UNPKG

better-auth-feature-flags

Version:

Ship features safely with feature flags, A/B testing, and progressive rollouts - Better Auth plugin for modern release management

kriasoft.com/better-auth/

kriasoft/better-auth

267 lines (251 loc) 7.27 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
// SPDX-FileCopyrightText: 2025-present Kriasoft // SPDX-License-Identifier: MIT import type { LRUCache } from "./lru-cache"; import type { ContextCollectionOptions } from "./middleware/context"; import type { HeaderConfig, ValidationConfig } from "./middleware/validation"; import type { EvaluationContext, EvaluationReason } from "./schema"; import type { StorageAdapter } from "./storage/types"; /** Type utilities for schema validation and type inference */ /** Extracts boolean flag keys, constrains isEnabled() to boolean flags only */ export type BooleanFlags<Schema extends Record<string, any>> = { [K in keyof Schema]: Schema[K] extends boolean ? K : never; }[keyof Schema]; /** Validates schema contains only serializable flag types */ export type ValidateFlagSchema<T> = T extends Record<string, any> ? { [K in keyof T]: T[K] extends | boolean | string | number | null | undefined ? T[K] : T[K] extends Array<infer U> ? U extends boolean | string | number | null | undefined ? T[K] : never : never; } : never; /** Infers specific flag value type from schema */ export type InferFlagValue< Schema extends Record<string, any>, K extends keyof Schema, > = Schema[K]; /** Type guard for boolean-only flags */ export function isBooleanFlag<Schema extends Record<string, any>>( schema: Schema, key: keyof Schema, ): key is BooleanFlags<Schema> { return typeof schema[key] === "boolean"; } /** Plugin context shared across components, storage, and middleware */ export interface PluginContext { /** Better Auth instance (type not exported directly) */ auth: any; /** Storage adapter for flag persistence */ storage: StorageAdapter; /** Normalized plugin configuration */ config: PluginConfig; /** LRU cache for flag evaluations */ cache: LRUCache<CacheEntry>; } /** Normalized plugin configuration with defaults applied */ export interface PluginConfig { storage: "memory" | "database" | "redis"; debug: boolean; analytics: { trackUsage: boolean; trackPerformance: boolean; }; adminAccess: { enabled: boolean; roles: string[]; }; multiTenant: { enabled: boolean; useOrganizations: boolean; }; caching: { enabled: boolean; ttl: number; maxSize?: number; }; audit: { enabled: boolean; retentionDays: number; }; contextCollection: ContextCollectionOptions; customHeaders?: { enabled: boolean; whitelist?: HeaderConfig[]; strict?: boolean; logInvalid?: boolean; }; contextValidation?: ValidationConfig; flags: Record<string, StaticFlagConfig>; } /** Static flag configuration defined in plugin options */ export interface StaticFlagConfig { /** Flag enabled state */ enabled?: boolean; /** Default value when no rules match */ default?: boolean; /** Percentage rollout (0-100) */ rolloutPercentage?: number; /** User targeting rules */ targeting?: { /** Required user roles */ roles?: string[]; /** Specific user IDs */ userIds?: string[]; /** Custom attribute matching */ attributes?: Record<string, any>; }; /** A/B test variants with weights */ variants?: Array<{ /** Variant identifier */ key: string; /** Variant value */ value: any; /** Traffic allocation percentage */ weight?: number; }>; } /** Cache entry storing flag evaluation results with metadata */ export interface CacheEntry { /** Evaluated flag value */ value: any; /** A/B test variant if applicable */ variant?: string; /** Evaluation reason (rule_match, percentage_rollout, etc.) */ reason: string; /** Additional evaluation metadata */ metadata?: Record<string, any>; /** Evaluation timestamp */ timestamp: number; /** Cache TTL in milliseconds */ ttl: number; } /** Individual flag evaluation request */ export interface EvaluationRequest { /** Flag key to evaluate */ key: string; /** User ID for targeting */ userId?: string; /** Additional evaluation context */ context?: EvaluationContext; /** Fallback value */ defaultValue?: any; } /** Batch flag evaluation request for multiple flags */ export interface BatchEvaluationRequest { /** Flag keys to evaluate */ keys: string[]; /** User ID for targeting */ userId?: string; /** Shared evaluation context */ context?: EvaluationContext; /** Default values by flag key */ defaults?: Record<string, any>; } /** Audit log entry for tracking flag operations */ export interface AuditLogEntry { /** User performing action */ userId: string; /** Action type (create, update, delete) */ action: string; /** Flag key if applicable */ flagKey?: string; /** Flag ID if applicable (takes precedence over flagKey) */ flagId?: string; /** Organization ID for multi-tenant scoping */ organizationId?: string; /** Additional context data */ metadata?: Record<string, any>; /** Action timestamp */ timestamp?: Date; } /** Analytics tracking data for flag evaluations */ export interface EvaluationTracking { /** Flag key that was evaluated */ flagKey: string; /** User ID for tracking */ userId: string; /** Organization ID for multi-tenant scoping */ organizationId?: string; /** Evaluation context data */ context?: EvaluationContext; /** Evaluation timestamp */ timestamp: Date; /** Evaluated flag value */ value?: any; /** A/B test variant if applicable */ variant?: string; /** Evaluation reason */ reason?: EvaluationReason; } // Public plugin options (moved from src/index.ts to avoid circular deps) export interface FeatureFlagsOptions { flags?: { [key: string]: { enabled?: boolean; default?: boolean; rolloutPercentage?: number; // Percentage 0-100 targeting?: { roles?: string[]; userIds?: string[]; attributes?: Record<string, any>; }; variants?: Array<{ key: string; value: any; weight?: number; // Distribution weight, must sum to 100 if specified }>; }; }; storage?: "memory" | "database" | "redis"; debug?: boolean; analytics?: { trackUsage?: boolean; trackPerformance?: boolean; }; adminAccess?: { enabled?: boolean; roles?: string[]; }; multiTenant?: { enabled?: boolean; useOrganizations?: boolean; }; caching?: { enabled?: boolean; ttl?: number; // seconds maxSize?: number; // Maximum number of cache entries }; audit?: { enabled?: boolean; retentionDays?: number; }; /** * Configure what context data to collect for flag evaluation. * By default, only basic session data is collected for privacy. */ contextCollection?: ContextCollectionOptions; /** * Configure custom header processing for feature flag evaluation. * Provides a secure whitelist-based approach for header extraction. */ customHeaders?: { enabled?: boolean; whitelist?: HeaderConfig[]; strict?: boolean; logInvalid?: boolean; }; /** * Configure validation rules for context data. * Helps prevent memory exhaustion and security issues. */ contextValidation?: ValidationConfig; }