npm - studiocms - Versions diffs - 0.3.0 → 0.4.0 - Mend

studiocms 0.3.0 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (263) hide show

package/frontend/pages/studiocms_api/auth/[provider]/_effects/index.ts DELETED Viewed

@@ -1,101 +0,0 @@
-import { type OAuthProviders, oAuthProviders } from 'studiocms:plugins/auth/providers';
-import { Effect, genLogger } from '@withstudiocms/effect';
-import type { APIContext, APIRoute } from 'astro';
-import { StudioCMSAPIError } from '#frontend/utils/errors.js';
-/**
- * Creates a standardized HTTP response for authentication provider errors.
- *
- * @param error - The error message to include in the response body.
- * @param status - The HTTP status code for the response.
- * @returns A `Response` object with a JSON body containing the error message and the specified status code.
- */
-export const ProviderResponse = (
-	error: string,
-	status: number
-): Effect.Effect<Response, never, never> =>
-	Effect.succeed(new Response(JSON.stringify({ error }), { status }));
-/**
- * Executes the provided API route handler function with the given context and returns its resulting Promise.
- *
- * @param fn - The API route handler function to execute.
- * @param context - The context object to pass to the handler function.
- * @returns A Promise that resolves to a Response object returned by the handler.
- */
-async function promisifyFn(fn: APIRoute, context: APIContext): Promise<Response> {
-	return await fn(context);
-}
-/**
- * Wraps an API route handler function in an Effect, converting it into a promise-based effectful computation.
- *
- * @param fn - The API route handler function to be executed.
- * @param context - The API context to be passed to the handler.
- * @returns An Effect that resolves with the result of the handler or rejects with an error if execution fails.
- *
- * @remarks
- * If the handler throws an error, it is caught and wrapped in a new `Error` with a descriptive message.
- */
-const promisify = Effect.fn(function* (fn: APIRoute, context: APIContext) {
-	return yield* Effect.tryPromise({
-		try: () => promisifyFn(fn, context),
-		catch: (error) =>
-			new StudioCMSAPIError({ message: `Failed to execute API route: ${error}`, cause: error }),
-	});
-});
-/**
- * Dispatches an authentication request to the appropriate OAuth provider handler.
- *
- * This generator function locates the specified provider by its `safeName` from the provided list,
- * checks if the provider is enabled, and then invokes the appropriate handler (`initSession` or `initCallback`)
- * for the authentication flow. If the provider or handler is not found, or if the provider is not enabled,
- * it yields an appropriate error response.
- *
- * @param context - The API context containing request parameters and other relevant data.
- * @param handler - The handler to invoke, either `'initSession'` or `'initCallback'`.
- * @param providers - An array of provider configurations, each containing a `safeName`, `enabled` flag,
- *                    and optional `initSession` and `initCallback` route handlers.
- * @returns A generator yielding the result of the provider handler or an error response.
- */
-const dispatchToAuthProvider = (
-	context: APIContext,
-	handler: 'initSession' | 'initCallback',
-	providers: OAuthProviders
-) =>
-	genLogger('OAuthAPIEffect.dispatchToAuthProvider')(function* () {
-		const provider = context.params.provider;
-		const matchedProvider = providers.find((p) => p.safeName === provider);
-		if (!matchedProvider) {
-			return yield* ProviderResponse('Provider not found', 404);
-		}
-		if (!matchedProvider.enabled) {
-			return yield* ProviderResponse('Provider is not configured', 403);
-		}
-		const handlerFn = matchedProvider[handler];
-		if (!handlerFn) {
-			return yield* ProviderResponse('Provider handler not found', 501);
-		}
-		return yield* promisify(handlerFn, context);
-	});
-export class OAuthAPIEffect extends Effect.Service<OAuthAPIEffect>()('OAuthAPIEffect', {
-	effect: genLogger('studiocms/routes/api/auth/[provider]/_shared')(function* () {
-		return {
-			initSession: (context: APIContext) =>
-				dispatchToAuthProvider(context, 'initSession', oAuthProviders),
-			initCallback: (context: APIContext) =>
-				dispatchToAuthProvider(context, 'initCallback', oAuthProviders),
-		};
-	}),
-}) {
-	// Export Dependency Providers
-	/**
-	 * Main Dependencies Provider
-	 */
-	static Provide = Effect.provide(OAuthAPIEffect.Default);
-}

