modelence 0.9.2 → 0.10.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/bin/modelence.js +1 -1
- package/dist/chunk-JHTY2DFP.js +3 -0
- package/dist/chunk-JHTY2DFP.js.map +1 -0
- package/dist/client.d.ts +3 -1
- package/dist/client.js +1 -1
- package/dist/client.js.map +1 -1
- package/dist/{package-3N3BNNJ6.js → package-IANIDSBZ.js} +2 -2
- package/dist/{package-3N3BNNJ6.js.map → package-IANIDSBZ.js.map} +1 -1
- package/dist/server.d.ts +18 -1
- package/dist/server.js +11 -11
- package/dist/server.js.map +1 -1
- package/package.json +1 -1
- package/dist/chunk-O7E4QXC6.js +0 -3
- package/dist/chunk-O7E4QXC6.js.map +0 -1
package/dist/server.js
CHANGED
|
@@ -1,19 +1,19 @@
|
|
|
1
|
-
import {a as a$2}from'./chunk-3S2FFBNS.js';import {d,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {b as b$1,e,d as d$1,c,f,g,j as j$1,a as a$1,i,k as k$1,h as h$1,l as l$1}from'./chunk-PB6WQQ4L.js';export{a as getConfig}from'./chunk-PB6WQQ4L.js';import qt from'dotenv';import sr from'fs/promises';import To from'os';import ve from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import D,{z as z$1}from'zod';import fo from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import $o from'@vitejs/plugin-react';import Lo from'fs';import O,{Router}from'express';import tr from'cookie-parser';import or from'http';var E=class{constructor(e,{stores:o=[],queries:r={},mutations:n={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:c=[],channels:d=[]}){this.name=e,this.stores=o,this.queries=r,this.mutations=n,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=c,this.channels=d;}};function v(t){let e=t._def;if(e.typeName==="ZodString")return {type:"string"};if(e.typeName==="ZodNumber")return {type:"number"};if(e.typeName==="ZodBoolean")return {type:"boolean"};if(e.typeName==="ZodDate")return {type:"date"};if(e.typeName==="ZodArray")return {type:"array",items:v(e.type)};if(e.typeName==="ZodObject"){let r=e.shape(),n={};for(let[i,s]of Object.entries(r))n[i]=v(s);return {type:"object",items:n}}if(e.typeName==="ZodOptional")return {...v(e.innerType),optional:true};if(e.typeName==="ZodNullable")return {...v(e.innerType),optional:true};if(e.typeName==="ZodEnum")return {type:"enum",items:e.values};if(e.typeName==="ZodUnion")return {type:"union",items:e.options.map(v)};if(e.typeName==="ZodEffects"){let o=e;return o.description?{type:"custom",typeName:o.description}:v(o.schema)}return {type:"custom",typeName:e.typeName}}function Y(t){let e={};for(let[o,r]of Object.entries(t))Array.isArray(r)?e[o]=r.map(n=>typeof n=="object"&&"_def"in n?v(n):Y(n)):typeof r=="object"&&"_def"in r?e[o]=v(r):e[o]=Y(r);return e}var w=class t{constructor(e,o){this.name=e,this.schema=o.schema,this.methods=o.methods,this.indexes=o.indexes,this.searchIndexes=o.searchIndexes||[];}getName(){return this.name}getSchema(){return this.schema}getSerializedSchema(){return Y(this.schema)}extend(e){let o={...this.schema,...e.schema||{}},r=[...this.indexes,...e.indexes||[]],n=[...this.searchIndexes,...e.searchIndexes||[]],i={...this.methods||{},...e.methods||{}},s=new t(this.name,{schema:o,methods:i,indexes:r,searchIndexes:n});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(e){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=e,this.collection=this.client.db().collection(this.name);}async createIndexes(){if(this.indexes.length>0)for(let e of this.indexes)try{await this.requireCollection().createIndexes([e]);}catch(o){if(o instanceof MongoError&&o.code===86&&e.name)await this.requireCollection().dropIndex(e.name),await this.requireCollection().createIndexes([e]);else throw o}if(this.searchIndexes.length>0)for(let e of this.searchIndexes)try{await this.requireCollection().createSearchIndexes([e]);}catch(o){if(o instanceof MongoError&&o.code===68&&e.name)await this.requireCollection().dropSearchIndex(e.name),await this.requireCollection().createSearchIndexes([e]);else throw o}}wrapDocument(e){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...e,...this.methods})):e}getSelector(e){return typeof e=="string"?{_id:new ObjectId(e)}:e instanceof ObjectId?{_id:e}:e}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(e,o){let r=await this.requireCollection().findOne(e,o);return r?this.wrapDocument(r):null}async requireOne(e,o,r){let n=await this.findOne(e,o);if(!n)throw r?r():new Error(`Record not found in ${this.name}`);return n}find(e,o){let r=this.requireCollection().find(e);return o?.sort&&r.sort(o.sort),o?.limit&&r.limit(o.limit),o?.skip&&r.skip(o.skip),r}async findById(e){let o=typeof e=="string"?{_id:new ObjectId(e)}:{_id:e};return await this.findOne(o)}async requireById(e,o){let r=await this.findById(e);if(!r)throw o?o():new Error(`Record with id ${e} not found in ${this.name}`);return r}countDocuments(e){return this.requireCollection().countDocuments(e)}async fetch(e,o){return (await this.find(e,o).toArray()).map(this.wrapDocument.bind(this))}async insertOne(e){return await this.requireCollection().insertOne(e)}async insertMany(e){return await this.requireCollection().insertMany(e)}async updateOne(e,o){return await this.requireCollection().updateOne(this.getSelector(e),o)}async upsertOne(e,o){return await this.requireCollection().updateOne(this.getSelector(e),o,{upsert:true})}async updateMany(e,o,r){return await this.requireCollection().updateMany(e,o,r)}async upsertMany(e,o){return await this.requireCollection().updateMany(e,o,{upsert:true})}async deleteOne(e){return await this.requireCollection().deleteOne(e)}async deleteMany(e){return await this.requireCollection().deleteMany(e)}aggregate(e,o){return this.requireCollection().aggregate(e,o)}bulkWrite(e){return this.requireCollection().bulkWrite(e)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(e,o){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:e}).toArray()).length===0)throw new Error(`Collection ${e} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(e).rename(this.name,o);}async vectorSearch({field:e,embedding:o,numCandidates:r,limit:n,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||e+"VectorSearch",path:e,queryVector:o,numCandidates:r||100,limit:n||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:e,dimensions:o,similarity:r="cosine",indexName:n}){return {type:"vectorSearch",name:n||e+"VectorSearch",definition:{fields:[{type:"vector",path:e,numDimensions:o,similarity:r}]}}}};var Jt=z$1.string.bind(z$1),Gt=z$1.number.bind(z$1),Ht=z$1.date.bind(z$1),Kt=z$1.boolean.bind(z$1),Qt=z$1.array.bind(z$1),Yt=z$1.object.bind(z$1),Xt=z$1.enum.bind(z$1),l={string:Jt,number:Gt,date:Ht,boolean:Kt,array:Qt,object:Yt,enum:Xt,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(t){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(t){return {}}};var j=new w("_modelenceSessions",{schema:{authToken:l.string(),createdAt:l.date(),expiresAt:l.date(),userId:l.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function ze(t){let e=t?await j.findOne({authToken:t}):null;return e?{authToken:String(e.authToken),expiresAt:new Date(e.expiresAt),userId:e.userId??null}:await pe()}async function Fe(t,e){await j.updateOne({authToken:t},{$set:{userId:e}});}async function qe(t){await j.updateOne({authToken:t},{$set:{userId:null}});}async function pe(t=null){let e=randomBytes(32).toString("base64url"),o=Date.now(),r=new Date(o+a.days(7));return await j.insertOne({authToken:e,createdAt:new Date(o),expiresAt:r,userId:t}),{authToken:e,expiresAt:r,userId:t}}async function to(t){let e=Date.now(),o=new Date(e+a.days(7));await j.updateOne({authToken:t.authToken},{$set:{lastActiveDate:new Date(e),expiresAt:o}});}var Ze=new E("_system.session",{stores:[j],mutations:{init:async function(t,{session:e,user:o}){return {session:e,user:o,configs:b$1()}},heartbeat:async function(t,{session:e}){e&&await to(e);}}});var p=new w("_modelenceUsers",{schema:{handle:l.string(),emails:l.array(l.object({address:l.string(),verified:l.boolean()})).optional(),status:l.enum(["active","disabled","deleted"]).optional(),createdAt:l.date(),disabledAt:l.date().optional(),deletedAt:l.date().optional(),roles:l.array(l.string()).optional(),authMethods:l.object({password:l.object({hash:l.string()}).optional(),google:l.object({id:l.string()}).optional(),github:l.object({id:l.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1,status:1},sparse:true},{key:{"authMethods.github.id":1,status:1},sparse:true}]}),W=new w("_modelenceDisposableEmailDomains",{schema:{domain:l.string(),addedAt:l.date()},indexes:[{key:{domain:1},unique:true}]}),_=new w("_modelenceEmailVerificationTokens",{schema:{userId:l.objectId(),email:l.string().optional(),token:l.string(),createdAt:l.date(),expiresAt:l.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),x=new w("_modelenceResetPasswordTokens",{schema:{userId:l.objectId(),token:l.string(),createdAt:l.date(),expiresAt:l.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Be=new Map,$={authenticated:null,unauthenticated:null};function We(t,e){$.authenticated=e.authenticated,$.unauthenticated=e.unauthenticated;for(let[o,r]of Object.entries(t))Be.set(o,r);}function X(){return $.unauthenticated?