npm - @aifabrix/builder - Versions diffs - 2.43.0 → 2.44.1 - Mend

@aifabrix/builder 2.43.0 → 2.44.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (371) hide show

package/.cursor/rules/anchor-docs.mdc +15 -0
package/.cursor/rules/cli-layout.mdc +75 -0
package/.cursor/rules/project-rules.mdc +8 -0
package/.npmrc.token +1 -0
package/.nyc_output/55e9d034-ddab-4579-a706-e02a91d75c91.json +1 -0
package/.nyc_output/processinfo/55e9d034-ddab-4579-a706-e02a91d75c91.json +1 -0
package/.nyc_output/processinfo/index.json +1 -0
package/README.md +1 -1
package/anchor-docs/README.md +10 -0
package/anchor-docs/_TEMPLATE +24 -0
package/bin/aifabrix.js +13 -4
package/integration/hubspot-test/README.md +31 -0
package/integration/hubspot-test/create-hubspot.js +5 -5
package/integration/hubspot-test/hubspot-test-datasource-company.json +58 -462
package/integration/hubspot-test/hubspot-test-datasource-contact.json +61 -555
package/integration/hubspot-test/hubspot-test-datasource-deal.json +63 -506
package/integration/hubspot-test/hubspot-test-datasource-users.json +42 -83
package/integration/hubspot-test/hubspot-test-deploy.json +3 -3
package/integration/hubspot-test/test-dataplane-down-tests.js +1 -7
package/integration/hubspot-test/test-dataplane-down.js +3 -3
package/integration/hubspot-test/test.js +35 -43
package/integration/hubspot-test/wizard-hubspot-test-headless.yaml +23 -0
package/integration/roundtrip-test-local/README.md +144 -0
package/integration/roundtrip-test-local/application.yaml +13 -0
package/integration/roundtrip-test-local/env.template +15 -0
package/integration/roundtrip-test-local/roundtrip-test-local-datasource-roundtrip-test-company.yaml +14 -0
package/integration/roundtrip-test-local/roundtrip-test-local-deploy.json +61 -0
package/integration/roundtrip-test-local/roundtrip-test-local-system.yaml +25 -0
package/integration/roundtrip-test-local2/README.md +144 -0
package/integration/roundtrip-test-local2/application.yaml +13 -0
package/integration/roundtrip-test-local2/env.template +15 -0
package/integration/roundtrip-test-local2/roundtrip-test-local2-datasource-company.yaml +31 -0
package/integration/roundtrip-test-local2/roundtrip-test-local2-deploy.json +86 -0
package/integration/roundtrip-test-local2/roundtrip-test-local2-system.yaml +25 -0
package/integration/test/wizard.yaml +8 -0
package/jest.config.default.js +10 -0
package/jest.config.integration.fixtures.js +22 -0
package/jest.config.integration.js +21 -18
package/jest.config.isolated.js +10 -0
package/jest.projects.js +301 -0
package/lib/api/certificates.api.js +62 -0
package/lib/api/datasources-core.api.js +3 -3
package/lib/api/dev-mtls-request.js +110 -0
package/lib/api/dev-server-https.js +145 -0
package/lib/api/dev.api.js +133 -144
package/lib/api/index.js +11 -3
package/lib/api/pipeline.api.js +67 -20
package/lib/api/types/certificates.types.js +48 -0
package/lib/api/types/dev.types.js +4 -3
package/lib/api/types/pipeline.types.js +8 -5
package/lib/api/types/validation-run.types.js +56 -0
package/lib/api/validation-run.api.js +111 -0
package/lib/api/validation-runner.js +109 -0
package/lib/app/certification-show-enrich.js +129 -0
package/lib/app/certification-verify-rows.js +60 -0
package/lib/app/config.js +1 -1
package/lib/app/deploy-status-display.js +2 -2
package/lib/app/deploy.js +7 -6
package/lib/app/display.js +2 -1
package/lib/app/dockerfile.js +3 -2
package/lib/app/down.js +2 -1
package/lib/app/helpers.js +6 -5
package/lib/app/index.js +27 -8
package/lib/app/list.js +7 -6
package/lib/app/push.js +4 -3
package/lib/app/register.js +16 -7
package/lib/app/rotate-secret.js +14 -13
package/lib/app/run-container-start.js +184 -0
package/lib/app/run-docker-fallback.js +108 -0
package/lib/app/run-env-compose.js +30 -42
package/lib/app/run-helpers.js +49 -126
package/lib/app/run-infra-requirements.js +30 -0
package/lib/app/run-resolve-image.js +21 -0
package/lib/app/run.js +74 -21
package/lib/app/show-display.js +44 -1
package/lib/app/show.js +93 -9
package/lib/build/index.js +13 -10
package/lib/certification/cli-cert-sync-skip.js +21 -0
package/lib/certification/merge-certification-from-artifact.js +185 -0
package/lib/certification/post-unified-cert-sync.js +33 -0
package/lib/certification/sync-after-external-command.js +52 -0
package/lib/certification/sync-system-certification.js +197 -0
package/lib/cli/index.js +2 -0
package/lib/cli/setup-app.help.js +67 -0
package/lib/cli/setup-app.js +61 -121
package/lib/cli/setup-app.test-commands.js +195 -0
package/lib/cli/setup-auth.js +19 -5
package/lib/cli/setup-credential-deployment.js +22 -8
package/lib/cli/setup-dev-path-commands.js +124 -0
package/lib/cli/setup-dev.js +170 -113
package/lib/cli/setup-environment.js +7 -1
package/lib/cli/setup-external-system.js +84 -23
package/lib/cli/setup-infra.js +126 -47
package/lib/cli/setup-parameters.js +32 -0
package/lib/cli/setup-secrets.js +137 -18
package/lib/cli/setup-service-user.js +1 -1
package/lib/cli/setup-utility.js +54 -22
package/lib/commands/app-down.js +5 -7
package/lib/commands/app-install.js +14 -7
package/lib/commands/app-logs.js +13 -10
package/lib/commands/app-shell.js +4 -1
package/lib/commands/app-test.js +25 -19
