myaidev-method 0.2.8 → 0.2.9

package/dist/server/user-management/UserManagementService.js

@@ -0,0 +1,122 @@
+import { Effect, Context, Layer } from "effect";
+import { LinuxUserService } from "./LinuxUserService";
+import { DirectoryService } from "./DirectoryService";
+import { QuotaService } from "./QuotaService";
+const UserManagementError = (message, cause) => ({
+    _tag: "UserManagementError",
+    message,
+    cause,
+});
+export class UserManagementService extends Context.Tag("UserManagementService")() {
+    static Live = Layer.effect(this, Effect.gen(function* () {
+        const linuxUserService = yield* LinuxUserService;
+        const directoryService = yield* DirectoryService;
+        const quotaService = yield* QuotaService;
+        return {
+            createUser: (request) => Effect.gen(function* () {
+                const { username, claudeApiKey, diskQuotaMB = 2048, shell = "/bin/rbash", } = request;
+                // Step 1: Sanitize username for Linux compatibility
+                const linuxUsername = yield* linuxUserService
+                    .sanitizeUsername(username)
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to sanitize username: ${err.message}`, err)));
+                // Step 2: Check if user already exists
+                const exists = yield* linuxUserService.userExists(linuxUsername).pipe(Effect.mapError((err) => UserManagementError(`Failed to check user existence: ${err.message}`, err)));
+                if (exists) {
+                    return yield* Effect.fail(UserManagementError(`Linux user ${linuxUsername} already exists`));
+                }
+                // Step 3: Create Linux user
+                const linuxUser = yield* linuxUserService
+                    .createUser({
+                    username: linuxUsername,
+                    shell,
+                    createHome: true,
+                    groups: ["myaidev"], // Optional: create this group for MyAIDev users
+                })
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to create Linux user: ${err.message}`, err)));
+                // Step 4: Set up home directory structure
+                const claudeConfig = {
+                    apiKey: claudeApiKey || "",
+                    model: "claude-sonnet-4-20250514",
+                    maxTokens: 8192,
+                    temperature: 1.0,
+                };
+                yield* directoryService
+                    .setupHomeDirectory({
+                    username: linuxUsername,
+                    homeDir: linuxUser.homeDir,
+                    uid: linuxUser.uid,
+                    gid: linuxUser.gid,
+                    claudeConfig,
+                })
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to setup home directory: ${err.message}`, err)));
+                // Step 5: Apply resource limits
+                yield* linuxUserService
+                    .setResourceLimits(linuxUsername, {
+                    maxOpenFiles: 1024,
+                    maxProcesses: 256,
+                    maxMemoryKB: 2097152, // 2GB
+                    maxCPUTime: 120, // 2 minutes per process
+                })
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to set resource limits: ${err.message}`, err)));
+                // Step 6: Try to apply disk quotas (optional - may not be available)
+                const quotaAvailable = yield* quotaService
+                    .isQuotaAvailable()
+                    .pipe(Effect.orElseSucceed(() => false));
+                let quotaApplied = false;
+                if (quotaAvailable) {
+                    yield* quotaService
+                        .setDiskQuota(linuxUsername, {
+                        softLimitMB: diskQuotaMB,
+                        hardLimitMB: diskQuotaMB * 1.5, // 50% buffer
+                    })
+                        .pipe(Effect.catchAll(() => Effect.succeed(void 0)) // Don't fail if quota setup fails
+                    );
+                    quotaApplied = true;
+                }
+                // Return complete setup information
+                return {
+                    linuxUser,
+                    homeDir: linuxUser.homeDir,
+                    claudeConfigPath: `${linuxUser.homeDir}/.claude`,
+                    workspacePath: `${linuxUser.homeDir}/workspace`,
+                    quotaApplied,
+                    limitsApplied: true,
+                };
+            }),
+            deleteUser: (username) => Effect.gen(function* () {
+                // Get user info first
+                const userInfo = yield* linuxUserService.getUserInfo(username).pipe(Effect.mapError((err) => UserManagementError(`Failed to get user info: ${err.message}`, err)));
+                // Clean up directories
+                yield* directoryService
+                    .cleanupDirectories(userInfo.homeDir)
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to cleanup directories: ${err.message}`, err)));
+                // Delete Linux user
+                yield* linuxUserService.deleteUser(username, true).pipe(Effect.mapError((err) => UserManagementError(`Failed to delete user: ${err.message}`, err)));
+                // Remove resource limits file
+                yield* Effect.tryPromise({
+                    try: async () => {
+                        const { execSync } = await import("child_process");
+                        execSync(`sudo rm -f /etc/security/limits.d/${username}.conf`, {
+                            stdio: "pipe",
+                        });
+                    },
+                    catch: () => UserManagementError("Failed to remove limits configuration"),
+                });
+            }),
+            getUserInfo: (username) => linuxUserService.getUserInfo(username).pipe(Effect.mapError((err) => UserManagementError(`Failed to get user info: ${err.message}`, err))),
+            updateQuota: (username, quota) => quotaService.setDiskQuota(username, quota).pipe(Effect.mapError((err) => UserManagementError(`Failed to update quota: ${err.message}`, err))),
+            isUsernameAvailable: (username) => Effect.gen(function* () {
+                // Sanitize username first
+                const linuxUsername = yield* linuxUserService
+                    .sanitizeUsername(username)
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to sanitize username: ${err.message}`, err)));
+                // Check if exists
+                const exists = yield* linuxUserService
+                    .userExists(linuxUsername)
+                    .pipe(Effect.mapError((err) => UserManagementError(`Failed to check availability: ${err.message}`, err)));
+                return !exists;
+            }),
+        };
+    }));
+}
+//# sourceMappingURL=UserManagementService.js.map

