@cundi/refine-xaf 1.0.0 → 1.0.1

package/dist/index.mjs

@@ -4,6 +4,8 @@ var __publicField = (obj, key, value) => __defNormalProp(obj, typeof key !== "sy
 
 // src/utils/httpClient.ts
 var TOKEN_KEY = "refine-auth";
+var MAX_RETRIES = 3;
+var BASE_RETRY_DELAY = 1e3;
 var HttpError = class _HttpError extends Error {
   constructor(statusCode, message2, body) {
     super(message2);
@@ -19,8 +21,15 @@ var HttpError = class _HttpError extends Error {
 var getBaseUrl = () => {
   return import.meta.env?.VITE_API_URL || "";
 };
-var httpClient = async (endpoint, options = {}) => {
-  const { skipAuth, headers, ...restOptions } = options;
+var delay = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
+var isRetryableError = (error) => {
+  if (error instanceof HttpError) {
+    return error.statusCode >= 500;
+  }
+  return true;
+};
+var httpClient = async (endpoint, options = {}, retryCount = 0) => {
+  const { skipAuth, noRetry, headers, ...restOptions } = options;
   const baseUrl = getBaseUrl();
   const url = endpoint.startsWith("http") ? endpoint : `${baseUrl}${endpoint.startsWith("/") ? "" : "/"}${endpoint}`;
   const defaultHeaders = {
@@ -49,7 +58,14 @@ var httpClient = async (endpoint, options = {}) => {
       } catch {
         parsedError = errorBody;
       }
-      throw new HttpError(response.status, response.statusText, parsedError);
+      const error = new HttpError(response.status, response.statusText, parsedError);
+      if (!noRetry && retryCount < MAX_RETRIES && isRetryableError(error)) {
+        const retryDelay = BASE_RETRY_DELAY * Math.pow(2, retryCount);
+        console.warn(`Request failed with ${response.status}, retrying in ${retryDelay}ms... (${retryCount + 1}/${MAX_RETRIES})`);
+        await delay(retryDelay);
+        return httpClient(endpoint, options, retryCount + 1);
+      }
+      throw error;
     }
     if (response.status === 204) {
       return null;
@@ -59,6 +75,12 @@ var httpClient = async (endpoint, options = {}) => {
     if (error instanceof HttpError) {
       throw error;
     }
+    if (!noRetry && retryCount < MAX_RETRIES && isRetryableError(error)) {
+      const retryDelay = BASE_RETRY_DELAY * Math.pow(2, retryCount);
+      console.warn(`Network error, retrying in ${retryDelay}ms... (${retryCount + 1}/${MAX_RETRIES})`);
+      await delay(retryDelay);
+      return httpClient(endpoint, options, retryCount + 1);
+    }
     throw new HttpError(500, "Network Error", error);
   }
 };
@@ -116,22 +138,207 @@ var authService = {
   }
 };
 
