@jmruthers/pace-core 0.5.186 → 0.5.187

package/dist/{chunk-UQWSHFVX.js → chunk-SAUPYVLF.js}

@@ -22,4 +22,4 @@ var FileCategory = /* @__PURE__ */ ((FileCategory2) => {
 export {
   FileCategory
 };
-//# sourceMappingURL=chunk-UQWSHFVX.js.map
+//# sourceMappingURL=chunk-SAUPYVLF.js.map

package/dist/{chunk-UQWSHFVX.js.map → chunk-SAUPYVLF.js.map}

@@ -1 +1 @@
-{"version":3,"sources":["../src/types/file-reference.ts"],"sourcesContent":["// File Reference System Types\n// These types define the structure for the centralized file reference system\n\nimport type { AppId } from './core';\n\nexport interface FileReference {\n  id: string;\n  table_name: string;\n  record_id: string;\n  file_path: string;\n  file_metadata: FileMetadata;\n  organisation_id: string;\n  app_id: AppId;\n  is_public: boolean;\n  created_at: string;\n  updated_at: string;\n}\n\nexport interface FileMetadata {\n  fileName: string;\n  fileType: string;\n  fileSize?: number;\n  width?: number;\n  height?: number;\n  category: FileCategory;\n  hash?: string;\n  uploadedBy?: string;\n  uploadedAt?: string;\n  tags?: string[];\n  customMetadata?: Record<string, unknown>;\n}\n\nexport enum FileCategory {\n  PROFILE_PHOTOS = 'profile_photos',\n  ID_DOCUMENTS = 'id_documents',\n  QUALIFICATIONS = 'qualifications',\n  MEDICAL_DOCUMENTS = 'medical_documents',\n  DISH_IMAGES = 'dish_images',\n  EVENT_LOGOS = 'event_logos',\n  GENERAL_DOCUMENTS = 'general_documents',\n  IMAGES = 'images',\n  AUDIO = 'audio',\n  VIDEO = 'video',\n  ARCHIVES = 'archives',\n  // CAKE-specific categories\n  CAKE_DISH = 'cake_dish',\n  // TRAC-specific categories\n  TRAC_ACCOMMODATION = 'trac_accommodation',\n  TRAC_ACTIVITY = 'trac_activity',\n  TRAC_JOURNAL = 'trac_journal',\n  TRAC_TRANSPORT = 'trac_transport'\n}\n\n/**\n * Options for uploading a file with a file reference\n * @property pageContext - The page context where the file upload occurs (e.g., 'configuration', 'forms', 'applications')\n *                          Used for context-aware permission checks. Required to check appropriate page-level permissions.\n * @property event_id - Optional event ID for event-scoped permission checks. Required for event-based apps.\n */\nexport interface FileUploadOptions {\n  table_name: string;\n  record_id: string;\n  organisation_id: string;\n  app_id: AppId;\n  category: FileCategory;\n  folder: string; // Folder name in storage bucket (e.g., 'profile_photos', 'documents')\n  pageContext: string;\n  event_id?: string;\n  is_public?: boolean;\n  custom_metadata?: Record<string, unknown>;\n}\n\n\nexport interface FileReferenceService {\n  createFileReference(options: FileUploadOptions, file: File): Promise<FileReference>;\n  getFileReference(table_name: string, record_id: string, organisation_id: string): Promise<FileReference | null>;\n  getFileReferenceById(id: string, organisation_id: string): Promise<FileReference | null>;\n  getFileUrl(table_name: string, record_id: string, organisation_id: string): Promise<string | null>;\n  getSignedUrl(table_name: string, record_id: string, organisation_id: string, expires_in?: number): Promise<string | null>;\n  updateFileReference(id: string, updates: Partial<FileReference>): Promise<FileReference>;\n  deleteFileReference(table_name: string, record_id: string, organisation_id: string, delete_file?: boolean): Promise<boolean>;\n  listFileReferences(table_name: string, record_id: string, organisation_id: string): Promise<FileReference[]>;\n  getFilesByCategory(table_name: string, record_id: string, category: FileCategory, organisation_id: string): Promise<FileReference[]>;\n  getFileCount(table_name: string, record_id: string, organisation_id: string): Promise<number>;\n  uploadMultipleFiles(options: FileUploadOptions, files: File[]): Promise<BulkUploadResult>;\n}\n\nexport interface StorageUploadOptions {\n  orgId: string;\n  category: FileCategory;\n  isPublic?: boolean;\n  customPath?: string;\n}\n\nexport interface FileUploadResult {\n  file_reference: FileReference;\n  file_url: string;\n  signed_url?: string;\n}\n\n/**\n * File reference with pre-fetched URL\n * Useful for display components that need both metadata and URL\n */\nexport interface FileReferenceWithUrl extends FileReference {\n  url: string;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n}\n\n/**\n * Upload progress information\n */\nexport interface UploadProgress {\n  loaded: number;\n  total: number;\n  percentage: number;\n  fileName: string;\n  status: 'idle' | 'uploading' | 'processing' | 'completed' | 'error';\n  error?: string;\n}\n\n/**\n * Bulk upload result\n */\nexport interface BulkUploadResult {\n  /** Successfully created file references */\n  success: FileReference[];\n  /** Per-file failures with associated errors */\n  failed: { file: File; error: string }[];\n\n  // Optional aggregate fields for consumers that need totals\n  total?: number;\n  successful?: number;\n  results?: Array<{\n    file: File;\n    result: FileUploadResult | null;\n    error?: string;\n  }>;\n}\n\n/**\n * Bucket information for file storage\n */\nexport interface BucketInfo {\n  name: 'files' | 'public-files';\n  isPublic: boolean;\n  description: string;\n}\n\n/**\n * File URL information (public or signed)\n */\nexport interface FileUrlInfo {\n  url: string;\n  isPublic: boolean;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n  bucket: BucketInfo;\n}\n"],"mappings":";AAgCO,IAAK,eAAL,kBAAKA,kBAAL;AACL,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,YAAS;AACT,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,cAAW;AAEX,EAAAA,cAAA,eAAY;AAEZ,EAAAA,cAAA,wBAAqB;AACrB,EAAAA,cAAA,mBAAgB;AAChB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AAlBP,SAAAA;AAAA,GAAA;","names":["FileCategory"]}
+{"version":3,"sources":["../src/types/file-reference.ts"],"sourcesContent":["// File Reference System Types\n// These types define the structure for the centralized file reference system\n\nimport type { AppId } from './core';\n\nexport interface FileReference {\n  id: string;\n  table_name: string;\n  record_id: string;\n  file_path: string;\n  file_metadata: FileMetadata;\n  organisation_id: string;\n  app_id: AppId;\n  is_public: boolean;\n  created_at: string;\n  updated_at: string;\n}\n\nexport interface FileMetadata {\n  fileName: string;\n  fileType: string;\n  fileSize?: number;\n  width?: number;\n  height?: number;\n  category: FileCategory;\n  hash?: string;\n  uploadedBy?: string;\n  uploadedAt?: string;\n  tags?: string[];\n  customMetadata?: Record<string, unknown>;\n}\n\nexport enum FileCategory {\n  PROFILE_PHOTOS = 'profile_photos',\n  ID_DOCUMENTS = 'id_documents',\n  QUALIFICATIONS = 'qualifications',\n  MEDICAL_DOCUMENTS = 'medical_documents',\n  DISH_IMAGES = 'dish_images',\n  EVENT_LOGOS = 'event_logos',\n  GENERAL_DOCUMENTS = 'general_documents',\n  IMAGES = 'images',\n  AUDIO = 'audio',\n  VIDEO = 'video',\n  ARCHIVES = 'archives',\n  // CAKE-specific categories\n  CAKE_DISH = 'cake_dish',\n  // TRAC-specific categories\n  TRAC_ACCOMMODATION = 'trac_accommodation',\n  TRAC_ACTIVITY = 'trac_activity',\n  TRAC_JOURNAL = 'trac_journal',\n  TRAC_TRANSPORT = 'trac_transport'\n}\n\n/**\n * Options for uploading a file with a file reference\n * @property pageContext - The page context where the file upload occurs (e.g., 'configuration', 'forms', 'applications')\n *                          Used for context-aware permission checks. Required to check appropriate page-level permissions.