modelence 0.7.2 → 0.9.0-dev.0

package/dist/server.js

@@ -1,19 +1,16 @@
-import {a as a$2}from'./chunk-3S2FFBNS.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {b as b$1,e,d as d$1,c,f,g,j,a as a$1,i,k as k$1,h,l as l$1}from'./chunk-PB6WQQ4L.js';export{a as getConfig}from'./chunk-PB6WQQ4L.js';import qt from'dotenv';import an from'fs/promises';import To from'os';import ve from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import k,{z as z$1}from'zod';import fo from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import $o from'@vitejs/plugin-react';import Lo from'fs';import O,{Router}from'express';import tn from'cookie-parser';import on from'http';var S=class{constructor(e,{stores:o=[],queries:n={},mutations:r={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:d=[]}){this.name=e,this.stores=o,this.queries=n,this.mutations=r,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=d;}};function v(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:v(e.type)};if(e.typeName==="ZodObject"){let n=e.shape(),r={};for(let[i,s]of Object.entries(n))r[i]=v(s);return {type:"object",items:r}}if(e.typeName==="ZodOptional")return {...v(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...v(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(v)};if(e.typeName==="ZodEffects"){let o=e;return o.description?{type:"custom",typeName:o.description}:v(o.schema)}return {type:"custom",typeName:e.typeName}}function Y(t){let e={};for(let[o,n]of Object.entries(t))Array.isArray(n)?e[o]=n.map(r=>typeof r=="object"&&"_def"in r?v(r):Y(r)):typeof n=="object"&&"_def"in n?e[o]=v(n):e[o]=Y(n);return e}var w=class t{constructor(e,o){this.name=e,this.schema=o.schema,this.methods=o.methods,this.indexes=o.indexes,this.searchIndexes=o.searchIndexes||[];}getName(){return this.name}getSchema(){return this.schema}getSerializedSchema(){return Y(this.schema)}extend(e){let o={...this.schema,...e.schema||{}},n=[...this.indexes,...e.indexes||[]],r=[...this.searchIndexes,...e.searchIndexes||[]],i={...this.methods||{},...e.methods||{}},s=new t(this.name,{schema:o,methods:i,indexes:n,searchIndexes:r});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(){if(this.indexes.length>0)for(let e of this.indexes)try{await this.requireCollection().createIndexes([e]);}catch(o){if(o instanceof MongoError&&o.code===86&&e.name)await this.requireCollection().dropIndex(e.name),await this.requireCollection().createIndexes([e]);else throw o}if(this.searchIndexes.length>0)for(let e of this.searchIndexes)try{await this.requireCollection().createSearchIndexes([e]);}catch(o){if(o instanceof MongoError&&o.code===68&&e.name)await this.requireCollection().dropSearchIndex(e.name),await this.requireCollection().createSearchIndexes([e]);else throw o}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,o){let n=await this.requireCollection().findOne(e,o);return n?this.wrapDocument(n):null}async requireOne(e,o,n){let r=await this.findOne(e,o);if(!r)throw n?n():new Error(`Record not found in ${this.name}`);return r}find(e,o){let n=this.requireCollection().find(e);return o?.sort&&n.sort(o.sort),o?.limit&&n.limit(o.limit),o?.skip&&n.skip(o.skip),n}async findById(e){let o=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(o)}async requireById(e,o){let n=await this.findById(e);if(!n)throw o?o():new Error(`Record with id ${e} not found in ${this.name}`);return n}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,o){return (await this.find(e,o).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e){return await this.requireCollection().insertOne(e)}async insertMany(e){return await this.requireCollection().insertMany(e)}async updateOne(e,o){return await this.requireCollection().updateOne(this.getSelector(e),o)}async upsertOne(e,o){return await this.requireCollection().updateOne(this.getSelector(e),o,{upsert:true})}async updateMany(e,o,n){return await this.requireCollection().updateMany(e,o,n)}async upsertMany(e,o){return await this.requireCollection().updateMany(e,o,{upsert:true})}async deleteOne(e){return await this.requireCollection().deleteOne(e)}async deleteMany(e){return await this.requireCollection().deleteMany(e)}aggregate(e,o){return this.requireCollection().aggregate(e,o)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,o){let n=this.getDatabase();if(!this.collection||!n)throw new Error(`Store ${this.name} is not provisioned`);if((await n.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await n.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await n.collection(e).rename(this.name,o);}async vectorSearch({field:e,embedding:o,numCandidates:n,limit:r,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:o,numCandidates:n||100,limit:r||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:o,similarity:n="cosine",indexName:r}){return {type:"vectorSearch",name:r||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:o,similarity:n}]}}}};var Gt=z$1.string.bind(z$1),Ht=z$1.number.bind(z$1),Vt=z$1.date.bind(z$1),Kt=z$1.boolean.bind(z$1),Qt=z$1.array.bind(z$1),Yt=z$1.object.bind(z$1),Xt=z$1.enum.bind(z$1),l={string:Gt,number:Ht,date:Vt,boolean:Kt,array:Qt,object:Yt,enum:Xt,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(t){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(t){return {}}};var U=new w("_modelenceSessions",{schema:{authToken:l.string(),createdAt:l.date(),expiresAt:l.date(),userId:l.