npm - @jmruthers/pace-core - Versions diffs - 0.5.189 → 0.5.190 - Mend

@jmruthers/pace-core 0.5.189 → 0.5.190

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (420) hide show

package/core-usage-manifest.json +0 -4
package/dist/{AuthService-B-cd2MA4.d.ts → AuthService-CbP_utw2.d.ts} +7 -3
package/dist/{DataTable-GUFUNZ3N.js → DataTable-ON3IXISJ.js} +8 -8
package/dist/{PublicPageProvider-B8HaLe69.d.ts → PublicPageProvider-C4uxosp6.d.ts} +83 -24
package/dist/{UnifiedAuthProvider-BG0AL5eE.d.ts → UnifiedAuthProvider-BYA9qB-o.d.ts} +4 -3
package/dist/{UnifiedAuthProvider-643PUAIM.js → UnifiedAuthProvider-X5NXANVI.js} +4 -2
package/dist/{api-YP7XD5L6.js → api-I6UCQ5S6.js} +4 -2
package/dist/{chunk-DDM4CCYT.js → chunk-4QYC5L4K.js} +60 -35
package/dist/chunk-4QYC5L4K.js.map +1 -0
package/dist/{chunk-IM4QE42D.js → chunk-73HSNNOQ.js} +141 -326
package/dist/chunk-73HSNNOQ.js.map +1 -0
package/dist/{chunk-YHCN776L.js → chunk-DZWK57KZ.js} +2 -75
package/dist/chunk-DZWK57KZ.js.map +1 -0
package/dist/{chunk-3GOZZZYH.js → chunk-HQVPB5MZ.js} +238 -301
package/dist/chunk-HQVPB5MZ.js.map +1 -0
package/dist/{chunk-THRPYOFK.js → chunk-HW3OVDUF.js} +5 -5
package/dist/chunk-HW3OVDUF.js.map +1 -0
package/dist/{chunk-F2IMUDXZ.js → chunk-I7PSE6JW.js} +75 -2
package/dist/chunk-I7PSE6JW.js.map +1 -0
package/dist/{chunk-VGZZXKBR.js → chunk-J2XXC7R5.js} +280 -52
package/dist/chunk-J2XXC7R5.js.map +1 -0
package/dist/{chunk-UCQSRW7Z.js → chunk-NIU6J6OX.js} +425 -378
package/dist/chunk-NIU6J6OX.js.map +1 -0
package/dist/{chunk-HESYZWZW.js → chunk-QWWZ5CAQ.js} +2 -2
package/dist/{chunk-HEHYGYOX.js → chunk-RUYZKXOD.js} +401 -46
package/dist/chunk-RUYZKXOD.js.map +1 -0
package/dist/{chunk-2UUZZJFT.js → chunk-SDMHPX3X.js} +176 -160
package/dist/{chunk-2UUZZJFT.js.map → chunk-SDMHPX3X.js.map} +1 -1
package/dist/{chunk-MX64ZF6I.js → chunk-STYK4OH2.js} +11 -11
package/dist/chunk-STYK4OH2.js.map +1 -0
package/dist/{chunk-YGPFYGA6.js → chunk-VVBAW5A5.js} +822 -498
package/dist/chunk-VVBAW5A5.js.map +1 -0
package/dist/chunk-Y4BUBBHD.js +614 -0
package/dist/chunk-Y4BUBBHD.js.map +1 -0
package/dist/{chunk-SAUPYVLF.js → chunk-ZSAAAMVR.js} +1 -1
package/dist/chunk-ZSAAAMVR.js.map +1 -0
package/dist/components.d.ts +3 -4
package/dist/components.js +19 -19
package/dist/components.js.map +1 -1
package/dist/eslint-rules/pace-core-compliance.cjs +0 -2
package/dist/{file-reference-D037xOFK.d.ts → file-reference-BavO2eQj.d.ts} +13 -10
package/dist/hooks.d.ts +10 -5
package/dist/hooks.js +14 -8
package/dist/hooks.js.map +1 -1
package/dist/index.d.ts +13 -11
package/dist/index.js +79 -69
package/dist/index.js.map +1 -1
package/dist/providers.d.ts +3 -3
package/dist/providers.js +3 -1
package/dist/rbac/index.d.ts +76 -12
package/dist/rbac/index.js +12 -9
package/dist/types.d.ts +1 -1
package/dist/types.js +1 -1
package/dist/{usePublicRouteParams-CTDELQ7H.d.ts → usePublicRouteParams-DxIDS4bC.d.ts} +16 -9
package/dist/utils.js +16 -16
package/docs/README.md +2 -2
package/docs/api/classes/ColumnFactory.md +1 -1
package/docs/api/classes/ErrorBoundary.md +1 -1
package/docs/api/classes/InvalidScopeError.md +2 -2
package/docs/api/classes/Logger.md +1 -1
package/docs/api/classes/MissingUserContextError.md +2 -2
package/docs/api/classes/OrganisationContextRequiredError.md +1 -1
package/docs/api/classes/PermissionDeniedError.md +1 -1
package/docs/api/classes/RBACAuditManager.md +1 -1
package/docs/api/classes/RBACCache.md +1 -1
package/docs/api/classes/RBACEngine.md +4 -4
package/docs/api/classes/RBACError.md +1 -1
package/docs/api/classes/RBACNotInitializedError.md +2 -2
package/docs/api/classes/SecureSupabaseClient.md +21 -16
package/docs/api/classes/StorageUtils.md +7 -4
package/docs/api/enums/FileCategory.md +1 -1
package/docs/api/enums/LogLevel.md +1 -1
package/docs/api/enums/RBACErrorCode.md +1 -1
package/docs/api/enums/RPCFunction.md +1 -1
