npm - te.js - Versions diffs - 2.1.0 → 2.1.2 - Mend

te.js 2.1.0 → 2.1.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (70) hide show

package/README.md +197 -196
package/auto-docs/analysis/handler-analyzer.js +58 -58
package/auto-docs/analysis/source-resolver.js +101 -101
package/auto-docs/constants.js +37 -37
package/auto-docs/docs-llm/index.js +7 -7
package/auto-docs/docs-llm/prompts.js +222 -222
package/auto-docs/docs-llm/provider.js +132 -132
package/auto-docs/index.js +146 -146
package/auto-docs/openapi/endpoint-processor.js +277 -277
package/auto-docs/openapi/generator.js +107 -107
package/auto-docs/openapi/level3.js +131 -131
package/auto-docs/openapi/spec-builders.js +244 -244
package/auto-docs/ui/docs-ui.js +186 -186
package/auto-docs/utils/logger.js +17 -17
package/auto-docs/utils/strip-usage.js +10 -10
package/cli/docs-command.js +315 -315
package/cli/fly-command.js +71 -71
package/cli/index.js +56 -56
package/cors/index.js +71 -0
package/database/index.js +165 -165
package/database/mongodb.js +146 -146
package/database/redis.js +201 -201
package/docs/README.md +36 -36
package/docs/ammo.md +362 -362
package/docs/api-reference.md +490 -490
package/docs/auto-docs.md +216 -216
package/docs/cli.md +152 -152
package/docs/configuration.md +275 -275
package/docs/database.md +390 -390
package/docs/error-handling.md +438 -438
package/docs/file-uploads.md +333 -333
package/docs/getting-started.md +214 -214
package/docs/middleware.md +355 -355
package/docs/rate-limiting.md +393 -393
package/docs/routing.md +302 -302
package/lib/llm/client.js +73 -0
package/lib/llm/index.js +7 -0
package/lib/llm/parse.js +89 -0
package/package.json +64 -62
package/rate-limit/algorithms/fixed-window.js +141 -141
package/rate-limit/algorithms/sliding-window.js +147 -147
package/rate-limit/algorithms/token-bucket.js +115 -115
package/rate-limit/base.js +165 -165
package/rate-limit/index.js +147 -147
package/rate-limit/storage/base.js +104 -104
package/rate-limit/storage/memory.js +101 -101
package/rate-limit/storage/redis.js +88 -88
package/server/ammo/body-parser.js +220 -220
package/server/ammo/dispatch-helper.js +103 -103
package/server/ammo/enhancer.js +57 -57
package/server/ammo.js +454 -415
package/server/endpoint.js +97 -74
package/server/error.js +9 -9
package/server/errors/code-context.js +125 -125
package/server/errors/llm-error-service.js +140 -140
package/server/files/helper.js +33 -33
package/server/files/uploader.js +143 -143
package/server/handler.js +158 -119
package/server/target.js +185 -175
package/server/targets/middleware-validator.js +22 -22
package/server/targets/path-validator.js +21 -21
package/server/targets/registry.js +160 -160
package/server/targets/shoot-validator.js +21 -21
package/te.js +428 -402
package/utils/auto-register.js +17 -17
package/utils/configuration.js +64 -64
package/utils/errors-llm-config.js +84 -84
package/utils/request-logger.js +43 -43
package/utils/status-codes.js +82 -82
package/utils/tejas-entrypoint-html.js +18 -18

package/docs/ammo.md CHANGED Viewed

@@ -1,362 +1,362 @@
-# Ammo - Request & Response
-The `Ammo` class is Tejas's unified request/response object. It wraps Node.js's `req` and `res` objects, providing a clean API for handling HTTP interactions.