+// src/utils/pkceUtils.ts
+var STORAGE_KEY_CODE_VERIFIER = "pkce_code_verifier";
+var STORAGE_KEY_STATE = "pkce_state";
+function generateRandomString(length) {
+  const charset = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789-._~";
+  const randomValues = new Uint8Array(length);
+  crypto.getRandomValues(randomValues);
+  let result = "";
+  for (let i = 0; i < length; i++) {
+    result += charset[randomValues[i] % charset.length];
+  }
+  return result;
+}
+async function sha256(plain) {
+  const encoder = new TextEncoder();
+  const data = encoder.encode(plain);
+  const hash = await crypto.subtle.digest("SHA-256", data);
+  const base64 = btoa(String.fromCharCode(...new Uint8Array(hash)));
+  return base64.replace(/\+/g, "-").replace(/\//g, "_").replace(/=/g, "");
+}
+function generateCodeVerifier() {
+  return generateRandomString(128);
+}
+async function generateCodeChallenge(verifier) {
+  return await sha256(verifier);
+}
+function generateState() {
+  return generateRandomString(32);
+}
+function saveCodeVerifier(verifier) {
+  sessionStorage.setItem(STORAGE_KEY_CODE_VERIFIER, verifier);
+}
+function getCodeVerifier() {
+  return sessionStorage.getItem(STORAGE_KEY_CODE_VERIFIER);
+}
+function clearCodeVerifier() {
+  sessionStorage.removeItem(STORAGE_KEY_CODE_VERIFIER);
+}
+function saveState(state) {
+  sessionStorage.setItem(STORAGE_KEY_STATE, state);
+}
+function getState() {
+  return sessionStorage.getItem(STORAGE_KEY_STATE);
+}
+function clearState() {
+  sessionStorage.removeItem(STORAGE_KEY_STATE);
+}
+function clearPKCEData() {
+  clearCodeVerifier();
+  clearState();
+}
+
+// src/services/keycloakService.ts
+function getEnvConfig() {
+  const env = import.meta.env;
+  const config = {
+    keycloakUrl: env.VITE_KEYCLOAK_URL || "http://localhost:8080",
+    realm: env.VITE_KEYCLOAK_REALM || "cundi",
+    clientId: env.VITE_KEYCLOAK_CLIENT_ID || "cundi-web",
+    redirectUri: env.VITE_REDIRECT_URI || `${window.location.origin}/auth/callback`
+  };
+  const missingVars = [];
+  if (!env.VITE_KEYCLOAK_URL) missingVars.push("VITE_KEYCLOAK_URL");
+  if (!env.VITE_KEYCLOAK_REALM) missingVars.push("VITE_KEYCLOAK_REALM");
+  if (!env.VITE_KEYCLOAK_CLIENT_ID) missingVars.push("VITE_KEYCLOAK_CLIENT_ID");
+  if (missingVars.length > 0) {
+    console.warn(
+      `[Keycloak] Missing environment variables: ${missingVars.join(", ")}. Using default values. Please configure these in your .env file for production.`
+    );
+  }
+  return config;
+}
+var keycloakService = {
+  /**
+   * Start Authorization Code Flow with PKCE
+   * Redirects user to Keycloak login page
+   */
+  startAuthorizationFlow: async () => {
+    const { keycloakUrl, realm, clientId, redirectUri } = getEnvConfig();
+    const codeVerifier = generateCodeVerifier();
+    const codeChallenge = await generateCodeChallenge(codeVerifier);
+    const state = generateState();
+    saveCodeVerifier(codeVerifier);
+    saveState(state);
+    const authUrl = new URL(`${keycloakUrl}/realms/${realm}/protocol/openid-connect/auth`);
+    authUrl.searchParams.append("client_id", clientId);
+    authUrl.searchParams.append("redirect_uri", redirectUri);
+    authUrl.searchParams.append("response_type", "code");
+    authUrl.searchParams.append("scope", "openid profile email");
+    authUrl.searchParams.append("code_challenge", codeChallenge);
+    authUrl.searchParams.append("code_challenge_method", "S256");
+    authUrl.searchParams.append("state", state);
+    window.location.href = authUrl.toString();
+  },
+  /**
+   * Handle callback from Keycloak
+   * Exchange authorization code for access token
+   */
+  handleCallback: async (code, state) => {
+    const { keycloakUrl, realm, clientId, redirectUri } = getEnvConfig();
+    const savedState = getState();
+    if (!savedState || savedState !== state) {
+      clearPKCEData();
+      throw new Error("Invalid state parameter - possible CSRF attack");
+    }
+    const codeVerifier = getCodeVerifier();
+    if (!codeVerifier) {
+      throw new Error("Code verifier not found - session may have expired");
+    }
+    const tokenUrl = `${keycloakUrl}/realms/${realm}/protocol/openid-connect/token`;
+    const formData = new URLSearchParams();
+    formData.append("grant_type", "authorization_code");
+    formData.append("client_id", clientId);
+    formData.append("code", code);
+    formData.append("redirect_uri", redirectUri);
+    formData.append("code_verifier", codeVerifier);
+    const response = await fetch(tokenUrl, {
+      method: "POST",
+      headers: {
+        "Content-Type": "application/x-www-form-urlencoded"
+      },
+      body: formData.toString()
+    });
+    clearPKCEData();
+    if (!response.ok) {
+      const error = await response.text();
+      throw new Error(`Token exchange failed: ${error}`);
+    }
+    const data = await response.json();
+    return {
+      accessToken: data.access_token,
+      idToken: data.id_token || data.access_token
+      // Fallback to access token if no id_token
+    };
+  },
+  /**
+   * Logout from Keycloak
+   * Redirects to Keycloak logout endpoint to properly clear the session
+   */
+  logout: (idToken) => {
+    const { keycloakUrl, realm } = getEnvConfig();
+    clearPKCEData();
+    const logoutUrl = new URL(`${keycloakUrl}/realms/${realm}/protocol/openid-connect/logout`);
+    const appBaseUrl = window.location.origin;
+    logoutUrl.searchParams.append("post_logout_redirect_uri", `${appBaseUrl}/login`);
+    if (idToken) {
+      logoutUrl.searchParams.append("id_token_hint", idToken);
+    }
+    window.location.href = logoutUrl.toString();
+  }
+};
+
 // src/authProvider.ts
 var authProvider = {
-  login: async ({ username, password }) => {
+  login: async ({ username, password, provider, code, state }) => {
     try {
-      const token = await authService.login({ username, password });
+      let token;
+      let idToken;
+      if (provider === "keycloak") {
+        if (code && state) {
+          const result = await keycloakService.handleCallback(code, state);
+          token = result.accessToken;
+          idToken = result.idToken;
+        } else {
+          await keycloakService.startAuthorizationFlow();
+          return {
+            success: false,
+            error: {
+              message: "Redirecting to Keycloak...",
+              name: "Redirect"
+            }
+          };
+        }
+      } else {
+        token = await authService.login({ username, password });
+      }
       if (token) {
         localStorage.setItem(TOKEN_KEY, token);
+        if (idToken) {
+          localStorage.setItem("id_token", idToken);
+        }
         const claims = parseJwt(token);
         const userId = claims["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier"] || claims.sub || claims.id || claims.Oid;
-        const claimName = claims["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name"] || claims.unique_name || claims.name || username;
+        const claimName = claims["http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name"] || claims.unique_name || claims.preferred_username || claims.name || username;
         try {
           let user = null;
-          if (userId) {
-            user = await authService.getUserById(userId);
-          } else {
-            user = await authService.getUserByUsername(username);
+          let retries = provider === "keycloak" ? 3 : 1;
+          for (let i = 0; i < retries; i++) {
+            if (i > 0) {
+              await new Promise((resolve) => setTimeout(resolve, 1e3));
+            }
+            if (provider === "keycloak") {
+              user = await authService.getUserByUsername(claimName || username);
+            } else if (userId) {
+              user = await authService.getUserById(userId);
+            } else {
+              user = await authService.getUserByUsername(claimName || username);
+            }
+            if (user && user.Roles && user.Roles.length > 0) {
+              break;
+            }
           }
           if (user) {
             if (user.Photo) {
@@ -148,6 +355,7 @@ var authProvider = {
               isAdmin = user.Roles.some((r) => r.IsAdministrative);
             }
             localStorage.setItem("user_is_admin", isAdmin ? "true" : "false");
+            localStorage.setItem("auth_provider", provider || "local");
           }
         } catch (error) {
           console.error("Failed to fetch user details", error);
@@ -175,12 +383,22 @@ var authProvider = {
     }
   },
   logout: async () => {
+    const authProvider2 = localStorage.getItem("auth_provider");
+    const idToken = localStorage.getItem("id_token");
     localStorage.removeItem(TOKEN_KEY);
+    localStorage.removeItem("id_token");
     localStorage.removeItem("user_photo");
     localStorage.removeItem("user_name");
     localStorage.removeItem("user_id");
     localStorage.removeItem("user_roles");
     localStorage.removeItem("user_is_admin");
+    localStorage.removeItem("auth_provider");
+    if (authProvider2 === "keycloak") {
+      keycloakService.logout(idToken || void 0);
+      return {
+        success: true
+      };
+    }
     return {
       success: true,
       redirectTo: "/login"
@@ -292,7 +510,6 @@ var mapOperator = (operator) => {
       return "ge";
     case "in":
       return "in";
-    // OData v4.01 usually, or handled manually
     case "contains":
       return "contains";
     case "startswith":
@@ -475,8 +692,35 @@ var SecurityPermissionState = /* @__PURE__ */ ((SecurityPermissionState2) => {
   return SecurityPermissionState2;
 })(SecurityPermissionState || {});
 
+// src/utils/passwordUtils.ts
+var generatePassword = (length = 12) => {
+  const charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()_+";
+  const array = new Uint32Array(length);
+  crypto.getRandomValues(array);
+  return Array.from(array, (num) => charset[num % charset.length]).join("");
+};
+var validatePasswordStrength = (password) => {
+  if (password.length < 8) {
+    return { isValid: false, message: "Password must be at least 8 characters long" };
+  }
+  const hasUpperCase = /[A-Z]/.test(password);
+  const hasLowerCase = /[a-z]/.test(password);
+  const hasNumbers = /\d/.test(password);
+  const hasSpecialChar = /[!@#$%^&*()_+]/.test(password);
+  if (!hasUpperCase || !hasLowerCase) {
+    return { isValid: false, message: "Password must contain both uppercase and lowercase letters" };
+  }
+  if (!hasNumbers) {
+    return { isValid: false, message: "Password must contain at least one number" };
+  }
+  if (!hasSpecialChar) {
+    return { isValid: false, message: "Password must contain at least one special character" };
+  }
+  return { isValid: true, message: "Password is strong" };
+};
+
 // src/components/Header.tsx
-import React3, { useState as useState2 } from "react";
+import React3, { useState as useState2, useEffect as useEffect2 } from "react";
 import { useLogout, useGetIdentity, useInvalidate, useUpdatePassword } from "@refinedev/core";
 import { Layout, Button, Space, Typography, Avatar, theme as theme2, Dropdown, Modal, Form, Input, message } from "antd/lib";
 import { LogoutOutlined, UserOutlined, DownOutlined, SunOutlined, MoonOutlined, CameraOutlined, LockOutlined, ThunderboltOutlined } from "@ant-design/icons";
@@ -578,6 +822,12 @@ var Header = () => {
   const { mode, setMode } = useColorMode();
   const { token } = useToken();
   const invalidate = useInvalidate();
+  const [authProvider2, setAuthProvider] = useState2(null);
+  useEffect2(() => {
+    if (user) {
+      setAuthProvider(localStorage.getItem("auth_provider"));
+    }
+  }, [user]);
   const [isPhotoModalOpen, setIsPhotoModalOpen] = useState2(false);
   const [isPhotoLoading, setIsPhotoLoading] = useState2(false);
   const [photoForm] = Form.useForm();
@@ -607,14 +857,8 @@ var Header = () => {
       setIsPhotoModalOpen(false);
     }
   };
-  const generatePassword = () => {
-    const length = 12;
-    const charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()_+";
-    let retVal = "";
-    for (let i = 0, n = charset.length; i < length; ++i) {
-      retVal += charset.charAt(Math.floor(Math.random() * n));
-    }
-    passwordForm.setFieldsValue({ password: retVal });
+  const handleGeneratePassword = () => {
+    passwordForm.setFieldsValue({ password: generatePassword() });
   };
   const handlePasswordSubmit = async (values) => {
     setIsPasswordLoading(true);
@@ -657,11 +901,18 @@ var Header = () => {
     },
     {
       key: "change-password",
-      label: "Change Password",
+      label: authProvider2 === "keycloak" ? "Manage Account in Keycloak" : "Change Password",
       icon: /* @__PURE__ */ React3.createElement(LockOutlined, null),
       onClick: () => {
-        passwordForm.resetFields();
-        setIsPasswordModalOpen(true);
+        if (authProvider2 === "keycloak") {
+          const env = import.meta.env;
+          const keycloakUrl = env?.VITE_KEYCLOAK_URL || "http://localhost:8080";
+          const realm = env?.VITE_KEYCLOAK_REALM || "cundi";
+          window.open(`${keycloakUrl}/realms/${realm}/account`, "_blank");
+        } else {
+          passwordForm.resetFields();
+          setIsPasswordModalOpen(true);
+        }
       }
     },
     {
@@ -725,13 +976,13 @@ var Header = () => {
           rules: [{ required: true, message: "Please input the new password!" }]
         },
         /* @__PURE__ */ React3.createElement(Input.Password, { placeholder: "Enter new password" })
-      ), /* @__PURE__ */ React3.createElement(Button, { icon: /* @__PURE__ */ React3.createElement(ThunderboltOutlined, null), onClick: generatePassword })))
+      ), /* @__PURE__ */ React3.createElement(Button, { icon: /* @__PURE__ */ React3.createElement(ThunderboltOutlined, null), onClick: handleGeneratePassword })))
     )
   );
 };
 
