myaidev-method 0.2.8 → 0.2.10

package/dist/server/auth/example-usage.js

@@ -0,0 +1,129 @@
+/**
+ * Example usage of the authentication system
+ * This file demonstrates how to integrate the auth system with Hono
+ */
+import { Hono } from "hono";
+import { Layer } from "effect";
+import { createAuthRoutes, createAuthMiddleware } from "./index.js";
+import { PasswordService } from "./services/PasswordService.js";
+import { TokenService } from "./services/TokenService.js";
+import { UserRepository } from "./services/UserRepository.js";
+import { SessionRepository } from "./services/SessionRepository.js";
+import { AuditLogService } from "./services/AuditLogService.js";
+import { AuthService } from "./services/AuthService.js";
+import { DatabaseService } from "../database/db.js";
+// Build the complete application layer with all services
+const DbLayer = DatabaseService.Live({
+    path: process.env["DB_PATH"] || "./auth.db",
+    timeout: 5000,
+    verbose: process.env["NODE_ENV"] === "development",
+});
+const IndependentServices = Layer.mergeAll(PasswordService.Live, TokenService.Live, AuditLogService.Live);
+const Repositories = Layer.mergeAll(UserRepository.Live, SessionRepository.Live);
+const Auth = AuthService.Live;
+const AppLayer = Layer.mergeAll(IndependentServices, Repositories, Auth).pipe(Layer.provide(DbLayer));
+// Create main app
+const app = new Hono();
+// Create middleware and routes with AppLayer
+const authMiddleware = createAuthMiddleware(AppLayer);
+const authRouter = createAuthRoutes(AppLayer, authMiddleware);
+// Mount authentication routes (public)
+app.route("/api/auth", authRouter);
+// Protected route example - requires authentication
+app.get("/api/protected/profile", authMiddleware, (c) => {
+    const user = c.get("user");
+    const session = c.get("session");
+    return c.json({
+        message: "This is a protected endpoint",
+        user: {
+            id: user.id,
+            username: user.username,
+            email: user.email,
+        },
+        session: {
+            id: session.id,
+            createdAt: session.createdAt,
+            expiresAt: session.expiresAt,
+        },
+    });
+});
+// Protected route example - user data
+app.get("/api/protected/data", authMiddleware, (c) => {
+    const user = c.get("user");
+    return c.json({
+        data: {
+            userId: user.id,
+            username: user.username,
+            linuxUsername: user.linuxUsername,
+            isActive: user.isActive,
+            emailVerified: user.emailVerified,
+        },
+    });
+});
+// Admin-only route example
+app.get("/api/protected/admin", authMiddleware, (c) => {
+    const user = c.get("user");
+    // Add your own admin check logic here
+    // For example, check if user has admin role
+    if (user.email !== "admin@example.com") {
+        return c.json({ error: "FORBIDDEN", message: "Admin access required" }, 403);
+    }
+    return c.json({
+        message: "Welcome to admin panel",
+        adminData: "Sensitive information",
+    });
+});
+// Health check endpoint (public)
+app.get("/health", (c) => {
+    return c.json({ status: "ok", timestamp: Date.now() });
+});
+// Start server
+const port = process.env["PORT"] || 3000;
+console.log(`Server starting on port ${port}`);
+export default app;
+/**
+ * To run this example:
+ *
+ * 1. Install dependencies:
+ *    npm install hono effect bcrypt jose
+ *
+ * 2. Set up environment:
+ *    export NODE_ENV=development
+ *    export PORT=3000
+ *
+ * 3. Initialize database:
+ *    node --import tsx/esm src/server/database/init-db.ts
+ *
+ * 4. Run the server:
+ *    node --import tsx/esm src/server/auth/example-usage.ts
+ *
+ * API Usage Examples:
+ *
+ * Register:
+ *   curl -X POST http://localhost:3000/api/auth/register \
+ *     -H "Content-Type: application/json" \
+ *     -d '{"username":"testuser","email":"test@example.com","password":"SecurePass123"}'
+ *
+ * Login:
+ *   curl -X POST http://localhost:3000/api/auth/login \
+ *     -H "Content-Type: application/json" \
+ *     -d '{"email":"test@example.com","password":"SecurePass123"}' \
+ *     -c cookies.txt
+ *
+ * Access protected endpoint (with cookie):
+ *   curl http://localhost:3000/api/protected/profile \
+ *     -b cookies.txt
+ *
+ * Access protected endpoint (with Bearer token):
+ *   curl http://localhost:3000/api/protected/profile \
+ *     -H "Authorization: Bearer <token>"
+ *
+ * Get current user:
+ *   curl http://localhost:3000/api/auth/me \
+ *     -b cookies.txt
+ *
+ * Logout:
+ *   curl -X POST http://localhost:3000/api/auth/logout \
+ *     -b cookies.txt
+ */
+//# sourceMappingURL=example-usage.js.map

