npm - nextly - Versions diffs - 0.0.1 → 0.0.2-alpha.0 - Mend

nextly 0.0.1 → 0.0.2-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (268) hide show

package/LICENSE +22 -0
package/README.md +122 -0
package/dist/_dts-chunks/collections-handler.d-DjgO74Wt.d.ts +20540 -0
package/dist/_dts-chunks/config.d-DNwsDnjs.d.ts +2589 -0
package/dist/_dts-chunks/define-component.d-BUgTHmt3.d.ts +1149 -0
package/dist/_dts-chunks/image-processor.d-OO1PmMrv.d.ts +335 -0
package/dist/_dts-chunks/index.d-axCAzZ7m.d.ts +17842 -0
package/dist/_dts-chunks/media.d-DjDOZo4B.d.ts +117 -0
package/dist/_dts-chunks/on-error.d-CHIKWNxd.d.ts +38 -0
package/dist/_dts-chunks/storage.d-BUhQ2we_.d.ts +404 -0
package/dist/actions/index.d.ts +239 -0
package/dist/actions/index.mjs +281 -0
package/dist/api/auth-state.d.ts +5 -0
package/dist/api/auth-state.mjs +131 -0
package/dist/api/collections-schema-detail.d.ts +56 -0
package/dist/api/collections-schema-detail.mjs +244 -0
package/dist/api/collections-schema-export.d.ts +56 -0
package/dist/api/collections-schema-export.mjs +129 -0
package/dist/api/collections-schema.d.ts +59 -0
package/dist/api/collections-schema.mjs +207 -0
package/dist/api/components-detail.d.ts +50 -0
package/dist/api/components-detail.mjs +132 -0
package/dist/api/components.d.ts +69 -0
package/dist/api/components.mjs +144 -0
package/dist/api/email-providers-default.d.ts +40 -0
package/dist/api/email-providers-default.mjs +75 -0
package/dist/api/email-providers-detail.d.ts +81 -0
package/dist/api/email-providers-detail.mjs +109 -0
package/dist/api/email-providers-test.d.ts +43 -0
package/dist/api/email-providers-test.mjs +114 -0
package/dist/api/email-providers.d.ts +69 -0
package/dist/api/email-providers.mjs +110 -0
package/dist/api/email-send-template.d.ts +41 -0
package/dist/api/email-send-template.mjs +58 -0
package/dist/api/email-send.d.ts +42 -0
package/dist/api/email-send.mjs +58 -0
package/dist/api/email-templates-detail.d.ts +74 -0
package/dist/api/email-templates-detail.mjs +112 -0
package/dist/api/email-templates-layout.d.ts +55 -0
package/dist/api/email-templates-layout.mjs +92 -0
package/dist/api/email-templates-preview.d.ts +48 -0
package/dist/api/email-templates-preview.mjs +93 -0
package/dist/api/email-templates.d.ts +61 -0
package/dist/api/email-templates.mjs +118 -0
package/dist/api/health.d.ts +68 -0
package/dist/api/health.mjs +67 -0
package/dist/api/index.d.ts +54 -0
package/dist/api/index.mjs +16 -0
package/dist/api/media-bulk.d.ts +74 -0
package/dist/api/media-bulk.mjs +196 -0
package/dist/api/media-folders.d.ts +112 -0
package/dist/api/media-folders.mjs +187 -0
package/dist/api/media-handlers.d.ts +102 -0
package/dist/api/media-handlers.mjs +437 -0
package/dist/api/media.d.ts +117 -0
package/dist/api/media.mjs +242 -0
package/dist/api/singles-detail.d.ts +87 -0