 // src/components/SmartList.tsx
-import React4, { useState as useState3, useEffect as useEffect2 } from "react";
+import React4, { useState as useState3, useEffect as useEffect3, useMemo } from "react";
 import {
   List,
   useTable
@@ -743,7 +994,7 @@ var SmartList = ({
   resource,
   searchFields
 }) => {
-  const { tableProps, searchFormProps, tableQueryResult, queryResult, setFilters } = useTable({
+  const { tableProps, searchFormProps, tableQuery, setFilters } = useTable({
     resource,
     syncWithLocation: true,
     onSearch: (params) => {
@@ -762,17 +1013,25 @@ var SmartList = ({
       return filters;
     }
   });
-  const columns = React4.Children.toArray(children).map((child) => {
-    return {
-      key: child.props.dataIndex || child.props.title || "unknown",
-      title: child.props.title,
-      dataIndex: child.props.dataIndex,
-      defaultVisible: child.props.defaultVisible
-    };
-  });
+  const columns = useMemo(
+    () => React4.Children.toArray(children).map((child) => {
+      const props = child.props || {};
+      return {
+        key: String(props.dataIndex || props.title || "unknown"),
+        title: props.title,
+        dataIndex: props.dataIndex,
+        defaultVisible: props.defaultVisible
+      };
+    }),
+    [children]
+  );
   const [visibleColumns, setVisibleColumns] = useState3([]);
-  useEffect2(() => {
-    const allKeys = columns.map((c) => c.key?.toString());
+  const columnKeysString = useMemo(
+    () => columns.map((c) => c.key).join(","),
+    [columns]
+  );
+  useEffect3(() => {
+    const allKeys = columns.map((c) => c.key);
     const storageKey = `table-columns-${resource}`;
     const saved = localStorage.getItem(storageKey);
     if (saved) {
@@ -787,9 +1046,9 @@ var SmartList = ({
         console.error("Failed to parse saved columns", e);
       }
     }
-    const defaultVisible = columns.filter((c) => c.defaultVisible || c.dataIndex === "actions").map((c) => c.key?.toString());
+    const defaultVisible = columns.filter((c) => c.defaultVisible || c.dataIndex === "actions").map((c) => c.key);
     setVisibleColumns(defaultVisible);
-  }, [children, resource]);
+  }, [columnKeysString, resource, columns]);
   const handleColumnChange = (key, checked) => {
     let newVisible;
     if (checked) {
@@ -855,7 +1114,7 @@ var SmartList = ({
         }
       }
     }
-  ))), /* @__PURE__ */ React4.createElement(Space2, null, /* @__PURE__ */ React4.createElement(Button2, { icon: /* @__PURE__ */ React4.createElement(ReloadOutlined, null), onClick: () => (tableQueryResult || queryResult)?.refetch() }, "Refresh"), /* @__PURE__ */ React4.createElement(Popover, { content, title: "Columns", trigger: "click", placement: "bottomRight" }, /* @__PURE__ */ React4.createElement(Button2, { icon: /* @__PURE__ */ React4.createElement(SettingOutlined, null) }, "Columns")))), /* @__PURE__ */ React4.createElement(Table, { ...tableProps, rowKey: "Oid" }, filteredChildren));
+  ))), /* @__PURE__ */ React4.createElement(Space2, null, /* @__PURE__ */ React4.createElement(Button2, { icon: /* @__PURE__ */ React4.createElement(ReloadOutlined, null), onClick: () => tableQuery?.refetch() }, "Refresh"), /* @__PURE__ */ React4.createElement(Popover, { content, title: "Columns", trigger: "click", placement: "bottomRight" }, /* @__PURE__ */ React4.createElement(Button2, { icon: /* @__PURE__ */ React4.createElement(SettingOutlined, null) }, "Columns")))), /* @__PURE__ */ React4.createElement(Table, { ...tableProps, rowKey: "Oid" }, filteredChildren));
 };
 
 // src/components/RelatedList.tsx
@@ -1004,7 +1263,7 @@ var RelatedList = ({
 };
 
