npm - @company-semantics/contracts - Versions diffs - 0.49.0 → 0.51.0 - Mend

@company-semantics/contracts 0.49.0 → 0.51.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (8) hide show

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@company-semantics/contracts",
-  "version": "0.49.0",
+  "version": "0.51.0",
   "private": false,
   "repository": {
     "type": "git",

package/src/auth/index.ts CHANGED Viewed

@@ -16,3 +16,10 @@ export enum OTPErrorCode {
   AlreadyUsed = 'already_used',
   NotFound = 'not_found',
 }
+export type AuthStartMode = "otp" | "sso" | "hybrid";
+export type AuthStartResponse =
+  | { mode: "otp"; devOtp?: string }
+  | { mode: "sso"; providers: string[]; redirectUrl: string }
+  | { mode: "hybrid"; providers: string[]; recommendedProvider?: string; otpAllowed: true; devOtp?: string };

package/src/company-admin.ts ADDED Viewed

@@ -0,0 +1,29 @@
+/**
+ * Company admin types — shared vocabulary for cross-org admin control plane.
+ *
+ * These types support the company admin MVP (read-only).
+ * @see PRD-00113 for design rationale.
+ */
+/** Read-only capabilities for company admin MVP. */
+export type CompanyCapability =
+  | 'company.view_orgs'
+  | 'company.view_audit'
+  | 'company.view_system';
+/** Context attached to company-admin requests after auth middleware validation. */
+export interface CompanyAdminContext {
+  readonly kind: 'company';
+  readonly adminEmail: string;
+  readonly capabilities: readonly CompanyCapability[];
+}
+/**
+ * Discriminated union for request contexts.
+ *
+ * Org-scoped requests carry OrgScopedContext (kind: 'org').
+ * Company admin requests carry CompanyAdminContext (kind: 'company').
+ */
+export type RequestContext =
+  | (import('./org/types').OrgScopedContext & { readonly kind: 'org' })
+  | CompanyAdminContext;

package/src/email/types.ts CHANGED Viewed

@@ -50,6 +50,13 @@ export interface EmailPayloads {
     /** User agent of the request (for security context) */
     userAgent?: string
   }
+  'org.invite': {
+    inviterName: string
+    orgName: string
+    role: 'admin' | 'member'
+    acceptUrl: string
+    expiresInDays: number
+  }
   'security.alert': {
     /** Type of security alert */
     alertType: 'excessive_otp_requests' | 'unusual_login_location'

package/src/identity/index.ts CHANGED Viewed

@@ -6,7 +6,14 @@
  */
 // Types
-export type { ISODateString, NameSource, UserIdentity } from './types';
+export type {
+  ISODateString,
+  NameSource,
+  UserIdentity,
+  UserLifecycleStatus,
+  DeletionBlocker,
+  AccountDeletionEligibility,
+} from './types';
 // Functions - Display Name
 export {

package/src/identity/types.ts CHANGED Viewed

@@ -94,3 +94,36 @@ export type UserIdentity = {
    */
   slackAvatarLastSyncedAt?: ISODateString;
 };
+// =============================================================================
+// User Lifecycle
+// =============================================================================
+/**
+ * User lifecycle status. Replaces the boolean `isActive` field.
+ *
+ * State transitions:
+ *   active → pending_deletion  (self-service deletion request)
+ *   pending_deletion → active  (cancel during grace period)
+ *   pending_deletion → deleted (async purge after grace period)
+ *   deleted → (terminal, no transitions)
+ *   active → deleted           (FORBIDDEN — must pass through pending_deletion)
+ */
+export type UserLifecycleStatus = 'active' | 'pending_deletion' | 'deleted';
+/**
+ * Conditions that block account deletion.
+ * Discriminated union — extend with new blocker types without breaking changes.
+ */
+export type DeletionBlocker =
+  | { type: 'sole_workspace_owner'; workspaceId: string; workspaceName: string }
+  | { type: 'active_legal_hold'; holdId: string };
+/**
+ * Result of an account deletion eligibility check.
+ * Invariant: eligible=true ↔ blockers.length === 0
+ */
+export type AccountDeletionEligibility = {
+  eligible: boolean;
+  blockers: DeletionBlocker[];
+};

package/src/index.ts CHANGED Viewed

@@ -106,7 +106,14 @@ export type { Compatibility, Deprecation } from './compatibility'
 // User identity types and functions
 // @see ADR-CONT-032 for design rationale
-export type { ISODateString, NameSource, UserIdentity } from './identity/index'
+export type {
+  ISODateString,
+  NameSource,
+  UserIdentity,
+  UserLifecycleStatus,
+  DeletionBlocker,
+  AccountDeletionEligibility,
+} from './identity/index'
 export { extractFirstWord, resolveDisplayName, deriveFullName } from './identity/index'
 // Avatar types and functions
@@ -337,6 +344,14 @@ export type {
 // Ralph constants (cross-repo support)
 export { REPO_PRECEDENCE } from './ralph/index'
+// Company admin types (cross-org control plane)
+// @see PRD-00113 for design rationale
+export type {
+  CompanyCapability,
+  CompanyAdminContext,
+  RequestContext,
+} from './company-admin'
 // Rate limit domain types
 // @see PRD-00013 for contracts integration
 export type { RateLimitConfig, RateLimitResult } from './rate-limit/index'

package/src/org/types.ts CHANGED Viewed

@@ -328,6 +328,8 @@ export interface UserOrgMembership {
   joinedAt: string;
   /** Whether this membership is currently active. */
   isActive: boolean;
+  /** Organization type (personal vs shared). */
+  orgType: OrgType;
 }
 // ─────────────────────────────────────────────────────────────────────────────