npm - servcraft - Versions diffs - 0.1.0 → 0.1.3 - Mend

servcraft 0.1.0 → 0.1.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (217) hide show

package/.claude/settings.local.json +30 -0
package/.github/CODEOWNERS +18 -0
package/.github/PULL_REQUEST_TEMPLATE.md +46 -0
package/.github/dependabot.yml +59 -0
package/.github/workflows/ci.yml +188 -0
package/.github/workflows/release.yml +195 -0
package/AUDIT.md +602 -0
package/LICENSE +21 -0
package/README.md +1102 -1
package/dist/cli/index.cjs +2026 -2168
package/dist/cli/index.cjs.map +1 -1
package/dist/cli/index.js +2026 -2168
package/dist/cli/index.js.map +1 -1
package/dist/index.cjs +595 -616
package/dist/index.cjs.map +1 -1
package/dist/index.d.cts +114 -52
package/dist/index.d.ts +114 -52
package/dist/index.js +595 -616
package/dist/index.js.map +1 -1
package/docs/CLI-001_MULTI_DB_PLAN.md +546 -0
package/docs/DATABASE_MULTI_ORM.md +399 -0
package/docs/PHASE1_BREAKDOWN.md +346 -0
package/docs/PROGRESS.md +550 -0
package/docs/modules/ANALYTICS.md +226 -0
package/docs/modules/API-VERSIONING.md +252 -0
package/docs/modules/AUDIT.md +192 -0
package/docs/modules/AUTH.md +431 -0
package/docs/modules/CACHE.md +346 -0
package/docs/modules/EMAIL.md +254 -0
package/docs/modules/FEATURE-FLAG.md +291 -0
package/docs/modules/I18N.md +294 -0
package/docs/modules/MEDIA-PROCESSING.md +281 -0
package/docs/modules/MFA.md +266 -0
package/docs/modules/NOTIFICATION.md +311 -0
package/docs/modules/OAUTH.md +237 -0
package/docs/modules/PAYMENT.md +804 -0
package/docs/modules/QUEUE.md +540 -0
package/docs/modules/RATE-LIMIT.md +339 -0
package/docs/modules/SEARCH.md +288 -0
package/docs/modules/SECURITY.md +327 -0
package/docs/modules/SESSION.md +382 -0
package/docs/modules/SWAGGER.md +305 -0
package/docs/modules/UPLOAD.md +296 -0
package/docs/modules/USER.md +505 -0
package/docs/modules/VALIDATION.md +294 -0
package/docs/modules/WEBHOOK.md +270 -0
package/docs/modules/WEBSOCKET.md +691 -0
package/package.json +53 -38
package/prisma/schema.prisma +395 -1
package/src/cli/commands/add-module.ts +520 -87
package/src/cli/commands/db.ts +3 -4
package/src/cli/commands/docs.ts +256 -6
package/src/cli/commands/generate.ts +12 -19
package/src/cli/commands/init.ts +384 -214
package/src/cli/index.ts +0 -4
package/src/cli/templates/repository.ts +6 -1
package/src/cli/templates/routes.ts +6 -21
package/src/cli/utils/docs-generator.ts +6 -7
package/src/cli/utils/env-manager.ts +717 -0
package/src/cli/utils/field-parser.ts +16 -7
package/src/cli/utils/interactive-prompt.ts +223 -0
package/src/cli/utils/template-manager.ts +346 -0
package/src/config/database.config.ts +183 -0
package/src/config/env.ts +0 -10
package/src/config/index.ts +0 -14
package/src/core/server.ts +1 -1
package/src/database/adapters/mongoose.adapter.ts +132 -0
package/src/database/adapters/prisma.adapter.ts +118 -0
package/src/database/connection.ts +190 -0
package/src/database/interfaces/database.interface.ts +85 -0
package/src/database/interfaces/index.ts +7 -0
package/src/database/interfaces/repository.interface.ts +129 -0
package/src/database/models/mongoose/index.ts +7 -0
package/src/database/models/mongoose/payment.schema.ts +347 -0
package/src/database/models/mongoose/user.schema.ts +154 -0
package/src/database/prisma.ts +1 -4
package/src/database/redis.ts +101 -0
