npm - @intranefr/superbackend - Versions diffs - 1.4.3 - Mend

@intranefr/superbackend 1.4.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (188) hide show

package/.commiat +4 -0
package/.env.example +47 -0
package/README.md +110 -0
package/index.js +94 -0
package/package.json +67 -0
package/public/css/styles.css +139 -0
package/public/js/animations.js +41 -0
package/sdk/error-tracking/browser/package.json +16 -0
package/sdk/error-tracking/browser/src/core.js +270 -0
package/sdk/error-tracking/browser/src/embed.js +18 -0
package/sdk/error-tracking/browser/src/index.js +1 -0
package/server.js +5 -0
package/src/admin/endpointRegistry.js +300 -0
package/src/controllers/admin.controller.js +321 -0
package/src/controllers/adminAssets.controller.js +530 -0
package/src/controllers/adminAssetsStorage.controller.js +260 -0
package/src/controllers/adminEjsVirtual.controller.js +354 -0
package/src/controllers/adminFeatureFlags.controller.js +155 -0
package/src/controllers/adminHeadless.controller.js +1071 -0
package/src/controllers/adminI18n.controller.js +604 -0
package/src/controllers/adminJsonConfigs.controller.js +97 -0
package/src/controllers/adminLlm.controller.js +273 -0
package/src/controllers/adminMigration.controller.js +257 -0
package/src/controllers/adminSeoConfig.controller.js +515 -0
package/src/controllers/adminStats.controller.js +121 -0
package/src/controllers/adminUploadNamespaces.controller.js +208 -0
package/src/controllers/assets.controller.js +248 -0
package/src/controllers/auth.controller.js +93 -0
package/src/controllers/billing.controller.js +223 -0
package/src/controllers/featureFlags.controller.js +35 -0
package/src/controllers/forms.controller.js +217 -0
package/src/controllers/globalSettings.controller.js +252 -0
package/src/controllers/headlessCrud.controller.js +126 -0
package/src/controllers/i18n.controller.js +12 -0
package/src/controllers/invite.controller.js +249 -0
package/src/controllers/jsonConfigs.controller.js +19 -0
package/src/controllers/metrics.controller.js +149 -0
package/src/controllers/notificationAdmin.controller.js +264 -0
package/src/controllers/notifications.controller.js +131 -0
package/src/controllers/org.controller.js +357 -0
package/src/controllers/orgAdmin.controller.js +491 -0
package/src/controllers/stripeAdmin.controller.js +410 -0
package/src/controllers/user.controller.js +361 -0
package/src/controllers/userAdmin.controller.js +277 -0
package/src/controllers/waitingList.controller.js +167 -0
package/src/controllers/webhook.controller.js +200 -0
package/src/middleware/auth.js +66 -0
package/src/middleware/errorCapture.js +170 -0
package/src/middleware/headlessApiTokenAuth.js +57 -0
package/src/middleware/org.js +108 -0
package/src/middleware.js +901 -0
package/src/models/ActionEvent.js +31 -0
package/src/models/ActivityLog.js +41 -0
package/src/models/Asset.js +84 -0
package/src/models/AuditEvent.js +93 -0
package/src/models/EmailLog.js +28 -0
package/src/models/ErrorAggregate.js +72 -0
package/src/models/FormSubmission.js +41 -0
package/src/models/GlobalSetting.js +38 -0
package/src/models/HeadlessApiToken.js +24 -0
package/src/models/HeadlessModelDefinition.js +41 -0
package/src/models/I18nEntry.js +77 -0
package/src/models/I18nLocale.js +33 -0
package/src/models/Invite.js +70 -0
package/src/models/JsonConfig.js +46 -0
package/src/models/Notification.js +60 -0
package/src/models/Organization.js +57 -0
package/src/models/OrganizationMember.js +43 -0
