npm - sa2kit - Versions diffs - 1.6.85 → 1.6.89 - Mend

sa2kit 1.6.85 → 1.6.89

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (27) hide show

package/dist/boothVaultService-Cn4WPhjg.d.mts +83 -0
package/dist/boothVaultService-Cn4WPhjg.d.ts +83 -0
package/dist/index.d.mts +2 -0
package/dist/index.d.ts +2 -0
package/dist/index.js +366 -1
package/dist/index.js.map +1 -1
package/dist/index.mjs +358 -2
package/dist/index.mjs.map +1 -1
package/dist/vocaloidBooth/index.d.mts +64 -0
package/dist/vocaloidBooth/index.d.ts +64 -0
package/dist/vocaloidBooth/index.js +376 -0
package/dist/vocaloidBooth/index.js.map +1 -0
package/dist/vocaloidBooth/index.mjs +362 -0
package/dist/vocaloidBooth/index.mjs.map +1 -0
package/dist/vocaloidBooth/server/index.d.mts +110 -0
package/dist/vocaloidBooth/server/index.d.ts +110 -0
package/dist/vocaloidBooth/server/index.js +247 -0
package/dist/vocaloidBooth/server/index.js.map +1 -0
package/dist/vocaloidBooth/server/index.mjs +237 -0
package/dist/vocaloidBooth/server/index.mjs.map +1 -0
package/dist/vocaloidBooth/web/index.d.mts +3 -0
package/dist/vocaloidBooth/web/index.d.ts +3 -0
package/dist/vocaloidBooth/web/index.js +376 -0
package/dist/vocaloidBooth/web/index.js.map +1 -0
package/dist/vocaloidBooth/web/index.mjs +362 -0
package/dist/vocaloidBooth/web/index.mjs.map +1 -0
package/package.json +16 -1

package/dist/vocaloidBooth/server/index.d.ts ADDED Viewed

@@ -0,0 +1,110 @@
+import { B as BoothVaultStore, a as BoothUploadRecord, b as BoothFileItem, c as BoothFileKind, C as CreateBoothUploadInput, d as BoothVaultService, e as CreateBoothUploadResult, f as BoothAuditEvent } from '../../boothVaultService-Cn4WPhjg.js';
+import { A as AccessPermission, c as UploadProgress } from '../../types-CK4We_aI.js';
+import { U as UniversalFileService } from '../../UniversalFileService-Ct4baUMz.js';
+import 'events';
+declare class InMemoryBoothVaultStore implements BoothVaultStore {
+    private readonly recordsById;
+    private readonly idByCode;
+    saveRecord(record: BoothUploadRecord): Promise<void>;
+    findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null>;
+    findByRecordId(recordId: string): Promise<BoothUploadRecord | null>;
+    incrementDownloadCount(recordId: string): Promise<void>;
+    existsByMatchCode(matchCode: string): Promise<boolean>;
+    listActiveRecords(): Promise<BoothUploadRecord[]>;
+    updateStatus(recordId: string, status: BoothUploadRecord['status']): Promise<void>;
+}
+interface BoothVaultRecordRepository {
+    create(record: BoothUploadRecord): Promise<void>;
+    findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null>;
+    findByRecordId?(recordId: string): Promise<BoothUploadRecord | null>;
+    updateDownloadCount(recordId: string, downloadCount: number): Promise<void>;
+    existsByMatchCode(matchCode: string): Promise<boolean>;
+}
+interface BoothObjectStorageProvider {
+    save(file: File | Blob | Buffer, objectKey: string, contentType?: string): Promise<string>;
+    getSignedDownloadUrl(objectKey: string, expiresInSeconds?: number): Promise<string>;
+    delete(objectKey: string): Promise<void>;
+}
+declare class RepositoryBoothVaultStore implements BoothVaultStore {
+    private readonly repository;
+    constructor(repository: BoothVaultRecordRepository);
+    saveRecord(record: BoothUploadRecord): Promise<void>;
+    findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null>;
+    incrementDownloadCount(recordId: string): Promise<void>;
+    existsByMatchCode(matchCode: string): Promise<boolean>;
+    findByRecordId(recordId: string): Promise<BoothUploadRecord | null>;
+}
+interface BoothSignedFile extends BoothFileItem {
+    signedDownloadUrl: string;
+}
+declare const signRecordFiles: (record: BoothUploadRecord, storage: BoothObjectStorageProvider, expiresInSeconds?: number) => Promise<BoothSignedFile[]>;
+interface BoothExpiryStore extends BoothVaultStore {
+    listActiveRecords?(): Promise<BoothUploadRecord[]>;
+    updateStatus?(recordId: string, status: BoothUploadRecord['status']): Promise<void>;
+}
+interface ExpireResult {
+    scanned: number;
+    expired: number;
+}
+declare const expireBoothRecords: (store: BoothExpiryStore, now?: number, onExpired?: (record: BoothUploadRecord) => void) => Promise<ExpireResult>;
+interface BoothRedeemGuardOptions {
+    maxAttempts?: number;
+    windowMs?: number;
+    blockMs?: number;
+}
+declare class BoothRedeemGuard {
+    private readonly maxAttempts;
+    private readonly windowMs;
+    private readonly blockMs;
+    private readonly state;
+    constructor(options?: BoothRedeemGuardOptions);
+    assertAllowed(subjectKey: string, now?: number): void;
+    registerAttempt(subjectKey: string, success: boolean, now?: number): void;
+    private getState;
+}
+interface ValidateUploadFilesOptions {
+    maxFiles?: number;
+    maxSingleFileSizeBytes?: number;
+    maxTotalSizeBytes?: number;
+    allowedExtensions?: string[];
+}
+interface UploadLikeFile {
+    fileName: string;
+    size: number;
+}
+declare const validateUploadFiles: (files: UploadLikeFile[], options?: ValidateUploadFilesOptions) => void;
