionInfo:s})),O(e),b(e,400,`This ${n.providerName} account is already linked to a different user.`);return}if(l instanceof Error&&ie(()=>o.onOAuthLinkError?.({provider:n.providerName,error:l,session:i,connectionInfo:s})),O(e),!e.headersSent)throw l}}function ze(t){return !t||typeof t!="string"?null:t}async function Po(t,e,n,r){let o=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:n,redirect_uri:r,grant_type:"authorization_code"})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function No(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Lo(t,e){let n=ze(t.query.code);if(!n){b(e,400,"Missing authorization code");return}let r=je(t,e,"authStateGoogle");if(!r)return;let{mode:o,linkedUserId:i}=r,s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret")),c=se("google");try{let l=await Po(n,s,a,c),d=await No(l.access_token),p={id:d.id,email:d.email,emailVerified:d.verified_email,providerName:"google",firstName:d.given_name||void 0,lastName:d.family_name||void 0,avatarUrl:d.picture||void 0};o==="link"?await Fe(t,e,p,i):await $e(t,e,p);}catch(l){console.error("Google OAuth error:",l),o==="link"&&O(e),b(e,500,"Authentication failed");}}function Uo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){b(r,503,"Google authentication is not configured");return}o();};return t.get("/api/_internal/auth/google",e,async(n,r)=>{let o=String(a$1("_system.user.auth.google.clientId")),i=se("google"),s=randomBytes(32).toString("hex"),a$2=n.query.mode==="link"?"link":"login",c=null;if(a$2==="link"&&n.query.authToken&&(c=await Ue(n.query.authToken),!c)){b(r,401,"Invalid or expired auth token for OAuth linking.");return}let l=c?`${s}:${a$2}:${c}`:`${s}:${a$2}`;r.cookie("authStateGoogle",l,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let d=new URL("https://accounts.google.com/o/oauth2/v2/auth");d.searchParams.append("client_id",o),d.searchParams.append("redirect_uri",i),d.searchParams.append("response_type","code"),d.searchParams.append("scope","profile email"),d.searchParams.append("access_type","online"),d.searchParams.append("state",s),r.redirect(d.toString());}),t.get("/api/_internal/auth/google/callback",e,Lo),t}var rr=Uo;async function Fo(t,e,n,r){let o=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:n,code:t,redirect_uri:r})});if(!o.ok)throw new Error(`Failed to exchange code for token: ${o.statusText}`);return o.json()}async function zo(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function qo(t){let e=await fetch("https://api.github.com/user/emails",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user emails: ${e.statusText}`);return e.json()}async function Zo(t,e){return t.email?t.email:(await qo(e)).find(r=>r.primary&&r.verified)?.email??null}async function Ho(t,e){let n=ze(t.query.code);if(!n){b(e,400,"Missing authorization code");return}let r=je(t,e,"authStateGithub");if(!r)return;let{mode:o,linkedUserId:i}=r,s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret")),c=se("github");try{let l=await Fo(n,s,a,c),d=await zo(l.access_token),p=await Zo(d,l.access_token);if(!p){o==="link"&&O(e),b(e,400,"Unable to retrieve a primary verified email from GitHub. Please ensure your GitHub account has a verified email set as primary.");return}let u=d.name?d.name.trim().split(/\s+/):[],y=u[0]||void 0,g=u.length>1?u.slice(1).join(" "):void 0,S={id:String(d.id),email:p,emailVerified:!0,providerName:"github",firstName:y,lastName:g,avatarUrl:d.avatar_url||void 0};o==="link"?await Fe(t,e,S,i):await $e(t,e,S);}catch(l){console.error("GitHub OAuth error:",l),o==="link"&&O(e),b(e,500,"Authentication failed");}}function Wo(){let t=Router(),e=(n,r,o)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){b(r,503,"GitHub authentication is not configured");return}o();};return t.get("/api/_internal/auth/github",e,async(n,r)=>{let o=String(a$1("_system.user.auth.github.clientId")),i=se("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(y=>y.