package/dist/server/user-management/UserManagementService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"UserManagementService.js","sourceRoot":"","sources":["../../../src/server/user-management/UserManagementService.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAChD,OAAO,EAAE,gBAAgB,EAAa,MAAM,oBAAoB,CAAC;AACjE,OAAO,EAAE,gBAAgB,EAAgB,MAAM,oBAAoB,CAAC;AACpE,OAAO,EAAE,YAAY,EAAa,MAAM,gBAAgB,CAAC;AA6CzD,MAAM,mBAAmB,GAAG,CAC1B,OAAe,EACf,KAAe,EACM,EAAE,CAAC,CAAC;IACzB,IAAI,EAAE,qBAAqB;IAC3B,OAAO;IACP,KAAK;CACN,CAAC,CAAC;AAEH,MAAM,OAAO,qBAAsB,SAAQ,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,EA2C5E;IACD,MAAM,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,CACxB,IAAI,EACJ,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;QAClB,MAAM,gBAAgB,GAAG,KAAK,CAAC,CAAC,gBAAgB,CAAC;QACjD,MAAM,gBAAgB,GAAG,KAAK,CAAC,CAAC,gBAAgB,CAAC;QACjD,MAAM,YAAY,GAAG,KAAK,CAAC,CAAC,YAAY,CAAC;QAEzC,OAAO;YACL,UAAU,EAAE,CAAC,OAA0B,EAAE,EAAE,CACzC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;gBAClB,MAAM,EACJ,QAAQ,EACR,YAAY,EACZ,WAAW,GAAG,IAAI,EAClB,KAAK,GAAG,YAAY,GACrB,GAAG,OAAO,CAAC;gBAEZ,oDAAoD;gBACpD,MAAM,aAAa,GAAG,KAAK,CAAC,CAAC,gBAAgB;qBAC1C,gBAAgB,CAAC,QAAQ,CAAC;qBAC1B,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,gCAAgC,GAAG,CAAC,OAAO,EAAE,EAC7C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,uCAAuC;gBACvC,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,gBAAgB,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC,IAAI,CACnE,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,mCAAmC,GAAG,CAAC,OAAO,EAAE,EAChD,GAAG,CACJ,CACF,CACF,CAAC;gBAEF,IAAI,MAAM,EAAE,CAAC;oBACX,OAAO,KAAK,CAAC,CAAC,MAAM,CAAC,IAAI,CACvB,mBAAmB,CACjB,cAAc,aAAa,iBAAiB,CAC7C,CACF,CAAC;gBACJ,CAAC;gBAED,4BAA4B;gBAC5B,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,gBAAgB;qBACtC,UAAU,CAAC;oBACV,QAAQ,EAAE,aAAa;oBACvB,KAAK;oBACL,UAAU,EAAE,IAAI;oBAChB,MAAM,EAAE,CAAC,SAAS,CAAC,EAAE,gDAAgD;iBACtE,CAAC;qBACD,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,gCAAgC,GAAG,CAAC,OAAO,EAAE,EAC7C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,0CAA0C;gBAC1C,MAAM,YAAY,GAAiB;oBACjC,MAAM,EAAE,YAAY,IAAI,EAAE;oBAC1B,KAAK,EAAE,0BAA0B;oBACjC,SAAS,EAAE,IAAI;oBACf,WAAW,EAAE,GAAG;iBACjB,CAAC;gBAEF,KAAK,CAAC,CAAC,gBAAgB;qBACpB,kBAAkB,CAAC;oBAClB,QAAQ,EAAE,aAAa;oBACvB,OAAO,EAAE,SAAS,CAAC,OAAO;oBAC1B,GAAG,EAAE,SAAS,CAAC,GAAG;oBAClB,GAAG,EAAE,SAAS,CAAC,GAAG;oBAClB,YAAY;iBACb,CAAC;qBACD,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,mCAAmC,GAAG,CAAC,OAAO,EAAE,EAChD,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,gCAAgC;gBAChC,KAAK,CAAC,CAAC,gBAAgB;qBACpB,iBAAiB,CAAC,aAAa,EAAE;oBAChC,YAAY,EAAE,IAAI;oBAClB,YAAY,EAAE,GAAG;oBACjB,WAAW,EAAE,OAAO,EAAE,MAAM;oBAC5B,UAAU,EAAE,GAAG,EAAE,wBAAwB;iBAC1C,CAAC;qBACD,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,kCAAkC,GAAG,CAAC,OAAO,EAAE,EAC/C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,qEAAqE;gBACrE,MAAM,cAAc,GAAG,KAAK,CAAC,CAAC