say-under-me 1.4.0 → 1.5.2

package/dist/index.d.mts

@@ -37,6 +37,8 @@ type CrudConfig<T = any> = {
     ownerField?: string;
     adminRole?: string;
     hooks?: LifecycleHooks<T>;
+    imageFields?: string[];
+    publicDir?: string;
 };
 type PaginatedResponse<T> = {
     data: T[];
@@ -47,6 +49,17 @@ type PaginatedResponse<T> = {
         totalPages: number;
     };
 };
+type UploadConfig = {
+    uploadDir?: string;
+    maxSize?: number;
+    allowedTypes?: string[];
+};
+type UploadResult = {
+    url: string;
+    name: string;
+    size: number;
+    type: string;
+};
 declare class ForbiddenError extends Error {
     constructor(message?: string);
 }
@@ -108,6 +121,10 @@ declare class PrismaCrud<T> {
      * Deletes a record by ID with optional lifecycle hooks.
      */
     delete(id: string | number, context?: UserContext): Promise<any>;
+    /**
+     * Deletes a file from the filesystem if it belongs to the uploads directory.
+     */
+    private deleteLocalFile;
     /**
     * Logic to detect if an ID is a number (Int) or string (UUID/CUID).
     * This allows the API to handle both `id=1` and `id=uuid-string` automatically.
@@ -133,4 +150,23 @@ declare function createApiHandler<T>(crud: PrismaCrud<T>, options?: {
     DELETE: (req: NextRequest, context: any) => Promise<NextResponse<unknown>>;
 };
 
-export { type CrudConfig, ForbiddenError, type LifecycleHooks, type PaginatedResponse, type ParseOptions, type PermissionConfig, PrismaCrud, type PrismaQuery, type UserContext, createApiHandler, parsePrismaQuery, sayHello, type sayHelloProps };
+/**
+ * Creates a Next.js App Router handler for file uploads and management.
+ * POST: Upload new files
+ * GET: List existing files
+ */
+declare function createUploadHandler(config?: UploadConfig): {
+    GET: () => Promise<NextResponse<any[]> | NextResponse<{
+        error: string;
+    }>>;
+    POST: (req: NextRequest) => Promise<NextResponse<{
+        error: string;
+    }> | NextResponse<UploadResult | UploadResult[]>>;
+    DELETE: (req: NextRequest) => Promise<NextResponse<{
+        error: string;
+    }> | NextResponse<{
+        success: boolean;
+    }>>;
+};
+
+export { type CrudConfig, ForbiddenError, type LifecycleHooks, type PaginatedResponse, type ParseOptions, type PermissionConfig, PrismaCrud, type PrismaQuery, type UploadConfig, type UploadResult, type UserContext, createApiHandler, createUploadHandler, parsePrismaQuery, sayHello, type sayHelloProps };

package/dist/index.d.ts

@@ -37,6 +37,8 @@ type CrudConfig<T = any> = {
     ownerField?: string;
     adminRole?: string;
     hooks?: LifecycleHooks<T>;
+    imageFields?: string[];
+    publicDir?: string;
 };
 type PaginatedResponse<T> = {
     data: T[];
@@ -47,6 +49,17 @@ type PaginatedResponse<T> = {
         totalPages: number;
     };
 };
+type UploadConfig = {
+    uploadDir?: string;
+    maxSize?: number;
+    allowedTypes?: string[];
+};
+type UploadResult = {
+    url: string;
+    name: string;
+    size: number;
+    type: string;
+};
 declare class ForbiddenError extends Error {
     constructor(message?: string);
 }
@@ -108,6 +121,10 @@ declare class PrismaCrud<T> {
      * Deletes a record by ID with optional lifecycle hooks.
      */
     delete(id: string | number, context?: UserContext): Promise<any>;
+    /**
+     * Deletes a file from the filesystem if it belongs to the uploads directory.
+     */
+    private deleteLocalFile;
     /**
     * Logic to detect if an ID is a number (Int) or string (UUID/CUID).
     * This allows the API to handle both `id=1` and `id=uuid-string` automatically.
@@ -133,4 +150,23 @@ declare function createApiHandler<T>(crud: PrismaCrud<T>, options?: {
     DELETE: (req: NextRequest, context: any) => Promise<NextResponse<unknown>>;
 };
 