package/src/database/repositories/mongoose/index.ts +7 -0
package/src/database/repositories/mongoose/payment.repository.ts +380 -0
package/src/database/repositories/mongoose/user.repository.ts +255 -0
package/src/database/seed.ts +6 -1
package/src/index.ts +9 -20
package/src/middleware/security.ts +2 -6
package/src/modules/analytics/analytics.routes.ts +80 -0
package/src/modules/analytics/analytics.service.ts +364 -0
package/src/modules/analytics/index.ts +18 -0
package/src/modules/analytics/types.ts +180 -0
package/src/modules/api-versioning/index.ts +15 -0
package/src/modules/api-versioning/types.ts +86 -0
package/src/modules/api-versioning/versioning.middleware.ts +120 -0
package/src/modules/api-versioning/versioning.routes.ts +54 -0
package/src/modules/api-versioning/versioning.service.ts +189 -0
package/src/modules/audit/audit.repository.ts +206 -0
package/src/modules/audit/audit.service.ts +27 -59
package/src/modules/auth/auth.controller.ts +2 -2
package/src/modules/auth/auth.middleware.ts +3 -9
package/src/modules/auth/auth.routes.ts +10 -107
package/src/modules/auth/auth.service.ts +126 -23
package/src/modules/auth/index.ts +3 -4
package/src/modules/cache/cache.service.ts +367 -0
package/src/modules/cache/index.ts +10 -0
package/src/modules/cache/types.ts +44 -0
package/src/modules/email/email.service.ts +3 -10
package/src/modules/email/templates.ts +2 -8
package/src/modules/feature-flag/feature-flag.repository.ts +303 -0
package/src/modules/feature-flag/feature-flag.routes.ts +247 -0
package/src/modules/feature-flag/feature-flag.service.ts +566 -0
package/src/modules/feature-flag/index.ts +20 -0
package/src/modules/feature-flag/types.ts +192 -0
package/src/modules/i18n/i18n.middleware.ts +186 -0
package/src/modules/i18n/i18n.routes.ts +191 -0
package/src/modules/i18n/i18n.service.ts +456 -0
package/src/modules/i18n/index.ts +18 -0
package/src/modules/i18n/types.ts +118 -0
package/src/modules/media-processing/index.ts +17 -0
package/src/modules/media-processing/media-processing.routes.ts +111 -0
package/src/modules/media-processing/media-processing.service.ts +245 -0
package/src/modules/media-processing/types.ts +156 -0
package/src/modules/mfa/index.ts +20 -0
package/src/modules/mfa/mfa.repository.ts +206 -0
package/src/modules/mfa/mfa.routes.ts +595 -0
package/src/modules/mfa/mfa.service.ts +572 -0
package/src/modules/mfa/totp.ts +150 -0
package/src/modules/mfa/types.ts +57 -0
package/src/modules/notification/index.ts +20 -0
package/src/modules/notification/notification.repository.ts +356 -0
package/src/modules/notification/notification.service.ts +483 -0
package/src/modules/notification/types.ts +119 -0
package/src/modules/oauth/index.ts +20 -0
package/src/modules/oauth/oauth.repository.ts +219 -0
package/src/modules/oauth/oauth.routes.ts +446 -0
package/src/modules/oauth/oauth.service.ts +293 -0
package/src/modules/oauth/providers/apple.provider.ts +250 -0
package/src/modules/oauth/providers/facebook.provider.ts +181 -0
package/src/modules/oauth/providers/github.provider.ts +248 -0
package/src/modules/oauth/providers/google.provider.ts +189 -0
package/src/modules/oauth/providers/twitter.provider.ts +214 -0
package/src/modules/oauth/types.ts +94 -0
package/src/modules/payment/index.ts +19 -0
