npm - @cosmicdrift/kumiko-bundled-features - Versions diffs - 0.1.0 - Mend

@cosmicdrift/kumiko-bundled-features 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (333) hide show

package/package.json +90 -0
package/src/audit/__tests__/audit.integration.ts +328 -0
package/src/audit/constants.ts +7 -0
package/src/audit/feature.ts +23 -0
package/src/audit/handlers/list.query.ts +98 -0
package/src/audit/index.ts +2 -0
package/src/auth-email-password/__tests__/account-lockout-no-redis.integration.ts +149 -0
package/src/auth-email-password/__tests__/account-lockout.integration.ts +308 -0
package/src/auth-email-password/__tests__/auth-claims.integration.ts +512 -0
package/src/auth-email-password/__tests__/auth.integration.ts +610 -0
package/src/auth-email-password/__tests__/confirm-token-flow.test.ts +67 -0
package/src/auth-email-password/__tests__/email-templates.test.ts +106 -0
package/src/auth-email-password/__tests__/email-verification.integration.ts +327 -0
package/src/auth-email-password/__tests__/identity-v3-hash.test.ts +174 -0
package/src/auth-email-password/__tests__/identity-v3-login.integration.ts +150 -0
package/src/auth-email-password/__tests__/invite-flow.integration.ts +458 -0
package/src/auth-email-password/__tests__/multi-roles.integration.ts +256 -0
package/src/auth-email-password/__tests__/password-reset.integration.ts +346 -0
package/src/auth-email-password/__tests__/public-routes-rate-limit.integration.ts +144 -0
package/src/auth-email-password/__tests__/seed-admin.integration.ts +176 -0
package/src/auth-email-password/__tests__/session-callbacks.integration.ts +310 -0
package/src/auth-email-password/__tests__/session-strict-mode.integration.ts +101 -0
package/src/auth-email-password/__tests__/signed-token.test.ts +78 -0
package/src/auth-email-password/__tests__/signup-flow.integration.ts +259 -0
package/src/auth-email-password/auth-user-row.ts +41 -0
package/src/auth-email-password/constants.ts +101 -0
package/src/auth-email-password/email-templates.ts +283 -0
package/src/auth-email-password/feature.ts +140 -0
package/src/auth-email-password/handlers/change-password.write.ts +58 -0
package/src/auth-email-password/handlers/confirm-token-flow.ts +191 -0
package/src/auth-email-password/handlers/invite-accept-with-login.write.ts +203 -0
package/src/auth-email-password/handlers/invite-accept.write.ts +189 -0
package/src/auth-email-password/handlers/invite-create.write.ts +145 -0
package/src/auth-email-password/handlers/invite-signup-complete.write.ts +192 -0
package/src/auth-email-password/handlers/login.write.ts +208 -0
package/src/auth-email-password/handlers/logout.write.ts +12 -0
package/src/auth-email-password/handlers/request-email-verification.write.ts +29 -0
package/src/auth-email-password/handlers/request-password-reset.write.ts +31 -0
package/src/auth-email-password/handlers/reset-password.write.ts +61 -0
package/src/auth-email-password/handlers/signup-confirm.write.ts +170 -0
package/src/auth-email-password/handlers/signup-request.write.ts +104 -0
package/src/auth-email-password/handlers/token-request-handler.ts +114 -0
package/src/auth-email-password/handlers/verify-email.write.ts +62 -0
package/src/auth-email-password/i18n.ts +211 -0
package/src/auth-email-password/identity-v3-hash.ts +97 -0
package/src/auth-email-password/index.ts +35 -0
package/src/auth-email-password/invite-token-store.ts +92 -0
package/src/auth-email-password/lockout-store.ts +118 -0
package/src/auth-email-password/password-hashing.ts +43 -0
package/src/auth-email-password/reset-token.ts +28 -0
package/src/auth-email-password/seeding.ts +183 -0
package/src/auth-email-password/signed-token.ts +85 -0
package/src/auth-email-password/signup-token-store.ts +104 -0
package/src/auth-email-password/stream-tenant.ts +31 -0
package/src/auth-email-password/testing.ts +5 -0
package/src/auth-email-password/token-burn-store.ts +57 -0
package/src/auth-email-password/verification-token.ts +27 -0
package/src/auth-email-password/web/__tests__/auth-gate.test.tsx +51 -0
package/src/auth-email-password/web/__tests__/forgot-password-screen.test.tsx +80 -0
package/src/auth-email-password/web/__tests__/login-screen.test.tsx +94 -0
package/src/auth-email-password/web/__tests__/reset-password-screen.test.tsx +108 -0
package/src/auth-email-password/web/__tests__/session-roles.test.ts +54 -0
package/src/auth-email-password/web/__tests__/tenant-switcher.test.tsx +100 -0
package/src/auth-email-password/web/__tests__/test-utils.tsx +73 -0
package/src/auth-email-password/web/__tests__/user-menu.test.tsx +55 -0
package/src/auth-email-password/web/__tests__/verify-email-screen.test.tsx +59 -0
package/src/auth-email-password/web/auth-client.ts +350 -0