[$.unauthenticated]:[]}function Ve(){return $.authenticated?[$.authenticated]:[]}function Je(t,e){let o=e.find(r=>!oo(t,r));if(o)throw new Error(`Access denied - missing permission: '${o}'`)}function oo(t,e){for(let o of t){let r=Be.get(o);if(r&&r.permissions.includes(e))return true}return false}async function A(t){let e=await ze(t),o=e.userId?await p.findOne({_id:new ObjectId(e.userId),status:{$nin:["deleted","disabled"]}}):null,r=o?{id:o._id.toString(),handle:o.handle,roles:o.roles||[],hasRole:i=>(o.roles||[]).includes(i),requireRole:i=>{if(!(o.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)}}:null,n=r?Ve():X();return {user:r,session:e,roles:n}}var k=null;async function Ge(){if(k)return k;let t=R();if(!t)throw new Error("MongoDB URI is not set");k=new MongoClient(t,{maxPoolSize:20});try{return await k.connect(),await k.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),k}catch(e){throw console.error(e),k=null,e}}function R(){let t=a$1("_system.mongodbUri");return t?String(t):void 0}function ee(){return k}var V=null,ao="_modelenceSocketio";async function co({httpServer:t,channels:e}){let o=ee();console.log("Initializing Socket.IO server...");let r=null;if(o){r=o.db().collection(ao);try{await r.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(n){console.error("Failed to create index on MongoDB collection for Socket.IO:",n);}}V=new Server(t,{cors:{origin:"*",methods:["GET","POST"]},adapter:r?createAdapter(r):void 0,transports:["polling","websocket"],allowUpgrades:true,perMessageDeflate:false}),V.on("error",n=>{console.error("Socket.IO error:",n);}),V.use(async(n,i)=>{let s=n.handshake.auth.token;try{n.data=await A(s);}finally{i();}}),V.on("connection",n=>{console.log("Socket.IO client connected"),n.on("disconnect",()=>{console.log("Socket.IO client disconnected");}),n.on("joinChannel",async i=>{let[s]=i.split(":"),a=false;for(let c of e)if(c.category===s){(!c.canAccessChannel||await c.canAccessChannel(n.data))&&(n.join(i),a=true,console.log(`User ${n.id} joined channel ${i}`),n.emit("joinedChannel",i));break}a||n.emit("joinError",{channel:i,error:"Access denied"});}),n.on("leaveChannel",i=>{n.leave(i),console.log(`User ${n.id} left channel ${i}`),n.emit("leftChannel",i);});}),console.log("Socket.IO server initialized");}function lo({category:t,id:e,data:o}){V?.to(`${t}:${e}`).emit(t,o);}var He={init:co,broadcast:lo};async function Ke(t){let e=t.toLowerCase().trim().split("@");if(e.length!==2)return false;let o=e[1];return !!await W.findOne({domain:o})}var Qe={interval:a.days(1),async handler(){let t=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!t.ok)throw new Error(`HTTP ${t.status}: ${t.statusText}`);let o=(await t.text()).split(`
|
|
2
|
-
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),r=new Date,n=500;for(let i=0;i<o.length;i+=n){let s=o.slice(i,i+n);try{await
|
|
3
|
-
<p>Hi${
|
|
4
|
-
<p>Please verify your email address ${
|
|
1
|
+
import {a as a$2}from'./chunk-3S2FFBNS.js';import {d as d$1,a as a$3}from'./chunk-C3UESBRX.js';import {a}from'./chunk-DO5TZLF5.js';import {b as b$1,e,d as d$2,c,f,g,j as j$1,a as a$1,i,k as k$1,h as h$1,l}from'./chunk-PB6WQQ4L.js';export{a as getConfig}from'./chunk-PB6WQQ4L.js';import Vt from'dotenv';import gr from'fs/promises';import Io from'os';import Oe from'path';import {Server}from'socket.io';import {createAdapter}from'@socket.io/mongo-adapter';import {MongoError,ObjectId,MongoClient}from'mongodb';export{ObjectId}from'mongodb';import {randomBytes,randomUUID}from'crypto';import _,{z as z$1}from'zod';import xo from'bcrypt';import {createServer,defineConfig,loadConfigFromFile,mergeConfig}from'vite';import Vo from'@vitejs/plugin-react';import Jo from'fs';import O,{Router}from'express';import dr from'cookie-parser';import ur from'http';var E=class{constructor(t,{stores:o=[],queries:r={},mutations:n={},routes:i=[],cronJobs:s={},configSchema:a={},rateLimits:l=[],channels:c=[]}){this.name=t,this.stores=o,this.queries=r,this.mutations=n,this.routes=i,this.cronJobs=s,this.configSchema=a,this.rateLimits=l,this.channels=c;}};function v(e){let t=e._def;if(t.typeName==="ZodString")return {type:"string"};if(t.typeName==="ZodNumber")return {type:"number"};if(t.typeName==="ZodBoolean")return {type:"boolean"};if(t.typeName==="ZodDate")return {type:"date"};if(t.typeName==="ZodArray")return {type:"array",items:v(t.type)};if(t.typeName==="ZodObject"){let r=t.shape(),n={};for(let[i,s]of Object.entries(r))n[i]=v(s);return {type:"object",items:n}}if(t.typeName==="ZodOptional")return {...v(t.innerType),optional:true};if(t.typeName==="ZodNullable")return {...v(t.innerType),optional:true};if(t.typeName==="ZodEnum")return {type:"enum",items:t.values};if(t.typeName==="ZodUnion")return {type:"union",items:t.options.map(v)};if(t.typeName==="ZodEffects"){let o=t;return o.description?{type:"custom",typeName:o.description}:v(o.schema)}return {type:"custom",typeName:t.typeName}}function Y(e){let t={};for(let[o,r]of Object.entries(e))Array.isArray(r)?t[o]=r.map(n=>typeof n=="object"&&"_def"in n?v(n):Y(n)):typeof r=="object"&&"_def"in r?t[o]=v(r):t[o]=Y(r);return t}var w=class e{constructor(t,o){this.name=t,this.schema=o.schema,this.methods=o.methods,this.indexes=o.indexes,this.searchIndexes=o.searchIndexes||[];}getName(){return this.name}getSchema(){return this.schema}getSerializedSchema(){return Y(this.schema)}extend(t){let o={...this.schema,...t.schema||{}},r=[...this.indexes,...t.indexes||[]],n=[...this.searchIndexes,...t.searchIndexes||[]],i={...this.methods||{},...t.methods||{}},s=new e(this.name,{schema:o,methods:i,indexes:r,searchIndexes:n});if(this.client)throw new Error(`Store.extend() must be called before startApp(). Store '${this.name}' has already been initialized and cannot be extended.`);return s}init(t){if(this.collection)throw new Error(`Collection ${this.name} is already initialized`);this.client=t,this.collection=this.client.db().collection(this.name);}async createIndexes(){if(this.indexes.length>0)for(let t of this.indexes)try{await this.requireCollection().createIndexes([t]);}catch(o){if(o instanceof MongoError&&o.code===86&&t.name)await this.requireCollection().dropIndex(t.name),await this.requireCollection().createIndexes([t]);else throw o}if(this.searchIndexes.length>0)for(let t of this.searchIndexes)try{await this.requireCollection().createSearchIndexes([t]);}catch(o){if(o instanceof MongoError&&o.code===68&&t.name)await this.requireCollection().dropSearchIndex(t.name),await this.requireCollection().createSearchIndexes([t]);else throw o}}wrapDocument(t){return this.methods?Object.create(null,Object.getOwnPropertyDescriptors({...t,...this.methods})):t}getSelector(t){return typeof t=="string"?{_id:new ObjectId(t)}:t instanceof ObjectId?{_id:t}:t}requireCollection(){if(!this.collection)throw new Error(`Collection ${this.name} is not provisioned`);return this.collection}requireClient(){if(!this.client)throw new Error("Database is not connected");return this.client}async findOne(t,o){let r=await this.requireCollection().findOne(t,o);return r?this.wrapDocument(r):null}async requireOne(t,o,r){let n=await this.findOne(t,o);if(!n)throw r?r():new Error(`Record not found in ${this.name}`);return n}find(t,o){let r=this.requireCollection().find(t);return o?.sort&&r.sort(o.sort),o?.limit&&r.limit(o.limit),o?.skip&&r.skip(o.skip),r}async findById(t){let o=typeof t=="string"?{_id:new ObjectId(t)}:{_id:t};return await this.findOne(o)}async requireById(t,o){let r=await this.findById(t);if(!r)throw o?o():new Error(`Record with id ${t} not found in ${this.name}`);return r}countDocuments(t){return this.requireCollection().countDocuments(t)}async fetch(t,o){return (await this.find(t,o).toArray()).map(this.wrapDocument.bind(this))}async insertOne(t){return await this.requireCollection().insertOne(t)}async insertMany(t){return await this.requireCollection().insertMany(t)}async updateOne(t,o){return await this.requireCollection().updateOne(this.getSelector(t),o)}async upsertOne(t,o){return await this.requireCollection().updateOne(this.getSelector(t),o,{upsert:true})}async updateMany(t,o,r){return await this.requireCollection().updateMany(t,o,r)}async upsertMany(t,o){return await this.requireCollection().updateMany(t,o,{upsert:true})}async deleteOne(t){return await this.requireCollection().deleteOne(t)}async deleteMany(t){return await this.requireCollection().deleteMany(t)}aggregate(t,o){return this.requireCollection().aggregate(t,o)}bulkWrite(t){return this.requireCollection().bulkWrite(t)}getDatabase(){return this.requireClient().db()}rawCollection(){return this.requireCollection()}async renameFrom(t,o){let r=this.getDatabase();if(!this.collection||!r)throw new Error(`Store ${this.name} is not provisioned`);if((await r.listCollections({name:t}).toArray()).length===0)throw new Error(`Collection ${t} not found`);if((await r.listCollections({name:this.name}).toArray()).length>0)throw new Error(`Collection ${this.name} already exists`);await r.collection(t).rename(this.name,o);}async vectorSearch({field:t,embedding:o,numCandidates:r,limit:n,projection:i,indexName:s}){return this.aggregate([{$vectorSearch:{index:s||t+"VectorSearch",path:t,queryVector:o,numCandidates:r||100,limit:n||10}},{$project:{_id:1,score:{$meta:"vectorSearchScore"},...i}}])}static vectorIndex({field:t,dimensions:o,similarity:r="cosine",indexName:n}){return {type:"vectorSearch",name:n||t+"VectorSearch",definition:{fields:[{type:"vector",path:t,numDimensions:o,similarity:r}]}}}};var Xt=z$1.string.bind(z$1),eo=z$1.number.bind(z$1),to=z$1.date.bind(z$1),oo=z$1.boolean.bind(z$1),ro=z$1.array.bind(z$1),no=z$1.object.bind(z$1),io=z$1.enum.bind(z$1),d={string:Xt,number:eo,date:to,boolean:oo,array:ro,object:no,enum:io,embedding(){return z$1.array(z$1.number())},objectId(){return z$1.instanceof(ObjectId).describe("ObjectId")},userId(){return z$1.instanceof(ObjectId).describe("UserId")},ref(e){return z$1.instanceof(ObjectId).describe("Ref")},union:z$1.union.bind(z$1),infer(e){return {}}};var j=new w("_modelenceSessions",{schema:{authToken:d.string(),createdAt:d.date(),expiresAt:d.date(),userId:d.userId().nullable()},indexes:[{key:{authToken:1},unique:true},{key:{expiresAt:1}}]});async function Be(e){let t=e?await j.findOne({authToken:e}):null;return t?