package/src/modules/payment/payment.repository.ts +733 -0
package/src/modules/payment/payment.routes.ts +390 -0
package/src/modules/payment/payment.service.ts +354 -0
package/src/modules/payment/providers/mobile-money.provider.ts +274 -0
package/src/modules/payment/providers/paypal.provider.ts +190 -0
package/src/modules/payment/providers/stripe.provider.ts +215 -0
package/src/modules/payment/types.ts +140 -0
package/src/modules/queue/cron.ts +438 -0
package/src/modules/queue/index.ts +87 -0
package/src/modules/queue/queue.routes.ts +600 -0
package/src/modules/queue/queue.service.ts +842 -0
package/src/modules/queue/types.ts +222 -0
package/src/modules/queue/workers.ts +366 -0
package/src/modules/rate-limit/index.ts +59 -0
package/src/modules/rate-limit/rate-limit.middleware.ts +134 -0
package/src/modules/rate-limit/rate-limit.routes.ts +269 -0
package/src/modules/rate-limit/rate-limit.service.ts +348 -0
package/src/modules/rate-limit/stores/memory.store.ts +165 -0
package/src/modules/rate-limit/stores/redis.store.ts +322 -0
package/src/modules/rate-limit/types.ts +153 -0
package/src/modules/search/adapters/elasticsearch.adapter.ts +326 -0
package/src/modules/search/adapters/meilisearch.adapter.ts +261 -0
package/src/modules/search/adapters/memory.adapter.ts +278 -0
package/src/modules/search/index.ts +21 -0
package/src/modules/search/search.service.ts +234 -0
package/src/modules/search/types.ts +214 -0
package/src/modules/security/index.ts +40 -0
package/src/modules/security/sanitize.ts +223 -0
package/src/modules/security/security-audit.service.ts +388 -0
package/src/modules/security/security.middleware.ts +398 -0
package/src/modules/session/index.ts +3 -0
package/src/modules/session/session.repository.ts +159 -0
package/src/modules/session/session.service.ts +340 -0
package/src/modules/session/types.ts +38 -0
package/src/modules/swagger/index.ts +7 -1
package/src/modules/swagger/schema-builder.ts +16 -4
package/src/modules/swagger/swagger.service.ts +9 -10
package/src/modules/swagger/types.ts +0 -2
package/src/modules/upload/index.ts +14 -0
package/src/modules/upload/types.ts +83 -0
package/src/modules/upload/upload.repository.ts +199 -0
package/src/modules/upload/upload.routes.ts +311 -0
package/src/modules/upload/upload.service.ts +448 -0
package/src/modules/user/index.ts +3 -3
package/src/modules/user/user.controller.ts +15 -9
package/src/modules/user/user.repository.ts +237 -113
package/src/modules/user/user.routes.ts +39 -164
package/src/modules/user/user.service.ts +4 -3
package/src/modules/validation/validator.ts +12 -17
package/src/modules/webhook/index.ts +91 -0
package/src/modules/webhook/retry.ts +196 -0
package/src/modules/webhook/signature.ts +135 -0
package/src/modules/webhook/types.ts +181 -0
package/src/modules/webhook/webhook.repository.ts +358 -0
package/src/modules/webhook/webhook.routes.ts +442 -0
package/src/modules/webhook/webhook.service.ts +457 -0
package/src/modules/websocket/features.ts +504 -0
package/src/modules/websocket/index.ts +106 -0
package/src/modules/websocket/middlewares.ts +298 -0
package/src/modules/websocket/types.ts +181 -0
package/src/modules/websocket/websocket.service.ts +692 -0
package/src/utils/errors.ts +7 -0
package/src/utils/pagination.ts +4 -1
package/tests/helpers/db-check.ts +79 -0
package/tests/integration/auth-redis.test.ts +94 -0