+interface BoothIncomingFile {
+    file: File;
+    kind?: BoothFileKind;
+}
+interface CreateBoothUploadWithOSSInput {
+    boothId: string;
+    files: BoothIncomingFile[];
+    metadata?: CreateBoothUploadInput['metadata'];
+    ttlHours?: number;
+    moduleId?: string;
+    businessId?: string;
+    permission?: AccessPermission;
+    onProgress?: (fileName: string, progress: UploadProgress) => void;
+}
+declare const uploadToOSSAndCreateBoothRecord: (params: CreateBoothUploadWithOSSInput, deps: {
+    fileService: UniversalFileService;
+    vaultService: BoothVaultService;
+}) => Promise<CreateBoothUploadResult>;
+interface BoothAuditSink {
+    log(event: BoothAuditEvent): Promise<void> | void;
+}
+declare class InMemoryBoothAuditSink implements BoothAuditSink {
+    private readonly events;
+    log(event: BoothAuditEvent): void;
+    list(): BoothAuditEvent[];
+}
+declare const createAuditLogger: (sink: BoothAuditSink) => (event: BoothAuditEvent) => void;
+export { type BoothAuditSink, type BoothExpiryStore, type BoothIncomingFile, type BoothObjectStorageProvider, BoothRedeemGuard, type BoothRedeemGuardOptions, type BoothSignedFile, type BoothVaultRecordRepository, type CreateBoothUploadWithOSSInput, type ExpireResult, InMemoryBoothAuditSink, InMemoryBoothVaultStore, RepositoryBoothVaultStore, type UploadLikeFile, type ValidateUploadFilesOptions, createAuditLogger, expireBoothRecords, signRecordFiles, uploadToOSSAndCreateBoothRecord, validateUploadFiles };

package/dist/vocaloidBooth/server/index.js ADDED Viewed

@@ -0,0 +1,247 @@
+'use strict';
+// src/vocaloidBooth/server/inMemoryBoothVaultStore.ts
+var InMemoryBoothVaultStore = class {
+  constructor() {
+    this.recordsById = /* @__PURE__ */ new Map();
+    this.idByCode = /* @__PURE__ */ new Map();
+  }
+  async saveRecord(record) {
+    this.recordsById.set(record.id, record);
+    this.idByCode.set(record.matchCode, record.id);
+  }
+  async findByMatchCode(matchCode) {
+    const id = this.idByCode.get(matchCode);
+    if (!id) {
+      return null;
+    }
+    return this.recordsById.get(id) ?? null;
+  }
+  async findByRecordId(recordId) {
+    return this.recordsById.get(recordId) ?? null;
+  }
+  async incrementDownloadCount(recordId) {
+    const record = this.recordsById.get(recordId);
+    if (!record) {
+      return;
+    }
+    this.recordsById.set(recordId, {
+      ...record,
+      downloadCount: record.downloadCount + 1
+    });
+  }
+  async existsByMatchCode(matchCode) {
+    return this.idByCode.has(matchCode);
+  }
+  async listActiveRecords() {
+    return Array.from(this.recordsById.values()).filter((record) => record.status === "active");
+  }
+  async updateStatus(recordId, status) {
+    const record = this.recordsById.get(recordId);
+    if (!record) return;
+    this.recordsById.set(recordId, {
+      ...record,
+      status
+    });
+  }
+};
+// src/vocaloidBooth/server/adapters.ts
+var RepositoryBoothVaultStore = class {
+  constructor(repository) {
+    this.repository = repository;
+  }
+  saveRecord(record) {
+    return this.repository.create(record);
+  }
+  findByMatchCode(matchCode) {
+    return this.repository.findByMatchCode(matchCode);
+  }
+  async incrementDownloadCount(recordId) {
+    const record = await this.findByRecordId(recordId);
+    if (!record) return;
+    return this.repository.updateDownloadCount(recordId, record.downloadCount + 1);
+  }
+  existsByMatchCode(matchCode) {
+    return this.repository.existsByMatchCode(matchCode);
+  }
+  async findByRecordId(recordId) {
+    if (this.repository.findByRecordId) {
+      return this.repository.findByRecordId(recordId);
+    }
+    return null;
+  }
+};
+var signRecordFiles = async (record, storage, expiresInSeconds = 60 * 30) => {
+  const signed = await Promise.all(
+    record.files.map(async (file) => ({
+      ...file,
+      signedDownloadUrl: await storage.getSignedDownloadUrl(file.objectKey, expiresInSeconds)
+    }))
+  );
+  return signed;
+};
+// src/vocaloidBooth/server/cleanup.ts
+var expireBoothRecords = async (store, now = Date.now(), onExpired) => {
+  const records = store.listActiveRecords ? await store.listActiveRecords() : [];
+  let expired = 0;
+  for (const record of records) {
+    if (record.status !== "active") continue;
+    if (new Date(record.expiresAt).getTime() <= now) {
+      expired += 1;
+      if (store.updateStatus) {
+        await store.updateStatus(record.id, "expired");
+      }
+      onExpired?.(record);
+    }
+  }
+  return {
+    scanned: records.length,
+    expired
+  };
+};
+// src/vocaloidBooth/server/security.ts
+var BoothRedeemGuard = class {
+  constructor(options = {}) {
+    this.state = /* @__PURE__ */ new Map();
+    this.maxAttempts = options.maxAttempts ?? 8;
+    this.windowMs = options.windowMs ?? 6e4;
+    this.blockMs = options.blockMs ?? 5 * 6e4;
+  }
+  assertAllowed(subjectKey, now = Date.now()) {
+    const state = this.getState(subjectKey, now);
+    if (state.blockedUntil && state.blockedUntil > now) {
+      const seconds = Math.ceil((state.blockedUntil - now) / 1e3);