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function ze(t){let e=t?await U.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await pe()}async function Fe(t,e){await U.updateOne({authToken:t},{$set:{userId:e}});}async function qe(t){await U.updateOne({authToken:t},{$set:{userId:null}});}async function pe(t=null){let e=randomBytes(32).toString("base64url"),o=Date.now(),n=new Date(o+a.days(7));return await U.insertOne({authToken:e,createdAt:new Date(o),expiresAt:n,userId:t}),{authToken:e,expiresAt:n,userId:t}}async function to(t){let e=Date.now(),o=new Date(e+a.days(7));await U.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:o}});}var Ze=new S("_system.session",{stores:[U],mutations:{init:async function(t,{session:e,user:o}){return {session:e,user:o,configs:b$1()}},heartbeat:async function(t,{session:e}){e&&await to(e);}}});var p=new w("_modelenceUsers",{schema:{handle:l.string(),emails:l.array(l.object({address:l.string(),verified:l.boolean()})).optional(),status:l.enum(["active","disabled","deleted"]).optional(),createdAt:l.date(),disabledAt:l.date().optional(),deletedAt:l.date().optional(),roles:l.array(l.string()).optional(),authMethods:l.object({password:l.object({hash:l.string()}).optional(),google:l.object({id:l.string()}).optional(),github:l.object({id:l.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1,status:1},sparse:true},{key:{"authMethods.github.id":1,status:1},sparse:true}]}),W=new w("_modelenceDisposableEmailDomains",{schema:{domain:l.string(),addedAt:l.date()},indexes:[{key:{domain:1},unique:true}]}),D=new w("_modelenceEmailVerificationTokens",{schema:{userId:l.objectId(),email:l.string().optional(),token:l.string(),createdAt:l.date(),expiresAt:l.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),x=new w("_modelenceResetPasswordTokens",{schema:{userId:l.objectId(),token:l.string(),createdAt:l.date(),expiresAt:l.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Be=new Map,$={authenticated:null,unauthenticated:null};function We(t,e){$.authenticated=e.authenticated,$.unauthenticated=e.unauthenticated;for(let[o,n]of Object.entries(t))Be.set(o,n);}function X(){return $.unauthenticated?[$.unauthenticated]:[]}function Je(){return $.authenticated?[$.authenticated]:[]}function Ge(t,e){let o=e.find(n=>!oo(t,n));if(o)throw new Error(`Access denied - missing permission: '${o}'`)}function oo(t,e){for(let o of t){let n=Be.get(o);if(n&&n.permissions.includes(e))return  true}return  false}async function R(t){let e=await ze(t),o=e.userId?await p.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,n=o?{id:o._id.toString(),handle:o.handle,roles:o.roles||[],hasRole:i=>(o.roles||[]).includes(i),requireRole:i=>{if(!(o.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)}}:null,r=n?Je():X();return {user:n,session:e,roles:r}}var _=null;async function He(){if(_)return _;let t=M();if(!t)throw new Error("MongoDB URI is not set");_=new MongoClient(t,{maxPoolSize:20});try{return await _.connect(),await _.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),_}catch(e){throw console.error(e),_=null,e}}function M(){let t=a$1("_system.mongodbUri");return t?String(t):void 0}function ee(){return _}var J=null,ao="_modelenceSocketio";async function co({httpServer:t,channels:e}){let o=ee();console.log("Initializing Socket.IO server...");let n=null;if(o){n=o.db().collection(ao);try{await n.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(r){console.error("Failed to create index on MongoDB collection for Socket.IO:",r);}}J=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:n?createAdapter(n):void 0,transports:["polling","websocket"],allowUpgrades:true,perMessageDeflate:false}),J.on("error",r=>{console.error("Socket.IO error:",r);}),J.use(async(r,i)=>{let s=r.handshake.auth.token;try{r.data=await R(s);}finally{i();}}),J.on("connection",r=>{console.log("Socket.IO client connected"),r.on("disconnect",()=>{console.log("Socket.IO client disconnected");}),r.on("joinChannel",async i=>{let[s]=i.split(":"),a=false;for(let c of e)if(c.category===s){(!c.canAccessChannel||await c.canAccessChannel(r.data))&&(r.join(i),a=true,console.log(`User ${r.id} joined channel ${i}`),r.emit("joinedChannel",i));break}a||r.emit("joinError",{channel:i,error:"Access denied"});}),r.on("leaveChannel",i=>{r.leave(i),console.log(`User ${r.id} left channel ${i}`),r.emit("leftChannel",i);});}),console.log("Socket.IO server initialized");}function lo({category:t,id:e,data:o}){J?.to(`${t}:${e}`).emit(t,o);}var Ve={init:co,broadcast:lo};async function Ke(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return  false;let o=e[1];return !!await W.findOne({domain:o})}var Qe={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let o=(await t.text()).split(`