package/dist/server/auth/example-usage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"example-usage.js","sourceRoot":"","sources":["../../../src/server/auth/example-usage.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,gBAAgB,EAAE,oBAAoB,EAAE,MAAM,YAAY,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAEpD,yDAAyD;AACzD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACnC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,WAAW;IAC3C,OAAO,EAAE,IAAI;IACb,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,aAAa;CACnD,CAAC,CAAC;AAEH,MAAM,mBAAmB,GAAG,KAAK,CAAC,QAAQ,CACxC,eAAe,CAAC,IAAI,EACpB,YAAY,CAAC,IAAI,EACjB,eAAe,CAAC,IAAI,CACrB,CAAC;AAEF,MAAM,YAAY,GAAG,KAAK,CAAC,QAAQ,CACjC,cAAc,CAAC,IAAI,EACnB,iBAAiB,CAAC,IAAI,CACvB,CAAC;AAEF,MAAM,IAAI,GAAG,WAAW,CAAC,IAAI,CAAC;AAE9B,MAAM,QAAQ,GAAG,KAAK,CAAC,QAAQ,CAC7B,mBAAmB,EACnB,YAAY,EACZ,IAAI,CACL,CAAC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC;AAE/B,kBAAkB;AAClB,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;AAEvB,6CAA6C;AAC7C,MAAM,cAAc,GAAG,oBAAoB,CAAC,QAAQ,CAAC,CAAC;AACtD,MAAM,UAAU,GAAG,gBAAgB,CAAC,QAAQ,EAAE,cAAc,CAAC,CAAC;AAE9D,uCAAuC;AACvC,GAAG,CAAC,KAAK,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;AAEnC,oDAAoD;AACpD,GAAG,CAAC,GAAG,CAAC,wBAAwB,EAAE,cAAc,EAAE,CAAC,CAAC,EAAE,EAAE;IACtD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAC3B,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAEjC,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,OAAO,EAAE,8BAA8B;QACvC,IAAI,EAAE;YACJ,EAAE,EAAE,IAAI,CAAC,EAAE;YACX,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,KAAK,EAAE,IAAI,CAAC,KAAK;SAClB;QACD,OAAO,EAAE;YACP,EAAE,EAAE,OAAO,CAAC,EAAE;YACd,SAAS,EAAE,OAAO,CAAC,SAAS;YAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;SAC7B;KACF,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,sCAAsC;AACtC,GAAG,CAAC,GAAG,CAAC,qBAAqB,EAAE,cAAc,EAAE,CAAC,CAAC,EAAE,EAAE;IACnD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAE3B,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,IAAI,EAAE;YACJ,MAAM,EAAE,IAAI,CAAC,EAAE;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,aAAa,EAAE,IAAI,CAAC,aAAa;YACjC,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,aAAa,EAAE,IAAI,CAAC,aAAa;SAClC;KACF,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,2BAA2B;AAC3B,GAAG,CAAC,GAAG,CAAC,sBAAsB,EAAE,cAAc,EAAE,CAAC,CAAC,EAAE,EAAE;IACpD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;IAE3B,sCAAsC;IACtC,4CAA4C;IAC5C,IAAI,IAAI,CAAC,KAAK,KAAK,mBAAmB,EAAE,CAAC;QACvC,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,WAAW,EAAE,OAAO,EAAE,uBAAuB,EAAE,EAAE,GAAG,CAAC,CAAC;IAC/E,CAAC;IAED,OAAO,CAAC,CAAC,IAAI,CAAC;QACZ,OAAO,EAAE,wBAAwB;QACjC,SAAS,EAAE,uBAAuB;KACnC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,iCAAiC;AACjC,GAAG,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC,CAAC,EAAE,EAAE;IACvB,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;AACzD,CAAC,CAAC,CAAC;AAEH,eAAe;AACf,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC;AACzC,OAAO,CAAC,GAAG,CAAC,2BAA2B,IAAI,EAAE,CAAC,CAAC;AAE/C,eAAe,GAAG,CAAC;AAEnB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4CG"}

package/dist/server/auth/index.d.ts

@@ -0,0 +1,11 @@
+export { AuthService } from "./services/AuthService.js";
+export { PasswordService } from "./services/PasswordService.js";
+export { TokenService } from "./services/TokenService.js";
+export { UserRepository } from "./services/UserRepository.js";
+export { SessionRepository } from "./services/SessionRepository.js";
+export { AuditLogService } from "./services/AuditLogService.js";
+export { AuthController } from "./controllers/AuthController.js";
+export { createAuthMiddleware } from "./middleware/authMiddleware.js";
+export type { AppRuntimeContext } from "./middleware/authMiddleware.js";
+export { createAuthRoutes } from "./routes/authRoutes.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/server/auth/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/server/auth/index.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAGhE,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AAGjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,gCAAgC,CAAC;AACtE,YAAY,EAAE,iBAAiB,EAAE,MAAM,gCAAgC,CAAC;AAGxE,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC"}

package/dist/server/auth/index.js

@@ -0,0 +1,15 @@
+// Authentication module exports
+// Services
+export { AuthService } from "./services/AuthService.js";
+export { PasswordService } from "./services/PasswordService.js";
+export { TokenService } from "./services/TokenService.js";
+export { UserRepository } from "./services/UserRepository.js";
+export { SessionRepository } from "./services/SessionRepository.js";
+export { AuditLogService } from "./services/AuditLogService.js";
+// Controllers
+export { AuthController } from "./controllers/AuthController.js";
+// Middleware
+export { createAuthMiddleware } from "./middleware/authMiddleware.js";
+// Routes
+export { createAuthRoutes } from "./routes/authRoutes.js";
+//# sourceMappingURL=index.js.map

package/dist/server/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/auth/index.ts"],"names":[],"mappings":"AAAA,gCAAgC;AAEhC,WAAW;AACX,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAEhE,cAAc;AACd,OAAO,EAAE,cAAc,EAAE,MAAM,iCAAiC,CAAC;AAEjE,aAAa;AACb,OAAO,EAAE,oBAAoB,EAAE,MAAM,gCAAgC,CAAC;AAGtE,SAAS;AACT,OAAO,EAAE,gBAAgB,EAAE,MAAM,wBAAwB,CAAC"}