package/docs/api/interfaces/AddressFieldProps.md +1 -1
package/docs/api/interfaces/AddressFieldRef.md +1 -1
package/docs/api/interfaces/AggregateConfig.md +1 -1
package/docs/api/interfaces/AutocompleteOptions.md +1 -1
package/docs/api/interfaces/AvatarProps.md +1 -1
package/docs/api/interfaces/BadgeProps.md +1 -1
package/docs/api/interfaces/ButtonProps.md +1 -1
package/docs/api/interfaces/CalendarProps.md +20 -6
package/docs/api/interfaces/CardProps.md +1 -1
package/docs/api/interfaces/ColorPalette.md +1 -1
package/docs/api/interfaces/ColorShade.md +1 -1
package/docs/api/interfaces/ComplianceResult.md +1 -1
package/docs/api/interfaces/DataAccessRecord.md +9 -9
package/docs/api/interfaces/DataRecord.md +1 -1
package/docs/api/interfaces/DataTableAction.md +1 -1
package/docs/api/interfaces/DataTableColumn.md +1 -1
package/docs/api/interfaces/DataTableProps.md +1 -1
package/docs/api/interfaces/DataTableToolbarButton.md +1 -1
package/docs/api/interfaces/DatabaseComplianceResult.md +1 -1
package/docs/api/interfaces/DatabaseIssue.md +1 -1
package/docs/api/interfaces/EmptyStateConfig.md +1 -1
package/docs/api/interfaces/EnhancedNavigationMenuProps.md +1 -1
package/docs/api/interfaces/EventAppRoleData.md +1 -1
package/docs/api/interfaces/ExportColumn.md +1 -1
package/docs/api/interfaces/ExportOptions.md +1 -1
package/docs/api/interfaces/FileDisplayProps.md +62 -16
package/docs/api/interfaces/FileMetadata.md +1 -1
package/docs/api/interfaces/FileReference.md +2 -2
package/docs/api/interfaces/FileSizeLimits.md +1 -1
package/docs/api/interfaces/FileUploadOptions.md +26 -12
package/docs/api/interfaces/FileUploadProps.md +30 -19
package/docs/api/interfaces/FooterProps.md +1 -1
package/docs/api/interfaces/FormFieldProps.md +1 -1
package/docs/api/interfaces/FormProps.md +1 -1
package/docs/api/interfaces/GrantEventAppRoleParams.md +1 -1
package/docs/api/interfaces/InactivityWarningModalProps.md +1 -1
package/docs/api/interfaces/InputProps.md +1 -1
package/docs/api/interfaces/LabelProps.md +1 -1
package/docs/api/interfaces/LoggerConfig.md +1 -1
package/docs/api/interfaces/LoginFormProps.md +1 -1
package/docs/api/interfaces/NavigationAccessRecord.md +10 -10
package/docs/api/interfaces/NavigationContextType.md +9 -9
package/docs/api/interfaces/NavigationGuardProps.md +1 -1
package/docs/api/interfaces/NavigationItem.md +1 -1
package/docs/api/interfaces/NavigationMenuProps.md +1 -1
package/docs/api/interfaces/NavigationProviderProps.md +7 -7
package/docs/api/interfaces/Organisation.md +1 -1
package/docs/api/interfaces/OrganisationContextType.md +1 -1
package/docs/api/interfaces/OrganisationMembership.md +1 -1
package/docs/api/interfaces/OrganisationProviderProps.md +1 -1
package/docs/api/interfaces/OrganisationSecurityError.md +1 -1
package/docs/api/interfaces/PaceAppLayoutProps.md +1 -1
package/docs/api/interfaces/PaceLoginPageProps.md +1 -1
package/docs/api/interfaces/PageAccessRecord.md +8 -8
package/docs/api/interfaces/PagePermissionContextType.md +8 -8
package/docs/api/interfaces/PagePermissionGuardProps.md +1 -1
package/docs/api/interfaces/PagePermissionProviderProps.md +7 -7
package/docs/api/interfaces/PaletteData.md +1 -1
package/docs/api/interfaces/ParsedAddress.md +1 -1
package/docs/api/interfaces/PermissionEnforcerProps.md +1 -1
package/docs/api/interfaces/ProgressProps.md +3 -11
package/docs/api/interfaces/ProtectedRouteProps.md +1 -1
package/docs/api/interfaces/PublicPageFooterProps.md +1 -1
package/docs/api/interfaces/PublicPageHeaderProps.md +1 -1
package/docs/api/interfaces/PublicPageLayoutProps.md +1 -1
package/docs/api/interfaces/QuickFix.md +1 -1
package/docs/api/interfaces/RBACAccessValidateParams.md +1 -1
package/docs/api/interfaces/RBACAccessValidateResult.md +1 -1
package/docs/api/interfaces/RBACAuditLogParams.md +1 -1
package/docs/api/interfaces/RBACAuditLogResult.md +1 -1
package/docs/api/interfaces/RBACConfig.md +1 -1
