@jmruthers/pace-core 0.5.135 → 0.5.137

package/dist/utils.js

@@ -7,45 +7,70 @@ import {
   formatPercent,
   getAppConfig,
   getCurrentAppId,
-  getCurrentAppName,
   setAppConfig,
   useSessionTracking
-} from "./chunk-M6DDYFUD.js";
+} from "./chunk-LS353YLY.js";
 import {
-  LoadingSpinner
-} from "./chunk-CDQ3PX7L.js";
+  CachedAppIdResolver,
+  LoadingSpinner,
+  cachedAppIdResolver,
+  getAppId,
+  getAppIds
+} from "./chunk-S5OFRT4M.js";
+import "./chunk-OWAG3GSU.js";
 import {
   getAppNameFromBuildTime,
   getAppNameFromEnvironment,
   getAppNameFromGlobal,
   getAppNameFromPackageJson,
+  getCurrentAppName,
   getCurrentAppNameWithFallback,
   setRBACAppName
-} from "./chunk-JCQZ6LA7.js";
+} from "./chunk-Q5QRDWKI.js";
+import {
+  deepMerge,
+  isEmpty,
+  isObject,
+  isStrongPassword,
+  isValidDate,
+  isValidEmail,
+  isValidUrl,
+  isWithinRange,
+  matchesPattern
+} from "./chunk-JISYG63F.js";
 import {
   useComponentPerformance
-} from "./chunk-66C4BSAY.js";
+} from "./chunk-ANBQRTPX.js";
 import {
   PERFORMANCE_BUDGETS,
   performanceBudgetMonitor
-} from "./chunk-O3NWNXDY.js";
+} from "./chunk-FMUCXFII.js";
 import {
   cn
-} from "./chunk-PYUXFQJ3.js";
+} from "./chunk-56XJ3TU6.js";
 import {
   clearOrganisationContext,
   getOrganisationContext,
   init_organisationContext,
+  init_secureStorage,
   isOrganisationContextAvailable,
+  secureStorage,
   setOrganisationContext
-} from "./chunk-BDZUMRBD.js";
+} from "./chunk-7QCC6MCP.js";
 import {
-  init_secureStorage,
-  secureStorage
-} from "./chunk-UJI6WSMD.js";
+  combineSchemas,
+  pickSchema
+} from "./chunk-BJPBT3CU.js";
+import {
+  LogLevel,
+  Logger,
+  createLogger,
+  init_logger,
+  logger
+} from "./chunk-XDNLUEXI.js";
 import "./chunk-PLDDJCW6.js";
 
-// src/utils/debugLogger.ts
+// src/utils/core/debugLogger.ts
 var DebugLogger = class {
   /**
    * Check if we're in development mode
@@ -95,68 +120,13 @@ var DebugLogger = class {
   }
 };
 
-// src/utils/validation.ts
-function isValidEmail(email) {
-  const emailPattern = /^[^\s@]+@[^\s@]+\.[^\s@]+$/;
-  return emailPattern.test(email);
-}
-function isEmpty(value) {
-  return value === null || value === void 0 || value.trim() === "";
-}
-function isStrongPassword(password) {
-  const passwordPattern = /^(?=.*[a-z])(?=.*[A-Z])(?=.*\d).{8,}$/;
-  return passwordPattern.test(password);
-}
-function isValidUrl(url) {
-  try {
-    new URL(url);
-    return true;
-  } catch {
-    return false;
-  }
-}
-function isValidDate(dateStr) {
-  const date = new Date(dateStr);
-  return !isNaN(date.getTime());
-}
-function isWithinRange(value, min, max) {
-  return value >= min && value <= max;
-}
-function matchesPattern(value, pattern) {
-  return pattern.test(value);
-}
-function deepMerge(target, source) {
-  const output = { ...target };
-  if (isObject(target) && isObject(source)) {
-    Object.keys(source).forEach((key) => {
-      if (isObject(source[key])) {
-        if (!(key in target)) {
-          Object.assign(output, { [key]: source[key] });
-        } else {
-          const targetKey = key;
-          const targetValue = target[targetKey];
-          if (isObject(targetValue)) {
-            output[targetKey] = deepMerge(
-              targetValue,
-              source[key]
-            );
-          }
-        }
-      } else {
-        Object.assign(output, { [key]: source[key] });
-      }
-    });
-  }
-  return output;
-}
-function isObject(item) {
-  return item !== null && typeof item === "object" && !Array.isArray(item);
-}
+// src/utils/index.ts
+init_logger();
 