{authToken:String(t.authToken),expiresAt:new Date(t.expiresAt),userId:t.userId??null}:await fe()}async function We(e,t){await j.updateOne({authToken:e},{$set:{userId:t}});}async function Ve(e){await j.updateOne({authToken:e},{$set:{userId:null}});}async function fe(e=null){let t=randomBytes(32).toString("base64url"),o=Date.now(),r=new Date(o+a.days(7));return await j.insertOne({authToken:t,createdAt:new Date(o),expiresAt:r,userId:e}),{authToken:t,expiresAt:r,userId:e}}async function ao(e){let t=Date.now(),o=new Date(t+a.days(7));await j.updateOne({authToken:e.authToken},{$set:{lastActiveDate:new Date(t),expiresAt:o}});}var Je=new E("_system.session",{stores:[j],mutations:{init:async function(e,{session:t,user:o}){return {session:t,user:o,configs:b$1()}},heartbeat:async function(e,{session:t}){t&&await ao(t);}}});var m=new w("_modelenceUsers",{schema:{handle:d.string(),emails:d.array(d.object({address:d.string(),verified:d.boolean()})).optional(),status:d.enum(["active","disabled","deleted"]).optional(),createdAt:d.date(),disabledAt:d.date().optional(),deletedAt:d.date().optional(),roles:d.array(d.string()).optional(),authMethods:d.object({password:d.object({hash:d.string()}).optional(),google:d.object({id:d.string()}).optional(),github:d.object({id:d.string()}).optional()})},indexes:[{key:{handle:1},unique:true,collation:{locale:"en",strength:2}},{key:{"emails.address":1,status:1}},{key:{"authMethods.google.id":1,status:1},sparse:true},{key:{"authMethods.github.id":1,status:1},sparse:true}]}),B=new w("_modelenceDisposableEmailDomains",{schema:{domain:d.string(),addedAt:d.date()},indexes:[{key:{domain:1},unique:true}]}),T=new w("_modelenceEmailVerificationTokens",{schema:{userId:d.objectId(),email:d.string().optional(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]}),S=new w("_modelenceResetPasswordTokens",{schema:{userId:d.objectId(),token:d.string(),createdAt:d.date(),expiresAt:d.date()},indexes:[{key:{token:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Ge=new Map,$={authenticated:null,unauthenticated:null};function He(e,t){$.authenticated=t.authenticated,$.unauthenticated=t.unauthenticated;for(let[o,r]of Object.entries(e))Ge.set(o,r);}function X(){return $.unauthenticated?[$.unauthenticated]:[]}function Qe(){return $.authenticated?[$.authenticated]:[]}function he(e,t){let o=t.find(r=>!co(e,r));if(o)throw new Error(`Access denied - missing permission: '${o}'`)}function co(e,t){for(let o of e){let r=Ge.get(o);if(r&&r.permissions.includes(t))return true}return false}async function R(e){let t=await Be(e),o=t.userId?await m.findOne({_id:new ObjectId(t.userId),status:{$nin:["deleted","disabled"]}}):null,r=o?{id:o._id.toString(),handle:o.handle,roles:o.roles||[],hasRole:i=>(o.roles||[]).includes(i),requireRole:i=>{if(!(o.roles||[]).includes(i))throw new Error(`Access denied - role '${i}' required`)}}:null,n=r?Qe():X();return {user:r,session:t,roles:n}}var D=null;async function Ke(){if(D)return D;let e=M();if(!e)throw new Error("MongoDB URI is not set");D=new MongoClient(e,{maxPoolSize:20});try{return await D.connect(),await D.db("admin").command({ping:1}),console.log("Pinged your deployment. You successfully connected to MongoDB!"),D}catch(t){throw console.error(t),D=null,t}}function M(){let e=a$1("_system.mongodbUri");return e?String(e):void 0}function ee(){return D}function po(){return typeof window!="object"}function k(){if(!po())throw new Error("This function can only be called on the server")}function te(e){return e.replace(/<[^>]*>/g,"").replace(/\s+/g," ").trim()}var oe={};function ge(e,t){return k(),tt(e),re("query",e,t)}function Ye(e,t){return k(),tt(e),re("mutation",e,t)}function Xe(e,t){return k(),ot(e),re("query",e,t)}function et(e,t){return k(),ot(e),re("mutation",e,t)}function tt(e){if(e.toLowerCase().startsWith("_system."))throw new Error(`Method name cannot start with a reserved prefix: '_system.' (${e})`)}function ot(e){if(!e.toLowerCase().startsWith("_system."))throw new Error(`System method name must start with a prefix: '_system.' (${e})`)}function re(e,t,o){if(k(),oe[t])throw new Error(`Method with name '${t}' is already defined.`);let r=typeof o=="function"?o:o.handler,n=typeof o=="function"?[]:o.permissions??[];oe[t]={type:e,name:t,handler:r,permissions:n};}async function rt(e,t,o){k();let r=oe[e];if(!r)throw new Error(`Method with name '${e}' is not defined.`);let{type:n,handler:i}=r,s=k$1("method",`method:${e}`,{type:n,args:t}),a;try{he(o.roles,r.permissions),a=await i(t,o);}catch(l){throw s.end("error"),l}return s.end(),a}async function nt(e,t,o,r){k();let n=oe[e];if(!n)throw new Error(`Method with name '${e}' is not defined.`);let{type:i,handler:s}=n;if(i!=="query")throw new Error("Live methods are only supported for queries");let a=k$1("method",`method:${e}:live`,{type:i,args:t});try{he(o.roles,n.permissions);let l={...o,...r},c=await s(t,l);if(a.end(),c!==void 0&&typeof c!="function")throw new Error(`Live query handler for '${e}' must return a cleanup function or undefined, not data. Use publish() to send data to the client.`);return c||null}catch(l){throw a.end("error"),l}}var mo=z$1.object({subscriptionId:z$1.string().min(1),method:z$1.string().min(1),args:z$1.record(z$1.unknown()).default({})}),fo=z$1.object({subscriptionId:z$1.string().min(1)}),W=new Map;function ho(e){let t=W.get(e.id);return t||(t=new Map,W.set(e.id,t)),t}async function ye(e,t){let o=mo.safeParse(t);if(!o.success){e.emit("liveQueryError",{subscriptionId:null,error:`Invalid payload: ${o.error.message}`});return}let{subscriptionId:r,method:n,args:i}=o.data;try{let s=u=>{e.emit("liveQueryData",{subscriptionId:r,data:u,typeMap:a$2(u)});},a=await nt(n,i,e.data,{publish:s}),l=ho(e),c=l.get(r);if(c?.cleanup)try{c.cleanup();}catch(u){console.error("[LiveQuery] Error cleaning up existing subscription:",u);}l.set(r,{cleanup:a});}catch(s){console.error(`[LiveQuery] Error in ${n}:`,s),e.emit("liveQueryError",{subscriptionId:r,error:s instanceof Error?s.message:String(s)});}}function we(e,t){let o=fo.safeParse(t);if(!o.success){console.warn(`[LiveQuery] Invalid unsubscribe payload: ${o.error.message}`);return}let{subscriptionId:r}=o.data,n=W.get(e.id);if(!n)return;let i=n.get(r);if(i){if(i.cleanup)try{i.cleanup();}catch(s){console.error("[LiveQuery] Error in cleanup:",s);}n.delete(r);}}function be(e){let t=W.get(e.id);if(t){for(let o of t.values())if(o.cleanup)try{o.cleanup();}catch(r){console.error("[LiveQuery] Error in cleanup on disconnect:",r);}W.delete(e.id);}}var V=null,wo="_modelenceSocketio";async function bo({httpServer:e,channels:t}){let o=ee();console.log("Initializing Socket.IO server...");let r=null;if(o){r=o.db().collection(wo);try{await r.createIndex({createdAt:1},{expireAfterSeconds:3600,background:!0});}catch(n){console.error("Failed to create index on MongoDB collection for Socket.IO:",n);}}V=new Server(e,{cors:{origin:"*",methods:["GET","POST"]},adapter:r?createAdapter(r):void 0,transports:["polling","websocket"],allowUpgrades:true,perMessageDeflate:false}),V.on("error",n=>{console.error("Socket.IO error:",n);}),V.use(async(n,i)=>{let s=n.handshake.auth.token;try{n.data=await R(s);}finally{i();}}),V.on("connection",n=>{console.log("Socket.IO client connected"),n.on("disconnect",()=>{console.log("Socket.IO client disconnected"),be(n);}),n.on("joinChannel",async i=>{let[s,...a]=i.split(":"),l=a.join(":"),c=false;for(let u of t)if(u.category===s){(!u.canAccessChannel||await u.canAccessChannel({id:l,...n.data}))&&(n.join(i),c=true,n.emit("joinedChannel",i));break}c||n.emit("joinError",{channel:i,error:"Access denied"});}),n.on("leaveChannel",i=>{n.leave(i),console.log(`User ${n.id} left channel ${i}`),n.emit("leftChannel",i);}),n.on("subscribeLiveQuery",i=>ye(n,i)),n.on("unsubscribeLiveQuery",i=>we(n,i));}),console.log("Socket.IO server initialized");}function Eo({category:e,id:t,data:o}){V?.to(`${e}:${t}`).emit(e,o);}var it={init:bo,broadcast:Eo};async function st(e){let t=e.toLowerCase().trim().split("@");if(t.length!==2)return false;let o=t[1];return !!await B.findOne({domain:o})}var at={interval:a.days(1),async handler(){let e=await fetch("https://disposable.github.io/disposable-email-domains/domains.txt");if(!e.ok)throw new Error(`HTTP ${e.status}: ${e.statusText}`);let o=(await e.text()).split(`