package/dist/api/singles-detail.mjs +170 -0
package/dist/api/singles-schema-detail.d.ts +54 -0
package/dist/api/singles-schema-detail.mjs +182 -0
package/dist/api/singles.d.ts +34 -0
package/dist/api/singles.mjs +94 -0
package/dist/api/storage-upload-url.d.ts +48 -0
package/dist/api/storage-upload-url.mjs +202 -0
package/dist/api/uploads.d.ts +109 -0
package/dist/api/uploads.mjs +359 -0
package/dist/auth/index.d.ts +425 -0
package/dist/auth/index.mjs +199 -0
package/dist/boot-apply-PQSYLDIN.mjs +7 -0
package/dist/chunk-2OALJTK6.mjs +489 -0
package/dist/chunk-2Q2SX2CS.mjs +365 -0
package/dist/chunk-2TFX4ND3.mjs +13 -0
package/dist/chunk-2TWPDSYD.mjs +87 -0
package/dist/chunk-2W3DVD7S.mjs +647 -0
package/dist/chunk-2ZFKXPQM.mjs +88 -0
package/dist/chunk-3FA7FKAV.mjs +832 -0
package/dist/chunk-3NZ2KMBL.mjs +58 -0
package/dist/chunk-4MJLT6PZ.mjs +0 -0
package/dist/chunk-56WO4WX7.mjs +0 -0
package/dist/chunk-5APFUGAD.mjs +89 -0
package/dist/chunk-5HMZ644B.mjs +108 -0
package/dist/chunk-67GXH6PR.mjs +32 -0
package/dist/chunk-6JNEPWRW.mjs +14368 -0
package/dist/chunk-6NFHQIJD.mjs +45 -0
package/dist/chunk-7P6ASYW6.mjs +9 -0
package/dist/chunk-A3WPLSDT.mjs +1364 -0
package/dist/chunk-AGJ6F2T3.mjs +144 -0
package/dist/chunk-AK6Z23OX.mjs +1464 -0
package/dist/chunk-APKKRD2G.mjs +102 -0
package/dist/chunk-B2GV2BWH.mjs +73 -0
package/dist/chunk-D5HQBNUB.mjs +74 -0
package/dist/chunk-DNNG377Z.mjs +204 -0
package/dist/chunk-DP3G27G5.mjs +135 -0
package/dist/chunk-DV6WVX2Q.mjs +0 -0
package/dist/chunk-DXGGXIUZ.mjs +57 -0
package/dist/chunk-EGXBZCGC.mjs +943 -0
package/dist/chunk-ERCNLX3V.mjs +176 -0
package/dist/chunk-FQULBZ53.mjs +850 -0
package/dist/chunk-G2AA4QLC.mjs +262 -0
package/dist/chunk-GDBJ5JCU.mjs +488 -0
package/dist/chunk-GJNSJU4S.mjs +19 -0
package/dist/chunk-GZ6DCQKC.mjs +69 -0
package/dist/chunk-H26B4FYG.mjs +167 -0
package/dist/chunk-I4JMR3UR.mjs +21 -0
package/dist/chunk-INV7QKLG.mjs +508 -0
package/dist/chunk-IUDOC7N7.mjs +46 -0
package/dist/chunk-IZWPRDC3.mjs +206 -0
package/dist/chunk-KIMNCZGV.mjs +15 -0
package/dist/chunk-L6HW2DA7.mjs +15 -0
package/dist/chunk-LAZXX4HR.mjs +100 -0
package/dist/chunk-LDKCUMHK.mjs +95 -0
package/dist/chunk-LRXMECUA.mjs +0 -0
package/dist/chunk-M52VMPGA.mjs +119 -0
package/dist/chunk-MGUWEEI6.mjs +160 -0
package/dist/chunk-NRUWQ5Z7.mjs +419 -0
package/dist/chunk-NSEFNNU4.mjs +25360 -0
package/dist/chunk-NTHVDFGO.mjs +138 -0
package/dist/chunk-O3QHXMOX.mjs +3166 -0
package/dist/chunk-P7NH2OSC.mjs +2605 -0
package/dist/chunk-PKMABBB5.mjs +184 -0
package/dist/chunk-PWS6XGJK.mjs +76 -0
package/dist/chunk-R6JJQHFC.mjs +20 -0
package/dist/chunk-RJLLGGPG.mjs +0 -0
package/dist/chunk-SBACDPNX.mjs +689 -0
package/dist/chunk-TO5AFLVQ.mjs +124 -0
package/dist/chunk-TS7GHTG2.mjs +5436 -0
package/dist/chunk-UJ2IMJ4W.mjs +133 -0
