npm - @cosmicdrift/kumiko-bundled-features - Versions diffs - 0.1.0 - Mend

@cosmicdrift/kumiko-bundled-features 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (333) hide show

package/package.json +90 -0
package/src/audit/__tests__/audit.integration.ts +328 -0
package/src/audit/constants.ts +7 -0
package/src/audit/feature.ts +23 -0
package/src/audit/handlers/list.query.ts +98 -0
package/src/audit/index.ts +2 -0
package/src/auth-email-password/__tests__/account-lockout-no-redis.integration.ts +149 -0
package/src/auth-email-password/__tests__/account-lockout.integration.ts +308 -0
package/src/auth-email-password/__tests__/auth-claims.integration.ts +512 -0
package/src/auth-email-password/__tests__/auth.integration.ts +610 -0
package/src/auth-email-password/__tests__/confirm-token-flow.test.ts +67 -0
package/src/auth-email-password/__tests__/email-templates.test.ts +106 -0
package/src/auth-email-password/__tests__/email-verification.integration.ts +327 -0
package/src/auth-email-password/__tests__/identity-v3-hash.test.ts +174 -0
package/src/auth-email-password/__tests__/identity-v3-login.integration.ts +150 -0
package/src/auth-email-password/__tests__/invite-flow.integration.ts +458 -0
package/src/auth-email-password/__tests__/multi-roles.integration.ts +256 -0
package/src/auth-email-password/__tests__/password-reset.integration.ts +346 -0
package/src/auth-email-password/__tests__/public-routes-rate-limit.integration.ts +144 -0
package/src/auth-email-password/__tests__/seed-admin.integration.ts +176 -0
package/src/auth-email-password/__tests__/session-callbacks.integration.ts +310 -0
package/src/auth-email-password/__tests__/session-strict-mode.integration.ts +101 -0
package/src/auth-email-password/__tests__/signed-token.test.ts +78 -0
package/src/auth-email-password/__tests__/signup-flow.integration.ts +259 -0
package/src/auth-email-password/auth-user-row.ts +41 -0
package/src/auth-email-password/constants.ts +101 -0
package/src/auth-email-password/email-templates.ts +283 -0
package/src/auth-email-password/feature.ts +140 -0
package/src/auth-email-password/handlers/change-password.write.ts +58 -0
package/src/auth-email-password/handlers/confirm-token-flow.ts +191 -0
package/src/auth-email-password/handlers/invite-accept-with-login.write.ts +203 -0
package/src/auth-email-password/handlers/invite-accept.write.ts +189 -0
package/src/auth-email-password/handlers/invite-create.write.ts +145 -0
package/src/auth-email-password/handlers/invite-signup-complete.write.ts +192 -0
package/src/auth-email-password/handlers/login.write.ts +208 -0
package/src/auth-email-password/handlers/logout.write.ts +12 -0
package/src/auth-email-password/handlers/request-email-verification.write.ts +29 -0
package/src/auth-email-password/handlers/request-password-reset.write.ts +31 -0
package/src/auth-email-password/handlers/reset-password.write.ts +61 -0
package/src/auth-email-password/handlers/signup-confirm.write.ts +170 -0
package/src/auth-email-password/handlers/signup-request.write.ts +104 -0
package/src/auth-email-password/handlers/token-request-handler.ts +114 -0
package/src/auth-email-password/handlers/verify-email.write.ts +62 -0
package/src/auth-email-password/i18n.ts +211 -0
package/src/auth-email-password/identity-v3-hash.ts +97 -0
package/src/auth-email-password/index.ts +35 -0
package/src/auth-email-password/invite-token-store.ts +92 -0
package/src/auth-email-password/lockout-store.ts +118 -0
package/src/auth-email-password/password-hashing.ts +43 -0
package/src/auth-email-password/reset-token.ts +28 -0
package/src/auth-email-password/seeding.ts +183 -0
package/src/auth-email-password/signed-token.ts +85 -0
package/src/auth-email-password/signup-token-store.ts +104 -0
package/src/auth-email-password/stream-tenant.ts +31 -0
package/src/auth-email-password/testing.ts +5 -0
package/src/auth-email-password/token-burn-store.ts +57 -0
package/src/auth-email-password/verification-token.ts +27 -0
package/src/auth-email-password/web/__tests__/auth-gate.test.tsx +51 -0
package/src/auth-email-password/web/__tests__/forgot-password-screen.test.tsx +80 -0
