npm - @gov-cy/govcy-express-services - Versions diffs - 1.11.4 → 1.12.1 - Mend

@gov-cy/govcy-express-services 1.11.4 → 1.12.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md +109 -42
package/package.json +1 -1
package/src/utils/govcyValidator.mjs +53 -17

package/README.md CHANGED Viewed

@@ -156,17 +156,17 @@ The CY Login settings are configured in the `secrets/.env` file.
 Each service can specify which types of authenticated CY Login profiles are allowed to access it using the `site.cyLoginPolicies` property in its site configuration.
-```json
-"cyLoginPolicies": ["naturalPerson", "legalPerson", "eidasNaturalPerson"]
-```
+```json
+"cyLoginPolicies": ["naturalPerson", "legalPerson", "eidasNaturalPerson"]
+```
 ##### Supported Policies
-| Policy name     | Description                                                  | Typical use                                          |
-| --------------- | ------------------------------------------------------------ | ---------------------------------------------------- |
-| `naturalPerson` | Allows individual users (Cypriot citizens or foreign residents) who have a verified profile in the Civil Registry. Identified by `profile_type: "Individual"` and a 10-digit identifier starting with `00` (citizen) or `05` (foreigner). | Citizen-facing services, personal applications, etc. |
-| `legalPerson`   | Allows legal entities (companies, partnerships, organisations) with verified profiles in the Registrar of Companies. Identified by `profile_type: "Organisation"` and a `legal_unique_identifier`. | Business-facing services, company submissions, etc.  |
-| `eidasNaturalPerson` | Allows eIDAS natural persons identified by `profile_type: "Individual"` and `unique_identifier` in the `CC/CC/<identifier>` format. | Cross-border eIDAS individual services. |
+| Policy name     | Description                                                  | Typical use                                          |
+| --------------- | ------------------------------------------------------------ | ---------------------------------------------------- |
+| `naturalPerson` | Allows individual users (Cypriot citizens or foreign residents) who have a verified profile in the Civil Registry. Identified by `profile_type: "Individual"` and a 10-digit identifier starting with `00` (citizen) or `05` (foreigner). | Citizen-facing services, personal applications, etc. |
+| `legalPerson`   | Allows legal entities (companies, partnerships, organisations) with verified profiles in the Registrar of Companies. Identified by `profile_type: "Organisation"` and a `legal_unique_identifier`. | Business-facing services, company submissions, etc.  |
+| `eidasNaturalPerson` | Allows eIDAS natural persons identified by `profile_type: "Individual"` and `unique_identifier` in the `CC/CC/<identifier>` format. | Cross-border eIDAS individual services. |
 ##### How it works
@@ -185,21 +185,21 @@ This maintains backward compatibility with existing services that only supported
 ##### Example
-Allow both natural and legal persons:
-```json
-"site": {
-  "cyLoginPolicies": ["naturalPerson", "legalPerson"]
-}
-```
-Allow Cypriot and eIDAS natural persons:
-```json
-"site": {
-  "cyLoginPolicies": ["naturalPerson", "eidasNaturalPerson"]
-}
-```
+Allow both natural and legal persons:
+```json
+"site": {
+  "cyLoginPolicies": ["naturalPerson", "legalPerson"]
+}
+```
+Allow Cypriot and eIDAS natural persons:
+```json
+"site": {
+  "cyLoginPolicies": ["naturalPerson", "eidasNaturalPerson"]
+}
+```
 Restrict access to natural persons only:
@@ -320,6 +320,35 @@ Here is an example JSON config:
       "en": "Menu",
       "tr": "Menu"
     },
+    "navigation": {  //<-- Navigation menu items
+      "items": [
+        {
+          "label": {
+            "el": "Αρχική",
+            "en": "Home",
+            "tr": "Home"
+          },
+          "href": {
+            "el": "/test/",
+            "en": "/test/",
+            "tr": "/test/"