|
|
2
|
+
`).map(i=>i.trim().toLowerCase()).filter(i=>i.length>0),r=new Date,n=500;for(let i=0;i<o.length;i+=n){let s=o.slice(i,i+n);try{await B.insertMany(s.map(a=>({domain:a,addedAt:r})));}catch(a){a&&typeof a=="object"&&"name"in a&&a.name;}}}};var Ee=Object.freeze({});function ct(e){Ee=Object.freeze(Object.assign({},Ee,e));}function b(){return Ee}function lt({name:e,email:t,verificationUrl:o}){return `
|
|
3
|
+
<p>Hi${e?` ${e}`:""},</p>
|
|
4
|
+
<p>Please verify your email address ${t} by clicking the link below:</p>
|
|
5
5
|
<p><a href="${o}">${o}</a></p>
|
|
6
6
|
<p>If you did not request this, please ignore this email.</p>
|
|
7
|
-
`}var
|
|
7
|
+
`}var Se=Object.freeze({});function dt(e){Se=Object.freeze(Object.assign({},Se,e));}function h(){return Se}async function ut(e){let t=process.env.MODELENCE_SITE_URL,o=b().emailVerifiedRedirectUrl||t||"/";try{let r=z$1.string().parse(e.query.token),n=await T.findOne({token:r,expiresAt:{$gt:new Date}});if(!n)throw new Error("Invalid or expired verification token");if(!await m.findOne({_id:n.userId}))throw new Error("User not found");let s=n.email;if(!s)throw new Error("Email not found in token");if((await m.updateOne({_id:n.userId,"emails.address":s,"emails.verified":{$ne:!0}},{$set:{"emails.$.verified":!0}})).matchedCount===0)throw await m.findOne({_id:n.userId,"emails.address":s})?new Error("Email is already verified"):new Error("Email address not found for this user");await T.deleteOne({_id:n._id}),h().onAfterEmailVerification?.({provider:"email",user:await m.findOne({"emails.address":n?.email}),session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}});}catch(r){if(r instanceof Error)return h().onEmailVerificationError?.({provider:"email",error:r,session:null,connectionInfo:{baseUrl:t,ip:e.req.ip||e.req.socket.remoteAddress,userAgent:e.headers["user-agent"],acceptLanguage:e.headers["accept-language"],referrer:e.headers.referer}}),console.error("Error verifying email:",r),{status:301,redirect:`${o}?status=error&message=${encodeURIComponent(r.message)}`}}return {status:301,redirect:`${o}?status=verified`}}async function ne({userId:e,email:t,baseUrl:o=process.env.MODELENCE_SITE_URL}){if(b().provider){let r=b().provider,n=randomBytes(32).toString("hex"),i=new Date(Date.now()+a.hours(24));await T.insertOne({userId:e,email:t,token:n,createdAt:new Date,expiresAt:i});let s=`${o}/api/_internal/auth/verify-email?token=${n}`,l=(b()?.verification?.template||lt)({name:"",email:t,verificationUrl:s}),c=te(l);await r?.sendEmail({to:t,from:b()?.from||"noreply@modelence.com",subject:b()?.verification?.subject||"Verify your email address",text:c,html:l});}}function ie(e){return z$1.string().min(8,{message:"Password must contain at least 8 characters"}).parse(e)}function N(e){return z$1.string().email({message:"Invalid email address"}).parse(e)}async function ft(e,{user:t,session:o,connectionInfo:r}){try{if(!o)throw new Error("Session is not initialized");let n=r?.ip;n&&await L({bucket:"signin",type:"ip",value:n});let i=N(e.email),s=z$1.string().parse(e.password),a=await m.findOne({"emails.address":i,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}}),l=a?.authMethods?.password?.hash;if(!l)throw mt();if(!a.emails?.find(f=>f.address===i)?.verified&&b()?.provider){if(n)try{await L({bucket:"verification",type:"user",value:a._id.toString()});}catch{throw new Error("Your email address hasn't been verified yet. Please use the verification email we've send earlier to your inbox.")}throw await ne({userId:a?._id,email:i,baseUrl:r?.baseUrl}),new Error("Your email address hasn't been verified yet. We've sent a new verification email to your inbox.")}if(!await xo.compare(s,l))throw mt();return await We(o.authToken,a._id),h().onAfterLogin?.({provider:"email",user:a,session:o,connectionInfo:r}),h().login?.onSuccess?.(a),{user:{id:a._id,handle:a.handle}}}catch(n){throw n instanceof Error&&(h().onLoginError?.({provider:"email",error:n,session:o,connectionInfo:r}),h().login?.onError?.(n)),n}}async function ht(e,{session:t}){if(!t)throw new Error("Session is not initialized");await Ve(t.authToken);}function mt(){return new Error("Incorrect email/password combination")}async function gt(e,{user:t}){if(!t)throw new Error("Not authenticated");let o=await m.requireById(t.id);return {handle:o.handle,emails:o.emails,authMethods:Object.keys(o.authMethods||{})}}var J=new w("_modelenceRateLimits",{schema:{bucket:d.string(),type:d.enum(["ip","user"]),value:d.string(),windowMs:d.number(),windowStart:d.date(),windowCount:d.number(),prevWindowCount:d.number(),expiresAt:d.date()},indexes:[{key:{bucket:1,type:1,value:1,windowMs:1},unique:true},{key:{expiresAt:1},expireAfterSeconds:0}]});var Ce=[];function yt(e){if(Ce.length>0)throw new Error("Duplicate call to initRateLimits - already initialized");Ce=e;}async function L(e){let{bucket:t,type:o,value:r}=e,n=Ce.filter(i=>i.bucket===t&&i.type===o);for(let i of n)await To(i,r);}async function To(e,t,o){let r=()=>new d$1(`Rate limit exceeded for ${e.bucket}`),n=await J.findOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window}),i=Date.now(),s=Math.floor(i/e.window)*e.window,{count:a,modifier:l}=n?Do(n,s,i):{count:0,modifier:{$setOnInsert:{windowStart:new Date(s),windowCount:1,prevWindowCount:0,expiresAt:new Date(s+e.window+e.window)}}};if(a>=e.limit)throw r();await J.upsertOne({bucket:e.bucket,type:e.type,value:t,windowMs:e.window},l);}function Do(e,t,o){let r=t-e.windowMs;if(e.windowStart.getTime()===t){let n=e.windowCount,i=e.prevWindowCount,s=1-(o-t)/e.windowMs;return {count:Math.round(n+i*s),modifier:{$inc:{windowCount:1},$setOnInsert:{windowStart:new Date(t),prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}if(e.windowStart.getTime()===r){let n=1-(o-t)/e.windowMs;return {count:Math.round(e.windowCount*n),modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:e.windowCount,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}return {count:0,modifier:{$set:{windowStart:new Date(t),windowCount:1,prevWindowCount:0,expiresAt:new Date(t+e.windowMs+e.windowMs)}}}}async function wt(e,{user:t,session:o,connectionInfo:r}){try{let n=N(e.email),i=ie(e.password),s=r?.ip;if(s&&await L({bucket:"signupAttempt",type:"ip",value:s}),await st(n))throw new Error("Please use a permanent email address");let a=await m.findOne({"emails.address":n},{collation:{locale:"en",strength:2}});if(a){let f=a.emails?.find(C=>C.address===n);throw a.status==="disabled"?new Error("User is marked for deletion, please contact support if you want to restore the account."):new Error(`User with email already exists: ${f?.address}`)}s&&await L({bucket:"signup",type:"ip",value:s});let l=await xo.hash(i,10),c=await m.insertOne({handle:n,status:"active",emails:[{address:n,verified:!1}],createdAt:new Date,authMethods:{password:{hash:l}}}),u=await m.findOne({_id:c.insertedId},{readPreference:"primary"});if(!u)throw new Error("User not found");return await ne({userId:c?.insertedId,email:n,baseUrl:r?.baseUrl}),h().onAfterSignup?.({provider:"email",user:u,session:o,connectionInfo:r}),h().signup?.onSuccess?.(u),c.insertedId}catch(n){throw n instanceof Error&&(h().onSignupError?.({provider:"email",error:n,session:o,connectionInfo:r}),h().signup?.onError?.(n)),n}}function Ro(e,t){return t?t.startsWith("http://")||t.startsWith("https://")?t:`${e}${t.startsWith("/")?"":"/"}${t}`:e}function Mo({email:e,resetUrl:t}){return `
|
|
8
8
|
<p>Hi,</p>
|
|
9
|
-
<p>We received a request to reset your password for ${
|
|
9
|
+
<p>We received a request to reset your password for ${e}.</p>
|
|
10
10
|
<p>Click the link below to reset your password:</p>
|
|
11
|
-
<p><a href="${
|
|
11
|
+
<p><a href="${t}">${t}</a></p>
|
|
12
12
|
<p>This link will expire in 1 hour.</p>
|
|
13
13
|
<p>If you did not request this password reset, please ignore this email.</p>
|
|
14
|
-
`}var
|
|
15
|
-