package/docs/api/interfaces/RBACContext.md +1 -1
package/docs/api/interfaces/RBACLogger.md +1 -1
package/docs/api/interfaces/RBACPageAccessCheckParams.md +1 -1
package/docs/api/interfaces/RBACPerformanceMetrics.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckParams.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckResult.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetParams.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetResult.md +1 -1
package/docs/api/interfaces/RBACResult.md +1 -1
package/docs/api/interfaces/RBACRoleGrantParams.md +1 -1
package/docs/api/interfaces/RBACRoleGrantResult.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeParams.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeResult.md +1 -1
package/docs/api/interfaces/RBACRoleValidateParams.md +1 -1
package/docs/api/interfaces/RBACRoleValidateResult.md +1 -1
package/docs/api/interfaces/RBACRolesListParams.md +1 -1
package/docs/api/interfaces/RBACRolesListResult.md +1 -1
package/docs/api/interfaces/RBACSessionTrackParams.md +1 -1
package/docs/api/interfaces/RBACSessionTrackResult.md +1 -1
package/docs/api/interfaces/ResourcePermissions.md +1 -1
package/docs/api/interfaces/RevokeEventAppRoleParams.md +1 -1
package/docs/api/interfaces/RoleBasedRouterContextType.md +8 -8
package/docs/api/interfaces/RoleBasedRouterProps.md +10 -10
package/docs/api/interfaces/RoleManagementResult.md +1 -1
package/docs/api/interfaces/RouteAccessRecord.md +10 -10
package/docs/api/interfaces/RouteConfig.md +10 -10
package/docs/api/interfaces/RuntimeComplianceResult.md +1 -1
package/docs/api/interfaces/SecureDataContextType.md +9 -9
package/docs/api/interfaces/SecureDataProviderProps.md +8 -8
package/docs/api/interfaces/SessionRestorationLoaderProps.md +1 -1
package/docs/api/interfaces/SetupIssue.md +1 -1
package/docs/api/interfaces/StorageConfig.md +4 -4
package/docs/api/interfaces/StorageFileInfo.md +7 -7
package/docs/api/interfaces/StorageFileMetadata.md +25 -14
package/docs/api/interfaces/StorageListOptions.md +22 -9
package/docs/api/interfaces/StorageListResult.md +4 -4
package/docs/api/interfaces/StorageUploadOptions.md +21 -8
package/docs/api/interfaces/StorageUploadResult.md +6 -6
package/docs/api/interfaces/StorageUrlOptions.md +19 -6
package/docs/api/interfaces/StyleImport.md +1 -1
package/docs/api/interfaces/SwitchProps.md +1 -1
package/docs/api/interfaces/TabsContentProps.md +1 -1
package/docs/api/interfaces/TabsListProps.md +1 -1
package/docs/api/interfaces/TabsProps.md +1 -1
package/docs/api/interfaces/TabsTriggerProps.md +1 -1
package/docs/api/interfaces/TextareaProps.md +1 -1
package/docs/api/interfaces/ToastActionElement.md +1 -1
package/docs/api/interfaces/ToastProps.md +1 -1
package/docs/api/interfaces/UnifiedAuthContextType.md +53 -53
package/docs/api/interfaces/UnifiedAuthProviderProps.md +13 -13
package/docs/api/interfaces/UseFormDialogOptions.md +1 -1
package/docs/api/interfaces/UseFormDialogReturn.md +1 -1
package/docs/api/interfaces/UseInactivityTrackerOptions.md +1 -1
package/docs/api/interfaces/UseInactivityTrackerReturn.md +1 -1
package/docs/api/interfaces/UsePublicEventLogoOptions.md +1 -1
package/docs/api/interfaces/UsePublicEventLogoReturn.md +1 -1
package/docs/api/interfaces/UsePublicEventOptions.md +1 -1
package/docs/api/interfaces/UsePublicEventReturn.md +1 -1
package/docs/api/interfaces/UsePublicFileDisplayOptions.md +1 -1
package/docs/api/interfaces/UsePublicFileDisplayReturn.md +1 -1
package/docs/api/interfaces/UsePublicRouteParamsReturn.md +1 -1
package/docs/api/interfaces/UseResolvedScopeOptions.md +4 -4
package/docs/api/interfaces/UseResolvedScopeReturn.md +4 -4
package/docs/api/interfaces/UseResourcePermissionsOptions.md +1 -1
package/docs/api/interfaces/UserEventAccess.md +11 -11
package/docs/api/interfaces/UserMenuProps.md +1 -1
package/docs/api/interfaces/UserProfile.md +1 -1
