npm - @checkstack/healthcheck-common - Versions diffs - 0.1.0 → 0.2.0 - Mend

@checkstack/healthcheck-common 0.1.0 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,92 @@
 # @checkstack/healthcheck-common
+## 0.2.0
+### Minor Changes
+- 8e43507: # Teams and Resource-Level Access Control
+  This release introduces a comprehensive Teams system for organizing users and controlling access to resources at a granular level.
+  ## Features
+  ### Team Management
+  - Create, update, and delete teams with name and description
+  - Add/remove users from teams
+  - Designate team managers with elevated privileges
+  - View team membership and manager status
+  ### Resource-Level Access Control
+  - Grant teams access to specific resources (systems, health checks, incidents, maintenances)
+  - Configure read-only or manage permissions per team
+  - Resource-level "Team Only" mode that restricts access exclusively to team members
+  - Separate `resourceAccessSettings` table for resource-level settings (not per-grant)
+  - Automatic cleanup of grants when teams are deleted (database cascade)
+  ### Middleware Integration
+  - Extended `autoAuthMiddleware` to support resource access checks
+  - Single-resource pre-handler validation for detail endpoints
+  - Automatic list filtering for collection endpoints
+  - S2S endpoints for access verification
+  ### Frontend Components
+  - `TeamsTab` component for managing teams in Auth Settings
+  - `TeamAccessEditor` component for assigning team access to resources
+  - Resource-level "Team Only" toggle in `TeamAccessEditor`
+  - Integration into System, Health Check, Incident, and Maintenance editors
+  ## Breaking Changes
+  ### API Response Format Changes
+  List endpoints now return objects with named keys instead of arrays directly:
+  ```typescript
+  // Before
+  const systems = await catalogApi.getSystems();
+  // After
+  const { systems } = await catalogApi.getSystems();
+  ```
+  Affected endpoints:
+  - `catalog.getSystems` → `{ systems: [...] }`
+  - `healthcheck.getConfigurations` → `{ configurations: [...] }`
+  - `incident.listIncidents` → `{ incidents: [...] }`
+  - `maintenance.listMaintenances` → `{ maintenances: [...] }`
+  ### User Identity Enrichment
+  `RealUser` and `ApplicationUser` types now include `teamIds: string[]` field with team memberships.
+  ## Documentation
+  See `docs/backend/teams.md` for complete API reference and integration guide.
+- 97c5a6b: Add UUID-based collector identification for better multiple collector support
+  **Breaking Change**: Existing health check configurations with collectors need to be recreated.
+  - Each collector instance now has a unique UUID assigned on creation
+  - Collector results are stored under the UUID key with `_collectorId` and `_assertionFailed` metadata
+  - Auto-charts correctly display separate charts for each collector instance
+  - Charts are now grouped by collector instance with clear headings
+  - Assertion status card shows pass/fail for each collector
+  - Renamed "Success" to "HTTP Success" to clarify it's about HTTP request success
+  - Fixed deletion of collectors not persisting to database
+  - Fixed duplicate React key warnings in auto-chart grid
+### Patch Changes
+- Updated dependencies [8e43507]
+  - @checkstack/common@0.1.0
+  - @checkstack/signal-common@0.0.4
 ## 0.1.0
 ### Minor Changes

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@checkstack/healthcheck-common",
-  "version": "0.1.0",
+  "version": "0.2.0",
   "type": "module",
   "exports": {
     ".": {

package/src/rpc-contract.ts CHANGED Viewed

@@ -1,6 +1,7 @@
 import { oc } from "@orpc/contract";
 import {
   createClientDefinition,
+  createResourceAccessList,
   type ProcedureMetadata,
 } from "@checkstack/common";
 import { pluginMetadata } from "./plugin-metadata";
@@ -25,6 +26,12 @@ import {
 // Base builder with full metadata support
 const _base = oc.$meta<ProcedureMetadata>({});
+// Resource access configurations for team-based access control
+const configListAccess = createResourceAccessList(
+  "configuration",
+  "configurations"
+);
 // --- Response Schemas for Evaluated Status ---
 const SystemCheckStatusSchema = z.object({
@@ -74,8 +81,11 @@ export const healthCheckContract = {
     .meta({
       userType: "authenticated",
       permissions: [permissions.healthCheckRead.id],
+      resourceAccess: [configListAccess],
     })
-    .output(z.array(HealthCheckConfigurationSchema)),
+    .output(
+      z.object({ configurations: z.array(HealthCheckConfigurationSchema) })
+    ),
   createConfiguration: _base
     .meta({

package/src/schemas.ts CHANGED Viewed

@@ -56,9 +56,11 @@ export type CollectorAssertion = z.infer<typeof CollectorAssertionSchema>;
 /**
  * A collector configuration entry within a health check.
- * Each entry includes the collector ID, its config, and per-collector assertions.
+ * Each entry includes a unique ID, the collector type ID, its config, and per-collector assertions.
  */
 export const CollectorConfigEntrySchema = z.object({
+  /** Unique ID for this collector instance (UUID) */
+  id: z.string(),
   /** Fully-qualified collector ID (e.g., collector-hardware.cpu) */
   collectorId: z.string(),
   /** Collector-specific configuration */