-`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),n=new Date,r=500;for(let i=0;i<o.length;i+=r){let s=o.slice(i,i+r);try{await W.insertMany(s.map(a=>({domain:a,addedAt:n})));}catch(a){a&&typeof a=="object"&&"name"in a&&a.name;}}}};var fe=Object.freeze({});function Ye(t){fe=Object.freeze(Object.assign({},fe,t));}function b(){return fe}function uo(){return typeof window!="object"}function A(){if(!uo())throw new Error("This function can only be called on the server")}function te(t){return t.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}function Xe({name:t,email:e,verificationUrl:o}){return `
-    <p>Hi${t?` ${t}`:""},</p>
-    <p>Please verify your email address ${e} by clicking the link below:</p>
-    <p><a href="${o}">${o}</a></p>
-    <p>If you did not request this, please ignore this email.</p>
-  `}async function et(t){let e=process.env.MODELENCE_SITE_URL,o=b().emailVerifiedRedirectUrl||e||"/";try{let n=z$1.string().parse(t.query.token),r=await D.findOne({token:n,expiresAt:{$gt:new Date}});if(!r)throw new Error("Invalid or expired verification token");if(!await p.findOne({_id:r.userId}))throw new Error("User not found");let s=r.email;if(!s)throw new Error("Email not found in token");if((await p.updateOne({_id:r.userId,"emails.address":s,"emails.verified":{$ne:!0}},{$set:{"emails.$.verified":!0}})).matchedCount===0)throw await p.findOne({_id:r.userId,"emails.address":s})?new Error("Email is already verified"):new Error("Email address not found for this user");await D.deleteOne({_id:r._id});}catch(n){if(n instanceof Error)return console.error("Error verifying email:",n),{status:301,redirect:`${o}?status=error&message=${encodeURIComponent(n.message)}`}}return {status:301,redirect:`${o}?status=verified`}}async function oe({userId:t,email:e,baseUrl:o=process.env.MODELENCE_SITE_URL}){if(b().provider){let n=b().provider,r=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await D.insertOne({userId:t,email:e,token:r,createdAt:new Date,expiresAt:i});let s=`${o}/api/_internal/auth/verify-email?token=${r}`,c=(b()?.verification?.template||Xe)({name:"",email:e,verificationUrl:s}),d=te(c);await n?.sendEmail({to:e,from:b()?.from||"noreply@modelence.com",subject:b()?.verification?.subject||"Verify your email address",text:d,html:c});}}function ne(t){return z$1.string().min(8,{message:"Password must contain at least 8 characters"}).parse(t)}function L(t){return z$1.string().email({message:"Invalid email address"}).parse(t)}var he=Object.freeze({});function ot(t){he=Object.freeze(Object.assign({},he,t));}function y(){return he}async function rt(t,{user:e,session:o,connectionInfo:n}){try{if(!o)throw new Error("Session is not initialized");let r=n?.ip;r&&await I({bucket:"signin",type:"ip",value:r});let i=L(t.email),s=z$1.string().parse(t.password),a=await p.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),c=a?.authMethods?.password?.hash;if(!c)throw nt();if(!a.emails?.find(u=>u.address===i)?.verified&&b()?.provider){if(r)try{await I({bucket:"verification",type:"user",value:a._id.toString()});}catch{throw new Error("Your email address hasn't been verified yet. Please use the verification email we've send earlier to your inbox.")}throw await oe({userId:a?._id,email:i,baseUrl:n?.baseUrl}),new Error("Your email address hasn't been verified yet. We've sent a new verification email to your inbox.")}if(!await fo.compare(s,c))throw nt();return await Fe(o.authToken,a._id),y().onAfterLogin?.({user:a,session:o,connectionInfo:n}),y().login?.onSuccess?.(a),{user:{id:a._id,handle:a.handle}}}catch(r){throw r instanceof Error&&(y().onLoginError?.({error:r,session:o,connectionInfo:n}),y().login?.onError?.(r)),r}}async function it(t,{session:e}){if(!e)throw new Error("Session is not initialized");await qe(e.authToken);}function nt(){return new Error("Incorrect email/password combination")}async function st(t,{user:e}){if(!e)throw new Error("Not authenticated");let o=await p.requireById(e.id);return {handle:o.handle,emails:o.emails,authMethods:Object.keys(o.authMethods||{})}}var G=new w("_modelenceRateLimits",{schema:{bucket:l.string(),type:l.enum(["ip","user"]),value:l.string(),windowMs:l.number(),windowStart:l.date(),windowCount:l.number(),prevWindowCount:l.number(),expiresAt:l.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var ge=[];function at(t){if(ge.