package/src/auth-email-password/web/auth-form-primitives.tsx +70 -0
package/src/auth-email-password/web/auth-gate.tsx +33 -0
package/src/auth-email-password/web/client-plugin.ts +48 -0
package/src/auth-email-password/web/default-topbar-actions.tsx +47 -0
package/src/auth-email-password/web/forgot-password-screen.tsx +110 -0
package/src/auth-email-password/web/index.ts +56 -0
package/src/auth-email-password/web/invite-accept-screen.tsx +220 -0
package/src/auth-email-password/web/login-screen.tsx +150 -0
package/src/auth-email-password/web/reset-password-screen.tsx +152 -0
package/src/auth-email-password/web/session.tsx +171 -0
package/src/auth-email-password/web/signup-complete-screen.tsx +150 -0
package/src/auth-email-password/web/signup-screen.tsx +130 -0
package/src/auth-email-password/web/tenant-switcher.tsx +116 -0
package/src/auth-email-password/web/use-shell-user.ts +34 -0
package/src/auth-email-password/web/user-menu.tsx +89 -0
package/src/auth-email-password/web/verify-email-screen.tsx +102 -0
package/src/billing-foundation/__tests__/billing-foundation.integration.ts +568 -0
package/src/billing-foundation/__tests__/feature.test.ts +110 -0
package/src/billing-foundation/__tests__/webhook-handler.test.ts +199 -0
package/src/billing-foundation/aggregate-id.ts +21 -0
package/src/billing-foundation/constants.ts +70 -0
package/src/billing-foundation/entities.ts +50 -0
package/src/billing-foundation/events.ts +71 -0
package/src/billing-foundation/feature.ts +122 -0
package/src/billing-foundation/get-subscription-for-tenant.ts +39 -0
package/src/billing-foundation/handlers/create-checkout-session.write.ts +79 -0
package/src/billing-foundation/handlers/create-portal-session.write.ts +73 -0
package/src/billing-foundation/handlers/list-subscriptions.query.ts +20 -0
package/src/billing-foundation/handlers/process-event.write.ts +160 -0
package/src/billing-foundation/index.ts +42 -0
package/src/billing-foundation/projection.ts +135 -0
package/src/billing-foundation/types.ts +157 -0
package/src/billing-foundation/webhook-handler.ts +184 -0
package/src/cap-counter/__tests__/cap-counter.integration.ts +566 -0
package/src/cap-counter/__tests__/enforce-cap.test.ts +422 -0
package/src/cap-counter/__tests__/with-cap-enforcement.integration.ts +265 -0
package/src/cap-counter/aggregate-id.ts +61 -0
package/src/cap-counter/constants.ts +32 -0
package/src/cap-counter/enforce-cap.ts +404 -0
package/src/cap-counter/entity.ts +48 -0
package/src/cap-counter/feature.ts +90 -0
package/src/cap-counter/handlers/get-counter.query.ts +43 -0
package/src/cap-counter/handlers/increment-rolling.write.ts +79 -0
package/src/cap-counter/handlers/increment.write.ts +92 -0
package/src/cap-counter/handlers/mark-soft-warned.write.ts +57 -0
package/src/cap-counter/index.ts +34 -0
package/src/cap-counter/with-cap-enforcement.ts +179 -0
package/src/channel-email/email-channel.ts +48 -0
package/src/channel-email/feature.ts +15 -0
package/src/channel-email/index.ts +4 -0
package/src/channel-email/smtp-transport.ts +65 -0
package/src/channel-email/types.ts +34 -0
package/src/channel-in-app/constants.ts +11 -0
package/src/channel-in-app/feature.ts +30 -0
package/src/channel-in-app/handlers/inbox.query.ts +28 -0
package/src/channel-in-app/handlers/mark-all-read.write.ts +21 -0
package/src/channel-in-app/handlers/mark-read.write.ts +32 -0
package/src/channel-in-app/handlers/unread-count.query.ts +20 -0
package/src/channel-in-app/in-app-channel.ts +44 -0
package/src/channel-in-app/index.ts +4 -0
package/src/channel-in-app/tables.ts +22 -0
package/src/channel-push/feature.ts +15 -0
package/src/channel-push/index.ts +3 -0
package/src/channel-push/push-channel.ts +33 -0
package/src/channel-push/types.ts +22 -0
package/src/config/__tests__/app-overrides.test.ts +118 -0
package/src/config/__tests__/config.integration.ts +1246 -0
package/src/config/constants.ts +23 -0
package/src/config/feature.ts +117 -0
package/src/config/handlers/__tests__/prepare-config-write.test.ts +209 -0
package/src/config/handlers/reset.write.ts +45 -0
package/src/config/handlers/schema.query.ts +22 -0
package/src/config/handlers/set.write.ts +93 -0
package/src/config/handlers/values.query.ts +43 -0
package/src/config/index.ts +15 -0
package/src/config/resolver.ts +283 -0
package/src/config/table.ts +35 -0
package/src/config/write-helpers.ts +268 -0
package/src/delivery/__tests__/delivery-events.integration.ts +166 -0
package/src/delivery/__tests__/delivery.integration.ts +1405 -0
package/src/delivery/constants.ts +33 -0
package/src/delivery/delivery-service.ts +489 -0
package/src/delivery/events.ts +18 -0
package/src/delivery/feature.ts +70 -0
package/src/delivery/handlers/log.query.ts +21 -0