package/src/auth-email-password/web/__tests__/login-screen.test.tsx +94 -0
package/src/auth-email-password/web/__tests__/reset-password-screen.test.tsx +108 -0
package/src/auth-email-password/web/__tests__/session-roles.test.ts +54 -0
package/src/auth-email-password/web/__tests__/tenant-switcher.test.tsx +100 -0
package/src/auth-email-password/web/__tests__/test-utils.tsx +73 -0
package/src/auth-email-password/web/__tests__/user-menu.test.tsx +55 -0
package/src/auth-email-password/web/__tests__/verify-email-screen.test.tsx +59 -0
package/src/auth-email-password/web/auth-client.ts +350 -0
package/src/auth-email-password/web/auth-form-primitives.tsx +70 -0
package/src/auth-email-password/web/auth-gate.tsx +33 -0
package/src/auth-email-password/web/client-plugin.ts +48 -0
package/src/auth-email-password/web/default-topbar-actions.tsx +47 -0
package/src/auth-email-password/web/forgot-password-screen.tsx +110 -0
package/src/auth-email-password/web/index.ts +56 -0
package/src/auth-email-password/web/invite-accept-screen.tsx +220 -0
package/src/auth-email-password/web/login-screen.tsx +150 -0
package/src/auth-email-password/web/reset-password-screen.tsx +152 -0
package/src/auth-email-password/web/session.tsx +171 -0
package/src/auth-email-password/web/signup-complete-screen.tsx +150 -0
package/src/auth-email-password/web/signup-screen.tsx +130 -0
package/src/auth-email-password/web/tenant-switcher.tsx +116 -0
package/src/auth-email-password/web/use-shell-user.ts +34 -0
package/src/auth-email-password/web/user-menu.tsx +89 -0
package/src/auth-email-password/web/verify-email-screen.tsx +102 -0
package/src/billing-foundation/__tests__/billing-foundation.integration.ts +568 -0
package/src/billing-foundation/__tests__/feature.test.ts +110 -0
package/src/billing-foundation/__tests__/webhook-handler.test.ts +199 -0
package/src/billing-foundation/aggregate-id.ts +21 -0
package/src/billing-foundation/constants.ts +70 -0
package/src/billing-foundation/entities.ts +50 -0
package/src/billing-foundation/events.ts +71 -0
package/src/billing-foundation/feature.ts +122 -0
package/src/billing-foundation/get-subscription-for-tenant.ts +39 -0
package/src/billing-foundation/handlers/create-checkout-session.write.ts +79 -0
package/src/billing-foundation/handlers/create-portal-session.write.ts +73 -0
package/src/billing-foundation/handlers/list-subscriptions.query.ts +20 -0
package/src/billing-foundation/handlers/process-event.write.ts +160 -0
package/src/billing-foundation/index.ts +42 -0
package/src/billing-foundation/projection.ts +135 -0
package/src/billing-foundation/types.ts +157 -0
package/src/billing-foundation/webhook-handler.ts +184 -0
package/src/cap-counter/__tests__/cap-counter.integration.ts +566 -0
package/src/cap-counter/__tests__/enforce-cap.test.ts +422 -0
package/src/cap-counter/__tests__/with-cap-enforcement.integration.ts +265 -0
package/src/cap-counter/aggregate-id.ts +61 -0
package/src/cap-counter/constants.ts +32 -0
package/src/cap-counter/enforce-cap.ts +404 -0
package/src/cap-counter/entity.ts +48 -0
package/src/cap-counter/feature.ts +90 -0
package/src/cap-counter/handlers/get-counter.query.ts +43 -0
package/src/cap-counter/handlers/increment-rolling.write.ts +79 -0
package/src/cap-counter/handlers/increment.write.ts +92 -0
package/src/cap-counter/handlers/mark-soft-warned.write.ts +57 -0
package/src/cap-counter/index.ts +34 -0
package/src/cap-counter/with-cap-enforcement.ts +179 -0
package/src/channel-email/email-channel.ts +48 -0
package/src/channel-email/feature.ts +15 -0
package/src/channel-email/index.ts +4 -0
package/src/channel-email/smtp-transport.ts +65 -0
package/src/channel-email/types.ts +34 -0
package/src/channel-in-app/constants.ts +11 -0
package/src/channel-in-app/feature.ts +30 -0
package/src/channel-in-app/handlers/inbox.query.ts +28 -0
package/src/channel-in-app/handlers/mark-all-read.write.ts +21 -0
package/src/channel-in-app/handlers/mark-read.write.ts +32 -0
package/src/channel-in-app/handlers/unread-count.query.ts +20 -0
package/src/channel-in-app/in-app-channel.ts +44 -0
package/src/channel-in-app/index.ts +4 -0
package/src/channel-in-app/tables.ts +22 -0