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");ge=t;}async function I(t){let{bucket:e,type:o,value:n}=t,r=ge.filter(i=>i.bucket===e&&i.type===o);for(let i of r)await go(i,n);}async function go(t,e,o){let n=()=>new d(`Rate limit exceeded for ${t.bucket}`),r=await G.findOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window}),i=Date.now(),s=Math.floor(i/t.window)*t.window,{count:a,modifier:c}=r?yo(r,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+t.window+t.window)}}};if(a>=t.limit)throw n();await G.upsertOne({bucket:t.bucket,type:t.type,value:e,windowMs:t.window},c);}function yo(t,e,o){let n=e-t.windowMs;if(t.windowStart.getTime()===e){let r=t.windowCount,i=t.prevWindowCount,s=1-(o-e)/t.windowMs;return {count:Math.round(r+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(e),prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}if(t.windowStart.getTime()===n){let r=1-(o-e)/t.windowMs;return {count:Math.round(t.windowCount*r),modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:t.windowCount,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(e),windowCount:1,prevWindowCount:0,expiresAt:new Date(e+t.windowMs+t.windowMs)}}}}async function ct(t,{user:e,session:o,connectionInfo:n}){try{let r=L(t.email),i=ne(t.password),s=n?.ip;if(s&&await I({bucket:"signupAttempt",type:"ip",value:s}),await Ke(r))throw new Error("Please use a permanent email address");let a=await p.findOne({"emails.address":r},{collation:{locale:"en",strength:2}});if(a){let u=a.emails?.find(E=>E.address===r);throw a.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${u?.address}`)}s&&await I({bucket:"signup",type:"ip",value:s});let c=await fo.hash(i,10),d=await p.insertOne({handle:r,status:"active",emails:[{address:r,verified:!1}],createdAt:new Date,authMethods:{password:{hash:c}}}),f=await p.findOne({_id:d.insertedId},{readPreference:"primary"});if(!f)throw new Error("User not found");return await oe({userId:d?.insertedId,email:r,baseUrl:n?.baseUrl}),y().onAfterSignup?.({user:f,session:o,connectionInfo:n}),y().signup?.onSuccess?.(f),d.insertedId}catch(r){throw r instanceof Error&&(y().onSignupError?.({error:r,session:o,connectionInfo:n}),y().signup?.onError?.(r)),r}}function Co(t,e){return e?e.startsWith("http://")||e.startsWith("https://")?e:`${t}${e.startsWith("/")?"":"/"}${e}`:t}function xo({email:t,resetUrl:e}){return `
-    <p>Hi,</p>
-    <p>We received a request to reset your password for ${t}.</p>
-    <p>Click the link below to reset your password:</p>
-    <p><a href="${e}">${e}</a></p>
-    <p>This link will expire in 1 hour.</p>
-    <p>If you did not request this password reset, please ignore this email.</p>
-  `}var ye={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function lt(t,{connectionInfo:e}){let o=L(t.email),n=await p.findOne({"emails.address":o,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!n||!n.authMethods?.password)return ye;let r=b().provider;if(!r)throw new Error("Email provider is not configured");let i=randomBytes(32).toString("hex"),s=Date.now(),a$1=new Date(s),c=new Date(s+a.hours(1));await x.insertOne({userId:n._id,token:i,createdAt:a$1,expiresAt:c});let d=process.env.MODELENCE_SITE_URL||e?.baseUrl,u=`${Co(d,b().passwordReset?.redirectUrl)}?token=${i}`,C=(b()?.passwordReset?.template||xo)({email:o,resetUrl:u,name:""}),F=te(C);return await r.sendEmail({to:o,from:b()?.from||"noreply@modelence.com",subject:b()?.passwordReset?.subject||"Reset your password",text:F,html:C}),ye}async function dt(t,{}){let e=z$1.string().parse(t.token),o=ne(t.password),n=await x.findOne({token:e});if(!n)throw new Error("Invalid or expired reset token");if(n.expiresAt<new Date)throw await x.deleteOne({token:e}),new Error("Reset token has expired");let r=await p.findOne({_id:n.userId});if(!r)throw new Error("User not found");let i=await fo.hash(o,10);return await p.updateOne({_id:r._id},{$set:{"authMethods.password.hash":i}}),await x.deleteOne({token:e}),{success:true,message:"Password has been reset successfully"}}var ut=new S("_system.user",{stores:[p,W,D,x],queries:{getOwnProfile:st},mutations:{signupWithPassword:ct,loginWithPassword:rt,logout:it,sendResetPasswordToken:lt,resetPassword:dt},cronJobs:{updateDisposableEmailList:Qe},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.minutes(15),limit:3},{bucket:"verification",type:"user",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:et}}]});async function mt({configSchema:t,cronJobsMetadata:e,stores:o}){let n=process.env.MODELENCE_CONTAINER_ID;if(!n)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let r=Object.values(o).map(s=>({name:s.getName(),schema:s.getSerializedSchema(),collections:[s.getName()],version:2})),i=await we("/api/connect","POST",{hostname:To.hostname(),containerId:n,dataModels:r,configSchema:t,cronJobsMetadata:e});if(i.status==="error")throw new Error(i.error);return console.log("Successfully connected to Modelence Cloud"),i}catch(r){throw console.error("Unable to connect to Modelence Cloud:",r),r}}async function pt(){return await we("/api/configs","GET")}async function ft(){return await we("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function we(t,e,o){let{MODELENCE_SERVICE_ENDPOINT:n,MODELENCE_SERVICE_TOKEN:r}=process.env;if(!n)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let i=await fetch(`${n}${t}`,{method:e,headers:{Authorization:`Bearer ${r}`,...o?{"Content-Type":"application/json"}:{}},body:o?JSON.stringify(o):void 0});if(!i.ok){let s=await i.text();try{let a=JSON.parse(s);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${a?