package/frontend/pages/studiocms_api/auth/_shared.ts DELETED Viewed

@@ -1,52 +0,0 @@
-import {
-	createJsonResponse,
-	Effect,
-	genLogger,
-	parseFormDataEntryToString,
-	readAPIContextFormData,
-	readAPIContextJson,
-	Schema,
-} from '@withstudiocms/effect';
-import type { APIContext } from 'astro';
-import { AstroError } from 'astro/errors';
-import { z } from 'astro/zod';
-export class FormDataEntryFields extends Schema.Class<FormDataEntryFields>('FormDataEntryFields')({
-	title: Schema.String,
-	description: Schema.String,
-}) {}
-export class AuthAPIUtils extends Effect.Service<AuthAPIUtils>()(
-	'studiocms/routes/api/auth/shared/AuthAPIUtils',
-	{
-		effect: genLogger('studiocms/routes/api/auth/shared/AuthAPIUtils.effect')(function* () {
-			return {
-				parseFormDataEntryToString: parseFormDataEntryToString,
-				// biome-ignore lint/suspicious/noExplicitAny: This is a generic utility function
-				readJson: (context: APIContext) => readAPIContextJson<any>(context),
-				readFormData: (context: APIContext) => readAPIContextFormData(context),
-				badFormDataEntry: (title: string, description: string) =>
-					genLogger('studiocms/routes/api/auth/shared/AuthAPIUtils.badFormDataEntry')(function* () {
-						const error = yield* Schema.decode(FormDataEntryFields)({ title, description });
-						return createJsonResponse(
-							{ error },
-							{
-								status: 400,
-								statusText: 'Bad Request',
-							}
-						);
-					}),
-				validateEmail: (email: string) =>
-					Effect.try({
-						try: () => {
-							const emailSchema = z.coerce.string().email({ message: 'Email address is invalid' });
-							return emailSchema.safeParse(email);
-						},
-						catch: () => new AstroError('Failed to parse email with zod.'),
-					}),
-			};
-		}),
-	}
-) {
-	static Provide = Effect.provide(this.Default);
-}

package/frontend/pages/studiocms_api/dashboard/api-tokens.ts DELETED Viewed

@@ -1,115 +0,0 @@
-import { developerConfig } from 'studiocms:config';
-import { apiResponseLogger } from 'studiocms:logger';
-import { SDKCore } from 'studiocms:sdk';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-} from '@withstudiocms/effect';
-export const { POST, DELETE, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/api-tokens.POST')(function* () {
-				const sdk = yield* SDKCore;
-				// Check if demo mode is enabled
-				if (developerConfig.demoMode !== false) {
-					return apiResponseLogger(403, 'Demo mode is enabled, this action is not allowed.');
-				}
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Get Json Data
-				const jsonData = yield* readAPIContextJson<{
-					description: string;
-					user: string;
-				}>(ctx);
-				// Validate form data
-				if (!jsonData.description) {
-					return apiResponseLogger(400, 'Invalid form data, description is required');
-				}
-				if (!jsonData.user) {
-					return apiResponseLogger(400, 'Invalid form data, user is required');
-				}
-				const newToken = yield* sdk.REST_API.tokens.new(jsonData.user, jsonData.description);
-				return createJsonResponse({ token: newToken.key });
-			}),
-		DELETE: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/api-tokens.DELETE')(function* () {
-				const sdk = yield* SDKCore;
-				// Check if demo mode is enabled
-				if (developerConfig.demoMode !== false) {
-					return apiResponseLogger(403, 'Demo mode is enabled, this action is not allowed.');
-				}
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Get Json Data
-				const jsonData = yield* readAPIContextJson<{
-					tokenID: string;
-					userID: string;
-				}>(ctx);
-				// Validate form data
-				if (!jsonData.tokenID) {
-					return apiResponseLogger(400, 'Invalid form data, tokenID is required');
-				}
-				if (!jsonData.userID) {
-					return apiResponseLogger(400, 'Invalid form data, userID is required');
-				}
-				yield* sdk.REST_API.tokens.delete({ tokenId: jsonData.tokenID, userId: jsonData.userID });
-				return apiResponseLogger(200, 'Token deleted');
-			}),
-		OPTIONS: () => Effect.try(() => OptionsResponse({ allowedMethods: ['POST', 'DELETE'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'DELETE', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('API Error:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);