package/src/channel-push/feature.ts +15 -0
package/src/channel-push/index.ts +3 -0
package/src/channel-push/push-channel.ts +33 -0
package/src/channel-push/types.ts +22 -0
package/src/config/__tests__/app-overrides.test.ts +118 -0
package/src/config/__tests__/config.integration.ts +1246 -0
package/src/config/constants.ts +23 -0
package/src/config/feature.ts +117 -0
package/src/config/handlers/__tests__/prepare-config-write.test.ts +209 -0
package/src/config/handlers/reset.write.ts +45 -0
package/src/config/handlers/schema.query.ts +22 -0
package/src/config/handlers/set.write.ts +93 -0
package/src/config/handlers/values.query.ts +43 -0
package/src/config/index.ts +15 -0
package/src/config/resolver.ts +283 -0
package/src/config/table.ts +35 -0
package/src/config/write-helpers.ts +268 -0
package/src/delivery/__tests__/delivery-events.integration.ts +166 -0
package/src/delivery/__tests__/delivery.integration.ts +1405 -0
package/src/delivery/constants.ts +33 -0
package/src/delivery/delivery-service.ts +489 -0
package/src/delivery/events.ts +18 -0
package/src/delivery/feature.ts +70 -0
package/src/delivery/handlers/log.query.ts +21 -0
package/src/delivery/handlers/preferences.query.ts +18 -0
package/src/delivery/handlers/set-preference.write.ts +28 -0
package/src/delivery/index.ts +35 -0
package/src/delivery/tables.ts +74 -0
package/src/delivery/testing.ts +47 -0
package/src/delivery/types.ts +71 -0
package/src/delivery/unsubscribe.ts +99 -0
package/src/delivery/upsert-preference.ts +145 -0
package/src/feature-toggles/__tests__/feature-toggles.integration.ts +687 -0
package/src/feature-toggles/constants.ts +20 -0
package/src/feature-toggles/events.ts +18 -0
package/src/feature-toggles/feature.ts +98 -0
package/src/feature-toggles/global-feature-state-table.ts +28 -0
package/src/feature-toggles/handlers/list.query.ts +26 -0
package/src/feature-toggles/handlers/registered.query.ts +56 -0
package/src/feature-toggles/handlers/set.write.ts +158 -0
package/src/feature-toggles/index.ts +9 -0
package/src/feature-toggles/toggle-runtime.ts +73 -0
package/src/file-foundation/__tests__/feature.test.ts +35 -0
package/src/file-foundation/__tests__/file-foundation.integration.ts +235 -0
package/src/file-foundation/feature.ts +123 -0
package/src/file-foundation/index.ts +7 -0
package/src/file-provider-inmemory/__tests__/feature.test.ts +35 -0
package/src/file-provider-inmemory/feature.ts +73 -0
package/src/file-provider-inmemory/index.ts +3 -0
package/src/file-provider-s3/__tests__/feature.test.ts +54 -0
package/src/file-provider-s3/feature.ts +169 -0
package/src/file-provider-s3/index.ts +3 -0
package/src/files-provider-s3/__tests__/env-helper.test.ts +161 -0
package/src/files-provider-s3/__tests__/s3-provider.integration.ts +134 -0
package/src/files-provider-s3/__tests__/s3-provider.test.ts +36 -0
package/src/files-provider-s3/env-helper.ts +49 -0
package/src/files-provider-s3/index.ts +3 -0
package/src/files-provider-s3/s3-provider.ts +114 -0
package/src/foundation-shared/config-helpers.ts +67 -0
package/src/foundation-shared/index.ts +4 -0
package/src/jobs/__tests__/job-system-user.integration.ts +194 -0
package/src/jobs/__tests__/jobs-events.integration.ts +143 -0
package/src/jobs/__tests__/jobs-feature.integration.ts +342 -0
package/src/jobs/constants.ts +21 -0
package/src/jobs/events.ts +39 -0
package/src/jobs/feature.ts +150 -0
package/src/jobs/handlers/detail.query.ts +30 -0
package/src/jobs/handlers/list.query.ts +36 -0
package/src/jobs/handlers/retry.write.ts +69 -0
package/src/jobs/handlers/trigger.write.ts +39 -0
package/src/jobs/index.ts +5 -0
package/src/jobs/job-run-logger.ts +213 -0
package/src/jobs/job-run-table.ts +55 -0
package/src/legal-pages/README.md +195 -0
package/src/legal-pages/__tests__/legal-pages.integration.ts +361 -0
package/src/legal-pages/constants.ts +36 -0
package/src/legal-pages/feature.ts +187 -0
package/src/legal-pages/index.ts +13 -0
package/src/legal-pages/markdown.ts +69 -0
package/src/mail-foundation/__tests__/feature.test.ts +46 -0
package/src/mail-foundation/__tests__/mail-foundation.integration.ts +247 -0