-export { type CrudConfig, ForbiddenError, type LifecycleHooks, type PaginatedResponse, type ParseOptions, type PermissionConfig, PrismaCrud, type PrismaQuery, type UserContext, createApiHandler, parsePrismaQuery, sayHello, type sayHelloProps };
+/**
+ * Creates a Next.js App Router handler for file uploads and management.
+ * POST: Upload new files
+ * GET: List existing files
+ */
+declare function createUploadHandler(config?: UploadConfig): {
+    GET: () => Promise<NextResponse<any[]> | NextResponse<{
+        error: string;
+    }>>;
+    POST: (req: NextRequest) => Promise<NextResponse<{
+        error: string;
+    }> | NextResponse<UploadResult | UploadResult[]>>;
+    DELETE: (req: NextRequest) => Promise<NextResponse<{
+        error: string;
+    }> | NextResponse<{
+        success: boolean;
+    }>>;
+};
+
+export { type CrudConfig, ForbiddenError, type LifecycleHooks, type PaginatedResponse, type ParseOptions, type PermissionConfig, PrismaCrud, type PrismaQuery, type UploadConfig, type UploadResult, type UserContext, createApiHandler, createUploadHandler, parsePrismaQuery, sayHello, type sayHelloProps };

package/dist/index.js

@@ -1,7 +1,9 @@
 "use strict";
+var __create = Object.create;
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __export = (target, all) => {
   for (var name in all)
@@ -15,6 +17,14 @@ var __copyProps = (to, from, except, desc) => {
   }
   return to;
 };
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(
+  // If the importer is in node compatibility mode or this is not an ESM
+  // file that has been converted to a CommonJS file using a Babel-
+  // compatible transform (i.e. "__esModule" has not been set), then set
+  // "default" to the CommonJS "module.exports" for node compatibility.
+  isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", { value: mod, enumerable: true }) : target,
+  mod
+));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 
 // src/index.ts
@@ -23,6 +33,7 @@ __export(index_exports, {
   ForbiddenError: () => ForbiddenError,
   PrismaCrud: () => PrismaCrud,
   createApiHandler: () => createApiHandler,
+  createUploadHandler: () => createUploadHandler,
   parsePrismaQuery: () => parsePrismaQuery,
   sayHello: () => sayHello
 });
@@ -118,7 +129,15 @@ function parsePrismaQuery(queryString, options = {}) {
       const rawVal = value.substring(dotIndex + 1);
       const prismaOp = OPERATOR_MAP[op];
       if (prismaOp) {
-        whereTarget[targetKey] = { [prismaOp]: parseValue(rawVal, op) };
+        const parsedVal = parseValue(rawVal, op);
+        if (["contains", "startsWith", "endsWith"].includes(prismaOp) && typeof parsedVal === "string") {
+          whereTarget[targetKey] = {
+            [prismaOp]: parsedVal,
+            mode: "insensitive"
+          };
+        } else {
+          whereTarget[targetKey] = { [prismaOp]: parsedVal };
+        }
         return;
       }
     }
@@ -184,6 +203,8 @@ function parseValue(val, op) {
 }
 