-// src/utils/validationUtils.ts
+// src/utils/validation/validationUtils.ts
 import { z as z2 } from "zod";
 
-// src/utils/sanitization.ts
+// src/utils/validation/sanitization.ts
 import { z } from "zod";
 var DEFAULT_OPTIONS = {
   allowHtml: false,
@@ -198,37 +168,6 @@ function sanitizeEmail(email) {
   }
   return email.trim().toLowerCase().replace(/[^\w@.-]/g, "");
 }
-function sanitizePhoneNumber(phone) {
-  if (typeof phone !== "string") {
-    return "";
-  }
-  return phone.replace(/[^\d+\-\s()]/g, "").trim();
-}
-function sanitizeUrl(url) {
-  if (typeof url !== "string") {
-    return "";
-  }
-  const sanitized = url.trim();
-  if (!/^https?:\/\/|^ftp:\/\//i.test(sanitized)) {
-    return "";
-  }
-  if (/javascript:|data:|vbscript:/i.test(sanitized)) {
-    return "";
-  }
-  return sanitized;
-}
-function sanitizeFileName(fileName) {
-  if (typeof fileName !== "string") {
-    return "";
-  }
-  return fileName.trim().replace(/[<>:"/\\|?*]/g, "").replace(/\.\./g, "").substring(0, 255);
-}
-function sanitizeSqlInput(input) {
-  if (typeof input !== "string") {
-    return "";
-  }
-  return input.replace(/['";\\]/g, "").replace(/--.*$/gm, "").replace(/\/\*.*?\*\//g, "").trim();
-}
 function sanitizeFormData(data, schema, sanitizationRules) {
   try {
     if (sanitizationRules && typeof data === "object" && data !== null) {
@@ -255,62 +194,34 @@ function sanitizeFormData(data, schema, sanitizationRules) {
     };
   }
 }
-var CSP_DIRECTIVES = {
-  default: "default-src 'self'",
-  script: "script-src 'self' 'unsafe-inline'",
-  style: "style-src 'self' 'unsafe-inline'",
-  img: "img-src 'self' data: https:",
-  font: "font-src 'self'",
-  connect: "connect-src 'self'",
-  frame: "frame-src 'none'"
-};
-function generateCSPHeader(customDirectives) {
-  const directives = { ...CSP_DIRECTIVES, ...customDirectives };
-  return Object.values(directives).join("; ");
-}
-var RateLimiter = class {
-  constructor(maxAttempts = 5, windowMs = 15 * 60 * 1e3) {
-    this.maxAttempts = maxAttempts;
-    this.windowMs = windowMs;
-    this.attempts = /* @__PURE__ */ new Map();
-  }
-  isAllowed(identifier) {
-    const now = Date.now();
-    const record = this.attempts.get(identifier);
-    if (!record || now > record.resetTime) {
-      this.attempts.set(identifier, { count: 1, resetTime: now + this.windowMs });
-      return true;
-    }
-    if (record.count >= this.maxAttempts) {
-      return false;
-    }
-    record.count++;
-    return true;
-  }
-  getRemainingAttempts(identifier) {
-    const record = this.attempts.get(identifier);
-    if (!record || Date.now() > record.resetTime) {
-      return this.maxAttempts;
-    }
-    return Math.max(0, this.maxAttempts - record.count);
-  }
-  reset(identifier) {
-    this.attempts.delete(identifier);
-  }
-};
+var secureEmailSchema = z.string().min(1, "Email is required").email("Invalid email format").max(254, "Email too long").refine(
+  (email) => {
+    if (!email || typeof email !== "string") return false;
+    const domain = email.split("@")[1];
+    return domain && domain.includes(".") && domain.length > 3;
+  },
+  "Invalid email domain"
+).transform((email) => sanitizeEmail(email));
+var emailSchema = z.string().min(1, "Email is required").email("Invalid email format");
+var nameSchema = z.string().min(1, "Name is required").max(100, "Name too long").regex(/^[a-zA-Z\s'-]+$/, "Name contains invalid characters");
+var phoneSchema = z.string().regex(/^[\+]?[1-9][\d]{0,15}$/, "Invalid phone number format");
+var urlSchema = z.string().url("Invalid URL format");
+var dateSchema = z.string().regex(/^\d{4}-\d{2}-\d{2}$/, "Invalid date format (YYYY-MM-DD)");
+var secureLoginSchema = z.object({
+  email: secureEmailSchema,
+  password: z.string().min(1, "Password is required")
+});
 