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${s}`)}}return await i.json()}var be=false,vo=a.seconds(10);function ht(){setInterval(async()=>{if(!be){be=true;try{await ft();}catch(t){console.error("Error syncing status",t);}try{await Do();}catch(t){console.error("Error syncing config",t);}be=false;}},vo);}async function Do(){let{configs:t}=await pt();c(t);}var H=new w("_modelenceLocks",{schema:{resource:l.string(),instanceId:l.string(),acquiredAt:l.date()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}]});var N={},gt=a.seconds(10),yt=randomBytes(32).toString("base64url"),ko=a.seconds(30);async function re(t,{lockDuration:e=ko,successfulLockCacheDuration:o=gt,failedLockCacheDuration:n=gt,instanceId:r=yt}={}){let i=Date.now();if(N[t]&&i<N[t].expiresAt)return N[t].value;let s=new Date(i-e);h(`Attempting to acquire lock: ${t}`,{source:"lock",resource:t,instanceId:r});try{let a=await H.upsertOne({$or:[{resource:t,instanceId:r},{resource:t,acquiredAt:{$lt:s}}]},{$set:{resource:t,instanceId:r,acquiredAt:new Date}}),c=a.upsertedCount>0||a.modifiedCount>0;return N[t]={value:c,expiresAt:i+(c?o:n)},c?h(`Lock acquired: ${t}`,{source:"lock",resource:t,instanceId:r}):h(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:r}),c}catch{return N[t]={value:false,expiresAt:i+n},h(`Failed to acquire lock (already held): ${t}`,{source:"lock",resource:t,instanceId:r}),false}}async function wt(t,{instanceId:e=yt}={}){let o=await H.deleteOne({resource:t,instanceId:e});return delete N[t],o.deletedCount>0}var Oo=a.minutes(1),P={},Se=null,Ee=new w("_modelenceCronJobs",{schema:{alias:l.string(),lastStartDate:l.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function St(t,{description:e="",interval:o,timeout:n=Oo,handler:r}){if(P[t])throw new Error(`Duplicate cron job declaration: '${t}' already exists`);if(Se)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${t}]`);if(o<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${t}]`);if(n>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${t}]`);P[t]={alias:t,params:{description:e,interval:o,timeout:n},handler:r,state:{isRunning:false}};}async function Et(){if(Se)throw new Error("Cron jobs already started");let t=Object.keys(P);if(t.length>0){let e={alias:{$in:t}},o=await Ee.fetch(e),n=Date.now();o.forEach(r=>{let i=P[r.alias];i&&(i.state.scheduledRunTs=r.lastStartDate?r.lastStartDate.getTime()+i.params.interval:n);}),Object.values(P).forEach(r=>{r.state.scheduledRunTs||(r.state.scheduledRunTs=n);}),Se=setInterval(Ro,a.seconds(1));}}async function Ro(){let t=Date.now();await re("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(P).forEach(async o=>{let{params:n,state:r}=o;if(r.isRunning){r.startTs&&r.startTs+n.timeout<t&&(r.isRunning=false);return}r.scheduledRunTs&&r.scheduledRunTs<=t&&await Mo(o);});}async function Mo(t){let{alias:e,params:o,handler:n,state:r}=t;r.isRunning=true,r.startTs=Date.now(),await Ee.updateOne({alias:e},{$set:{lastStartDate:new Date(r.startTs)}});let i=k$1("cron",`cron:${e}`);try{await n(),bt(r,o),i.end("success");}catch(s){bt(r,o);let a=s instanceof Error?s:new Error(String(s));l$1(a),i.end("error"),console.error(`Error in cron job '${e}':`,s);}}function bt(t,e){t.scheduledRunTs=t.startTs?t.startTs+e.interval:Date.now(),t.startTs=void 0,t.isRunning=false;}function Ct(){return Object.values(P).map(({alias:t,params:e})=>({alias:t,description:e.description,interval:e.interval,timeout:e.timeout}))}var xt=new S("_system.cron",{stores:[Ee]});var Ce={};function xe(t,e){return A(),_t(t),ie("query",t,e)}function Tt(t,e){return A(),_t(t),ie("mutation",t,e)}function vt(t,e){return A(),kt(t),ie("query",t,e)}function Dt(t,e){return A(),kt(t),ie("mutation",t,e)}function _t(t){if(t.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${t})`)}function kt(t){if(!t.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${t})`)}function ie(t,e,o){if(A(),Ce[e])throw new Error(`Method with name '${e}' is already defined.`);let n=typeof o=="function"?o:o.handler,r=typeof o=="function"?[]:o.permissions??[];Ce[e]={type:t,name:e,handler:n,permissions:r};}async function Ot(t,e,o){A();let n=Ce[t];if(!n)throw new Error(`Method with name '${t}' is not defined.`);let{type:r,handler:i}=n,s=k$1("method",`method:${t}`,{type:r,args:e}),a;try{Ge(o.roles,n.permissions),a=await i(e,o);}catch(c){throw s.end("error"),c}return s.end(),a}var Te=new S("_system.lock",{stores:[H]});var V=new w("_modelenceMigrations",{schema:{version:l.number(),status:l.enum(["completed","failed"]),description:l.string().optional(),output:l.string().optional(),appliedAt:l.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function Ao(t){if(t.length===0)return;if(!await re("migrations")){i("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}let o=t.map(({version:s})=>s),n=await V.fetch({version:{$in:o}}),r=new Set(n.map(({version:s})=>s)),i$1=t.filter(({version:s})=>!r.has(s));if(i$1.length!==0){i(`Running migrations (${i$1.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:c}of i$1){i(`Running migration v${s}: ${a}`,{source:"migrations"});try{let f=(await c()||"").toString().trim(),u=15*1024*1024,E=f.length>u?f.slice(0,u)+`