+          }
+        },
+        {
+          "label": {
+            "el": "Αίτηση",
+            "en": "The application",
+            "tr": "The application"
+          },
+          "href": {
+            "el": "/test/task-list",
+            "en": "/test/task-list",
+            "tr": "/test/task-list"
+          }
+        }
+      ]
+    },
+    "menuHideLabelVisibility": true,
     "title": {  //<-- Service title (meta)
       "el": "Υπηρεσία τεστ",
       "en": "Test service",
@@ -789,6 +818,37 @@ Here are some details explaining the JSON structure:
   - `submissionDataVersion` : The submission data version,
   - `rendererVersion` : The govcy-frontend-renderer version,
   - `designSystemsVersion` : The govcy-design-system version,
+  - <span id="site-navigation"></span>`navigation`: Optional menu navigation items. Example:
+  ```json
+  "navigation": {
+    "items": [
+      {
+        "label": {
+          "el": "Αρχική",
+          "en": "Home",
+          "tr": "Home"
+        },
+        "href": {
+          "el": "/test/",
+          "en": "/test/",
+          "tr": "/test/"
+        }
+      },
+      {
+        "label": {
+          "el": "Αίτηση",
+          "en": "The application",
+          "tr": "The application"
+        },
+        "href": {
+          "el": "/test/task-list",
+          "en": "/test/task-list",
+          "tr": "/test/task-list"
+        }
+      }
+    ]
+  }
+  ```
   - `homeRedirectPage`: An object mapping language codes to URLs. When a user visits the root route (e.g., `https://whatever-your-service-is.service.gov.cy/`), the system redirects to the URL for the user's language. If the user's language is not found, it falls back to `"el"` or the first available URL. If not provided, a list of available sites is shown. Example:
   ```json
   "homeRedirectPage": {
@@ -1905,10 +1965,10 @@ The validation rules for each element are defined in the `"validations` array fo
     - `noSpecialChars`: Consists only of letters, numbers and some other characters
     - `noSpecialCharsEl`: Consists only of Greek letters, numbers and some other characters
     - `textWide_EL`: Consists of Greek Letters and a wider range of characters
-    - `textWide_EL_Latin`: Consists of Greek Letters, Latin letters, numbers and a wider range of characters
-    - `textWide_EL_Latin_TR`: Consists of Greek Letters, Latin letters, Turkish letters, numbers and a wider range of characters
-    - `textWide_EL_Latn`: Deprecated alias of `textWide_EL_Latin` (still supported for backward compatibility)
-    - `textWide_EL_Latn_TR`: Deprecated alias of `textWide_EL_Latin_TR` (still supported for backward compatibility)
+    - `textWide_EL_Latin`: Consists of Greek Letters, Latin letters, numbers and a wider range of characters
+    - `textWide_EL_Latin_TR`: Consists of Greek Letters, Latin letters, Turkish letters, numbers and a wider range of characters
+    - `textWide_EL_Latn`: Deprecated alias of `textWide_EL_Latin` (still supported for backward compatibility)
+    - `textWide_EL_Latn_TR`: Deprecated alias of `textWide_EL_Latin_TR` (still supported for backward compatibility)
     - `textWide_UTF`: Consists of any letters, numbers and a wider range of characters
     - `numeric`: Numeric input
     - `numDecimal`: Numeric decimal input
@@ -1926,7 +1986,10 @@ The validation rules for each element are defined in the `"validations` array fo
     - `date`: Date input (DD/MM/YYYY)
     - `dateISO`: ISO date input `YYYY-M-D`
     - `dateDMY`: European/Common Format date input `D/M/YYYY`
-    - `maxCurrentYear`: Maximum current year input
+    - `maxCurrentYear`: Maximum current year input. Use it for year-only inputs e.g. `2026` or formats that start with year e.g. `YYYY-M-D` (which works well with `dateInput` component). Do not use it with `D/M/YYYY` values (e.g. datePicker values); use date-based checks instead (`minCurrentDate`, `maxCurrentDate`, `withinDaysBeforeToday`, `withinDaysAfterToday`).