 // src/components/TiptapEditor.tsx
-import React6, { useEffect as useEffect3 } from "react";
+import React6, { useEffect as useEffect4 } from "react";
 import { useEditor, EditorContent } from "@tiptap/react";
 import StarterKit from "@tiptap/starter-kit";
 import Image from "@tiptap/extension-image";
@@ -10496,10 +10755,10 @@ editHandlers.compositionend = (view, event) => {
     scheduleComposeEnd(view, 20);
   }
 };
-function scheduleComposeEnd(view, delay) {
+function scheduleComposeEnd(view, delay2) {
   clearTimeout(view.input.composingTimeout);
-  if (delay > -1)
-    view.input.composingTimeout = setTimeout(() => endComposition(view), delay);
+  if (delay2 > -1)
+    view.input.composingTimeout = setTimeout(() => endComposition(view), delay2);
 }
 function clearComposition(view) {
   if (view.composing) {
@@ -18317,7 +18576,7 @@ var TiptapEditor = ({ value, onChange, disabled }) => {
       }
     }
   });
-  useEffect3(() => {
+  useEffect4(() => {
     if (editor && value !== void 0 && value !== editor.getHTML()) {
       if (editor.getText() === "" && value) {
         editor.commands.setContent(value);
@@ -18592,87 +18851,12 @@ var TiptapEditor = ({ value, onChange, disabled }) => {
       }
     ))),
     /* @__PURE__ */ React6.createElement("style", null, `
-                .ProseMirror pre {
-                    background: ${token.colorFillTertiary};
-                    color: ${token.colorText};
-                    font-family: 'JetBrainsMono', 'Courier New', monospace;
-                    padding: 0.75rem 1rem;
-                    border-radius: 0.5rem;
-                }
-                .ProseMirror pre code {
-                    color: inherit;
-                    padding: 0;
-                    background: none;
-                    font-size: 0.8rem;
-                }
-                .ProseMirror p {
-                    margin-bottom: 0px;
-                }
-                .ProseMirror:focus {
-                    outline: none;
-                }
-                .ProseMirror table {
-                    border-collapse: collapse;
-                    table-layout: fixed;
-                    width: 100%;
-                    margin: 0;
-                    overflow: hidden;
-                }
-                .ProseMirror td, .ProseMirror th {
-                    min-width: 1em;
-                    border: 2px solid ${token.colorBorder};
-                    padding: 3px 5px;
-                    vertical-align: top;
-                    box-sizing: border-box;
-                    position: relative;
-                }
-                .ProseMirror th {
-                    font-weight: bold;
-                    text-align: left;
-                    background-color: ${token.colorFillQuaternary};
-                }
-                .ProseMirror .selectedCell:after {
-                    z-index: 2;
-                    position: absolute;
-                    content: "";
-                    left: 0; right: 0; top: 0; bottom: 0;
-                    background: rgba(200, 200, 255, 0.4);
-                    pointer-events: none;
-                }
-                .ProseMirror .column-resize-handle {
-                    position: absolute;
-                    right: -2px;
-                    top: 0;
-                    bottom: -2px;
-                    width: 4px;
-                    background-color: #adf;
-                    pointer-events: none;
-                }
-                ul[data-type="taskList"] {
-                    list-style: none;
-                    padding: 0;
-                }
-                ul[data-type="taskList"] li {
-                    display: flex;
-                    align-items: center;
-                }
-                ul[data-type="taskList"] li > label {
-                    flex: 0 0 auto;
-                    margin-right: 0.5rem;
-                    user-select: none;
-                }
-                ul[data-type="taskList"] li > div {
-                    flex: 1 1 auto;
-                }
-                ul[data-type="taskList"] input[type="checkbox"] {
-                   cursor: pointer;
-                }
-                .ProseMirror p.is-editor-empty:first-child::before {
-                    color: ${token.colorTextPlaceholder};
-                    content: attr(data-placeholder);
-                    float: left;
-                    height: 0;
-                    pointer-events: none;
+                :root {
+                    --tiptap-code-bg: ${token.colorFillTertiary};
+                    --tiptap-code-text: ${token.colorText};
+                    --tiptap-border: ${token.colorBorder};
+                    --tiptap-header-bg: ${token.colorFillQuaternary};
+                    --tiptap-placeholder: ${token.colorTextPlaceholder};
                 }
             `),
     /* @__PURE__ */ React6.createElement("div", { style: {
@@ -18687,8 +18871,9 @@ var TiptapEditor = ({ value, onChange, disabled }) => {
 // src/pages/login/index.tsx
 import React7 from "react";
 import { useLogin, useTranslate } from "@refinedev/core";
-import { Button as Button5, Form as Form4, Input as Input4, Card, Typography as Typography2, Layout as Layout2, theme as theme4, Checkbox as Checkbox2 } from "antd/lib";
+import { Button as Button5, Form as Form4, Input as Input4, Card, Typography as Typography2, Layout as Layout2, theme as theme4, Checkbox as Checkbox2, Divider } from "antd/lib";
 import { ThemedTitle } from "@refinedev/antd";
+import { useNavigate } from "react-router";
 var { Title, Link } = Typography2;
 var LoginPage = () => {
   const [form] = Form4.useForm();
@@ -18696,6 +18881,7 @@ var LoginPage = () => {
   const isLoading = isPending;
   const translate = useTranslate();
   const { token } = theme4.useToken();
+  const navigate = useNavigate();
   const onFinish = async (values) => {
     login(values);
   };
@@ -18726,7 +18912,7 @@ var LoginPage = () => {
           boxShadow: "0 4px 24px -4px rgba(0, 0, 0, 0.1)"
         }
       },
-      /* @__PURE__ */ React7.createElement("div", { style: { textAlign: "center", marginBottom: "32px" } }, /* @__PURE__ */ React7.createElement(Title, { level: 3, style: { color: token.colorPrimary, margin: 0 } }, translate("pages.login.title", "Sign in to your account"))),
+      /* @__PURE__ */ React7.createElement("div", { style: { textAlign: "center", marginBottom: "32px" } }, /* @__PURE__ */ React7.createElement(Title, { level: 3, style: { color: token.colorPrimary, margin: 0 } }, translate("pages.login.title", "Sign in to your account")), /* @__PURE__ */ React7.createElement(Typography2.Text, { type: "secondary", style: { fontSize: "14px", marginTop: "8px", display: "block" } }, "Log in using a local account")),
       /* @__PURE__ */ React7.createElement(
         Form4,
         {
@@ -18801,21 +18987,194 @@ var LoginPage = () => {
             size: "large"
           },
           translate("pages.login.signin", "Sign in")
-        ))
+        )),
+        /* @__PURE__ */ React7.createElement(Divider, { plain: true }, "or"),
+        /* @__PURE__ */ React7.createElement(
+          Button5,
+          {
+            block: true,
+            size: "large",
+            onClick: () => navigate("/login")
+          },
+          "Log in using a Keycloak account"
+        )
+      )
+    )
+  );
+};
+
+// src/pages/login/keycloak.tsx
+import React8 from "react";
+import { useLogin as useLogin2, useTranslate as useTranslate2 } from "@refinedev/core";
+import { Button as Button6, Card as Card2, Typography as Typography3, Layout as Layout3, theme as theme5, Divider as Divider2 } from "antd/lib";
+import { ThemedTitle as ThemedTitle2 } from "@refinedev/antd";
+import { useNavigate as useNavigate2 } from "react-router";
+var { Title: Title2 } = Typography3;
+var KeycloakLoginPage = () => {
+  const { mutate: login, isPending } = useLogin2();
+  const isLoading = isPending;
+  const translate = useTranslate2();
+  const { token } = theme5.useToken();
+  const navigate = useNavigate2();
+  const handleKeycloakLogin = () => {
+    login({ provider: "keycloak" });
+  };
+  return /* @__PURE__ */ React8.createElement(
+    Layout3,
+    {
+      style: {
+        height: "100vh",
+        justifyContent: "center",
+        alignItems: "center",
+        backgroundColor: token.colorBgContainer
+      }
+    },
+    /* @__PURE__ */ React8.createElement("div", { style: { marginBottom: "24px" } }, /* @__PURE__ */ React8.createElement(
+      ThemedTitle2,
+      {
+        collapsed: false,
+        wrapperStyles: { fontSize: "22px", justifyContent: "center" }
+      }
+    )),
+    /* @__PURE__ */ React8.createElement(
+      Card2,
+      {
+        style: {
+          width: "100%",
+          maxWidth: "400px",
+          padding: "20px",
+          boxShadow: "0 4px 24px -4px rgba(0, 0, 0, 0.1)"
+        }
+      },
+      /* @__PURE__ */ React8.createElement("div", { style: { textAlign: "center", marginBottom: "32px" } }, /* @__PURE__ */ React8.createElement(Title2, { level: 3, style: { color: token.colorPrimary, margin: 0 } }, translate("pages.login.title", "Sign in to your account")), /* @__PURE__ */ React8.createElement(Typography3.Text, { type: "secondary", style: { fontSize: "14px", marginTop: "8px", display: "block" } }, "Choose your authentication method")),
+      /* @__PURE__ */ React8.createElement(
+        Button6,
+        {
+          type: "primary",
+          block: true,
+          size: "large",
+          onClick: handleKeycloakLogin,
+          loading: isLoading,
+          style: { marginBottom: "16px" }
+        },
+        "Sign in with Keycloak"
+      ),
+      /* @__PURE__ */ React8.createElement(Divider2, { plain: true }, "or"),
+      /* @__PURE__ */ React8.createElement(
+        Button6,
+        {
+          block: true,
+          size: "large",
+          onClick: () => navigate("/login/api")
+        },
+        "Log in using a local account"
       )
     )
   );
 };
 