package/dist/server/auth/layers.d.ts

@@ -0,0 +1,19 @@
+import { Layer } from "effect";
+import { PasswordService } from "./services/PasswordService.js";
+import { TokenService } from "./services/TokenService.js";
+import { UserRepository } from "./services/UserRepository.js";
+import { SessionRepository } from "./services/SessionRepository.js";
+import { AuditLogService } from "./services/AuditLogService.js";
+import { AuthService } from "./services/AuthService.js";
+import { DatabaseService } from "../database/db.js";
+/**
+ * Creates the complete application layer with all auth services
+ * @param dbConfig Database configuration
+ * @returns Complete layer with all services including DatabaseService
+ */
+export declare const createAppLayer: (dbConfig: {
+    path: string;
+    timeout?: number;
+    verbose?: boolean;
+}) => Layer.Layer<AuthService | PasswordService | TokenService | AuditLogService | DatabaseService | UserRepository | SessionRepository | import("../user-management/LinuxUserService.js").LinuxUserService | import("../user-management/DirectoryService.js").DirectoryService | import("../user-management/QuotaService.js").QuotaService | import("../user-management/UserManagementService.js").UserManagementService, import("../../shared/types.js").AuthError | import("../database/db.js").DatabaseError, never>;
+//# sourceMappingURL=layers.d.ts.map

package/dist/server/auth/layers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"layers.d.ts","sourceRoot":"","sources":["../../../src/server/auth/layers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAGpD;;;;GAIG;AACH,eAAO,MAAM,cAAc,GAAI,UAAU;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAAC,OAAO,CAAC,EAAE,OAAO,CAAA;CAAE,ufAyC7F,CAAC"}

package/dist/server/auth/layers.js

@@ -0,0 +1,33 @@
+import { Layer } from "effect";
+import { PasswordService } from "./services/PasswordService.js";
+import { TokenService } from "./services/TokenService.js";
+import { UserRepository } from "./services/UserRepository.js";
+import { SessionRepository } from "./services/SessionRepository.js";
+import { AuditLogService } from "./services/AuditLogService.js";
+import { AuthService } from "./services/AuthService.js";
+import { DatabaseService } from "../database/db.js";
+import { UserManagementLayer } from "../user-management/layers.js";
+/**
+ * Creates the complete application layer with all auth services
+ * @param dbConfig Database configuration
+ * @returns Complete layer with all services including DatabaseService
+ */
+export const createAppLayer = (dbConfig) => {
+    // Base database layer
+    const DbLayer = DatabaseService.Live(dbConfig);
+    // Service layers that don't require DatabaseService
+    const IndependentServices = Layer.mergeAll(PasswordService.Live, TokenService.Live);
+    // Services and repositories that require DatabaseService
+    const DbDependentServices = Layer.mergeAll(AuditLogService.Live, UserRepository.Live, SessionRepository.Live);
+    // Provide DatabaseService to dependent services
+    const DbDependentWithDb = Layer.provide(DbDependentServices, DbLayer);
+    // Merge all services and database
+    const BaseServices = Layer.mergeAll(IndependentServices, DbDependentWithDb, DbLayer);
+    // Add user management layer
+    const ServicesWithUserManagement = Layer.mergeAll(BaseServices, UserManagementLayer);
+    // Provide all dependencies to AuthService
+    const AuthWithDeps = Layer.provide(AuthService.Live, ServicesWithUserManagement);
+    // Complete application layer - merge everything
+    return Layer.mergeAll(ServicesWithUserManagement, AuthWithDeps);
+};
+//# sourceMappingURL=layers.js.map

package/dist/server/auth/layers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"layers.js","sourceRoot":"","sources":["../../../src/server/auth/layers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,YAAY,EAAE,MAAM,4BAA4B,CAAC;AAC1D,OAAO,EAAE,cAAc,EAAE,MAAM,8BAA8B,CAAC;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AACpE,OAAO,EAAE,eAAe,EAAE,MAAM,+BAA+B,CAAC;AAChE,OAAO,EAAE,WAAW,EAAE,MAAM,2BAA2B,CAAC;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,8BAA8B,CAAC;AAEnE;;;;GAIG;AACH,MAAM,CAAC,MAAM,cAAc,GAAG,CAAC,QAA+D,EAAE,EAAE;IAChG,sBAAsB;IACtB,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAE/C,oDAAoD;IACpD,MAAM,mBAAmB,GAAG,KAAK,CAAC,QAAQ,CACxC,eAAe,CAAC,IAAI,EACpB,YAAY,CAAC,IAAI,CAClB,CAAC;IAEF,yDAAyD;IACzD,MAAM,mBAAmB,GAAG,KAAK,CAAC,QAAQ,CACxC,eAAe,CAAC,IAAI,EACpB,cAAc,CAAC,IAAI,EACnB,iBAAiB,CAAC,IAAI,CACvB,CAAC;IAEF,gDAAgD;IAChD,MAAM,iBAAiB,GAAG,KAAK,CAAC,OAAO,CAAC,mBAAmB,EAAE,OAAO,CAAC,CAAC;IAEtE,kCAAkC;IAClC,MAAM,YAAY,GAAG,KAAK,CAAC,QAAQ,CACjC,mBAAmB,EACnB,iBAAiB,EACjB,OAAO,CACR,CAAC;IAEF,4BAA4B;IAC5B,MAAM,0BAA0B,GAAG,KAAK,CAAC,QAAQ,CAC/C,YAAY,EACZ,mBAAmB,CACpB,CAAC;IAEF,0CAA0C;IAC1C,MAAM,YAAY,GAAG,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,EAAE,0BAA0B,CAAC,CAAC;IAEjF,gDAAgD;IAChD,OAAO,KAAK,CAAC,QAAQ,CACnB,0BAA0B,EAC1B,YAAY,CACb,CAAC;AACJ,CAAC,CAAC"}