[Output truncated - exceeded size limit]`:f;await H.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:S,appliedAt:new Date}}),i(`Migration v${s} complete`,{source:"migrations"});}catch(d){d instanceof Error&&(await H.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:d.message||"",appliedAt:new Date}}),i(`Migration v${s} is failed: ${d.message}`,{source:"migrations"}));}}await wt("migrations");}}function At(t){setTimeout(()=>{Mo(t).catch(e=>{console.error("Error running migrations:",e);});},0);}var Rt=new E("_system.migration",{stores:[H]});var Mt=new E("_system.rateLimit",{stores:[J]});var It=new E("_system",{configSchema:{mongodbUrl:{type:"string",isPublic:false,default:""},env:{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});var _e=class{async init(){this.config=await Fo(),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let e=[O.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&e.push(O.static(this.config.publicDir)),e}handler(e,o){if(this.isDev())try{o.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),o.status(500).send("Internal Server Error");}else o.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function No(){let t=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,t))?.config||{}}catch(e){return console.warn("Could not load vite config:",e),{}}}function zo(t,e){let o=mergeConfig(t,e);if(o.plugins&&Array.isArray(o.plugins)){let r=new Set;o.plugins=o.plugins.flat().filter(n=>{if(!n||typeof n!="object"||Array.isArray(n))return true;let i=n.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),o.plugins.reverse();}return o}async function Fo(){let t=process.cwd(),e=await No(),o=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(i=>Lo.existsSync(ve.join(t,i))),r=[$o(),qo()];if(o){let i=(await import('vite-plugin-eslint')).default;r.push(i({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:t,overrideConfigFile:ve.resolve(t,o)}));}let n=defineConfig({plugins:r,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true},root:"./src/client",resolve:{alias:{"@":ve.resolve(t,"src").replace(/\\/g,"/")}}});return zo(n,e)}function qo(){return {name:"modelence-asset-handler",async transform(t,e){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(e))return process.env.NODE_ENV==="development",t}}}var Ut=new _e;async function jt(t,e){let{authToken:o}=await pe(e);t.cookie("authToken",o,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict"}),t.status(301),t.redirect("/");}function z(t){return `${a$1("_system.site.url")}/api/_internal/auth/${t}/callback`}async function se(t,e,o){let r=await p.findOne({[`authMethods.${o.providerName}.id`]:o.id}),{session:n,connectionInfo:i}=await ke(t);try{if(r){await jt(e,r._id),h().onAfterLogin?.({provider:o.providerName,user:r,session:n,connectionInfo:i}),h().login?.onSuccess?.(r);return}}catch(s){throw s instanceof Error&&(h().login?.onError?.(s),h().onLoginError?.({provider:o.providerName,error:s,session:n,connectionInfo:i})),s}try{if(!o.email){e.status(400).json({error:`Email address is required for ${o.providerName} authentication.`});return}if(await p.findOne({"emails.address":o.email},{collation:{locale:"en",strength:2}})){e.status(400).json({error:"User with this email already exists. Please log in instead."});return}let a=await p.insertOne({handle:o.email,status:"active",emails:[{address:o.email,verified:o.emailVerified}],createdAt:new Date,authMethods:{[o.providerName]:{id:o.id}}});await jt(e,a.insertedId);let c=await p.findOne({_id:a.insertedId},{readPreference:"primary"});c&&(h().onAfterSignup?.({provider:o.providerName,user:c,session:n,connectionInfo:i}),h().signup?.onSuccess?.(c));}catch(s){throw s instanceof Error&&(h().onSignupError?.({provider:o.providerName,error:s,session:n,connectionInfo:i}),h().signup?.onError?.(s)),s}}function ae(t){return !t||typeof t!="string"?null:t}async function Wo(t,e,o,r){let n=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:t,client_id:e,client_secret:o,redirect_uri:r,grant_type:"authorization_code"})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function Vo(t){let e=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${t}`}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Jo(t,e){let o=ae(t.query.code),r=t.query.state,n=t.cookies.authStateGoogle;if(!o){e.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}e.clearCookie("authStateGoogle");let i=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret")),a=z("google");try{let c=await Wo(o,i,s,a),d=await Vo(c.access_token),f={id:d.id,email:d.email,emailVerified:d.verified_email,providerName:"google"};await se(t,e,f);}catch(c){console.error("Google OAuth error:",c),e.status(500).json({error:"Authentication failed"});}}function Go(){let t=Router(),e=(o,r,n)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"Google authentication is not configured"});return}n();};return t.get("/api/_internal/auth/google",e,(o,r)=>{let n=String(a$1("_system.user.auth.google.clientId")),i=z("google"),s=randomBytes(32).toString("hex");r.cookie("authStateGoogle",s,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let a$2=new URL("https://accounts.google.com/o/oauth2/v2/auth");a$2.searchParams.append("client_id",n),a$2.searchParams.append("redirect_uri",i),a$2.searchParams.append("response_type","code"),a$2.searchParams.append("scope","profile email"),a$2.searchParams.append("access_type","online"),a$2.searchParams.append("state",s),r.redirect(a$2.toString());}),t.get("/api/_internal/auth/google/callback",e,Jo),t}var $t=Go;async function Qo(t,e,o,r){let n=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:e,client_secret:o,code:t,redirect_uri:r})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function Yo(t){let e=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${t}`,Accept:"application/vnd.github.v3+json"}});if(!e.ok)throw new Error(`Failed to fetch user info: ${e.statusText}`);return e.json()}async function Xo(t,e){let o=ae(t.query.code),r=t.query.state,n=t.cookies.authStateGithub;if(!o){e.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){e.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}e.clearCookie("authStateGithub");let i=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret")),a=z("github");try{let c=await Qo(o,i,s,a),d=await Yo(c.access_token),f=d.email||"";if(!f){e.status(400).json({error:"Unable to retrieve email from GitHub. Please ensure your email is public or grant email permissions."});return}let u={id:String(d.id),email:f,emailVerified:!0,providerName:"github"};await se(t,e,u);}catch(c){console.error("GitHub OAuth error:",c),e.status(500).json({error:"Authentication failed"});}}function er(){let t=Router(),e=(o,r,n)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"GitHub authentication is not configured"});return}n();};return t.get("/api/_internal/auth/github",e,(o,r)=>{let n=String(a$1("_system.user.auth.github.clientId")),i=z("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(f=>f.trim()).join(" "):"user:email",c=randomBytes(32).toString("hex");r.cookie("authStateGithub",c,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let d=new URL("https://github.com/login/oauth/authorize");d.searchParams.append("client_id",n),d.searchParams.append("redirect_uri",i),d.searchParams.append("scope",a$2),d.searchParams.append("state",c),r.redirect(d.toString());}),t.get("/api/_internal/auth/github/callback",e,Xo),t}var Lt=er;function Nt(t,e,o){return async(r,n,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&R())try{let{session:d,user:f}=await A(s);a={session:d,user:f};}catch{}let c=k$1("route",`route:${t.toLowerCase()}:${e}`,{method:t,path:e,query:r.query,body:r.body,params:r.params});try{let d=await o({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:n,next:i},a);c.end(),d&&(n.status(d.status||200),d.redirect&&n.redirect(d.redirect),d.headers&&Object.entries(d.headers).forEach(([f,u])=>{n.setHeader(f,u);}),n.send(d.data));}catch(d){c.end("error"),d instanceof a$3?n.status(d.status).send(d.message):(console.error(`Error in route handler: ${r.path}`),console.error(d),n.status(500).send(String(d)));}}}var De=Object.freeze({});function zt(t){De=Object.freeze(Object.assign({},De,t));}function ce(){return De}function rr(t){let e=[];if(!t)return e.push(O.json({limit:"16mb"})),e.push(O.urlencoded({extended:true,limit:"16mb"})),e;if(t.json!==false){let o=typeof t.json=="object"?t.json:{limit:"16mb"};e.push(O.json(o));}if(t.urlencoded!==false){let o=typeof t.urlencoded=="object"?t.urlencoded:{extended:true,limit:"16mb"};e.push(O.urlencoded(o));}if(t.raw){let o=typeof t.raw=="object"?t.raw:{},r={limit:o.limit||"16mb",type:o.type||"*/*"};e.push(O.raw(r));}return e}function nr(t,e){for(let o of e)for(let r of o.routes){let{path:n,handlers:i,body:s}=r,a=rr(s);Object.entries(i).forEach(([c,d])=>{t[c](n,...a,Nt(c,n,d));});}}async function Ft(t,{combinedModules:e,channels:o}){let r=O();r.use(tr()),nr(r,e),r.use(O.json({limit:"16mb"})),r.use(O.urlencoded({extended:true,limit:"16mb"})),r.use($t()),r.use(Lt()),r.post("/api/_internal/method/:methodName(*)",async(a,c)=>{let{methodName:d}=a.params,f=await ke(a);try{let u=await Ot(d,a.body.args,f);c.json({data:u,typeMap:a$2(u)});}catch(u){if(console.error(`Error in method ${d}:`,u),u instanceof a$3)c.status(u.status).send(u.message);else if(u instanceof Error&&u?.constructor?.name==="ZodError"&&"errors"in u){let C=u.flatten(),F=Object.entries(C.fieldErrors).map(([q,de])=>`${q}: ${(de??[]).join(", ")}`).join("; "),le=C.formErrors.join("; "),K=[F,le].filter(Boolean).join("; ");c.status(400).send(K);}else c.status(500).send(u instanceof Error?u.message:String(u));}}),await t.init(),t.middlewares&&r.use(t.middlewares()),r.all("*",(a,c)=>t.handler(a,c)),process.on("unhandledRejection",(a,c)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",c);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let n=or.createServer(r),i$1=ce()?.provider;i$1&&i$1.init({httpServer:n,channels:o});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;n.listen(s,()=>{i("Application started",{source:"app"});let a=process.env.MODELENCE_SITE_URL||`http://localhost:${s}`;console.log(`