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex"),l=n.query.mode==="link"?"link":"login",d=null;if(l==="link"&&n.query.authToken&&(d=await Ue(n.query.authToken),!d)){b(r,401,"Invalid or expired auth token for OAuth linking.");return}let p=d?`${c}:${l}:${d}`:`${c}:${l}`;r.cookie("authStateGithub",p,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let u=new URL("https://github.com/login/oauth/authorize");u.searchParams.append("client_id",o),u.searchParams.append("redirect_uri",i),u.searchParams.append("scope",a$2),u.searchParams.append("state",c),r.redirect(u.toString());}),t.get("/api/_internal/auth/github/callback",e,Ho),t}var or=Wo;function ir(t,e,n){return async(r,o,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&G())try{let{session:l,user:d}=await L(s);a={session:l,user:d};}catch{}let c=l("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:r.query,body:r.body,params:r.params});try{let l=await n({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:o,next:i},a);c.end(),l&&(o.status(l.status||200),l.redirect&&o.redirect(l.redirect),l.headers&&Object.entries(l.headers).forEach(([d,p])=>{o.setHeader(d,p);}),o.send(l.data));}catch(l){c.end("error"),l instanceof a$3?o.status(l.status).send(l.message):(console.error(`Error in route handler: ${r.path}`),console.error(l),o.status(500).send(String(l)));}}}var vt=Object.freeze({});function sr(t){vt=Object.freeze(Object.assign({},vt,t));}function ar(){return vt}var Et=Object.freeze({});function cr(t){Et=Object.freeze(Object.assign({},Et,t));}function qe(){return Et}function Go(t){let e=[];if(!t)return e.push(W.json({limit:"16mb"})),e.push(W.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let n=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(W.json(n));}if(t.urlencoded!==false){let n=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(W.urlencoded(n));}if(t.raw){let n=typeof t.raw=="object"?t.raw:{},r={limit:n.limit||"16mb",type:n.type||"*/*"};e.push(W.raw(r));}return e}function Ko(t,e){for(let n of e)for(let r of n.routes){let{path:o,handlers:i,body:s}=r,a=Go(s);Object.entries(i).forEach(([c,l])=>{t[c](o,...a,ir(c,o,l));});}}async function lr(t,{combinedModules:e,channels:n}){let r=W();r.use(Vo()),r.use(Yo()),Ko(r,e),r.use(W.json({limit:"16mb"})),r.use(W.urlencoded({extended:true,limit:"16mb"})),r.use(rr()),r.use(or()),r.post("/api/_internal/auth/set-link-cookie",async(a,c)=>{let{session:l}=await ye(a,c);if(!l?.userId){c.status(401).json({error:"Not authenticated"});return}c.cookie("oauthLinkToken",l.authToken,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",path:"/api/_internal/auth/",maxAge:10*60*1e3}),c.json({ok:true});}),r.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let l=a.params.methodName,d=await ye(a,c);try{let p=a$2(await nn(l,a.body.args,d));c.json({data:p,typeMap:b$2(p)});}catch(p){Jo(c,l,p);}});let o=Bo.createServer(r);await t.init({httpServer:o}),t.middlewares&&r.use(t.middlewares()),r.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let i=qe()?.provider;i&&i.init({httpServer:o,channels:n});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;o.listen(s,()=>{j$1("Application started",{source:"app"});let a=a$1("_system.site.url")||`http://localhost:${s}`;console.log(`