package/src/mail-foundation/feature.ts +160 -0
package/src/mail-foundation/index.ts +14 -0
package/src/mail-transport-inmemory/__tests__/feature.test.ts +37 -0
package/src/mail-transport-inmemory/feature.ts +90 -0
package/src/mail-transport-inmemory/index.ts +3 -0
package/src/mail-transport-smtp/__tests__/feature.test.ts +61 -0
package/src/mail-transport-smtp/feature.ts +182 -0
package/src/mail-transport-smtp/index.ts +3 -0
package/src/rate-limiting/__tests__/rate-limiting.integration.ts +84 -0
package/src/rate-limiting/constants.ts +9 -0
package/src/rate-limiting/feature.ts +16 -0
package/src/rate-limiting/handlers/status.query.ts +52 -0
package/src/rate-limiting/index.ts +2 -0
package/src/renderer-simple/__tests__/simple-renderer.test.ts +97 -0
package/src/renderer-simple/feature.ts +12 -0
package/src/renderer-simple/index.ts +2 -0
package/src/renderer-simple/simple-renderer.ts +72 -0
package/src/secrets/__tests__/rotate.integration.ts +176 -0
package/src/secrets/__tests__/secrets-events.integration.ts +125 -0
package/src/secrets/__tests__/secrets.integration.ts +118 -0
package/src/secrets/feature.ts +84 -0
package/src/secrets/handlers/delete.write.ts +20 -0
package/src/secrets/handlers/list.query.ts +38 -0
package/src/secrets/handlers/rotate.job.ts +193 -0
package/src/secrets/handlers/set.write.ts +50 -0
package/src/secrets/index.ts +16 -0
package/src/secrets/secrets-context.ts +296 -0
package/src/secrets/table.ts +68 -0
package/src/sessions/__tests__/cleanup.integration.ts +175 -0
package/src/sessions/__tests__/password-auto-revoke.integration.ts +202 -0
package/src/sessions/__tests__/sessions.integration.ts +472 -0
package/src/sessions/__tests__/test-helpers.ts +66 -0
package/src/sessions/constants.ts +43 -0
package/src/sessions/feature.ts +84 -0
package/src/sessions/handlers/cleanup.job.ts +109 -0
package/src/sessions/handlers/list.query.ts +35 -0
package/src/sessions/handlers/mine.query.ts +37 -0
package/src/sessions/handlers/revoke-all-others.write.ts +42 -0
package/src/sessions/handlers/revoke.write.ts +76 -0
package/src/sessions/index.ts +17 -0
package/src/sessions/schema/index.ts +5 -0
package/src/sessions/schema/user-session.ts +67 -0
package/src/sessions/session-callbacks.ts +110 -0
package/src/sessions/testing.ts +42 -0
package/src/subscription-mollie/__tests__/feature.test.ts +106 -0
package/src/subscription-mollie/__tests__/mollie-foundation.integration.ts +421 -0
package/src/subscription-mollie/__tests__/verify-webhook.test.ts +388 -0
package/src/subscription-mollie/constants.ts +33 -0
package/src/subscription-mollie/feature.ts +144 -0
package/src/subscription-mollie/index.ts +13 -0
package/src/subscription-mollie/plugin-methods.ts +79 -0
package/src/subscription-mollie/verify-webhook.ts +244 -0
package/src/subscription-stripe/__tests__/feature.test.ts +98 -0
package/src/subscription-stripe/__tests__/plugin-methods.test.ts +161 -0
package/src/subscription-stripe/__tests__/stripe-foundation.integration.ts +315 -0
package/src/subscription-stripe/__tests__/verify-webhook.test.ts +306 -0
package/src/subscription-stripe/constants.ts +20 -0
package/src/subscription-stripe/feature.ts +120 -0
package/src/subscription-stripe/index.ts +14 -0
package/src/subscription-stripe/plugin-methods.ts +91 -0
package/src/subscription-stripe/verify-webhook.ts +235 -0
package/src/tenant/__tests__/multi-tenant.integration.ts +278 -0
package/src/tenant/__tests__/seed-testing.integration.ts +229 -0
package/src/tenant/__tests__/tenant.integration.ts +347 -0
package/src/tenant/command-schemas.ts +37 -0
package/src/tenant/constants.ts +37 -0
package/src/tenant/feature.ts +109 -0
package/src/tenant/handlers/active-tenant-ids.query.ts +19 -0
package/src/tenant/handlers/add-member.write.ts +53 -0
package/src/tenant/handlers/cancel-invitation.write.ts +87 -0
package/src/tenant/handlers/create.write.ts +21 -0
package/src/tenant/handlers/disable.write.ts +18 -0
package/src/tenant/handlers/invitations.query.ts +31 -0
package/src/tenant/handlers/list.query.ts +17 -0
package/src/tenant/handlers/me.query.ts +17 -0
package/src/tenant/handlers/members.query.ts +22 -0