-// src/utils/validationUtils.ts
+// src/utils/validation/validationUtils.ts
+init_logger();
+var log = createLogger("ValidationUtils");
 function validateUserInput(schema, data, sanitizationRules) {
   return sanitizeFormData(data, schema, sanitizationRules);
 }
-function sanitizeUserInput_deprecated(input) {
-  console.warn("sanitizeUserInput is deprecated. Use sanitizeUserInput from lib/sanitization instead.");
-  return sanitizeUserInput(input);
-}
-var emailSchema = z2.string().transform((email) => email.toLowerCase().trim()).pipe(z2.string().min(1, "Email is required").email("Invalid email format").max(254, "Email too long"));
+var emailSchema2 = z2.string().transform((email) => email.toLowerCase().trim()).pipe(z2.string().min(1, "Email is required").email("Invalid email format").max(254, "Email too long"));
 var passwordSchema = z2.string().min(8, "Password must be at least 8 characters").max(128, "Password too long").regex(/[A-Z]/, "Password must contain at least one uppercase letter").regex(/[a-z]/, "Password must contain at least one lowercase letter").regex(/[0-9]/, "Password must contain at least one number").regex(/[^A-Za-z0-9]/, "Password must contain at least one special character");
 var usernameSchema = z2.string().transform((username) => username.toLowerCase().trim()).pipe(z2.string().min(3, "Username must be at least 3 characters").max(30, "Username too long").regex(/^[a-zA-Z0-9_-]+$/, "Username can only contain letters, numbers, hyphens, and underscores"));
-var nameSchema = z2.string().min(1, "Name is required").max(100, "Name too long").refine((name) => {
+var nameSchema2 = z2.string().min(1, "Name is required").max(100, "Name too long").refine((name) => {
   const dangerousPatterns = [
     /<script/i,
     /<img/i,
@@ -325,11 +236,11 @@ var nameSchema = z2.string().min(1, "Name is required").max(100, "Name too long"
   maxLength: 100,
   trim: true
 }));
-var phoneSchema = z2.string().min(10, "Phone number must be at least 10 digits").max(20, "Phone number too long").regex(/^[\+]?[0-9\s\-\(\)\.]+$/, "Invalid phone number format").refine((phone) => {
+var phoneSchema2 = z2.string().min(10, "Phone number must be at least 10 digits").max(20, "Phone number too long").regex(/^[\+]?[0-9\s\-\(\)\.]+$/, "Invalid phone number format").refine((phone) => {
   const digitsOnly = phone.replace(/\D/g, "");
   return digitsOnly.length >= 10 && digitsOnly.length <= 15;
 }, "Phone number must be between 10 and 15 digits");
-var urlSchema = z2.string().min(1, "URL is required").max(2048, "URL too long").refine((url) => {
+var urlSchema2 = z2.string().min(1, "URL is required").max(2048, "URL too long").refine((url) => {
   try {
     const parsed = new URL(url);
     return ["http:", "https:"].includes(parsed.protocol);
@@ -347,9 +258,75 @@ var urlSchema = z2.string().min(1, "URL is required").max(2048, "URL too long").
   return !dangerousPatterns.some((pattern) => pattern.test(url));
 }, "URL contains invalid protocol");
 