,YAAY;qBACvC,gBAAgB,EAAE;qBAClB,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC,CAAC;gBAE3C,IAAI,YAAY,GAAG,KAAK,CAAC;gBACzB,IAAI,cAAc,EAAE,CAAC;oBACnB,KAAK,CAAC,CAAC,YAAY;yBAChB,YAAY,CAAC,aAAa,EAAE;wBAC3B,WAAW,EAAE,WAAW;wBACxB,WAAW,EAAE,WAAW,GAAG,GAAG,EAAE,aAAa;qBAC9C,CAAC;yBACD,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,kCAAkC;qBACjF,CAAC;oBACJ,YAAY,GAAG,IAAI,CAAC;gBACtB,CAAC;gBAED,oCAAoC;gBACpC,OAAO;oBACL,SAAS;oBACT,OAAO,EAAE,SAAS,CAAC,OAAO;oBAC1B,gBAAgB,EAAE,GAAG,SAAS,CAAC,OAAO,UAAU;oBAChD,aAAa,EAAE,GAAG,SAAS,CAAC,OAAO,YAAY;oBAC/C,YAAY;oBACZ,aAAa,EAAE,IAAI;iBACpB,CAAC;YACJ,CAAC,CAAC;YAEJ,UAAU,EAAE,CAAC,QAAgB,EAAE,EAAE,CAC/B,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;gBAClB,sBAAsB;gBACtB,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,gBAAgB,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,IAAI,CACjE,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,4BAA4B,GAAG,CAAC,OAAO,EAAE,EACzC,GAAG,CACJ,CACF,CACF,CAAC;gBAEF,uBAAuB;gBACvB,KAAK,CAAC,CAAC,gBAAgB;qBACpB,kBAAkB,CAAC,QAAQ,CAAC,OAAO,CAAC;qBACpC,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,kCAAkC,GAAG,CAAC,OAAO,EAAE,EAC/C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,oBAAoB;gBACpB,KAAK,CAAC,CAAC,gBAAgB,CAAC,UAAU,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,IAAI,CACrD,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,0BAA0B,GAAG,CAAC,OAAO,EAAE,EACvC,GAAG,CACJ,CACF,CACF,CAAC;gBAEF,8BAA8B;gBAC9B,KAAK,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC;oBACvB,GAAG,EAAE,KAAK,IAAI,EAAE;wBACd,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,MAAM,CAAC,eAAe,CAAC,CAAC;wBACnD,QAAQ,CAAC,qCAAqC,QAAQ,OAAO,EAAE;4BAC7D,KAAK,EAAE,MAAM;yBACd,CAAC,CAAC;oBACL,CAAC;oBACD,KAAK,EAAE,GAAG,EAAE,CACV,mBAAmB,CAAC,uCAAuC,CAAC;iBAC/D,CAAC,CAAC;YACL,CAAC,CAAC;YAEJ,WAAW,EAAE,CAAC,QAAgB,EAAE,EAAE,CAChC,gBAAgB,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,IAAI,CACzC,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,4BAA4B,GAAG,CAAC,OAAO,EAAE,EACzC,GAAG,CACJ,CACF,CACF;YAEH,WAAW,EAAE,CAAC,QAAgB,EAAE,KAAgB,EAAE,EAAE,CAClD,YAAY,CAAC,YAAY,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC,IAAI,CAC7C,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,2BAA2B,GAAG,CAAC,OAAO,EAAE,EACxC,GAAG,CACJ,CACF,CACF;YAEH,mBAAmB,EAAE,CAAC,QAAgB,EAAE,EAAE,CACxC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC;gBAClB,0BAA0B;gBAC1B,MAAM,aAAa,GAAG,KAAK,CAAC,CAAC,gBAAgB;qBAC1C,gBAAgB,CAAC,QAAQ,CAAC;qBAC1B,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,gCAAgC,GAAG,CAAC,OAAO,EAAE,EAC7C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,kBAAkB;gBAClB,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,gBAAgB;qBACnC,UAAU,CAAC,aAAa,CAAC;qBACzB,IAAI,CACH,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,EAAE,EAAE,CACtB,mBAAmB,CACjB,iCAAiC,GAAG,CAAC,OAAO,EAAE,EAC9C,GAAG,CACJ,CACF,CACF,CAAC;gBAEJ,OAAO,CAAC,MAAM,CAAC;YACjB,CAAC,CAAC;SACL,CAAC;IACJ,CAAC,CAAC,CACH,CAAC"}