package/tests/integration/cache-redis.test.ts +387 -0
package/tests/integration/mongoose-repositories.test.ts +410 -0
package/tests/integration/payment-prisma.test.ts +637 -0
package/tests/integration/queue-bullmq.test.ts +417 -0
package/tests/integration/user-prisma.test.ts +441 -0
package/tests/integration/websocket-socketio.test.ts +552 -0
package/tests/setup.ts +11 -9
package/vitest.config.ts +3 -8
package/npm-cache/_cacache/content-v2/sha512/1c/d0/03440d500a0487621aad1d6402978340698976602046db8e24fa03c01ee6c022c69b0582f969042d9442ee876ac35c038e960dd427d1e622fa24b8eb7dba +0 -0
package/npm-cache/_cacache/content-v2/sha512/42/55/28b493ca491833e5aab0e9c3108d29ab3f36c248ca88f45d4630674fce9130959e56ae308797ac2b6328fa7f09a610b9550ed09cb971d039876d293fc69d +0 -0
package/npm-cache/_cacache/content-v2/sha512/e0/12/f360dc9315ee5f17844a0c8c233ee6bf7c30837c4a02ea0d56c61c7f7ab21c0e958e50ed2c57c59f983c762b93056778c9009b2398ffc26def0183999b13 +0 -0
package/npm-cache/_cacache/content-v2/sha512/ed/b0/fae1161902898f4c913c67d7f6cdf6be0665aec3b389b9c4f4f0a101ca1da59badf1b59c4e0030f5223023b8d63cfe501c46a32c20c895d4fb3f11ca2232 +0 -0
package/npm-cache/_cacache/index-v5/58/94/c2cba79e0f16b4c10e95a87e32255741149e8222cc314a476aab67c39cc0 +0 -5

package/docs/modules/ANALYTICS.md ADDED Viewed

@@ -0,0 +1,226 @@
+# Analytics Module
+Prometheus-style metrics collection for monitoring and observability.
+## Features
+- **Counters** - Monotonically increasing values
+- **Gauges** - Values that can go up and down
+- **Histograms** - Distribution of values with buckets
+- **Events** - Track custom application events
+- **Prometheus Export** - Native Prometheus format output
+- **Metric Queries** - Query and aggregate metrics
+## Metric Types
+| Type | Description | Example |
+|------|-------------|---------|
+| Counter | Only increases | Request count, errors |
+| Gauge | Can increase/decrease | Active connections, queue size |
+| Histogram | Value distribution | Response times, payload sizes |
+## Usage
+### Basic Setup
+```typescript
+import { AnalyticsService } from 'servcraft/modules/analytics';
+const analytics = new AnalyticsService({
+  enabled: true,
+  prefix: 'myapp',
+  defaultLabels: { env: 'production' },
+  flushInterval: 60000,
+});
+```
+### Counters
+```typescript
+// Simple increment
+analytics.incrementCounter('http_requests_total');
+// Increment by value
+analytics.incrementCounter('bytes_received', 1024);
+// With labels
+analytics.incrementCounter('http_requests_total', 1, {
+  method: 'GET',
+  path: '/api/users',
+  status: '200',
+});
+```
+### Gauges
+```typescript
+// Set gauge value
+analytics.setGauge('active_connections', 42);
+// With labels
+analytics.setGauge('queue_size', 150, { queue: 'emails' });
+// Update periodically
+setInterval(() => {
+  analytics.setGauge('memory_usage_bytes', process.memoryUsage().heapUsed);
+}, 5000);
+```
+### Histograms
+```typescript
+// Observe value with default buckets
+analytics.observeHistogram('http_request_duration_seconds', 0.125);
+// Custom buckets
+analytics.observeHistogram(
+  'http_request_duration_seconds',
+  0.125,
+  [0.01, 0.05, 0.1, 0.25, 0.5, 1, 2.5, 5, 10],
+  { method: 'GET', path: '/api/users' }
+);
+// Timing helper
+const start = Date.now();
+// ... do work ...