package/src/tenant/handlers/memberships.query.ts +24 -0
package/src/tenant/handlers/remove-member.write.ts +40 -0
package/src/tenant/handlers/resolve-user-ids.query.ts +43 -0
package/src/tenant/handlers/update-member-roles.write.ts +54 -0
package/src/tenant/handlers/update.write.ts +20 -0
package/src/tenant/index.ts +12 -0
package/src/tenant/invitation-table.ts +93 -0
package/src/tenant/membership-table.ts +35 -0
package/src/tenant/schema/index.ts +5 -0
package/src/tenant/schema/tenant.ts +27 -0
package/src/tenant/seeding.ts +155 -0
package/src/tenant/testing.ts +8 -0
package/src/text-content/README.md +190 -0
package/src/text-content/__tests__/text-content.integration.ts +415 -0
package/src/text-content/api.ts +92 -0
package/src/text-content/constants.ts +19 -0
package/src/text-content/feature.ts +29 -0
package/src/text-content/handlers/by-slug.query.ts +55 -0
package/src/text-content/handlers/set.write.ts +118 -0
package/src/text-content/index.ts +14 -0
package/src/text-content/seeding.ts +91 -0
package/src/text-content/table.ts +45 -0
package/src/tier-engine/__tests__/compose-app.test.ts +182 -0
package/src/tier-engine/__tests__/drift.test.ts +42 -0
package/src/tier-engine/__tests__/tier-engine.integration.ts +241 -0
package/src/tier-engine/aggregate-id.ts +27 -0
package/src/tier-engine/compose-app.ts +150 -0
package/src/tier-engine/constants.ts +15 -0
package/src/tier-engine/entity.ts +30 -0
package/src/tier-engine/feature.ts +72 -0
package/src/tier-engine/handlers/active-tier.query.ts +23 -0
package/src/tier-engine/index.ts +22 -0
package/src/user/__tests__/seed-testing.integration.ts +127 -0
package/src/user/__tests__/user.integration.ts +198 -0
package/src/user/command-schemas.ts +15 -0
package/src/user/constants.ts +23 -0
package/src/user/feature.ts +32 -0
package/src/user/handlers/create.write.ts +54 -0
package/src/user/handlers/detail.query.ts +9 -0
package/src/user/handlers/find-for-auth.query.ts +38 -0
package/src/user/handlers/list.query.ts +8 -0
package/src/user/handlers/me.query.ts +15 -0
package/src/user/handlers/update.write.ts +54 -0
package/src/user/index.ts +4 -0
package/src/user/schema/index.ts +5 -0
package/src/user/schema/user.ts +69 -0
package/src/user/seeding.ts +93 -0
package/src/user/testing.ts +5 -0

package/src/foundation-shared/config-helpers.ts ADDED Viewed

@@ -0,0 +1,67 @@
+// Shared config-read helpers used by the per-tenant Foundation factories
+// (ai-foundation, mail-foundation, file-foundation). Each foundation reads
+// its config-keys + secret out of `ctx`, narrows undefined → throw, and
+// dispatches to a provider. The narrowing helpers live here as a single
+// source so all three foundations report errors the same way and a fix
+// to one error-message format reaches all callers.
+//
+// **Why a shared module instead of duplicate copies:**
+//   First two foundations (ai + mail) hand-rolled identical helpers,
+//   the third (file) made it three times. That's the threshold where
+//   premature-abstraction-warnings flip to DRY-warnings — three nearly-
+//   identical 25-LOC helper-pairs across three files would diverge in
+//   error-text under maintenance, exactly the bug-class extraction
+//   prevents.
+//
+// **What this module is NOT:**
+//   - Not a feature — no `defineFeature`, no boot-time registration.
+//   - Not a barrel for everything — only the helpers actually shared
+//     across foundations live here. Per-foundation transport/provider-
+//     factories stay in their own package.
+/**
+ * Narrow `value | undefined` → `value` with a clear message that names
+ * which config key resolved to nothing. Use for keys whose `undefined`
+ * means a registry misconfiguration (no value + no default).
+ *
+ * Foundation-Pattern: this is the wrap-helper around `await ctx.config(
+ * featureFoundationFeature.exports.configKeys.someKey)` — the call-site
+ * stays a single line per key.
+ *
+ * **`featureName` is the qualified-name prefix in the error** (e.g.
+ * `"ai-foundation"`, `"mail-foundation"`) — included so that an exception
+ * surfaced from a multi-foundation app pinpoints the failing foundation.
