npm - @intranefr/superbackend - Versions diffs - 1.4.4 → 1.5.1 - Mend

@intranefr/superbackend 1.4.4 → 1.5.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (195) hide show

package/.env.example +5 -0
package/README.md +11 -0
package/index.js +39 -1
package/package.json +11 -3
package/public/sdk/ui-components.iife.js +191 -0
package/sdk/ui-components/browser/src/index.js +228 -0
package/src/admin/endpointRegistry.js +120 -0
package/src/controllers/admin.controller.js +111 -5
package/src/controllers/adminBlockDefinitions.controller.js +127 -0
package/src/controllers/adminBlockDefinitionsAi.controller.js +54 -0
package/src/controllers/adminCache.controller.js +342 -0
package/src/controllers/adminContextBlockDefinitions.controller.js +141 -0
package/src/controllers/adminCrons.controller.js +388 -0
package/src/controllers/adminDbBrowser.controller.js +124 -0
package/src/controllers/adminEjsVirtual.controller.js +13 -3
package/src/controllers/adminHeadless.controller.js +91 -2
package/src/controllers/adminHealthChecks.controller.js +570 -0
package/src/controllers/adminI18n.controller.js +51 -29
package/src/controllers/adminLlm.controller.js +126 -2
package/src/controllers/adminPages.controller.js +720 -0
package/src/controllers/adminPagesContextBlocksAi.controller.js +54 -0
package/src/controllers/adminProxy.controller.js +113 -0
package/src/controllers/adminRateLimits.controller.js +138 -0
package/src/controllers/adminRbac.controller.js +803 -0
package/src/controllers/adminScripts.controller.js +320 -0
package/src/controllers/adminSeoConfig.controller.js +71 -48
package/src/controllers/adminTerminals.controller.js +39 -0
package/src/controllers/adminUiComponents.controller.js +315 -0
package/src/controllers/adminUiComponentsAi.controller.js +34 -0
package/src/controllers/blogAdmin.controller.js +279 -0
package/src/controllers/blogAiAdmin.controller.js +224 -0
package/src/controllers/blogAutomationAdmin.controller.js +141 -0
package/src/controllers/blogInternal.controller.js +26 -0
package/src/controllers/blogPublic.controller.js +89 -0
package/src/controllers/fileManager.controller.js +190 -0
package/src/controllers/fileManagerStoragePolicy.controller.js +23 -0
package/src/controllers/healthChecksPublic.controller.js +196 -0
package/src/controllers/metrics.controller.js +64 -4
package/src/controllers/orgAdmin.controller.js +366 -0
package/src/controllers/uiComponentsPublic.controller.js +118 -0
package/src/middleware/auth.js +7 -0
package/src/middleware/internalCronAuth.js +29 -0
package/src/middleware/rbac.js +62 -0
package/src/middleware.js +879 -56
package/src/models/BlockDefinition.js +27 -0
package/src/models/BlogAutomationLock.js +14 -0
package/src/models/BlogAutomationRun.js +39 -0
package/src/models/BlogPost.js +42 -0
package/src/models/CacheEntry.js +26 -0
package/src/models/ConsoleEntry.js +32 -0
package/src/models/ConsoleLog.js +23 -0
package/src/models/ContextBlockDefinition.js +33 -0
package/src/models/CronExecution.js +47 -0
package/src/models/CronJob.js +70 -0
package/src/models/ExternalDbConnection.js +49 -0
package/src/models/FileEntry.js +22 -0
package/src/models/HeadlessModelDefinition.js +10 -0
package/src/models/HealthAutoHealAttempt.js +57 -0
package/src/models/HealthCheck.js +132 -0
package/src/models/HealthCheckRun.js +51 -0
package/src/models/HealthIncident.js +49 -0
package/src/models/Page.js +95 -0
package/src/models/PageCollection.js +42 -0
package/src/models/ProxyEntry.js +66 -0
package/src/models/RateLimitCounter.js +19 -0
package/src/models/RateLimitMetricBucket.js +20 -0