package/dist/chunk-UOP63Q54.mjs +102 -0
package/dist/chunk-UUOFWCM6.mjs +78 -0
package/dist/chunk-V4EQTOA4.mjs +893 -0
package/dist/chunk-VJ66NCL4.mjs +193 -0
package/dist/chunk-VQJQHVEV.mjs +29 -0
package/dist/chunk-VTJADRO3.mjs +141 -0
package/dist/chunk-VWF3JO32.mjs +0 -0
package/dist/chunk-W4MGXIRR.mjs +27 -0
package/dist/chunk-W5KKPZT5.mjs +1204 -0
package/dist/chunk-WD34YQ6T.mjs +381 -0
package/dist/chunk-WZBYMYVW.mjs +14 -0
package/dist/chunk-X23WKS3Z.mjs +50 -0
package/dist/chunk-X7TXCYYN.mjs +6496 -0
package/dist/chunk-XGI4EMS3.mjs +140 -0
package/dist/chunk-XZKLBMN6.mjs +1153 -0
package/dist/chunk-YB7INWPY.mjs +0 -0
package/dist/chunk-YV4Y7SDL.mjs +83 -0
package/dist/chunk-YZNBLFIW.mjs +1688 -0
package/dist/chunk-YZZCTONM.mjs +263 -0
package/dist/chunk-ZE6A3FYH.mjs +289 -0
package/dist/cli/nextly.mjs +68 -0
package/dist/cli/utils/index.d.ts +449 -0
package/dist/cli/utils/index.mjs +49 -0
package/dist/component-schema-service-5577KVW6.mjs +11 -0
package/dist/config-loader-23YEMC3Z.mjs +23 -0
package/dist/config.d.ts +44 -0
package/dist/config.mjs +109 -0
package/dist/container-ORGFGYSZ.mjs +9 -0
package/dist/database/index.d.ts +12 -0
package/dist/database/index.mjs +40 -0
package/dist/database/seeders/index.d.ts +93 -0
package/dist/database/seeders/index.mjs +47 -0
package/dist/db-sync-demote-LJGKLB3S.mjs +117 -0
package/dist/db-sync-promote-B26VSYQF.mjs +113 -0
package/dist/dev-reload-broadcaster-B73IQ53V.mjs +25 -0
package/dist/dist-M2NOU37V.mjs +19 -0
package/dist/drizzle-kit-lazy-D2M2PXR2.mjs +13 -0
package/dist/dynamic-collection-schema-service-IEXTPIZ7.mjs +8 -0
package/dist/errors/index.d.ts +159 -0
package/dist/errors/index.mjs +10 -0
package/dist/factory-IWMBKUJM.mjs +15 -0
package/dist/first-run-QIVKWJIF.mjs +63 -0
package/dist/fresh-push-NR67DC3R.mjs +8 -0
package/dist/index.d.ts +4175 -0
package/dist/index.mjs +1336 -0
package/dist/local-plugin-PTET4NAT.mjs +7 -0
package/dist/logger-NU46DXNY.mjs +15 -0
package/dist/logger-YE4TC7ZN.mjs +9 -0
package/dist/migration-journal-EP532Y4L.mjs +139 -0
package/dist/migrations/mysql/0000_eager_sentry.sql +174 -0
package/dist/migrations/mysql/0001_soft_giant_girl.sql +27 -0
package/dist/migrations/mysql/0002_media_table.sql +24 -0
package/dist/migrations/mysql/0003_dynamic_singles.sql +37 -0
package/dist/migrations/mysql/0004_dynamic_components.sql +35 -0
package/dist/migrations/mysql/0005_user_management_tables.sql +92 -0
package/dist/migrations/mysql/0006_api_keys.sql +36 -0
package/dist/migrations/mysql/0007_general_settings.sql +20 -0
package/dist/migrations/mysql/0008_site_settings_logo_url.sql +9 -0
package/dist/migrations/mysql/0009_activity_log.sql +30 -0
package/dist/migrations/mysql/0010_site_settings_sidebar.sql +13 -0
package/dist/migrations/mysql/0011_missing_tables_and_columns.sql +54 -0
