@cfast/admin 0.0.1 → 0.2.0

package/README.md

@@ -23,7 +23,7 @@ This means:
 - **Permission-aware by default.** The admin panel uses `@cfast/db` under the hood. Admins see everything. Moderators see what moderators see. The admin UI doesn't bypass your permission system — it uses it.
 - **User management built in.** View users, assign roles, revoke roles, impersonate users. Integrated with `@cfast/auth`.
 - **Customizable, not locked in.** Override any view, any field, any action. But the default is good enough to ship.
-- **UI delegated to `@cfast/ui`.** Admin generates configuration. `@cfast/ui/joy` renders it.
+- **UI delegated to `@cfast/ui`.** Admin generates configuration. `@cfast/joy` renders it.
 
 ## API
 

package/dist/index.js

@@ -1432,7 +1432,7 @@ import Input2 from "@mui/joy/Input";
 import Table3 from "@mui/joy/Table";
 import Sheet4 from "@mui/joy/Sheet";
 import Stack4 from "@mui/joy/Stack";
-import { RoleBadge } from "@cfast/ui/joy";
+import { RoleBadge } from "@cfast/joy";
 import { jsx as jsx7, jsxs as jsxs7 } from "react/jsx-runtime";
 function UserList({
   items,
@@ -1570,7 +1570,7 @@ import Chip2 from "@mui/joy/Chip";
 import Select from "@mui/joy/Select";
 import Option from "@mui/joy/Option";
 import Divider2 from "@mui/joy/Divider";
-import { RoleBadge as RoleBadge2, AvatarWithInitials } from "@cfast/ui/joy";
+import { RoleBadge as RoleBadge2, AvatarWithInitials } from "@cfast/joy";
 import { Fragment as Fragment2, jsx as jsx8, jsxs as jsxs8 } from "react/jsx-runtime";
 function UserDetail({
   targetUser,

package/llms.txt

@@ -0,0 +1,167 @@
+# @cfast/admin
+
+> A complete admin panel generated from your Drizzle schema, with role management and user impersonation.
+
+## When to use
+
+Use `@cfast/admin` when you need an admin panel for a cfast app. It reads your Drizzle schema, generates list/detail/create/edit views, and provides user management with role assignment and impersonation. Mount it on a single React Router route.
+
+## Key concepts
+
+- **Schema introspection**: `introspectSchema()` reads Drizzle tables, infers column types/labels/relations, and produces `AdminTableMeta[]` config.
+- **Thin layer**: Admin generates configuration. Rendering is delegated to `@cfast/ui` components (`ListView`, `DetailView`, `DataTable`, etc.) and `@cfast/forms` (`AutoForm`).
+- **Permission-aware**: All CRUD operations go through `@cfast/db` with the user's grants. The admin UI respects your permission system -- an editor sees what editors see.
+- **Auth adapter pattern**: Admin does not depend on `@cfast/auth` directly. You provide an `AdminAuthConfig` with callbacks for authentication, role management, and impersonation.
+
+## API Reference
+
+### Main entry point
+
+```typescript
+import { createAdmin } from "@cfast/admin";
+
+createAdmin(config: AdminConfig): { loader, action, Component }
+```
+
+Returns a `{ loader, action, Component }` triple to mount on a React Router route.
+
+### AdminConfig
+
+```typescript
+type AdminConfig = {
+  db: CreateDbFn;                          // (grants, user) => Db
+  auth: AdminAuthConfig;                   // auth adapter (see below)
+  schema: Record<string, SQLiteTable>;     // your Drizzle schema object
+  tables?: Record<string, TableOverrides>; // per-table customization
+  users?: UserManagementConfig;            // { assignableRoles?: string[] }
+  dashboard?: DashboardConfig;             // { widgets?: DashboardWidget[] }
+  requiredRole?: string;                   // default: "admin"
+};
+```
+
+### AdminAuthConfig
+
+```typescript
+type AdminAuthConfig = {
+  requireUser: (request: Request) => Promise<{ user: AdminUser; grants: Grant[] }>;
+  hasRole: (user: AdminUser, role: string) => boolean;
+  getRoles: (userId: string) => Promise<string[]>;
+  setRole: (userId: string, role: string) => Promise<void>;
+  removeRole: (userId: string, role: string) => Promise<void>;
+  setRoles: (userId: string, roles: string[]) => Promise<void>;
+  impersonate?: (adminId: string, targetId: string, request: Request) => Promise<Response>;
+  stopImpersonation?: (request: Request) => Promise<Response>;
+};
+```
+
+### TableOverrides
+
+```typescript
+type TableOverrides = {
+  label?: string;
+  listColumns?: string[];
+  searchable?: string[];
+  defaultSort?: { column: string; direction: "asc" | "desc" };
+  fields?: Record<string, FieldConfig>;  // from @cfast/forms
+  actions?: { row?: RowAction[]; table?: TableAction[] };
+  exclude?: boolean;
+};
+```
+
+### Server/client splitting
+
+For apps where server code must not leak into client bundles:
+
+```typescript
+import { createAdminLoader, createAdminAction, introspectSchema } from "@cfast/admin";
+import { createAdminComponent } from "@cfast/admin";
+
+const tableMetas = introspectSchema(schema, tableOverrides?);
+const loader = createAdminLoader(config, tableMetas);
+const action = createAdminAction(config, tableMetas);
+const Component = createAdminComponent(tableMetas);
+```
+
+### Schema introspection
+
+```typescript
+introspectSchema(
+  schema: Record<string, SQLiteTable>,
+  tableOverrides?: Record<string, TableOverrides>,
+): AdminTableMeta[]
+```
+
+Auto-excludes auth-internal tables (`session`, `account`, `verification`, `passkey`) unless explicitly configured.
+
+## Usage Examples
+
+### Minimal setup
+
+```typescript
+// app/routes/admin.tsx
+import { createAdmin } from "@cfast/admin";
+import * as schema from "~/schema";
+
+const admin = createAdmin({
+  db: (grants, user) => createDb({ d1: env.DB, schema, grants, user }),
+  auth: {
+    requireUser: async (request) => {
+      const session = await getSession(request);
+      return { user: session.user, grants: session.grants };
+    },
+    hasRole: (user, role) => user.roles.includes(role),
+    getRoles: (userId) => authInstance.getRoles(userId),
+    setRole: (userId, role) => authInstance.setRole(userId, role),
+    removeRole: (userId, role) => authInstance.removeRole(userId, role),
+    setRoles: (userId, roles) => authInstance.setRoles(userId, roles),
+  },
+  schema,
+});
+
+export const loader = admin.loader;
+export const action = admin.action;
+export default admin.Component;
+```
+
+### With table overrides and dashboard
+
+```typescript
+const admin = createAdmin({
+  db, auth, schema,
+  tables: {
+    posts: {
+      label: "Blog Posts",
+      listColumns: ["title", "author", "published", "createdAt"],
+      searchable: ["title", "content"],
+      defaultSort: { column: "createdAt", direction: "desc" },
+      fields: { content: { component: RichTextEditor } },
+      actions: {
+        row: [{ label: "Publish", action: async (id, formData) => { /* ... */ } }],
+      },
+    },
+  },
+  users: { assignableRoles: ["user", "editor", "moderator", "admin"] },
+  dashboard: {
+    widgets: [
+      { type: "count", table: "users", label: "Total Users" },
+      { type: "recent", table: "posts", label: "Recent Posts", limit: 5 },
+    ],
+  },
+});
+```
+
+## Integration
+
+- **@cfast/ui** -- All rendering. Admin generates config, UI renders pixels (`ListView`, `DetailView`, `DataTable`, `AppShell`, `RoleBadge`, `AvatarWithInitials`).
+- **@cfast/db** -- All data access via permission-checked Operations.
+- **@cfast/auth** -- User management, role assignment, impersonation (via auth adapter callbacks).
+- **@cfast/forms** -- Create/edit forms via `AutoForm`.
+- **@cfast/permissions** -- Permission grants flow through to `@cfast/db` operations.
+- **@cfast/pagination** -- List views paginate via pagination hooks.
+
+## Common Mistakes
+
+- Forgetting to provide `requireUser` that returns `grants` -- the admin needs grants to create a permission-scoped DB instance.
+- Not providing `impersonate`/`stopImpersonation` callbacks and expecting impersonation to work -- these are optional but required for that feature.
+- Trying to customize rendering by passing JSX to `createAdmin` -- instead, override fields via `TableOverrides.fields` (for forms) or use `@cfast/ui` components directly in custom routes.
+- Expecting auth-internal tables (`session`, `account`, `verification`, `passkey`) to show up -- they are auto-excluded. Set `exclude: false` in table overrides to show them.