package/src/models/StripeCatalogItem.js +77 -0
package/src/models/StripeWebhookEvent.js +57 -0
package/src/models/User.js +89 -0
package/src/models/VirtualEjsFile.js +60 -0
package/src/models/VirtualEjsFileVersion.js +43 -0
package/src/models/VirtualEjsGroupChange.js +32 -0
package/src/models/WaitingList.js +41 -0
package/src/models/Webhook.js +63 -0
package/src/models/Workflow.js +29 -0
package/src/models/WorkflowExecution.js +12 -0
package/src/routes/admin.routes.js +26 -0
package/src/routes/adminAssets.routes.js +28 -0
package/src/routes/adminAssetsStorage.routes.js +13 -0
package/src/routes/adminAudit.routes.js +196 -0
package/src/routes/adminEjsVirtual.routes.js +17 -0
package/src/routes/adminErrors.routes.js +164 -0
package/src/routes/adminFeatureFlags.routes.js +12 -0
package/src/routes/adminHeadless.routes.js +38 -0
package/src/routes/adminI18n.routes.js +22 -0
package/src/routes/adminJsonConfigs.routes.js +15 -0
package/src/routes/adminLlm.routes.js +12 -0
package/src/routes/adminMigration.routes.js +81 -0
package/src/routes/adminSeoConfig.routes.js +20 -0
package/src/routes/adminUploadNamespaces.routes.js +13 -0
package/src/routes/assets.routes.js +21 -0
package/src/routes/auth.routes.js +12 -0
package/src/routes/billing.routes.js +11 -0
package/src/routes/errorTracking.routes.js +31 -0
package/src/routes/featureFlags.routes.js +9 -0
package/src/routes/forms.routes.js +9 -0
package/src/routes/formsAdmin.routes.js +13 -0
package/src/routes/globalSettings.routes.js +18 -0
package/src/routes/headless.routes.js +15 -0
package/src/routes/i18n.routes.js +8 -0
package/src/routes/invite.routes.js +9 -0
package/src/routes/jsonConfigs.routes.js +8 -0
package/src/routes/log.routes.js +111 -0
package/src/routes/metrics.routes.js +9 -0
package/src/routes/notificationAdmin.routes.js +15 -0
package/src/routes/notifications.routes.js +12 -0
package/src/routes/org.routes.js +31 -0
package/src/routes/orgAdmin.routes.js +20 -0
package/src/routes/publicAssets.routes.js +7 -0
package/src/routes/stripeAdmin.routes.js +20 -0
package/src/routes/user.routes.js +22 -0
package/src/routes/userAdmin.routes.js +15 -0
package/src/routes/waitingList.routes.js +13 -0
package/src/routes/waitingListAdmin.routes.js +9 -0
package/src/routes/webhook.routes.js +32 -0
package/src/routes/workflowWebhook.routes.js +54 -0
package/src/routes/workflows.routes.js +110 -0
package/src/services/assets.service.js +110 -0
package/src/services/audit.service.js +62 -0
package/src/services/auditLogger.js +165 -0
package/src/services/ejsVirtual.service.js +614 -0
package/src/services/email.service.js +351 -0
package/src/services/errorLogger.js +221 -0
package/src/services/featureFlags.service.js +202 -0
package/src/services/forms.service.js +214 -0
package/src/services/globalSettings.service.js +49 -0
package/src/services/headlessApiTokens.service.js +158 -0
package/src/services/headlessCrypto.service.js +31 -0
package/src/services/headlessModels.service.js +356 -0
package/src/services/i18n.service.js +314 -0
package/src/services/i18nInferredKeys.service.js +337 -0
package/src/services/jsonConfigs.service.js +392 -0
package/src/services/llm.service.js +749 -0
package/src/services/migration.service.js +581 -0
package/src/services/migrationAssets/fsLocal.js +58 -0
package/src/services/migrationAssets/index.js +134 -0
package/src/services/migrationAssets/s3.js +75 -0
package/src/services/migrationAssets/sftp.js +92 -0
package/src/services/notification.service.js +212 -0