package/lib/commands/app.js +32 -11
package/lib/commands/auth-config.js +6 -6
package/lib/commands/auth-status.js +4 -3
package/lib/commands/credential-env.js +4 -3
package/lib/commands/credential-list.js +5 -4
package/lib/commands/credential-push.js +4 -3
package/lib/commands/datasource-unified-test-cli.js +428 -0
package/lib/commands/datasource-unified-test-cli.options.js +191 -0
package/lib/commands/datasource-unified-test-e2e-cli-helpers.js +106 -0
package/lib/commands/datasource-validation-cli.js +143 -0
package/lib/commands/datasource.js +125 -95
package/lib/commands/deployment-list.js +6 -5
package/lib/commands/dev-cli-handlers.js +122 -18
package/lib/commands/dev-down.js +4 -3
package/lib/commands/dev-init.js +231 -116
package/lib/commands/dev-show-display.js +473 -0
package/lib/commands/login-credentials.js +3 -2
package/lib/commands/login-device.js +4 -3
package/lib/commands/login.js +5 -4
package/lib/commands/logout.js +8 -7
package/lib/commands/parameters-validate.js +54 -0
package/lib/commands/repair-datasource.js +314 -68
package/lib/commands/repair-env-template.js +2 -2
package/lib/commands/repair.js +21 -3
package/lib/commands/secrets-list.js +23 -12
package/lib/commands/secrets-remove-all.js +220 -0
package/lib/commands/secrets-remove.js +21 -12
package/lib/commands/secrets-set.js +21 -12
package/lib/commands/secrets-validate.js +4 -4
package/lib/commands/secure.js +10 -9
package/lib/commands/service-user.js +26 -25
package/lib/commands/test-e2e-external.js +27 -1
package/lib/commands/up-common.js +3 -2
package/lib/commands/up-dataplane.js +29 -16
package/lib/commands/up-miso.js +19 -29
package/lib/commands/upload.js +149 -39
package/lib/commands/wizard-core-helpers.js +1 -1
package/lib/commands/wizard-dataplane.js +4 -3
package/lib/commands/wizard-helpers.js +3 -3
package/lib/commands/wizard.js +2 -2
package/lib/core/admin-secrets.js +14 -5
package/lib/core/audit-logger.js +12 -4
package/lib/core/config-attach-extensions.js +46 -0
package/lib/core/config-runtime-paths.js +29 -0
package/lib/core/config.js +55 -56
package/lib/core/diff.js +3 -2
package/lib/core/ensure-encryption-key.js +1 -1
package/lib/core/secrets-ensure-infra.js +77 -0
package/lib/core/secrets-ensure.js +120 -64
package/lib/core/secrets-env-write.js +35 -7
package/lib/core/secrets-infra-placeholder-sync.js +61 -0
package/lib/core/secrets.js +200 -37
package/lib/core/templates-env.js +4 -3
package/lib/datasource/abac-validator.js +1 -10
package/lib/datasource/deploy.js +75 -53
package/lib/datasource/field-reference-validator.js +9 -6
package/lib/datasource/integration-context.js +63 -0
package/lib/datasource/list.js +8 -7
package/lib/datasource/log-viewer.js +189 -67
package/lib/datasource/resolve-app.js +4 -4
package/lib/datasource/test-e2e.js +113 -146
package/lib/datasource/test-integration.js +114 -122
package/lib/datasource/unified-validation-run-body.js +68 -0
package/lib/datasource/unified-validation-run-post.js +23 -0
package/lib/datasource/unified-validation-run-resolve.js +43 -0
package/lib/datasource/unified-validation-run.js +93 -0
package/lib/datasource/validate.js +157 -13
package/lib/deployment/deployer.js +4 -3
package/lib/deployment/environment.js +7 -6
package/lib/deployment/push.js +17 -8
package/lib/external-system/delete.js +4 -3
package/lib/external-system/deploy.js +166 -53
package/lib/external-system/download-helpers.js +1 -1
package/lib/external-system/download.js +7 -6
package/lib/external-system/generator.js +92 -6
package/lib/external-system/integration-test-dispatch.js +26 -0
package/lib/external-system/test-execution.js +5 -1
package/lib/external-system/test-helpers.js +0 -4
package/lib/external-system/test-system-level-helpers.js +110 -0
package/lib/external-system/test-system-level.js +83 -44
package/lib/external-system/test.js +59 -8
package/lib/generator/builders.js +23 -11
package/lib/generator/deploy-manifest-azure-kv.js +81 -0
package/lib/generator/external.js +16 -4
package/lib/generator/helpers.js +58 -3
package/lib/generator/index.js +4 -0
package/lib/generator/split-readme.js +12 -7
package/lib/generator/split-variables.js +2 -1
package/lib/generator/split.js +1 -1
package/lib/generator/wizard-readme.js +3 -3
package/lib/generator/wizard.js +8 -8
package/lib/infrastructure/compose.js +70 -7
package/lib/infrastructure/helpers-docker-check.js +67 -0
package/lib/infrastructure/helpers.js +203 -42
package/lib/infrastructure/index.js +31 -18
package/lib/infrastructure/services.js +21 -67
package/lib/internal/fs-real-sync.js +104 -0
package/lib/internal/node-fs.js +98 -0
package/lib/parameters/database-secret-values.js +173 -0
package/lib/parameters/infra-kv-discovery.js +121 -0
package/lib/parameters/infra-parameter-catalog.js +458 -0
package/lib/parameters/infra-parameter-validate.js +64 -0
package/lib/schema/application-schema.json +37 -17
package/lib/schema/datasource-test-run.schema.json +493 -0
package/lib/schema/deployment-rules.yaml +102 -63
package/lib/schema/external-datasource.schema.json +1200 -442
package/lib/schema/external-system.schema.json +203 -5
package/lib/schema/flag-map-validation-run.json +31 -0
package/lib/schema/infra-parameter.schema.json +106 -0