package/src/delivery/handlers/preferences.query.ts +18 -0
package/src/delivery/handlers/set-preference.write.ts +28 -0
package/src/delivery/index.ts +35 -0
package/src/delivery/tables.ts +74 -0
package/src/delivery/testing.ts +47 -0
package/src/delivery/types.ts +71 -0
package/src/delivery/unsubscribe.ts +99 -0
package/src/delivery/upsert-preference.ts +145 -0
package/src/feature-toggles/__tests__/feature-toggles.integration.ts +687 -0
package/src/feature-toggles/constants.ts +20 -0
package/src/feature-toggles/events.ts +18 -0
package/src/feature-toggles/feature.ts +98 -0
package/src/feature-toggles/global-feature-state-table.ts +28 -0
package/src/feature-toggles/handlers/list.query.ts +26 -0
package/src/feature-toggles/handlers/registered.query.ts +56 -0
package/src/feature-toggles/handlers/set.write.ts +158 -0
package/src/feature-toggles/index.ts +9 -0
package/src/feature-toggles/toggle-runtime.ts +73 -0
package/src/file-foundation/__tests__/feature.test.ts +35 -0
package/src/file-foundation/__tests__/file-foundation.integration.ts +235 -0
package/src/file-foundation/feature.ts +123 -0
package/src/file-foundation/index.ts +7 -0
package/src/file-provider-inmemory/__tests__/feature.test.ts +35 -0
package/src/file-provider-inmemory/feature.ts +73 -0
package/src/file-provider-inmemory/index.ts +3 -0
package/src/file-provider-s3/__tests__/feature.test.ts +54 -0
package/src/file-provider-s3/feature.ts +169 -0
package/src/file-provider-s3/index.ts +3 -0
package/src/files-provider-s3/__tests__/env-helper.test.ts +161 -0
package/src/files-provider-s3/__tests__/s3-provider.integration.ts +134 -0
package/src/files-provider-s3/__tests__/s3-provider.test.ts +36 -0
package/src/files-provider-s3/env-helper.ts +49 -0
package/src/files-provider-s3/index.ts +3 -0
package/src/files-provider-s3/s3-provider.ts +114 -0
package/src/foundation-shared/config-helpers.ts +67 -0
package/src/foundation-shared/index.ts +4 -0
package/src/jobs/__tests__/job-system-user.integration.ts +194 -0
package/src/jobs/__tests__/jobs-events.integration.ts +143 -0
package/src/jobs/__tests__/jobs-feature.integration.ts +342 -0
package/src/jobs/constants.ts +21 -0
package/src/jobs/events.ts +39 -0
package/src/jobs/feature.ts +150 -0
package/src/jobs/handlers/detail.query.ts +30 -0
package/src/jobs/handlers/list.query.ts +36 -0
package/src/jobs/handlers/retry.write.ts +69 -0
package/src/jobs/handlers/trigger.write.ts +39 -0
package/src/jobs/index.ts +5 -0
package/src/jobs/job-run-logger.ts +213 -0
package/src/jobs/job-run-table.ts +55 -0
package/src/legal-pages/README.md +195 -0
package/src/legal-pages/__tests__/legal-pages.integration.ts +361 -0
package/src/legal-pages/constants.ts +36 -0
package/src/legal-pages/feature.ts +187 -0
package/src/legal-pages/index.ts +13 -0
package/src/legal-pages/markdown.ts +69 -0
package/src/mail-foundation/__tests__/feature.test.ts +46 -0
package/src/mail-foundation/__tests__/mail-foundation.integration.ts +247 -0
package/src/mail-foundation/feature.ts +160 -0
package/src/mail-foundation/index.ts +14 -0
package/src/mail-transport-inmemory/__tests__/feature.test.ts +37 -0
package/src/mail-transport-inmemory/feature.ts +90 -0
package/src/mail-transport-inmemory/index.ts +3 -0
package/src/mail-transport-smtp/__tests__/feature.test.ts +61 -0
package/src/mail-transport-smtp/feature.ts +182 -0
package/src/mail-transport-smtp/index.ts +3 -0
package/src/rate-limiting/__tests__/rate-limiting.integration.ts +84 -0
package/src/rate-limiting/constants.ts +9 -0
package/src/rate-limiting/feature.ts +16 -0
package/src/rate-limiting/handlers/status.query.ts +52 -0
package/src/rate-limiting/index.ts +2 -0
package/src/renderer-simple/__tests__/simple-renderer.test.ts +97 -0
package/src/renderer-simple/feature.ts +12 -0
package/src/renderer-simple/index.ts +2 -0
package/src/renderer-simple/simple-renderer.ts +72 -0
package/src/secrets/__tests__/rotate.integration.ts +176 -0
package/src/secrets/__tests__/secrets-events.integration.ts +125 -0
package/src/secrets/__tests__/secrets.integration.ts +118 -0
package/src/secrets/feature.ts +84 -0
package/src/secrets/handlers/delete.write.ts +20 -0
package/src/secrets/handlers/list.query.ts +38 -0
package/src/secrets/handlers/rotate.job.ts +193 -0
package/src/secrets/handlers/set.write.ts +50 -0
package/src/secrets/index.ts +16 -0
package/src/secrets/secrets-context.ts +296 -0
package/src/secrets/table.ts +68 -0
package/src/sessions/__tests__/cleanup.integration.ts +175 -0
package/src/sessions/__tests__/password-auto-revoke.integration.ts +202 -0
package/src/sessions/__tests__/sessions.integration.ts +472 -0
package/src/sessions/__tests__/test-helpers.ts +66 -0
package/src/sessions/constants.ts +43 -0