package/frontend/pages/studiocms_api/dashboard/config.ts DELETED Viewed

@@ -1,74 +0,0 @@
-import { apiResponseLogger } from 'studiocms:logger';
-import { SDKCore } from 'studiocms:sdk';
-import type { StudioCMSSiteConfig } from 'studiocms:sdk/types';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-} from '@withstudiocms/effect';
-export const { POST, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/config.POST')(function* () {
-				const sdk = yield* SDKCore;
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isOwner;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Get Json Data
-				const siteConfig =
-					yield* readAPIContextJson<Omit<StudioCMSSiteConfig, '_config_version'>>(ctx);
-				// Validate form data
-				if (!siteConfig.title) {
-					return apiResponseLogger(400, 'Invalid form data, title is required');
-				}
-				if (!siteConfig.description) {
-					return apiResponseLogger(400, 'Invalid form data, description is required');
-				}
-				if (!siteConfig.loginPageBackground) {
-					return apiResponseLogger(400, 'Invalid form data, loginPageBackground is required');
-				}
-				if (siteConfig.loginPageBackground === 'custom' && !siteConfig.loginPageCustomImage) {
-					return apiResponseLogger(400, 'Invalid form data, loginPageCustomImage is required');
-				}
-				yield* sdk.UPDATE.siteConfig(siteConfig);
-				return apiResponseLogger(200, 'Site config updated');
-			}),
-		OPTIONS: () => Effect.try(() => OptionsResponse({ allowedMethods: ['POST'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('API Error:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);

package/frontend/pages/studiocms_api/dashboard/content/diff.ts DELETED Viewed

@@ -1,73 +0,0 @@
-import { apiResponseLogger } from 'studiocms:logger';
-import { Notifications } from 'studiocms:notifier';
-import { SDKCore } from 'studiocms:sdk';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-} from '@withstudiocms/effect';
-export const { POST, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/diff.POST')(function* () {
-				const [notify, sdk] = yield* Effect.all([Notifications, SDKCore]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const jsonData = yield* readAPIContextJson<{
-					id: string;
-					type: 'data' | 'content' | 'both';
-				}>(ctx);
-				const { id, type } = jsonData;
-				if (!id || !type) {
-					return apiResponseLogger(400, 'Invalid ID or Type');
-				}
-				if (!['data', 'content', 'both'].includes(type)) {
-					return apiResponseLogger(400, 'Invalid Type');
-				}
-				const data = yield* sdk.diffTracking.revertToDiff(id, type);
-				yield* Effect.all([
-					sdk.CLEAR.pages,
-					notify.sendEditorNotification('page_updated', data.pageMetaData.end.title || ''),
-				]);
-				return apiResponseLogger(200, 'Page Reverted successfully');
-			}).pipe(Notifications.Provide),
-		OPTIONS: () => Effect.try(() => OptionsResponse({ allowedMethods: ['POST'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'OPTIONS'] },
-		onError: (error) => {
-			console.error('Error in diff API:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);