|
|
14
|
+
`}var xe={success:true,message:"If an account with that email exists, a password reset link has been sent"};async function bt(e,{connectionInfo:t}){let o=N(e.email),r=await m.findOne({"emails.address":o,status:{$nin:["deleted","disabled"]}},{collation:{locale:"en",strength:2}});if(!r||!r.authMethods?.password)return xe;let n=b().provider;if(!n)throw new Error("Email provider is not configured");let i=randomBytes(32).toString("hex"),s=Date.now(),a$1=new Date(s),l=new Date(s+a.hours(1));await S.insertOne({userId:r._id,token:i,createdAt:a$1,expiresAt:l});let c=process.env.MODELENCE_SITE_URL||t?.baseUrl,f=`${Ro(c,b().passwordReset?.redirectUrl)}?token=${i}`,U=(b()?.passwordReset?.template||Mo)({email:o,resetUrl:f,name:""}),de=te(U);return await n.sendEmail({to:o,from:b()?.from||"noreply@modelence.com",subject:b()?.passwordReset?.subject||"Reset your password",text:de,html:U}),xe}async function Et(e,{}){let t=z$1.string().parse(e.token),o=ie(e.password),r=await S.findOne({token:t});if(!r)throw new Error("Invalid or expired reset token");if(r.expiresAt<new Date)throw await S.deleteOne({token:t}),new Error("Reset token has expired");let n=await m.findOne({_id:r.userId});if(!n)throw new Error("User not found");let i=await xo.hash(o,10);return await m.updateOne({_id:n._id},{$set:{"authMethods.password.hash":i}}),await S.deleteOne({token:t}),{success:true,message:"Password has been reset successfully"}}var St=new E("_system.user",{stores:[m,B,T,S],queries:{getOwnProfile:gt},mutations:{signupWithPassword:wt,loginWithPassword:ft,logout:ht,sendResetPasswordToken:bt,resetPassword:Et},cronJobs:{updateDisposableEmailList:at},rateLimits:[{bucket:"signup",type:"ip",window:a.minutes(15),limit:20},{bucket:"signup",type:"ip",window:a.days(1),limit:200},{bucket:"signupAttempt",type:"ip",window:a.minutes(15),limit:50},{bucket:"signupAttempt",type:"ip",window:a.days(1),limit:500},{bucket:"signin",type:"ip",window:a.minutes(15),limit:50},{bucket:"signin",type:"ip",window:a.days(1),limit:500},{bucket:"verification",type:"user",window:a.minutes(15),limit:3},{bucket:"verification",type:"user",window:a.days(1),limit:10}],configSchema:{"auth.email.enabled":{type:"boolean",isPublic:true,default:true},"auth.email.from":{type:"string",isPublic:false,default:""},"auth.email.verification":{type:"boolean",isPublic:true,default:false},"auth.google.enabled":{type:"boolean",isPublic:true,default:false},"auth.google.clientId":{type:"string",isPublic:false,default:""},"auth.google.clientSecret":{type:"secret",isPublic:false,default:""},"auth.github.enabled":{type:"boolean",isPublic:true,default:false},"auth.github.clientId":{type:"string",isPublic:false,default:""},"auth.github.clientSecret":{type:"secret",isPublic:false,default:""}},routes:[{path:"/api/_internal/auth/verify-email",handlers:{get:ut}}]});async function Ct({configSchema:e,cronJobsMetadata:t,stores:o}){let r=process.env.MODELENCE_CONTAINER_ID;if(!r)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_CONTAINER_ID is not set");try{let n=Object.values(o).map(s=>({name:s.getName(),schema:s.getSerializedSchema(),collections:[s.getName()],version:2})),i=await ve("/api/connect","POST",{hostname:Io.hostname(),containerId:r,dataModels:n,configSchema:e,cronJobsMetadata:t});if(i.status==="error")throw new Error(i.error);return console.log("Successfully connected to Modelence Cloud"),i}catch(n){throw console.error("Unable to connect to Modelence Cloud:",n),n}}async function xt(){return await ve("/api/configs","GET")}async function vt(){return await ve("/api/sync","POST",{containerId:process.env.MODELENCE_CONTAINER_ID})}async function ve(e,t,o){let{MODELENCE_SERVICE_ENDPOINT:r,MODELENCE_SERVICE_TOKEN:n}=process.env;if(!r)throw new Error("Unable to connect to Modelence Cloud: MODELENCE_SERVICE_ENDPOINT is not set");let i=await fetch(`${r}${e}`,{method:t,headers:{Authorization:`Bearer ${n}`,...o?{"Content-Type":"application/json"}:{}},body:o?JSON.stringify(o):void 0});if(!i.ok){let s=await i.text();try{let a=JSON.parse(s);throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${a?.error}`)}catch{throw new Error(`Unable to connect to Modelence Cloud: HTTP status: ${i.status}, ${s}`)}}return await i.json()}var Te=false,Lo=a.seconds(10);function Tt(){setInterval(async()=>{if(!Te){Te=true;try{await vt();}catch(e){console.error("Error syncing status",e);}try{await Po();}catch(e){console.error("Error syncing config",e);}Te=false;}},Lo);}async function Po(){let{configs:e}=await xt();c(e);}var G=new w("_modelenceLocks",{schema:{resource:d.string(),instanceId:d.string(),acquiredAt:d.date()},indexes:[{key:{resource:1},unique:true},{key:{resource:1,instanceId:1}},{key:{resource:1,acquiredAt:1}}]});var z={},Dt=a.seconds(10),kt=randomBytes(32).toString("base64url"),jo=a.seconds(30);async function se(e,{lockDuration:t=jo,successfulLockCacheDuration:o=Dt,failedLockCacheDuration:r=Dt,instanceId:n=kt}={}){let i=Date.now();if(z[e]&&i<z[e].expiresAt)return z[e].value;let s=new Date(i-t);h$1(`Attempting to acquire lock: ${e}`,{source:"lock",resource:e,instanceId:n});try{let a=await G.upsertOne({$or:[{resource:e,instanceId:n},{resource:e,acquiredAt:{$lt:s}}]},{$set:{resource:e,instanceId:n,acquiredAt:new Date}}),l=a.upsertedCount>0||a.modifiedCount>0;return z[e]={value:l,expiresAt:i+(l?o:r)},l?h$1(`Lock acquired: ${e}`,{source:"lock",resource:e,instanceId:n}):h$1(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:n}),l}catch{return z[e]={value:false,expiresAt:i+r},h$1(`Failed to acquire lock (already held): ${e}`,{source:"lock",resource:e,instanceId:n}),false}}async function _t(e,{instanceId:t=kt}={}){let o=await G.deleteOne({resource:e,instanceId:t});return delete z[e],o.deletedCount>0}var $o=a.minutes(1),P={},De=null,ke=new w("_modelenceCronJobs",{schema:{alias:d.string(),lastStartDate:d.date().optional()},indexes:[{key:{alias:1},unique:true,background:true}]});function At(e,{description:t="",interval:o,timeout:r=$o,handler:n}){if(P[e])throw new Error(`Duplicate cron job declaration: '${e}' already exists`);if(De)throw new Error(`Unable to add a cron job - cron jobs have already been initialized: [${e}]`);if(o<a.seconds(5))throw new Error(`Cron job interval should not be less than 5 second [${e}]`);if(r>a.days(1))throw new Error(`Cron job timeout should not be longer than 1 day [${e}]`);P[e]={alias:e,params:{description:t,interval:o,timeout:r},handler:n,state:{isRunning:false}};}async function Rt(){if(De)throw new Error("Cron jobs already started");let e=Object.keys(P);if(e.length>0){let t={alias:{$in:e}},o=await ke.fetch(t),r=Date.now();o.forEach(n=>{let i=P[n.alias];i&&(i.state.scheduledRunTs=n.lastStartDate?n.lastStartDate.getTime()+i.params.interval:r);}),Object.values(P).forEach(n=>{n.state.scheduledRunTs||(n.state.scheduledRunTs=r);}),De=setInterval(No,a.seconds(1));}}async function No(){let e=Date.now();await se("cron",{successfulLockCacheDuration:a.seconds(10),failedLockCacheDuration:a.seconds(30)})&&Object.values(P).forEach(async o=>{let{params:r,state:n}=o;if(n.isRunning){n.startTs&&n.startTs+r.timeout<e&&(n.isRunning=false);return}n.scheduledRunTs&&n.scheduledRunTs<=e&&await zo(o);});}async function zo(e){let{alias:t,params:o,handler:r,state:n}=e;n.isRunning=true,n.startTs=Date.now(),await ke.updateOne({alias:t},{$set:{lastStartDate:new Date(n.startTs)}});let i=k$1("cron",`cron:${t}`);try{await r(),Ot(n,o),i.end("success");}catch(s){Ot(n,o);let a=s instanceof Error?s:new Error(String(s));l(a),i.end("error"),console.error(`Error in cron job '${t}':`,s);}}function Ot(e,t){e.scheduledRunTs=e.startTs?e.startTs+t.interval:Date.now(),e.startTs=void 0,e.isRunning=false;}function Mt(){return Object.values(P).map(({alias:e,params:t})=>({alias:e,description:t.description,interval:t.interval,timeout:t.timeout}))}var It=new E("_system.cron",{stores:[ke]});var _e=new E("_system.lock",{stores:[G]});var H=new w("_modelenceMigrations",{schema:{version:d.number(),status:d.enum(["completed","failed"]),description:d.string().optional(),output:d.string().optional(),appliedAt:d.date()},indexes:[{key:{version:1},unique:true},{key:{version:1,status:1}}]});async function Fo(e){if(e.length===0)return;if(!await se("migrations")){i("Another instance is running migrations. Skipping migration run.",{source:"migrations"});return}let o=e.map(({version:s})=>s),r=await H.fetch({version:{$in:o}}),n=new Set(r.map(({version:s})=>s)),i$1=e.filter(({version:s})=>!n.has(s));if(i$1.length!==0){i(`Running migrations (${i$1.length})...`,{source:"migrations"});for(let{version:s,description:a,handler:l}of i$1){i(`Running migration v${s}: ${a}`,{source:"migrations"});try{let u=(await l()||"").toString().trim(),f=15*1024*1024,C=u.length>f?u.slice(0,f)+`
|
|
15
|
+