-## Overview
-Every route handler receives an `ammo` object:
-```javascript
-target.register('/example', (ammo) => {
-  // ammo contains everything you need
-  console.log(ammo.method);   // 'GET'
-  console.log(ammo.payload);  // { query: 'params', body: 'data' }
-  ammo.fire({ success: true });
-});
-```
-## Properties
-### HTTP Method Flags
-Boolean flags for quick method checking:
-```javascript
-ammo.GET      // true if GET request
-ammo.POST     // true if POST request
-ammo.PUT      // true if PUT request
-ammo.DELETE   // true if DELETE request
-ammo.PATCH    // true if PATCH request
-ammo.HEAD     // true if HEAD request
-ammo.OPTIONS  // true if OPTIONS request
-```
-**Usage:**
-```javascript
-target.register('/resource', (ammo) => {
-  if (ammo.GET) {
-    return ammo.fire({ items: [] });
-  }
-  if (ammo.POST) {
-    return ammo.fire(201, { created: true });
-  }
-  ammo.notAllowed();
-});
-```
-### Request Data
-| Property | Type | Description |
-|----------|------|-------------|
-| `ammo.method` | string | HTTP method (`'GET'`, `'POST'`, etc.) |
-| `ammo.payload` | object | Combined body, query params, and route params |
-| `ammo.headers` | object | Request headers (lowercase keys) |
-| `ammo.ip` | string | Client IP address |
-### URL Data
-| Property | Type | Description |
-|----------|------|-------------|
-| `ammo.path` | string | Full URL path with query string |
-| `ammo.endpoint` | string | Path without query string |
-| `ammo.protocol` | string | `'http'` or `'https'` |
-| `ammo.hostname` | string | Request hostname |
-| `ammo.fullURL` | string | Complete URL |
-### Raw Objects
-| Property | Type | Description |
-|----------|------|-------------|
-| `ammo.req` | IncomingMessage | Node.js request object |
-| `ammo.res` | ServerResponse | Node.js response object |
-### Response Data
-| Property | Type | Description |
-|----------|------|-------------|
-| `ammo.dispatchedData` | any | The data sent via the most recent `fire()` call. `undefined` until `fire()` is called |
-## The Payload Object
-`ammo.payload` is a merged object containing data from three sources, applied in this order (later sources override earlier ones for the same key):
-1. **Query parameters** — From the URL query string
-2. **Request body** — Parsed JSON, URL-encoded form data, or multipart form data
-3. **Route parameters** — From parameterized routes (`:id`) — highest priority
-```javascript
-// Request: POST /users/123?notify=true
-// Body: { "name": "John", "email": "john@example.com" }
-target.register('/users/:id', (ammo) => {
-  console.log(ammo.payload);
-  // {
-  //   id: '123',           // Route param
-  //   notify: 'true',      // Query param
-  //   name: 'John',        // Body
-  //   email: 'john@example.com'  // Body
-  // }
-});
-```
-## Methods
-### fire() — Send Response
-The primary method for sending responses:
-```javascript
-// Send JSON with 200 status (default)
-ammo.fire({ message: 'Success' });
-// Send with specific status code
-ammo.fire(201, { id: 1, created: true });
-// Send just a status code
-ammo.fire(204);
-// Send plain text
-ammo.fire('Hello, World!');
-// Send HTML with custom content type
-ammo.fire(200, '<h1>Hello</h1>', 'text/html');
-```
-**All signatures:**
-| Call | Status | Body | Content-Type |
-|------|--------|------|-------------|
-| `fire()` | 204 | *(empty)* | — |
-| `fire("text")` | 200 | `text` | `text/plain` |
-| `fire({ json })` | 200 | JSON string | `application/json` |
-| `fire(201)` | 201 | status message | `text/plain` |
-| `fire(201, data)` | 201 | `data` | auto-detected |
-| `fire(200, html, "text/html")` | 200 | `html` | `text/html` |
-After `fire()` is called, the sent data is available as `ammo.dispatchedData`.
-### throw() — Send Error Response
-**One mechanism** for error responses: you don't log the error and send the response separately — `ammo.throw()` takes care of everything. The framework uses the same `ammo.throw()` when it catches an error, so one config, one behaviour. For intentional errors, call `ammo.throw()` (or pass an error); when [LLM-inferred errors](./error-handling.md#llm-inferred-errors) are enabled, call with no arguments and an LLM infers status and message from code context. Explicit code/message always override. See [Error Handling](./error-handling.md) and per-call options (e.g. `messageType`).