+// src/pages/auth/AuthCallback.tsx
+import React9, { useEffect as useEffect5, useState as useState4, useRef } from "react";
+import { useLogin as useLogin3 } from "@refinedev/core";
+import { Spin, Result } from "antd";
+var AuthCallback = () => {
+  const { mutate: login } = useLogin3();
+  const [error, setError] = useState4(null);
+  const [processing, setProcessing] = useState4(false);
+  const hasProcessed = useRef(false);
+  useEffect5(() => {
+    if (hasProcessed.current || processing) {
+      return;
+    }
+    const handleCallback = async () => {
+      setProcessing(true);
+      hasProcessed.current = true;
+      try {
+        const params = new URLSearchParams(window.location.search);
+        const code = params.get("code");
+        const state = params.get("state");
+        const errorParam = params.get("error");
+        const errorDescription = params.get("error_description");
+        if (errorParam) {
+          setError(errorDescription || errorParam);
+          setProcessing(false);
+          return;
+        }
+        if (!code || !state) {
+          setError("Missing authorization code or state parameter");
+          setProcessing(false);
+          return;
+        }
+        login({
+          code,
+          state,
+          provider: "keycloak"
+        }, {
+          onError: (err) => {
+            console.error("Login failed:", err);
+            setError(err?.message || "Authentication failed. The authorization code may have been used already.");
+            setProcessing(false);
+          }
+        });
+      } catch (err) {
+        console.error("Callback handling error:", err);
+        setError("Failed to process authentication callback");
+        setProcessing(false);
+      }
+    };
+    handleCallback();
+  }, [login, processing]);
+  if (error) {
+    return /* @__PURE__ */ React9.createElement(
+      Result,
+      {
+        status: "error",
+        title: "Authentication Failed",
+        subTitle: error,
+        extra: /* @__PURE__ */ React9.createElement(
+          "button",
+          {
+            onClick: () => window.location.href = "/login",
+            style: {
+              padding: "8px 16px",
+              background: "#1890ff",
+              color: "white",
+              border: "none",
+              borderRadius: "4px",
+              cursor: "pointer"
+            }
+          },
+          "Back to Login"
+        )
+      }
+    );
+  }
+  return /* @__PURE__ */ React9.createElement(
+    "div",
+    {
+      style: {
+        display: "flex",
+        justifyContent: "center",
+        alignItems: "center",
+        height: "100vh",
+        flexDirection: "column",
+        gap: "16px"
+      }
+    },
+    /* @__PURE__ */ React9.createElement(Spin, { size: "large" }),
+    /* @__PURE__ */ React9.createElement("p", null, "Completing authentication...")
+  );
+};
+
 // src/pages/application-users/list.tsx
-import React8, { useState as useState4 } from "react";
+import React10, { useState as useState5 } from "react";
 import { useNotification } from "@refinedev/core";
 import { EditButton, DeleteButton } from "@refinedev/antd";
 import {
   Table as Table4,
   Checkbox as Checkbox3,
   Space as Space6,
-  Button as Button6,
+  Button as Button7,
   Modal as Modal3,
   Input as Input5,
   Form as Form5,
@@ -18823,24 +19182,18 @@ import {
 } from "antd/lib";
 import { KeyOutlined, ThunderboltOutlined as ThunderboltOutlined2 } from "@ant-design/icons";
 var ApplicationUserList = () => {
-  const [isModalOpen, setIsModalOpen] = useState4(false);
-  const [selectedUser, setSelectedUser] = useState4(null);
+  const [isModalOpen, setIsModalOpen] = useState5(false);
+  const [selectedUser, setSelectedUser] = useState5(null);
   const [form] = Form5.useForm();
   const { open } = useNotification();
-  const [isLoading, setIsLoading] = useState4(false);
+  const [isLoading, setIsLoading] = useState5(false);
   const handleResetPasswordClick = (user) => {
     setSelectedUser(user);
     setIsModalOpen(true);
     form.resetFields();
   };
-  const generatePassword = () => {
-    const length = 12;
-    const charset = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789!@#$%^&*()_+";
-    let retVal = "";
-    for (let i = 0, n = charset.length; i < length; ++i) {
-      retVal += charset.charAt(Math.floor(Math.random() * n));
-    }
-    form.setFieldsValue({ password: retVal });
+  const handleGeneratePassword = () => {
+    form.setFieldsValue({ password: generatePassword() });
   };
   const handleResetPasswordSubmit = async (values) => {
     if (!selectedUser) return;
@@ -18863,20 +19216,20 @@ var ApplicationUserList = () => {
       setIsLoading(false);
     }
   };
-  return /* @__PURE__ */ React8.createElement(React8.Fragment, null, /* @__PURE__ */ React8.createElement(
+  return /* @__PURE__ */ React10.createElement(React10.Fragment, null, /* @__PURE__ */ React10.createElement(
     SmartList,
     {
       searchFields: ["UserName", "DisplayName", "Email"]
     },
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "Photo",
         title: "Photo",
-        render: (value) => value ? /* @__PURE__ */ React8.createElement("img", { src: `data:image/png;base64,${value}`, alt: "User", style: { height: 40, width: 40, objectFit: "cover", borderRadius: "50%" } }) : "-"
+        render: (value) => value ? /* @__PURE__ */ React10.createElement("img", { src: `data:image/png;base64,${value}`, alt: "User", style: { height: 40, width: 40, objectFit: "cover", borderRadius: "50%" } }) : "-"
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "DisplayName",
@@ -18886,7 +19239,7 @@ var ApplicationUserList = () => {
         defaultVisible: true
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "UserName",
@@ -18895,7 +19248,7 @@ var ApplicationUserList = () => {
         defaultVisible: true
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "Email",
@@ -18903,38 +19256,38 @@ var ApplicationUserList = () => {
         sorter: true
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "IsActive",
         title: "Active",
-        render: (value) => /* @__PURE__ */ React8.createElement(Checkbox3, { checked: value, disabled: true }),
+        render: (value) => /* @__PURE__ */ React10.createElement(Checkbox3, { checked: value, disabled: true }),
         sorter: true
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         dataIndex: "AccessFailedCount",
         title: "Access Failed Count"
       }
     ),
-    /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(
       Table4.Column,
       {
         title: "Actions",
         dataIndex: "actions",
-        render: (_, record) => /* @__PURE__ */ React8.createElement(Space6, null, /* @__PURE__ */ React8.createElement(Tooltip, { title: "Reset Password" }, /* @__PURE__ */ React8.createElement(
-          Button6,
+        render: (_, record) => /* @__PURE__ */ React10.createElement(Space6, null, /* @__PURE__ */ React10.createElement(Tooltip, { title: "Reset Password" }, /* @__PURE__ */ React10.createElement(
+          Button7,
           {
             size: "small",
-            icon: /* @__PURE__ */ React8.createElement(KeyOutlined, null),
+            icon: /* @__PURE__ */ React10.createElement(KeyOutlined, null),
             onClick: () => handleResetPasswordClick(record)
           }
-        )), /* @__PURE__ */ React8.createElement(EditButton, { hideText: true, size: "small", recordItemId: record.Oid }), /* @__PURE__ */ React8.createElement(DeleteButton, { hideText: true, size: "small", recordItemId: record.Oid }))
+        )), /* @__PURE__ */ React10.createElement(EditButton, { hideText: true, size: "small", recordItemId: record.Oid }), /* @__PURE__ */ React10.createElement(DeleteButton, { hideText: true, size: "small", recordItemId: record.Oid }))
       }
     )
-  ), /* @__PURE__ */ React8.createElement(
+  ), /* @__PURE__ */ React10.createElement(
     Modal3,
     {
       title: `Reset Password for ${selectedUser?.DisplayName || selectedUser?.UserName}`,
@@ -18943,7 +19296,7 @@ var ApplicationUserList = () => {
       onOk: () => form.submit(),
       confirmLoading: isLoading
     },
-    /* @__PURE__ */ React8.createElement(Form5, { form, onFinish: handleResetPasswordSubmit, layout: "vertical" }, /* @__PURE__ */ React8.createElement("div", { style: { display: "flex", gap: 8, alignItems: "flex-end" } }, /* @__PURE__ */ React8.createElement(
+    /* @__PURE__ */ React10.createElement(Form5, { form, onFinish: handleResetPasswordSubmit, layout: "vertical" }, /* @__PURE__ */ React10.createElement("div", { style: { display: "flex", gap: 8, alignItems: "flex-end" } }, /* @__PURE__ */ React10.createElement(
       Form5.Item,
       {
         name: "password",
@@ -18951,18 +19304,18 @@ var ApplicationUserList = () => {
         style: { flex: 1, marginBottom: 0 },
         rules: [{ required: true, message: "Please input the new password!" }]
       },
-      /* @__PURE__ */ React8.createElement(Input5.Password, { placeholder: "Enter new password" })
-    ), /* @__PURE__ */ React8.createElement(Tooltip, { title: "Generate Complex Password" }, /* @__PURE__ */ React8.createElement(Button6, { icon: /* @__PURE__ */ React8.createElement(ThunderboltOutlined2, null), onClick: generatePassword }))))
+      /* @__PURE__ */ React10.createElement(Input5.Password, { placeholder: "Enter new password" })
+    ), /* @__PURE__ */ React10.createElement(Tooltip, { title: "Generate Complex Password" }, /* @__PURE__ */ React10.createElement(Button7, { icon: /* @__PURE__ */ React10.createElement(ThunderboltOutlined2, null), onClick: handleGeneratePassword }))))
   ));
 };
 
