@company-semantics/contracts 0.57.0 → 0.59.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@company-semantics/contracts",
-  "version": "0.57.0",
+  "version": "0.59.0",
   "private": false,
   "repository": {
     "type": "git",

package/src/chat/index.ts

@@ -0,0 +1,20 @@
+/**
+ * Chat Domain Barrel
+ *
+ * Re-exports chat persistence and sharing types.
+ * Import from '@company-semantics/contracts/chat'.
+ */
+
+// =============================================================================
+// Types
+// =============================================================================
+
+export type {
+  ChatVisibility,
+  ChatSummary,
+  ChatShareInfo,
+  SharedChatView,
+  SharedChatMessage,
+  CreateShareRequest,
+  UpdateShareRequest,
+} from './types'

package/src/chat/types.ts

@@ -0,0 +1,103 @@
+/**
+ * Chat Domain Types
+ *
+ * Shared types for chat persistence and sharing across Company Semantics codebases.
+ * Types only - no runtime code, no business logic.
+ */
+
+// =============================================================================
+// Visibility
+// =============================================================================
+
+/**
+ * Chat share visibility.
+ * - private: Token exists but access requires authentication as chat owner
+ * - public: Token grants anonymous access to anyone with the link
+ */
+export type ChatVisibility = 'private' | 'public'
+
+// =============================================================================
+// Chat Summary
+// =============================================================================
+
+/**
+ * Lightweight chat summary for list views.
+ */
+export interface ChatSummary {
+  id: string
+  title: string
+  messageCount: number
+  createdAt: string
+  updatedAt: string
+}
+
+// =============================================================================
+// Share Types
+// =============================================================================
+
+/**
+ * Chat share record with snapshot metadata.
+ *
+ * CRITICAL INVARIANT (SNAPSHOT-1):
+ * A chat share must never expose messages with sequenceNumber > messageCountAtShare.
+ * Enforced in ChatShareService.viewSharedChat() only.
+ */
+export interface ChatShareInfo {
+  id: string
+  chatId: string
+  token: string
+  visibility: ChatVisibility
+  shareUrl: string
+  /** Message count at time of sharing - the snapshot boundary */
+  messageCountAtShare: number
+  /** Title snapshot at share time */
+  titleAtShare: string
+  createdAt: string
+  createdByName: string
+  isRevoked: boolean
+}
+
+/**
+ * Shared chat view returned to viewers.
+ * Messages are limited by the snapshot boundary.
+ */
+export interface SharedChatView {
+  title: string
+  messages: SharedChatMessage[]
+  sharedAt: string
+  sharedByName: string
+  visibility: ChatVisibility
+}
+
+/**
+ * Individual message in a shared chat view.
+ */
+export interface SharedChatMessage {
+  role: 'user' | 'assistant'
+  content: string
+  /** Optional rich content parts (tool calls, artifacts, etc.) */
+  parts?: unknown[]
+}
+
+// =============================================================================
+// API Request/Response Types
+// =============================================================================
+
+/**
+ * Request to create a new share for a chat.
+ */
+export interface CreateShareRequest {
+  chatId: string
+  visibility: ChatVisibility
+  /** Optional: send email notification to this address */
+  recipientEmail?: string
+}
+
+/**
+ * Request to update an existing share.
+ */
+export interface UpdateShareRequest {
+  visibility?: ChatVisibility
+  /** If true, update snapshot to include new messages added since share creation */
+  updateSnapshot?: boolean
+}

package/src/email/registry.ts

@@ -82,6 +82,12 @@ export const EMAIL_KINDS = {
     plainTextRequired: true,
     htmlSupported: false,
   },
+  'chat.shared': {
+    kind: 'chat.shared',
+    subject: 'A chat has been shared with you',
+    plainTextRequired: true,
+    htmlSupported: true,
+  },
 } as const satisfies Record<EmailKind, EmailKindDefinition>
 
 // =============================================================================

package/src/email/types.ts

@@ -28,6 +28,7 @@ export type EmailKind =
   | 'auth.magic_link' // future
   | 'org.invite' // future
   | 'security.alert' // future
+  | 'chat.shared'
 