-```javascript
-// Explicit: status code and/or message
-ammo.throw(404);
-ammo.throw(404, 'User not found');
-ammo.throw(new TejError(400, 'Invalid input'));
-// When errors.llm.enabled: no args — LLM infers from code context (surrounding + upstream/downstream)
-ammo.throw();
-// Optional: pass caught error for secondary signal; LLM still uses code context (error stack) as primary
-ammo.throw(caughtErr);
-// Per-call: skip LLM or override message type
-ammo.throw({ useLlm: false });
-ammo.throw({ messageType: 'developer' });
-```
-**All `throw()` signatures:**
-| Call | Status | Message |
-|------|--------|---------|
-| `throw()` | 500 or LLM-inferred | Default or LLM-derived from **code context** (see [LLM-inferred errors](./error-handling.md#llm-inferred-errors)) |
-| `throw(404)` | 404 | Default message for that status code |
-| `throw(404, "msg")` | 404 | `"msg"` |
-| `throw(new TejError(code, msg))` | `code` | `msg` |
-| `throw(error)` (optional) | LLM-inferred | LLM-derived from code context (error stack used to find call site) |
-> **Note:** You don't need try-catch blocks in your handlers! Tejas automatically catches all errors and converts them to appropriate HTTP responses. Use `throw()` or `TejError` only for intentional, expected error conditions. See [Error Handling](./error-handling.md) for details.
-### redirect() — HTTP Redirect
-```javascript
-// Temporary redirect (302)
-ammo.redirect('/new-location');
-// Permanent redirect (301)
-ammo.redirect('/new-location', 301);
-// External redirect
-ammo.redirect('https://example.com');
-```
-### Convenience Error Methods
-```javascript
-ammo.notFound();     // Throws 404 Not Found
-ammo.notAllowed();   // Throws 405 Method Not Allowed
-ammo.unauthorized(); // Throws 401 Unauthorized
-```
-## Working with Headers
-### Reading Headers
-```javascript
-target.register('/example', (ammo) => {
-  const authHeader = ammo.headers['authorization'];
-  const contentType = ammo.headers['content-type'];
-  const userAgent = ammo.headers['user-agent'];
-  ammo.fire({ userAgent });
-});
-```
-### Setting Response Headers
-Use the underlying `res` object:
-```javascript
-target.register('/example', (ammo) => {
-  ammo.res.setHeader('X-Custom-Header', 'value');
-  ammo.res.setHeader('Cache-Control', 'max-age=3600');
-  ammo.fire({ data: 'with headers' });
-});
-```
-## Content Types
-`fire()` automatically sets `Content-Type` based on the data:
-| Data Type | Content-Type |
-|-----------|--------------|
-| Object/Array | `application/json` |
-| String | `text/plain` |
-| Buffer | `application/octet-stream` |
-Override with the third parameter:
-```javascript
-ammo.fire(200, htmlString, 'text/html');
-ammo.fire(200, xmlString, 'application/xml');
-```
-## Examples
-### REST API Resource
-```javascript
-import { Target, TejError } from 'te.js';
-const users = new Target('/users');
-// GET /users - List all
-// POST /users - Create new
-users.register('/', async (ammo) => {
-  if (ammo.GET) {
-    const { page = 1, limit = 10 } = ammo.payload;
-    const users = await getUsers(page, limit);
-    return ammo.fire({ users, page, limit });
-  }
-  if (ammo.POST) {
-    const { name, email } = ammo.payload;
-    if (!name || !email) {
-      throw new TejError(400, 'Name and email are required');
-    }
-    const user = await createUser({ name, email });
-    return ammo.fire(201, user);
-  }
-  ammo.notAllowed();
-});
-// GET /users/:id - Get one
-// PUT /users/:id - Update
-// DELETE /users/:id - Delete
-users.register('/:id', async (ammo) => {
-  const { id } = ammo.payload;
-  if (ammo.GET) {
-    const user = await getUser(id);
-    if (!user) throw new TejError(404, 'User not found');
-    return ammo.fire(user);
-  }
-  if (ammo.PUT) {
-    const { name, email } = ammo.payload;