 // src/pages/application-users/create.tsx
-import React9 from "react";
+import React11 from "react";
 import { Create, useForm } from "@refinedev/antd";
 import { Form as Form6, Input as Input6, Checkbox as Checkbox4 } from "antd/lib";
 var ApplicationUserCreate = () => {
   const { formProps, saveButtonProps } = useForm();
-  return /* @__PURE__ */ React9.createElement(Create, { saveButtonProps }, /* @__PURE__ */ React9.createElement(Form6, { ...formProps, layout: "vertical" }, /* @__PURE__ */ React9.createElement(
+  return /* @__PURE__ */ React11.createElement(Create, { saveButtonProps }, /* @__PURE__ */ React11.createElement(Form6, { ...formProps, layout: "vertical" }, /* @__PURE__ */ React11.createElement(
     Form6.Item,
     {
       label: "User Name",
@@ -18973,15 +19326,15 @@ var ApplicationUserCreate = () => {
         }
       ]
     },
-    /* @__PURE__ */ React9.createElement(Input6, null)
-  ), /* @__PURE__ */ React9.createElement(
+    /* @__PURE__ */ React11.createElement(Input6, null)
+  ), /* @__PURE__ */ React11.createElement(
     Form6.Item,
     {
       label: "Display Name",
       name: "DisplayName"
     },
-    /* @__PURE__ */ React9.createElement(Input6, null)
-  ), /* @__PURE__ */ React9.createElement(
+    /* @__PURE__ */ React11.createElement(Input6, null)
+  ), /* @__PURE__ */ React11.createElement(
     Form6.Item,
     {
       label: "Email",
@@ -18992,8 +19345,8 @@ var ApplicationUserCreate = () => {
         }
       ]
     },
-    /* @__PURE__ */ React9.createElement(Input6, null)
-  ), /* @__PURE__ */ React9.createElement(
+    /* @__PURE__ */ React11.createElement(Input6, null)
+  ), /* @__PURE__ */ React11.createElement(
     Form6.Item,
     {
       label: "Is Active",
@@ -19001,19 +19354,19 @@ var ApplicationUserCreate = () => {
       valuePropName: "checked",
       initialValue: true
     },
-    /* @__PURE__ */ React9.createElement(Checkbox4, null, "Active")
-  ), /* @__PURE__ */ React9.createElement(
+    /* @__PURE__ */ React11.createElement(Checkbox4, null, "Active")
+  ), /* @__PURE__ */ React11.createElement(
     Form6.Item,
     {
       label: "Photo",
       name: "Photo"
     },
-    /* @__PURE__ */ React9.createElement(Base64Upload, null)
+    /* @__PURE__ */ React11.createElement(Base64Upload, null)
   )));
 };
 
 // src/pages/application-users/edit.tsx
-import React10 from "react";
+import React12 from "react";
 import { Edit, useForm as useForm2, useSelect } from "@refinedev/antd";
 import { Form as Form7, Input as Input7, Checkbox as Checkbox5, Select, App } from "antd/lib";
 var ApplicationUserEdit = () => {
@@ -19056,7 +19409,7 @@ var ApplicationUserEdit = () => {
     const { Roles, ...userValues } = values;
     formProps.onFinish?.(userValues);
   };
-  return /* @__PURE__ */ React10.createElement(Edit, { saveButtonProps }, /* @__PURE__ */ React10.createElement(Form7, { ...formProps, layout: "vertical", onFinish: handleOnFinish }, /* @__PURE__ */ React10.createElement(
+  return /* @__PURE__ */ React12.createElement(Edit, { saveButtonProps }, /* @__PURE__ */ React12.createElement(Form7, { ...formProps, layout: "vertical", onFinish: handleOnFinish }, /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "User Name",
@@ -19067,15 +19420,15 @@ var ApplicationUserEdit = () => {
         }
       ]
     },
-    /* @__PURE__ */ React10.createElement(Input7, null)
-  ), /* @__PURE__ */ React10.createElement(
+    /* @__PURE__ */ React12.createElement(Input7, null)
+  ), /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "Display Name",
       name: "DisplayName"
     },
-    /* @__PURE__ */ React10.createElement(Input7, null)
-  ), /* @__PURE__ */ React10.createElement(
+    /* @__PURE__ */ React12.createElement(Input7, null)
+  ), /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "Email",
@@ -19086,16 +19439,16 @@ var ApplicationUserEdit = () => {
         }
       ]
     },
-    /* @__PURE__ */ React10.createElement(Input7, null)
-  ), /* @__PURE__ */ React10.createElement(
+    /* @__PURE__ */ React12.createElement(Input7, null)
+  ), /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "Is Active",
       name: "IsActive",
       valuePropName: "checked"
     },
-    /* @__PURE__ */ React10.createElement(Checkbox5, null, "Active")
-  ), /* @__PURE__ */ React10.createElement(
+    /* @__PURE__ */ React12.createElement(Checkbox5, null, "Active")
+  ), /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "Roles",
@@ -19114,49 +19467,49 @@ var ApplicationUserEdit = () => {
         return { value: [] };
       }
     },
-    /* @__PURE__ */ React10.createElement(Select, { ...roleSelectProps, mode: "multiple" })
-  ), /* @__PURE__ */ React10.createElement(
+    /* @__PURE__ */ React12.createElement(Select, { ...roleSelectProps, mode: "multiple" })
+  ), /* @__PURE__ */ React12.createElement(
     Form7.Item,
     {
       label: "Photo",
       name: "Photo"
     },
-    /* @__PURE__ */ React10.createElement(Base64Upload, null)
+    /* @__PURE__ */ React12.createElement(Base64Upload, null)
   )));
 };
 