package/src/services/objectStorage.service.js +514 -0
package/src/services/seoConfig.service.js +402 -0
package/src/services/storage.js +150 -0
package/src/services/stripe.service.js +185 -0
package/src/services/stripeHelper.service.js +264 -0
package/src/services/uploadNamespaces.service.js +326 -0
package/src/services/webhook.service.js +157 -0
package/src/services/workflow.service.js +271 -0
package/src/utils/asyncHandler.js +5 -0
package/src/utils/encryption.js +80 -0
package/src/utils/jwt.js +40 -0
package/src/utils/orgRoles.js +156 -0
package/src/utils/validation.js +26 -0
package/src/utils/webhookRetry.js +93 -0
package/views/admin-assets.ejs +444 -0
package/views/admin-audit.ejs +283 -0
package/views/admin-coolify-deploy.ejs +207 -0
package/views/admin-dashboard-home.ejs +291 -0
package/views/admin-dashboard.ejs +397 -0
package/views/admin-ejs-virtual.ejs +280 -0
package/views/admin-errors.ejs +368 -0
package/views/admin-feature-flags.ejs +390 -0
package/views/admin-forms.ejs +526 -0
package/views/admin-global-settings.ejs +436 -0
package/views/admin-headless.ejs +2020 -0
package/views/admin-i18n-locales.ejs +221 -0
package/views/admin-i18n.ejs +728 -0
package/views/admin-json-configs.ejs +410 -0
package/views/admin-llm.ejs +884 -0
package/views/admin-metrics.ejs +274 -0
package/views/admin-migration.ejs +814 -0
package/views/admin-notifications.ejs +430 -0
package/views/admin-organizations.ejs +984 -0
package/views/admin-seo-config.ejs +673 -0
package/views/admin-stripe-pricing.ejs +558 -0
package/views/admin-test.ejs +342 -0
package/views/admin-users.ejs +452 -0
package/views/admin-waiting-list.ejs +547 -0
package/views/admin-webhooks.ejs +329 -0
package/views/admin-workflows.ejs +310 -0
package/views/partials/admin-assets-script.ejs +2022 -0
package/views/partials/admin-test-sidebar.ejs +14 -0
package/views/partials/dashboard/nav-items.ejs +66 -0
package/views/partials/dashboard/palette.ejs +63 -0
package/views/partials/dashboard/sidebar.ejs +21 -0
package/views/partials/dashboard/tab-bar.ejs +26 -0
package/views/partials/footer.ejs +3 -0

package/src/services/uploadNamespaces.service.js ADDED Viewed

@@ -0,0 +1,326 @@
+const GlobalSetting = require('../models/GlobalSetting');
+const globalSettingsService = require('./globalSettings.service');
+const objectStorage = require('./objectStorage.service');
+const UPLOAD_NAMESPACE_PREFIX = 'UPLOAD_NAMESPACE.';
+const stripPrefix = (key) => {
+  if (!key) return key;
+  if (!key.startsWith(UPLOAD_NAMESPACE_PREFIX)) return key;
+  return key.slice(UPLOAD_NAMESPACE_PREFIX.length);
+};
+const parseJson = (value) => {
+  if (!value) return {};
+  if (typeof value === 'object') return value;
+  try {
+    return JSON.parse(value);
+  } catch {
+    return {};
+  }
+};
+const MAX_FILE_SIZE_HARD_CAP_SETTING_KEY = 'MAX_FILE_SIZE_HARD_CAP';
+const DEFAULT_MAX_FILE_SIZE_BYTES = 10485760;
+const getEnvHardCapMaxFileSizeBytes = () => {
+  const raw = process.env.MAX_FILE_SIZE_HARD_CAP || process.env.MAX_FILE_SIZE || String(DEFAULT_MAX_FILE_SIZE_BYTES);
+  const parsed = Number(raw);
+  if (!Number.isFinite(parsed) || parsed <= 0) return DEFAULT_MAX_FILE_SIZE_BYTES;
+  return parsed;
+};
+const getEffectiveHardCapMaxFileSizeBytes = async () => {
+  const raw = await globalSettingsService.getSettingValue(MAX_FILE_SIZE_HARD_CAP_SETTING_KEY, null);
+  if (raw === null || raw === undefined || raw === '') return getEnvHardCapMaxFileSizeBytes();
+  const parsed = Number(raw);