package/dist/server/user-management/index.d.ts

@@ -0,0 +1,26 @@
+/**
+ * User Management Module
+ *
+ * Provides Linux user management capabilities for multi-user MyAIDev Method deployment.
+ *
+ * Features:
+ * - Create and delete Linux system users
+ * - Set up isolated home directories
+ * - Configure Claude Code environments
+ * - Apply disk quotas and resource limits
+ * - Clean up user resources
+ *
+ * Services:
+ * - LinuxUserService: Low-level Linux user operations
+ * - DirectoryService: Home directory and config management
+ * - QuotaService: Disk quota and storage limits
+ * - UserManagementService: High-level orchestration
+ *
+ * @module user-management
+ */
+export * from "./LinuxUserService";
+export * from "./DirectoryService";
+export * from "./QuotaService";
+export * from "./UserManagementService";
+export * from "./layers";
+//# sourceMappingURL=index.d.ts.map

package/dist/server/user-management/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/server/user-management/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAEH,cAAc,oBAAoB,CAAC;AACnC,cAAc,oBAAoB,CAAC;AACnC,cAAc,gBAAgB,CAAC;AAC/B,cAAc,yBAAyB,CAAC;AACxC,cAAc,UAAU,CAAC"}

package/dist/server/user-management/index.js

@@ -0,0 +1,26 @@
+/**
+ * User Management Module
+ *
+ * Provides Linux user management capabilities for multi-user MyAIDev Method deployment.
+ *
+ * Features:
+ * - Create and delete Linux system users
+ * - Set up isolated home directories
+ * - Configure Claude Code environments
+ * - Apply disk quotas and resource limits
+ * - Clean up user resources
+ *
+ * Services:
+ * - LinuxUserService: Low-level Linux user operations
+ * - DirectoryService: Home directory and config management
+ * - QuotaService: Disk quota and storage limits
+ * - UserManagementService: High-level orchestration
+ *
+ * @module user-management
+ */
+export * from "./LinuxUserService";
+export * from "./DirectoryService";
+export * from "./QuotaService";
+export * from "./UserManagementService";
+export * from "./layers";
+//# sourceMappingURL=index.js.map