package/dist/migrations/mysql/0012_image_sizes_and_focal_point.sql +30 -0
package/dist/migrations/mysql/0012_media_folders.sql +43 -0
package/dist/migrations/mysql/0013_user_brute_force_protection.sql +31 -0
package/dist/migrations/mysql/0014_email_template_attachments.sql +12 -0
package/dist/migrations/mysql/0015_media_uploaded_by_nullable.sql +15 -0
package/dist/migrations/mysql/20260429_000000_000_initial_journal.sql +22 -0
package/dist/migrations/mysql/20260501_000000_journal_batch.sql +17 -0
package/dist/migrations/mysql/20260501_000001_audit_log.sql +24 -0
package/dist/migrations/mysql/20260504_000000_nextly_meta.sql +21 -0
package/dist/migrations/mysql/meta/0000_snapshot.json +1005 -0
package/dist/migrations/mysql/meta/0001_snapshot.json +1099 -0
package/dist/migrations/mysql/meta/_journal.json +41 -0
package/dist/migrations/postgresql/0000_misty_king_bedlam.sql +169 -0
package/dist/migrations/postgresql/0001_perpetual_captain_marvel.sql +8 -0
package/dist/migrations/postgresql/0002_sad_spectrum.sql +16 -0
package/dist/migrations/postgresql/0003_hesitant_ultron.sql +17 -0
package/dist/migrations/postgresql/0004_media_table.sql +24 -0
package/dist/migrations/postgresql/0005_media_folders.sql +36 -0
package/dist/migrations/postgresql/0006_dynamic_collections_update.sql +50 -0
package/dist/migrations/postgresql/0007_dynamic_singles.sql +38 -0
package/dist/migrations/postgresql/0008_dynamic_components.sql +37 -0
package/dist/migrations/postgresql/0009_user_management_tables.sql +95 -0
package/dist/migrations/postgresql/0010_api_keys.sql +34 -0
package/dist/migrations/postgresql/0011_general_settings.sql +20 -0
package/dist/migrations/postgresql/0012_site_settings_logo_url.sql +9 -0
package/dist/migrations/postgresql/0013_activity_log.sql +29 -0
package/dist/migrations/postgresql/0014_image_sizes_and_focal_point.sql +33 -0
package/dist/migrations/postgresql/0014_site_settings_sidebar.sql +13 -0
package/dist/migrations/postgresql/0015_user_brute_force_protection.sql +29 -0
package/dist/migrations/postgresql/0016_email_template_attachments.sql +12 -0
package/dist/migrations/postgresql/0017_media_uploaded_by_nullable.sql +15 -0
package/dist/migrations/postgresql/20260429_000000_000_initial_journal.sql +24 -0
package/dist/migrations/postgresql/20260501_000000_journal_batch.sql +17 -0
package/dist/migrations/postgresql/20260501_000001_audit_log.sql +24 -0
package/dist/migrations/postgresql/20260504_000000_nextly_meta.sql +22 -0
package/dist/migrations/postgresql/meta/0000_snapshot.json +1286 -0
package/dist/migrations/postgresql/meta/0001_snapshot.json +1407 -0
package/dist/migrations/postgresql/meta/0002_snapshot.json +1552 -0
package/dist/migrations/postgresql/meta/0003_snapshot.json +1695 -0
package/dist/migrations/postgresql/meta/0010_snapshot.json +2345 -0
package/dist/migrations/postgresql/meta/_journal.json +90 -0