+const duration = (Date.now() - start) / 1000;
+analytics.observeHistogram('operation_duration_seconds', duration);
+```
+### Events
+```typescript
+// Track event
+analytics.trackEvent({
+  name: 'user_signup',
+  properties: {
+    source: 'google',
+    plan: 'free',
+  },
+});
+// Get recent events
+const events = analytics.getEvents(100);
+```
+### Querying Metrics
+```typescript
+const result = await analytics.queryMetrics({
+  name: 'myapp_http_requests_total',
+  startTime: new Date('2024-01-01'),
+  endTime: new Date('2024-01-31'),
+  labels: { method: 'GET' },
+  groupBy: ['path'],
+  aggregation: 'sum',
+});
+// result: { name, data: [...], aggregated: 12345 }
+```
+### Prometheus Export
+```typescript
+// Get Prometheus format
+const metrics = analytics.getPrometheusMetrics();
+// Example output:
+// myapp_http_requests_total{method="GET",status="200"} 1234
+// myapp_active_connections{} 42
+// myapp_http_request_duration_seconds_bucket{le="0.1"} 500
+// myapp_http_request_duration_seconds_bucket{le="0.5"} 900
+// myapp_http_request_duration_seconds_sum{} 125.5
+// myapp_http_request_duration_seconds_count{} 1000
+```
+### Fastify Integration
+```typescript
+// Metrics endpoint
+fastify.get('/metrics', async (request, reply) => {
+  reply.type('text/plain').send(analytics.getPrometheusMetrics());
+});
+// Request duration middleware
+fastify.addHook('onRequest', async (request) => {
+  request.startTime = Date.now();
+});
+fastify.addHook('onResponse', async (request, reply) => {
+  const duration = (Date.now() - request.startTime) / 1000;
+  analytics.incrementCounter('http_requests_total', 1, {
+    method: request.method,
+    path: request.routerPath || request.url,
+    status: String(reply.statusCode),
+  });
+  analytics.observeHistogram('http_request_duration_seconds', duration, undefined, {
+    method: request.method,
+    path: request.routerPath || request.url,
+  });
+});
+```
+## Configuration
+```typescript
+interface AnalyticsConfig {
+  enabled?: boolean;          // Enable/disable metrics (default: true)
+  prefix?: string;            // Metric name prefix (default: 'app')
+  defaultLabels?: Record<string, string>; // Labels added to all metrics
+  prometheusEnabled?: boolean; // Enable Prometheus export (default: true)
+  flushInterval?: number;     // Cleanup interval in ms (default: 60000)
+}
+```
+## Aggregation Types
+| Aggregation | Description |
+|-------------|-------------|
+| `sum` | Sum of all values |
+| `avg` | Average of values |
+| `min` | Minimum value |
+| `max` | Maximum value |
+| `count` | Number of data points |
+## Utility Methods
+```typescript
+// Get all counters
+const counters = analytics.getCounters();
+// Get all gauges
+const gauges = analytics.getGauges();
+// Clear all metrics
+analytics.clear();
+```
+## Prometheus Configuration
+```yaml
+# prometheus.yml
+scrape_configs:
+  - job_name: 'myapp'
+    static_configs:
+      - targets: ['localhost:3000']
+    metrics_path: '/metrics'
+    scrape_interval: 15s
+```
+## Grafana Dashboard
+Common panels:
+- Request rate: `rate(myapp_http_requests_total[5m])`
+- Error rate: `rate(myapp_http_requests_total{status=~"5.."}[5m])`
+- P99 latency: `histogram_quantile(0.99, rate(myapp_http_request_duration_seconds_bucket[5m]))`
+- Active connections: `myapp_active_connections`
+## Best Practices
+1. **Use Labels Wisely** - Don't create high-cardinality labels
+2. **Consistent Naming** - Follow Prometheus naming conventions
+3. **Default Buckets** - Use appropriate histogram buckets for your use case
+4. **Memory Management** - Configure flush interval to prevent memory growth
+5. **Metric Types** - Use the right metric type for your use case

package/docs/modules/API-VERSIONING.md ADDED Viewed

@@ -0,0 +1,252 @@
+# API Versioning Module
+API versioning support with multiple detection strategies.