package/lib/schema/infra.parameter.yaml +421 -0
package/lib/schema/type/credential-auth-templates.json +40 -0
package/lib/schema/type/document-storage.json +226 -0
package/lib/schema/type/message-service.json +123 -0
package/lib/schema/type/vector-store.json +88 -0
package/lib/utils/aifabrix-runtime-config-dir.js +132 -0
package/lib/utils/api-error-handler.js +2 -2
package/lib/utils/api.js +77 -17
package/lib/utils/app-register-api.js +3 -2
package/lib/utils/app-register-auth.js +1 -1
package/lib/utils/app-register-config.js +4 -4
package/lib/utils/app-register-display.js +3 -2
package/lib/utils/app-register-validator.js +3 -2
package/lib/utils/app-run-containers.js +26 -22
package/lib/utils/app-scoped-config.js +31 -0
package/lib/utils/app-service-env-from-builder.js +164 -0
package/lib/utils/build-copy.js +1 -1
package/lib/utils/build-helpers.js +20 -20
package/lib/utils/build-resolve-image.js +165 -0
package/lib/utils/cli-layout-chalk.js +8 -0
package/lib/utils/cli-test-layout-chalk.js +267 -0
package/lib/utils/cli-utils.js +88 -11
package/lib/utils/compose-db-passwords.js +138 -0
package/lib/utils/compose-generate-docker-compose.js +216 -0
package/lib/utils/compose-generator.js +197 -291
package/lib/utils/compose-miso-env.js +18 -0
package/lib/utils/compose-traefik-ingress-base.js +158 -0
package/lib/utils/config-paths.js +166 -7
package/lib/utils/config-scoped-resources-preference.js +41 -0
package/lib/utils/configuration-env-resolver.js +11 -8
package/lib/utils/controller-deployment-outcome.js +68 -0
package/lib/utils/credential-display.js +2 -2
package/lib/utils/credential-secrets-env.js +5 -5
package/lib/utils/dataplane-pipeline-warning.js +4 -3
package/lib/utils/datasource-test-run-capability-scope.js +43 -0
package/lib/utils/datasource-test-run-certificate-tty.js +82 -0
package/lib/utils/datasource-test-run-debug-display.js +137 -0
package/lib/utils/datasource-test-run-debug-slice.js +93 -0
package/lib/utils/datasource-test-run-display.js +459 -0
package/lib/utils/datasource-test-run-exit.js +83 -0
package/lib/utils/datasource-test-run-legacy-adapter.js +93 -0
package/lib/utils/datasource-test-run-report-version.js +51 -0
package/lib/utils/datasource-test-run-schema-sync.js +59 -0
package/lib/utils/datasource-test-run-tty-log.js +81 -0
package/lib/utils/datasource-validation-watch.js +266 -0
package/lib/utils/declarative-url-ports.js +47 -0
package/lib/utils/derive-env-key-from-client-id.js +41 -0
package/lib/utils/dev-ca-install.js +185 -23
package/lib/utils/dev-cert-helper.js +266 -17
package/lib/utils/dev-hosts-helper.js +307 -0
package/lib/utils/dev-init-cert-hints.js +37 -0
package/lib/utils/dev-init-health-messages.js +52 -0
package/lib/utils/dev-init-resolve.js +86 -0
package/lib/utils/dev-init-ssh-merge.js +65 -0
package/lib/utils/dev-ssh-config-helper.js +196 -0
package/lib/utils/dev-user-groups.js +93 -0
package/lib/utils/docker-build.js +42 -17
package/lib/utils/docker-exec.js +28 -0
package/lib/utils/docker-manifest-public-port.js +116 -0
package/lib/utils/docker-not-running-hint.js +52 -0
package/lib/utils/docker.js +98 -11
package/lib/utils/ensure-dev-certs-for-remote-docker.js +192 -0
package/lib/utils/env-config-loader.js +10 -91
package/lib/utils/env-copy.js +19 -10
package/lib/utils/env-map.js +35 -8
package/lib/utils/env-template.js +2 -2
package/lib/utils/environment-scoped-resources.js +144 -0
package/lib/utils/error-formatter.js +92 -13
package/lib/utils/error-formatters/http-status-errors.js +6 -5
package/lib/utils/error-formatters/network-errors.js +2 -1
package/lib/utils/error-formatters/permission-errors.js +2 -1
package/lib/utils/error-formatters/validation-errors.js +2 -1
package/lib/utils/external-readme.js +8 -1
package/lib/utils/external-system-display.js +242 -136
package/lib/utils/external-system-local-test-tty.js +389 -0
package/lib/utils/external-system-readiness-core.js +377 -0
package/lib/utils/external-system-readiness-deploy-display.js +270 -0
package/lib/utils/external-system-readiness-display-internals.js +150 -0
package/lib/utils/external-system-readiness-display.js +186 -0
package/lib/utils/external-system-system-test-tty-overview.js +120 -0
package/lib/utils/external-system-system-test-tty.js +417 -0
package/lib/utils/external-system-test-helpers.js +24 -6
package/lib/utils/external-system-validators.js +30 -12
package/lib/utils/health-check-url.js +119 -0
package/lib/utils/health-check.js +59 -25
package/lib/utils/help-builder.js +11 -8
package/lib/utils/image-version.js +4 -8
package/lib/utils/infra-containers.js +4 -7
package/lib/utils/infra-env-defaults.js +162 -0
package/lib/utils/infra-status-display.js +167 -0
package/lib/utils/infra-status.js +16 -8
package/lib/utils/local-secrets.js +3 -4
package/lib/utils/paths.js +148 -47
package/lib/utils/port-resolver.js +10 -23
package/lib/utils/redis-env-scope.js +62 -0
package/lib/utils/register-aifabrix-shell-env.js +204 -0
package/lib/utils/remote-builder-validation.js +99 -0
package/lib/utils/remote-dev-auth.js +117 -21
package/lib/utils/remote-docker-env.js +67 -15
package/lib/utils/remote-secrets-loader.js +13 -4
package/lib/utils/resolve-docker-image-ref.js +124 -0