+  if (!Number.isFinite(parsed) || parsed <= 0) return getEnvHardCapMaxFileSizeBytes();
+  return parsed;
+};
+const getConfiguredHardCapMaxFileSizeBytes = async () => {
+  const raw = await globalSettingsService.getSettingValue(MAX_FILE_SIZE_HARD_CAP_SETTING_KEY, null);
+  if (raw === null || raw === undefined || raw === '') return null;
+  const parsed = Number(raw);
+  if (!Number.isFinite(parsed) || parsed <= 0) return null;
+  return parsed;
+};
+const normalizePayload = (namespaceKey, payload) => {
+  const enabled = payload?.enabled === undefined ? true : Boolean(payload.enabled);
+  let maxFileSizeBytes = payload?.maxFileSizeBytes;
+  if (maxFileSizeBytes === undefined || maxFileSizeBytes === null || maxFileSizeBytes === '') {
+    maxFileSizeBytes = undefined;
+  }
+  if (maxFileSizeBytes !== undefined) {
+    maxFileSizeBytes = Number(maxFileSizeBytes);
+    if (!Number.isFinite(maxFileSizeBytes) || maxFileSizeBytes <= 0) {
+      maxFileSizeBytes = undefined;
+    }
+  }
+  const normalizeArray = (value) => {
+    if (value === undefined) return undefined;
+    if (value === null) return [];
+    if (Array.isArray(value)) return value.map(String).filter(Boolean);
+    return [String(value)].filter(Boolean);
+  };
+  const allowedContentTypes = normalizeArray(payload?.allowedContentTypes);
+  const defaultVisibility = payload?.defaultVisibility ? String(payload.defaultVisibility) : undefined;
+  const enforceVisibility = payload?.enforceVisibility === undefined ? false : Boolean(payload.enforceVisibility);
+  const keyPrefix = payload?.keyPrefix !== undefined ? String(payload.keyPrefix || '') : undefined;
+  return {
+    key: String(namespaceKey),
+    enabled,
+    maxFileSizeBytes,
+    allowedContentTypes,
+    keyPrefix,
+    defaultVisibility,
+    enforceVisibility,
+  };
+};
+const getSettingKey = (namespaceKey) => `${UPLOAD_NAMESPACE_PREFIX}${namespaceKey}`;
+const getDefaultNamespaceConfig = (hardCapMaxFileSizeBytes) => {
+  const hardCap = hardCapMaxFileSizeBytes ?? getEnvHardCapMaxFileSizeBytes();
+  return {
+    key: 'default',
+    enabled: true,
+    maxFileSizeBytes: hardCap,
+    allowedContentTypes: objectStorage.getAllowedContentTypes(),
+    keyPrefix: undefined,
+    defaultVisibility: 'private',
+    enforceVisibility: false,
+  };
+};
+const mergeWithDefault = (config, fallback) => {
+  const base = fallback || getDefaultNamespaceConfig();
+  const allowedContentTypes =
+    config.allowedContentTypes === undefined ? base.allowedContentTypes : config.allowedContentTypes;
+  const keyPrefix = config.keyPrefix === undefined ? base.keyPrefix : config.keyPrefix;
+  const defaultVisibility = config.defaultVisibility === undefined ? base.defaultVisibility : config.defaultVisibility;
+  return {
+    ...base,
+    ...config,
+    allowedContentTypes,
+    keyPrefix,
+    defaultVisibility,
+  };
+};
+async function listNamespaces() {
+  const settings = await GlobalSetting.find({
+    key: { $regex: `^${UPLOAD_NAMESPACE_PREFIX}` },
+    type: 'json',
+  })
+    .sort({ key: 1 })
+    .lean();
+  return settings.map((s) => {
+    const namespaceKey = stripPrefix(s.key);
+    const raw = parseJson(s.value);
+    const normalized = normalizePayload(namespaceKey, raw);
+    const merged = mergeWithDefault(normalized);
+    return {
+      ...merged,
+      createdAt: s.createdAt,
+      updatedAt: s.updatedAt,
+    };
+  });
+}
+async function resolveNamespace(namespaceKey) {