-    const user = await updateUser(id, { name, email });
-    return ammo.fire(user);
-  }
-  if (ammo.DELETE) {
-    await deleteUser(id);
-    return ammo.fire(204);
-  }
-  ammo.notAllowed();
-});
-```
-### File Download
-```javascript
-import fs from 'fs';
-import path from 'path';
-target.register('/download/:filename', (ammo) => {
-  const { filename } = ammo.payload;
-  const filepath = path.join('uploads', filename);
-  if (!fs.existsSync(filepath)) {
-    throw new TejError(404, 'File not found');
-  }
-  const file = fs.readFileSync(filepath);
-  ammo.res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
-  ammo.fire(200, file, 'application/octet-stream');
-});
-```
-### Streaming Response
-For large responses, use the raw `res` object:
-```javascript
-target.register('/stream', (ammo) => {
-  ammo.res.setHeader('Content-Type', 'text/event-stream');
-  ammo.res.setHeader('Cache-Control', 'no-cache');
-  ammo.res.setHeader('Connection', 'keep-alive');
-  let count = 0;
-  const interval = setInterval(() => {
-    ammo.res.write(`data: ${JSON.stringify({ count: ++count })}\n\n`);
-    if (count >= 10) {
-      clearInterval(interval);
-      ammo.res.end();
-    }
-  }, 1000);
-});
-```
-## Adding Custom Properties
-Extend `ammo` in middleware:
-```javascript
-// In middleware
-const authMiddleware = async (ammo, next) => {
-  const token = ammo.headers.authorization;
-  const user = await verifyToken(token);
-  ammo.user = user;        // Add user
-  ammo.isAdmin = user.role === 'admin';
-  next();
-};
-// In handler
-target.register('/profile', authMiddleware, (ammo) => {
-  ammo.fire({
-    user: ammo.user,
-    isAdmin: ammo.isAdmin
-  });
-});
-```
+# Ammo - Request & Response
+The `Ammo` class is Tejas's unified request/response object. It wraps Node.js's `req` and `res` objects, providing a clean API for handling HTTP interactions.
+## Overview
+Every route handler receives an `ammo` object:
+```javascript
+target.register('/example', (ammo) => {
+  // ammo contains everything you need
+  console.log(ammo.method);   // 'GET'
+  console.log(ammo.payload);  // { query: 'params', body: 'data' }
+  ammo.fire({ success: true });
+});
+```
+## Properties
+### HTTP Method Flags
+Boolean flags for quick method checking:
+```javascript
+ammo.GET      // true if GET request
+ammo.POST     // true if POST request
+ammo.PUT      // true if PUT request
+ammo.DELETE   // true if DELETE request
+ammo.PATCH    // true if PATCH request
+ammo.HEAD     // true if HEAD request
+ammo.OPTIONS  // true if OPTIONS request
+```
+**Usage:**
+```javascript
+target.register('/resource', (ammo) => {
+  if (ammo.GET) {
+    return ammo.fire({ items: [] });
+  }
+  if (ammo.POST) {
+    return ammo.fire(201, { created: true });
+  }
+  ammo.notAllowed();
+});
+```
+### Request Data
+| Property | Type | Description |
+|----------|------|-------------|
+| `ammo.method` | string | HTTP method (`'GET'`, `'POST'`, etc.) |
+| `ammo.payload` | object | Combined body, query params, and route params |
+| `ammo.headers` | object | Request headers (lowercase keys) |
+| `ammo.ip` | string | Client IP address |
+### URL Data
+| Property | Type | Description |
+|----------|------|-------------|
+| `ammo.path` | string | Full URL path with query string |
+| `ammo.endpoint` | string | Path without query string |
+| `ammo.protocol` | string | `'http'` or `'https'` |
+| `ammo.hostname` | string | Request hostname |
+| `ammo.fullURL` | string | Complete URL |
+### Raw Objects
+| Property | Type | Description |
+|----------|------|-------------|
+| `ammo.req` | IncomingMessage | Node.js request object |
+| `ammo.res` | ServerResponse | Node.js response object |
+### Response Data
+| Property | Type | Description |
+|----------|------|-------------|