package/lib/utils/schema-loader.js +22 -9
package/lib/utils/secrets-bash-kv.js +25 -0
package/lib/utils/secrets-generator.js +169 -49
package/lib/utils/secrets-helpers.js +70 -59
package/lib/utils/secrets-kv-scope.js +60 -0
package/lib/utils/secrets-utils.js +32 -38
package/lib/utils/secrets-validation.js +3 -1
package/lib/utils/secrets-yaml-preserve.js +109 -0
package/lib/utils/ssh-key-helper.js +4 -2
package/lib/utils/template-helpers.js +2 -2
package/lib/utils/test-log-writer.js +3 -3
package/lib/utils/token-manager.js +1 -2
package/lib/utils/url-declarative-public-base.js +188 -0
package/lib/utils/url-declarative-resolve-build.js +493 -0
package/lib/utils/url-declarative-resolve-load-doc.js +51 -0
package/lib/utils/url-declarative-resolve.js +220 -0
package/lib/utils/url-declarative-token-parse.js +74 -0
package/lib/utils/url-declarative-url-flags.js +50 -0
package/lib/utils/url-declarative-vdir-inactive-env.js +99 -0
package/lib/utils/url-public-path-prefix.js +34 -0
package/lib/utils/urls-local-registry.js +220 -0
package/lib/utils/validation-report-tty-kit.js +77 -0
package/lib/utils/validation-run-poll.js +112 -0
package/lib/utils/validation-run-post-retry.js +85 -0
package/lib/utils/validation-run-request.js +116 -0
package/lib/utils/variable-transformer.js +21 -4
package/lib/utils/yaml-preserve.js +33 -14
package/lib/validation/datasource-warnings.js +56 -0
package/lib/validation/env-template-auth.js +1 -1
package/lib/validation/external-manifest-validator.js +27 -7
package/lib/validation/validate-display.js +37 -31
package/lib/validation/validate-external-cert-sync.js +23 -0
package/lib/validation/validate.js +8 -14
package/lib/validation/validator-unresolved-placeholders.js +98 -0
package/lib/validation/validator.js +22 -65
package/lib/validation/wizard-config-validator.js +2 -1
package/package.json +9 -4
package/scripts/check-datasource-test-run-schema-sync.js +34 -0
package/scripts/diagnose-cli.js +150 -0
package/scripts/install-local.js +307 -55
package/scripts/pnpm-global-remove.js +48 -0
package/templates/README.md +15 -2
package/templates/applications/dataplane/application.yaml +52 -2
package/templates/applications/dataplane/env.template +79 -17
package/templates/applications/dataplane/rbac.yaml +8 -0
package/templates/applications/keycloak/application.yaml +9 -1
package/templates/applications/keycloak/env.template +15 -6
package/templates/applications/miso-controller/application.yaml +10 -2
package/templates/applications/miso-controller/env.template +42 -12
package/templates/applications/miso-controller/rbac.yaml +5 -0
package/templates/external-system/README.md.hbs +20 -7
package/templates/external-system/deploy.js.hbs +5 -5
package/templates/external-system/external-datasource.yaml.hbs +197 -118
package/templates/infra/compose.yaml.hbs +33 -16
package/templates/infra/servers.json.hbs +3 -1
package/templates/python/docker-compose.hbs +16 -0
package/templates/typescript/docker-compose.hbs +16 -0
package/lib/api/external-test.api.js +0 -111
package/lib/schema/env-config.yaml +0 -60

package/lib/utils/external-system-system-test-tty.js ADDED Viewed

@@ -0,0 +1,417 @@
+/**
+ * @fileoverview System-level TTY renderer for DatasourceTestRun fan-out results (plan §17).
+ */
+'use strict';
+const chalk = require('chalk');
+const logger = require('./logger');
+const {
+  SEP,
+  statusGlyph
+} = require('./datasource-test-run-display');
+const {
+  sectionTitle,
+  headerKeyValue,
+  formatStatusKeyValue,
+  integrationFooterLine,
+  colorRollupPrefixedLine,
+  metadata: metaGray
+} = require('./cli-test-layout-chalk');
+const {
+  formatDataQualityLines,
+  readinessLineFromDataReadiness,
+  verdictLineFromEnvelope
+} = require('./validation-report-tty-kit');
+const {
+  logCapabilitiesOverview: logCapabilitiesOverviewSection,
+  logIntegrationHealthSection: logIntegrationHealthSectionBlock
+} = require('./external-system-system-test-tty-overview');
+/**
+  * @param {'ok'|'warn'|'fail'|'skipped'|null} st
+  * @returns {number}
+  */
+function statusRank(st) {
+  if (st === 'fail') return 0;
+  if (st === 'warn') return 1;
+  if (st === 'ok') return 2;
+  if (st === 'skipped') return 3;
+  return 4;
+}
+/**
+ * Per-row status for system rollup and tables: CLI/transport failure overrides envelope-only OK.
+ * @param {{ skipped?: boolean, success?: boolean, datasourceTestRun?: { status?: string }|null }} r
+ * @returns {'ok'|'warn'|'fail'|'skipped'}
+ */
+function rollupRowStatus(r) {
+  if (r && r.skipped) return 'skipped';
+  if (r && r.success === false) return 'fail';
+  const env = r && r.datasourceTestRun;
+  return env && typeof env.status === 'string' ? env.status : 'ok';
+}
+/**
+  * @param {Array<{ key: string, skipped?: boolean, datasourceTestRun?: Object|null, success?: boolean }>} rows
+  * @returns {'ok'|'warn'|'fail'|'skipped'}
+  */
+function deriveSystemStatus(rows) {
+  if (!Array.isArray(rows) || rows.length === 0) return 'ok';
+  const statuses = rows.map(rollupRowStatus);
+  if (statuses.some(s => s === 'fail')) return 'fail';
+  if (statuses.some(s => s === 'warn')) return 'warn';
+  if (statuses.every(s => s === 'skipped')) return 'skipped';
+  // Mixed ok/skipped => warn per plan.