-// src/utils/security.ts
+// src/utils/validation/common.ts
+import { z as z3 } from "zod";
+var emailSchema3 = z3.string().min(1, "Email is required").email("Invalid email format").max(254, "Email too long");
+var nameSchema3 = z3.string().min(1, "Name is required").max(100, "Name too long").regex(/^[a-zA-Z\s'-]+$/, "Name contains invalid characters");
+var phoneSchema3 = z3.string().regex(/^\+?[\d\s\-\(\)]+$/, "Invalid phone number format").min(10, "Phone number too short").max(20, "Phone number too long");
+var urlSchema3 = z3.string().url("Invalid URL format").max(2048, "URL too long");
+var dateSchema2 = z3.string().regex(/^\d{4}-\d{2}-\d{2}$/, "Date must be in YYYY-MM-DD format").refine((date) => {
+  const parsed = new Date(date);
+  return !isNaN(parsed.getTime());
+}, "Invalid date");
+
+// src/utils/validation/passwordSchema.ts
+import { z as z4 } from "zod";
+var COMMON_PASSWORDS = /* @__PURE__ */ new Set([
+  "password",
+  "123456",
+  "123456789",
+  "qwerty",
+  "abc123",
+  "password123",
+  "admin",
+  "letmein",
+  "welcome",
+  "monkey",
+  "1234567890",
+  "password1"
+]);
+var WEAK_PATTERNS = [
+  /^(.)\1+$/,
+  // All same character
+  /^(012|123|234|345|456|567|678|789|890|987|876|765|654|543|432|321|210)+/,
+  // Sequential numbers
+  /^(abc|bcd|cde|def|efg|fgh|ghi|hij|ijk|jkl|klm|lmn|mno|nop|opq|pqr|qrs|rst|stu|tuv|uvw|vwx|wxy|xyz)+/i
+  // Sequential letters
+];
+var securePasswordSchema = z4.string().min(8, "Password must be at least 8 characters long").max(128, "Password must not exceed 128 characters").refine(
+  (password) => /[a-z]/.test(password),
+  "Password must contain at least one lowercase letter"
+).refine(
+  (password) => /[A-Z]/.test(password),
+  "Password must contain at least one uppercase letter"
+).refine(
+  (password) => /\d/.test(password),
+  "Password must contain at least one number"
+).refine(
+  (password) => /[!@#$%^&*()_+\-=\[\]{};':"\\|,.<>\/?]/.test(password),
+  "Password must contain at least one special character"
+).refine(
+  (password) => !COMMON_PASSWORDS.has(password.toLowerCase()),
+  "Password is too common. Please choose a stronger password"
+).refine(
+  (password) => !WEAK_PATTERNS.some((pattern) => pattern.test(password)),
+  "Password contains weak patterns. Please choose a more complex password"
+).refine(
+  (password) => {
+    const keyboardPatterns = ["qwerty", "asdfgh", "zxcvbn", "1234567890"];
+    return !keyboardPatterns.some(
+      (pattern) => password.toLowerCase().includes(pattern)
+    );
+  },
+  "Password contains keyboard patterns. Please choose a more secure password"
+);
+var passwordSchema2 = z4.string().min(6, "Password must be at least 6 characters long").max(128, "Password must not exceed 128 characters");
+
+// src/utils/security/security.ts
+init_logger();
+var log2 = createLogger("Security");
 function logSecurityEvent(event) {
-  console.warn("[SECURITY EVENT]", {
+  log2.warn("Security event:", {
     ...event,
     timestamp: event.timestamp.toISOString()
   });
@@ -377,6 +354,35 @@ function validateSecurityHeaders(headers) {
   return true;
 }
 