package/dist/migrations/sqlite/0000_api_keys.sql +34 -0
package/dist/migrations/sqlite/0001_general_settings.sql +20 -0
package/dist/migrations/sqlite/0002_site_settings_logo_url.sql +9 -0
package/dist/migrations/sqlite/0003_activity_log.sql +29 -0
package/dist/migrations/sqlite/0004_image_sizes_and_focal_point.sql +29 -0
package/dist/migrations/sqlite/0004_site_settings_sidebar.sql +11 -0
package/dist/migrations/sqlite/0005_user_brute_force_protection.sql +29 -0
package/dist/migrations/sqlite/0006_email_template_attachments.sql +12 -0
package/dist/migrations/sqlite/0007_media_uploaded_by_nullable.sql +111 -0
package/dist/migrations/sqlite/20260429_000000_000_initial_journal.sql +24 -0
package/dist/migrations/sqlite/20260501_000000_journal_batch.sql +19 -0
package/dist/migrations/sqlite/20260501_000001_audit_log.sql +24 -0
package/dist/migrations/sqlite/20260504_000000_nextly_meta.sql +21 -0
package/dist/migrations/sqlite/20260505_000000_user_management_tables.sql +77 -0
package/dist/next.d.ts +57 -0
package/dist/next.mjs +55 -0
package/dist/observability/index.d.ts +87 -0
package/dist/observability/index.mjs +57 -0
package/dist/permissions-3DZZQZMI.mjs +39 -0
package/dist/pipeline-YOML7SWF.mjs +29 -0
package/dist/preview-ZZTR3QGS.mjs +9 -0
package/dist/program-PW6UB2ZC.mjs +5934 -0
package/dist/reconcile-single-tables-7ENVXJGB.mjs +7 -0
package/dist/register-SF6E6FVU.mjs +49 -0
package/dist/reload-config-HWQ4G5MM.mjs +23 -0
package/dist/resolve-single-table-name-JSOMUB3R.mjs +7 -0
package/dist/routeHandler-UNMMJIBM.mjs +77 -0
package/dist/runtime-schema-generator-NRA6A6Z6.mjs +8 -0
package/dist/runtime.d.ts +120 -0
package/dist/runtime.mjs +73 -0
package/dist/schema-hash-FMMG6VPJ.mjs +13 -0
package/dist/schema-registry-EQ36FZDP.mjs +7 -0
package/dist/scripts/load-env.mjs +42 -0
package/dist/storage/index.d.ts +566 -0
package/dist/storage/index.mjs +45 -0
package/dist/super-admin-G5ZK5F4T.mjs +39 -0
package/dist/system-table-service-WGSRVEGT.mjs +17 -0
package/dist/users-7KELGRYJ.mjs +38 -0
package/package.json +308 -9

package/dist/api/uploads.mjs ADDED Viewed

@@ -0,0 +1,359 @@
+import {
+  withErrorHandler
+} from "../chunk-TO5AFLVQ.mjs";
+import {
+  getCachedNextly
+} from "../chunk-P7NH2OSC.mjs";
+import "../chunk-2OALJTK6.mjs";
+import "../chunk-VJ66NCL4.mjs";
+import "../chunk-R6JJQHFC.mjs";
+import "../chunk-X23WKS3Z.mjs";
+import {
+  getService,
+  isServicesRegistered
+} from "../chunk-X7TXCYYN.mjs";
+import "../chunk-YZNBLFIW.mjs";
+import "../chunk-FQULBZ53.mjs";
+import "../chunk-67GXH6PR.mjs";
+import "../chunk-2TFX4ND3.mjs";
+import "../chunk-W4MGXIRR.mjs";
+import {
+  UploadService,
+  clampLimit2 as clampLimit
+} from "../chunk-NSEFNNU4.mjs";
+import "../chunk-3FA7FKAV.mjs";
+import "../chunk-AGJ6F2T3.mjs";
+import "../chunk-KIMNCZGV.mjs";