+| `ammo.dispatchedData` | any | The data sent via the most recent `fire()` call. `undefined` until `fire()` is called |
+## The Payload Object
+`ammo.payload` is a merged object containing data from three sources, applied in this order (later sources override earlier ones for the same key):
+1. **Query parameters** — From the URL query string
+2. **Request body** — Parsed JSON, URL-encoded form data, or multipart form data
+3. **Route parameters** — From parameterized routes (`:id`) — highest priority
+```javascript
+// Request: POST /users/123?notify=true
+// Body: { "name": "John", "email": "john@example.com" }
+target.register('/users/:id', (ammo) => {
+  console.log(ammo.payload);
+  // {
+  //   id: '123',           // Route param
+  //   notify: 'true',      // Query param
+  //   name: 'John',        // Body
+  //   email: 'john@example.com'  // Body
+  // }
+});
+```
+## Methods
+### fire() — Send Response
+The primary method for sending responses:
+```javascript
+// Send JSON with 200 status (default)
+ammo.fire({ message: 'Success' });
+// Send with specific status code
+ammo.fire(201, { id: 1, created: true });
+// Send just a status code
+ammo.fire(204);
+// Send plain text
+ammo.fire('Hello, World!');
+// Send HTML with custom content type
+ammo.fire(200, '<h1>Hello</h1>', 'text/html');
+```
+**All signatures:**
+| Call | Status | Body | Content-Type |
+|------|--------|------|-------------|
+| `fire()` | 204 | *(empty)* | — |
+| `fire("text")` | 200 | `text` | `text/plain` |
+| `fire({ json })` | 200 | JSON string | `application/json` |
+| `fire(201)` | 201 | status message | `text/plain` |
+| `fire(201, data)` | 201 | `data` | auto-detected |
+| `fire(200, html, "text/html")` | 200 | `html` | `text/html` |
+After `fire()` is called, the sent data is available as `ammo.dispatchedData`.
+### throw() — Send Error Response
+**One mechanism** for error responses: you don't log the error and send the response separately — `ammo.throw()` takes care of everything. The framework uses the same `ammo.throw()` when it catches an error, so one config, one behaviour. For intentional errors, call `ammo.throw()` (or pass an error); when [LLM-inferred errors](./error-handling.md#llm-inferred-errors) are enabled, call with no arguments and an LLM infers status and message from code context. Explicit code/message always override. See [Error Handling](./error-handling.md) and per-call options (e.g. `messageType`).
+```javascript
+// Explicit: status code and/or message
+ammo.throw(404);
+ammo.throw(404, 'User not found');
+ammo.throw(new TejError(400, 'Invalid input'));
+// When errors.llm.enabled: no args — LLM infers from code context (surrounding + upstream/downstream)
+ammo.throw();
+// Optional: pass caught error for secondary signal; LLM still uses code context (error stack) as primary
+ammo.throw(caughtErr);
+// Per-call: skip LLM or override message type
+ammo.throw({ useLlm: false });
+ammo.throw({ messageType: 'developer' });
+```
+**All `throw()` signatures:**
+| Call | Status | Message |
+|------|--------|---------|
+| `throw()` | 500 or LLM-inferred | Default or LLM-derived from **code context** (see [LLM-inferred errors](./error-handling.md#llm-inferred-errors)) |
+| `throw(404)` | 404 | Default message for that status code |
+| `throw(404, "msg")` | 404 | `"msg"` |
+| `throw(new TejError(code, msg))` | `code` | `msg` |
+| `throw(error)` (optional) | LLM-inferred | LLM-derived from code context (error stack used to find call site) |
+> **Note:** You don't need try-catch blocks in your handlers! Tejas automatically catches all errors and converts them to appropriate HTTP responses. Use `throw()` or `TejError` only for intentional, expected error conditions. See [Error Handling](./error-handling.md) for details.