[Output truncated - exceeded size limit]`:u;await H.upsertOne({version:s},{$set:{version:s,status:"completed",description:a,output:C,appliedAt:new Date}}),i(`Migration v${s} complete`,{source:"migrations"});}catch(c){c instanceof Error&&(await H.upsertOne({version:s},{$set:{version:s,status:"failed",description:a,output:c.message||"",appliedAt:new Date}}),i(`Migration v${s} is failed: ${c.message}`,{source:"migrations"}));}}await _t("migrations");}}function Lt(e){setTimeout(()=>{Fo(e).catch(t=>{console.error("Error running migrations:",t);});},0);}var Pt=new E("_system.migration",{stores:[H]});var Ut=new E("_system.rateLimit",{stores:[J]});var jt=new E("_system",{configSchema:{mongodbUrl:{type:"string",isPublic:false,default:""},env:{type:"string",isPublic:true,default:""},"site.url":{type:"string",isPublic:true,default:""}}});var Ae=class{async init(){this.config=await Qo(),this.isDev()&&(console.log("Starting Vite dev server..."),this.viteServer=await createServer(this.config));}middlewares(){if(this.isDev())return this.viteServer?.middlewares??[];let t=[O.static("./.modelence/build/client".replace(/\\/g,"/"))];return this.config?.publicDir&&t.push(O.static(this.config.publicDir)),t}handler(t,o){if(this.isDev())try{o.sendFile("index.html",{root:"./src/client"});}catch(r){console.error("Error serving index.html:",r),o.status(500).send("Internal Server Error");}else o.sendFile("index.html",{root:"./.modelence/build/client".replace(/\\/g,"/")});}isDev(){return process.env.NODE_ENV!=="production"}};async function Go(){let e=process.cwd();try{return (await loadConfigFromFile({command:"serve",mode:"development"},void 0,e))?.config||{}}catch(t){return console.warn("Could not load vite config:",t),{}}}function Ho(e,t){let o=mergeConfig(e,t);if(o.plugins&&Array.isArray(o.plugins)){let r=new Set;o.plugins=o.plugins.flat().filter(n=>{if(!n||typeof n!="object"||Array.isArray(n))return true;let i=n.name;return !i||r.has(i)?false:(r.add(i),true)}).reverse(),o.plugins.reverse();}return o}async function Qo(){let e=process.cwd(),t=await Go(),o=[".eslintrc.js",".eslintrc.json",".eslintrc","eslint.config.js",".eslintrc.yml",".eslintrc.yaml"].find(i=>Jo.existsSync(Oe.join(e,i))),r=[Vo(),Ko()];if(o){let i=(await import('vite-plugin-eslint')).default;r.push(i({failOnError:false,include:["src/**/*.js","src/**/*.jsx","src/**/*.ts","src/**/*.tsx"],cwd:e,overrideConfigFile:Oe.resolve(e,o)}));}let n=defineConfig({plugins:r,build:{outDir:".modelence/build/client".replace(/\\/g,"/"),emptyOutDir:true},server:{middlewareMode:true},root:"./src/client",resolve:{alias:{"@":Oe.resolve(e,"src").replace(/\\/g,"/")}}});return Ho(n,t)}function Ko(){return {name:"modelence-asset-handler",async transform(e,t){if(/\.(png|jpe?g|gif|svg|mpwebm|ogg|mp3|wav|flac|aac)$/.test(t))return process.env.NODE_ENV==="development",e}}}var Nt=new Ae;async function zt(e,t){let{authToken:o}=await fe(t);e.cookie("authToken",o,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"strict"}),e.status(301),e.redirect("/");}function F(e){return `${a$1("_system.site.url")}/api/_internal/auth/${e}/callback`}async function ae(e,t,o){let r=await m.findOne({[`authMethods.${o.providerName}.id`]:o.id}),{session:n,connectionInfo:i}=await Re(e);try{if(r){await zt(t,r._id),h().onAfterLogin?.({provider:o.providerName,user:r,session:n,connectionInfo:i}),h().login?.onSuccess?.(r);return}}catch(s){throw s instanceof Error&&(h().login?.onError?.(s),h().onLoginError?.({provider:o.providerName,error:s,session:n,connectionInfo:i})),s}try{if(!o.email){t.status(400).json({error:`Email address is required for ${o.providerName} authentication.`});return}if(await m.findOne({"emails.address":o.email},{collation:{locale:"en",strength:2}})){t.status(400).json({error:"User with this email already exists. Please log in instead."});return}let a=await m.insertOne({handle:o.email,status:"active",emails:[{address:o.email,verified:o.emailVerified}],createdAt:new Date,authMethods:{[o.providerName]:{id:o.id}}});await zt(t,a.insertedId);let l=await m.findOne({_id:a.insertedId},{readPreference:"primary"});l&&(h().onAfterSignup?.({provider:o.providerName,user:l,session:n,connectionInfo:i}),h().signup?.onSuccess?.(l));}catch(s){throw s instanceof Error&&(h().onSignupError?.({provider:o.providerName,error:s,session:n,connectionInfo:i}),h().signup?.onError?.(s)),s}}function ce(e){return !e||typeof e!="string"?null:e}async function er(e,t,o,r){let n=await fetch("https://oauth2.googleapis.com/token",{method:"POST",headers:{"Content-Type":"application/x-www-form-urlencoded"},body:new URLSearchParams({code:e,client_id:t,client_secret:o,redirect_uri:r,grant_type:"authorization_code"})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function tr(e){let t=await fetch("https://www.googleapis.com/oauth2/v2/userinfo",{headers:{Authorization:`Bearer ${e}`}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function or(e,t){let o=ce(e.query.code),r=e.query.state,n=e.cookies.authStateGoogle;if(!o){t.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGoogle");let i=String(a$1("_system.user.auth.google.clientId")),s=String(a$1("_system.user.auth.google.clientSecret")),a=F("google");try{let l=await er(o,i,s,a),c=await tr(l.access_token),u={id:c.id,email:c.email,emailVerified:c.verified_email,providerName:"google"};await ae(e,t,u);}catch(l){console.error("Google OAuth error:",l),t.status(500).json({error:"Authentication failed"});}}function rr(){let e=Router(),t=(o,r,n)=>{let i=!!a$1("_system.user.auth.google.enabled"),s=String(a$1("_system.user.auth.google.clientId")),a=String(a$1("_system.user.auth.google.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"Google authentication is not configured"});return}n();};return e.get("/api/_internal/auth/google",t,(o,r)=>{let n=String(a$1("_system.user.auth.google.clientId")),i=F("google"),s=randomBytes(32).toString("hex");r.cookie("authStateGoogle",s,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let a$2=new URL("https://accounts.google.com/o/oauth2/v2/auth");a$2.searchParams.append("client_id",n),a$2.searchParams.append("redirect_uri",i),a$2.searchParams.append("response_type","code"),a$2.searchParams.append("scope","profile email"),a$2.searchParams.append("access_type","online"),a$2.searchParams.append("state",s),r.redirect(a$2.toString());}),e.get("/api/_internal/auth/google/callback",t,or),e}var Ft=rr;async function sr(e,t,o,r){let n=await fetch("https://github.com/login/oauth/access_token",{method:"POST",headers:{"Content-Type":"application/json",Accept:"application/json"},body:JSON.stringify({client_id:t,client_secret:o,code:e,redirect_uri:r})});if(!n.ok)throw new Error(`Failed to exchange code for token: ${n.statusText}`);return n.json()}async function ar(e){let t=await fetch("https://api.github.com/user",{headers:{Authorization:`Bearer ${e}`,Accept:"application/vnd.github.v3+json"}});if(!t.ok)throw new Error(`Failed to fetch user info: ${t.statusText}`);return t.json()}async function cr(e,t){let o=ce(e.query.code),r=e.query.state,n=e.cookies.authStateGithub;if(!o){t.status(400).json({error:"Missing authorization code"});return}if(!r||!n||r!==n){t.status(400).json({error:"Invalid OAuth state - possible CSRF attack"});return}t.clearCookie("authStateGithub");let i=String(a$1("_system.user.auth.github.clientId")),s=String(a$1("_system.user.auth.github.clientSecret")),a=F("github");try{let l=await sr(o,i,s,a),c=await ar(l.access_token),u=c.email||"";if(!u){t.status(400).json({error:"Unable to retrieve email from GitHub. Please ensure your email is public or grant email permissions."});return}let f={id:String(c.id),email:u,emailVerified:!0,providerName:"github"};await ae(e,t,f);}catch(l){console.error("GitHub OAuth error:",l),t.status(500).json({error:"Authentication failed"});}}function lr(){let e=Router(),t=(o,r,n)=>{let i=!!a$1("_system.user.auth.github.enabled"),s=String(a$1("_system.user.auth.github.clientId")),a=String(a$1("_system.user.auth.github.clientSecret"));if(!i||!s||!a){r.status(503).json({error:"GitHub authentication is not configured"});return}n();};return e.get("/api/_internal/auth/github",t,(o,r)=>{let n=String(a$1("_system.user.auth.github.clientId")),i=F("github"),s=a$1("_system.user.auth.github.scopes"),a$2=s?String(s).split(",").map(u=>u.trim()).join(" "):"user:email",l=randomBytes(32).toString("hex");r.cookie("authStateGithub",l,{httpOnly:true,secure:process.env.NODE_ENV==="production",sameSite:"lax",maxAge:a.minutes(10)});let c=new URL("https://github.com/login/oauth/authorize");c.searchParams.append("client_id",n),c.searchParams.append("redirect_uri",i),c.searchParams.append("scope",a$2),c.searchParams.append("state",l),r.redirect(c.toString());}),e.get("/api/_internal/auth/github/callback",t,cr),e}var qt=lr;function Zt(e,t,o){return async(r,n,i)=>{let s=r.headers["x-modelence-auth-token"],a={session:null,user:null};if(typeof s=="string"&&M())try{let{session:c,user:u}=await R(s);a={session:c,user:u};}catch{}let l=k$1("route",`route:${e.toLowerCase()}:${t}`,{method:e,path:t,query:r.query,body:r.body,params:r.params});try{let c=await o({query:r.query,body:r.body,params:r.params,headers:r.headers,cookies:r.cookies,rawBody:Buffer.isBuffer(r.body)?r.body:void 0,req:r,res:n,next:i},a);l.end(),c&&(n.status(c.status||200),c.redirect&&n.redirect(c.redirect),c.headers&&Object.entries(c.headers).forEach(([u,f])=>{n.setHeader(u,f);}),n.send(c.data));}catch(c){l.end("error"),c instanceof a$3?n.status(c.status).send(c.message):(console.error(`Error in route handler: ${r.path}`),console.error(c),n.status(500).send(String(c)));}}}var Me=Object.freeze({});function Bt(e){Me=Object.freeze(Object.assign({},Me,e));}function le(){return Me}function pr(e){let t=[];if(!e)return t.push(O.json({limit:"16mb"})),t.push(O.urlencoded({extended:true,limit:"16mb"})),t;if(e.json!