package/docs/api/modules.md +151 -92
package/docs/api-reference/components.md +15 -7
package/docs/api-reference/providers.md +2 -2
package/docs/api-reference/rpc-functions.md +1 -0
package/docs/best-practices/README.md +1 -1
package/docs/best-practices/deployment.md +8 -8
package/docs/getting-started/examples/README.md +2 -2
package/docs/getting-started/installation-guide.md +4 -4
package/docs/getting-started/quick-start.md +3 -3
package/docs/migration/MIGRATION_GUIDE.md +3 -3
package/docs/rbac/compliance/compliance-guide.md +2 -2
package/docs/rbac/event-based-apps.md +2 -2
package/docs/rbac/getting-started.md +2 -2
package/docs/rbac/quick-start.md +2 -2
package/docs/security/README.md +4 -4
package/docs/standards/07-rbac-and-rls-standard.md +430 -7
package/docs/troubleshooting/README.md +2 -2
package/docs/troubleshooting/migration.md +3 -3
package/package.json +1 -3
package/scripts/check-pace-core-compliance.cjs +1 -1
package/scripts/check-pace-core-compliance.js +1 -1
package/src/__tests__/fixtures/supabase.ts +301 -0
package/src/__tests__/public-recipe-view.test.ts +9 -9
package/src/__tests__/rls-policies.test.ts +197 -61
package/src/components/AddressField/AddressField.test.tsx +42 -0
package/src/components/AddressField/AddressField.tsx +71 -60
package/src/components/AddressField/README.md +1 -0
package/src/components/Alert/Alert.test.tsx +50 -10
package/src/components/Alert/Alert.tsx +5 -3
package/src/components/Avatar/Avatar.test.tsx +95 -43
package/src/components/Avatar/Avatar.tsx +16 -16
package/src/components/Button/Button.test.tsx +2 -1
package/src/components/Button/Button.tsx +3 -3
package/src/components/Calendar/Calendar.test.tsx +53 -37
package/src/components/Calendar/Calendar.tsx +409 -82
package/src/components/Card/Card.test.tsx +7 -4
package/src/components/Card/Card.tsx +3 -6
package/src/components/Checkbox/Checkbox.tsx +2 -2
package/src/components/DataTable/components/ActionButtons.tsx +5 -5
package/src/components/DataTable/components/BulkOperationsDropdown.tsx +2 -2
package/src/components/DataTable/components/ColumnFilter.tsx +1 -1
package/src/components/DataTable/components/ColumnVisibilityDropdown.tsx +3 -3
package/src/components/DataTable/components/DataTableBody.tsx +12 -12
package/src/components/DataTable/components/DataTableCore.tsx +3 -3
package/src/components/DataTable/components/DataTableToolbar.tsx +5 -5
package/src/components/DataTable/components/DraggableColumnHeader.tsx +3 -3
package/src/components/DataTable/components/EditableRow.tsx +2 -2
package/src/components/DataTable/components/EmptyState.tsx +3 -3
package/src/components/DataTable/components/GroupHeader.tsx +2 -2
package/src/components/DataTable/components/GroupingDropdown.tsx +1 -1
package/src/components/DataTable/components/ImportModal.tsx +4 -4
package/src/components/DataTable/components/LoadingState.tsx +1 -1
package/src/components/DataTable/components/PaginationControls.tsx +11 -11
package/src/components/DataTable/components/UnifiedTableBody.tsx +9 -9
package/src/components/DataTable/components/ViewRowModal.tsx +2 -2
package/src/components/DataTable/components/__tests__/AccessDeniedPage.test.tsx +11 -37
package/src/components/DataTable/components/__tests__/DataTableToolbar.test.tsx +157 -0
package/src/components/DataTable/components/__tests__/LoadingState.test.tsx +2 -1
package/src/components/DataTable/components/__tests__/VirtualizedDataTable.test.tsx +128 -0
package/src/components/DataTable/core/__tests__/ActionManager.test.ts +19 -0
package/src/components/DataTable/core/__tests__/ColumnFactory.test.ts +51 -0
package/src/components/DataTable/core/__tests__/ColumnManager.test.ts +84 -0
package/src/components/DataTable/core/__tests__/DataManager.test.ts +14 -0
package/src/components/DataTable/core/__tests__/DataTableContext.test.tsx +136 -0
package/src/components/DataTable/core/__tests__/LocalDataAdapter.test.ts +16 -0