+      throw new Error(`Too many attempts, retry in ${seconds}s`);
+    }
+  }
+  registerAttempt(subjectKey, success, now = Date.now()) {
+    const state = this.getState(subjectKey, now);
+    if (success) {
+      this.state.delete(subjectKey);
+      return;
+    }
+    state.attempts.push(now);
+    state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);
+    if (state.attempts.length >= this.maxAttempts) {
+      state.blockedUntil = now + this.blockMs;
+      state.attempts = [];
+    }
+    this.state.set(subjectKey, state);
+  }
+  getState(subjectKey, now) {
+    const state = this.state.get(subjectKey) ?? { attempts: [] };
+    state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);
+    if (state.blockedUntil && state.blockedUntil <= now) {
+      delete state.blockedUntil;
+    }
+    return state;
+  }
+};
+var ext = (name) => {
+  const i = name.lastIndexOf(".");
+  return i >= 0 ? name.slice(i + 1).toLowerCase() : "";
+};
+var validateUploadFiles = (files, options = {}) => {
+  const maxFiles = options.maxFiles ?? 20;
+  const maxSingle = options.maxSingleFileSizeBytes ?? 2 * 1024 * 1024 * 1024;
+  const maxTotal = options.maxTotalSizeBytes ?? 5 * 1024 * 1024 * 1024;
+  const allowed = options.allowedExtensions?.map((e) => e.toLowerCase());
+  if (files.length === 0) {
+    throw new Error("No files uploaded");
+  }
+  if (files.length > maxFiles) {
+    throw new Error(`Too many files (max ${maxFiles})`);
+  }
+  const total = files.reduce((sum, f) => sum + f.size, 0);
+  if (total > maxTotal) {
+    throw new Error("Total upload size exceeded");
+  }
+  for (const file of files) {
+    if (file.size > maxSingle) {
+      throw new Error(`File too large: ${file.fileName}`);
+    }
+    if (allowed && allowed.length > 0 && !allowed.includes(ext(file.fileName))) {
+      throw new Error(`File extension not allowed: ${file.fileName}`);
+    }
+  }
+};
+// src/vocaloidBooth/server/ossIntegration.ts
+var uploadToOSSAndCreateBoothRecord = async (params, deps) => {
+  validateUploadFiles(
+    params.files.map((item) => ({ fileName: item.file.name, size: item.file.size })),
+    {
+      maxFiles: 20,
+      maxSingleFileSizeBytes: 2 * 1024 * 1024 * 1024,
+      maxTotalSizeBytes: 5 * 1024 * 1024 * 1024
+    }
+  );
+  const moduleId = params.moduleId ?? "vocaloid-booth";
+  const businessId = params.businessId ?? params.boothId;
+  const permission = params.permission ?? "private";
+  const uploaded = await Promise.all(
+    params.files.map(async (item) => {
+      const metadata = await deps.fileService.uploadFile(
+        {
+          file: item.file,
+          moduleId,
+          businessId,
+          permission,
+          metadata: {
+            boothId: params.boothId,
+            kind: item.kind ?? "other"
+          }
+        },
+        void 0,
+        (progress) => params.onProgress?.(item.file.name, progress)
+      );
+      return {
+        fileName: metadata.originalName,
+        size: metadata.size,
+        mimeType: metadata.mimeType,
+        checksum: metadata.hash,
+        objectKey: metadata.storagePath,
+        kind: item.kind ?? "other"
+      };
+    })
+  );
+  return deps.vaultService.createUpload({
+    boothId: params.boothId,
+    ttlHours: params.ttlHours,
+    metadata: params.metadata,
+    files: uploaded
+  });
+};
+// src/vocaloidBooth/server/audit.ts
+var InMemoryBoothAuditSink = class {
+  constructor() {
+    this.events = [];
+  }
+  log(event) {
+    this.events.push(event);
+  }
+  list() {
+    return [...this.events];
+  }
+};
+var createAuditLogger = (sink) => {
+  return (event) => {
+    sink.log(event);
+  };
+};
+exports.BoothRedeemGuard = BoothRedeemGuard;
+exports.InMemoryBoothAuditSink = InMemoryBoothAuditSink;
+exports.InMemoryBoothVaultStore = InMemoryBoothVaultStore;
+exports.RepositoryBoothVaultStore = RepositoryBoothVaultStore;
+exports.createAuditLogger = createAuditLogger;
+exports.expireBoothRecords = expireBoothRecords;
+exports.signRecordFiles = signRecordFiles;
+exports.uploadToOSSAndCreateBoothRecord = uploadToOSSAndCreateBoothRecord;
+exports.validateUploadFiles = validateUploadFiles;
+//# sourceMappingURL=index.js.map
+//# sourceMappingURL=index.js.map

package/dist/vocaloidBooth/server/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../src/vocaloidBooth/server/inMemoryBoothVaultStore.ts","../../../src/vocaloidBooth/server/adapters.ts","../../../src/vocaloidBooth/server/cleanup.ts","../../../src/vocaloidBooth/server/security.ts","../../../src/vocaloidBooth/server/ossIntegration.ts","../../../src/vocaloidBooth/server/audit.ts"],"names":[],"mappings":";;;AAEO,IAAM,0BAAN,MAAyD;AAAA,EAAzD,WAAA,GAAA;AACL,IAAA,IAAA,CAAiB,WAAA,uBAAkB,GAAA,EAA+B;AAClE,IAAA,IAAA,CAAiB,QAAA,uBAAe,GAAA,EAAoB;AAAA,EAAA;AAAA,EAEpD,MAAM,WAAW,MAAA,EAA0C;AACzD,IAAA,IAAA,CAAK,WAAA,CAAY,GAAA,CAAI,MAAA,CAAO,EAAA,EAAI,MAAM,CAAA;AACtC,IAAA,IAAA,CAAK,QAAA,CAAS,GAAA,CAAI,MAAA,CAAO,SAAA,EAAW,OAAO,EAAE,CAAA;AAAA,EAC/C;AAAA,EAEA,MAAM,gBAAgB,SAAA,EAAsD;AAC1E,IAAA,MAAM,EAAA,GAAK,IAAA,CAAK,QAAA,CAAS,GAAA,CAAI,SAAS,CAAA;AACtC,IAAA,IAAI,CAAC,EAAA,EAAI;AACP