+## Features
+- **Multiple Strategies** - URL path, header, query param, Accept header
+- **Version Detection** - Automatic version detection from requests
+- **Deprecation Warnings** - Warn clients about deprecated versions
+- **Migration Support** - Data migration between versions
+- **Sunset Dates** - Track version end-of-life dates
+## Strategies
+| Strategy | Example | Best For |
+|----------|---------|----------|
+| URL Path | `/v1/users`, `/v2/users` | RESTful APIs, clear versioning |
+| Header | `X-API-Version: v2` | Clean URLs, flexible |
+| Query | `?version=v2` | Simple implementation |
+| Accept Header | `Accept: application/vnd.api.v2+json` | Content negotiation |
+## Usage
+### Configuration
+```typescript
+import { VersioningService } from 'servcraft/modules/api-versioning';
+const versionService = new VersioningService({
+  strategy: 'url',
+  defaultVersion: 'v1',
+  versions: [
+    {
+      version: 'v1',
+      status: 'deprecated',
+      releasedAt: new Date('2023-01-01'),
+      sunsetAt: new Date('2024-06-01'),
+    },
+    {
+      version: 'v2',
+      status: 'active',
+      releasedAt: new Date('2024-01-01'),
+    },
+    {
+      version: 'v3',
+      status: 'active',
+      releasedAt: new Date('2024-06-01'),
+    },
+  ],
+  headerName: 'X-API-Version',
+  queryParam: 'version',
+  strict: true,
+  deprecationWarnings: true,
+});
+```
+### Version Detection
+```typescript
+// Detect version from request
+const result = versionService.detectVersion({
+  url: '/v2/users',
+  headers: { 'x-api-version': 'v2' },
+  query: { version: 'v2' },
+});
+// {
+//   version: 'v2',
+//   source: 'url',
+//   isValid: true,
+//   warning: undefined
+// }
+// Deprecated version warning
+const deprecatedResult = versionService.detectVersion({
+  url: '/v1/users',
+});
+// {
+//   version: 'v1',
+//   source: 'url',
+//   isValid: true,
+//   warning: 'API version v1 is deprecated and will be removed on 2024-06-01'
+// }
+```
+### Version Information
+```typescript
+// Get version info
+const info = versionService.getVersion('v2');
+// { version: 'v2', status: 'active', releasedAt: Date }
+// Get all versions
+const all = versionService.getAllVersions();
+// Get active versions
+const active = versionService.getActiveVersions();
+// Check if version is valid
+const isValid = versionService.isVersionValid('v3');
+// Compare versions
+const comparison = versionService.compareVersions('v1', 'v2');
+// Returns: -1 (v1 < v2)
+```
+### Migrations
+```typescript
+// Add migration
+versionService.addMigration({
+  from: 'v1',
+  to: 'v2',
+  transform: (data) => ({
+    ...data,
+    // v2 renames 'name' to 'fullName'
+    fullName: data.name,
+    name: undefined,
+    // v2 adds required field
+    version: 2,
+  }),
+});
+// Get migration
+const migration = versionService.getMigration('v1', 'v2');
+if (migration) {
+  const v2Data = migration.transform(v1Data);
+}
+```
+## Configuration Types
+```typescript
+interface VersioningConfig {
+  strategy: 'url' | 'header' | 'query' | 'accept-header';
+  defaultVersion: string;
+  versions: ApiVersion[];
+  headerName?: string;      // default: 'X-API-Version'
+  queryParam?: string;      // default: 'version'
+  strict?: boolean;         // Reject invalid versions