+import "../chunk-AK6Z23OX.mjs";
+import "../chunk-INV7QKLG.mjs";
+import "../chunk-GZ6DCQKC.mjs";
+import "../chunk-SBACDPNX.mjs";
+import "../chunk-RJLLGGPG.mjs";
+import "../chunk-V4EQTOA4.mjs";
+import "../chunk-I4JMR3UR.mjs";
+import "../chunk-XZKLBMN6.mjs";
+import "../chunk-IZWPRDC3.mjs";
+import "../chunk-DNNG377Z.mjs";
+import "../chunk-5HMZ644B.mjs";
+import "../chunk-W5KKPZT5.mjs";
+import "../chunk-56WO4WX7.mjs";
+import {
+  withTimezoneFormatting
+} from "../chunk-2W3DVD7S.mjs";
+import "../chunk-TS7GHTG2.mjs";
+import "../chunk-H26B4FYG.mjs";
+import "../chunk-DP3G27G5.mjs";
+import "../chunk-DV6WVX2Q.mjs";
+import "../chunk-UJ2IMJ4W.mjs";
+import {
+  getMediaStorage
+} from "../chunk-EGXBZCGC.mjs";
+import "../chunk-G2AA4QLC.mjs";
+import "../chunk-4MJLT6PZ.mjs";
+import {
+  respondAction,
+  respondDoc,
+  respondList,
+  respondMutation
+} from "../chunk-IUDOC7N7.mjs";
+import "../chunk-LAZXX4HR.mjs";
+import {
+  container
+} from "../chunk-D5HQBNUB.mjs";
+import {
+  NextlyError
+} from "../chunk-NRUWQ5Z7.mjs";
+import "../chunk-VTJADRO3.mjs";
+import "../chunk-5APFUGAD.mjs";
+import "../chunk-7P6ASYW6.mjs";
+// src/utils/parse-byte-size.ts
+var UNITS = {
+  b: 1,
+  kb: 1024,
+  mb: 1024 * 1024,
+  gb: 1024 * 1024 * 1024,
+  tb: 1024 * 1024 * 1024 * 1024
+};
+function parseByteSize(value) {
+  if (typeof value === "number") {
+    if (!Number.isFinite(value) || value <= 0 || !Number.isInteger(value)) {
+      throw new Error(
+        `[nextly/security/limits] expected positive integer byte count; got ${value}`
+      );
+    }
+    return value;
+  }
+  const trimmed = value.trim().toLowerCase();
+  const match = trimmed.match(/^(\d+(?:\.\d+)?)\s*(b|kb|mb|gb|tb)?$/);
+  if (!match) {
+    throw new Error(
+      `[nextly/security/limits] cannot parse byte size: "${value}". Use a number or "1mb" / "500kb" etc.`
+    );
+  }
+  const n = Number(match[1]);
+  const unit = match[2] ?? "b";
+  return Math.floor(n * UNITS[unit]);
+}
+var DEFAULT_SECURITY_LIMITS = {
+  json: parseByteSize("1mb"),
+  multipart: parseByteSize("50mb"),
+  fileSize: parseByteSize("10mb"),
+  fileCount: 10,
+  fieldCount: 50,
+  fieldSize: parseByteSize("100kb")
+};
+function resolveSecurityLimits(raw) {
+  if (!raw) return DEFAULT_SECURITY_LIMITS;
+  return {
+    json: raw.json !== void 0 ? parseByteSize(raw.json) : DEFAULT_SECURITY_LIMITS.json,
+    multipart: raw.multipart !== void 0 ? parseByteSize(raw.multipart) : DEFAULT_SECURITY_LIMITS.multipart,
+    fileSize: raw.fileSize !== void 0 ? parseByteSize(raw.fileSize) : DEFAULT_SECURITY_LIMITS.fileSize,
+    fileCount: raw.fileCount ?? DEFAULT_SECURITY_LIMITS.fileCount,
+    fieldCount: raw.fieldCount ?? DEFAULT_SECURITY_LIMITS.fieldCount,
+    fieldSize: raw.fieldSize !== void 0 ? parseByteSize(raw.fieldSize) : DEFAULT_SECURITY_LIMITS.fieldSize