package/src/sessions/feature.ts +84 -0
package/src/sessions/handlers/cleanup.job.ts +109 -0
package/src/sessions/handlers/list.query.ts +35 -0
package/src/sessions/handlers/mine.query.ts +37 -0
package/src/sessions/handlers/revoke-all-others.write.ts +42 -0
package/src/sessions/handlers/revoke.write.ts +76 -0
package/src/sessions/index.ts +17 -0
package/src/sessions/schema/index.ts +5 -0
package/src/sessions/schema/user-session.ts +67 -0
package/src/sessions/session-callbacks.ts +110 -0
package/src/sessions/testing.ts +42 -0
package/src/subscription-mollie/__tests__/feature.test.ts +106 -0
package/src/subscription-mollie/__tests__/mollie-foundation.integration.ts +421 -0
package/src/subscription-mollie/__tests__/verify-webhook.test.ts +388 -0
package/src/subscription-mollie/constants.ts +33 -0
package/src/subscription-mollie/feature.ts +144 -0
package/src/subscription-mollie/index.ts +13 -0
package/src/subscription-mollie/plugin-methods.ts +79 -0
package/src/subscription-mollie/verify-webhook.ts +244 -0
package/src/subscription-stripe/__tests__/feature.test.ts +98 -0
package/src/subscription-stripe/__tests__/plugin-methods.test.ts +161 -0
package/src/subscription-stripe/__tests__/stripe-foundation.integration.ts +315 -0
package/src/subscription-stripe/__tests__/verify-webhook.test.ts +306 -0
package/src/subscription-stripe/constants.ts +20 -0
package/src/subscription-stripe/feature.ts +120 -0
package/src/subscription-stripe/index.ts +14 -0
package/src/subscription-stripe/plugin-methods.ts +91 -0
package/src/subscription-stripe/verify-webhook.ts +235 -0
package/src/tenant/__tests__/multi-tenant.integration.ts +278 -0
package/src/tenant/__tests__/seed-testing.integration.ts +229 -0
package/src/tenant/__tests__/tenant.integration.ts +347 -0
package/src/tenant/command-schemas.ts +37 -0
package/src/tenant/constants.ts +37 -0
package/src/tenant/feature.ts +109 -0
package/src/tenant/handlers/active-tenant-ids.query.ts +19 -0
package/src/tenant/handlers/add-member.write.ts +53 -0
package/src/tenant/handlers/cancel-invitation.write.ts +87 -0
package/src/tenant/handlers/create.write.ts +21 -0
package/src/tenant/handlers/disable.write.ts +18 -0
package/src/tenant/handlers/invitations.query.ts +31 -0
package/src/tenant/handlers/list.query.ts +17 -0
package/src/tenant/handlers/me.query.ts +17 -0
package/src/tenant/handlers/members.query.ts +22 -0
package/src/tenant/handlers/memberships.query.ts +24 -0
package/src/tenant/handlers/remove-member.write.ts +40 -0
package/src/tenant/handlers/resolve-user-ids.query.ts +43 -0
package/src/tenant/handlers/update-member-roles.write.ts +54 -0
package/src/tenant/handlers/update.write.ts +20 -0
package/src/tenant/index.ts +12 -0
package/src/tenant/invitation-table.ts +93 -0
package/src/tenant/membership-table.ts +35 -0
package/src/tenant/schema/index.ts +5 -0
package/src/tenant/schema/tenant.ts +27 -0
package/src/tenant/seeding.ts +155 -0
package/src/tenant/testing.ts +8 -0
package/src/text-content/README.md +190 -0
package/src/text-content/__tests__/text-content.integration.ts +415 -0
package/src/text-content/api.ts +92 -0
package/src/text-content/constants.ts +19 -0
package/src/text-content/feature.ts +29 -0
package/src/text-content/handlers/by-slug.query.ts +55 -0
package/src/text-content/handlers/set.write.ts +118 -0
package/src/text-content/index.ts +14 -0
package/src/text-content/seeding.ts +91 -0
package/src/text-content/table.ts +45 -0
package/src/tier-engine/__tests__/compose-app.test.ts +182 -0
package/src/tier-engine/__tests__/drift.test.ts +42 -0
package/src/tier-engine/__tests__/tier-engine.integration.ts +241 -0
package/src/tier-engine/aggregate-id.ts +27 -0
package/src/tier-engine/compose-app.ts +150 -0
package/src/tier-engine/constants.ts +15 -0
package/src/tier-engine/entity.ts +30 -0
package/src/tier-engine/feature.ts +72 -0
package/src/tier-engine/handlers/active-tier.query.ts +23 -0
package/src/tier-engine/index.ts +22 -0
package/src/user/__tests__/seed-testing.integration.ts +127 -0
package/src/user/__tests__/user.integration.ts +198 -0
package/src/user/command-schemas.ts +15 -0
package/src/user/constants.ts +23 -0
package/src/user/feature.ts +32 -0
package/src/user/handlers/create.write.ts +54 -0
package/src/user/handlers/detail.query.ts +9 -0
package/src/user/handlers/find-for-auth.query.ts +38 -0
package/src/user/handlers/list.query.ts +8 -0
package/src/user/handlers/me.query.ts +15 -0
package/src/user/handlers/update.write.ts +54 -0
package/src/user/index.ts +4 -0
package/src/user/schema/index.ts +5 -0
package/src/user/schema/user.ts +69 -0
package/src/user/seeding.ts +93 -0
package/src/user/testing.ts +5 -0

package/src/tenant/__tests__/multi-tenant.integration.ts ADDED Viewed