+    - `minCurrentYear`: Minimum current year input. Use it for year-only inputs e.g. `2026` or formats that start with year e.g. `YYYY-M-D` (which works well with `dateInput` component). Do not use it with `D/M/YYYY` values (e.g. datePicker values); use date-based checks instead (`minCurrentDate`, `maxCurrentDate`, `withinDaysBeforeToday`, `withinDaysAfterToday`).
+    - `minCurrentDate`: Checks if the value is greater than or equal to the current date.
+    - `maxCurrentDate`: Checks if the value is less than or equal to the current date.
 - `required`: Checks if the value is not null, undefined, or an empty string (after trimming).
 - `length`: Checks if the value has a maximum length passed in the `checkValue` parameter.
 - `regCheck`: Checks if the value matches the specified regular expression passed in the `checkValue` parameter.
@@ -1934,8 +1997,12 @@ The validation rules for each element are defined in the `"validations` array fo
 - `maxValue`: Checks if the value is less than or equal to the specified maximum value passed in the `checkValue` parameter.
 - `minValueDate`: Checks if the value is greater than or equal to the specified minimum date passed in the `checkValue` parameter.
 - `maxValueDate`: Checks if the value is less than or equal to the specified maximum date passed in the `checkValue` parameter.
+- `withinDaysBeforeToday`: Checks if the value is within the last `N` days (between `today - N` and `today`), where `N` is passed in `checkValue`.
+- `withinDaysAfterToday`: Checks if the value is within the next `N` days (between `today` and `today + N`), where `N` is passed in `checkValue`.
 - `minLength`: Checks if the value has a minimum length passed in the `checkValue` parameter.
+For `withinDaysBeforeToday` and `withinDaysAfterToday`, validation compares calendar dates only (local server timezone), not time-of-day. Supported input date formats are `YYYY-M-D` / `YYYY-MM-DD` and `D/M/YYYY` / `DD/MM/YYYY`.
 Example:
 ```json
@@ -2066,16 +2133,16 @@ To use data layer values, use the special `dataLayer[]` array. For example `data
       - `formData` is a reserved word for the form data (already inputed data by the user) for that page
         - `showExtra`refers to a input component with that name
-The `dataLayer` typically contains keys such as:
-- `inputData`: **All data submitted by the user through forms**
-- `eligibilityResults`: **Cached results from service eligibility API checks**
-- `user.profile_type`: **Authenticated user profile type from CY Login context**
-- `user.policy`: **The matched CY Login policy name for the current session**
+The `dataLayer` typically contains keys such as:
+- `inputData`: **All data submitted by the user through forms**
+- `eligibilityResults`: **Cached results from service eligibility API checks**
+- `user.profile_type`: **Authenticated user profile type from CY Login context**
+- `user.policy`: **The matched CY Login policy name for the current session**
 Example structure for a service with ID `my-service`:
-```js
-dataLayer = {
+```js
+dataLayer = {
   'my-service.inputData.index.formData.fullName': 'John Smith',
   'my-service.inputData.index.formData.age': '34',
   'my-service.inputData.contact-details.formData.telephone': '+35712345678',
@@ -2085,13 +2152,13 @@ dataLayer = {
     "permanent_residence"
   ],
   'my-service.inputData.want-to-apply.formData.option-radio': 'yes',
-  'my-service.eligibilityResults.check1.succeeded': true,
-  'my-service.eligibilityResults.check2.ErrorCode': 0,
-  'user.profile_type': 'Individual',
-  'user.policy': 'naturalPerson'
-}
-```
+  'my-service.eligibilityResults.check1.succeeded': true,
+  'my-service.eligibilityResults.check2.ErrorCode': 0,
+  'user.profile_type': 'Individual',
+  'user.policy': 'naturalPerson'
+}
+```
 If any part of the key path is missing (e.g., the page hasn’t been visited yet or a form field was left empty), the expression will safely return `undefined` and **will not throw an error**. This behavior is by design, so that conditional logic expressions can fail silently and fallback gracefully.