+### redirect() — HTTP Redirect
+```javascript
+// Temporary redirect (302)
+ammo.redirect('/new-location');
+// Permanent redirect (301)
+ammo.redirect('/new-location', 301);
+// External redirect
+ammo.redirect('https://example.com');
+```
+### Convenience Error Methods
+```javascript
+ammo.notFound();     // Throws 404 Not Found
+ammo.notAllowed();   // Throws 405 Method Not Allowed
+ammo.unauthorized(); // Throws 401 Unauthorized
+```
+## Working with Headers
+### Reading Headers
+```javascript
+target.register('/example', (ammo) => {
+  const authHeader = ammo.headers['authorization'];
+  const contentType = ammo.headers['content-type'];
+  const userAgent = ammo.headers['user-agent'];
+  ammo.fire({ userAgent });
+});
+```
+### Setting Response Headers
+Use the underlying `res` object:
+```javascript
+target.register('/example', (ammo) => {
+  ammo.res.setHeader('X-Custom-Header', 'value');
+  ammo.res.setHeader('Cache-Control', 'max-age=3600');
+  ammo.fire({ data: 'with headers' });
+});
+```
+## Content Types
+`fire()` automatically sets `Content-Type` based on the data:
+| Data Type | Content-Type |
+|-----------|--------------|
+| Object/Array | `application/json` |
+| String | `text/plain` |
+| Buffer | `application/octet-stream` |
+Override with the third parameter:
+```javascript
+ammo.fire(200, htmlString, 'text/html');
+ammo.fire(200, xmlString, 'application/xml');
+```
+## Examples
+### REST API Resource
+```javascript
+import { Target, TejError } from 'te.js';
+const users = new Target('/users');
+// GET /users - List all
+// POST /users - Create new
+users.register('/', async (ammo) => {
+  if (ammo.GET) {
+    const { page = 1, limit = 10 } = ammo.payload;
+    const users = await getUsers(page, limit);
+    return ammo.fire({ users, page, limit });
+  }
+  if (ammo.POST) {
+    const { name, email } = ammo.payload;
+    if (!name || !email) {
+      throw new TejError(400, 'Name and email are required');
+    }
+    const user = await createUser({ name, email });
+    return ammo.fire(201, user);
+  }
+  ammo.notAllowed();
+});
+// GET /users/:id - Get one
+// PUT /users/:id - Update
+// DELETE /users/:id - Delete
+users.register('/:id', async (ammo) => {
+  const { id } = ammo.payload;
+  if (ammo.GET) {
+    const user = await getUser(id);
+    if (!user) throw new TejError(404, 'User not found');
+    return ammo.fire(user);
+  }
+  if (ammo.PUT) {
+    const { name, email } = ammo.payload;
+    const user = await updateUser(id, { name, email });
+    return ammo.fire(user);
+  }
+  if (ammo.DELETE) {
+    await deleteUser(id);
+    return ammo.fire(204);
+  }
+  ammo.notAllowed();
+});
+```
+### File Download
+```javascript
+import fs from 'fs';
+import path from 'path';
+target.register('/download/:filename', (ammo) => {
+  const { filename } = ammo.payload;
+  const filepath = path.join('uploads', filename);
+  if (!fs.existsSync(filepath)) {
+    throw new TejError(404, 'File not found');
+  }
+  const file = fs.readFileSync(filepath);
+  ammo.res.setHeader('Content-Disposition', `attachment; filename="${filename}"`);
+  ammo.fire(200, file, 'application/octet-stream');
+});
+```
+### Streaming Response
+For large responses, use the raw `res` object:
+```javascript
+target.register('/stream', (ammo) => {
+  ammo.res.setHeader('Content-Type', 'text/event-stream');
+  ammo.res.setHeader('Cache-Control', 'no-cache');
+  ammo.res.setHeader('Connection', 'keep-alive');
+  let count = 0;
+  const interval = setInterval(() => {
+    ammo.res.write(`data: ${JSON.stringify({ count: ++count })}\n\n`);
+    if (count >= 10) {
+      clearInterval(interval);
+      ammo.res.end();
+    }
+  }, 1000);
+});
+```
+## Adding Custom Properties
+Extend `ammo` in middleware:
+```javascript
+// In middleware
+const authMiddleware = async (ammo, next) => {
+  const token = ammo.headers.authorization;
+  const user = await verifyToken(token);
+  ammo.user = user;        // Add user
+  ammo.isAdmin = user.role === 'admin';
+  next();
+};
+// In handler
+target.register('/profile', authMiddleware, (ammo) => {
+  ammo.fire({
+    user: ammo.user,
+    isAdmin: ammo.isAdmin
+  });
+});
+```