@@ -0,0 +1,278 @@
+import { buildServer, type JwtHelper } from "@cosmicdrift/kumiko-framework/api";
+import { createTenantDb, type DbConnection } from "@cosmicdrift/kumiko-framework/db";
+import {
+  createRegistry,
+  defineFeature,
+  type SessionUser,
+  type TenantId,
+} from "@cosmicdrift/kumiko-framework/engine";
+import { createEventsTable } from "@cosmicdrift/kumiko-framework/event-store";
+import { createJobRunner, type JobRunner } from "@cosmicdrift/kumiko-framework/jobs";
+import {
+  createEntityTable,
+  createTestDb,
+  createTestRedis,
+  createTestUser,
+  pushTables,
+  type TestDb,
+  type TestRedis,
+  TestUsers,
+  testTenantId,
+} from "@cosmicdrift/kumiko-framework/stack";
+import { bridgeStub, sleep } from "@cosmicdrift/kumiko-framework/testing";
+import type { Hono } from "hono";
+import { afterAll, beforeAll, describe, expect, test } from "vitest";
+import { createConfigFeature } from "../../config/feature";
+import { createConfigResolver } from "../../config/resolver";
+import { configValuesTable } from "../../config/table";
+import { TenantHandlers, TenantQueries } from "../constants";
+import { createTenantFeature } from "../feature";
+import { tenantMembershipsTable } from "../membership-table";
+import { tenantEntity } from "../schema/tenant";
+// --- Track job executions ---
+const jobExecutions: Array<{ name: string; tenantId: TenantId }> = [];
+// --- Feature with perTenant job ---
+const billingFeature = defineFeature("billing", (r) => {
+  r.job("monthlyReport", { trigger: { manual: true }, perTenant: true }, async (_payload, ctx) => {
+    const systemUser = ctx["systemUser"] as SessionUser;
+    jobExecutions.push({ name: "billing:job:monthly-report", tenantId: systemUser.tenantId });
+  });
+});
+// --- Setup ---
+let testDb: TestDb;
+let testRedis: TestRedis;
+let db: DbConnection;
+let app: Hono;
+let jwt: JwtHelper;
+let jobRunner: JobRunner;
+const systemAdmin = TestUsers.systemAdmin;
+const JWT_SECRET = "multi-tenant-test-secret-minimum-32-chars!!";
+beforeAll(async () => {
+  testDb = await createTestDb();
+  testRedis = await createTestRedis();
+  db = testDb.db;
+  await createEntityTable(db, tenantEntity);
+  await pushTables(db, { tenantMembershipsTable, configValuesTable });
+  await createEventsTable(db);
+  const configFeature = createConfigFeature();
+  const tenantFeature = createTenantFeature();
+  const registry = createRegistry([configFeature, tenantFeature, billingFeature]);
+  const resolver = createConfigResolver();
+  const redisUrl = `redis://${testRedis.redis.options.host}:${testRedis.redis.options.port}/${testRedis.redis.options.db}`;
+  jobRunner = createJobRunner({
+    registry,
+    context: { db, registry, configResolver: resolver },
+    redisUrl,
+    consumerLane: "worker",
+    queueNamePrefix: `kumiko-multi-tenant-test-${Date.now()}`,
+    getActiveTenantIds: async () => {
+      const handler = registry.getQueryHandler(TenantQueries.activeTenantIds);
+      if (!handler) return [];
+      const result = await handler.handler(
+        {
+          type: TenantQueries.activeTenantIds,
+          payload: {},
+          user: {
+            id: "00000000-0000-0000-0000-000000000000",
+            tenantId: "00000000-0000-4000-8000-000000000000",
+            roles: ["system"],
+          },
+        },
+        {
+          db: createTenantDb(db, "00000000-0000-4000-8000-000000000000", "system"),
+          registry,
+          ...bridgeStub(),
+        },
+      );
+      return result as number[];
+    },
+  });
+  const context = { db, registry, configResolver: resolver, jobRunner };
+  const server = buildServer({
+    registry,
+    context,
+    jwtSecret: JWT_SECRET,
+    auth: { membershipQuery: TenantQueries.memberships },
+  });
+  app = server.app;
+  jwt = server.jwt;
+  await jobRunner.start();
+});
+afterAll(async () => {
+  await jobRunner.stop();
+  await testDb.cleanup();
+  await testRedis.cleanup();
+});
+// --- Helpers ---
+async function writeApi(user: SessionUser, type: string, payload: unknown) {
+  const token = await jwt.sign(user);
+  const res = await app.request("/api/write", {
+    method: "POST",
+    headers: { "Content-Type": "application/json", Authorization: `Bearer ${token}` },
+    body: JSON.stringify({ type, payload }),
+  });
+  return res.json();
+}
+async function queryApi(user: SessionUser, type: string, payload: unknown) {
+  const token = await jwt.sign(user);
+  const res = await app.request("/api/query", {
+    method: "POST",
+    headers: { "Content-Type": "application/json", Authorization: `Bearer ${token}` },
+    body: JSON.stringify({ type, payload }),
+  });
+  return res.json();
+}