package/src/models/RbacGrant.js +25 -0
package/src/models/RbacGroup.js +16 -0
package/src/models/RbacGroupMember.js +13 -0
package/src/models/RbacGroupRole.js +13 -0
package/src/models/RbacRole.js +25 -0
package/src/models/RbacUserRole.js +13 -0
package/src/models/ScriptDefinition.js +42 -0
package/src/models/ScriptRun.js +22 -0
package/src/models/UiComponent.js +29 -0
package/src/models/UiComponentProject.js +26 -0
package/src/models/UiComponentProjectComponent.js +18 -0
package/src/routes/admin.routes.js +1 -0
package/src/routes/adminBlog.routes.js +21 -0
package/src/routes/adminBlogAi.routes.js +16 -0
package/src/routes/adminBlogAutomation.routes.js +27 -0
package/src/routes/adminCache.routes.js +20 -0
package/src/routes/adminConsoleManager.routes.js +302 -0
package/src/routes/adminCrons.routes.js +25 -0
package/src/routes/adminDbBrowser.routes.js +65 -0
package/src/routes/adminEjsVirtual.routes.js +2 -1
package/src/routes/adminHeadless.routes.js +8 -1
package/src/routes/adminHealthChecks.routes.js +28 -0
package/src/routes/adminI18n.routes.js +4 -3
package/src/routes/adminLlm.routes.js +4 -2
package/src/routes/adminPages.routes.js +55 -0
package/src/routes/adminProxy.routes.js +15 -0
package/src/routes/adminRateLimits.routes.js +17 -0
package/src/routes/adminRbac.routes.js +38 -0
package/src/routes/adminScripts.routes.js +21 -0
package/src/routes/adminSeoConfig.routes.js +5 -4
package/src/routes/adminTerminals.routes.js +13 -0
package/src/routes/adminUiComponents.routes.js +30 -0
package/src/routes/blogInternal.routes.js +14 -0
package/src/routes/blogPublic.routes.js +9 -0
package/src/routes/fileManager.routes.js +62 -0
package/src/routes/fileManagerStoragePolicy.routes.js +9 -0
package/src/routes/healthChecksPublic.routes.js +9 -0
package/src/routes/log.routes.js +43 -60
package/src/routes/metrics.routes.js +4 -2
package/src/routes/orgAdmin.routes.js +6 -0
package/src/routes/pages.routes.js +123 -0
package/src/routes/proxy.routes.js +46 -0
package/src/routes/rbac.routes.js +47 -0
package/src/routes/uiComponentsPublic.routes.js +9 -0
package/src/routes/webhook.routes.js +2 -1
package/src/routes/workflows.routes.js +4 -0
package/src/services/blockDefinitionsAi.service.js +247 -0
package/src/services/blog.service.js +99 -0
package/src/services/blogAutomation.service.js +978 -0
package/src/services/blogCronsBootstrap.service.js +184 -0
package/src/services/blogPublishing.service.js +58 -0
package/src/services/cacheLayer.service.js +696 -0
package/src/services/consoleManager.service.js +700 -0
package/src/services/consoleOverride.service.js +6 -1
package/src/services/cronScheduler.service.js +350 -0
package/src/services/dbBrowser.service.js +536 -0
package/src/services/ejsVirtual.service.js +102 -32
package/src/services/fileManager.service.js +475 -0
package/src/services/fileManagerStoragePolicy.service.js +285 -0
package/src/services/headlessExternalModels.service.js +292 -0
package/src/services/headlessModels.service.js +26 -6
package/src/services/healthChecks.service.js +650 -0
package/src/services/healthChecksBootstrap.service.js +109 -0
package/src/services/healthChecksScheduler.service.js +106 -0
package/src/services/llmDefaults.service.js +190 -0
package/src/services/migrationAssets/s3.js +2 -2
package/src/services/pages.service.js +602 -0
package/src/services/pagesContext.service.js +331 -0
package/src/services/pagesContextBlocksAi.service.js +349 -0
package/src/services/proxy.service.js +535 -0
package/src/services/rateLimiter.service.js +623 -0
package/src/services/rbac.service.js +212 -0