+ */
+export function requireDefined<T>(value: T | undefined, featureName: string, label: string): T {
+  if (value === undefined) {
+    throw new Error(
+      `${featureName}: '${label}' config key resolved to undefined — registry misconfigured (no value + no default)`,
+    );
+  }
+  return value;
+}
+/**
+ * Narrow `string | undefined` → non-empty `string`. Tighter than
+ * `requireDefined` for the case where the registry HAS a default (often
+ * `""`) but the foundation requires the tenant to have set a real value
+ * before the factory can build a working transport / provider.
+ *
+ * Typical use: SMTP host, S3 bucket, model id — values without which the
+ * downstream SDK would 400 with a cryptic message. The clearer "tenant
+ * must configure X via tenant-admin UI" lands at the call-site instead.
+ */
+export function requireNonEmpty(
+  value: string | undefined,
+  featureName: string,
+  label: string,
+  uiHint = "Set via tenant-admin UI or seed-handler.",
+): string {
+  const defined = requireDefined(value, featureName, label);
+  if (defined.length === 0) {
+    throw new Error(
+      `${featureName}: '${label}' is empty — tenant must configure it before use. ${uiHint}`,
+    );
+  }
+  return defined;
+}

package/src/foundation-shared/index.ts ADDED Viewed

@@ -0,0 +1,4 @@
+// Public API of foundation-shared — utilities consumed by the per-tenant
+// Foundation packages (ai-foundation, mail-foundation, file-foundation).
+export { requireDefined, requireNonEmpty } from "./config-helpers";

package/src/jobs/__tests__/job-system-user.integration.ts ADDED Viewed

@@ -0,0 +1,194 @@
+import { randomBytes } from "node:crypto";
+import {
+  createEncryptionProvider,
+  createTenantDb,
+  type DbConnection,
+} from "@cosmicdrift/kumiko-framework/db";
+import {
+  access,
+  createRegistry,
+  createTenantConfig,
+  defineFeature,
+  type Registry,
+  type SessionUser,
+} from "@cosmicdrift/kumiko-framework/engine";
+import {
+  createArchivedStreamsTable,
+  createEventsTable,
+} from "@cosmicdrift/kumiko-framework/event-store";
+import { createJobRunner, type JobRunner } from "@cosmicdrift/kumiko-framework/jobs";
+import {
+  createTestDb,
+  createTestRedis,
+  pushTables,
+  type TestDb,
+  type TestRedis,
+  TestUsers,
+} from "@cosmicdrift/kumiko-framework/stack";
+import { bridgeStub, sleep } from "@cosmicdrift/kumiko-framework/testing";
+import { afterAll, beforeAll, describe, expect, test } from "vitest";
+import { ConfigHandlers } from "../../config/constants";
+import { createConfigAccessor, createConfigFeature } from "../../config/feature";
+import { type ConfigResolver, createConfigResolver } from "../../config/resolver";
+import { configValuesTable } from "../../config/table";
+// --- Setup ---
+let testDb: TestDb;
+let testRedis: TestRedis;
+let db: DbConnection;
+let registry: Registry;
+let resolver: ConfigResolver;
+let jobRunner: JobRunner;
+const testEncryptionKey = randomBytes(32).toString("base64");
+// Feature with a system-only config key and a job that sets it
+const billingFeature = defineFeature("billing", (r) => {
+  r.requires("config");
+  r.config({
+    keys: {
+      monthlyTotal: createTenantConfig("number", {
+        default: 0,
+        write: access.system,
+        read: access.roles("Admin"),
+      }),
+    },
+  });
+  // Job that calculates monthly total and writes it via SYSTEM_USER.
+  // Post-ES the write path is the config:write:set handler — the old
+  // resolver.set escape hatch is gone. checkWriteAccess grants a
+  // SYSTEM_ROLE caller the right to write system-only keys that Admin
+  // cannot touch, so the security invariant (see Admin test below) holds.
+  r.job("calculateTotal", { trigger: { manual: true } }, async (_payload, ctx) => {
+    const systemUser = ctx["systemUser"] as SessionUser;
+    const jobDb = ctx["db"] as DbConnection;
+    const reg = ctx["registry"] as Registry;
+    ctx.log?.info("Calculating monthly total...");
+    const total = 42000;
+    const handler = reg.getWriteHandler("config:write:set");
+    if (handler) {
+      const parsed = handler.schema.parse({
+        key: "billing:config:monthly-total",
+        value: total,
+      });
+      const tenantDb = createTenantDb(jobDb, systemUser.tenantId, "system");
+      await handler.handler(
+        { type: "config:write:set", payload: parsed, user: systemUser },
+        {
+          db: tenantDb,
+          registry: reg,
+          configResolver: ctx["configResolver"] as ConfigResolver,
+          ...bridgeStub(),
+        },
+      );
+    }
+    ctx.log?.info(`Set monthlyTotal to ${total}`);
+  });
+});
+const configFeature = createConfigFeature();
+beforeAll(async () => {
+  testDb = await createTestDb();
+  testRedis = await createTestRedis();
+  db = testDb.db;
+  await pushTables(db, { configValuesTable });
+  // Post-ES config writes go through the event-store executor, which needs
+  // the framework events + archived-streams tables to exist before the
+  // first append. setupTestStack provisions them automatically; this test
+  // builds its DB manually (createTestDb + pushTables), so we do it here.