package/src/components/DataTable/core/__tests__/PluginRegistry.test.ts +18 -0
package/src/components/DataTable/hooks/useDataTablePermissions.ts +28 -7
package/src/components/DataTable/utils/__tests__/hierarchicalUtils.test.ts +30 -1
package/src/components/DataTable/utils/hierarchicalUtils.ts +38 -10
package/src/components/DatePickerWithTimezone/DatePickerWithTimezone.test.tsx +8 -3
package/src/components/DatePickerWithTimezone/DatePickerWithTimezone.tsx +4 -4
package/src/components/Dialog/Dialog.tsx +2 -2
package/src/components/EventSelector/EventSelector.tsx +7 -7
package/src/components/FileDisplay/FileDisplay.tsx +291 -179
package/src/components/FileUpload/FileUpload.tsx +7 -4
package/src/components/Header/Header.test.tsx +28 -0
package/src/components/Header/Header.tsx +22 -9
package/src/components/InactivityWarningModal/InactivityWarningModal.tsx +2 -2
package/src/components/LoadingSpinner/LoadingSpinner.test.tsx +19 -14
package/src/components/LoadingSpinner/LoadingSpinner.tsx +5 -5
package/src/components/NavigationMenu/NavigationMenu.test.tsx +127 -1
package/src/components/OrganisationSelector/OrganisationSelector.tsx +8 -8
package/src/components/PaceAppLayout/PaceAppLayout.integration.test.tsx +4 -0
package/src/components/PaceAppLayout/PaceAppLayout.performance.test.tsx +3 -0
package/src/components/PaceAppLayout/PaceAppLayout.security.test.tsx +3 -0
package/src/components/PaceAppLayout/PaceAppLayout.test.tsx +16 -6
package/src/components/PaceAppLayout/PaceAppLayout.tsx +37 -3
package/src/components/PaceAppLayout/test-setup.tsx +1 -0
package/src/components/PaceLoginPage/PaceLoginPage.test.tsx +66 -45
package/src/components/PaceLoginPage/PaceLoginPage.tsx +6 -4
package/src/components/Progress/Progress.test.tsx +18 -19
package/src/components/Progress/Progress.tsx +31 -32
package/src/components/PublicLayout/PublicLayout.test.tsx +6 -6
package/src/components/PublicLayout/PublicPageProvider.tsx +5 -3
package/src/components/Select/Select.tsx +5 -5
package/src/components/Switch/Switch.test.tsx +2 -1
package/src/components/Switch/Switch.tsx +1 -1
package/src/components/Toast/Toast.tsx +1 -1
package/src/components/Tooltip/Tooltip.test.tsx +8 -2
package/src/components/UserMenu/UserMenu.tsx +3 -3
package/src/eslint-rules/pace-core-compliance.cjs +0 -2
package/src/eslint-rules/pace-core-compliance.js +0 -2
package/src/hooks/__tests__/hooks.integration.test.tsx +4 -1
package/src/hooks/__tests__/useAppConfig.unit.test.ts +76 -5
package/src/hooks/__tests__/useDataTableState.test.ts +76 -0
package/src/hooks/__tests__/useFileUrl.unit.test.ts +25 -69
package/src/hooks/__tests__/useFileUrlCache.test.ts +129 -0
package/src/hooks/__tests__/usePreventTabReload.test.ts +88 -0
package/src/hooks/__tests__/{usePublicEvent.unit.test.ts → usePublicEvent.test.ts} +28 -1
package/src/hooks/__tests__/useQueryCache.test.ts +144 -0
package/src/hooks/__tests__/useSecureDataAccess.unit.test.tsx +58 -16
package/src/hooks/index.ts +1 -1
package/src/hooks/public/usePublicEvent.ts +2 -2
package/src/hooks/public/usePublicFileDisplay.ts +173 -87
package/src/hooks/useAppConfig.ts +24 -5
package/src/hooks/useFileDisplay.ts +297 -34
package/src/hooks/useFileReference.ts +56 -11
package/src/hooks/useFileUrl.ts +1 -1
package/src/hooks/useInactivityTracker.ts +16 -7
package/src/hooks/usePermissionCache.test.ts +85 -8
package/src/hooks/useQueryCache.ts +21 -0
package/src/hooks/useSecureDataAccess.test.ts +80 -35
package/src/hooks/useSecureDataAccess.ts +80 -37
package/src/providers/services/EventServiceProvider.tsx +37 -17
package/src/providers/services/InactivityServiceProvider.tsx +4 -4
package/src/providers/services/OrganisationServiceProvider.tsx +8 -1
package/src/providers/services/UnifiedAuthProvider.tsx +115 -29
package/src/rbac/__tests__/auth-rbac.e2e.test.tsx +451 -0