package/src/services/scriptsRunner.service.js +259 -0
package/src/services/terminals.service.js +152 -0
package/src/services/terminalsWs.service.js +100 -0
package/src/services/uiComponentsAi.service.js +299 -0
package/src/services/uiComponentsCrypto.service.js +39 -0
package/src/services/workflow.service.js +23 -8
package/src/utils/orgRoles.js +14 -0
package/src/utils/rbac/engine.js +60 -0
package/src/utils/rbac/rightsRegistry.js +29 -0
package/views/admin-blog-automation.ejs +877 -0
package/views/admin-blog-edit.ejs +542 -0
package/views/admin-blog.ejs +399 -0
package/views/admin-cache.ejs +681 -0
package/views/admin-console-manager.ejs +680 -0
package/views/admin-crons.ejs +645 -0
package/views/admin-db-browser.ejs +445 -0
package/views/admin-ejs-virtual.ejs +16 -10
package/views/admin-file-manager.ejs +942 -0
package/views/admin-headless.ejs +294 -24
package/views/admin-health-checks.ejs +725 -0
package/views/admin-i18n.ejs +59 -5
package/views/admin-llm.ejs +99 -1
package/views/admin-organizations.ejs +528 -10
package/views/admin-pages.ejs +2424 -0
package/views/admin-proxy.ejs +491 -0
package/views/admin-rate-limiter.ejs +625 -0
package/views/admin-rbac.ejs +1331 -0
package/views/admin-scripts.ejs +497 -0
package/views/admin-seo-config.ejs +61 -7
package/views/admin-terminals.ejs +328 -0
package/views/admin-ui-components.ejs +741 -0
package/views/admin-users.ejs +261 -4
package/views/admin-workflows.ejs +7 -7
package/views/file-manager.ejs +866 -0
package/views/pages/blocks/contact.ejs +27 -0
package/views/pages/blocks/cta.ejs +18 -0
package/views/pages/blocks/faq.ejs +20 -0
package/views/pages/blocks/features.ejs +19 -0
package/views/pages/blocks/hero.ejs +13 -0
package/views/pages/blocks/html.ejs +5 -0
package/views/pages/blocks/image.ejs +14 -0
package/views/pages/blocks/testimonials.ejs +26 -0
package/views/pages/blocks/text.ejs +10 -0
package/views/pages/layouts/default.ejs +51 -0
package/views/pages/layouts/minimal.ejs +42 -0
package/views/pages/layouts/sidebar.ejs +54 -0
package/views/pages/partials/footer.ejs +13 -0
package/views/pages/partials/header.ejs +12 -0
package/views/pages/partials/sidebar.ejs +8 -0
package/views/pages/runtime/page.ejs +10 -0
package/views/pages/templates/article.ejs +20 -0
package/views/pages/templates/default.ejs +12 -0
package/views/pages/templates/landing.ejs +14 -0
package/views/pages/templates/listing.ejs +15 -0
package/views/partials/admin-image-upload-modal.ejs +221 -0
package/views/partials/dashboard/nav-items.ejs +14 -0
package/views/partials/llm-provider-model-picker.ejs +183 -0

package/src/services/blogCronsBootstrap.service.js ADDED Viewed

@@ -0,0 +1,184 @@
+const crypto = require('crypto');
+const GlobalSetting = require('../models/GlobalSetting');
+const CronJob = require('../models/CronJob');
+const uploadNamespacesService = require('./uploadNamespaces.service');
+const globalSettingsService = require('./globalSettings.service');
+const blogAutomationService = require('./blogAutomation.service');
+const INTERNAL_CRON_TOKEN_SETTING_KEY = 'blog.internalCronToken';
+const CRON_NAME_AUTOMATION = 'Blog: Automation (generate drafts)';
+const CRON_NAME_PUBLISH_SCHEDULED = 'Blog: Publish scheduled posts';
+const AUTOMATION_CRON_PREFIX = 'Blog: Automation';
+function getAutomationCronNameForConfigId(configId) {
+  return `${AUTOMATION_CRON_PREFIX} (${String(configId)})`;
+}
+function getDefaultInternalCronToken() {
+  return crypto.randomBytes(24).toString('hex');
+}
+async function ensureSettingExists({ key, type, description, defaultValue }) {