+  return statuses.every(s => s === 'ok') ? 'ok' : 'warn';
+}
+function bucketIssueSeverity(issue) {
+  const sev = issue && issue.severity ? String(issue.severity).toLowerCase() : '';
+  if (sev === 'error' || sev === 'critical' || sev === 'high' || sev === 'fatal') return 'fail';
+  if (sev === 'warn' || sev === 'warning' || sev === 'medium') return 'warn';
+  return null;
+}
+/**
+  * Minimal heuristic rollups backed by envelope fields (no engine codenames).
+  * @param {Object|null|undefined} env
+  * @returns {'ok'|'warn'|'fail'}
+  */
+function dqFromEnvelope(env) {
+  const v = env && env.validation;
+  const st = v && typeof v.status === 'string' ? String(v.status) : null;
+  if (st === 'fail') return 'fail';
+  if (st === 'warn') return 'warn';
+  const issues = v && Array.isArray(v.issues) ? v.issues : [];
+  if (issues.some(i => bucketIssueSeverity(i) === 'fail')) return 'fail';
+  if (issues.some(i => bucketIssueSeverity(i) === 'warn')) return 'warn';
+  return 'ok';
+}
+/**
+  * @param {Array} rows
+  * @returns {{ schema: 'ok'|'warn'|'fail', consistency: 'ok'|'warn'|'fail', reliability: 'ok'|'warn'|'fail' }}
+  */
+function deriveSystemDataQuality(rows) {
+  const envs = rows
+    .map(r => (r && r.datasourceTestRun && typeof r.datasourceTestRun === 'object' ? r.datasourceTestRun : null))
+    .filter(Boolean);
+  if (envs.length === 0) {
+    return { schema: 'warn', consistency: 'warn', reliability: 'warn' };
+  }
+  const picks = envs.map(dqFromEnvelope);
+  const agg = picks.some(x => x === 'fail') ? 'fail' : picks.some(x => x === 'warn') ? 'warn' : 'ok';
+  return { schema: agg, consistency: agg, reliability: agg };
+}
+/**
+  * @param {Array} rows
+  * @returns {'ready'|'partial'|'not_ready'|null}
+  */
+function deriveSystemReadiness(rows) {
+  const envs = rows
+    .map(r => (r && r.datasourceTestRun && typeof r.datasourceTestRun === 'object' ? r.datasourceTestRun : null))
+    .filter(Boolean);
+  const drs = envs
+    .map(e => e.validation && e.validation.dataReadiness)
+    .filter(Boolean);
+  if (drs.length === 0) return null;
+  if (drs.some(x => x === 'not_ready')) return 'not_ready';
+  if (drs.some(x => x === 'partial')) return 'partial';
+  return 'ready';
+}
+function countByStatus(rows) {
+  const counts = { ok: 0, warn: 0, fail: 0, skipped: 0 };
+  for (const r of rows) {
+    const s = rollupRowStatus(r);
+    if (counts[s] !== undefined) counts[s] += 1;
+  }
+  return counts;
+}
+function pickBlockingDatasourceKey(rows) {
+  const keys = rows
+    .map(r => {
+      const env = r && r.datasourceTestRun;
+      const st = rollupRowStatus(r);
+      const key =
+        env && env.datasourceKey
+          ? String(env.datasourceKey)
+          : r && r.key
+            ? String(r.key)
+            : '';
+      return { key, st };
+    })
+    .filter(x => x.key);
+  keys.sort((a, b) => {
+    const d = statusRank(a.st) - statusRank(b.st);
+    if (d !== 0) return d;
+    return a.key.localeCompare(b.key);
+  });
+  return keys.length ? keys[0].key : null;
+}
+function issueKey(issue) {
+  const code = issue && issue.code ? String(issue.code) : '';
+  const msg = issue && issue.message ? String(issue.message) : '';
+  return `${code}::${msg}`.toLowerCase();
+}
+function issueSortKey(it) {
+  return `${statusRank(it.severity)}::${it.datasourceKey}::${it.message}`.toLowerCase();
+}
+function extractRowIssues(row) {
+  const env = row && row.datasourceTestRun;
+  const datasourceKey = (env && env.datasourceKey) || (row && row.key) || 'datasource';
+  const issues = env && env.validation && Array.isArray(env.validation.issues) ? env.validation.issues : [];
+  const envStatus = env && typeof env.status === 'string' ? env.status : null;
+  return { datasourceKey: String(datasourceKey), issues, envStatus };
+}
+function toIssueItem(datasourceKey, envStatus, iss) {
+  const sev =
+    bucketIssueSeverity(iss) ||
+    (envStatus === 'fail' ? 'fail' : envStatus === 'warn' ? 'warn' : 'ok');
+  const msg = iss && iss.message ? String(iss.message) : iss && iss.code ? String(iss.code) : 'Issue';
+  return { datasourceKey, message: msg, severity: sev };
+}
+function collectKeyIssues(rows, cap) {
+  /** @type {{ datasourceKey: string, message: string, severity: 'fail'|'warn'|'ok' }[]} */
+  const out = [];
+  const seen = new Set();
+  for (const row of rows) {
+    const { datasourceKey, issues, envStatus } = extractRowIssues(row);
+    for (const iss of issues) {
+      const k = `${datasourceKey}::${issueKey(iss)}`;
+      if (seen.has(k)) continue;
+      seen.add(k);
+      out.push(toIssueItem(datasourceKey, envStatus, iss));
+    }
+  }
+  out.sort((a, b) => issueSortKey(a).localeCompare(issueSortKey(b)));
+  return out.slice(0, Math.max(0, cap));
+}
+function certificateBucket(env) {
+  const cert = env && env.certificate;
+  if (!cert || typeof cert !== 'object') return { status: null, level: null };
+  return {
+    status: cert.status ? String(cert.status) : null,
+    level: cert.level ? String(cert.level) : null
+  };
+}
+function systemCertStatus(rows) {
+  const certs = rows
+    .map(r => (r && r.datasourceTestRun ? certificateBucket(r.datasourceTestRun) : { status: null, level: null }))
+    .filter(c => c.status !== null);
+  if (certs.length === 0) return null;