+// src/utils/security/securityMonitor.ts
+var SecurityMonitor = class {
+  constructor() {
+    this.events = [];
+  }
+  logEvent(event) {
+    const eventWithId = {
+      ...event,
+      id: Math.random().toString(36).substr(2, 9),
+      timestamp: Date.now()
+    };
+    this.events.push(eventWithId);
+  }
+  getEvents() {
+    return [...this.events];
+  }
+  clearEvents() {
+    this.events = [];
+  }
+  createAlert(alert) {
+    return {
+      ...alert,
+      id: Math.random().toString(36).substr(2, 9),
+      timestamp: /* @__PURE__ */ new Date()
+    };
+  }
+};
+var securityMonitor = new SecurityMonitor();
+
 // src/constants/performance.ts
 var PERFORMANCE_THRESHOLDS = {
   RENDER_TIME: 16,
@@ -393,7 +399,7 @@ var PERFORMANCE_THRESHOLDS = {
   // 250KB bundle size limit
 };
 
-// src/utils/performanceBenchmark.ts
+// src/utils/performance/performanceBenchmark.ts
 function createPerformanceBenchmark(name) {
   const startTime = performance.now();
   const startMemory = performance.memory?.usedJSHeapSize || 0;
@@ -436,7 +442,7 @@ function measureRenderPerformance(componentName, renderFn) {
   return metrics;
 }
 
-// src/utils/bundleAnalysis.ts
+// src/utils/performance/bundleAnalysis.ts
 var BundleAnalyzer = class {
   constructor() {
     this.enabled = import.meta.env.MODE === "development";
@@ -522,7 +528,7 @@ function trackDynamicImport(moduleName) {
   console.log("Dynamic import: " + moduleName + " - Good for code splitting!");
 }
 
-// src/utils/dynamicUtils.ts
+// src/utils/dynamic/dynamicUtils.ts
 var loadLodash = async () => {
   const [debounceModule, throttleModule] = await Promise.all([
     import("lodash.debounce"),
@@ -579,7 +585,7 @@ var lazyChartUtils = createLazyUtility(loadChartUtils);
 var lazyFormUtils = createLazyUtility(loadFormUtils);
 var lazyCSVUtils = createLazyUtility(loadCSVUtils);
 
-// src/utils/lazyLoad.tsx
+// src/utils/dynamic/lazyLoad.tsx
 import { Suspense, lazy } from "react";
 import { jsx } from "react/jsx-runtime";
 function createLazyComponent(importFn, componentName, options = {}) {
@@ -596,11 +602,11 @@ function createLazyComponent(importFn, componentName, options = {}) {
   return WrappedComponent;
 }
 var LazyDataTable = createLazyComponent(
-  () => import("./DataTable-A36PJG6N.js").then((module) => ({ default: module.DataTable })),
+  () => import("./DataTable-6M4L6BI2.js").then((module) => ({ default: module.DataTable })),
   "DataTable"
 );
 
-// src/utils/permissionUtils.ts
+// src/utils/permissions/permissionUtils.ts
 function transformPermissionMapToBoolean(permissions) {
   const result = {};
   Object.entries(permissions).forEach(([key, value]) => {
@@ -625,7 +631,7 @@ function hasAllPermissions(permissions, permissionList) {
   return permissionList.every((permission) => hasPermission(permissions, permission));
 }
 
-// src/utils/permissionTypes.ts
+// src/utils/permissions/permissionTypes.ts
 var PermissionType = /* @__PURE__ */ ((PermissionType2) => {
   PermissionType2["READ"] = "read";
   PermissionType2["WRITE"] = "write";
@@ -651,52 +657,7 @@ function parsePermission(permission) {
   };
 }
 