 // src/core/prisma-crud.ts
+var import_promises = require("fs/promises");
+var import_path = require("path");
 var PrismaCrud = class {
   /**
    * @param model -The Prisma model delegate (e.g., prisma.user)
@@ -286,7 +307,29 @@ var PrismaCrud = class {
     if (!this.checkPermission("update", context)) throw new ForbiddenError();
     try {
       if (schema) data = schema.parse(data);
-      const where = this.applySecurity({ id: this.parseId(id) }, context);
+      const parsedId = this.parseId(id);
+      const where = this.applySecurity({ id: parsedId }, context);
+      if (this.config.imageFields && this.config.imageFields.length > 0) {
+        const oldRecord = await this.model.findUnique({ where });
+        if (oldRecord) {
+          for (const field of this.config.imageFields) {
+            const newValue = data[field];
+            const oldValue = oldRecord[field];
+            if (newValue === void 0) continue;
+            if (typeof oldValue === "string" && typeof newValue === "string") {
+              if (oldValue !== newValue) {
+                await this.deleteLocalFile(oldValue);
+              }
+            } else if (Array.isArray(oldValue)) {
+              const newArray = Array.isArray(newValue) ? newValue : [];
+              const removedImages = oldValue.filter((img) => !newArray.includes(img));
+              for (const img of removedImages) {
+                await this.deleteLocalFile(img);
+              }
+            }
+          }
+        }
+      }
       if (this.config.hooks?.beforeUpdate) {
         data = await this.config.hooks.beforeUpdate(data);
       }
@@ -309,8 +352,24 @@ var PrismaCrud = class {
   async delete(id, context) {
     if (!this.checkPermission("delete", context)) throw new ForbiddenError();
     try {
-      const where = this.applySecurity({ id: this.parseId(id) }, context);
       const parsedId = this.parseId(id);
+      const where = this.applySecurity({ id: parsedId }, context);
+      if (this.config.imageFields && this.config.imageFields.length > 0) {
+        const record = await this.model.findUnique({ where });
+        if (record) {
+          for (const field of this.config.imageFields) {
+            const value = record[field];
+            if (!value) continue;
+            if (Array.isArray(value)) {
+              for (const img of value) {
+                await this.deleteLocalFile(img);
+              }
+            } else if (typeof value === "string") {
+              await this.deleteLocalFile(value);
+            }
+          }
+        }
+      }
       if (this.config.hooks?.beforeDelete) {
         await this.config.hooks.beforeDelete(parsedId);
       }
@@ -324,6 +383,20 @@ var PrismaCrud = class {
       throw error;
     }
   }
+  /**
+   * Deletes a file from the filesystem if it belongs to the uploads directory.
+   */
+  async deleteLocalFile(relativeUrl) {
+    try {
+      if (!relativeUrl || relativeUrl.startsWith("http")) return;
+      const publicDir = this.config.publicDir || "public";
+      const absolutePath = (0, import_path.join)(process.cwd(), publicDir, relativeUrl);
+      await (0, import_promises.unlink)(absolutePath);
+      console.log(`[underme] Deleted old file: ${absolutePath}`);
+    } catch (error) {
+      console.warn(`[underme] Failed to delete file at ${relativeUrl}:`, error);
+    }
+  }
   /**
   * Logic to detect if an ID is a number (Int) or string (UUID/CUID).
   * This allows the API to handle both `id=1` and `id=uuid-string` automatically.
@@ -417,11 +490,103 @@ function createApiHandler(crud, options = {}) {
   };
   return { GET, POST, PATCH, DELETE };
 }
+
+// src/adapters/upload-handler.ts
+var import_server2 = require("next/server");
+var import_promises2 = require("fs/promises");
+var import_path2 = __toESM(require("path"));
+var import_crypto = __toESM(require("crypto"));
+function createUploadHandler(config = {}) {
+  const uploadDir = config.uploadDir || "public/uploads";
+  const maxSize = config.maxSize || 5 * 1024 * 1024;