+  await createEventsTable(db);
+  await createArchivedStreamsTable(db);
+  const encryption = createEncryptionProvider(testEncryptionKey);
+  resolver = createConfigResolver({ encryption });
+  registry = createRegistry([configFeature, billingFeature]);
+  const redisUrl = `redis://${testRedis.redis.options.host}:${testRedis.redis.options.port}/${testRedis.redis.options.db}`;
+  jobRunner = createJobRunner({
+    registry,
+    context: { db, registry, configResolver: resolver, configEncryption: encryption },
+    redisUrl,
+    consumerLane: "worker",
+    queueNamePrefix: `kumiko-system-user-test-${Date.now()}`,
+  });
+  await jobRunner.start();
+});
+afterAll(async () => {
+  await jobRunner.stop();
+  await testDb.cleanup();
+  await testRedis.cleanup();
+});
+// --- Tests ---
+describe("SYSTEM_USER in jobs", () => {
+  test("job sets system-only config via ctx.systemUser", async () => {
+    // Dispatch with tenantId in payload so systemUser gets the right tenant
+    await jobRunner.dispatch("billing:job:calculate-total", {
+      tenantId: "00000000-0000-4000-8000-000000000001",
+    });
+    await sleep(1500);
+    // Config should have been set by the job via SYSTEM_USER
+    const configFn = createConfigAccessor(
+      registry,
+      resolver,
+      "00000000-0000-4000-8000-000000000001",
+      "11111111-0000-4000-8000-000000000099",
+      db,
+    );
+    const total = await configFn("billing:config:monthly-total");
+    expect(total).toBe(42000);
+    expect(typeof total).toBe("number");
+  });
+  test("Admin cannot set system-only config directly", async () => {
+    const handler = registry.getWriteHandler(ConfigHandlers.set);
+    if (!handler) throw new Error("config.set not found");
+    const parsed = handler.schema.parse({
+      key: "billing:config:monthly-total",
+      value: 99999,
+    });
+    const adminUser = TestUsers.admin;
+    const result = await handler.handler(
+      { type: ConfigHandlers.set, payload: parsed, user: adminUser },
+      {
+        db: createTenantDb(db, adminUser.tenantId, "system"),
+        registry,
+        configResolver: resolver,
+        ...bridgeStub(),
+      },
+    );
+    expect(result.isSuccess).toBe(false);
+    if (!result.isSuccess) {
+      expect(result.error.code).toBe("access_denied");
+      expect(result.error.details).toMatchObject({ reason: "config_key_is_system_only" });
+    }
+  });
+  test("value set by job is still 42000, not overwritten by Admin attempt", async () => {
+    const configFn = createConfigAccessor(
+      registry,
+      resolver,
+      "00000000-0000-4000-8000-000000000001",
+      "11111111-0000-4000-8000-000000000001",
+      db,
+    );
+    expect(await configFn("billing:config:monthly-total")).toBe(42000);
+  });
+});

package/src/jobs/__tests__/jobs-events.integration.ts ADDED Viewed

@@ -0,0 +1,143 @@
+// Event-shape contract for jobRun aggregate. Pins the three domain
+// events (run-started / run-completed / run-failed) against their
+// registered schemas + the stable type-name constants. A silent rename
+// (event-type-string, aggregateType, or payload-shape) fails here
+// instead of breaking MSP consumers and audit exports.
+//
+// The jobs integration test (jobs-feature.integration.ts) covers the
+// projection side (list + detail queries). This file covers the event
+// side — complementary coverage, minimal overlap.