+  const requested = namespaceKey ? String(namespaceKey).trim() : '';
+  const key = requested || 'default';
+  const effectiveHardCap = await getEffectiveHardCapMaxFileSizeBytes();
+  if (key === 'default') {
+    try {
+      const value = await globalSettingsService.getSettingValue(getSettingKey('default'), null);
+      if (!value) return getDefaultNamespaceConfig(effectiveHardCap);
+      const raw = parseJson(value);
+      const normalized = normalizePayload('default', raw);
+      const merged = mergeWithDefault(normalized, getDefaultNamespaceConfig(effectiveHardCap));
+      const clamped = {
+        ...merged,
+        maxFileSizeBytes: Math.min(merged.maxFileSizeBytes ?? effectiveHardCap, effectiveHardCap),
+      };
+      return clamped.enabled ? clamped : getDefaultNamespaceConfig(effectiveHardCap);
+    } catch {
+      return getDefaultNamespaceConfig(effectiveHardCap);
+    }
+  }
+  const rawValue = await globalSettingsService.getSettingValue(getSettingKey(key), null);
+  if (!rawValue) {
+    return resolveNamespace('default');
+  }
+  const raw = parseJson(rawValue);
+  const normalized = normalizePayload(key, raw);
+  const merged = mergeWithDefault(normalized, getDefaultNamespaceConfig(effectiveHardCap));
+  const clamped = {
+    ...merged,
+    maxFileSizeBytes: Math.min(merged.maxFileSizeBytes ?? effectiveHardCap, effectiveHardCap),
+  };
+  if (!clamped.enabled) {
+    return resolveNamespace('default');
+  }
+  return clamped;
+}
+async function upsertNamespace(namespaceKey, payload) {
+  const key = String(namespaceKey || '').trim();
+  if (!key) {
+    const err = new Error('namespaceKey is required');
+    err.code = 'VALIDATION_ERROR';
+    throw err;
+  }
+  const normalized = normalizePayload(key, payload || {});
+  const settingKey = getSettingKey(key);
+  const existing = await GlobalSetting.findOne({ key: settingKey, type: 'json' });
+  const setting = existing
+    ? await GlobalSetting.findOneAndUpdate(
+        { key: settingKey, type: 'json' },
+        { $set: { value: JSON.stringify(normalized) } },
+        { new: true }
+      )
+    : await GlobalSetting.create({
+        key: settingKey,
+        type: 'json',
+        public: false,
+        description: `Upload namespace: ${key}`,
+        value: JSON.stringify(normalized),
+      });
+  globalSettingsService.clearSettingsCache();
+  const resolved = await resolveNamespace(key);
+  return {
+    ...resolved,
+    createdAt: setting.createdAt,
+    updatedAt: setting.updatedAt,
+  };
+}
+function validateUpload({ namespaceConfig, contentType, sizeBytes, hardCapMaxFileSizeBytes }) {
+  const errors = [];
+  const hardCap = hardCapMaxFileSizeBytes ?? getEnvHardCapMaxFileSizeBytes();
+  const maxSize = Math.min(namespaceConfig?.maxFileSizeBytes ?? hardCap, hardCap);
+  if (typeof sizeBytes === 'number' && sizeBytes > maxSize) {
+    errors.push({ field: 'sizeBytes', reason: 'File too large', maxFileSizeBytes: maxSize });
+  }
+  const normalizeAllowedEntry = (entry) => {
+    if (entry === undefined || entry === null) return '';
+    return String(entry).trim().toLowerCase();
+  };
+  const matchesAllowedContentType = (allowedEntry, actualContentType) => {
+    const allowedNormalized = normalizeAllowedEntry(allowedEntry);
+    const actualNormalized = normalizeAllowedEntry(actualContentType);
+    if (!allowedNormalized || !actualNormalized) return false;
+    // Exact match: image/png
+    if (allowedNormalized === actualNormalized) return true;