package/dist/server/auth/middleware/authMiddleware.d.ts

@@ -0,0 +1,24 @@
+import { MiddlewareHandler } from "hono";
+import { ManagedRuntime } from "effect";
+import { AuthService } from "../services/AuthService.js";
+import { PasswordService } from "../services/PasswordService.js";
+import { TokenService } from "../services/TokenService.js";
+import { UserRepository } from "../services/UserRepository.js";
+import { SessionRepository } from "../services/SessionRepository.js";
+import { AuditLogService } from "../services/AuditLogService.js";
+import { DatabaseService } from "../../database/db.js";
+import { Session, User } from "../../../shared/types.js";
+declare module "hono" {
+    interface ContextVariableMap {
+        user: User;
+        session: Session;
+    }
+}
+export type AppRuntimeContext = PasswordService | TokenService | UserRepository | SessionRepository | AuditLogService | AuthService | DatabaseService;
+/**
+ * Factory function to create auth middleware with proper Effect-TS ManagedRuntime injection
+ * @param runtime - The Effect-TS ManagedRuntime with all required services
+ * @returns Configured Hono middleware handler
+ */
+export declare const createAuthMiddleware: (runtime: ManagedRuntime.ManagedRuntime<AppRuntimeContext, never>) => MiddlewareHandler;
+//# sourceMappingURL=authMiddleware.d.ts.map

package/dist/server/auth/middleware/authMiddleware.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authMiddleware.d.ts","sourceRoot":"","sources":["../../../../src/server/auth/middleware/authMiddleware.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,MAAM,CAAC;AAEzC,OAAO,EAAU,cAAc,EAAE,MAAM,QAAQ,CAAC;AAChD,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AACzD,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AACjE,OAAO,EAAE,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAC3D,OAAO,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAC/D,OAAO,EAAE,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AACrE,OAAO,EAAE,eAAe,EAAE,MAAM,gCAAgC,CAAC;AACjE,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,0BAA0B,CAAC;AAGzD,OAAO,QAAQ,MAAM,CAAC;IACpB,UAAU,kBAAkB;QAC1B,IAAI,EAAE,IAAI,CAAC;QACX,OAAO,EAAE,OAAO,CAAC;KAClB;CACF;AAGD,MAAM,MAAM,iBAAiB,GACzB,eAAe,GACf,YAAY,GACZ,cAAc,GACd,iBAAiB,GACjB,eAAe,GACf,WAAW,GACX,eAAe,CAAC;AAEpB;;;;GAIG;AACH,eAAO,MAAM,oBAAoB,GAC/B,SAAS,cAAc,CAAC,cAAc,CAAC,iBAAiB,EAAE,KAAK,CAAC,KAC/D,iBAgFF,CAAC"}

package/dist/server/auth/middleware/authMiddleware.js

@@ -0,0 +1,65 @@
+import { getCookie } from "hono/cookie";
+import { Effect } from "effect";
+import { AuthService } from "../services/AuthService.js";
+/**
+ * Factory function to create auth middleware with proper Effect-TS ManagedRuntime injection
+ * @param runtime - The Effect-TS ManagedRuntime with all required services
+ * @returns Configured Hono middleware handler
+ */
+export const createAuthMiddleware = (runtime) => {
+    return async (c, next) => {
+        // Extract token from Authorization header or cookie
+        let token;
+        const authHeader = c.req.header("Authorization");
+        if (authHeader?.startsWith("Bearer ")) {
+            token = authHeader.substring(7);
+        }
+        else {
+            token = getCookie(c, "auth_token");
+        }
+        if (!token) {
+            return c.json({
+                error: "UNAUTHORIZED",
+                message: "No authentication token provided",
+            }, 401);
+        }
+        // Verify token using AuthService with runtime
+        const verifyEffect = Effect.gen(function* () {
+            const authService = yield* AuthService;
+            return yield* authService.verifyToken(token);
+        });
+        const result = await runtime.runPromiseExit(verifyEffect);
+        if (result._tag === "Failure") {
+            const cause = result.cause;
+            if (cause._tag === "Fail") {
+                const failureError = cause.error;
+                if (failureError && typeof failureError === "object" && "_tag" in failureError) {
+                    const typedError = failureError;
+                    switch (typedError._tag) {
+                        case "AuthError":
+                            return c.json({
+                                error: "AUTH_ERROR",
+                                message: typedError.message,
+                            }, 401);
+                        case "DatabaseError":
+                            return c.json({
+                                error: "INTERNAL_ERROR",
+                                message: "Database error occurred",
+                            }, 500);
+                    }
+                }
+            }
+            // Handle unknown errors
+            return c.json({
+                error: "INTERNAL_ERROR",
+                message: "An unexpected error occurred",
+            }, 500);
+        }
+        // Success - inject user and session into context
+        const verifyResult = result.value;
+        c.set("user", verifyResult.user);
+        c.set("session", verifyResult.session);
+        return await next();
+    };
+};
+//# sourceMappingURL=authMiddleware.js.map