package/dist/server/user-management/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/server/user-management/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;GAmBG;AAEH,cAAc,oBAAoB,CAAC;AACnC,cAAc,oBAAoB,CAAC;AACnC,cAAc,gBAAgB,CAAC;AAC/B,cAAc,yBAAyB,CAAC;AACxC,cAAc,UAAU,CAAC"}

package/dist/server/user-management/layers.d.ts

@@ -0,0 +1,27 @@
+import { Layer } from "effect";
+import { LinuxUserService } from "./LinuxUserService";
+import { DirectoryService } from "./DirectoryService";
+import { QuotaService } from "./QuotaService";
+import { UserManagementService } from "./UserManagementService";
+export declare const UserManagementLayer: Layer.Layer<LinuxUserService | DirectoryService | QuotaService | UserManagementService, never, never>;
+/**
+ * Create a complete user management layer
+ *
+ * Usage:
+ * ```typescript
+ * const layer = createUserManagementLayer();
+ * const runtime = ManagedRuntime.make(layer);
+ *
+ * const result = await runtime.runPromise(
+ *   Effect.gen(function* () {
+ *     const userMgmt = yield* UserManagementService;
+ *     return yield* userMgmt.createUser({
+ *       username: "john",
+ *       email: "john@example.com",
+ *     });
+ *   })
+ * );
+ * ```
+ */
+export declare const createUserManagementLayer: () => Layer.Layer<LinuxUserService | DirectoryService | QuotaService | UserManagementService, never, never>;
+//# sourceMappingURL=layers.d.ts.map

package/dist/server/user-management/layers.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"layers.d.ts","sourceRoot":"","sources":["../../../src/server/user-management/layers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAsBhE,eAAO,MAAM,mBAAmB,uGAG/B,CAAC;AAEF;;;;;;;;;;;;;;;;;;GAkBG;AACH,eAAO,MAAM,yBAAyB,6GAA4B,CAAC"}

package/dist/server/user-management/layers.js

@@ -0,0 +1,37 @@
+import { Layer } from "effect";
+import { LinuxUserService } from "./LinuxUserService";
+import { DirectoryService } from "./DirectoryService";
+import { QuotaService } from "./QuotaService";
+import { UserManagementService } from "./UserManagementService";
+/**
+ * User Management Layer Composition
+ *
+ * Provides Effect-TS layers for dependency injection of user management services.
+ */
+// Independent services (no dependencies)
+const IndependentServices = Layer.mergeAll(LinuxUserService.Live, DirectoryService.Live, QuotaService.Live);
+// User management service depends on all base services
+const UserManagementWithDeps = Layer.provide(UserManagementService.Live, IndependentServices);
+// Complete layer with all services
+export const UserManagementLayer = Layer.mergeAll(IndependentServices, UserManagementWithDeps);
+/**
+ * Create a complete user management layer
+ *
+ * Usage:
+ * ```typescript
+ * const layer = createUserManagementLayer();
+ * const runtime = ManagedRuntime.make(layer);
+ *
+ * const result = await runtime.runPromise(
+ *   Effect.gen(function* () {
+ *     const userMgmt = yield* UserManagementService;
+ *     return yield* userMgmt.createUser({
+ *       username: "john",
+ *       email: "john@example.com",
+ *     });
+ *   })
+ * );
+ * ```
+ */
+export const createUserManagementLayer = () => UserManagementLayer;
+//# sourceMappingURL=layers.js.map

package/dist/server/user-management/layers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"layers.js","sourceRoot":"","sources":["../../../src/server/user-management/layers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,QAAQ,CAAC;AAC/B,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAEhE;;;;GAIG;AAEH,yCAAyC;AACzC,MAAM,mBAAmB,GAAG,KAAK,CAAC,QAAQ,CACxC,gBAAgB,CAAC,IAAI,EACrB,gBAAgB,CAAC,IAAI,EACrB,YAAY,CAAC,IAAI,CAClB,CAAC;AAEF,uDAAuD;AACvD,MAAM,sBAAsB,GAAG,KAAK,CAAC,OAAO,CAC1C,qBAAqB,CAAC,IAAI,EAC1B,mBAAmB,CACpB,CAAC;AAEF,mCAAmC;AACnC,MAAM,CAAC,MAAM,mBAAmB,GAAG,KAAK,CAAC,QAAQ,CAC/C,mBAAmB,EACnB,sBAAsB,CACvB,CAAC;AAEF;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,CAAC,MAAM,yBAAyB,GAAG,GAAG,EAAE,CAAC,mBAAmB,CAAC"}