+  if (certs.some(c => c.status === 'not_passed')) return 'not_passed';
+  return 'passed';
+}
+function drillDownCommand(runType, datasourceKey) {
+  if (!datasourceKey) return null;
+  if (runType === 'e2e') return `aifabrix datasource test-e2e ${datasourceKey}`;
+  if (runType === 'integration') return `aifabrix datasource test-integration ${datasourceKey}`;
+  return `aifabrix datasource test ${datasourceKey}`;
+}
+function logSystemHeader(results, runType, systemStatus) {
+  logger.log('');
+  logger.log(sectionTitle('Server test results'));
+  logger.log('');
+  logger.log(headerKeyValue('System:', results.systemKey));
+  logger.log(
+    headerKeyValue(
+      'Run:',
+      runType === 'e2e' ? 'test-e2e (dataplane)' : 'test-integration (dataplane)'
+    )
+  );
+  logger.log(formatStatusKeyValue(systemStatus, statusGlyph(systemStatus)));
+  logger.log('');
+}
+function logVerdictAndSummary(runType, systemStatus, certStatus, counts) {
+  logger.log(sectionTitle('Verdict:'));
+  logger.log(chalk.white(verdictLineFromEnvelope(systemStatus, certStatus, runType)));
+  logger.log('');
+  logger.log(sectionTitle('Summary:'));
+  logger.log(
+    chalk.white(
+      `${counts.ok + counts.warn + counts.fail} datasource(s): ${counts.ok} ok, ${counts.warn} warn, ${counts.fail} fail${counts.skipped ? `, ${counts.skipped} skipped` : ''}`
+    )
+  );
+  logger.log('');
+  logger.log(metaGray(SEP));
+  logger.log('');
+}
+function logDataQualityAndReadiness(rows) {
+  logger.log(sectionTitle('Data Quality:'));
+  const dq = deriveSystemDataQuality(rows);
+  const dqLines = formatDataQualityLines(dq, {
+    schema: 'structural coverage aggregated across datasources.',
+    consistency: 'issues aggregated across datasources.',
+    reliability: 'issues aggregated across datasources.'
+  });
+  dqLines.map(colorRollupPrefixedLine).forEach(l => logger.log(l));
+  const readiness = deriveSystemReadiness(rows);
+  const readinessLine = readinessLineFromDataReadiness(readiness);
+  if (readinessLine) {
+    logger.log('');
+    logger.log(colorRollupPrefixedLine(readinessLine));
+  }
+  logger.log('');
+  logger.log(metaGray(SEP));
+  logger.log('');
+}
+function logDatasourceTable(rows, counts, verbose) {
+  logger.log(sectionTitle('Datasources:'));
+  logger.log('');
+  if (!verbose && counts.ok > 0) {
+    logger.log(chalk.gray(`✔ ${counts.ok} datasource(s) fully ready`));
+  }
+  function rowStatus(r) {
+    return rollupRowStatus(r);
+  }
+  function readinessLabel(env, st) {
+    const ready = env && env.validation ? env.validation.dataReadiness : null;
+    if (ready === 'not_ready') return 'Not ready';
+    if (ready === 'partial') return 'Partial';
+    if (ready === 'ready') return 'Ready';
+    if (st === 'fail') return 'Not ready';
+    if (st === 'warn') return 'Partial';
+    return 'Ready';
+  }
+  function shouldListRow(r) {
+    if (verbose) return true;
+    const st = rowStatus(r);
+    return st === 'warn' || st === 'fail';
+  }
+  const listRows = rows.filter(shouldListRow);
+  for (const r of listRows) {
+    const env = r && r.datasourceTestRun;
+    const key = (env && env.datasourceKey) || (r && r.key) || 'datasource';
+    const st = rowStatus(r);
+    const readyLabel = readinessLabel(env, st);
+    logger.log(`${statusGlyph(st)} ${chalk.white(String(key).padEnd(22))} (${readyLabel})`);
+  }
+}
+function logBlockingDatasource(blocking) {
+  if (!blocking) return;
+  logger.log('');
+  logger.log(chalk.white(`Blocking datasource: ${blocking}`));
+}
+function logKeyIssuesSection(rows) {
+  const issues = collectKeyIssues(rows, 5);
+  if (issues.length === 0) return false;
+  logger.log('');
+  logger.log(metaGray(SEP));
+  logger.log('');
+  logger.log(sectionTitle('Key issues:'));
+  logger.log('');
+  let cur = null;
+  for (const it of issues) {
+    if (cur !== it.datasourceKey) {
+      cur = it.datasourceKey;
+      logger.log(chalk.white(cur));
+    }
+    logger.log(chalk.white(`- ${it.message}`));
+  }
+  return true;
+}
+function logCertificationSection(rows) {
+  const certSt = systemCertStatus(rows);
+  if (!certSt) return;
+  logger.log('');
+  logger.log(metaGray(SEP));
+  logger.log('');
+  logger.log(sectionTitle('Certification:'));
+  logger.log('');
+  logger.log(chalk.white(`System level: ${certSt === 'passed' ? '✔ Achieved' : '✖ Not achieved'}`));
+  logger.log('');
+  logger.log(chalk.white('Breakdown:'));
+  for (const r of rows) {
+    const env = r && r.datasourceTestRun;
+    if (!env) continue;
+    const cert = certificateBucket(env);
+    if (!cert.status) continue;
+    const g = cert.status === 'passed' ? '✔' : '✖';
+    const tier = cert.level ? cert.level : '(no level)';
+    logger.log(chalk.white(`- ${env.datasourceKey}: ${g} ${tier}`));
+  }
+}
+function logUseAndFooter(results, runType, systemStatus, blocking) {
+  logger.log('');
+  logger.log(metaGray(SEP));
+  logger.log('');
+  logger.log(sectionTitle('Use:'));
+  const cmd = drillDownCommand(runType, blocking);
+  logger.log(chalk.white(cmd || 'aifabrix datasource test <datasourceKey>'));
+  logger.log(
+    integrationFooterLine(
+      results.success,
+      systemStatus,
+      'All server tests passed.',
+      'Server tests completed with warnings.',
+      'Some server tests failed.'