+  const allowedTypes = config.allowedTypes || ["image/jpeg", "image/png", "image/webp", "image/gif"];
+  const GET = async () => {
+    try {
+      const absoluteUploadDir = import_path2.default.join(process.cwd(), uploadDir);
+      await (0, import_promises2.mkdir)(absoluteUploadDir, { recursive: true });
+      const files = await (0, import_promises2.readdir)(absoluteUploadDir);
+      const results = await Promise.all(
+        files.map(async (filename) => {
+          const filePath = import_path2.default.join(absoluteUploadDir, filename);
+          const fileStat = await (0, import_promises2.stat)(filePath);
+          if (fileStat.isDirectory()) return null;
+          return {
+            url: `/${uploadDir.replace("public/", "")}/${filename}`,
+            name: filename,
+            size: fileStat.size,
+            atime: fileStat.atime,
+            mtime: fileStat.mtime
+          };
+        })
+      );
+      return import_server2.NextResponse.json(results.filter((f) => f !== null).sort((a, b) => b.mtime.getTime() - a.mtime.getTime()));
+    } catch (error) {
+      return import_server2.NextResponse.json({ error: "Failed to list uploads: " + error.message }, { status: 500 });
+    }
+  };
+  const POST = async (req) => {
+    try {
+      const formData = await req.formData();
+      const files = formData.getAll("file");
+      if (!files || files.length === 0) {
+        return import_server2.NextResponse.json({ error: "No files uploaded" }, { status: 400 });
+      }
+      const results = [];
+      const absoluteUploadDir = import_path2.default.join(process.cwd(), uploadDir);
+      await (0, import_promises2.mkdir)(absoluteUploadDir, { recursive: true });
+      for (const file of files) {
+        if (file.size > maxSize) {
+          return import_server2.NextResponse.json({
+            error: `File ${file.name} is too large. Max size is ${maxSize / (1024 * 1024)}MB`
+          }, { status: 400 });
+        }
+        if (!allowedTypes.includes(file.type)) {
+          return import_server2.NextResponse.json({
+            error: `File type ${file.type} is not allowed.`
+          }, { status: 400 });
+        }
+        const buffer = Buffer.from(await file.arrayBuffer());
+        const extension = import_path2.default.extname(file.name);
+        const filename = `${import_crypto.default.randomUUID()}${extension}`;
+        const filePath = import_path2.default.join(absoluteUploadDir, filename);
+        await (0, import_promises2.writeFile)(filePath, buffer);
+        results.push({
+          url: `/${uploadDir.replace("public/", "")}/${filename}`,
+          name: filename,
+          // Original filename is replaced with UUID for safety
+          size: file.size,
+          type: file.type
+        });
+      }
+      return import_server2.NextResponse.json(files.length === 1 ? results[0] : results);
+    } catch (error) {
+      console.error("Upload Handler Error:", error);
+      return import_server2.NextResponse.json({ error: "Upload failed: " + error.message }, { status: 500 });
+    }
+  };
+  const DELETE = async (req) => {
+    try {
+      const { searchParams } = new URL(req.url);
+      const filename = searchParams.get("file");
+      if (!filename) {
+        return import_server2.NextResponse.json({ error: "Filename is required" }, { status: 400 });
+      }
+      const sanitizedFilename = import_path2.default.basename(filename);
+      const absolutePath = import_path2.default.join(process.cwd(), uploadDir, sanitizedFilename);
+      await (0, import_promises2.unlink)(absolutePath);
+      return import_server2.NextResponse.json({ success: true });
+    } catch (error) {
+      return import_server2.NextResponse.json({ error: "Failed to delete file: " + error.message }, { status: 500 });
+    }
+  };
+  return { GET, POST, DELETE };
+}
 // Annotate the CommonJS export names for ESM import in node:
 0 && (module.exports = {
   ForbiddenError,
   PrismaCrud,
   createApiHandler,
+  createUploadHandler,
   parsePrismaQuery,
   sayHello
 });