package/dist/shared/types.d.ts

@@ -0,0 +1,94 @@
+export interface User {
+    id: string;
+    username: string;
+    email: string;
+    passwordHash: string | null;
+    linuxUsername: string;
+    createdAt: number;
+    updatedAt: number;
+    isActive: boolean;
+    emailVerified: boolean;
+    failedLoginAttempts: number;
+    lastLoginAt: number | null;
+}
+export interface Session {
+    id: string;
+    userId: string;
+    tokenHash: string;
+    ipAddress: string | null;
+    userAgent: string | null;
+    createdAt: number;
+    expiresAt: number;
+    isRevoked: boolean;
+    revokedAt: number | null;
+}
+export interface OAuth2Provider {
+    id: string;
+    userId: string;
+    provider: "google" | "github" | "microsoft";
+    providerUserId: string;
+    providerEmail: string | null;
+    accessToken: string | null;
+    refreshToken: string | null;
+    tokenExpiresAt: number | null;
+    createdAt: number;
+    updatedAt: number;
+}
+export interface AuditLog {
+    id: string;
+    userId: string | null;
+    action: string;
+    resourceType: string | null;
+    resourceId: string | null;
+    ipAddress: string | null;
+    userAgent: string | null;
+    details: string | null;
+    createdAt: number;
+}
+export interface JWTPayload {
+    sub: string;
+    username: string;
+    email: string;
+    iat: number;
+    exp: number;
+    jti: string;
+    [key: string]: unknown;
+}
+export interface RegisterRequest {
+    username: string;
+    email: string;
+    password: string;
+}
+export interface LoginRequest {
+    email: string;
+    password: string;
+}
+export interface AuthResponse {
+    user: {
+        id: string;
+        username: string;
+        email: string;
+        emailVerified: boolean;
+    };
+    token: string;
+}
+export declare class AuthError {
+    readonly code: string;
+    readonly message: string;
+    readonly cause?: unknown | undefined;
+    readonly _tag = "AuthError";
+    constructor(code: string, message: string, cause?: unknown | undefined);
+}
+export declare class ValidationError {
+    readonly field: string;
+    readonly message: string;
+    readonly _tag = "ValidationError";
+    constructor(field: string, message: string);
+}
+export declare class DatabaseError {
+    readonly message: string;
+    readonly cause?: unknown | undefined;
+    readonly _tag = "DatabaseError";
+    constructor(message: string, cause?: unknown | undefined);
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/shared/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/shared/types.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,IAAI;IACnB,EAAE,EAAE,MAAM,CAAC;IACX,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,OAAO,CAAC;IAClB,aAAa,EAAE,OAAO,CAAC;IACvB,mBAAmB,EAAE,MAAM,CAAC;IAC5B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;CAC5B;AAED,MAAM,WAAW,OAAO;IACtB,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,OAAO,CAAC;IACnB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B;AAED,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,QAAQ,GAAG,QAAQ,GAAG,WAAW,CAAC;IAC5C,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,MAAM,EAAE,MAAM,CAAC;IACf,YAAY,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,SAAS,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,SAAS,EAAE,MAAM,CAAC;CACnB;AAGD,MAAM,WAAW,UAAU;IACzB,GAAG,EAAE,MAAM,CAAC;IACZ,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC;CACxB;AAGD,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE;QACJ,EAAE,EAAE,MAAM,CAAC;QACX,QAAQ,EAAE,MAAM,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,aAAa,EAAE,OAAO,CAAC;KACxB,CAAC;IACF,KAAK,EAAE,MAAM,CAAC;CACf;AAGD,qBAAa,SAAS;IAGlB,QAAQ,CAAC,IAAI,EAAE,MAAM;IACrB,QAAQ,CAAC,OAAO,EAAE,MAAM;IACxB,QAAQ,CAAC,KAAK,CAAC,EAAE,OAAO;IAJ1B,QAAQ,CAAC,IAAI,eAAe;gBAEjB,IAAI,EAAE,MAAM,EACZ,OAAO,EAAE,MAAM,EACf,KAAK,CAAC,EAAE,OAAO,YAAA;CAE3B;AAED,qBAAa,eAAe;IAGxB,QAAQ,CAAC,KAAK,EAAE,MAAM;IACtB,QAAQ,CAAC,OAAO,EAAE,MAAM;IAH1B,QAAQ,CAAC,IAAI,qBAAqB;gBAEvB,KAAK,EAAE,MAAM,EACb,OAAO,EAAE,MAAM;CAE3B;AAED,qBAAa,aAAa;IAGtB,QAAQ,CAAC,OAAO,EAAE,MAAM;IACxB,QAAQ,CAAC,KAAK,CAAC,EAAE,OAAO;IAH1B,QAAQ,CAAC,IAAI,mBAAmB;gBAErB,OAAO,EAAE,MAAM,EACf,KAAK,CAAC,EAAE,OAAO,YAAA;CAE3B"}