package/dist/server/auth/middleware/authMiddleware.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authMiddleware.js","sourceRoot":"","sources":["../../../../src/server/auth/middleware/authMiddleware.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,MAAM,EAAkB,MAAM,QAAQ,CAAC;AAChD,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AA2BzD;;;;GAIG;AACH,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAClC,OAAgE,EAC7C,EAAE;IACrB,OAAO,KAAK,EAAE,CAAC,EAAE,IAAI,EAAE,EAAE;QACvB,oDAAoD;QACpD,IAAI,KAAyB,CAAC;QAE9B,MAAM,UAAU,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;QACjD,IAAI,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACtC,KAAK,GAAG,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;QAClC,CAAC;aAAM,CAAC;YACN,KAAK,GAAG,SAAS,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;QACrC,CAAC;QAED,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,cAAc;gBACrB,OAAO,EAAE,kCAAkC;aAC5C,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,8CAA8C;QAC9C,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;YACvC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,WAAW,CAAC;YACvC,OAAO,KAAK,CAAC,CAAC,WAAW,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;QAE1D,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;YAE3B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC1B,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC;gBAEjC,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,MAAM,IAAI,YAAY,EAAE,CAAC;oBAC/E,MAAM,UAAU,GAAG,YAGlB,CAAC;oBAEF,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;wBACxB,KAAK,WAAW;4BACd,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,YAAY;gCACnB,OAAO,EAAE,UAAU,CAAC,OAAO;6BAC5B,EACD,GAAG,CACJ,CAAC;wBACJ,KAAK,eAAe;4BAClB,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,gBAAgB;gCACvB,OAAO,EAAE,yBAAyB;6BACnC,EACD,GAAG,CACJ,CAAC;oBACN,CAAC;gBACH,CAAC;YACH,CAAC;YAED,wBAAwB;YACxB,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8BAA8B;aACxC,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,iDAAiD;QACjD,MAAM,YAAY,GAAG,MAAM,CAAC,KAAK,CAAC;QAClC,CAAC,CAAC,GAAG,CAAC,MAAM,EAAE,YAAY,CAAC,IAAI,CAAC,CAAC;QACjC,CAAC,CAAC,GAAG,CAAC,SAAS,EAAE,YAAY,CAAC,OAAO,CAAC,CAAC;QAEvC,OAAO,MAAM,IAAI,EAAE,CAAC;IACtB,CAAC,CAAC;AACJ,CAAC,CAAC"}

package/dist/server/auth/routes/authRoutes.d.ts

@@ -0,0 +1,11 @@
+import { Hono } from "hono";
+import { ManagedRuntime } from "effect";
+import { AppRuntimeContext } from "../middleware/authMiddleware.js";
+/**
+ * Factory function to create auth routes with proper Effect-TS ManagedRuntime injection
+ * @param runtime - The Effect-TS ManagedRuntime with all required services
+ * @param authMiddleware - The configured auth middleware instance
+ * @returns Configured Hono router instance
+ */
+export declare const createAuthRoutes: (runtime: ManagedRuntime.ManagedRuntime<AppRuntimeContext, never>, authMiddleware: ReturnType<typeof import("../middleware/authMiddleware.js").createAuthMiddleware>) => Hono<import("hono/types").BlankEnv, import("hono/types").BlankSchema, "/">;
+//# sourceMappingURL=authRoutes.d.ts.map

package/dist/server/auth/routes/authRoutes.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"authRoutes.d.ts","sourceRoot":"","sources":["../../../../src/server/auth/routes/authRoutes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAE5B,OAAO,EAAU,cAAc,EAAE,MAAM,QAAQ,CAAC;AAEhD,OAAO,EAAE,iBAAiB,EAAE,MAAM,iCAAiC,CAAC;AAgBpE;;;;;GAKG;AACH,eAAO,MAAM,gBAAgB,GAC3B,SAAS,cAAc,CAAC,cAAc,CAAC,iBAAiB,EAAE,KAAK,CAAC,EAChE,gBAAgB,UAAU,CAAC,cAAc,iCAAiC,EAAE,oBAAoB,CAAC,+EAkSlG,CAAC"}