\n * @property event_id - Optional event ID for event-scoped permission checks. Required for event-based apps.\n */\nexport interface FileUploadOptions {\n  table_name: string;\n  record_id: string;\n  organisation_id: string;\n  app_id: AppId;\n  category: FileCategory;\n  folder: string; // Folder name in storage bucket (e.g., 'profile_photos', 'documents')\n  pageContext: string;\n  event_id?: string;\n  is_public?: boolean;\n  custom_metadata?: Record<string, unknown>;\n}\n\n\nexport interface FileReferenceService {\n  createFileReference(options: FileUploadOptions, file: File): Promise<FileReference>;\n  getFileReference(table_name: string, record_id: string, organisation_id: string): Promise<FileReference | null>;\n  getFileReferenceById(id: string, organisation_id: string): Promise<FileReference | null>;\n  getFileUrl(table_name: string, record_id: string, organisation_id: string): Promise<string | null>;\n  getSignedUrl(table_name: string, record_id: string, organisation_id: string, expires_in?: number): Promise<string | null>;\n  updateFileReference(id: string, updates: Partial<FileReference>): Promise<FileReference>;\n  deleteFileReference(table_name: string, record_id: string, organisation_id: string, delete_file?: boolean): Promise<boolean>;\n  listFileReferences(table_name: string, record_id: string, organisation_id: string): Promise<FileReference[]>;\n  getFilesByCategory(table_name: string, record_id: string, category: FileCategory, organisation_id: string): Promise<FileReference[]>;\n  getFileCount(table_name: string, record_id: string, organisation_id: string): Promise<number>;\n  uploadMultipleFiles(options: FileUploadOptions, files: File[]): Promise<BulkUploadResult>;\n}\n\nexport interface StorageUploadOptions {\n  orgId: string;\n  isPublic?: boolean;\n  customPath?: string;\n}\n\nexport interface FileUploadResult {\n  file_reference: FileReference;\n  file_url: string;\n  signed_url?: string;\n}\n\n/**\n * File reference with pre-fetched URL\n * Useful for display components that need both metadata and URL\n */\nexport interface FileReferenceWithUrl extends FileReference {\n  url: string;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n}\n\n/**\n * Upload progress information\n */\nexport interface UploadProgress {\n  loaded: number;\n  total: number;\n  percentage: number;\n  fileName: string;\n  status: 'idle' | 'uploading' | 'processing' | 'completed' | 'error';\n  error?: string;\n}\n\n/**\n * Bulk upload result\n */\nexport interface BulkUploadResult {\n  /** Successfully created file references */\n  success: FileReference[];\n  /** Per-file failures with associated errors */\n  failed: { file: File; error: string }[];\n\n  // Optional aggregate fields for consumers that need totals\n  total?: number;\n  successful?: number;\n  results?: Array<{\n    file: File;\n    result: FileUploadResult | null;\n    error?: string;\n  }>;\n}\n\n/**\n * Bucket information for file storage\n */\nexport interface BucketInfo {\n  name: 'files' | 'public-files';\n  isPublic: boolean;\n  description: string;\n}\n\n/**\n * File URL information (public or signed)\n */\nexport interface FileUrlInfo {\n  url: string;\n  isPublic: boolean;\n  isSignedUrl: boolean;\n  expiresAt?: Date;\n  bucket: BucketInfo;\n}\n"],"mappings":";AAgCO,IAAK,eAAL,kBAAKA,kBAAL;AACL,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AACjB,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,iBAAc;AACd,EAAAA,cAAA,uBAAoB;AACpB,EAAAA,cAAA,YAAS;AACT,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,WAAQ;AACR,EAAAA,cAAA,cAAW;AAEX,EAAAA,cAAA,eAAY;AAEZ,EAAAA,cAAA,wBAAqB;AACrB,EAAAA,cAAA,mBAAgB;AAChB,EAAAA,cAAA,kBAAe;AACf,EAAAA,cAAA,oBAAiB;AAlBP,SAAAA;AAAA,GAAA;","names":["FileCategory"]}