package/dist/shared/types.js

@@ -0,0 +1,32 @@
+// Shared types for MyAIDev Method Web Server
+// Error types
+export class AuthError {
+    code;
+    message;
+    cause;
+    _tag = "AuthError";
+    constructor(code, message, cause) {
+        this.code = code;
+        this.message = message;
+        this.cause = cause;
+    }
+}
+export class ValidationError {
+    field;
+    message;
+    _tag = "ValidationError";
+    constructor(field, message) {
+        this.field = field;
+        this.message = message;
+    }
+}
+export class DatabaseError {
+    message;
+    cause;
+    _tag = "DatabaseError";
+    constructor(message, cause) {
+        this.message = message;
+        this.cause = cause;
+    }
+}
+//# sourceMappingURL=types.js.map

package/dist/shared/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/shared/types.ts"],"names":[],"mappings":"AAAA,6CAA6C;AAsF7C,cAAc;AACd,MAAM,OAAO,SAAS;IAGT;IACA;IACA;IAJF,IAAI,GAAG,WAAW,CAAC;IAC5B,YACW,IAAY,EACZ,OAAe,EACf,KAAe;QAFf,SAAI,GAAJ,IAAI,CAAQ;QACZ,YAAO,GAAP,OAAO,CAAQ;QACf,UAAK,GAAL,KAAK,CAAU;IACvB,CAAC;CACL;AAED,MAAM,OAAO,eAAe;IAGf;IACA;IAHF,IAAI,GAAG,iBAAiB,CAAC;IAClC,YACW,KAAa,EACb,OAAe;QADf,UAAK,GAAL,KAAK,CAAQ;QACb,YAAO,GAAP,OAAO,CAAQ;IACvB,CAAC;CACL;AAED,MAAM,OAAO,aAAa;IAGb;IACA;IAHF,IAAI,GAAG,eAAe,CAAC;IAChC,YACW,OAAe,EACf,KAAe;QADf,YAAO,GAAP,OAAO,CAAQ;QACf,UAAK,GAAL,KAAK,CAAU;IACvB,CAAC;CACL"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "myaidev-method",
-  "version": "0.2.8",
+  "version": "0.2.9",
   "description": "Comprehensive development framework with SPARC methodology for AI-assisted software development, multi-platform publishing (WordPress, PayloadCMS, Astro, Docusaurus, Mintlify), and Coolify deployment",
   "mcpName": "io.github.myaione/myaidev-method",
   "main": "src/index.js",
@@ -23,7 +23,12 @@
     "mcp:status": "node src/mcp/mcp-launcher.js status",
     "mcp:health": "node src/mcp/mcp-launcher.js health",
     "build:mcp": "mkdir -p dist/mcp && cp .claude/mcp/*.js .claude/mcp/*.json dist/mcp/",
-    "prepublishOnly": "npm install && npm test && npm run build:mcp",
+    "build:server": "tsc -p tsconfig.server.json && mkdir -p dist/server/database && cp src/server/database/schema.sql dist/server/database/",
+    "build": "npm run build:mcp && npm run build:server",
+    "dev:server": "tsx watch src/server/main.ts",
+    "typecheck:server": "tsc -p tsconfig.server.json --noEmit",
+    "typecheck": "npm run typecheck:server",
+    "prepublishOnly": "npm install && npm test && npm run build",
     "postinstall": "echo \"MyAIDev Method installed successfully! Run 'npx myaidev-method@latest init --claude' to get started.\"",
     "dev:architect": "node src/scripts/dev-architect.js",
     "dev:code": "node src/scripts/dev-code.js",
@@ -84,13 +89,21 @@
   "license": "MIT",
   "type": "module",
   "dependencies": {
+    "@effect/platform-node": "^0.98.4",
+    "@hono/node-server": "^1.19.5",
     "@modelcontextprotocol/sdk": "^1.18.0",
+    "@tsconfig/strictest": "^2.0.5",
+    "bcrypt": "^5.1.1",
+    "better-sqlite3": "^11.0.0",
     "chalk": "^5.3.0",
     "commander": "^12.0.0",
     "dotenv": "^16.4.1",
+    "effect": "^3.18.4",
     "fs-extra": "^11.2.0",
     "gray-matter": "^4.0.3",
+    "hono": "^4.10.3",
     "inquirer": "^9.2.15",
+    "jose": "^5.2.2",
     "marked": "^11.0.0",
     "node-fetch": "^3.3.2",
     "ora": "^8.0.1",
@@ -98,6 +111,13 @@
     "ssh2": "^1.15.0",
     "zod": "^3.23.8"
   },
+  "devDependencies": {
+    "@types/bcrypt": "^5.0.2",
+    "@types/better-sqlite3": "^7.6.11",
+    "@types/node": "^20.11.17",
+    "tsx": "^4.7.1",
+    "typescript": "^5.3.3"
+  },
   "repository": {
     "type": "git",
     "url": "git+https://github.com/myaione/myaidev-method.git"
@@ -119,10 +139,10 @@
     "MCP_INTEGRATION.md",
     "WORDPRESS_ADMIN_SCRIPTS.md",
     "COOLIFY_DEPLOYMENT.md",
-    "PAYLOADCMS_PUBLISHING.md",
-    "STATIC_SITE_PUBLISHING.md",
     "PUBLISHING_GUIDE.md",
-    "TECHNICAL_ARCHITECTURE.md"
+    "TECHNICAL_ARCHITECTURE.md",
+    "PACKAGE_FIXES_SUMMARY.md",
+    "PAYLOADCMS_AUTH_UPDATE.md"
   ],
   "engines": {
     "node": ">=18.0.0"