+import { createRegistry, SYSTEM_TENANT_ID } from "@cosmicdrift/kumiko-framework/engine";
+import { createEventsTable, eventsTable } from "@cosmicdrift/kumiko-framework/event-store";
+import {
+  createTestDb,
+  createTestRedis,
+  pushTables,
+  type TestDb,
+  type TestRedis,
+} from "@cosmicdrift/kumiko-framework/stack";
+import { eq } from "drizzle-orm";
+import { afterAll, beforeAll, beforeEach, describe, expect, test } from "vitest";
+import { runCompletedSchema, runFailedSchema, runStartedSchema } from "../events";
+import { createJobsFeature } from "../feature";
+import {
+  createJobRunLogger,
+  JOB_RUN_COMPLETED_EVENT,
+  JOB_RUN_FAILED_EVENT,
+  JOB_RUN_STARTED_EVENT,
+} from "../job-run-logger";
+import { jobRunLogsTable, jobRunsTable } from "../job-run-table";
+let testDb: TestDb;
+let testRedis: TestRedis;
+let logger: ReturnType<typeof createJobRunLogger>;
+beforeAll(async () => {
+  testDb = await createTestDb();
+  testRedis = await createTestRedis();
+  const registry = createRegistry([createJobsFeature()]);
+  await pushTables(testDb.db, { jobRunsTable, jobRunLogsTable });
+  await createEventsTable(testDb.db);
+  logger = createJobRunLogger({ db: testDb.db, registry });
+});
+afterAll(async () => {
+  await testDb.cleanup();
+  await testRedis.cleanup();
+});
+beforeEach(async () => {
+  await testDb.db.delete(eventsTable);
+  await testDb.db.delete(jobRunsTable);
+  await testDb.db.delete(jobRunLogsTable);
+});
+describe("jobRun event shapes", () => {
+  test("event-type constants are stable strings", () => {
+    // Guard against silent rename. Tests that subscribe via string-match
+    // (MSPs written in userland, audit export tools) break without this.
+    expect(JOB_RUN_STARTED_EVENT).toBe("jobs:event:run-started");
+    expect(JOB_RUN_COMPLETED_EVENT).toBe("jobs:event:run-completed");
+    expect(JOB_RUN_FAILED_EVENT).toBe("jobs:event:run-failed");
+  });
+  test("onJobStart writes a run-started event on the jobRun aggregate", async () => {
+    await logger.onJobStart?.("example:job:import", "bull-42", {
+      triggeredById: "u-99",
+      payload: JSON.stringify({ foo: 1 }),
+      attempt: 1,
+    });
+    const events = await testDb.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.type, JOB_RUN_STARTED_EVENT));
+    expect(events.length).toBe(1);
+    const e = events[0];
+    expect(e?.aggregateType).toBe("jobRun");
+    expect(e?.tenantId).toBe(SYSTEM_TENANT_ID);
+    // Payload round-trips through the registered schema — drift would
+    // fail parse here, not silently land on the stream.
+    expect(() => runStartedSchema.parse(e?.payload)).not.toThrow();
+    const p = runStartedSchema.parse(e?.payload);
+    expect(p.jobName).toBe("example:job:import");
+    expect(p.bullJobId).toBe("bull-42");
+    expect(p.triggeredById).toBe("u-99");
+    expect(p.attempt).toBe(1);
+  });
+  test("onJobComplete writes a run-completed event with batched logs", async () => {
+    await logger.onJobStart?.("example:job:export", "bull-1", {});
+    await logger.onJobComplete?.("example:job:export", "bull-1", 123, [
+      { level: "info", message: "started", timestamp: Temporal.Now.instant() },
+      { level: "info", message: "done", timestamp: Temporal.Now.instant() },
+    ]);
+    const events = await testDb.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.type, JOB_RUN_COMPLETED_EVENT));
+    expect(events.length).toBe(1);
+    const p = runCompletedSchema.parse(events[0]?.payload);
+    expect(p.duration).toBe(123);
+    expect(p.logs).toHaveLength(2);
+    expect(p.logs[0]?.level).toBe("info");
+  });
+  test("onJobFailed writes a run-failed event with error + logs", async () => {
+    await logger.onJobStart?.("example:job:fragile", "bull-9", {});
+    await logger.onJobFailed?.("example:job:fragile", "bull-9", "boom", [
+      { level: "error", message: "kaboom", timestamp: Temporal.Now.instant() },
+    ]);
+    const events = await testDb.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.type, JOB_RUN_FAILED_EVENT));
+    expect(events.length).toBe(1);
+    const p = runFailedSchema.parse(events[0]?.payload);
+    expect(p.error).toBe("boom");
+    expect(p.logs).toHaveLength(1);
+  });
+  test("start + complete both land on the SAME aggregate stream", async () => {
+    await logger.onJobStart?.("example:job:stream", "bull-99", {});
+    await logger.onJobComplete?.("example:job:stream", "bull-99", 10, []);
+    // Both events should share the same aggregateId — that's what makes
+    // the jobRun a single stream and lets ctx.loadAggregate() reduce
+    // them into a coherent state.
+    const events = await testDb.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.aggregateType, "jobRun"));
+    expect(events.length).toBe(2);
+    const ids = new Set(events.map((e) => e.aggregateId));
+    expect(ids.size).toBe(1);
+  });
+});