+  deprecationWarnings?: boolean;
+}
+interface ApiVersion {
+  version: string;
+  status: 'active' | 'deprecated' | 'sunset';
+  releasedAt: Date;
+  sunsetAt?: Date;
+  changelog?: string;
+}
+interface VersionMigration {
+  from: string;
+  to: string;
+  transform: (data: unknown) => unknown;
+}
+```
+## Fastify Integration
+```typescript
+import { versioningMiddleware } from 'servcraft/modules/api-versioning';
+// Register middleware
+fastify.addHook('preHandler', async (request, reply) => {
+  const result = versionService.detectVersion({
+    url: request.url,
+    headers: request.headers,
+    query: request.query,
+  });
+  if (!result.isValid && versionService.config.strict) {
+    return reply.status(400).send({
+      error: `Invalid API version: ${result.version}`,
+      supportedVersions: versionService.getActiveVersions().map(v => v.version),
+    });
+  }
+  request.apiVersion = result.version;
+  // Add deprecation warning header
+  if (result.warning) {
+    reply.header('X-API-Deprecation-Warning', result.warning);
+    reply.header('Sunset', versionService.getVersion(result.version)?.sunsetAt?.toISOString());
+  }
+});
+```
+### Versioned Routes
+```typescript
+// URL-based versioning
+fastify.get('/v1/users', async (request, reply) => {
+  // v1 response format
+  return users.map(u => ({ name: u.name, email: u.email }));
+});
+fastify.get('/v2/users', async (request, reply) => {
+  // v2 response format with pagination
+  return {
+    data: users.map(u => ({ fullName: u.fullName, email: u.email })),
+    meta: { total: users.length },
+  };
+});
+// Header-based versioning (single route)
+fastify.get('/users', async (request, reply) => {
+  const version = request.apiVersion;
+  if (version === 'v1') {
+    return users.map(u => ({ name: u.name }));
+  }
+  // v2 and later
+  return {
+    data: users.map(u => ({ fullName: u.fullName })),
+    meta: { total: users.length },
+  };
+});
+```
+## Response Headers
+```http
+# Deprecation warning
+X-API-Deprecation-Warning: API version v1 is deprecated and will be removed on 2024-06-01
+Sunset: 2024-06-01T00:00:00.000Z
+# Current version
+X-API-Version: v2
+```
+## Version Lifecycle
+```
+┌─────────────────────────────────────────────────────────────┐
+│                    Version Lifecycle                        │
+├─────────────────────────────────────────────────────────────┤
+│  ACTIVE ──────► DEPRECATED ──────► SUNSET ──────► REMOVED   │
+│                     │                  │                    │
+│                  Warning            Error                   │
+│                  Headers           Response                 │
+└─────────────────────────────────────────────────────────────┘
+```
+## Best Practices
+1. **Semantic Versioning** - Use v1, v2, v3 for major breaking changes
+2. **Deprecation Period** - Give clients 6+ months notice
+3. **Sunset Headers** - Include Sunset header for deprecated versions
+4. **Documentation** - Document changes between versions
+5. **Default Version** - Don't change default version without notice
+6. **Migration Guides** - Provide clear migration instructions

package/docs/modules/AUDIT.md ADDED Viewed

@@ -0,0 +1,192 @@
+# Audit Module
+Audit logging for tracking user actions and system events.
