@company-semantics/contracts 0.34.0 → 0.36.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@company-semantics/contracts",
-  "version": "0.34.0",
+  "version": "0.36.0",
   "private": false,
   "repository": {
     "type": "git",

package/src/index.ts

@@ -120,8 +120,20 @@ export type {
   OrganizationInfo,
   OwnershipTransferRequest,
   OwnershipTransferStatus,
+  // Workspace visibility DTOs (Phase 2)
+  // @see ADR-CONT-030 for design rationale
+  WorkspaceRole,
+  WorkspaceOverview,
+  WorkspaceMember,
+  AuthMethodConfig,
+  WorkspaceAuthConfig,
+  IntegrationStatus,
+  WorkspaceIntegration,
+  WorkspaceAuditEvent,
 } from './org/index'
 
+export { ROLE_DISPLAY_MAP } from './org/index'
+
 // MCP tool discovery types
 // @see company-semantics-backend/src/interfaces/mcp/ for implementation
 export type {

package/src/org/index.ts

@@ -11,4 +11,15 @@ export type {
   OrganizationInfo,
   OwnershipTransferRequest,
   OwnershipTransferStatus,
+  // Workspace visibility DTOs (Phase 2)
+  WorkspaceRole,
+  WorkspaceOverview,
+  WorkspaceMember,
+  AuthMethodConfig,
+  WorkspaceAuthConfig,
+  IntegrationStatus,
+  WorkspaceIntegration,
+  WorkspaceAuditEvent,
 } from './types';
+
+export { ROLE_DISPLAY_MAP } from './types';

package/src/org/types.ts

@@ -47,3 +47,110 @@ export interface OwnershipTransferStatus {
   requestedAt?: string;
   expiresAt?: string;
 }
+
+// =============================================================================
+// Workspace Visibility DTOs (Phase 2)
+// @see ADR-CONT-030 for design rationale
+// =============================================================================
+
+/**
+ * Display role for workspace members.
+ * Presentation-layer simplification of the internal RBAC roles.
+ */
+export type WorkspaceRole = 'owner' | 'admin' | 'member';
+
+/**
+ * RBAC → UI role mapping (presentation only).
+ * Maps internal system roles to user-facing display roles.
+ */
+export const ROLE_DISPLAY_MAP = {
+  org_owner: 'owner',
+  org_admin: 'admin',
+  // All other roles → 'member'
+} as const satisfies Partial<Record<string, WorkspaceRole>>;
+
+/**
+ * Workspace overview for the control plane UI.
+ * Read-only projection of organization state.
+ */
+export interface WorkspaceOverview {
+  id: string;
+  name: string;
+  type: OrgType;
+  owner: {
+    id: string;
+    name: string;
+    email: string;
+  };
+  createdAt: string;
+  memberCount: number;
+  claimable: boolean;
+}
+
+/**
+ * Workspace member for the members list.
+ * Human users only (no agent actors).
+ */
+export interface WorkspaceMember {
+  id: string;
+  name: string;
+  email: string;
+  role: WorkspaceRole;
+  joinedAt: string;
+}
+
+/**
+ * Authentication method configuration.
+ */
+export interface AuthMethodConfig {
+  enabled: boolean;
+  provider?: string;
+}
+
+/**
+ * Workspace authentication configuration.
+ * Enabled auth methods and provider metadata.
+ */
+export interface WorkspaceAuthConfig {
+  emailOtp: AuthMethodConfig;
+  googleSso: AuthMethodConfig;
+  microsoftSso: AuthMethodConfig;
+  okta: AuthMethodConfig;
+}
+
+/**
+ * Integration connection status.
+ */
+export type IntegrationStatus = 'active' | 'expired' | 'revoked';
+
+/**
+ * Workspace integration for the integrations list.
+ * Shows connections visible to workspace admins.
+ */
+export interface WorkspaceIntegration {
+  id: string;
+  provider: string;
+  status: IntegrationStatus;
+  connectedBy: {
+    id: string;
+    name: string;
+  };
+  executionScope: ExecutionScope;
+  lastActivity: string | null;
+}
+
+/**
+ * Audit event for the workspace audit log.
+ * Filtered to spec events only (server-side).
+ */
+export interface WorkspaceAuditEvent {
+  id: string;
+  timestamp: string;
+  actor: {
+    id: string;
+    name: string;
+    type: 'user' | 'system';
+  };
+  action: string;
+  summary: string;
+}