package/package.json

@@ -1,7 +1,14 @@
 {
   "name": "@cfast/admin",
-  "version": "0.0.1",
+  "version": "0.2.0",
   "description": "Auto-generated admin UI from your Drizzle schema with role management and impersonation",
+  "keywords": [
+    "cfast",
+    "cloudflare-workers",
+    "admin",
+    "drizzle",
+    "auto-generated"
+  ],
   "license": "MIT",
   "repository": {
     "type": "git",
@@ -18,12 +25,20 @@
     }
   },
   "files": [
-    "dist"
+    "dist",
+    "llms.txt"
   ],
   "sideEffects": false,
   "publishConfig": {
     "access": "public"
   },
+  "scripts": {
+    "build": "tsup src/index.ts --format esm --dts",
+    "dev": "tsup src/index.ts --format esm --dts --watch",
+    "typecheck": "tsc --noEmit",
+    "lint": "eslint src/",
+    "test": "vitest run"
+  },
   "peerDependencies": {
     "@mui/joy": ">=5.0.0-beta.0",
     "react": ">=19",
@@ -37,10 +52,11 @@
     }
   },
   "dependencies": {
-    "@cfast/db": "0.0.1",
-    "@cfast/forms": "0.0.1",
-    "@cfast/ui": "0.0.1",
-    "@cfast/permissions": "0.0.1"
+    "@cfast/db": "workspace:*",
+    "@cfast/forms": "workspace:*",
+    "@cfast/permissions": "workspace:*",
+    "@cfast/joy": "workspace:*",
+    "@cfast/ui": "workspace:*"
   },
   "devDependencies": {
     "@emotion/react": "^11.14.0",
@@ -55,12 +71,5 @@
     "tsup": "^8",
     "typescript": "^5.7",
     "vitest": "^4.1.0"
-  },
-  "scripts": {
-    "build": "tsup src/index.ts --format esm --dts",
-    "dev": "tsup src/index.ts --format esm --dts --watch",
-    "typecheck": "tsc --noEmit",
-    "lint": "eslint src/",
-    "test": "vitest run"
   }
-}
+}

package/LICENSE

@@ -1,21 +0,0 @@
-MIT License
-
-Copyright (c) 2026 Daniel Schmidt
-
-Permission is hereby granted, free of charge, to any person obtaining a copy
-of this software and associated documentation files (the "Software"), to deal
-in the Software without restriction, including without limitation the rights
-to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
-copies of the Software, and to permit persons to whom the Software is
-furnished to do so, subject to the following conditions:
-
-The above copyright notice and this permission notice shall be included in all
-copies or substantial portions of the Software.
-
-THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
-IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
-FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
-AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
-LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
-OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
-SOFTWARE.