package/dist/server/auth/routes/authRoutes.js

@@ -0,0 +1,213 @@
+import { Hono } from "hono";
+import { setCookie } from "hono/cookie";
+import { Effect } from "effect";
+import { AuthService } from "../services/AuthService.js";
+// Cookie configuration
+const COOKIE_OPTIONS = {
+    httpOnly: true,
+    secure: process.env["NODE_ENV"] === "production",
+    sameSite: "strict",
+    maxAge: 7 * 24 * 60 * 60, // 7 days in seconds
+    path: "/",
+};
+/**
+ * Factory function to create auth routes with proper Effect-TS ManagedRuntime injection
+ * @param runtime - The Effect-TS ManagedRuntime with all required services
+ * @param authMiddleware - The configured auth middleware instance
+ * @returns Configured Hono router instance
+ */
+export const createAuthRoutes = (runtime, authMiddleware) => {
+    const authRouter = new Hono();
+    /**
+     * POST /api/auth/register
+     * Register a new user
+     */
+    authRouter.post("/register", async (c) => {
+        const body = await c.req.json();
+        const { username, email, password } = body;
+        if (!username || !email || !password) {
+            return c.json({
+                error: "VALIDATION_ERROR",
+                message: "Username, email, and password are required",
+            }, 400);
+        }
+        // Extract IP address and user agent
+        const ipAddress = c.req.header("x-forwarded-for") || c.req.header("x-real-ip") || null;
+        const userAgent = c.req.header("user-agent") || null;
+        // Register user
+        const registerEffect = Effect.gen(function* () {
+            const authService = yield* AuthService;
+            return yield* authService.register(username, email, password, ipAddress, userAgent);
+        });
+        const result = await runtime.runPromiseExit(registerEffect);
+        if (result._tag === "Failure") {
+            const cause = result.cause;
+            if (cause._tag === "Fail") {
+                const failureError = cause.error;
+                if (failureError && typeof failureError === "object" && "_tag" in failureError) {
+                    const typedError = failureError;
+                    switch (typedError._tag) {
+                        case "ValidationError":
+                            return c.json({
+                                error: "VALIDATION_ERROR",
+                                field: typedError.field,
+                                message: typedError.message,
+                            }, 400);
+                        case "AuthError":
+                            return c.json({
+                                error: "AUTH_ERROR",
+                                message: typedError.message,
+                            }, 400);
+                        case "DatabaseError":
+                            return c.json({
+                                error: "INTERNAL_ERROR",
+                                message: "Database error occurred",
+                            }, 500);
+                    }
+                }
+            }
+            return c.json({
+                error: "INTERNAL_ERROR",
+                message: "An unexpected error occurred",
+            }, 500);
+        }
+        const user = result.value;
+        return c.json({
+            user: {
+                id: user.id,
+                username: user.username,
+                email: user.email,
+                emailVerified: user.emailVerified,
+            },
+        }, 201);
+    });
+    /**
+     * POST /api/auth/login
+     * Login user and create session
+     */
+    authRouter.post("/login", async (c) => {
+        const body = await c.req.json();
+        const { email, password } = body;
+        if (!email || !password) {
+            return c.json({
+                error: "VALIDATION_ERROR",
+                message: "Email and password are required",
+            }, 400);
+        }
+        // Extract IP address and user agent
+        const ipAddress = c.req.header("x-forwarded-for") || c.req.header("x-real-ip") || null;
+        const userAgent = c.req.header("user-agent") || null;
+        // Login user
+        const loginEffect = Effect.gen(function* () {
+            const authService = yield* AuthService;
+            return yield* authService.login(email, password, ipAddress, userAgent);
+        });
+        const result = await runtime.runPromiseExit(loginEffect);
+        if (result._tag === "Failure") {
+            const cause = result.cause;
+            if (cause._tag === "Fail") {
+                const failureError = cause.error;
+                if (failureError && typeof failureError === "object" && "_tag" in failureError) {
+                    const typedError = failureError;
+                    switch (typedError._tag) {
+                        case "AuthError":
+                            return c.json({
+                                error: "AUTH_ERROR",
+                                message: typedError.message,
+                            }, 401);
+                        case "DatabaseError":
+                            return c.json({
+                                error: "INTERNAL_ERROR",
+                                message: "Database error occurred",
+                            }, 500);
+                    }
+                }
+            }
+            return c.json({
+                error: "INTERNAL_ERROR",
+                message: "An unexpected error occurred",
+            }, 500);
+        }
+        const loginResult = result.value;
+        // Set httpOnly cookie with token
+        setCookie(c, "auth_token", loginResult.token, COOKIE_OPTIONS);
+        const response = {
+            user: {
+                id: loginResult.user.id,
+                username: loginResult.user.username,
+                email: loginResult.user.email,
+                emailVerified: loginResult.user.emailVerified,
+            },
+            token: loginResult.token,
+        };
+        return c.json(response, 200);
+    });
+    /**
+     * POST /api/auth/logout
+     * Logout user and revoke session
+     * Requires authentication
+     */
+    authRouter.post("/logout", authMiddleware, async (c) => {
+        const user = c.get("user");
+        const session = c.get("session");
+        // Logout user
+        const logoutEffect = Effect.gen(function* () {
+            const authService = yield* AuthService;
+            return yield* authService.logout(session.id, user.id);
+        });
+        const result = await runtime.runPromiseExit(logoutEffect);
+        if (result._tag === "Failure") {
+            const cause = result.cause;
+            if (cause._tag === "Fail") {
+                const failureError = cause.error;
+                if (failureError && typeof failureError === "object" && "_tag" in failureError) {
+                    const typedError = failureError;
+                    if (typedError._tag === "DatabaseError") {
+                        return c.json({
+                            error: "INTERNAL_ERROR",
+                            message: "Database error occurred",
+                        }, 500);
+                    }
+                }
+            }
+            return c.json({
+                error: "INTERNAL_ERROR",
+                message: "An unexpected error occurred",
+            }, 500);
+        }
+        // Clear cookie
+        setCookie(c, "auth_token", "", {
+            ...COOKIE_OPTIONS,
+            maxAge: 0,
+        });
+        return c.json({ message: "Logged out successfully" }, 200);
+    });
+    /**
+     * GET /api/auth/me
+     * Get current authenticated user
+     * Requires authentication
+     */
+    authRouter.get("/me", authMiddleware, async (c) => {
+        try {
+            const user = c.get("user");
+            return c.json({
+                user: {
+                    id: user.id,
+                    username: user.username,
+                    email: user.email,
+                    emailVerified: user.emailVerified,
+                    createdAt: user.createdAt,
+                    lastLoginAt: user.lastLoginAt,
+                },
+            }, 200);
+        }
+        catch (error) {
+            return c.json({
+                error: "INTERNAL_ERROR",
+                message: "An unexpected error occurred",
+            }, 500);
+        }
+    });
+    return authRouter;
+};
+//# sourceMappingURL=authRoutes.js.map