,MAAA,OAAO,IAAA;AAAA,IACT;AACA,IAAA,OAAO,IAAA,CAAK,WAAA,CAAY,GAAA,CAAI,EAAE,CAAA,IAAK,IAAA;AAAA,EACrC;AAAA,EAEA,MAAM,eAAe,QAAA,EAAqD;AACxE,IAAA,OAAO,IAAA,CAAK,WAAA,CAAY,GAAA,CAAI,QAAQ,CAAA,IAAK,IAAA;AAAA,EAC3C;AAAA,EAEA,MAAM,uBAAuB,QAAA,EAAiC;AAC5D,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,WAAA,CAAY,GAAA,CAAI,QAAQ,CAAA;AAC5C,IAAA,IAAI,CAAC,MAAA,EAAQ;AACX,MAAA;AAAA,IACF;AAEA,IAAA,IAAA,CAAK,WAAA,CAAY,IAAI,QAAA,EAAU;AAAA,MAC7B,GAAG,MAAA;AAAA,MACH,aAAA,EAAe,OAAO,aAAA,GAAgB;AAAA,KACvC,CAAA;AAAA,EACH;AAAA,EAEA,MAAM,kBAAkB,SAAA,EAAqC;AAC3D,IAAA,OAAO,IAAA,CAAK,QAAA,CAAS,GAAA,CAAI,SAAS,CAAA;AAAA,EACpC;AAAA,EAEA,MAAM,iBAAA,GAAkD;AACtD,IAAA,OAAO,KAAA,CAAM,IAAA,CAAK,IAAA,CAAK,WAAA,CAAY,MAAA,EAAQ,CAAA,CAAE,MAAA,CAAO,CAAC,MAAA,KAAW,MAAA,CAAO,MAAA,KAAW,QAAQ,CAAA;AAAA,EAC5F;AAAA,EAEA,MAAM,YAAA,CAAa,QAAA,EAAkB,MAAA,EAAoD;AACvF,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,WAAA,CAAY,GAAA,CAAI,QAAQ,CAAA;AAC5C,IAAA,IAAI,CAAC,MAAA,EAAQ;AAEb,IAAA,IAAA,CAAK,WAAA,CAAY,IAAI,QAAA,EAAU;AAAA,MAC7B,GAAG,MAAA;AAAA,MACH;AAAA,KACD,CAAA;AAAA,EACH;AACF;;;ACpCO,IAAM,4BAAN,MAA2D;AAAA,EAChE,YAA6B,UAAA,EAAwC;AAAxC,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAAA,EAAyC;AAAA,EAEtE,WAAW,MAAA,EAA0C;AACnD,IAAA,OAAO,IAAA,CAAK,UAAA,CAAW,MAAA,CAAO,MAAM,CAAA;AAAA,EACtC;AAAA,EAEA,gBAAgB,SAAA,EAAsD;AACpE,IAAA,OAAO,IAAA,CAAK,UAAA,CAAW,eAAA,CAAgB,SAAS,CAAA;AAAA,EAClD;AAAA,EAEA,MAAM,uBAAuB,QAAA,EAAiC;AAC5D,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,cAAA,CAAe,QAAQ,CAAA;AACjD,IAAA,IAAI,CAAC,MAAA,EAAQ;AACb,IAAA,OAAO,KAAK,UAAA,CAAW,mBAAA,CAAoB,QAAA,EAAU,MAAA,CAAO,gBAAgB,CAAC,CAAA;AAAA,EAC/E;AAAA,EAEA,kBAAkB,SAAA,EAAqC;AACrD,IAAA,OAAO,IAAA,CAAK,UAAA,CAAW,iBAAA,CAAkB,SAAS,CAAA;AAAA,EACpD;AAAA,EAEA,MAAM,eAAe,QAAA,EAAqD;AACxE,IAAA,IAAI,IAAA,CAAK,WAAW,cAAA,EAAgB;AAClC,MAAA,OAAO,IAAA,CAAK,UAAA,CAAW,cAAA,CAAe,QAAQ,CAAA;AAAA,IAChD;AACA,IAAA,OAAO,IAAA;AAAA,EACT;AACF;AAMO,IAAM,kBAAkB,OAC7B,MAAA,EACA,OAAA,EACA,gBAAA,GAAmB,KAAK,EAAA,KACO;AAC/B,EAAA,MAAM,MAAA,GAAS,MAAM,OAAA,CAAQ,GAAA;AAAA,IAC3B,MAAA,CAAO,KAAA,CAAM,GAAA,CAAI,OAAO,IAAA,MAAU;AAAA,MAChC,GAAG,IAAA;AAAA,MACH,mBAAmB,MAAM,OAAA,CAAQ,oBAAA,CAAqB,IAAA,CAAK,WAAW,gBAAgB;AAAA,KACxF,CAAE;AAAA,GACJ;AAEA,EAAA,OAAO,MAAA;AACT;;;AClDO,IAAM,qBAAqB,OAChC,KAAA,EACA,MAAM,IAAA,CAAK,GAAA,IACX,SAAA,KAC0B;AAC1B,EAAA,MAAM,UAAU,KAAA,CAAM,iBAAA,GAAoB,MAAM,KAAA,CAAM,iBAAA,KAAsB,EAAC;AAE7E,EAAA,IAAI,OAAA,GAAU,CAAA;AACd,EAAA,KAAA,MAAW,UAAU,OAAA,EAAS;AAC5B,IAAA,IAAI,MAAA,CAAO,WAAW,QAAA,EAAU;AAChC,IAAA,IAAI,IAAI,IAAA,CAAK,MAAA,CAAO,SAAS,CAAA,CAAE,OAAA,MAAa,GAAA,EAAK;AAC/C,MAAA,OAAA,IAAW,CAAA;AACX,MAAA,IAAI,MAAM,YAAA,EAAc;AAEtB,QAAA,MAAM,KAAA,CAAM,YAAA,CAAa,MAAA,CAAO,EAAA,EAAI,SAAS,CAAA;AAAA,MAC/C;AACA,MAAA,SAAA,GAAY,MAAM,CAAA;AAAA,IACpB;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,SAAS,OAAA,CAAQ,MAAA;AAAA,IACjB;AAAA,GACF;AACF;;;ACzBO,IAAM,mBAAN,MAAuB;AAAA,EAM5B,WAAA,CAAY,OAAA,GAAmC,EAAC,EAAG;AAFnD,IAAA,IAAA,CAAiB,KAAA,uBAAY,GAAA,EAA0B;AAGrD,IAAA,IAAA,CAAK,WAAA,GAAc,QAAQ,WAAA,IAAe,CAAA;AAC1C,IAAA,IAAA,CAAK,QAAA,GAAW,QAAQ,QAAA,IAAY,GAAA;AACpC,IAAA,IAAA,CAAK,OAAA,GAAU,OAAA,CAAQ,OAAA,IAAW,CAAA,GAAI,GAAA;AAAA,EACxC;AAAA,EAEA,aAAA,CAAc,UAAA,EAAoB,GAAA,GAAM,IAAA,CAAK,KAAI,EAAS;AACxD,IAAA,MAAM,KAAA,GAAQ,IAAA,CAAK,QAAA,CAAS,UAAA,EAAY,GAAG,CAAA;AAC3C,IAAA,IAAI,KAAA,CAAM,YAAA,IAAgB,KAAA,CAAM,YAAA,GAAe,GAAA,EAAK;AAClD,MAAA,MAAM,UAAU,IAAA,CAAK,IAAA,CAAA,CAAM,KAAA,CAAM,YAAA,GAAe,OAAO,GAAI,CAAA;AAC3D,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,4BAAA,EAA+B,OAAO,CAAA,CAAA,CAAG,CAAA;AAAA,IAC3D;AAAA,EACF;AAAA,EAEA,gBAAgB,UAAA,EAAoB,OAAA,EAAkB,GAAA,GAAM,IAAA,CAAK,KAAI,EAAS;AAC5E,IAAA,MAAM,KAAA,GAAQ,IAAA,CAAK,QAAA,CAAS,UAAA,EAAY,GAAG,CAAA;AAE3C,IAAA,IAAI,OAAA,EAAS;AACX,MAAA,IAAA,CAAK,KAAA,CAAM,OAAO,UAAU,CAAA;AAC5B,MAAA;AAAA,IACF;AAEA,IAAA,KAAA,CAAM,QAAA,CAAS,KAAK,GAAG,CAAA;AACvB,IAAA,KAAA,CAAM,QAAA,GAAW,MAAM,QAAA,CAAS,MAAA,CAAO,CAAC,CAAA,KAAM,GAAA,GAAM,CAAA,IAAK,IAAA,CAAK,QAAQ,CAAA;AAEtE,IAAA,IAAI,KAAA,CAAM,QAAA,CAAS,MAAA,IAAU,IAAA,CAAK,WAAA,EAAa;AAC7C,MAAA,KAAA,CAAM,YAAA,GAAe,MAAM,IAAA,CAAK,OAAA;AAChC,MAAA,KAAA,CAAM,WAAW,EAAC;AAAA,IACpB;AAEA,IAAA,IAAA,CAAK,KAAA,CAAM,GAAA,CAAI,UAAA,EAAY,KAAK,CAAA;AAAA,EAClC;AAAA,EAEQ,QAAA,CAAS,YAAoB,GAAA,EAA2B;AAC9D,IAAA,MAAM,KAAA,GAAQ,KAAK,KAAA,CAAM,GAAA,CAAI,UAAU,CAAA,IAAK,EAAE,QAAA,EAAU,EAAC,EAAE;AAC3D,IAAA,KAAA,CAAM,QAAA,GAAW,MAAM,QAAA,CAAS,MAAA,CAAO,CAAC,CAAA,KAAM,GAAA,GAAM,CAAA,IAAK,IAAA,CAAK,QAAQ,CAAA;AAEtE,IAAA,IAAI,KAAA,CAAM,YAAA,IAAgB,KAAA,CAAM,YAAA,IAAgB,GAAA,EAAK;AACnD,MAAA,OAAO,KAAA,CAAM,YAAA;AAAA,IACf;AAEA,IAAA,OAAO,KAAA;AAAA,EACT;AACF;AAcA,IAAM,GAAA,GAAM,CAAC,IAAA,KAAyB;AACpC,EAAA,MAAM,CAAA,GAAI,IAAA,CAAK,WAAA,CAAY,GAAG,CAAA;AAC9B,EAAA,OAAO,CAAA,IAAK,IAAI,IAAA,CAAK,KAAA,CAAM,IAAI,CAAC,CAAA,CAAE,aAAY,GAAI,EAAA;AACpD,CAAA;AAEO,IAAM,mBAAA,GAAsB,CACjC,KAAA,EACA,OAAA,GAAsC,EAAC,KAC9B;AACT,EAAA,MAAM,QAAA,GAAW,QAAQ,QAAA,IAAY,EAAA;AACrC,EAAA,MAAM,SAAA,GAAY,OAAA,CAAQ,sBAAA,IAA0B,CAAA,GAAI,OAAO,IAAA,GAAO,IAAA;AACtE,EAAA,MAAM,QAAA,GAAW,OAAA,CAAQ,iBAAA,IAAqB,CAAA,GAAI,OAAO,IAAA,GAAO,IAAA;AAChE,EAAA,MAAM,OAAA,GAAU,QAAQ,iBAAA,EAAmB,GAAA,CAAI,CAAC,CAAA,KAAM,CAAA,CAAE,aAAa,CAAA;AAErE,EAAA,IAAI,KAAA,CAAM,WAAW,CAAA,EAAG;AACtB,IAAA,MAAM,IAAI,MAAM,mBAAmB,CAAA;AAAA,EACrC;AACA,EAAA,IAAI,KAAA,CAAM,SAAS,QAAA,EAAU;AAC3B,IAAA,MAAM,IAAI,KAAA,CAAM,CAAA,oBAAA,EAAuB,QAAQ,CAAA,CAAA,CAAG,CAAA;AAAA,EACpD;AAEA,EAAA,MAAM,KAAA,GAAQ,MAAM,MAAA,CAAO,CAAC,KAAK,CAAA,KAAM,GAAA,GAAM,CAAA,CAAE,IAAA,EAAM,CAAC,CAAA;AACtD,EAAA,IAAI,QAAQ,QAAA,EAAU;AACpB,IAAA,MAAM,IAAI,MAAM,4BAA4B,CAAA;AAAA,EAC9C;AAEA,EAAA,KAAA,MAAW,QAAQ,KAAA,EAAO;AACxB,IAAA,IAAI,IAAA,CAAK,OAAO,SAAA,EAAW;AACzB,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,gBAAA,EAAmB,IAAA,CAAK,QAAQ,CAAA,CAAE,CAAA;AAAA,IACpD;AACA,IAAA,IAAI,OAAA,IAAW,OAAA,CAAQ,MAAA,GAAS,CAAA,IAAK,CAAC,OAAA,CAAQ,QAAA,CAAS,GAAA,CAAI,IAAA,CAAK,QAAQ,CAAC,CAAA,EAAG;AAC1E,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,4BAAA,EAA+B,IAAA,CAAK,QAAQ,CAAA,CAAE,CAAA;AAAA,IAChE;AAAA,EACF;AACF;;;ACtFO,IAAM,+BAAA,GAAkC,OAC7C,MAAA,EACA,IAAA,KAIqC;AACrC,EAAA,mBAAA;AAAA,IACE,MAAA,CAAO,KAAA,CAAM,GAAA,CAAI,CAAC,UAAU,EAAE,QAAA,EAAU,IAAA,CAAK,IAAA,CAAK,IAAA,EAAM,IAAA,EAAM,IAAA,CAAK,IAAA,CAAK,MAAK,CAAE,CAAA;AAAA,IAC/E;AAAA,MACE,QAAA,EAAU,EAAA;AAAA,MACV,sBAAA,EAAwB,CAAA,GAAI,IAAA,GAAO,IAAA,GAAO,IAAA;AAAA,MAC1C,iBAAA,EAAmB,CAAA,GAAI,IAAA,GAAO,IAAA,GAAO;AAAA;AACvC,GACF;AAEA,EAAA,MAAM,QAAA,GAAW,OAAO,QAAA,IAAY,gBAAA;AACpC,EAAA,MAAM,UAAA,GAAa,MAAA,CAAO,UAAA,IAAc,MAAA,CAAO,OAAA;AAC/C,EAAA,MAAM,UAAA,GAAa,OAAO,UAAA,IAAc,SAAA;AAExC,EAAA,MAAM,QAAA,GAAW,MAAM,OAAA,CAAQ,GAAA;AAAA,IAC7B,MAAA,CAAO,KAAA,CAAM,GAAA,CAAI,OAAO,IAAA,KAAS;AAC/B,MAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,WAAA,CAAY,UAAA;AAAA,QACtC;AAAA,UACE,MAAM,IAAA,CAAK,IAAA;AAAA,UACX,QAAA;AAAA,UACA,UAAA;AAAA,UACA,UAAA;AAAA,UACA,QAAA,EAAU;AAAA,YACR,SAAS,MAAA,CAAO,OAAA;AAAA,YAChB,IAAA,EAAM,KAAK,IAAA,IAAQ;AAAA;AACrB,SACF;AAAA,QACA,MAAA;AAAA,QACA,CAAC,QAAA,KAAa,MAAA,CAAO,aAAa,IAAA,CAAK,IAAA,CAAK,MAAM,QAAQ;AAAA,OAC5D;AAEA,MAAA,OAAO;AAAA,QACL,UAAU,QAAA,CAAS,YAAA;AAAA,QACnB,MAAM,QAAA,CAAS,IAAA;AAAA,QACf,UAAU,QAAA,CAAS,QAAA;AAAA,QACnB,UAAU,QAAA,CAAS,IAAA;AAAA,QACnB,WAAW,QAAA,CAAS,WAAA;AAAA,QACpB,IAAA,EAAM,KAAK,IAAA,IAAQ;AAAA,OACrB;AAAA,IACF,CAAC;AAAA,GACH;AAEA,EAAA,OAAO,IAAA,CAAK,aAAa,YAAA,CAAa;AAAA,IACpC,SAAS,MAAA,CAAO,OAAA;AAAA,IAChB,UAAU,MAAA,CAAO,QAAA;AAAA,IACjB,UAAU,MAAA,CAAO,QAAA;AAAA,IACjB,KAAA,EAAO;AAAA,GACR,CAAA;AACH;;;ACtEO,IAAM,yBAAN,MAAuD;AAAA,EAAvD,WAAA,GAAA;AACL,IAAA,IAAA,CAAiB,SAA4B,EAAC;AAAA,EAAA;AAAA,EAE9C,IAAI,KAAA,EAA8B;AAChC,IAAA,IAAA,CAAK,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,EACxB;AAAA,EAEA,IAAA,GAA0B;AACxB,IAAA,OAAO,CAAC,GAAG,IAAA,CAAK,MAAM,CAAA;AAAA,EACxB;AACF;AAEO,IAAM,iBAAA,GAAoB,CAAC,IAAA,KAAyB;AACzD,EAAA,OAAO,CAAC,KAAA,KAAiC;AACvC,IAAA,IAAA,CAAK,IAAI,KAAK,CAAA;AAAA,EAChB,CAAA;AACF","file":"index.js","sourcesContent":["import type { BoothUploadRecord, BoothVaultStore } from '../types';\n\nexport class InMemoryBoothVaultStore implements BoothVaultStore {\n private readonly recordsById = new Map<string, BoothUploadRecord>();\n private readonly idByCode = new Map<string, string>();\n\n async saveRecord(record: BoothUploadRecord): Promise<void> {\n this.recordsById.set(record.id, record);\n this.idByCode.set(record.matchCode, record.id);\n }\n\n async findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null> {\n const id = this.idByCode.get(matchCode);\n if (!id) {\n return null;\n }\n return this.recordsById.get(id) ?? null;\n }\n\n async findByRecordId(recordId: string): Promise<BoothUploadRecord | null> {\n return this.recordsById.get(recordId) ?? null;\n }\n\n async incrementDownloadCount(recordId: string): Promise<void> {\n const record = this.recordsById.get(recordId);\n if (!record) {\n return;\n }\n\n this.recordsById.set(recordId, {\n ...record,\n downloadCount: record.downloadCount + 1,\n });\n }\n\n async existsByMatchCode(matchCode: string): Promise<boolean> {\n return this.idByCode.has(matchCode);\n }\n\n async listActiveRecords(): Promise<BoothUploadRecord[]> {\n return Array.from(this.recordsById.values()).filter((record) => record.status === 'active');\n }\n\n async updateStatus(recordId: string, status: BoothUploadRecord['status']): Promise<void> {\n const record = this.recordsById.get(recordId);\n if (!record) return;\n\n this.recordsById.set(recordId, {\n ...record,\n status,\n });\n }\n}\n","import type { BoothFileItem, BoothUploadRecord, BoothVaultStore } from '../types';\n\nexport interface BoothVaultRecordRepository {\n create(record: BoothUploadRecord): Promise<void>;\n findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null>;\n findByRecordId?