 // =============================================================================
 // Email Payloads
@@ -65,6 +66,18 @@ export interface EmailPayloads {
     /** ISO timestamp of when the alert was triggered */
     timestamp: string
   }
+  'chat.shared': {
+    /** Display name of the person who shared */
+    sharedByName: string
+    /** Title of the chat being shared */
+    chatTitle: string
+    /** Full URL to view the shared chat */
+    shareUrl: string
+    /** Share visibility mode */
+    visibility: 'private' | 'public'
+    /** First ~200 chars of chat content for email preview. Generated server-side from snapshot. */
+    previewText?: string
+  }
 }
 
 // =============================================================================

package/src/index.ts

@@ -139,6 +139,18 @@ export {
   isValidEmailKind,
 } from './email/index'
 
+// Chat domain types
+// @see PRD-00142 for share chat design rationale
+export type {
+  ChatVisibility,
+  ChatSummary,
+  ChatShareInfo,
+  SharedChatView,
+  SharedChatMessage,
+  CreateShareRequest,
+  UpdateShareRequest,
+} from './chat/index'
+
 // Organization domain types
 // @see ADR-BE-XXX for design rationale (Personal vs Shared Organization Model)
 export type {
@@ -154,8 +166,6 @@ export type {
   WorkspaceMember,
   AuthMethodConfig,
   WorkspaceAuthConfig,
-  IntegrationStatus,
-  WorkspaceIntegration,
   WorkspaceAuditEvent,
   // Workspace expansion DTOs (Phase 3)
   // @see ADR-CONT-031 for design rationale
@@ -167,8 +177,6 @@ export type {
   ChangeMemberRoleRequest,
   OrgAuthPolicy,
   UpdateAuthPolicyRequest,
-  PromoteIntegrationRequest,
-  DemoteIntegrationRequest,
   Phase3AuditAction,
   // Workspace capability types (Phase 3)
   WorkspaceCapability,

package/src/org/index.ts

@@ -17,8 +17,6 @@ export type {
   WorkspaceMember,
   AuthMethodConfig,
   WorkspaceAuthConfig,
-  IntegrationStatus,
-  WorkspaceIntegration,
   WorkspaceAuditEvent,
   // Workspace expansion DTOs (Phase 3)
   OrgInviteStatus,
@@ -29,8 +27,6 @@ export type {
   ChangeMemberRoleRequest,
   OrgAuthPolicy,
   UpdateAuthPolicyRequest,
-  PromoteIntegrationRequest,
-  DemoteIntegrationRequest,
   Phase3AuditAction,
   // Multi-org membership types (Phase 4)
   UserOrgMembership,

package/src/org/types.ts

@@ -134,34 +134,6 @@ export interface WorkspaceAuthConfig {
   };
 }
 
-/**
- * Integration connection status.
- */
-export type IntegrationStatus = 'active' | 'expired' | 'revoked';
-
-/**
- * Workspace integration for the integrations list.
- * Shows connections visible to workspace admins.
- *
- * SECURITY: connectedBy.id should be empty string (not exposed for security).
- * lastActivity is aggregated to reduce precision for timing attack mitigation.
- * @see security-safety-reviewer finding: Excessive Information Disclosure
- */
-export interface WorkspaceIntegration {
-  id: string;
-  provider: string;
-  status: IntegrationStatus;
-  connectedBy: {
-    /** Always empty string for security (user IDs not exposed) */
-    id: string;
-    /** Name of the user who connected this integration, or 'A team member' if unknown */
-    name: string;
-  };
-  executionScope: ExecutionScope;
-  /** Aggregated last activity (e.g., 'within the last day', 'within the last week') */
-  lastActivity: string | null;
-}
-
 /**
  * Audit event for the workspace audit log.
  * Filtered to spec events only (server-side).
@@ -260,25 +232,6 @@ export interface UpdateAuthPolicyRequest {
   allowedProviders?: string[];
 }
 
-/**
- * Request payload for promoting an integration to org scope.
- *
- * INVARIANT: acknowledgedRisk must be true to prove explicit intent.
- * @see Phase 3 Invariant #15: Blast radius acknowledgment
- */
-export interface PromoteIntegrationRequest {
-  /** User must acknowledge the blast radius of org-wide access */
-  acknowledgedRisk: boolean;
-}
-
-/**
- * Request payload for demoting an integration to self scope.
- */
-export interface DemoteIntegrationRequest {
-  /** Optional reason for demotion */
-  reason?: string;
-}
-
 // =============================================================================
 // Phase 3 Audit Action Types
 // @see ADR-CONT-031 for design rationale