 // src/pages/roles/list.tsx
-import React11 from "react";
+import React13 from "react";
 import { useTable as useTable2, List as List2, EditButton as EditButton2, DeleteButton as DeleteButton2 } from "@refinedev/antd";
 import { Table as Table5, Space as Space7, Checkbox as Checkbox6 } from "antd/lib";
 var RoleList = () => {
   const { tableProps } = useTable2({
     syncWithLocation: true
   });
-  return /* @__PURE__ */ React11.createElement(List2, null, /* @__PURE__ */ React11.createElement(Table5, { ...tableProps, rowKey: "Oid" }, /* @__PURE__ */ React11.createElement(Table5.Column, { dataIndex: "Name", title: "Name" }), /* @__PURE__ */ React11.createElement(
+  return /* @__PURE__ */ React13.createElement(List2, null, /* @__PURE__ */ React13.createElement(Table5, { ...tableProps, rowKey: "Oid" }, /* @__PURE__ */ React13.createElement(Table5.Column, { dataIndex: "Name", title: "Name" }), /* @__PURE__ */ React13.createElement(
     Table5.Column,
     {
       dataIndex: "IsAdministrative",
       title: "Is Administrative",
-      render: (value) => /* @__PURE__ */ React11.createElement(Checkbox6, { checked: value, disabled: true })
+      render: (value) => /* @__PURE__ */ React13.createElement(Checkbox6, { checked: value, disabled: true })
     }
-  ), /* @__PURE__ */ React11.createElement(Table5.Column, { dataIndex: "PermissionPolicy", title: "Permission Policy" }), /* @__PURE__ */ React11.createElement(
+  ), /* @__PURE__ */ React13.createElement(Table5.Column, { dataIndex: "PermissionPolicy", title: "Permission Policy" }), /* @__PURE__ */ React13.createElement(
     Table5.Column,
     {
       title: "Actions",
       dataIndex: "actions",
-      render: (_, record) => /* @__PURE__ */ React11.createElement(Space7, null, /* @__PURE__ */ React11.createElement(EditButton2, { hideText: true, size: "small", recordItemId: record.Oid }), /* @__PURE__ */ React11.createElement(DeleteButton2, { hideText: true, size: "small", recordItemId: record.Oid }))
+      render: (_, record) => /* @__PURE__ */ React13.createElement(Space7, null, /* @__PURE__ */ React13.createElement(EditButton2, { hideText: true, size: "small", recordItemId: record.Oid }), /* @__PURE__ */ React13.createElement(DeleteButton2, { hideText: true, size: "small", recordItemId: record.Oid }))
     }
   )));
 };
 
 // src/pages/roles/create.tsx
-import React13 from "react";
+import React15 from "react";
 import { Create as Create2, useForm as useForm3 } from "@refinedev/antd";
 import { Form as Form9, Input as Input8, Checkbox as Checkbox7, Select as Select3 } from "antd/lib";
 
 // src/pages/roles/TypePermissionList.tsx
-import React12 from "react";
+import React14 from "react";
 import { Form as Form8, Select as Select2, Table as Table6 } from "antd/lib";
 import { useTable as useTable3 } from "@refinedev/antd";
 
@@ -19185,7 +19538,7 @@ var useModelTypes = () => {
 };
 
 // src/pages/roles/TypePermissionList.tsx
-var PermissionSelect = (props) => /* @__PURE__ */ React12.createElement(
+var PermissionSelect = (props) => /* @__PURE__ */ React14.createElement(
   Select2,
   {
     ...props,
@@ -19197,14 +19550,14 @@ var PermissionSelect = (props) => /* @__PURE__ */ React12.createElement(
   }
 );
 var TypePermissionFormFields = ({ typeOptions }) => {
-  return /* @__PURE__ */ React12.createElement(React12.Fragment, null, /* @__PURE__ */ React12.createElement(
+  return /* @__PURE__ */ React14.createElement(React14.Fragment, null, /* @__PURE__ */ React14.createElement(
     Form8.Item,
     {
       label: "Target Type",
       name: "TargetTypeFullName",
       rules: [{ required: true }]
     },
-    /* @__PURE__ */ React12.createElement(
+    /* @__PURE__ */ React14.createElement(
       Select2,
       {
         showSearch: true,
@@ -19212,7 +19565,7 @@ var TypePermissionFormFields = ({ typeOptions }) => {
         filterOption: (input, option) => (option?.label ?? "").toLowerCase().includes(input.toLowerCase())
       }
     )
-  ), /* @__PURE__ */ React12.createElement(Form8.Item, { label: "Read State", name: "ReadState" }, /* @__PURE__ */ React12.createElement(PermissionSelect, null)), /* @__PURE__ */ React12.createElement(Form8.Item, { label: "Write State", name: "WriteState" }, /* @__PURE__ */ React12.createElement(PermissionSelect, null)), /* @__PURE__ */ React12.createElement(Form8.Item, { label: "Create State", name: "CreateState" }, /* @__PURE__ */ React12.createElement(PermissionSelect, null)), /* @__PURE__ */ React12.createElement(Form8.Item, { label: "Delete State", name: "DeleteState" }, /* @__PURE__ */ React12.createElement(PermissionSelect, null)));
+  ), /* @__PURE__ */ React14.createElement(Form8.Item, { label: "Read State", name: "ReadState" }, /* @__PURE__ */ React14.createElement(PermissionSelect, null)), /* @__PURE__ */ React14.createElement(Form8.Item, { label: "Write State", name: "WriteState" }, /* @__PURE__ */ React14.createElement(PermissionSelect, null)), /* @__PURE__ */ React14.createElement(Form8.Item, { label: "Create State", name: "CreateState" }, /* @__PURE__ */ React14.createElement(PermissionSelect, null)), /* @__PURE__ */ React14.createElement(Form8.Item, { label: "Delete State", name: "DeleteState" }, /* @__PURE__ */ React14.createElement(PermissionSelect, null)));
 };
 var TypePermissionList = ({ masterId }) => {
   const { data: modelTypes } = useModelTypes();
@@ -19232,17 +19585,17 @@ var TypePermissionList = ({ masterId }) => {
       mode: "off"
     }
   });
-  const typeOptions = React12.useMemo(() => modelTypes?.filter((t) => t.IsCreatable && !t.IsDeprecated).map((t) => ({ label: t.Caption, value: t.Name })) || [], [modelTypes]);
-  const FormFieldsWrapper = React12.useMemo(() => {
-    return ({ mode }) => /* @__PURE__ */ React12.createElement(TypePermissionFormFields, { typeOptions });
+  const typeOptions = React14.useMemo(() => modelTypes?.filter((t) => t.IsCreatable && !t.IsDeprecated).map((t) => ({ label: t.Caption, value: t.Name })) || [], [modelTypes]);
+  const FormFieldsWrapper = React14.useMemo(() => {
+    return ({ mode }) => /* @__PURE__ */ React14.createElement(TypePermissionFormFields, { typeOptions });
   }, [typeOptions]);
-  const dataSource = React12.useMemo(() => {
+  const dataSource = React14.useMemo(() => {
     return (tableProps.dataSource || []).map((p) => ({
       ...p,
       TargetType: p.TargetType || p.TargetTypeFullName || ""
     }));
   }, [tableProps.dataSource]);
-  return /* @__PURE__ */ React12.createElement(
+  return /* @__PURE__ */ React14.createElement(
     RelatedList,
     {
       resource: "PermissionPolicyTypePermissionObject",
@@ -19253,7 +19606,7 @@ var TypePermissionList = ({ masterId }) => {
       modalTitle: "Type Permission",
       FormFields: FormFieldsWrapper
     },
-    /* @__PURE__ */ React12.createElement(
+    /* @__PURE__ */ React14.createElement(
       Table6.Column,
       {
         dataIndex: "TargetType",
@@ -19261,10 +19614,10 @@ var TypePermissionList = ({ masterId }) => {
         render: (value) => typeOptions.find((t) => t.value === value)?.label || value
       }
     ),
-    /* @__PURE__ */ React12.createElement(Table6.Column, { dataIndex: "ReadState", title: "Read" }),
-    /* @__PURE__ */ React12.createElement(Table6.Column, { dataIndex: "WriteState", title: "Write" }),
-    /* @__PURE__ */ React12.createElement(Table6.Column, { dataIndex: "CreateState", title: "Create" }),
-    /* @__PURE__ */ React12.createElement(Table6.Column, { dataIndex: "DeleteState", title: "Delete" })
+    /* @__PURE__ */ React14.createElement(Table6.Column, { dataIndex: "ReadState", title: "Read" }),
+    /* @__PURE__ */ React14.createElement(Table6.Column, { dataIndex: "WriteState", title: "Write" }),
+    /* @__PURE__ */ React14.createElement(Table6.Column, { dataIndex: "CreateState", title: "Create" }),
+    /* @__PURE__ */ React14.createElement(Table6.Column, { dataIndex: "DeleteState", title: "Delete" })
   );
 };
 