package/src/rbac/__tests__/engine.comprehensive.test.ts +12 -0
package/src/rbac/__tests__/rbac-engine-core-logic.test.ts +8 -0
package/src/rbac/__tests__/rbac-engine-simplified.test.ts +4 -0
package/src/rbac/api.ts +240 -36
package/src/rbac/cache-invalidation.ts +21 -7
package/src/rbac/compliance/quick-fix-suggestions.ts +1 -1
package/src/rbac/components/NavigationGuard.tsx +23 -63
package/src/rbac/components/NavigationProvider.test.tsx +52 -23
package/src/rbac/components/NavigationProvider.tsx +13 -11
package/src/rbac/components/PagePermissionGuard.tsx +77 -203
package/src/rbac/components/PagePermissionProvider.tsx +13 -11
package/src/rbac/components/PermissionEnforcer.tsx +24 -62
package/src/rbac/components/RoleBasedRouter.tsx +14 -12
package/src/rbac/components/SecureDataProvider.tsx +13 -11
package/src/rbac/components/__tests__/NavigationGuard.test.tsx +104 -41
package/src/rbac/components/__tests__/NavigationProvider.test.tsx +49 -12
package/src/rbac/components/__tests__/PagePermissionGuard.race-condition.test.tsx +22 -1
package/src/rbac/components/__tests__/PagePermissionGuard.test.tsx +161 -82
package/src/rbac/components/__tests__/PagePermissionGuard.verification.test.tsx +22 -1
package/src/rbac/components/__tests__/PermissionEnforcer.test.tsx +77 -30
package/src/rbac/components/__tests__/RoleBasedRouter.test.tsx +39 -5
package/src/rbac/components/__tests__/SecureDataProvider.test.tsx +47 -4
package/src/rbac/engine.ts +4 -2
package/src/rbac/hooks/__tests__/useSecureSupabase.test.ts +144 -52
package/src/rbac/hooks/index.ts +3 -0
package/src/rbac/hooks/useCan.test.ts +101 -53
package/src/rbac/hooks/usePermissions.ts +108 -41
package/src/rbac/hooks/useRBAC.test.ts +11 -3
package/src/rbac/hooks/useRBAC.ts +83 -40
package/src/rbac/hooks/useResolvedScope.test.ts +189 -63
package/src/rbac/hooks/useResolvedScope.ts +128 -70
package/src/rbac/hooks/useSecureSupabase.ts +36 -19
package/src/rbac/hooks/useSuperAdminBypass.ts +126 -0
package/src/rbac/request-deduplication.ts +1 -1
package/src/rbac/secureClient.ts +72 -12
package/src/rbac/security.ts +29 -23
package/src/rbac/types.ts +10 -0
package/src/rbac/utils/__tests__/contextValidator.test.ts +150 -0
package/src/rbac/utils/__tests__/deep-equal.test.ts +53 -0
package/src/rbac/utils/__tests__/eventContext.test.ts +6 -1
package/src/rbac/utils/contextValidator.ts +288 -0
package/src/rbac/utils/eventContext.ts +48 -2
package/src/services/EventService.ts +165 -21
package/src/services/OrganisationService.ts +37 -2
package/src/services/__tests__/EventService.test.ts +26 -21
package/src/types/file-reference.ts +13 -10
package/src/utils/app/appNameResolver.test.ts +346 -73
package/src/utils/context/superAdminOverride.ts +58 -0
package/src/utils/file-reference/index.ts +61 -33
package/src/utils/google-places/googlePlacesUtils.test.ts +98 -0
package/src/utils/google-places/loadGoogleMapsScript.test.ts +83 -0
package/src/utils/storage/helpers.test.ts +1 -1
package/src/utils/storage/helpers.ts +38 -19
package/src/utils/storage/types.ts +15 -8
package/src/utils/validation/__tests__/csrf.test.ts +105 -0
package/src/utils/validation/__tests__/sqlInjectionProtection.test.ts +92 -0
package/src/vite-env.d.ts +2 -2
package/dist/chunk-3GOZZZYH.js.map +0 -1
package/dist/chunk-DDM4CCYT.js.map +0 -1
package/dist/chunk-E7UAOUMY.js +0 -75
package/dist/chunk-E7UAOUMY.js.map +0 -1
package/dist/chunk-F2IMUDXZ.js.map +0 -1
package/dist/chunk-HEHYGYOX.js.map +0 -1
package/dist/chunk-IM4QE42D.js.map +0 -1
package/dist/chunk-MX64ZF6I.js.map +0 -1
package/dist/chunk-SAUPYVLF.js.map +0 -1
package/dist/chunk-THRPYOFK.js.map +0 -1
package/dist/chunk-UCQSRW7Z.js.map +0 -1
package/dist/chunk-VGZZXKBR.js.map +0 -1
package/dist/chunk-YGPFYGA6.js.map +0 -1
package/dist/chunk-YHCN776L.js.map +0 -1
package/src/hooks/__tests__/usePermissionCache.simple.test.ts +0 -192
package/src/hooks/__tests__/usePermissionCache.unit.test.ts +0 -741