+    )
+  );
+}
+/**
+  * Render system-level aggregate (plan §17) for DatasourceTestRun wrapper results.
+  * @param {Object} results
+  * @param {Object} opts
+  * @param {'integration'|'e2e'} opts.runType
+  * @param {boolean} opts.verbose
+  */
+function displaySystemAggregateDatasourceTestRuns(results, opts) {
+  const rows = Array.isArray(results.datasourceResults) ? results.datasourceResults : [];
+  const runType = opts.runType === 'e2e' ? 'e2e' : 'integration';
+  const systemStatus = deriveSystemStatus(rows);
+  const counts = countByStatus(rows);
+  const blocking = pickBlockingDatasourceKey(rows);
+  logSystemHeader(results, runType, systemStatus);
+  logVerdictAndSummary(runType, systemStatus, systemCertStatus(rows), counts);
+  logDataQualityAndReadiness(rows);
+  logDatasourceTable(rows, counts, Boolean(opts.verbose));
+  logBlockingDatasource(blocking);
+  logKeyIssuesSection(rows);
+  const ttyIo = { log: logger.log.bind(logger), chalk, metaGray, sectionTitle, statusGlyph, SEP };
+  logCapabilitiesOverviewSection(rows, ttyIo);
+  logIntegrationHealthSectionBlock(rows, runType, ttyIo);
+  logCertificationSection(rows);
+  logUseAndFooter(results, runType, systemStatus, blocking);
+}
+module.exports = {
+  displaySystemAggregateDatasourceTestRuns,
+  deriveSystemStatus,
+  deriveSystemDataQuality,
+  deriveSystemReadiness,
+  rollupRowStatus,
+  pickBlockingDatasourceKey,
+  collectKeyIssues,
+  systemCertStatus,
+  drillDownCommand
+};

package/lib/utils/external-system-test-helpers.js CHANGED Viewed

@@ -12,9 +12,32 @@
 const fs = require('fs').promises;
 const path = require('path');
 const { testDatasourceViaPipeline } = require('../api/pipeline.api');
+const { integrationResultFromEnvelope, firstIssueMessage } = require('./datasource-test-run-legacy-adapter');
 /** Pipeline test endpoints accept client credentials; do not enforce Bearer-only */
+/**
+ * Parse successful pipeline test body (envelope or legacy).
+ * @param {Object} body
+ * @param {string} datasourceKey
+ * @returns {Object}
+ * @throws {Error} When body indicates failure
+ */
+function parsePipelineTestResponseBody(body, datasourceKey) {
+  if (body && typeof body === 'object' && typeof body.status === 'string' && body.datasourceKey) {
+    if (body.status === 'fail') {
+      const errMsg = firstIssueMessage(body) || 'Test failed';
+      throw new Error(`Test endpoint failed: ${errMsg}`);
+    }
+    return integrationResultFromEnvelope(body, datasourceKey);
+  }
+  if (body.success === false) {
+    const errMsg = body.error || body.formattedError || 'Test failed';
+    throw new Error(`Test endpoint failed: ${errMsg}`);
+  }
+  return body.data || body;
+}
 /**
  * Retry API call with exponential backoff
  * @async
@@ -73,13 +96,8 @@ async function callPipelineTestEndpoint({ systemKey, datasourceKey, payloadTempl
   if (!response.success || !response.data) {
     throw new Error(`Test endpoint failed: ${response.error || response.formattedError || 'Unknown error'}`);
   }
-  // When 200 with success: false in body, pass through; caller interprets via data.success
-  if (response.data?.success === false) {
-    const errMsg = response.data?.error || response.data?.formattedError || 'Test failed';
-    throw new Error(`Test endpoint failed: ${errMsg}`);
-  }
-  return response.data.data || response.data;
+  return parsePipelineTestResponseBody(response.data, datasourceKey);
 }
 /**

package/lib/utils/external-system-validators.js CHANGED Viewed

@@ -119,24 +119,38 @@ function checkPathExistsInPayload(fieldPath, payloadTemplate) {
 }
 /**
- * Validates dimensions object structure and content
- * @param {Object} dimensions - Dimensions object to validate
+ * Root dimensions (dimensionBinding): local bindings as dimKey → metadata path string for validateDimensions.
+ * @param {Object} datasource - Datasource config
+ * @returns {Object} Map suitable for validateDimensions
+ */
+function getDimensionsMapForValidation(datasource) {
+  const root = datasource?.dimensions;
+  if (!root || typeof root !== 'object' || Array.isArray(root)) return {};
+  const out = {};
+  for (const [dimKey, binding] of Object.entries(root)) {
+    if (binding && typeof binding === 'object' && typeof binding.field === 'string') {
+      out[dimKey] = `metadata.${binding.field}`;
+    }
+  }
+  return out;
+}
+/**
+ * Validates dimensions object structure and content (path strings).
+ * @param {Object} dimensions - dimKey → path (e.g. metadata.country)
  * @param {Object} results - Results object to update
  */
 function validateDimensions(dimensions, results) {
-  if (!dimensions) {
-    results.errors.push('fieldMappings.dimensions is required (dimensions-first model)');
-    results.valid = false;
+  if (!dimensions || typeof dimensions !== 'object' || Array.isArray(dimensions)) {
+    results.warnings.push('No dimensions configured (schema v2.4: use root dimensions; optional but recommended for ABAC)');
     return;
   }
-  if (typeof dimensions !== 'object' || Array.isArray(dimensions)) {
-    results.errors.push('fieldMappings.dimensions must be an object mapping dimension keys to attribute paths');
-    results.valid = false;
+  if (Object.keys(dimensions).length === 0) {
+    results.warnings.push('Dimensions object is empty');
     return;
   }
-  // Validate dimension keys and values
   for (const [dimensionKey, attributePath] of Object.entries(dimensions)) {
     if (!/^[a-zA-Z0-9_]+$/.test(dimensionKey)) {
       results.errors.push(`Invalid dimension key '${dimensionKey}': dimension key must contain only letters, numbers, and underscores`);
@@ -180,7 +194,7 @@ function validateAttributesStructure(attributes, results) {
  */
 function validateSingleAttribute(attributeName, attributeConfig, payloadTemplate, results) {
   if (!attributeConfig || typeof attributeConfig !== 'object') {
-    results.errors.push(`Attribute '${attributeName}' must be an object with expression and type`);
+    results.errors.push(`Attribute '${attributeName}' must be an object with expression`);
     results.valid = false;
     return;
   }
@@ -224,8 +238,7 @@ function validateFieldMappings(datasource, testPayload) {
     return results;
   }
-  // Validate dimensions (required in new schema)
-  validateDimensions(datasource.fieldMappings.dimensions, results);
+  validateDimensions(getDimensionsMapForValidation(datasource), results);
   // Validate attributes structure (required in new schema)
   const attributes = validateAttributesStructure(datasource.fieldMappings.attributes, results);
@@ -322,6 +335,11 @@ function validateAgainstSchema(data, schema) {
     validateSchema: false
   });
   addFormats(ajv);
+  // Some schemas (e.g. external-datasource.schema.json) reference these by $id (aifabrix://schema/type/*).