+  const existing = await GlobalSetting.findOne({ key }).lean();
+  if (existing) return existing;
+  const doc = await GlobalSetting.create({
+    key,
+    type,
+    description,
+    value: type === 'json' ? JSON.stringify(defaultValue) : String(defaultValue ?? ''),
+    templateVariables: [],
+    public: false,
+  });
+  globalSettingsService.clearSettingsCache();
+  return doc.toObject();
+}
+async function ensureInternalTokenExists() {
+  await ensureSettingExists({
+    key: INTERNAL_CRON_TOKEN_SETTING_KEY,
+    type: 'string',
+    description: 'Bearer token used by CronJobs to call internal blog endpoints.',
+    defaultValue: getDefaultInternalCronToken(),
+  });
+  const raw = await globalSettingsService.getSettingValue(
+    INTERNAL_CRON_TOKEN_SETTING_KEY,
+    '',
+  );
+  return String(raw || '').trim();
+}
+async function ensureBlogImagesNamespace() {
+  await uploadNamespacesService.upsertNamespace('blog-images', {
+    enabled: true,
+    maxFileSizeBytes: 10 * 1024 * 1024,
+    allowedContentTypes: ['image/*', 'video/*', 'audio/*'],
+    defaultVisibility: 'public',
+    enforceVisibility: true,
+  });
+}
+async function ensureCronJobs({ baseUrl, token }) {
+  const automationUrl = `${baseUrl}/api/internal/blog/automation/run`;
+  const publishUrl = `${baseUrl}/api/internal/blog/publish-scheduled/run`;
+  // Reconcile per-config automation cron jobs
+  const configs = await blogAutomationService.getBlogAutomationConfigs();
+  const configIds = new Set((configs.items || []).map((c) => String(c.id)));
+  const existingAutomationCrons = await CronJob.find({
+    taskType: 'http',
+    name: { $regex: `^${AUTOMATION_CRON_PREFIX.replace(/[.*+?^${}()|[\]\\]/g, '\\$&')} \\(` },
+  }).lean();
+  for (const cron of existingAutomationCrons) {
+    const name = String(cron?.name || '');
+    const match = name.match(/^Blog: Automation \((.+)\)$/);
+    const id = match ? String(match[1]) : '';
+    if (id && !configIds.has(id)) {
+      await CronJob.deleteOne({ _id: cron._id }).catch(() => {});
+    }
+  }
+  for (const cfg of configs.items || []) {
+    const id = String(cfg.id);
+    const schedule = cfg && typeof cfg.schedule === 'object' ? cfg.schedule : {};
+    const managedBy = schedule.managedBy === 'manualOnly' ? 'manualOnly' : 'cronScheduler';
+    const cronName = getAutomationCronNameForConfigId(id);
+    if (managedBy !== 'cronScheduler') {
+      await CronJob.deleteOne({ name: cronName, taskType: 'http' }).catch(() => {});
+      continue;
+    }
+    const cronExpression = String(schedule.cronExpression || '').trim() || '0 9 * * 2,4';
+    const timezone = String(schedule.timezone || '').trim() || 'UTC';
+    const enabled = Boolean(cfg.enabled);
+    const payload = {
+      name: cronName,
+      description: `Scheduled blog automation run for config: ${String(cfg.name || '').trim() || id}`,
+      cronExpression,
+      timezone,
+      enabled,
+      nextRunAt: null,
+      taskType: 'http',
+      httpMethod: 'POST',
+      httpUrl: automationUrl,
+      httpHeaders: [],
+      httpBody: JSON.stringify({ trigger: 'scheduled', configId: id }),
+      httpBodyType: 'json',
+      httpAuth: { type: 'bearer', token },
+      timeoutMs: 10 * 60 * 1000,
+      createdBy: 'system',
+    };
+    const existing = await CronJob.findOne({ name: cronName, taskType: 'http' });
+    if (!existing) {
+      await CronJob.create(payload);
+    } else {
+      existing.description = payload.description;
+      existing.cronExpression = payload.cronExpression;
+      existing.timezone = payload.timezone;