package/src/hooks/__tests__/usePublicEvent.simple.test.ts +0 -703
package/src/rbac/hooks/useRBAC.simple.test.ts +0 -95
package/src/rbac/utils/__tests__/eventContext.unit.test.ts +0 -428
/package/dist/{DataTable-GUFUNZ3N.js.map → DataTable-ON3IXISJ.js.map} +0 -0
/package/dist/{UnifiedAuthProvider-643PUAIM.js.map → UnifiedAuthProvider-X5NXANVI.js.map} +0 -0
/package/dist/{api-YP7XD5L6.js.map → api-I6UCQ5S6.js.map} +0 -0
/package/dist/{chunk-HESYZWZW.js.map → chunk-QWWZ5CAQ.js.map} +0 -0

package/src/rbac/hooks/usePermissions.ts CHANGED Viewed

@@ -12,7 +12,8 @@ import {
   UUID,
   Scope,
   Permission,
-  PermissionMap
+  PermissionMap,
+  OrganisationContextRequiredError
 } from '../types';
 import { AccessLevel as AccessLevelType } from '../types';
 import {
@@ -23,6 +24,7 @@ import {
 } from '../api';
 import { getRBACLogger } from '../config';
 import { scopeEqual } from '../utils/deep-equal';
+import { useAppConfig } from '../../hooks/useAppConfig';
 /**
  * Hook to get user's permissions in a scope
@@ -97,28 +99,30 @@ export function usePermissions(
     if (error?.message === 'Organisation context is required for permission checks') {
       setError(null);
     }
-  }, [userId, organisationId, error]);
-  // CRITICAL: Detect parameter changes imperatively and trigger fetch
-  // This bypasses React's useEffect dependency tracking which is failing to detect appId changes
-  const paramsChanged =
-    prevValuesRef.current.userId !== userId ||
-    prevValuesRef.current.organisationId !== organisationId ||
-    prevValuesRef.current.eventId !== eventId ||
-    prevValuesRef.current.appId !== appId;
-  if (paramsChanged) {
-    // Only log significant changes (appId changes are most important)
-    if (prevValuesRef.current.appId !== appId) {
-      logger.debug('[usePermissions] AppId changed - triggering fetch', {
-        prevAppId: prevValuesRef.current.appId,
-        newAppId: appId
-      });
+  }, [userId, organisationId, error, orgId]);
+  // CRITICAL: Detect parameter changes and trigger fetch
+  // Moved to useEffect to prevent render-time state updates that could cause render loops
+  useEffect(() => {
+    const paramsChanged =
+      prevValuesRef.current.userId !== userId ||
+      prevValuesRef.current.organisationId !== organisationId ||
+      prevValuesRef.current.eventId !== eventId ||
+      prevValuesRef.current.appId !== appId;
+    if (paramsChanged) {
+      // Only log significant changes (appId changes are most important)
+      if (prevValuesRef.current.appId !== appId) {
+        logger.debug('[usePermissions] AppId changed - triggering fetch', {
+          prevAppId: prevValuesRef.current.appId,
+          newAppId: appId
+        });
+      }
+      prevValuesRef.current = { userId, organisationId, eventId, appId };
+      // Increment counter to force fetch useEffect to run
+      setFetchTrigger(prev => prev + 1);
     }
-    prevValuesRef.current = { userId, organisationId, eventId, appId };
-    // Increment counter to force useEffect to run
-    setFetchTrigger(prev => prev + 1);
-  }
+  }, [userId, organisationId, eventId, appId, logger]);
   useEffect(() => {
     const fetchPermissions = async () => {
@@ -283,6 +287,7 @@ export function usePermissions(
  * @param permission - Permission to check
  * @param pageId - Optional page ID
  * @param useCache - Whether to use cached results
+ * @param appName - Optional app name (for PORTAL/ADMIN special case)
  * @returns Permission check state and methods
  *
  * @example
@@ -302,7 +307,8 @@ export function useCan(
   scope: Scope,
   permission: Permission,
   pageId?: UUID,
-  useCache: boolean = true
+  useCache: boolean = true,
+  appName?: string
 ) {
   const [can, setCan] = useState<boolean>(false);
   const [isLoading, setIsLoading] = useState(true);
@@ -315,8 +321,12 @@ export function useCan(