+    // Wildcard match: image/*
+    if (allowedNormalized.endsWith('/*')) {
+      const prefix = allowedNormalized.slice(0, -1); // keep trailing '/'
+      return actualNormalized.startsWith(prefix);
+    }
+    // Shorthand: image, video, audio, application
+    if (!allowedNormalized.includes('/')) {
+      return actualNormalized.startsWith(`${allowedNormalized}/`);
+    }
+    return false;
+  };
+  const allowed = namespaceConfig?.allowedContentTypes;
+  if (Array.isArray(allowed) && allowed.length > 0) {
+    const ok = allowed.some((entry) => matchesAllowedContentType(entry, contentType));
+    if (!ok) {
+      errors.push({ field: 'contentType', reason: 'Invalid file type', allowedContentTypes: allowed });
+    }
+  }
+  return {
+    ok: errors.length === 0,
+    errors,
+  };
+}
+function computeVisibility({ namespaceConfig, requestedVisibility }) {
+  const requested = requestedVisibility === 'public' ? 'public' : requestedVisibility === 'private' ? 'private' : null;
+  const defaultVis = namespaceConfig?.defaultVisibility === 'public' ? 'public' : 'private';
+  if (namespaceConfig?.enforceVisibility) {
+    return defaultVis;
+  }
+  return requested || defaultVis;
+}
+function computeKeyPrefix(namespaceConfig) {
+  const prefix = namespaceConfig?.keyPrefix;
+  const namespaceKey = namespaceConfig?.key ? String(namespaceConfig.key).trim() : 'default';
+  const safeNamespaceKey = namespaceKey ? namespaceKey.replace(/^\/+/, '').replace(/\/+$/, '') : 'default';
+  if (prefix === undefined || prefix === null) return `assets/${safeNamespaceKey}`;
+  const trimmed = String(prefix).trim();
+  return trimmed ? trimmed.replace(/^\/+/, '').replace(/\/+$/, '') : `assets/${safeNamespaceKey}`;
+}
+function generateObjectKey({ namespaceConfig, originalName }) {
+  const prefix = computeKeyPrefix(namespaceConfig);
+  return objectStorage.generateKey(originalName, prefix);
+}
+module.exports = {
+  UPLOAD_NAMESPACE_PREFIX,
+  MAX_FILE_SIZE_HARD_CAP_SETTING_KEY,
+  DEFAULT_MAX_FILE_SIZE_BYTES,
+  getEnvHardCapMaxFileSizeBytes,
+  getEffectiveHardCapMaxFileSizeBytes,
+  getConfiguredHardCapMaxFileSizeBytes,
+  getDefaultNamespaceConfig,
+  normalizePayload,
+  getSettingKey,
+  listNamespaces,
+  resolveNamespace,
+  upsertNamespace,
+  validateUpload,
+  computeVisibility,
+  generateObjectKey,
+  computeKeyPrefix,
+};

package/src/services/webhook.service.js ADDED Viewed

@@ -0,0 +1,157 @@
+const crypto = require('crypto');
+const axios = require('axios');
+const Webhook = require('../models/Webhook');
+class WebhookService {
+  /**
+   * Emit an event to all subscribed webhooks for an organization
+   * @param {string} event - Event name (e.g., 'form.submitted')
+   * @param {Object} data - Payload data
+   * @param {string} organizationId - Organization ID
+   */
+  async emit(event, data, organizationId) {
+    try {
+      const webhooks = await Webhook.find({
+        organizationId,
+        events: event,
+        status: 'active'
+      });
+      if (!webhooks || webhooks.length === 0) return;
+      const payload = {
+        event,
+        timestamp: new Date().toISOString(),
+        organizationId,
+        data
+      };
+      const promises = webhooks.map(webhook => this.deliver(webhook, payload));
+      // Non-blocking execution
+      Promise.all(promises).catch(err => {
+        console.error('Error delivering some webhooks:', err);
+      });
+    } catch (error) {
+      console.error('WebhookService.emit error:', error);