(recordId: string): Promise<BoothUploadRecord | null>;\n updateDownloadCount(recordId: string, downloadCount: number): Promise<void>;\n existsByMatchCode(matchCode: string): Promise<boolean>;\n}\n\nexport interface BoothObjectStorageProvider {\n save(file: File | Blob | Buffer, objectKey: string, contentType?: string): Promise<string>;\n getSignedDownloadUrl(objectKey: string, expiresInSeconds?: number): Promise<string>;\n delete(objectKey: string): Promise<void>;\n}\n\nexport class RepositoryBoothVaultStore implements BoothVaultStore {\n constructor(private readonly repository: BoothVaultRecordRepository) {}\n\n saveRecord(record: BoothUploadRecord): Promise<void> {\n return this.repository.create(record);\n }\n\n findByMatchCode(matchCode: string): Promise<BoothUploadRecord | null> {\n return this.repository.findByMatchCode(matchCode);\n }\n\n async incrementDownloadCount(recordId: string): Promise<void> {\n const record = await this.findByRecordId(recordId);\n if (!record) return;\n return this.repository.updateDownloadCount(recordId, record.downloadCount + 1);\n }\n\n existsByMatchCode(matchCode: string): Promise<boolean> {\n return this.repository.existsByMatchCode(matchCode);\n }\n\n async findByRecordId(recordId: string): Promise<BoothUploadRecord | null> {\n if (this.repository.findByRecordId) {\n return this.repository.findByRecordId(recordId);\n }\n return null;\n }\n}\n\nexport interface BoothSignedFile extends BoothFileItem {\n signedDownloadUrl: string;\n}\n\nexport const signRecordFiles = async (\n record: BoothUploadRecord,\n storage: BoothObjectStorageProvider,\n expiresInSeconds = 60 * 30\n): Promise<BoothSignedFile[]> => {\n const signed = await Promise.all(\n record.files.map(async (file) => ({\n ...file,\n signedDownloadUrl: await storage.getSignedDownloadUrl(file.objectKey, expiresInSeconds),\n }))\n );\n\n return signed;\n};\n","import type { BoothUploadRecord, BoothVaultStore } from '../types';\n\nexport interface BoothExpiryStore extends BoothVaultStore {\n listActiveRecords?(): Promise<BoothUploadRecord[]>;\n updateStatus?(recordId: string, status: BoothUploadRecord['status']): Promise<void>;\n}\n\nexport interface ExpireResult {\n scanned: number;\n expired: number;\n}\n\nexport const expireBoothRecords = async (\n store: BoothExpiryStore,\n now = Date.now(),\n onExpired?: (record: BoothUploadRecord) => void\n): Promise<ExpireResult> => {\n const records = store.listActiveRecords ? await store.listActiveRecords() : [];\n\n let expired = 0;\n for (const record of records) {\n if (record.status !== 'active') continue;\n if (new Date(record.expiresAt).getTime() <= now) {\n expired += 1;\n if (store.updateStatus) {\n // eslint-disable-next-line no-await-in-loop\n await store.updateStatus(record.id, 'expired');\n }\n onExpired?.(record);\n }\n }\n\n return {\n scanned: records.length,\n expired,\n };\n};\n","export interface BoothRedeemGuardOptions {\n maxAttempts?: number;\n windowMs?: number;\n blockMs?: number;\n}\n\ninterface AttemptState {\n attempts: number[];\n blockedUntil?: number;\n}\n\nexport class BoothRedeemGuard {\n private readonly maxAttempts: number;\n private readonly windowMs: number;\n private readonly blockMs: number;\n private readonly state = new Map<string, AttemptState>();\n\n constructor(options: BoothRedeemGuardOptions = {}) {\n this.maxAttempts = options.maxAttempts ?? 8;\n this.windowMs = options.windowMs ?? 60_000;\n this.blockMs = options.blockMs ?? 5 * 60_000;\n }\n\n assertAllowed(subjectKey: string, now = Date.now()): void {\n const state = this.getState(subjectKey, now);\n if (state.blockedUntil && state.blockedUntil > now) {\n const seconds = Math.ceil((state.blockedUntil - now) / 1000);\n throw new Error(`Too many attempts, retry in ${seconds}s`);\n }\n }\n\n registerAttempt(subjectKey: string, success: boolean, now = Date.now()): void {\n const state = this.getState(subjectKey, now);\n\n if (success) {\n this.state.delete(subjectKey);\n return;\n }\n\n state.attempts.push(now);\n state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);\n\n if (state.attempts.length >= this.maxAttempts) {\n state.blockedUntil = now + this.blockMs;\n state.attempts = [];\n }\n\n this.state.set(subjectKey, state);\n }\n\n private getState(subjectKey: string, now: number): AttemptState {\n const state = this.state.get(subjectKey) ?? { attempts: [] };\n state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);\n\n if (state.blockedUntil && state.blockedUntil <= now) {\n delete state.blockedUntil;\n }\n\n return state;\n }\n}\n\nexport interface ValidateUploadFilesOptions {\n maxFiles?: number;\n maxSingleFileSizeBytes?: number;\n maxTotalSizeBytes?: number;\n allowedExtensions?: string[];\n}\n\nexport interface UploadLikeFile {\n fileName: string;\n size: number;\n}\n\nconst ext = (name: string): string => {\n const i = name.lastIndexOf('.');\n return i >= 0 ? name.slice(i + 1).toLowerCase() : '';\n};\n\nexport const validateUploadFiles = (\n files: UploadLikeFile[],\n options: ValidateUploadFilesOptions = {}\n): void => {\n const maxFiles = options.maxFiles ?? 20;\n const maxSingle = options.maxSingleFileSizeBytes ?? 2 * 1024 * 1024 * 1024;\n const maxTotal = options.maxTotalSizeBytes ?? 