+Application started on ${a}
+`);});}async function ye(t,e){let n=(t.path??t.url??"").split("?")[0],r=n.startsWith("/api/_internal/auth/")&&n.endsWith("/callback"),o=H.string().nullish().transform(c=>c??null).parse(t.cookies.authToken||(r?t.cookies.oauthLinkToken:null)||t.body.authToken),i=H.object({screenWidth:H.number(),screenHeight:H.number(),windowWidth:H.number(),windowHeight:H.number(),pixelRatio:H.number(),orientation:H.string().nullable()}).nullish().parse(t.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},s={ip:Xo(t),userAgent:t.get("user-agent"),acceptLanguage:t.get("accept-language"),referrer:t.get("referrer"),baseUrl:t.protocol+"://"+t.get("host")};if(!!G()){let{session:c,user:l,roles:d}=await L(o);return {clientInfo:i,connectionInfo:s,session:c,user:l,roles:d,req:t,res:e}}return {clientInfo:i,connectionInfo:s,session:null,user:null,roles:Ae(),req:t,res:e}}function Jo(t,e,n){if(n instanceof a$3){n.status>=500&&n.status<600&&console.error(`Error calling ${e}:`,n),t.status(n.status).send(n.message);return}if(n instanceof Error&&n?.constructor?.name==="ZodError"&&"errors"in n){let r="";try{r=Qo(n);}catch(o){console.error(`Error parsing Zod error in ${e}:`,o),r="Validation failed";}t.status(400).send(r);return}console.error(`Error calling ${e}:`,n),t.status(500).send(n instanceof Error?n.message:String(n));}function Qo(t){let e=t.flatten(),n=Object.entries(e.fieldErrors).map(([i,s])=>`${i}: ${(s??[]).join(", ")}`),r=e.formErrors;return [...n,...r].filter(Boolean).join("; ")}function Yo(){let{frameAncestors:t}=ar(),e=t&&t.length>0,n=e?["'self'",...t].join(" "):"'self'";return (r,o,i)=>{o.setHeader("Content-Security-Policy",`frame-ancestors ${n}`),e||o.setHeader("X-Frame-Options","SAMEORIGIN"),i();}}function Xo(t){let e=t.headers["x-forwarded-for"];if(e)return (Array.isArray(e)?e[0]:e.split(",")[0]).trim();let n=t.ip||t.socket?.remoteAddress;if(n)return n.startsWith("::ffff:")?n.substring(7):n}function ei(t){return t?t.match(/^\s*"?([^"<]+?)"?\s*<[^>]+>\s*$/)?.[1]?.trim():void 0}function ti(t){if(t)return Array.isArray(t)?t:[t]}function ni(t){return {to:Array.isArray(t.to)?t.to:[t.to],subject:t.subject,html:t.html,text:t.text,fromName:ei(t.from),replyTo:ti(t.replyTo)}}function ri(t){if(!(t instanceof Error))return new Error("Managed email send failed");let e=t.responseBody,n=e?.error?.code,r=e?.error?.message;return n&&r?new Error(`Managed email rejected (${n}): ${r}`):t}var dr={async sendEmail(t){if(t.cc||t.bcc||t.attachments||t.headers)throw new Error("Modelence managed email does not support cc, bcc, attachments, or custom headers in v1. Configure your own provider (Resend, SES, SMTP) to use these features. See https://docs.modelence.com/email/managed.");try{await D("/api/email/send","POST",ni(t));}catch(e){throw ri(e)}}};async function ai({modules:t=[],roles:e$1={},defaultRoles:n={},server:r=tr,migrations:o=[],email:i={},auth:s={},security:a={},websocket:c$1={}}){ur.config(),ur.config({path:".modelence.env"});let l=!!process.env.MODELENCE_SERVICE_ENDPOINT;wi().then(()=>{}).catch(()=>{});let d=[mt,Vt,Hn,Bn,Gn,de,wt,Xn],p=[...d,...t];f$1(),li(d),ci(t),Gt(e$1,n);let u=hi(p);e(u);let y=di(p),g$1=ui(p);gi(p),mt.rateLimits=ut(s.rateLimits);let S=mi(p);Cn(S);let{storesToInit:U,effectiveStores:R}=Wn(y);if(l){let{configs:A,environmentId:V,appAlias:_,environmentAlias:pr,telemetry:fr}=await _n({configSchema:u,cronJobsMetadata:Zn(),stores:R,roles:e$1});ft(A),g({environmentId:V,appAlias:_,environmentAlias:pr,telemetry:fr});}else c(Le(u));if(l&&!i.provider?ot({...i,provider:dr}):ot(i),hn(s),sr(a),cr({...c$1,provider:c$1.provider||sn}),G()){await Jt();let A=[...new Set([...U,...R])];yi(A),await fi(R,o);}else Vn(o);l&&(await h(),Dn()),qn().catch(console.error),await lr(r,{combinedModules:p,channels:g$1});}function ci(t){for(let e of t){for(let[n,r]of Object.entries(e.queries))Ye(`${e.name}.