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@gov-cy/govcy-express-services",
-  "version": "1.11.4",
+  "version": "1.12.1",
   "description": "An Express-based system that dynamically renders services using @gov-cy/govcy-frontend-renderer and posts data to a submission API.",
   "author": "DMRID - DSF Team",
   "license": "MIT",

package/src/utils/govcyValidator.mjs CHANGED Viewed

@@ -146,16 +146,42 @@ function validateValue(value, rules) {
       }
       return valueDate >= min;
     },
-    maxValueDate: (val, maxDate) => {
-      const valueDate = parseDate(val); // Parse the input date
-      const max = parseDate(maxDate); // Parse the maximum date
-      if (isNaN(valueDate) || isNaN(max)) {
-        return false; // Return false if either date is invalid
-      }
-      return valueDate <= max;
-    },
-    minLength: (val, min) => val.length >= min
-  };
+    maxValueDate: (val, maxDate) => {
+      const valueDate = parseDate(val); // Parse the input date
+      const max = parseDate(maxDate); // Parse the maximum date
+      if (isNaN(valueDate) || isNaN(max)) {
+        return false; // Return false if either date is invalid
+      }
+      return valueDate <= max;
+    },
+    withinDaysBeforeToday: (val, daysBeforeToday) => {
+      const valueDate = parseDate(val);
+      const days = Number.parseInt(daysBeforeToday, 10);
+      if (isNaN(valueDate) || Number.isNaN(days)) return false;
+      const today = new Date();
+      const valueOnly = new Date(valueDate.getFullYear(), valueDate.getMonth(), valueDate.getDate());
+      const todayOnly = new Date(today.getFullYear(), today.getMonth(), today.getDate());
+      const minAllowedDate = new Date(todayOnly);
+      minAllowedDate.setDate(minAllowedDate.getDate() - days);
+      return valueOnly >= minAllowedDate && valueOnly <= todayOnly;
+    },
+    withinDaysAfterToday: (val, daysAfterToday) => {
+      const valueDate = parseDate(val);
+      const days = Number.parseInt(daysAfterToday, 10);
+      if (isNaN(valueDate) || Number.isNaN(days)) return false;
+      const today = new Date();
+      const valueOnly = new Date(valueDate.getFullYear(), valueDate.getMonth(), valueDate.getDate());
+      const todayOnly = new Date(today.getFullYear(), today.getMonth(), today.getDate());
+      const maxAllowedDate = new Date(todayOnly);
+      maxAllowedDate.setDate(maxAllowedDate.getDate() + days);
+      return valueOnly >= todayOnly && valueOnly <= maxAllowedDate;
+    },
+    minLength: (val, min) => val.length >= min
+  };
   for (const rule of rules) {
     // Extract rule parameters
@@ -219,13 +245,23 @@ function validateValue(value, rules) {
       return message;
     }
-    // Check for "minLength"
-    if (check === 'minLength' && !validationRules.minLength(value, checkValue)) {
-      return message;
-    }
-  }
+    // Check for "minLength"
+    if (check === 'minLength' && !validationRules.minLength(value, checkValue)) {
+      return message;
+    }
+    // Check for "withinDaysBeforeToday"
+    if (check === 'withinDaysBeforeToday' && !validationRules.withinDaysBeforeToday(value, checkValue)) {
+      return message;
+    }
+    // Check for "withinDaysAfterToday"
+    if (check === 'withinDaysAfterToday' && !validationRules.withinDaysAfterToday(value, checkValue)) {
+      return message;
+    }
+  }
   return null;
 }