+  // Adding them up-front keeps validation offline-safe and avoids unresolved $ref failures.
+  ajv.addSchema(require('../schema/type/document-storage.json'));
+  ajv.addSchema(require('../schema/type/message-service.json'));
+  ajv.addSchema(require('../schema/type/vector-store.json'));
   // Remove $schema for draft-2020-12 to avoid AJV issues
   const schemaCopy = { ...schema };
   if (schemaCopy.$schema && schemaCopy.$schema.includes('2020-12')) {

package/lib/utils/health-check-url.js ADDED Viewed

@@ -0,0 +1,119 @@
+/**
+ * Health check URL resolution helpers.
+ *
+ * @fileoverview Compute health check URL using declarative public URL logic (Traefik/frontDoorRouting)
+ */
+'use strict';
+const { computePublicUrlBaseString } = require('./url-declarative-public-base');
+const { parseDeveloperIdNum } = require('./declarative-url-ports');
+/**
+ * Join URL path segments with exactly one slash between them.
+ * @param {string} a
+ * @param {string} b
+ * @returns {string}
+ */
+function joinUrlPath(a, b) {
+  const left = String(a || '').replace(/\/+$/, '');
+  const right = String(b || '').replace(/^\/+/, '');
+  if (!left) return `/${right}`;
+  if (!right) return left || '/';
+  return `${left}/${right}`;
+}
+/**
+ * Convert a frontDoorRouting.pattern (Traefik/Front Door wildcard route) into a concrete mount path.
+ * Example: "/auth/*" -> "/auth"
+ *
+ * @param {string} pattern
+ * @returns {string}
+ */
+function normalizeFrontDoorPatternForHealth(pattern) {
+  let p = String(pattern || '').trim();
+  if (!p) return '/';
+  if (!p.startsWith('/')) p = `/${p}`;
+  // Drop wildcard suffixes used for routing.
+  p = p.replace(/\/\*+$/, '');
+  p = p.replace(/\*+$/, '');
+  // Drop trailing path params like "/foo/{bar}" if present (health is mounted at the base).
+  p = p.replace(/\/\{[^}]+\}$/, '');
+  // Normalize slashes and trailing slash.
+  p = p.replace(/\/{2,}/g, '/');
+  p = p.replace(/\/+$/, '');
+  return p || '/';
+}
+/**
+ * @param {Object|null} appConfig
+ * @returns {boolean}
+ */
+function frontDoorEnabled(appConfig) {
+  return Boolean(appConfig && appConfig.frontDoorRouting && appConfig.frontDoorRouting.enabled === true);
+}
+/**
+ * @param {Object|null} appConfig
+ * @returns {string|null}
+ */
+function frontDoorPattern(appConfig) {
+  const p = appConfig && appConfig.frontDoorRouting ? appConfig.frontDoorRouting.pattern : null;
+  return (typeof p === 'string' && p.trim()) ? p.trim() : null;
+}
+/**
+ * Compute the Traefik front-door health check URL when applicable.
+ *
+ * Returns null when Traefik/frontDoorRouting isn't active or cannot be resolved.
+ *
+ * @async
+ * @param {string} appName
+ * @param {number} healthCheckPort
+ * @param {Object|null} appConfig
+ * @returns {Promise<string|null>}
+ */
+async function computeTraefikHealthCheckUrl(appName, healthCheckPort, appConfig) {
+  if (!frontDoorEnabled(appConfig)) return null;
+  const pattern = frontDoorPattern(appConfig);
+  if (!pattern) return null;
+  const coreConfig = require('../core/config');
+  const userCfg = await coreConfig.getConfig();
+  if (!(userCfg && userCfg.traefik)) return null;
+  const infraTlsEnabled = Boolean(userCfg && userCfg.tlsEnabled);
+  const remoteServer = await coreConfig.getRemoteServer();
+  const developerIdRaw = await coreConfig.getDeveloperId();
+  const developerIdNum = parseDeveloperIdNum(developerIdRaw);
+  // Health checks originate from the CLI on the host, not from inside a container.
+  const profile = 'local';
+  const fd = appConfig.frontDoorRouting;
+  const listenPort = Number(appConfig?.port || 3000);
+  const publicBase = computePublicUrlBaseString({
+    traefik: true,
+    pathActive: true,
+    hostTemplate: fd.host,
+    tls: fd.tls,
+    developerIdRaw,
+    remoteServer,
+    profile,
+    listenPort,
+    developerIdNum,
+    infraTlsEnabled
+  });
+  const healthCheckPath = appConfig?.healthCheck?.path || '/health';
+  const mountPath = normalizeFrontDoorPatternForHealth(pattern);
+  const baseWithFrontDoor = joinUrlPath(publicBase, mountPath);
+  return joinUrlPath(baseWithFrontDoor, healthCheckPath);
+}
+module.exports = {
+  joinUrlPath,
+  normalizeFrontDoorPatternForHealth,
+  computeTraefikHealthCheckUrl
+};