${n}`,r);for(let[n,r]of Object.entries(e.mutations))Qt(`${e.name}.${n}`,r);}}function li(t){for(let e of t){for(let[n,r]of Object.entries(e.queries))Yt(`${e.name}.${n}`,r);for(let[n,r]of Object.entries(e.mutations))Xt(`${e.name}.${n}`,r);}}function di(t){return t.flatMap(e=>e.stores)}function ui(t){return t.flatMap(e=>e.channels)}function mi(t){return t.flatMap(e=>e.rateLimits)}function pi(t,e){console.warn(`Failed to create indexes for store '${t}'. Continuing startup.`,e);}var Tt="migrations";async function fi(t,e){if(!await X(Tt,{lockDuration:a.seconds(30),heartbeat:true}))return;let r,o;try{r=t.filter(a=>a.getIndexCreationMode()==="blocking"),o=t.filter(a=>a.getIndexCreationMode()==="background");for(let a of r)await kt(a,"full");for(let a of o)await kt(a,"drop-only");}catch(a){throw await he(Tt),a}let i=(async()=>{for(let a of o)await kt(a,"create-only");})(),s=bt(e,{lockMode:"skip"});Promise.allSettled([i,s]).then(([a,c])=>{a.status==="rejected"&&console.error("Error creating background indexes:",a.reason),c.status==="rejected"&&console.error("Error running migrations:",c.reason);}).finally(async()=>{await he(Tt);});}async function kt(t,e="full"){let n=t.getName();try{await t.createIndexes(e);}catch(r){pi(n,r);}}function hi(t){let e={};for(let n of t)for(let[r,o]of Object.entries(n.configSchema)){let i=`${n.name}.${r}`;if(i in e)throw new Error(`Duplicate config schema key: ${i} (${n.name})`);e[i]=o;}return e}function gi(t){for(let e of t)for(let[n,r]of Object.entries(e.cronJobs))zn(`${e.name}.${n}`,r);}function yi(t){let e=Oe();if(!e)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let n of t)n.init(e);}async function wi(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let e=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",n=process.env.MODELENCE_ENVIRONMENT_ID,r=await bi(),o=await import('./package-G6SV6T7V.js');await fetch(`${e}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:r.name,version:o.default.version,localHostname:so.hostname(),environmentId:n})});}}async function bi(){try{let t=St.join(process.cwd(),"package.json"),e=await oi.readFile(t,"utf-8");return {name:JSON.parse(e).name||"unknown"}}catch{return {name:"unknown"}}}async function mr(t){await F.deleteMany({userId:t}),await N.deleteMany({userId:t});}async function xi(t){await mr(t),await f.updateOne(t,{$set:{status:"disabled",disabledAt:new Date}});}async function Ci(t){await mr(t),await f.updateOne({_id:t},{$set:{handle:`deleted-${t}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var At=class{constructor(e,n){this.category=e,this.canAccessChannel=n||null;}broadcast(e,n){let r=qe().provider;if(!r){k("Websockets provider should be added to startApp",{});return}r.broadcast({category:this.category,id:e,data:n});}};function vi(t){if(!C().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return C().provider?.sendEmail(t)}
+export{re as LiveData,v as Module,At as ServerChannel,T as Store,L as authenticate,I as consumeRateLimit,Ye as createQuery,f as dbUsers,Jn as deleteFile,Ci as deleteUser,xi as disableUser,Qn as downloadFile,Yn as getFileUrl,Kn as getUploadUrl,m as schema,vi as sendEmail,ai as startApp};//# sourceMappingURL=server.js.map
 //# sourceMappingURL=server.js.map