Add ASN-based resource rule matching

- Add MaxMind ASN database integration
- Implement ASN lookup and matching in resource rule verification
- Add curated list of 100+ major ASNs (cloud, ISP, CDN, mobile carriers)
- Add ASN dropdown selector in resource rules UI with search functionality
- Support custom ASN input for unlisted ASNs
- Add 'ALL ASNs' special case handling (AS0)
- Cache ASN lookups with 5-minute TTL for performance
- Update validation schemas to support ASN match type

This allows administrators to create resource access rules based on
Autonomous System Numbers, similar to existing country-based rules.
Useful for restricting access by ISP, cloud provider, or mobile carrier.

src/lib/pullEnv.ts

@@ -15,7 +15,8 @@ export function pullEnv(): Env {
             resourceAccessTokenHeadersToken: process.env
                 .RESOURCE_ACCESS_TOKEN_HEADERS_TOKEN as string,
             reoClientId: process.env.REO_CLIENT_ID as string,
-            maxmind_db_path: process.env.MAXMIND_DB_PATH as string
+            maxmind_db_path: process.env.MAXMIND_DB_PATH as string,
+            maxmind_asn_path: process.env.MAXMIND_ASN_PATH as string
         },
         app: {
             environment: process.env.ENVIRONMENT as string,

src/lib/types/env.ts

@@ -19,6 +19,7 @@ export type Env = {
         resourceAccessTokenHeadersToken: string;
         reoClientId?: string;
         maxmind_db_path?: string;
+        maxmind_asn_path?: string;
     };
     email: {
         emailEnabled: boolean;