package/src/lib/payloadcms-utils.js

@@ -12,7 +12,7 @@ import { marked } from 'marked';
 export class PayloadCMSUtils {
   constructor(config = {}) {
     // Load config from .env if not provided
-    if (!config.url || (!config.email && !config.apiKey)) {
+    if (!config.url || !config.email) {
       const envConfig = this.loadEnvConfig();
       config = { ...envConfig, ...config };
     }
@@ -20,7 +20,6 @@ export class PayloadCMSUtils {
     this.url = config.url?.replace(/\/$/, '');
     this.email = config.email;
     this.password = config.password;
-    this.apiKey = config.apiKey;
     this.token = null;
   }
 
@@ -33,8 +32,7 @@ export class PayloadCMSUtils {
       return {
         url: parsed.PAYLOADCMS_URL,
         email: parsed.PAYLOADCMS_EMAIL,
-        password: parsed.PAYLOADCMS_PASSWORD,
-        apiKey: parsed.PAYLOADCMS_API_KEY
+        password: parsed.PAYLOADCMS_PASSWORD
       };
     } catch (error) {
       throw new Error(`Failed to load PayloadCMS configuration: ${error.message}`);
@@ -43,16 +41,11 @@ export class PayloadCMSUtils {
 
   /**
    * Authenticate with PayloadCMS and get JWT token
+   * Uses email/password to obtain a JWT token that is used for all API requests
    */
   async authenticate() {
-    // If API key is provided, use that instead
-    if (this.apiKey) {
-      this.token = this.apiKey;
-      return { success: true, method: 'api-key' };
-    }
-
     if (!this.email || !this.password) {
-      throw new Error('Email and password required for authentication');
+      throw new Error('PAYLOADCMS_EMAIL and PAYLOADCMS_PASSWORD required for authentication');
     }
 
     try {
@@ -69,7 +62,7 @@ export class PayloadCMSUtils {
 
       if (!response.ok) {
         const error = await response.text();
-        throw new Error(`Authentication failed: ${error}`);
+        throw new Error(`Authentication failed (${response.status}): ${error}`);
       }
 
       const data = await response.json();