package/dist/{chunk-GRIQLQ52.js → chunk-T6ZJVI3A.js}

@@ -1,22 +1,23 @@
 import {
   createScopeFromEvent,
+  scopeEqual,
   useAccessLevel,
   useCan,
   useMultiplePermissions
-} from "./chunk-445GEP27.js";
+} from "./chunk-3IC5WCMO.js";
 import {
   RBACCache,
   RBACNotInitializedError,
   getRBACConfig,
   getRBACLogger,
   rbacCache
-} from "./chunk-U6WNSFX5.js";
+} from "./chunk-HEHYGYOX.js";
 import {
   useSecureDataAccess
-} from "./chunk-DAGICKHT.js";
+} from "./chunk-ULX5FYEM.js";
 import {
   useUnifiedAuth
-} from "./chunk-FXFJRTKI.js";
+} from "./chunk-WK2Y6TGA.js";
 import {
   createLogger,
   logger
@@ -157,7 +158,7 @@ function usePagePermissions() {
 }
 
 // src/rbac/components/PagePermissionGuard.tsx
-import { useMemo as useMemo2, useEffect as useEffect2, useState as useState2, useRef } from "react";
+import React2, { useMemo as useMemo2, useEffect as useEffect2, useState as useState2, useRef } from "react";
 import { Fragment, jsx as jsx2, jsxs } from "react/jsx-runtime";
 var PagePermissionGuardComponent = ({
   pageName,
@@ -330,15 +331,18 @@ var PagePermissionGuardComponent = ({
   const permission = useMemo2(() => {
     return `${operation}:page.${pageName}`;
   }, [operation, pageName]);
+  const prevScopeRef = useRef(null);
   const stableScope = useMemo2(() => {
-    if (resolvedScope && resolvedScope.organisationId) {
-      return {
-        organisationId: resolvedScope.organisationId,
-        appId: resolvedScope.appId || void 0,
-        eventId: resolvedScope.eventId || void 0
-      };
+    const newScope = resolvedScope && resolvedScope.organisationId ? {
+      organisationId: resolvedScope.organisationId,
+      appId: resolvedScope.appId || void 0,
+      eventId: resolvedScope.eventId || void 0
+    } : { organisationId: void 0, appId: void 0, eventId: void 0 };
+    if (scopeEqual(prevScopeRef.current, newScope)) {
+      return prevScopeRef.current;
     }
-    return { organisationId: void 0, appId: void 0, eventId: void 0 };
+    prevScopeRef.current = newScope;
+    return newScope;
   }, [resolvedScope]);
   const { can, isLoading: canIsLoading, error: canError } = useCan(
     user?.id || "",
@@ -434,7 +438,7 @@ function DefaultLoading() {
     /* @__PURE__ */ jsx2("span", { className: "text-sec-600", children: "Checking permissions..." })
   ] }) });
 }
-var PagePermissionGuard = PagePermissionGuardComponent;
+var PagePermissionGuard = React2.memo(PagePermissionGuardComponent);
 
 // src/rbac/components/SecureDataProvider.tsx
 import { createContext as createContext2, useContext as useContext2, useState as useState3, useCallback as useCallback3, useMemo as useMemo3, useEffect as useEffect3 } from "react";
@@ -1428,7 +1432,7 @@ function withPermissionGuard(config, handler) {
     if (!userId || !organisationId) {
       throw new Error("User context required for permission check");
     }
-    const { isPermitted: isPermitted2 } = await import("./api-BMFCXVQX.js");
+    const { isPermitted: isPermitted2 } = await import("./api-YP7XD5L6.js");