+    }
+  }
+  /**
+   * Deliver payload to a specific webhook
+   * @param {Object} webhook - Webhook model instance
+   * @param {Object} payload - Payload object
+   */
+  async deliver(webhook, payload) {
+    const signature = crypto
+      .createHmac('sha256', webhook.secret)
+      .update(JSON.stringify(payload))
+      .digest('hex');
+    const timeout = webhook.timeout || 5000;
+    const isAsync = webhook.isAsync || false;
+    if (isAsync) {
+      // Fire and forget
+      axios.post(webhook.targetUrl, payload, {
+        headers: {
+          'Content-Type': 'application/json',
+          'X-SaaS-Signature': signature,
+          'User-Agent': 'SaaSBackend-Webhook/1.0'
+        },
+        timeout: timeout
+      }).catch(err => {
+        console.error(`Async webhook delivery to ${webhook.targetUrl} failed:`, err.message);
+      });
+      // Log success immediately for async
+      const AuditEvent = require('../models/AuditEvent');
+      await AuditEvent.create({
+        actorType: 'system',
+        actorId: 'webhook-service',
+        action: 'WEBHOOK_DELIVERY_ASYNC_DISPATCHED',
+        entityType: 'Webhook',
+        entityId: webhook._id,
+        meta: {
+          event: payload.event,
+          targetUrl: webhook.targetUrl,
+          mode: 'async',
+          payload
+        }
+      });
+      return;
+    }
+    try {
+      await axios.post(webhook.targetUrl, payload, {
+        headers: {
+          'Content-Type': 'application/json',
+          'X-SaaS-Signature': signature,
+          'User-Agent': 'SaaSBackend-Webhook/1.0'
+        },
+        timeout: timeout
+      });
+      // Reset status if it was previously failed/paused and now succeeds
+      if (webhook.status === 'failed') {
+        webhook.status = 'active';
+        await webhook.save();
+      }
+      // Log success to audit
+      const AuditEvent = require('../models/AuditEvent');
+      await AuditEvent.create({
+        actorType: 'system',
+        actorId: 'webhook-service',
+        action: 'WEBHOOK_DELIVERY_SUCCESS',
+        entityType: 'Webhook',
+        entityId: webhook._id,
+        meta: {
+          event: payload.event,
+          targetUrl: webhook.targetUrl,
+          statusCode: 200,
+          payload
+        }
+      });
+    } catch (error) {
+      console.error(`Failed to deliver webhook to ${webhook.targetUrl}:`, error.message);
+      // Log failure to audit
+      const AuditEvent = require('../models/AuditEvent');
+      await AuditEvent.create({
+        actorType: 'system',
+        actorId: 'webhook-service',
+        action: 'WEBHOOK_DELIVERY_FAILURE',
+        entityType: 'Webhook',
+        entityId: webhook._id,
+        meta: {
+          event: payload.event,
+          targetUrl: webhook.targetUrl,
+          error: error.message,
+          statusCode: error.response?.status,
+          payload
+        }
+      });
+    }
+  }
+  /**
+   * Send a test ping to a webhook
+   * @param {string} webhookId - Webhook ID
+   */
+  async test(webhookId) {
+    const webhook = await Webhook.findById(webhookId);
+    if (!webhook) throw new Error('Webhook not found');
+    const payload = {
+      event: 'webhook.test',
+      timestamp: new Date().toISOString(),
+      organizationId: webhook.organizationId,
+      data: { message: 'This is a test delivery' }
+    };
+    return this.deliver(webhook, payload);
+  }
+}
+module.exports = new WebhookService();