==false){let o=typeof e.json=="object"?e.json:{limit:"16mb"};t.push(O.json(o));}if(e.urlencoded!==false){let o=typeof e.urlencoded=="object"?e.urlencoded:{extended:true,limit:"16mb"};t.push(O.urlencoded(o));}if(e.raw){let o=typeof e.raw=="object"?e.raw:{},r={limit:o.limit||"16mb",type:o.type||"*/*"};t.push(O.raw(r));}return t}function mr(e,t){for(let o of t)for(let r of o.routes){let{path:n,handlers:i,body:s}=r,a=pr(s);Object.entries(i).forEach(([l,c])=>{e[l](n,...a,Zt(l,n,c));});}}async function Wt(e,{combinedModules:t,channels:o}){let r=O();r.use(dr()),mr(r,t),r.use(O.json({limit:"16mb"})),r.use(O.urlencoded({extended:true,limit:"16mb"})),r.use(Ft()),r.use(qt()),r.post("/api/_internal/method/:methodName(*)",async(a,l)=>{let{methodName:c}=a.params,u=await Re(a);try{let f=await rt(c,a.body.args,u);l.json({data:f,typeMap:a$2(f)});}catch(f){fr(l,c,f);}}),await e.init(),e.middlewares&&r.use(e.middlewares()),r.all("*",(a,l)=>e.handler(a,l)),process.on("unhandledRejection",(a,l)=>{console.error("Unhandled Promise Rejection:"),console.error(a instanceof Error?a.stack:a),console.error("Promise:",l);}),process.on("uncaughtException",a=>{console.error("Uncaught Exception:"),console.error(a.stack),console.trace("Full application stack:");});let n=ur.createServer(r),i$1=le()?.provider;i$1&&i$1.init({httpServer:n,channels:o});let s=process.env.MODELENCE_PORT||process.env.PORT||3e3;n.listen(s,()=>{i("Application started",{source:"app"});let a=process.env.MODELENCE_SITE_URL||`http://localhost:${s}`;console.log(`
|
|
16
16
|
Application started on ${a}
|
|
17
|
-
`);});}async function
|
|
18
|
-
export{E as Module,
|
|
17
|
+
`);});}async function Re(e){let t=_.string().nullish().transform(i=>i??null).parse(e.cookies.authToken||e.body.authToken),o=_.object({screenWidth:_.number(),screenHeight:_.number(),windowWidth:_.number(),windowHeight:_.number(),pixelRatio:_.number(),orientation:_.string().nullable()}).nullish().parse(e.body.clientInfo)??{screenWidth:0,screenHeight:0,windowWidth:0,windowHeight:0,pixelRatio:1,orientation:null},r={ip:hr(e),userAgent:e.get("user-agent"),acceptLanguage:e.get("accept-language"),referrer:e.get("referrer"),baseUrl:e.protocol+"://"+e.get("host")};if(!!M()){let{session:i,user:s,roles:a}=await R(t);return {clientInfo:o,connectionInfo:r,session:i,user:s,roles:a}}return {clientInfo:o,connectionInfo:r,session:null,user:null,roles:X()}}function fr(e,t,o){if(console.error(`Error in method ${t}:`,o),o instanceof a$3)e.status(o.status).send(o.message);else if(o instanceof Error&&o?.constructor?.name==="ZodError"&&"errors"in o){let n=o.flatten(),i=Object.entries(n.fieldErrors).map(([l,c])=>`${l}: ${(c??[]).join(", ")}`).join("; "),s=n.formErrors.join("; "),a=[i,s].filter(Boolean).join("; ");e.status(400).send(a);}else e.status(500).send(o instanceof Error?o.message:String(o));}function hr(e){let t=e.headers["x-forwarded-for"];if(t)return (Array.isArray(t)?t[0]:t.split(",")[0]).trim();let o=e.ip||e.socket?.remoteAddress;if(o)return o.startsWith("::ffff:")?o.substring(7):o}async function br({modules:e$1=[],roles:t={},defaultRoles:o={},server:r=Nt,migrations:n=[],email:i={},auth:s={},websocket:a={}}){Vt.config(),Vt.config({path:".modelence.env"});let l=!!process.env.MODELENCE_SERVICE_ENDPOINT,c$1=process.env.MODELENCE_CRON_ENABLED==="true";Rr().then(()=>{}).catch(()=>{});let u=[St,Je,It,Pt,Ut,jt,_e],f$1=[...u,...e$1];e(),Sr(u),Er(e$1),He(t,o);let C=Tr(f$1);d$2(C);let U=Cr(f$1),de=xr(f$1);c$1&&Dr(f$1);let Gt=vr(f$1);if(yt(Gt),l){let{configs:ue,environmentId:Ht,appAlias:Qt,environmentAlias:Kt,telemetry:Yt}=await Ct({configSchema:C,cronJobsMetadata:c$1?Mt():void 0,stores:U});c(ue),f({environmentId:Ht,appAlias:Qt,environmentAlias:Kt,telemetry:Yt});}else c(Ar(C));ct(i),dt(s),Bt({...a,provider:a.provider||it});let Le=M();if(Le&&(await Ke(),kr(U)),c$1&&Lt(n),Le)for(let ue of U)ue.createIndexes();l&&(await g(),Tt()),c$1&&Rt().catch(console.error),await Wt(r,{combinedModules:f$1,channels:de});}function Er(e){for(let t of e){for(let[o,r]of Object.entries(t.queries))ge(`${t.name}.${o}`,r);for(let[o,r]of Object.entries(t.mutations))Ye(`${t.name}.${o}`,r);}}function Sr(e){for(let t of e){for(let[o,r]of Object.entries(t.queries))Xe(`${t.name}.${o}`,r);for(let[o,r]of Object.entries(t.mutations))et(`${t.name}.${o}`,r);}}function Cr(e){return e.flatMap(t=>t.stores)}function xr(e){return e.flatMap(t=>t.channels)}function vr(e){return e.flatMap(t=>t.rateLimits)}function Tr(e){let t={};for(let o of e)for(let[r,n]of Object.entries(o.configSchema)){let i=`${o.name}.${r}`;if(i in t)throw new Error(`Duplicate config schema key: ${i} (${o.name})`);t[i]=n;}return t}function Dr(e){for(let t of e)for(let[o,r]of Object.entries(t.cronJobs))At(`${t.name}.${o}`,r);}function kr(e){let t=ee();if(!t)throw new Error("Failed to initialize stores: MongoDB client not initialized");for(let o of e)o.init(t);}var _r={MONGODB_URI:"_system.mongodbUri",MODELENCE_AUTH_GOOGLE_ENABLED:"_system.user.auth.google.enabled",MODELENCE_AUTH_GOOGLE_CLIENT_ID:"_system.user.auth.google.clientId",MODELENCE_AUTH_GOOGLE_CLIENT_SECRET:"_system.user.auth.google.clientSecret",MODELENCE_AUTH_GITHUB_ENABLED:"_system.user.auth.github.enabled",MODELENCE_AUTH_GITHUB_CLIENT_ID:"_system.user.auth.github.clientId",MODELENCE_AUTH_GITHUB_CLIENT_SECRET:"_system.user.auth.github.clientSecret",MODELENCE_AUTH_GITHUB_CLIENT_SCOPES:"_system.user.auth.github.scopes",MODELENCE_EMAIL_RESEND_API_KEY:"_system.email.resend.apiKey",MODELENCE_EMAIL_AWS_SES_REGION:"_system.email.awsSes.region",MODELENCE_EMAIL_AWS_SES_ACCESS_KEY_ID:"_system.email.awsSes.accessKeyId",MODELENCE_EMAIL_AWS_SES_SECRET_ACCESS_KEY:"_system.email.awsSes.secretAccessKey",MODELENCE_EMAIL_SMTP_HOST:"_system.email.smtp.host",MODELENCE_EMAIL_SMTP_PORT:"_system.email.smtp.port",MODELENCE_EMAIL_SMTP_USER:"_system.email.smtp.user",MODELENCE_EMAIL_SMTP_PASS:"_system.email.smtp.pass",MODELENCE_SITE_URL:"_system.site.url",MODELENCE_ENV:"_system.env",GOOGLE_AUTH_ENABLED:"_system.user.auth.google.enabled",GOOGLE_AUTH_CLIENT_ID:"_system.user.auth.google.clientId",GOOGLE_AUTH_CLIENT_SECRET:"_system.user.auth.google.clientSecret"};function Or(e,t){if(t==="number"){let o=Number(e);if(isNaN(o))throw new Error(`Invalid number value for config: ${e}`);return o}if(t==="boolean"){if(e.toLowerCase()==="true")return true;if(e.toLowerCase()==="false")return false;throw new Error(`Invalid boolean value for config: ${e}`)}return e}function Ar(e){let t=[];for(let[o,r]of Object.entries(_r)){let n=process.env[o],i=e[r];if(n){let s=i?.type??"string";t.push({key:r,type:s,value:Or(n,s)});}}return t}async function Rr(){if(process.env.MODELENCE_TRACKING_ENABLED!=="false"){let t=process.env.MODELENCE_SERVICE_ENDPOINT??"https://cloud.modelence.com",o=process.env.MODELENCE_ENVIRONMENT_ID,r=await Mr(),n=await import('./package-IANIDSBZ.js');await fetch(`${t}/api/track/app-start`,{method:"POST",headers:{"Content-Type":"application/json"},body:JSON.stringify({projectName:r.name,version:n.default.version,localHostname:Io.hostname(),environmentId:o})});}}async function Mr(){try{let e=Oe.join(process.cwd(),"package.json"),t=await gr.readFile(e,"utf-8");return {name:JSON.parse(t).name||"unknown"}}catch{return {name:"unknown"}}}async function Jt(e){await T.deleteMany({userId:e}),await S.deleteMany({userId:e});}async function Lr(e){await Jt(e),await m.updateOne(e,{$set:{status:"disabled",disabledAt:new Date}});}async function Pr(e){await Jt(e),await m.updateOne({_id:e},{$set:{handle:`deleted-${e}-${randomUUID()}`,status:"deleted",deletedAt:new Date,authMethods:{},emails:[]}});}var Ie=class{constructor(t,o){this.category=t,this.canAccessChannel=o||null;}broadcast(t,o){let r=le().provider;if(!r){j$1("Websockets provider should be added to startApp",{});return}r.broadcast({category:this.category,id:t,data:o});}};function Ur(e){if(!b().provider)throw new Error("Email provider is not configured, see https://docs.modelence.com/email for more details.");return b().provider?.sendEmail(e)}
|
|
18
|
+
export{E as Module,Ie as ServerChannel,w as Store,R as authenticate,L as consumeRateLimit,ge as createQuery,m as dbUsers,Pr as deleteUser,Lr as disableUser,d as schema,Ur as sendEmail,br as startApp};//# sourceMappingURL=server.js.map
|
|
19
19
|
//# sourceMappingURL=server.js.map
|