-[Output truncated - exceeded size limit]`:f;await V.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:E,appliedAt:new Date}}),i(`Migration v${s} complete`,{source:"migrations"});}catch(d){d instanceof Error&&(await V.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:d.message||"",appliedAt:new Date}}),i(`Migration v${s} is failed: ${d.message}`,{source:"migrations"}));}}await wt("migrations");}}function Rt(t){setTimeout(()=>{Ao(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var Mt=new S("_system.migration",{stores:[V]});var At=new S("_system.rateLimit",{stores:[G]});var It=new S("_system",{configSchema:{mongodbUrl:{type:"string",isPublic:false,default:""},env:{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});var De=class{async init(){this.config=await Fo(),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[O.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(O.static(this.config.publicDir)),e}handler(e,o){if(this.isDev())try{o.sendFile("index.html",{root:"./src/client"});}catch(n){console.error("Error serving index.html:",n),o.status(500).send("Internal Server Error");}else o.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function No(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function zo(t,e){let o=mergeConfig(t,e);if(o.plugins&&Array.isArray(o.plugins)){let n=new Set;o.plugins=o.plugins.flat().filter(r=>{if(!r||typeof r!="object"||Array.isArray(r))return  true;let i=r.name;return !i||n.has(i)?false:(n.add(i),true)}).reverse(),o.plugins.reverse();}return o}async function Fo(){let t=process.cwd(),e=await No(),o=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(i=>Lo.existsSync(ve.join(t,i))),n=[$o(),qo()];if(o){let i=(await import('vite-plugin-eslint')).default;n.push(i({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:t,overrideConfigFile:ve.resolve(t,o)}));}let r=defineConfig({plugins:n,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true},root:"./src/client",resolve:{alias:{"@":ve.resolve(t,"src").replace(/\\/g,"/")}}});return zo(r,e)}function qo(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var jt=new De;async function Ut(t,e){let{authToken:o}=await pe(e);t.cookie("authToken",o,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict"}),t.status(301),t.redirect("/");}function z(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function se(t,e,o){let n=await p.findOne({[`authMethods.${o.providerName}.id`]:o.id}),{session:r,connectionInfo:i}=await _e(t);try{if(n){await Ut(e,n._id),y().onAfterLogin?.({user:n,session:r,connectionInfo:i}),y().login?.onSuccess?.(n);return}}catch(s){throw s instanceof Error&&(y().login?.onError?.(s),y().onLoginError?.({error:s,session:r,connectionInfo:i})),s}try{if(!o.email){e.status(400).json({error:`Email address is required for ${o.providerName} authentication.`});return}if(await p.findOne({"emails.address":o.email},{collation:{locale:"en",strength:2}})){e.status(400).json({error:"User with this email already exists. Please log in instead."});return}let a=await p.insertOne({handle:o.email,status:"active",emails:[{address:o.email,verified:o.emailVerified}],createdAt:new Date,authMethods:{[o.providerName]:{id:o.id}}});await Ut(e,a.insertedId);let c=await p.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(y().onAfterSignup?.({user:c,session:r,connectionInfo:i}),y().signup?.onSuccess?.(c));}catch(s){throw s instanceof Error&&(y().onSignupError?.({error:s,session:r,connectionInfo:i}),y().signup?.onError?.(s)),s}}function ae(t){return !t||typeof t!="string"?null:t}async function Wo(t,e,o,n){let r=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:o,redirect_uri:n,grant_type:"authorization_code"})});if(!r.ok)throw new Error(`Failed to exchange code for token: ${r.statusText}`);return r.json()}async function Jo(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Go(t,e){let o=ae(t.query.code),n=t.query.state,r=t.cookies.authStateGoogle;if(!o){e.status(400).json({error:"Missing authorization code"});return}if(!n||!r||n!==r){e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}e.clearCookie("authStateGoogle");let i=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret")),a=z("google");try{let c=await Wo(o,i,s,a),d=await Jo(c.access_token),f={id:d.id,email:d.email,emailVerified:d.verified_email,providerName:"google"};await se(t,e,f);}catch(c){console.error("Google OAuth error:",c),e.status(500).json({error:"Authentication failed"});}}function Ho(){let t=Router(),e=(o,n,r)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){n.status(503).json({error:"Google authentication is not configured"});return}r();};return t.get("/api/_internal/auth/google",e,(o,n)=>{let r=String(a$1("_system.user.auth.google.clientId")),i=z("google"),s=randomBytes(32).toString("hex");n.cookie("authStateGoogle",s,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let a$2=new URL("https://accounts.google.com/o/oauth2/v2/auth");a$2.searchParams.append("client_id",r),a$2.searchParams.append("redirect_uri",i),a$2.searchParams.append("response_type","code"),a$2.searchParams.append("scope","profile email"),a$2.searchParams.append("access_type","online"),a$2.searchParams.append("state",s),n.redirect(a$2.toString());}),t.get("/api/_internal/auth/google/callback",e,Go),t}var $t=Ho;async function Qo(t,e,o,n){let r=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:o,code:t,redirect_uri:n})});if(!r.ok)throw new Error(`Failed to exchange code for token: ${r.statusText}`);return r.json()}async function Yo(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Xo(t,e){let o=ae(t.query.code),n=t.query.state,r=t.cookies.authStateGithub;if(!o){e.status(400).json({error:"Missing authorization code"});return}if(!n||!r||n!