package/dist/server/auth/routes/authRoutes.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"authRoutes.js","sourceRoot":"","sources":["../../../../src/server/auth/routes/authRoutes.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAC5B,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,MAAM,EAAkB,MAAM,QAAQ,CAAC;AAChD,OAAO,EAAE,WAAW,EAAE,MAAM,4BAA4B,CAAC;AAQzD,uBAAuB;AACvB,MAAM,cAAc,GAAG;IACrB,QAAQ,EAAE,IAAI;IACd,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,YAAY;IAChD,QAAQ,EAAE,QAAiB;IAC3B,MAAM,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,EAAE,oBAAoB;IAC9C,IAAI,EAAE,GAAG;CACV,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAC9B,OAAgE,EAChE,cAAiG,EACjG,EAAE;IACF,MAAM,UAAU,GAAG,IAAI,IAAI,EAAE,CAAC;IAE9B;;;OAGG;IACH,UAAU,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACvC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAmB,CAAC;QACjD,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;QAE3C,IAAI,CAAC,QAAQ,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;YACrC,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,kBAAkB;gBACzB,OAAO,EAAE,4CAA4C;aACtD,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC;QACvF,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,IAAI,CAAC;QAErD,gBAAgB;QAChB,MAAM,cAAc,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;YACzC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,WAAW,CAAC;YACvC,OAAO,KAAK,CAAC,CAAC,WAAW,CAAC,QAAQ,CAChC,QAAQ,EACR,KAAK,EACL,QAAQ,EACR,SAAS,EACT,SAAS,CACV,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,cAAc,CAAC,CAAC;QAE5D,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;YAE3B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC1B,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC;gBAEjC,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,MAAM,IAAI,YAAY,EAAE,CAAC;oBAC/E,MAAM,UAAU,GAAG,YAIlB,CAAC;oBAEF,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;wBACxB,KAAK,iBAAiB;4BACpB,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,kBAAkB;gCACzB,KAAK,EAAE,UAAU,CAAC,KAAK;gCACvB,OAAO,EAAE,UAAU,CAAC,OAAO;6BAC5B,EACD,GAAG,CACJ,CAAC;wBACJ,KAAK,WAAW;4BACd,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,YAAY;gCACnB,OAAO,EAAE,UAAU,CAAC,OAAO;6BAC5B,EACD,GAAG,CACJ,CAAC;wBACJ,KAAK,eAAe;4BAClB,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,gBAAgB;gCACvB,OAAO,EAAE,yBAAyB;6BACnC,EACD,GAAG,CACJ,CAAC;oBACN,CAAC;gBACH,CAAC;YACH,CAAC;YAED,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8BAA8B;aACxC,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,CAAC,KAAK,CAAC;QAE1B,OAAO,CAAC,CAAC,IAAI,CACX;YACE,IAAI,EAAE;gBACJ,EAAE,EAAE,IAAI,CAAC,EAAE;gBACX,QAAQ,EAAE,IAAI,CAAC,QAAQ;gBACvB,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,aAAa,EAAE,IAAI,CAAC,aAAa;aAClC;SACF,EACD,GAAG,CACJ,CAAC;IACJ,CAAC,CAAC,CAAC;IAEL;;;OAGG;IACH,UAAU,CAAC,IAAI,CAAC,QAAQ,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACpC,MAAM,IAAI,GAAG,MAAM,CAAC,CAAC,GAAG,CAAC,IAAI,EAAgB,CAAC;QAC9C,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;QAEjC,IAAI,CAAC,KAAK,IAAI,CAAC,QAAQ,EAAE,CAAC;YACxB,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,kBAAkB;gBACzB,OAAO,EAAE,iCAAiC;aAC3C,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,oCAAoC;QACpC,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,WAAW,CAAC,IAAI,IAAI,CAAC;QACvF,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,IAAI,CAAC;QAErD,aAAa;QACb,MAAM,WAAW,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;YACtC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,WAAW,CAAC;YACvC,OAAO,KAAK,CAAC,CAAC,WAAW,CAAC,KAAK,CAAC,KAAK,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS,CAAC,CAAC;QACzE,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC;QAEzD,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;YAE3B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC1B,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC;gBAEjC,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,MAAM,IAAI,YAAY,EAAE,CAAC;oBAC/E,MAAM,UAAU,GAAG,YAGlB,CAAC;oBAEF,QAAQ,UAAU,CAAC,IAAI,EAAE,CAAC;wBACxB,KAAK,WAAW;4BACd,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,YAAY;gCACnB,OAAO,EAAE,UAAU,CAAC,OAAO;6BAC5B,EACD,GAAG,CACJ,CAAC;wBACJ,KAAK,eAAe;4BAClB,OAAO,CAAC,CAAC,IAAI,CACX;gCACE,KAAK,EAAE,gBAAgB;gCACvB,OAAO,EAAE,yBAAyB;6BACnC,EACD,GAAG,CACJ,CAAC;oBACN,CAAC;gBACH,CAAC;YACH,CAAC;YAED,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8BAA8B;aACxC,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,CAAC,KAAK,CAAC;QAEjC,iCAAiC;QACjC,SAAS,CAAC,CAAC,EAAE,YAAY,EAAE,WAAW,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;QAE9D,MAAM,QAAQ,GAAiB;YAC7B,IAAI,EAAE;gBACJ,EAAE,EAAE,WAAW,CAAC,IAAI,CAAC,EAAE;gBACvB,QAAQ,EAAE,WAAW,CAAC,IAAI,CAAC,QAAQ;gBACnC,KAAK,EAAE,WAAW,CAAC,IAAI,CAAC,KAAK;gBAC7B,aAAa,EAAE,WAAW,CAAC,IAAI,CAAC,aAAa;aAC9C;YACD,KAAK,EAAE,WAAW,CAAC,KAAK;SACzB,CAAC;QAEF,OAAO,CAAC,CAAC,IAAI,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAC;IAC/B,CAAC,CAAC,CAAC;IAEH;;;;OAIG;IACH,UAAU,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QACrD,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QAC3B,MAAM,OAAO,GAAG,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAEjC,cAAc;QACd,MAAM,YAAY,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;YACvC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,WAAW,CAAC;YACvC,OAAO,KAAK,CAAC,CAAC,WAAW,CAAC,MAAM,CAAC,OAAO,CAAC,EAAE,EAAE,IAAI,CAAC,EAAE,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;QAE1D,IAAI,MAAM,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;YAC9B,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC;YAE3B,IAAI,KAAK,CAAC,IAAI,KAAK,MAAM,EAAE,CAAC;gBAC1B,MAAM,YAAY,GAAG,KAAK,CAAC,KAAK,CAAC;gBAEjC,IAAI,YAAY,IAAI,OAAO,YAAY,KAAK,QAAQ,IAAI,MAAM,IAAI,YAAY,EAAE,CAAC;oBAC/E,MAAM,UAAU,GAAG,YAGlB,CAAC;oBAEF,IAAI,UAAU,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;wBACxC,OAAO,CAAC,CAAC,IAAI,CACX;4BACE,KAAK,EAAE,gBAAgB;4BACvB,OAAO,EAAE,yBAAyB;yBACnC,EACD,GAAG,CACJ,CAAC;oBACJ,CAAC;gBACH,CAAC;YACH,CAAC;YAED,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8BAA8B;aACxC,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAED,eAAe;QACf,SAAS,CAAC,CAAC,EAAE,YAAY,EAAE,EAAE,EAAE;YAC7B,GAAG,cAAc;YACjB,MAAM,EAAE,CAAC;SACV,CAAC,CAAC;QAEH,OAAO,CAAC,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,yBAAyB,EAAE,EAAE,GAAG,CAAC,CAAC;IAC7D,CAAC,CAAC,CAAC;IAEH;;;;OAIG;IACH,UAAU,CAAC,GAAG,CAAC,KAAK,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,EAAE,EAAE;QAChD,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAE3B,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,IAAI,EAAE;oBACJ,EAAE,EAAE,IAAI,CAAC,EAAE;oBACX,QAAQ,EAAE,IAAI,CAAC,QAAQ;oBACvB,KAAK,EAAE,IAAI,CAAC,KAAK;oBACjB,aAAa,EAAE,IAAI,CAAC,aAAa;oBACjC,SAAS,EAAE,IAAI,CAAC,SAAS;oBACzB,WAAW,EAAE,IAAI,CAAC,WAAW;iBAC9B;aACF,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,CAAC,IAAI,CACX;gBACE,KAAK,EAAE,gBAAgB;gBACvB,OAAO,EAAE,8BAA8B;aACxC,EACD,GAAG,CACJ,CAAC;QACJ,CAAC;IACH,CAAC,CAAC,CAAC;IAED,OAAO,UAAU,CAAC;AACpB,CAAC,CAAC"}