5 * 1024 * 1024 * 1024;\n const allowed = options.allowedExtensions?.map((e) => e.toLowerCase());\n\n if (files.length === 0) {\n throw new Error('No files uploaded');\n }\n if (files.length > maxFiles) {\n throw new Error(`Too many files (max ${maxFiles})`);\n }\n\n const total = files.reduce((sum, f) => sum + f.size, 0);\n if (total > maxTotal) {\n throw new Error('Total upload size exceeded');\n }\n\n for (const file of files) {\n if (file.size > maxSingle) {\n throw new Error(`File too large: ${file.fileName}`);\n }\n if (allowed && allowed.length > 0 && !allowed.includes(ext(file.fileName))) {\n throw new Error(`File extension not allowed: ${file.fileName}`);\n }\n }\n};\n","import type { UniversalFileService } from '../../universalFile/server';\nimport type { AccessPermission, UploadProgress } from '../../universalFile/types';\nimport type { BoothFileKind, CreateBoothUploadInput, CreateBoothUploadResult } from '../types';\nimport { BoothVaultService } from '../core';\nimport { validateUploadFiles } from './security';\n\nexport interface BoothIncomingFile {\n file: File;\n kind?: BoothFileKind;\n}\n\nexport interface CreateBoothUploadWithOSSInput {\n boothId: string;\n files: BoothIncomingFile[];\n metadata?: CreateBoothUploadInput['metadata'];\n ttlHours?: number;\n moduleId?: string;\n businessId?: string;\n permission?: AccessPermission;\n onProgress?: (fileName: string, progress: UploadProgress) => void;\n}\n\nexport const uploadToOSSAndCreateBoothRecord = async (\n params: CreateBoothUploadWithOSSInput,\n deps: {\n fileService: UniversalFileService;\n vaultService: BoothVaultService;\n }\n): Promise<CreateBoothUploadResult> => {\n validateUploadFiles(\n params.files.map((item) => ({ fileName: item.file.name, size: item.file.size })),\n {\n maxFiles: 20,\n maxSingleFileSizeBytes: 2 * 1024 * 1024 * 1024,\n maxTotalSizeBytes: 5 * 1024 * 1024 * 1024,\n }\n );\n\n const moduleId = params.moduleId ?? 'vocaloid-booth';\n const businessId = params.businessId ?? params.boothId;\n const permission = params.permission ?? 'private';\n\n const uploaded = await Promise.all(\n params.files.map(async (item) => {\n const metadata = await deps.fileService.uploadFile(\n {\n file: item.file,\n moduleId,\n businessId,\n permission,\n metadata: {\n boothId: params.boothId,\n kind: item.kind ?? 'other',\n },\n },\n undefined,\n (progress) => params.onProgress?.(item.file.name, progress)\n );\n\n return {\n fileName: metadata.originalName,\n size: metadata.size,\n mimeType: metadata.mimeType,\n checksum: metadata.hash,\n objectKey: metadata.storagePath,\n kind: item.kind ?? 'other',\n };\n })\n );\n\n return deps.vaultService.createUpload({\n boothId: params.boothId,\n ttlHours: params.ttlHours,\n metadata: params.metadata,\n files: uploaded,\n });\n};\n","import type { BoothAuditEvent } from '../types';\n\nexport interface BoothAuditSink {\n log(event: BoothAuditEvent): Promise<void> | void;\n}\n\nexport class InMemoryBoothAuditSink implements BoothAuditSink {\n private readonly events: BoothAuditEvent[] = [];\n\n log(event: BoothAuditEvent): void {\n this.events.push(event);\n }\n\n list(): BoothAuditEvent[] {\n return [...this.events];\n }\n}\n\nexport const createAuditLogger = (sink: BoothAuditSink) => {\n return (event: BoothAuditEvent): void => {\n sink.log(event);\n };\n};\n"]}

package/dist/vocaloidBooth/server/index.mjs ADDED Viewed

@@ -0,0 +1,237 @@
+// src/vocaloidBooth/server/inMemoryBoothVaultStore.ts
+var InMemoryBoothVaultStore = class {
+  constructor() {
+    this.recordsById = /* @__PURE__ */ new Map();
+    this.idByCode = /* @__PURE__ */ new Map();
+  }
+  async saveRecord(record) {
+    this.recordsById.set(record.id, record);
+    this.idByCode.set(record.matchCode, record.id);
+  }
+  async findByMatchCode(matchCode) {
+    const id = this.idByCode.get(matchCode);
+    if (!id) {
+      return null;
+    }
+    return this.recordsById.get(id) ?? null;
+  }
+  async findByRecordId(recordId) {
+    return this.recordsById.get(recordId) ?? null;
+  }
+  async incrementDownloadCount(recordId) {
+    const record = this.recordsById.get(recordId);
+    if (!record) {
+      return;
+    }
+    this.recordsById.set(recordId, {
+      ...record,
+      downloadCount: record.downloadCount + 1
+    });
+  }
+  async existsByMatchCode(matchCode) {
+    return this.idByCode.has(matchCode);
+  }
+  async listActiveRecords() {
+    return Array.from(this.recordsById.values()).filter((record) => record.status === "active");
+  }
+  async updateStatus(recordId, status) {
+    const record = this.recordsById.get(recordId);
+    if (!record) return;
+    this.recordsById.set(recordId, {
+      ...record,
+      status
+    });
+  }
+};
+// src/vocaloidBooth/server/adapters.ts
+var RepositoryBoothVaultStore = class {
+  constructor(repository) {
+    this.repository = repository;
+  }
+  saveRecord(record) {
+    return this.repository.create(record);
+  }
+  findByMatchCode(matchCode) {
+    return this.repository.findByMatchCode(matchCode);
+  }
+  async incrementDownloadCount(recordId) {
+    const record = await this.findByRecordId(recordId);
+    if (!record) return;
+    return this.repository.updateDownloadCount(recordId, record.downloadCount + 1);
+  }
+  existsByMatchCode(matchCode) {
+    return this.repository.existsByMatchCode(matchCode);
+  }
+  async findByRecordId(recordId) {
+    if (this.repository.findByRecordId) {
+      return this.repository.findByRecordId(recordId);
+    }
+    return null;
+  }
+};
+var signRecordFiles = async (record, storage, expiresInSeconds = 60 * 30) => {
+  const signed = await Promise.all(
+    record.files.map(async (file) => ({
+      ...file,
+      signedDownloadUrl: await storage.getSignedDownloadUrl(file.objectKey, expiresInSeconds)