==r){e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}e.clearCookie("authStateGithub");let i=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret")),a=z("github");try{let c=await Qo(o,i,s,a),d=await Yo(c.access_token),f=d.email||"";if(!f){e.status(400).json({error:"Unable to retrieve email from GitHub. Please ensure your email is public or grant email permissions."});return}let u={id:String(d.id),email:f,emailVerified:!0,providerName:"github"};await se(t,e,u);}catch(c){console.error("GitHub OAuth error:",c),e.status(500).json({error:"Authentication failed"});}}function en(){let t=Router(),e=(o,n,r)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){n.status(503).json({error:"GitHub authentication is not configured"});return}r();};return t.get("/api/_internal/auth/github",e,(o,n)=>{let r=String(a$1("_system.user.auth.github.clientId")),i=z("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(f=>f.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex");n.cookie("authStateGithub",c,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let d=new URL("https://github.com/login/oauth/authorize");d.searchParams.append("client_id",r),d.searchParams.append("redirect_uri",i),d.searchParams.append("scope",a$2),d.searchParams.append("state",c),n.redirect(d.toString());}),t.get("/api/_internal/auth/github/callback",e,Xo),t}var Lt=en;function Nt(t,e,o){return async(n,r,i)=>{let s=n.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&M())try{let{session:d,user:f}=await R(s);a={session:d,user:f};}catch{}let c=k$1("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:n.query,body:n.body,params:n.params});try{let d=await o({query:n.query,body:n.body,params:n.params,headers:n.headers,cookies:n.cookies,rawBody:Buffer.isBuffer(n.body)?n.body:void 0,req:n,res:r,next:i},a);c.end(),d&&(r.status(d.status||200),d.redirect&&r.redirect(d.redirect),d.headers&&Object.entries(d.headers).forEach(([f,u])=>{r.setHeader(f,u);}),r.send(d.data));}catch(d){c.end("error"),d instanceof a$3?r.status(d.status).send(d.message):(console.error(`Error in route handler: ${n.path}`),console.error(d),r.status(500).send(String(d)));}}}var ke=Object.freeze({});function zt(t){ke=Object.freeze(Object.assign({},ke,t));}function ce(){return ke}function nn(t){let e=[];if(!t)return e.push(O.json({limit:"16mb"})),e.push(O.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let o=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(O.json(o));}if(t.urlencoded!==false){let o=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(O.urlencoded(o));}if(t.raw){let o=typeof t.raw=="object"?t.raw:{},n={limit:o.limit||"16mb",type:o.type||"*/*"};e.push(O.raw(n));}return e}function rn(t,e){for(let o of e)for(let n of o.routes){let{path:r,handlers:i,body:s}=n,a=nn(s);Object.entries(i).forEach(([c,d])=>{t[c](r,...a,Nt(c,r,d));});}}async function Ft(t,{combinedModules:e,channels:o}){let n=O();n.use(tn()),rn(n,e),n.use(O.json({limit:"16mb"})),n.use(O.urlencoded({extended:true,limit:"16mb"})),n.use($t()),n.use(Lt()),n.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:d}=a.params,f=await _e(a);try{let u=await Ot(d,a.body.args,f);c.json({data:u,typeMap:a$2(u)});}catch(u){if(console.error(`Error in method ${d}:`,u),u instanceof a$3)c.status(u.status).send(u.message);else if(u instanceof Error&&u?.constructor?.name==="ZodError"&&"errors"in u){let C=u.flatten(),F=Object.entries(C.fieldErrors).map(([q,de])=>`${q}: ${(de??[]).join(", ")}`).join("; "),le=C.formErrors.join("; "),K=[F,le].filter(Boolean).join("; ");c.status(400).send(K);}else c.status(500).send(u instanceof Error?u.message:String(u));}}),await t.init(),t.middlewares&&n.use(t.middlewares()),n.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let r=on.createServer(n),i$1=ce()?.provider;i$1&&i$1.init({httpServer:r,channels:o});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;r.listen(s,()=>{i("Application started",{source:"app"});let a=process.env.MODELENCE_SITE_URL||`http://localhost:${s}`;console.log(`
-Application started on ${a}