     const hasPermission2 = await isPermitted2({
       userId,
       scope: { organisationId, eventId, appId },
@@ -1451,7 +1455,7 @@ function withAccessLevelGuard(minLevel, handler) {
     if (!userId || !organisationId) {
       throw new Error("User context required for access level check");
     }
-    const { getAccessLevel: getAccessLevel2 } = await import("./api-BMFCXVQX.js");
+    const { getAccessLevel: getAccessLevel2 } = await import("./api-YP7XD5L6.js");
     const accessLevel = await getAccessLevel2({
       userId,
       scope: { organisationId, eventId, appId }
@@ -1476,11 +1480,11 @@ function withRoleGuard(config, handler) {
       throw new Error("User context required for role check");
     }
     if (config.globalRoles && config.globalRoles.length > 0) {
-      const { isSuperAdmin } = await import("./api-BMFCXVQX.js");
+      const { isSuperAdmin } = await import("./api-YP7XD5L6.js");
       const isSuper = await isSuperAdmin(userId);
       if (isSuper) {
         if (organisationId) {
-          const { emitAuditEvent: emitAuditEvent2 } = await import("./audit-WRS3KJKI.js");
+          const { emitAuditEvent: emitAuditEvent2 } = await import("./audit-B5P6FFIR.js");
           await emitAuditEvent2({
             type: "permission_check",
             userId,
@@ -1502,21 +1506,21 @@ function withRoleGuard(config, handler) {
       }
     }
     if (config.organisationRoles && config.organisationRoles.length > 0) {
-      const { isOrganisationAdmin } = await import("./api-BMFCXVQX.js");
+      const { isOrganisationAdmin } = await import("./api-YP7XD5L6.js");
       const isOrgAdmin = await isOrganisationAdmin(userId, organisationId);
       if (!isOrgAdmin && config.requireAll !== false) {
         throw new Error(`Organisation admin role required`);
       }
     }
     if (config.eventAppRoles && config.eventAppRoles.length > 0 && eventId && appId) {
-      const { isEventAdmin } = await import("./api-BMFCXVQX.js");
+      const { isEventAdmin } = await import("./api-YP7XD5L6.js");
       const isEventAdminUser = await isEventAdmin(userId, { organisationId, eventId, appId });
       if (!isEventAdminUser && config.requireAll !== false) {
         throw new Error(`Event admin role required`);
       }
     }
     if (organisationId) {
-      const { emitAuditEvent: emitAuditEvent2 } = await import("./audit-WRS3KJKI.js");
+      const { emitAuditEvent: emitAuditEvent2 } = await import("./audit-B5P6FFIR.js");
       await emitAuditEvent2({
         type: "permission_check",
         userId,
@@ -1549,7 +1553,7 @@ function createRBACMiddleware(config) {
     );
     if (protectedRoute) {
       try {
-        const { isPermitted: isPermitted2 } = await import("./api-BMFCXVQX.js");
+        const { isPermitted: isPermitted2 } = await import("./api-YP7XD5L6.js");
         const hasPermission2 = await isPermitted2({
           userId,
           scope: { organisationId },
@@ -1576,7 +1580,7 @@ function createRBACExpressMiddleware(config) {
       return res.status(401).json({ error: "User context required" });
     }
     try {
-      const { isPermitted: isPermitted2 } = await import("./api-BMFCXVQX.js");
+      const { isPermitted: isPermitted2 } = await import("./api-YP7XD5L6.js");
       const hasPermission2 = await isPermitted2({
         userId,
         scope: { organisationId, eventId, appId },
@@ -2105,4 +2109,4 @@ export {
   getDirectSupabaseAuthFixes,
   getQuickFixes
 };
-//# sourceMappingURL=chunk-GRIQLQ52.js.map
+//# sourceMappingURL=chunk-T6ZJVI3A.js.map