+  };
+}
+function checkRequestSize(request, limit) {
+  const lengthHeader = request.headers.get("content-length");
+  if (!lengthHeader) return null;
+  const length = Number(lengthHeader);
+  if (!Number.isFinite(length) || length < 0) return null;
+  if (length > limit) {
+    return new Response(
+      JSON.stringify({
+        error: {
+          code: "PAYLOAD_TOO_LARGE",
+          message: `Request body exceeds the configured limit of ${limit} bytes.`
+        }
+      }),
+      {
+        status: 413,
+        headers: { "content-type": "application/json" }
+      }
+    );
+  }
+  return null;
+}
+// src/api/uploads.ts
+function resolveSecurityLimitsFromContainer() {
+  try {
+    if (!container.has("config")) return resolveSecurityLimits(void 0);
+    const cfg = container.get("config");
+    return resolveSecurityLimits(cfg?.security?.limits);
+  } catch {
+    return resolveSecurityLimits(void 0);
+  }
+}
+function getUploadService(_collectionSlug, config) {
+  const storage = getMediaStorage().getAdapter();
+  let uploadSecurityConfig;
+  if (isServicesRegistered()) {
+    const serviceConfig = getService("config");
+    uploadSecurityConfig = serviceConfig.security?.uploads;
+  }
+  return new UploadService(storage, {
+    maxSize: config?.maxSize,
+    allowedMimeTypes: config?.allowedMimeTypes ?? uploadSecurityConfig?.allowedMimeTypes,
+    additionalMimeTypes: config?.additionalMimeTypes ?? uploadSecurityConfig?.additionalMimeTypes,
+    svgCsp: uploadSecurityConfig?.svgCsp,
+    generateThumbnails: config?.generateThumbnails,
+    thumbnailSize: config?.thumbnailSize
+  });
+}
+function resetUploadService() {
+}
+async function ensureServicesInitialized() {
+  await getCachedNextly();
+}
+async function extractParams(params) {
+  const resolved = await params;
+  return {
+    slug: resolved.slug || "",
+    id: resolved.id
+  };
+}
+function requireSlug(slug) {
+  if (!slug) {
+    throw NextlyError.validation({
+      errors: [
+        {
+          path: "slug",
+          code: "REQUIRED",
+          message: "Collection slug is required."
+        }
+      ],
+      logContext: { reason: "missing-collection-slug" }
+    });
+  }
+}
+function throwFromUploadResult(result, operation) {
+  const logContext = {
+    operation,
+    legacyStatus: result.statusCode,
+    legacyMessage: result.message
+  };
+  if (result.statusCode === 404) {
+    throw NextlyError.notFound({ logContext });
+  }
+  if (result.statusCode === 400) {
+    const errors = result.errors && result.errors.length > 0 ? result.errors.map((e) => ({
+      path: e.field ?? "",
+      code: "INVALID_INPUT",
+      message: e.message
+    })) : [
+      {
+        path: "",
+        code: "INVALID_INPUT",
+        message: result.message ?? "Invalid input."