-`);});}async function _e(t){let e=k.string().nullish().transform(i=>i??null).parse(t.cookies.authToken||t.body.authToken),o=k.object({screenWidth:k.number(),screenHeight:k.number(),windowWidth:k.number(),windowHeight:k.number(),pixelRatio:k.number(),orientation:k.string().nullable()}).nullish().parse(t.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},n={ip:sn(t),userAgent:t.get("user-agent"),acceptLanguage:t.get("accept-language"),referrer:t.get("referrer"),baseUrl:t.protocol+"://"+t.get("host")};if(!!M()){let{session:i,user:s,roles:a}=await R(e);return {clientInfo:o,connectionInfo:n,session:i,user:s,roles:a}}return {clientInfo:o,connectionInfo:n,session:null,user:null,roles:X()}}function sn(t){let e=t.headers["x-forwarded-for"];if(e)return (Array.isArray(e)?e[0]:e.split(",")[0]).trim();let o=t.ip||t.socket?.remoteAddress;if(o)return o.startsWith("::ffff:")?o.substring(7):o}async function dn({modules:t=[],roles:e$1={},defaultRoles:o={},server:n=jt,migrations:r=[],email:i={},auth:s={},websocket:a={}}){qt.config(),qt.config({path:".modelence.env"});let c$1=!!process.env.MODELENCE_SERVICE_ENDPOINT,d=process.env.MODELENCE_CRON_ENABLED==="true";Cn().then(()=>{}).catch(()=>{});let f$1=[ut,Ze,xt,Mt,At,It,Te],u=[...f$1,...t];e(),mn(f$1),un(t),We(e$1,o);let E=gn(u);d$1(E);let C=pn(u),F=fn(u);d&&yn(u);let le=hn(u);if(at(le),c$1){let{configs:q,environmentId:de,appAlias:Bt,environmentAlias:Wt,telemetry:Jt}=await mt({configSchema:E,cronJobsMetadata:d?Ct():void 0,stores:C});c(q),f({environmentId:de,appAlias:Bt,environmentAlias:Wt,telemetry:Jt});}else c(En(E));Ye(i),ot(s),zt({...a,provider:a.provider||Ve});let K=M();if(K&&(await He(),wn(C)),d&&Rt(r),K)for(let q of C)q.createIndexes();c$1&&(await g(),ht()),d&&Et().catch(console.error),await Ft(n,{combinedModules:u,channels:F});}function un(t){for(let e of t){for(let[o,n]of Object.entries(e.queries))xe(`${e.name}.${o}`,n);for(let[o,n]of Object.entries(e.mutations))Tt(`${e.name}.${o}`,n);}}function mn(t){for(let e of t){for(let[o,n]of Object.entries(e.queries))vt(`${e.name}.${o}`,n);for(let[o,n]of Object.entries(e.mutations))Dt(`${e.name}.${o}`,n);}}function pn(t){return t.flatMap(e=>e.stores)}function fn(t){return t.flatMap(e=>e.channels)}function hn(t){return t.flatMap(e=>e.rateLimits)}function gn(t){let e={};for(let o of t)for(let[n,r]of Object.entries(o.configSchema)){let i=`${o.name}.${n}`;if(i in e)throw new Error(`Duplicate config schema key: ${i} (${o.name})`);e[i]=r;}return e}function yn(t){for(let e of t)for(let[o,n]of Object.entries(e.cronJobs))St(`${e.name}.${o}`,n);}function wn(t){let e=ee();if(!e)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let o of t)o.init(e);}var bn={MONGODB_URI:"_system.mongodbUri",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"};function Sn(t,e){if(e==="number"){let o=Number(t);if(isNaN(o))throw new Error(`Invalid number value for config: ${t}`);return o}if(e==="boolean"){if(t.toLowerCase()==="true")return  true;if(t.toLowerCase()==="false")return  false;throw new Error(`Invalid boolean value for config: ${t}`)}return t}function En(t){let e=[];for(let[o,n]of Object.entries(bn)){let r=process.env[o],i=t[n];if(r){let s=i?.type??"string";e.push({key:n,type:s,value:Sn(r,s)});}}return e}async function Cn(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let e=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",o=process.env.MODELENCE_ENVIRONMENT_ID,n=await xn(),r=await import('./package-IIELPLTY.js');await fetch(`${e}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:n.name,version:r.default.version,localHostname:To.hostname(),environmentId:o})});}}async function xn(){try{let t=ve.join(process.cwd(),"package.json"),e=await an.readFile(t,"utf-8");return {name:JSON.parse(e).name||"unknown"}}catch{return {name:"unknown"}}}async function Zt(t){await D.deleteMany({userId:t}),await x.deleteMany({userId:t});}async function vn(t){await Zt(t),await p.updateOne(t,{$set:{status:"disabled",disabledAt:new Date}});}async function Dn(t){await Zt(t),await p.updateOne({_id:t},{$set:{handle:`deleted-${t}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var Oe=class{constructor(e,o){this.category=e,this.canAccessChannel=o||null;}broadcast(e,o){let n=ce().provider;if(!n){j("Websockets provider should be added to startApp",{});return}n.broadcast({category:this.category,id:e,data:o});}};function _n(t){if(!b().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return b().provider?.sendEmail(t)}
-export{S as Module,Oe as ServerChannel,w as Store,R as authenticate,I as consumeRateLimit,xe as createQuery,p as dbUsers,Dn as deleteUser,vn as disableUser,l as schema,_n as sendEmail,dn as startApp};//# sourceMappingURL=server.js.map
+export { startApp } from './app';
+export { Module } from './app/module';
+export { ObjectId } from 'mongodb';
+export { createQuery } from './methods';
+// Auth
+export { usersCollection as dbUsers } from './auth/db';
+export { deleteUser, disableUser } from './auth/deleteUser';
+// Database
+export { schema } from './data/types';
+export { Store } from './data/store';
+export { consumeRateLimit } from './rate-limit/rules';
+export { getConfig } from './config/server';
+export { ServerChannel } from './websocket/serverChannel';
+export { authenticate } from './auth';
+export { sendEmail } from './app/email';
 //# sourceMappingURL=server.js.map