package/frontend/pages/studiocms_api/dashboard/content/folder.ts DELETED Viewed

@@ -1,220 +0,0 @@
-import { apiResponseLogger } from 'studiocms:logger';
-import { Notifications } from 'studiocms:notifier';
-import { SDKCore } from 'studiocms:sdk';
-import {
-	AllResponse,
-	createEffectAPIRoutes,
-	createJsonResponse,
-	Effect,
-	genLogger,
-	OptionsResponse,
-	readAPIContextJson,
-	Schema,
-} from '@withstudiocms/effect';
-import { StudioCMSPageData, StudioCMSPageFolderStructure } from '@withstudiocms/sdk/tables';
-interface FolderBase {
-	folderName: string;
-	parentFolder: string | null;
-}
-interface FolderEdit extends FolderBase {
-	id: string;
-}
-export const { POST, PATCH, DELETE, OPTIONS, ALL } = createEffectAPIRoutes(
-	{
-		POST: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/folder.POST')(function* () {
-				const [notify, sdk] = yield* Effect.all([Notifications, SDKCore]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isAdmin;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { folderName, parentFolder } = yield* readAPIContextJson<FolderBase>(ctx);
-				if (!folderName) {
-					return apiResponseLogger(400, 'Invalid form data, folderName is required');
-				}
-				yield* Effect.all([
-					sdk.POST.folder({
-						id: crypto.randomUUID(),
-						name: folderName,
-						parent: parentFolder || null,
-					}),
-					sdk.UPDATE.folderList,
-					sdk.UPDATE.folderTree,
-					notify.sendEditorNotification('new_folder', folderName),
-				]);
-				return apiResponseLogger(200, 'Folder created successfully');
-			}).pipe(Notifications.Provide),
-		PATCH: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/folder.PATCH')(function* () {
-				const [notify, sdk] = yield* Effect.all([Notifications, SDKCore]);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isEditor;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { id, folderName, parentFolder } = yield* readAPIContextJson<FolderEdit>(ctx);
-				if (!id) {
-					return apiResponseLogger(400, 'Invalid form data, id is required');
-				}
-				if (!folderName) {
-					return apiResponseLogger(400, 'Invalid form data, folderName is required');
-				}
-				// Ensure parent folder is not the same as the folder being edited
-				if (parentFolder === id) {
-					return apiResponseLogger(400, 'A folder cannot be its own parent');
-				}
-				yield* Effect.all([
-					sdk.UPDATE.folder({
-						id,
-						name: folderName,
-						parent: parentFolder || null,
-					}),
-					sdk.UPDATE.folderList,
-					sdk.UPDATE.folderTree,
-					notify.sendEditorNotification('folder_updated', folderName),
-				]);
-				return apiResponseLogger(200, 'Folder updated successfully');
-			}).pipe(Notifications.Provide),
-		DELETE: (ctx) =>
-			genLogger('studiocms/routes/api/dashboard/content/folder.DELETE')(function* () {
-				const [notify, sdk] = yield* Effect.all([Notifications, SDKCore]);
-				/**
-				 * Check for child folders before deletion
-				 */
-				const checkForChildrenFolders = sdk.dbService.withCodec({
-					encoder: Schema.String,
-					decoder: Schema.Array(StudioCMSPageFolderStructure),
-					callbackFn: (client, id) =>
-						client((db) =>
-							db
-								.selectFrom('StudioCMSPageFolderStructure')
-								.where('parent', '=', id)
-								.selectAll()
-								.execute()
-						),
-				});
-				/**
-				 * Check for child pages before deletion
-				 */
-				const checkForChildrenPages = sdk.dbService.withCodec({
-					encoder: Schema.String,
-					decoder: Schema.Array(StudioCMSPageData),
-					callbackFn: (client, id) =>
-						client((db) =>
-							db
-								.selectFrom('StudioCMSPageData')
-								.where('parentFolder', '=', id)
-								.selectAll()
-								.execute()
-						),
-				});
-				/**
-				 * Check for any children (folders or pages) before deletion
-				 */
-				const checkForChildren = Effect.fn((id: string) =>
-					Effect.all({
-						folders: checkForChildrenFolders(id),
-						pages: checkForChildrenPages(id),
-					}).pipe(
-						Effect.map(({ folders, pages }) => {
-							return { hasChildren: folders.length > 0 || pages.length > 0 };
-						})
-					)
-				);
-				// Get user data
-				const userData = ctx.locals.StudioCMS.security?.userSessionData;
-				// Check if user is logged in
-				if (!userData?.isLoggedIn) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				// Check if user has permission
-				const isAuthorized = ctx.locals.StudioCMS.security?.userPermissionLevel.isAdmin;
-				if (!isAuthorized) {
-					return apiResponseLogger(403, 'Unauthorized');
-				}
-				const { id } = yield* readAPIContextJson<{ id: string }>(ctx);
-				if (!id) {
-					return apiResponseLogger(400, 'Invalid form data, id is required');
-				}
-				const { name: folderName } = (yield* sdk.GET.folder(id)) || {};
-				if (!folderName) {
-					return apiResponseLogger(404, 'Folder not found');
-				}
-				const { hasChildren } = yield* checkForChildren(id);
-				if (hasChildren) {
-					return apiResponseLogger(
-						400,
-						'Folder cannot be deleted because it contains subfolders or pages'
-					);
-				}
-				yield* Effect.all([
-					sdk.DELETE.folder(id),
-					sdk.UPDATE.folderList,
-					sdk.UPDATE.folderTree,
-					notify.sendEditorNotification('folder_deleted', folderName),
-				]);
-				return apiResponseLogger(200, 'Folder deleted successfully');
-			}).pipe(Notifications.Provide),
-		OPTIONS: () =>
-			Effect.try(() => OptionsResponse({ allowedMethods: ['POST', 'PATCH', 'DELETE'] })),
-		ALL: () => Effect.try(() => AllResponse()),
-	},
-	{
-		cors: { methods: ['POST', 'PATCH', 'DELETE'] },
-		onError: (error) => {
-			console.error('Error in folder API:', error);
-			return createJsonResponse(
-				{ error: 'Internal Server Error' },
-				{
-					status: 500,
-				}
-			);
-		},
-	}
-);