+async function getApi(user: SessionUser, path: string) {
+  const token = await jwt.sign(user);
+  return app.request(`/api${path}`, {
+    method: "GET",
+    headers: { Authorization: `Bearer ${token}` },
+  });
+}
+async function postApi(user: SessionUser, path: string, body: unknown) {
+  const token = await jwt.sign(user);
+  return app.request(`/api${path}`, {
+    method: "POST",
+    headers: { "Content-Type": "application/json", Authorization: `Bearer ${token}` },
+    body: JSON.stringify(body),
+  });
+}
+// --- Scenario 1+2: Create tenants and memberships, then switch ---
+describe("multi-tenant user", () => {
+  test("setup: create two tenants", async () => {
+    // Explicit ids so later assertions (memberships, perTenant jobs) can
+    // match against the fixed testTenantId(1/2) values the test fixtures use.
+    const r1 = await writeApi(systemAdmin, TenantHandlers.create, {
+      id: testTenantId(1),
+      key: "acme",
+      name: "ACME",
+    });
+    expect(r1.isSuccess).toBe(true);
+    const r2 = await writeApi(systemAdmin, TenantHandlers.create, {
+      id: testTenantId(2),
+      key: "beta",
+      name: "Beta Inc",
+    });
+    expect(r2.isSuccess).toBe(true);
+  });
+  test("add user to both tenants with different roles", async () => {
+    const r1 = await writeApi(systemAdmin, TenantHandlers.addMember, {
+      userId: "11111111-0000-4000-8000-000000000010",
+      tenantId: testTenantId(1),
+      roles: ["Admin"],
+    });
+    expect(r1.isSuccess).toBe(true);
+    const r2 = await writeApi(systemAdmin, TenantHandlers.addMember, {
+      userId: "11111111-0000-4000-8000-000000000010",
+      tenantId: testTenantId(2),
+      roles: ["Viewer"],
+    });
+    expect(r2.isSuccess).toBe(true);
+  });
+  test("list tenants for user shows both", async () => {
+    const result = await queryApi(systemAdmin, TenantQueries.memberships, {
+      userId: "11111111-0000-4000-8000-000000000010",
+    });
+    const memberships = result.data;
+    expect(memberships.length).toBe(2);
+    const tenantIds = memberships.map((m: Record<string, unknown>) => m["tenantId"]);
+    expect(tenantIds).toContain(testTenantId(1));
+    expect(tenantIds).toContain(testTenantId(2));
+  });
+  test("user has different roles per tenant", async () => {
+    const result = await queryApi(systemAdmin, TenantQueries.memberships, {
+      userId: "11111111-0000-4000-8000-000000000010",
+    });
+    const memberships = result.data;
+    const acme = memberships.find(
+      (m: Record<string, unknown>) => m["tenantId"] === testTenantId(1),
+    );
+    const beta = memberships.find(
+      (m: Record<string, unknown>) => m["tenantId"] === testTenantId(2),
+    );
+    expect(acme["roles"]).toEqual(["Admin"]);
+    expect(beta["roles"]).toEqual(["Viewer"]);
+  });
+  test("GET /auth/tenants returns tenant list", async () => {
+    const user = createTestUser({ id: 10 });
+    const res = await getApi(user, "/auth/tenants");
+    expect(res.status).toBe(200);
+    const body = await res.json();
+    expect(body.tenants.length).toBe(2);
+    expect(body.activeTenantId).toBe(testTenantId(1));
+  });
+  test("POST /auth/switch-tenant issues new JWT with different tenant", async () => {
+    const user = createTestUser({ id: 10 });
+    const res = await postApi(user, "/auth/switch-tenant", { tenantId: testTenantId(2) });
+    expect(res.status).toBe(200);
+    const body = await res.json();
+    expect(body.tenantId).toBe(testTenantId(2));
+    expect(body.roles).toEqual(["Viewer"]);
+    expect(body.token).toBeDefined();
+  });
+  test("switch to non-member tenant is rejected", async () => {
+    const user = createTestUser({ id: 10 });
+    const res = await postApi(user, "/auth/switch-tenant", { tenantId: testTenantId(999) });
+    expect(res.status).toBe(403);
+  });
+});
+// --- Scenario 4+5: perTenant jobs ---
+describe("perTenant jobs", () => {
+  test("perTenant job dispatches once per active tenant", async () => {
+    jobExecutions.length = 0;
+    await jobRunner.dispatch("billing:job:monthly-report", {});
+    // This dispatches _perTenant:billing.monthlyReport which fans out
+    // Wait for fan-out + processing
+    await sleep(2000);
+    // Should have run for each active tenant (we created 2)
+    expect(jobExecutions.length).toBe(2);
+    const tenantIds = jobExecutions.map((e) => e.tenantId);
+    expect(tenantIds).toContain(testTenantId(1));
+    expect(tenantIds).toContain(testTenantId(2));
+  });
+  test("each sub-job has the correct tenantId in systemUser", async () => {
+    for (const execution of jobExecutions) {
+      // UUID strings — just ensure a non-empty tenantId landed in the systemUser.