+      existing.enabled = payload.enabled;
+      existing.httpUrl = payload.httpUrl;
+      existing.httpBody = payload.httpBody;
+      existing.httpBodyType = payload.httpBodyType;
+      existing.httpAuth = payload.httpAuth;
+      existing.timeoutMs = payload.timeoutMs;
+      await existing.save();
+    }
+  }
+  const existingPublisher = await CronJob.findOne({ name: CRON_NAME_PUBLISH_SCHEDULED, taskType: 'http' }).lean();
+  if (!existingPublisher) {
+    await CronJob.create({
+      name: CRON_NAME_PUBLISH_SCHEDULED,
+      description: 'Publishes due scheduled posts (disabled by default).',
+      cronExpression: '*/5 * * * *',
+      timezone: 'UTC',
+      enabled: false,
+      nextRunAt: null,
+      taskType: 'http',
+      httpMethod: 'POST',
+      httpUrl: publishUrl,
+      httpHeaders: [],
+      httpBody: JSON.stringify({}),
+      httpBodyType: 'json',
+      httpAuth: { type: 'bearer', token },
+      timeoutMs: 2 * 60 * 1000,
+      createdBy: 'system',
+    });
+  }
+}
+async function bootstrap() {
+  // Ensure blog automation settings exist (config + style guide)
+  await blogAutomationService.getBlogAutomationConfigs();
+  await blogAutomationService.getBlogAutomationStyleGuide();
+  await ensureBlogImagesNamespace();
+  const token = await ensureInternalTokenExists();
+  // CronScheduler HTTP jobs need an absolute base URL.
+  const baseUrl =
+    String(process.env.SUPERBACKEND_BASE_URL || process.env.PUBLIC_URL || '').trim() ||
+    'http://localhost:3000';
+  await ensureCronJobs({ baseUrl: baseUrl.replace(/\/+$/, ''), token });
+}
+module.exports = {
+  bootstrap,
+  INTERNAL_CRON_TOKEN_SETTING_KEY,
+  CRON_NAME_AUTOMATION,
+  CRON_NAME_PUBLISH_SCHEDULED,
+  getAutomationCronNameForConfigId,
+};

package/src/services/blogPublishing.service.js ADDED Viewed

@@ -0,0 +1,58 @@
+const BlogPost = require('../models/BlogPost');
+const { generateUniqueBlogSlug } = require('./blog.service');
+async function publishScheduledDue({ limit = 20 } = {}) {
+  const l = Math.min(200, Math.max(1, Number(limit) || 20));
+  const now = new Date();
+  const due = await BlogPost.find({
+    status: 'scheduled',
+    scheduledAt: { $lte: now },
+  })
+    .sort({ scheduledAt: 1, createdAt: 1 })
+    .limit(l);
+  const results = {
+    processed: 0,
+    published: 0,
+    errors: [],
+  };
+  for (const post of due) {
+    results.processed += 1;
+    try {
+      post.status = 'published';
+      post.scheduledAt = null;
+      if (!post.publishedAt) post.publishedAt = new Date();
+      await post.save();
+      results.published += 1;
+    } catch (err) {
+      // If slug is no longer available (archived posts free slugs; scheduled could conflict with a newer draft),
+      // regenerate a unique slug and retry once.
+      const msg = String(err?.message || err || 'Unknown error');
+      if (/duplicate key/i.test(msg) && /slug/i.test(msg)) {
+        try {
+          post.slug = await generateUniqueBlogSlug(post.title, { excludeId: post._id });
+          post.status = 'published';
+          post.scheduledAt = null;
+          if (!post.publishedAt) post.publishedAt = new Date();
+          await post.save();
+          results.published += 1;
+          continue;
+        } catch (err2) {
+          results.errors.push({ postId: String(post._id), error: String(err2?.message || err2 || '') });
+          continue;
+        }
+      }
+      results.errors.push({ postId: String(post._id), error: msg });
+    }
+  }
+  return results;
+}
+module.exports = {
+  publishScheduledDue,
+};