@@ -19275,7 +19628,7 @@ var RoleCreate = () => {
   const handleSave = () => {
     form.submit();
   };
-  return /* @__PURE__ */ React13.createElement(Create2, { saveButtonProps: { ...saveButtonProps, onClick: handleSave } }, /* @__PURE__ */ React13.createElement(
+  return /* @__PURE__ */ React15.createElement(Create2, { saveButtonProps: { ...saveButtonProps, onClick: handleSave } }, /* @__PURE__ */ React15.createElement(
     Form9,
     {
       ...formProps,
@@ -19285,25 +19638,25 @@ var RoleCreate = () => {
         return formProps.onFinish && formProps.onFinish(values);
       }
     },
-    /* @__PURE__ */ React13.createElement(
+    /* @__PURE__ */ React15.createElement(
       Form9.Item,
       {
         label: "Name",
         name: "Name",
         rules: [{ required: true }]
       },
-      /* @__PURE__ */ React13.createElement(Input8, null)
+      /* @__PURE__ */ React15.createElement(Input8, null)
     ),
-    /* @__PURE__ */ React13.createElement(
+    /* @__PURE__ */ React15.createElement(
       Form9.Item,
       {
         label: "Is Administrative",
         name: "IsAdministrative",
         valuePropName: "checked"
       },
-      /* @__PURE__ */ React13.createElement(Checkbox7, null, "Is Administrative")
+      /* @__PURE__ */ React15.createElement(Checkbox7, null, "Is Administrative")
     ),
-    /* @__PURE__ */ React13.createElement(
+    /* @__PURE__ */ React15.createElement(
       Form9.Item,
       {
         label: "Permission Policy",
@@ -19311,7 +19664,7 @@ var RoleCreate = () => {
         initialValue: "DenyAllByDefault" /* DenyAllByDefault */,
         rules: [{ required: true }]
       },
-      /* @__PURE__ */ React13.createElement(
+      /* @__PURE__ */ React15.createElement(
         Select3,
         {
           options: [
@@ -19322,12 +19675,12 @@ var RoleCreate = () => {
         }
       )
     ),
-    /* @__PURE__ */ React13.createElement(TypePermissionList, null)
+    /* @__PURE__ */ React15.createElement(TypePermissionList, null)
   ));
 };
 
 // src/pages/roles/edit.tsx
-import React14 from "react";
+import React16 from "react";
 import { Edit as Edit2, useForm as useForm4 } from "@refinedev/antd";
 import { Form as Form10, Input as Input9, Checkbox as Checkbox8, Select as Select4 } from "antd/lib";
 var RoleEdit = () => {
@@ -19335,7 +19688,7 @@ var RoleEdit = () => {
   const handleSave = () => {
     formProps.form?.submit();
   };
-  return /* @__PURE__ */ React14.createElement(Edit2, { saveButtonProps: { ...saveButtonProps, onClick: handleSave } }, /* @__PURE__ */ React14.createElement(
+  return /* @__PURE__ */ React16.createElement(Edit2, { saveButtonProps: { ...saveButtonProps, onClick: handleSave } }, /* @__PURE__ */ React16.createElement(
     Form10,
     {
       ...formProps,
@@ -19345,32 +19698,32 @@ var RoleEdit = () => {
         return formProps.onFinish && formProps.onFinish(rest);
       }
     },
-    /* @__PURE__ */ React14.createElement(
+    /* @__PURE__ */ React16.createElement(
       Form10.Item,
       {
         label: "Name",
         name: "Name",
         rules: [{ required: true }]
       },
-      /* @__PURE__ */ React14.createElement(Input9, null)
+      /* @__PURE__ */ React16.createElement(Input9, null)
     ),
-    /* @__PURE__ */ React14.createElement(
+    /* @__PURE__ */ React16.createElement(
       Form10.Item,
       {
         label: "Is Administrative",
         name: "IsAdministrative",
         valuePropName: "checked"
       },
-      /* @__PURE__ */ React14.createElement(Checkbox8, null, "Is Administrative")
+      /* @__PURE__ */ React16.createElement(Checkbox8, null, "Is Administrative")
     ),
-    /* @__PURE__ */ React14.createElement(
+    /* @__PURE__ */ React16.createElement(
       Form10.Item,
       {
         label: "Permission Policy",
         name: "PermissionPolicy",
         rules: [{ required: true }]
       },
-      /* @__PURE__ */ React14.createElement(
+      /* @__PURE__ */ React16.createElement(
         Select4,
         {
           options: [
@@ -19381,7 +19734,7 @@ var RoleEdit = () => {
         }
       )
     ),
-    /* @__PURE__ */ React14.createElement(
+    /* @__PURE__ */ React16.createElement(
       TypePermissionList,
       {
         masterId: id?.toString()
@@ -19393,11 +19746,13 @@ export {
   ApplicationUserCreate,
   ApplicationUserEdit,
   ApplicationUserList,
+  AuthCallback,
   Base64Upload,
   ColorModeContext,
   ColorModeContextProvider,
   Header,
   HttpError,
+  KeycloakLoginPage,
   LoginPage,
   RelatedList,
   RoleCreate,
@@ -19411,9 +19766,12 @@ export {
   authProvider,
   authService,
   dataProvider,
+  generatePassword,
   getBaseUrl,
   httpClient,
+  keycloakService,
   parseJwt,
   useColorMode,
-  useModelTypes
+  useModelTypes,
+  validatePasswordStrength
 };