package/dist/index.mjs

@@ -88,7 +88,15 @@ function parsePrismaQuery(queryString, options = {}) {
       const rawVal = value.substring(dotIndex + 1);
       const prismaOp = OPERATOR_MAP[op];
       if (prismaOp) {
-        whereTarget[targetKey] = { [prismaOp]: parseValue(rawVal, op) };
+        const parsedVal = parseValue(rawVal, op);
+        if (["contains", "startsWith", "endsWith"].includes(prismaOp) && typeof parsedVal === "string") {
+          whereTarget[targetKey] = {
+            [prismaOp]: parsedVal,
+            mode: "insensitive"
+          };
+        } else {
+          whereTarget[targetKey] = { [prismaOp]: parsedVal };
+        }
         return;
       }
     }
@@ -154,6 +162,8 @@ function parseValue(val, op) {
 }
 
 // src/core/prisma-crud.ts
+import { unlink } from "fs/promises";
+import { join } from "path";
 var PrismaCrud = class {
   /**
    * @param model -The Prisma model delegate (e.g., prisma.user)
@@ -256,7 +266,29 @@ var PrismaCrud = class {
     if (!this.checkPermission("update", context)) throw new ForbiddenError();
     try {
       if (schema) data = schema.parse(data);
-      const where = this.applySecurity({ id: this.parseId(id) }, context);
+      const parsedId = this.parseId(id);
+      const where = this.applySecurity({ id: parsedId }, context);
+      if (this.config.imageFields && this.config.imageFields.length > 0) {
+        const oldRecord = await this.model.findUnique({ where });
+        if (oldRecord) {
+          for (const field of this.config.imageFields) {
+            const newValue = data[field];
+            const oldValue = oldRecord[field];
+            if (newValue === void 0) continue;
+            if (typeof oldValue === "string" && typeof newValue === "string") {
+              if (oldValue !== newValue) {
+                await this.deleteLocalFile(oldValue);
+              }
+            } else if (Array.isArray(oldValue)) {
+              const newArray = Array.isArray(newValue) ? newValue : [];
+              const removedImages = oldValue.filter((img) => !newArray.includes(img));
+              for (const img of removedImages) {
+                await this.deleteLocalFile(img);
+              }
+            }
+          }
+        }
+      }
       if (this.config.hooks?.beforeUpdate) {
         data = await this.config.hooks.beforeUpdate(data);
       }
@@ -279,8 +311,24 @@ var PrismaCrud = class {
   async delete(id, context) {
     if (!this.checkPermission("delete", context)) throw new ForbiddenError();
     try {
-      const where = this.applySecurity({ id: this.parseId(id) }, context);
       const parsedId = this.parseId(id);
+      const where = this.applySecurity({ id: parsedId }, context);
+      if (this.config.imageFields && this.config.imageFields.length > 0) {
+        const record = await this.model.findUnique({ where });
+        if (record) {
+          for (const field of this.config.imageFields) {
+            const value = record[field];
+            if (!value) continue;
+            if (Array.isArray(value)) {
+              for (const img of value) {
+                await this.deleteLocalFile(img);
+              }
+            } else if (typeof value === "string") {
+              await this.deleteLocalFile(value);
+            }
+          }
+        }
+      }
       if (this.config.hooks?.beforeDelete) {
         await this.config.hooks.beforeDelete(parsedId);
       }
@@ -294,6 +342,20 @@ var PrismaCrud = class {
       throw error;
     }
   }
+  /**
+   * Deletes a file from the filesystem if it belongs to the uploads directory.
+   */
+  async deleteLocalFile(relativeUrl) {
+    try {
+      if (!relativeUrl || relativeUrl.startsWith("http")) return;
+      const publicDir = this.config.publicDir || "public";
+      const absolutePath = join(process.cwd(), publicDir, relativeUrl);
+      await unlink(absolutePath);
+      console.log(`[underme] Deleted old file: ${absolutePath}`);
+    } catch (error) {
+      console.warn(`[underme] Failed to delete file at ${relativeUrl}:`, error);
+    }
+  }
   /**
   * Logic to detect if an ID is a number (Int) or string (UUID/CUID).
   * This allows the API to handle both `id=1` and `id=uuid-string` automatically.
@@ -387,10 +449,102 @@ function createApiHandler(crud, options = {}) {
   };
   return { GET, POST, PATCH, DELETE };