+      expect(typeof execution.tenantId).toBe("string");
+      expect(execution.tenantId.length).toBeGreaterThan(0);
+    }
+  });
+});

package/src/tenant/__tests__/seed-testing.integration.ts ADDED Viewed

@@ -0,0 +1,229 @@
+// Test for the seedTenantMembership test-helper itself. Test-helpers that
+// other tests rely on for fixture setup should themselves have coverage —
+// otherwise a silent regression (e.g. the helper stops writing events but
+// keeps writing the projection) leaves every downstream test falsely
+// passing on bogus state.
+//
+// Four invariants matter:
+//   1. The projection row lands with the right (userId, tenantId, roles).
+//   2. A `tenantMembership.created` event lands on the aggregate stream.
+//   3. Duplicate call is a no-op (no second event, no crash).
+//   4. The `by`-user shows up as insertedById on the projection — so
+//      audit-queries that join events→users actually find the actor.
+import type { TenantId } from "@cosmicdrift/kumiko-framework/engine";
+import { createEventsTable, eventsTable } from "@cosmicdrift/kumiko-framework/event-store";
+import {
+  createEntityTable,
+  createTestUser,
+  pushTables,
+  setupTestStack,
+  type TestStack,
+  TestUsers,
+} from "@cosmicdrift/kumiko-framework/stack";
+import { and, eq } from "drizzle-orm";
+import { afterAll, beforeAll, beforeEach, describe, expect, test } from "vitest";
+import { createConfigFeature } from "../../config/feature";
+import { createConfigResolver } from "../../config/resolver";
+import { configValuesTable } from "../../config/table";
+import { createTenantFeature } from "../feature";
+import { tenantMembershipsTable } from "../membership-table";
+import { tenantEntity, tenantTable } from "../schema/tenant";
+import { seedTenant, seedTenantMembership } from "../seeding";
+let stack: TestStack;
+const ALICE_ID = "11111111-0000-4000-8000-000000000aaa";
+const TENANT_A: TenantId = "00000000-0000-4000-8000-000000000aaa" as TenantId;
+const TENANT_B: TenantId = "00000000-0000-4000-8000-000000000bbb" as TenantId;
+beforeAll(async () => {
+  const resolver = createConfigResolver();
+  stack = await setupTestStack({
+    features: [createConfigFeature(), createTenantFeature()],
+    extraContext: { configResolver: resolver },
+  });
+  await createEntityTable(stack.db, tenantEntity);
+  await pushTables(stack.db, { configValuesTable, tenantMembershipsTable });
+  await createEventsTable(stack.db);
+});
+afterAll(async () => {
+  await stack.cleanup();
+});
+beforeEach(async () => {
+  await stack.db.delete(tenantMembershipsTable);
+  await stack.db.delete(tenantTable);
+  // Events stay — the idempotency test below inspects how many .created
+  // events exist for the same aggregate-key pair across runs.
+  await stack.db.delete(eventsTable);
+});
+describe("seedTenant", () => {
+  test("schreibt Projection-Row mit id/key/name", async () => {
+    const id = await seedTenant(stack.db, {
+      id: TENANT_A,
+      key: "tenant-a",
+      name: "Tenant A",
+    });
+    expect(id).toBe(TENANT_A);
+    const rows = await stack.db.select().from(tenantTable).where(eq(tenantTable["id"], TENANT_A));
+    expect(rows).toHaveLength(1);
+    expect(rows[0]?.["id"]).toBe(TENANT_A);
+    expect(rows[0]?.["key"]).toBe("tenant-a");
+    expect(rows[0]?.["name"]).toBe("Tenant A");
+  });
+  test("emittiert tenant.created-Event auf den Aggregate-Stream", async () => {
+    await seedTenant(stack.db, { id: TENANT_A, key: "tenant-a", name: "Tenant A" });
+    const events = await stack.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.aggregateType, "tenant"));
+    const createdEvents = events.filter((e) => e.type === "tenant.created");
+    expect(createdEvents).toHaveLength(1);
+    // Aggregate-id steht im event-row (aggregateId), nicht im payload —
+    // payload trägt die Aggregat-Felder ohne PK.