+    }))
+  );
+  return signed;
+};
+// src/vocaloidBooth/server/cleanup.ts
+var expireBoothRecords = async (store, now = Date.now(), onExpired) => {
+  const records = store.listActiveRecords ? await store.listActiveRecords() : [];
+  let expired = 0;
+  for (const record of records) {
+    if (record.status !== "active") continue;
+    if (new Date(record.expiresAt).getTime() <= now) {
+      expired += 1;
+      if (store.updateStatus) {
+        await store.updateStatus(record.id, "expired");
+      }
+      onExpired?.(record);
+    }
+  }
+  return {
+    scanned: records.length,
+    expired
+  };
+};
+// src/vocaloidBooth/server/security.ts
+var BoothRedeemGuard = class {
+  constructor(options = {}) {
+    this.state = /* @__PURE__ */ new Map();
+    this.maxAttempts = options.maxAttempts ?? 8;
+    this.windowMs = options.windowMs ?? 6e4;
+    this.blockMs = options.blockMs ?? 5 * 6e4;
+  }
+  assertAllowed(subjectKey, now = Date.now()) {
+    const state = this.getState(subjectKey, now);
+    if (state.blockedUntil && state.blockedUntil > now) {
+      const seconds = Math.ceil((state.blockedUntil - now) / 1e3);
+      throw new Error(`Too many attempts, retry in ${seconds}s`);
+    }
+  }
+  registerAttempt(subjectKey, success, now = Date.now()) {
+    const state = this.getState(subjectKey, now);
+    if (success) {
+      this.state.delete(subjectKey);
+      return;
+    }
+    state.attempts.push(now);
+    state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);
+    if (state.attempts.length >= this.maxAttempts) {
+      state.blockedUntil = now + this.blockMs;
+      state.attempts = [];
+    }
+    this.state.set(subjectKey, state);
+  }
+  getState(subjectKey, now) {
+    const state = this.state.get(subjectKey) ?? { attempts: [] };
+    state.attempts = state.attempts.filter((t) => now - t <= this.windowMs);
+    if (state.blockedUntil && state.blockedUntil <= now) {
+      delete state.blockedUntil;
+    }
+    return state;
+  }
+};
+var ext = (name) => {
+  const i = name.lastIndexOf(".");
+  return i >= 0 ? name.slice(i + 1).toLowerCase() : "";
+};
+var validateUploadFiles = (files, options = {}) => {
+  const maxFiles = options.maxFiles ?? 20;
+  const maxSingle = options.maxSingleFileSizeBytes ?? 2 * 1024 * 1024 * 1024;
+  const maxTotal = options.maxTotalSizeBytes ?? 5 * 1024 * 1024 * 1024;
+  const allowed = options.allowedExtensions?.map((e) => e.toLowerCase());
+  if (files.length === 0) {
+    throw new Error("No files uploaded");
+  }
+  if (files.length > maxFiles) {
+    throw new Error(`Too many files (max ${maxFiles})`);
+  }
+  const total = files.reduce((sum, f) => sum + f.size, 0);
+  if (total > maxTotal) {
+    throw new Error("Total upload size exceeded");
+  }
+  for (const file of files) {
+    if (file.size > maxSingle) {
+      throw new Error(`File too large: ${file.fileName}`);
+    }
+    if (allowed && allowed.length > 0 && !allowed.includes(ext(file.fileName))) {
+      throw new Error(`File extension not allowed: ${file.fileName}`);
+    }
+  }
+};
+// src/vocaloidBooth/server/ossIntegration.ts
+var uploadToOSSAndCreateBoothRecord = async (params, deps) => {
+  validateUploadFiles(
+    params.files.map((item) => ({ fileName: item.file.name, size: item.file.size })),
+    {
+      maxFiles: 20,
+      maxSingleFileSizeBytes: 2 * 1024 * 1024 * 1024,
+      maxTotalSizeBytes: 5 * 1024 * 1024 * 1024
+    }
+  );
+  const moduleId = params.moduleId ?? "vocaloid-booth";
+  const businessId = params.businessId ?? params.boothId;
+  const permission = params.permission ?? "private";
+  const uploaded = await Promise.all(
+    params.files.map(async (item) => {
+      const metadata = await deps.fileService.uploadFile(
+        {
+          file: item.file,
+          moduleId,
+          businessId,
+          permission,
+          metadata: {
+            boothId: params.boothId,
+            kind: item.kind ?? "other"
+          }
+        },
+        void 0,
+        (progress) => params.onProgress?.(item.file.name, progress)
+      );
+      return {
+        fileName: metadata.originalName,
+        size: metadata.size,
+        mimeType: metadata.mimeType,
+        checksum: metadata.hash,
+        objectKey: metadata.storagePath,
+        kind: item.kind ?? "other"
+      };
+    })
+  );
+  return deps.vaultService.createUpload({
+    boothId: params.boothId,
+    ttlHours: params.ttlHours,
+    metadata: params.metadata,
+    files: uploaded
+  });
+};
+// src/vocaloidBooth/server/audit.ts
+var InMemoryBoothAuditSink = class {
+  constructor() {
+    this.events = [];
+  }
+  log(event) {
+    this.events.push(event);
+  }
+  list() {
+    return [...this.events];
+  }
+};
+var createAuditLogger = (sink) => {
+  return (event) => {
+    sink.log(event);
+  };
+};
+export { BoothRedeemGuard, InMemoryBoothAuditSink, InMemoryBoothVaultStore, RepositoryBoothVaultStore, createAuditLogger, expireBoothRecords, signRecordFiles, uploadToOSSAndCreateBoothRecord, validateUploadFiles };
+//# sourceMappingURL=index.mjs.map
+//# sourceMappingURL=index.mjs.map