 }
+
+// src/adapters/upload-handler.ts
+import { NextResponse as NextResponse2 } from "next/server";
+import { writeFile, mkdir, readdir, stat, unlink as unlink2 } from "fs/promises";
+import path from "path";
+import crypto from "crypto";
+function createUploadHandler(config = {}) {
+  const uploadDir = config.uploadDir || "public/uploads";
+  const maxSize = config.maxSize || 5 * 1024 * 1024;
+  const allowedTypes = config.allowedTypes || ["image/jpeg", "image/png", "image/webp", "image/gif"];
+  const GET = async () => {
+    try {
+      const absoluteUploadDir = path.join(process.cwd(), uploadDir);
+      await mkdir(absoluteUploadDir, { recursive: true });
+      const files = await readdir(absoluteUploadDir);
+      const results = await Promise.all(
+        files.map(async (filename) => {
+          const filePath = path.join(absoluteUploadDir, filename);
+          const fileStat = await stat(filePath);
+          if (fileStat.isDirectory()) return null;
+          return {
+            url: `/${uploadDir.replace("public/", "")}/${filename}`,
+            name: filename,
+            size: fileStat.size,
+            atime: fileStat.atime,
+            mtime: fileStat.mtime
+          };
+        })
+      );
+      return NextResponse2.json(results.filter((f) => f !== null).sort((a, b) => b.mtime.getTime() - a.mtime.getTime()));
+    } catch (error) {
+      return NextResponse2.json({ error: "Failed to list uploads: " + error.message }, { status: 500 });
+    }
+  };
+  const POST = async (req) => {
+    try {
+      const formData = await req.formData();
+      const files = formData.getAll("file");
+      if (!files || files.length === 0) {
+        return NextResponse2.json({ error: "No files uploaded" }, { status: 400 });
+      }
+      const results = [];
+      const absoluteUploadDir = path.join(process.cwd(), uploadDir);
+      await mkdir(absoluteUploadDir, { recursive: true });
+      for (const file of files) {
+        if (file.size > maxSize) {
+          return NextResponse2.json({
+            error: `File ${file.name} is too large. Max size is ${maxSize / (1024 * 1024)}MB`
+          }, { status: 400 });
+        }
+        if (!allowedTypes.includes(file.type)) {
+          return NextResponse2.json({
+            error: `File type ${file.type} is not allowed.`
+          }, { status: 400 });
+        }
+        const buffer = Buffer.from(await file.arrayBuffer());
+        const extension = path.extname(file.name);
+        const filename = `${crypto.randomUUID()}${extension}`;
+        const filePath = path.join(absoluteUploadDir, filename);
+        await writeFile(filePath, buffer);
+        results.push({
+          url: `/${uploadDir.replace("public/", "")}/${filename}`,
+          name: filename,
+          // Original filename is replaced with UUID for safety
+          size: file.size,
+          type: file.type
+        });
+      }
+      return NextResponse2.json(files.length === 1 ? results[0] : results);
+    } catch (error) {
+      console.error("Upload Handler Error:", error);
+      return NextResponse2.json({ error: "Upload failed: " + error.message }, { status: 500 });
+    }
+  };
+  const DELETE = async (req) => {
+    try {
+      const { searchParams } = new URL(req.url);
+      const filename = searchParams.get("file");
+      if (!filename) {
+        return NextResponse2.json({ error: "Filename is required" }, { status: 400 });
+      }
+      const sanitizedFilename = path.basename(filename);
+      const absolutePath = path.join(process.cwd(), uploadDir, sanitizedFilename);
+      await unlink2(absolutePath);
+      return NextResponse2.json({ success: true });
+    } catch (error) {
+      return NextResponse2.json({ error: "Failed to delete file: " + error.message }, { status: 500 });
+    }
+  };
+  return { GET, POST, DELETE };
+}
 export {
   ForbiddenError,
   PrismaCrud,
   createApiHandler,
+  createUploadHandler,
   parsePrismaQuery,
   sayHello
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "say-under-me",
-  "version": "1.4.0",
+  "version": "1.5.2",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
   "types": "./dist/index.d.ts",
@@ -25,5 +25,8 @@
     "react-dom": "^19.2.4",
     "tsup": "^8.0.0",
     "typescript": "^5.0.0"
+  },
+  "dependencies": {
+    "say-under-me": "^1.5.0"
   }
 }