-// src/utils/schemaUtils.ts
-import { z as z3 } from "zod";
-function pickSchema(schema, keys) {
-  const shape = Object.entries(schema.shape).filter(([key]) => keys.includes(key)).reduce((acc, [key, value]) => {
-    acc[key] = value;
-    return acc;
-  }, {});
-  return z3.object(shape);
-}
-function combineSchemas(schemas) {
-  return schemas.reduce(
-    (merged, schema) => merged.merge(schema),
-    z3.object({})
-  );
-}
-
-// src/utils/securityMonitor.ts
-var SecurityMonitor = class {
-  constructor() {
-    this.events = [];
-  }
-  logEvent(event) {
-    const eventWithId = {
-      ...event,
-      id: Math.random().toString(36).substr(2, 9),
-      timestamp: Date.now()
-    };
-    this.events.push(eventWithId);
-  }
-  getEvents() {
-    return [...this.events];
-  }
-  clearEvents() {
-    this.events = [];
-  }
-  createAlert(alert) {
-    return {
-      ...alert,
-      id: Math.random().toString(36).substr(2, 9),
-      timestamp: /* @__PURE__ */ new Date()
-    };
-  }
-};
-var securityMonitor = new SecurityMonitor();
-
-// src/utils/audit.ts
+// src/utils/audit/audit.ts
 var AuditLogger = class {
   constructor() {
     this.events = [];
@@ -777,7 +738,7 @@ function logAuditEvent(action, user, details) {
   });
 }
 
-// src/utils/deviceFingerprint.ts
+// src/utils/device/deviceFingerprint.ts
 init_secureStorage();
 function generateDeviceFingerprint() {
   try {
@@ -908,33 +869,37 @@ function generateFallbackFingerprint() {
 // src/utils/index.ts
 init_organisationContext();
 export {
-  CSP_DIRECTIVES,
+  CachedAppIdResolver,
   DebugLogger,
   LazyDataTable,
+  LogLevel,
+  Logger,
   PERFORMANCE_BUDGETS,
   PERFORMANCE_THRESHOLDS,
   PermissionType,
-  RateLimiter,
   auditLog,
   auditLogger,
   bundleAnalyzer,
+  cachedAppIdResolver,
   clearOrganisationContext,
   cn,
   combineSchemas,
   createLazyComponent,
   createLazyUtility,
+  createLogger,
   createPerformanceBenchmark,
   deepMerge,
-  emailSchema,
+  emailSchema3 as emailSchema,
   formatCompactNumber,
   formatCurrency,
   formatDate,
   formatFileSize,
   formatNumber,
   formatPercent,
-  generateCSPHeader,
   generateDeviceFingerprint,
   getAppConfig,
+  getAppId,
+  getAppIds,
   getAppNameFromBuildTime,
   getAppNameFromEnvironment,
   getAppNameFromGlobal,
@@ -969,29 +934,24 @@ export {
   logAuthEvent,
   logPermissionEvent,
   logSecurityEvent2 as logSecurityEvent,
+  logger,
   matchesPattern,
   measureRenderPerformance,
-  nameSchema,
+  nameSchema3 as nameSchema,
   parsePermission,
-  passwordSchema,
+  passwordSchema2 as passwordSchema,
   performanceBudgetMonitor,
-  phoneSchema,
+  phoneSchema3 as phoneSchema,
   pickSchema,
-  sanitizeEmail,
-  sanitizeFileName,
   sanitizeFormData,
-  sanitizePhoneNumber,
-  sanitizeSqlInput,
-  sanitizeUrl,
   sanitizeUserInput,
-  sanitizeUserInput_deprecated,
   securityMonitor,
   setAppConfig,
   setOrganisationContext,
   setRBACAppName,
   trackDynamicImport,
   transformPermissionMapToBoolean,
-  urlSchema,
+  urlSchema3 as urlSchema,
   useComponentPerformance,
   useSessionTracking,
   usernameSchema,