+## Features
+- **Automatic Logging** - Track CRUD operations automatically
+- **User Attribution** - Link actions to users
+- **Resource Tracking** - Track changes by resource type
+- **IP & User Agent** - Capture request metadata
+- **Data Retention** - Configurable log retention
+## Usage
+### Basic Setup
+```typescript
+import { getAuditService } from 'servcraft/modules/audit';
+const auditService = getAuditService();
+```
+### Logging Actions
+```typescript
+// Generic log entry
+await auditService.log({
+  action: 'create',
+  resource: 'order',
+  resourceId: 'order-123',
+  userId: 'user-456',
+  newValue: { total: 99.99, items: 3 },
+  ipAddress: request.ip,
+  userAgent: request.headers['user-agent'],
+});
+// Shortcut methods
+await auditService.logCreate('order', 'order-123', 'user-456', { total: 99.99 });
+await auditService.logUpdate('order', 'order-123', 'user-456',
+  { status: 'pending' },  // old value
+  { status: 'shipped' }   // new value
+);
+await auditService.logDelete('order', 'order-123', 'user-456', { total: 99.99 });
+```
+### Auth Events
+```typescript
+// Login event
+await auditService.logLogin('user-123', {
+  ipAddress: '192.168.1.1',
+  userAgent: 'Mozilla/5.0...',
+});
+// Logout event
+await auditService.logLogout('user-123');
+// Password change
+await auditService.logPasswordChange('user-123', {
+  ipAddress: '192.168.1.1',
+});
+```
+### Querying Logs
+```typescript
+// Query with filters
+const result = await auditService.query({
+  userId: 'user-123',
+  action: 'update',
+  resource: 'order',
+  startDate: new Date('2024-01-01'),
+  endDate: new Date('2024-01-31'),
+  page: 1,
+  limit: 50,
+});
+// { data: [...], total: 150, page: 1, totalPages: 3 }
+// Find by user
+const userLogs = await auditService.findByUser('user-123', 100);
+// Find by resource
+const orderLogs = await auditService.findByResource('order', 'order-123', 50);
+```
+### Data Retention
+```typescript
+// Delete logs older than 90 days
+const deleted = await auditService.cleanupOldLogs(90);
+console.log(`Deleted ${deleted} old audit logs`);
+```
+## Types
+```typescript
+interface AuditLogEntry {
+  action: string;
+  resource: string;
+  resourceId?: string;
+  userId?: string;
+  oldValue?: Record<string, unknown>;
+  newValue?: Record<string, unknown>;
+  ipAddress?: string;
+  userAgent?: string;
+}
+interface AuditLogQuery {
+  userId?: string;
+  action?: string;
+  resource?: string;
+  resourceId?: string;
+  startDate?: Date;
+  endDate?: Date;
+  page?: number;
+  limit?: number;
+}
+interface AuditLogRecord extends AuditLogEntry {
+  id: string;
+  timestamp: Date;
+}
+```
+## Common Actions
+| Action | Description |
+|--------|-------------|
+| `create` | Resource created |
+| `update` | Resource updated |
+| `delete` | Resource deleted |
+| `login` | User logged in |
+| `logout` | User logged out |
+| `password_change` | Password changed |
+| `permission_change` | Permissions modified |
+| `export` | Data exported |
+| `import` | Data imported |
+## Middleware Integration
+```typescript
+// Fastify hook for automatic audit logging
+fastify.addHook('onResponse', async (request, reply) => {
+  // Only log mutations
+  if (!['POST', 'PUT', 'PATCH', 'DELETE'].includes(request.method)) {
+    return;
+  }
+  const userId = request.user?.id;
+  const resource = request.routerPath.split('/')[2]; // e.g., /api/orders -> orders
+  await auditService.log({
+    action: request.method.toLowerCase(),
+    resource,
+    resourceId: request.params?.id,
+    userId,
+    ipAddress: request.ip,
+    userAgent: request.headers['user-agent'],
+  });
+});
+```
+## Database Schema
+```sql
+CREATE TABLE audit_logs (
+  id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
+  action TEXT NOT NULL,
+  resource TEXT NOT NULL,
+  resource_id TEXT,
+  user_id TEXT,
+  old_value JSONB,
+  new_value JSONB,
+  ip_address TEXT,
+  user_agent TEXT,
+  timestamp TIMESTAMP DEFAULT NOW()
+);
+CREATE INDEX idx_audit_user ON audit_logs(user_id);
+CREATE INDEX idx_audit_resource ON audit_logs(resource, resource_id);
+CREATE INDEX idx_audit_timestamp ON audit_logs(timestamp);
+```
+## Best Practices
+1. **Log Sensitive Actions** - Always log auth, permission, and data changes
+2. **Don't Log Sensitive Data** - Exclude passwords, tokens from logs
+3. **Retention Policy** - Implement data retention per compliance requirements
+4. **Async Logging** - Use async logging to not block requests
+5. **Structured Data** - Use consistent action and resource names