+    expect(createdEvents[0]?.aggregateId).toBe(TENANT_A);
+    const payload = createdEvents[0]?.payload as { key: string; name: string };
+    expect(payload.key).toBe("tenant-a");
+    expect(payload.name).toBe("Tenant A");
+  });
+  test("zweiter Aufruf für dieselbe id: no-op (kein zweites Event, kein Crash)", async () => {
+    await seedTenant(stack.db, { id: TENANT_A, key: "tenant-a", name: "Tenant A" });
+    await seedTenant(stack.db, { id: TENANT_A, key: "tenant-a", name: "Tenant A v2" });
+    // Projection bleibt bei Original-name (zweiter Call wurde geskippt, kein update).
+    const rows = await stack.db.select().from(tenantTable).where(eq(tenantTable["id"], TENANT_A));
+    expect(rows).toHaveLength(1);
+    expect(rows[0]?.["name"]).toBe("Tenant A");
+    const events = await stack.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.aggregateType, "tenant"));
+    expect(events.filter((e) => e.type === "tenant.created")).toHaveLength(1);
+  });
+  test("zwei verschiedene Tenants in einem Test — beide in der Projection", async () => {
+    await seedTenant(stack.db, { id: TENANT_A, key: "a", name: "A" });
+    await seedTenant(stack.db, { id: TENANT_B, key: "b", name: "B" });
+    const rows = await stack.db.select().from(tenantTable);
+    expect(rows.map((r) => r["id"]).sort()).toEqual([TENANT_A, TENANT_B].sort());
+  });
+});
+describe("seedTenantMembership", () => {
+  test("writes the projection row with the given userId / tenantId / roles", async () => {
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["Admin", "Billing"],
+    });
+    const rows = await stack.db
+      .select()
+      .from(tenantMembershipsTable)
+      .where(
+        and(
+          eq(tenantMembershipsTable.userId, ALICE_ID),
+          eq(tenantMembershipsTable.tenantId, TENANT_A),
+        ),
+      );
+    expect(rows).toHaveLength(1);
+    expect(rows[0]?.["userId"]).toBe(ALICE_ID);
+    expect(rows[0]?.["tenantId"]).toBe(TENANT_A);
+    expect(rows[0]?.["roles"]).toBe(JSON.stringify(["Admin", "Billing"]));
+  });
+  test("writes a tenantMembership.created event on the aggregate stream", async () => {
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["User"],
+    });
+    const events = await stack.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.aggregateType, "tenant-membership"));
+    const createdEvents = events.filter((e) => e.type === "tenant-membership.created");
+    expect(createdEvents).toHaveLength(1);
+    // Payload should carry the seeded data — MSPs/audit rely on this.
+    const payload = createdEvents[0]?.payload as {
+      userId: string;
+      tenantId: string;
+      roles: string;
+    };
+    expect(payload.userId).toBe(ALICE_ID);
+    expect(payload.tenantId).toBe(TENANT_A);
+    expect(payload.roles).toBe(JSON.stringify(["User"]));
+  });
+  test("calling twice for the same (userId, tenantId) is idempotent — no second event, no crash", async () => {
+    // First call: creates both projection row + event.
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["User"],
+    });
+    // Second call: helper detects existing row and no-ops. Would otherwise
+    // trip the (user_id, tenant_id) unique index AND would bump the event
+    // count — both are footguns for beforeEach-resets that only clear some
+    // tables.
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["User"],
+    });
+    const projectionRows = await stack.db
+      .select()
+      .from(tenantMembershipsTable)
+      .where(eq(tenantMembershipsTable.userId, ALICE_ID));
+    expect(projectionRows).toHaveLength(1);
+    const events = await stack.db
+      .select()
+      .from(eventsTable)
+      .where(eq(eventsTable.aggregateType, "tenant-membership"));
+    expect(events.filter((e) => e.type === "tenant-membership.created")).toHaveLength(1);
+  });
+  test("records the `by` user as insertedById on the projection", async () => {
+    // Audit-queries that join events → users need a stable actor. Default
+    // `by` is TestUsers.systemAdmin; override to a custom test user and
+    // assert it propagates to the projection's inserted_by_id column.
+    const seedActor = createTestUser({ id: 99, tenantId: TENANT_A });
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["User"],
+      by: seedActor,
+    });
+    const [row] = await stack.db
+      .select()
+      .from(tenantMembershipsTable)
+      .where(eq(tenantMembershipsTable.userId, ALICE_ID));
+    expect(row?.["insertedById"]).toBe(seedActor.id);
+  });
+  test("default `by` is TestUsers.systemAdmin", async () => {
+    // Documents the fallback — a regression that changed the default would
+    // silently skew audit queries across 18 call-sites.
+    await seedTenantMembership(stack.db, {
+      userId: ALICE_ID,
+      tenantId: TENANT_A,
+      roles: ["User"],
+    });
+    const [row] = await stack.db
+      .select()
+      .from(tenantMembershipsTable)
+      .where(eq(tenantMembershipsTable.userId, ALICE_ID));
+    expect(row?.["insertedById"]).toBe(TestUsers.systemAdmin.id);
+  });
+});