+      }
+    ];
+    throw NextlyError.validation({ errors, logContext });
+  }
+  if (result.statusCode === 503) {
+    throw NextlyError.serviceUnavailable({ logContext });
+  }
+  throw NextlyError.internal({ logContext });
+}
+var POST = withErrorHandler(
+  async (request, context) => {
+    await ensureServicesInitialized();
+    const { slug } = await extractParams(context.params);
+    requireSlug(slug);
+    const limits = resolveSecurityLimitsFromContainer();
+    const tooLarge = checkRequestSize(request, limits.multipart);
+    if (tooLarge) return tooLarge;
+    const formData = await request.formData();
+    const file = formData.get("file");
+    if (!file) {
+      throw NextlyError.validation({
+        errors: [
+          { path: "file", code: "REQUIRED", message: "file is required." }
+        ],
+        logContext: { reason: "missing-file" }
+      });
+    }
+    if (file.size > limits.fileSize) {
+      return new Response(
+        JSON.stringify({
+          error: {
+            code: "PAYLOAD_TOO_LARGE",
+            message: `File "${file.name}" (${file.size} bytes) exceeds the configured per-file limit of ${limits.fileSize} bytes.`
+          }
+        }),
+        { status: 413, headers: { "content-type": "application/json" } }
+      );
+    }
+    const payloadStr = formData.get("_payload");
+    let additionalData = {};
+    if (payloadStr) {
+      try {
+        additionalData = JSON.parse(payloadStr);
+      } catch {
+      }
+    }
+    const arrayBuffer = await file.arrayBuffer();
+    const buffer = Buffer.from(arrayBuffer);
+    const uploadService = getUploadService(slug);
+    const result = await uploadService.upload(buffer, {
+      filename: file.name,
+      mimeType: file.type || "application/octet-stream",
+      collectionSlug: slug
+    });
+    if (!result.success) {
+      throwFromUploadResult(result, "upload");
+    }
+    const uploadData = {
+      id: result.data?.id,
+      filename: result.data?.filename,
+      mimeType: result.data?.mimeType,
+      filesize: result.data?.size,
+      url: result.data?.url,
+      thumbnailUrl: result.data?.thumbnailUrl,
+      width: result.data?.width,
+      height: result.data?.height,
+      createdAt: (/* @__PURE__ */ new Date()).toISOString(),
+      ...additionalData
+    };
+    return withTimezoneFormatting(
+      respondMutation("Upload created.", uploadData, { status: 201 })
+    );
+  }
+);
+var GET = withErrorHandler(
+  async (request, context) => {
+    await ensureServicesInitialized();
+    const { slug, id } = await extractParams(context.params);
+    requireSlug(slug);
+    if (!id) {
+      return handleList(request, slug);
+    }
+    const uploadService = getUploadService(slug);
+    const filePath = `${slug}/${id}`;
+    const result = await uploadService.getMetadata(filePath);
+    if (!result.success) {
+      throwFromUploadResult(result, "get-metadata");
+    }
+    const uploadData = {
+      id: result.data?.id,
+      filename: result.data?.filename || result.data?.originalFilename,
+      mimeType: result.data?.mimeType,
+      filesize: result.data?.size,
+      url: result.data?.url,
+      thumbnailUrl: result.data?.thumbnailUrl,
+      width: result.data?.width,
+      height: result.data?.height,
+      createdAt: result.data?.createdAt,
+      updatedAt: result.data?.updatedAt
+    };
+    return withTimezoneFormatting(respondDoc(uploadData));
+  }
+);
+async function handleList(request, _slug) {
+  const { searchParams } = new URL(request.url);
+  const page = parseInt(searchParams.get("page") || "1", 10);
+  const limit = clampLimit(searchParams.get("limit"), { defaultLimit: 10 });
+  const total = 0;
+  const totalPages = limit > 0 ? Math.ceil(total / limit) : 0;
+  return withTimezoneFormatting(
+    respondList([], {
+      total,
+      page,
+      limit,
+      totalPages,
+      hasNext: page < totalPages,
+      hasPrev: page > 1
+    })
+  );
+}
+var DELETE = withErrorHandler(
+  async (_request, context) => {
+    await ensureServicesInitialized();
+    const { slug, id } = await extractParams(context.params);
+    requireSlug(slug);
+    if (!id) {
+      throw NextlyError.validation({
+        errors: [
+          { path: "id", code: "REQUIRED", message: "Upload ID is required." }
+        ],
+        logContext: { reason: "missing-upload-id" }
+      });
+    }
+    const uploadService = getUploadService(slug);
+    const filePath = `${slug}/${id}`;
+    const result = await uploadService.delete(filePath);
+    if (!result.success) {
+      throwFromUploadResult(result, "delete");
+    }
+    return respondAction("Upload deleted.", { id });
+  }
+);
+var LIST = GET;
+export {
+  DELETE,
+  GET,
+  LIST,
+  POST,
+  resetUploadService
+};