package/dist/server/auth/services/AuditLogService.d.ts

@@ -0,0 +1,21 @@
+import { Context, Effect, Layer } from "effect";
+import { DatabaseService } from "../../database/db.js";
+import { DatabaseError } from "../../../shared/types.js";
+export interface CreateAuditLogData {
+    userId: string | null;
+    action: AuditAction;
+    resourceType?: string | null;
+    resourceId?: string | null;
+    ipAddress?: string | null;
+    userAgent?: string | null;
+    details?: string | null;
+}
+export type AuditAction = "USER_REGISTERED" | "USER_LOGIN" | "USER_LOGOUT" | "LOGIN_FAILED" | "PASSWORD_CHANGED" | "PASSWORD_RESET_REQUESTED" | "PASSWORD_RESET_COMPLETED" | "EMAIL_VERIFIED" | "EMAIL_CHANGED" | "PROFILE_UPDATED" | "ACCOUNT_LOCKED" | "ACCOUNT_UNLOCKED" | "SESSION_CREATED" | "SESSION_REVOKED" | "TOKEN_REFRESHED" | "OAUTH_LINKED" | "OAUTH_UNLINKED" | "TWO_FACTOR_ENABLED" | "TWO_FACTOR_DISABLED";
+declare const AuditLogService_base: Context.TagClass<AuditLogService, "AuditLogService", {
+    readonly log: (data: CreateAuditLogData) => Effect.Effect<void, DatabaseError>;
+}>;
+export declare class AuditLogService extends AuditLogService_base {
+    static Live: Layer.Layer<AuditLogService, never, DatabaseService>;
+}
+export {};
+//# sourceMappingURL=AuditLogService.d.ts.map

package/dist/server/auth/services/AuditLogService.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"AuditLogService.d.ts","sourceRoot":"","sources":["../../../../src/server/auth/services/AuditLogService.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAEhD,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EAAE,aAAa,EAAE,MAAM,0BAA0B,CAAC;AAEzD,MAAM,WAAW,kBAAkB;IACjC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,MAAM,EAAE,WAAW,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CACzB;AAED,MAAM,MAAM,WAAW,GACnB,iBAAiB,GACjB,YAAY,GACZ,aAAa,GACb,cAAc,GACd,kBAAkB,GAClB,0BAA0B,GAC1B,0BAA0B,GAC1B,gBAAgB,GAChB,eAAe,GACf,iBAAiB,GACjB,gBAAgB,GAChB,kBAAkB,GAClB,iBAAiB,GACjB,iBAAiB,GACjB,iBAAiB,GACjB,cAAc,GACd,gBAAgB,GAChB,oBAAoB,GACpB,qBAAqB,CAAC;;kBAKR,CACZ,IAAI,EAAE,kBAAkB,KACrB,MAAM,CAAC,MAAM,CAAC,IAAI,EAAE,aAAa,CAAC;;AAL3C,qBAAa,eAAgB,SAAQ,oBAOlC;IACD,MAAM,CAAC,IAAI,uDAmCT;CACH"}

package/dist/server/auth/services/AuditLogService.js

@@ -0,0 +1,28 @@
+import { Context, Effect, Layer } from "effect";
+import { randomUUID } from "node:crypto";
+import { DatabaseService } from "../../database/db.js";
+export class AuditLogService extends Context.Tag("AuditLogService")() {
+    static Live = Layer.effect(this, Effect.gen(function* (_) {
+        const db = yield* _(DatabaseService);
+        const log = (data) => Effect.gen(function* (_) {
+            const id = randomUUID();
+            const now = Date.now();
+            yield* _(db.run(`INSERT INTO audit_logs (
+                id, user_id, action, resource_type, resource_id,
+                ip_address, user_agent, details, created_at
+              ) VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?)`, [
+                id,
+                data.userId,
+                data.action,
+                data.resourceType ?? null,
+                data.resourceId ?? null,
+                data.ipAddress ?? null,
+                data.userAgent ?? null,
+                data.details ?? null,
+                now,
+            ]));
+        });
+        return { log };
+    }));
+}
+//# sourceMappingURL=AuditLogService.js.map