   const appId = isValidScope ? scope.appId : undefined;
   // Add timeout for missing organisation context (3 seconds)
+  // Only apply timeout for resource-level permissions, not page-level (which can handle null orgs)
   useEffect(() => {
-    if (!isValidScope || !organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === '')) {
+    const isPagePermission = permission.includes(':page.') || !!pageId;
+    const requiresOrgId = !isPagePermission;
+    if (requiresOrgId && (!isValidScope || !organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
       const timeoutId = setTimeout(() => {
         setError(new Error('Organisation context is required for permission checks'));
         setIsLoading(false);
@@ -329,7 +339,7 @@ export function useCan(
     if (error?.message === 'Organisation context is required for permission checks') {
       setError(null);
     }
-  }, [isValidScope, organisationId, error]);
+  }, [isValidScope, organisationId, error, permission, pageId]);
   // Use refs to track the last values to prevent unnecessary re-runs
   const lastUserIdRef = useRef<UUID | null>(null);
@@ -388,30 +398,50 @@ export function useCan(
           return;
         }
-        // Don't check permissions if scope is invalid (e.g., organisationId is null/empty)
-        // Wait for organisation context to resolve
-        if (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === '')) {
+        // For page-level permissions, allow undefined/null organisationId (database function handles it)
+        // For resource-level permissions, organisationId is required
+        const isPagePermission = permission.includes(':page.') || !!pageId;
+        const requiresOrgId = !isPagePermission;
+        // Check if pageId is a pageName (not a UUID) - if so, we need appId to resolve it
+        const isPageName = pageId && typeof pageId === 'string' && !/^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i.test(pageId);
+        const needsAppIdForPageName = isPagePermission && isPageName;
+        // Don't check permissions if scope is invalid and orgId is required
+        // Wait for organisation context to resolve (unless it's a page permission that can handle null orgs)
+        if (requiresOrgId && (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
           setIsLoading(true);
           setCan(false);
           setError(null);
           // Timeout is handled in separate useEffect (Phase 1.4)
           return;
         }
+        // For page-level permissions with pageName (not UUID), we need appId to resolve the pageName to pageId
+        // Wait for appId to be available before checking permissions
+        if (needsAppIdForPageName && (!appId || appId === null || (typeof appId === 'string' && appId.trim() === ''))) {
+          setIsLoading(true);
+          setCan(false);
+          setError(null);
+          // Will re-run when appId becomes available (via scope change detection)
+          return;
+        }
         try {
           setIsLoading(true);
           setError(null);
           // Create a valid scope object for the API call
+          // For page-level permissions, organisationId can be undefined (database handles it)
           const validScope: Scope = {
-            organisationId,
+            ...(organisationId ? { organisationId } : {}),
             ...(eventId ? { eventId } : {}),
             ...(appId ? { appId } : {})
           };
           const result = useCache
-            ? await isPermittedCached({ userId, scope: validScope, permission, pageId })
-            : await isPermitted({ userId, scope: validScope, permission, pageId });
+            ? await isPermittedCached({ userId, scope: validScope, permission, pageId }, undefined, appName)
+            : await isPermitted({ userId, scope: validScope, permission, pageId }, undefined, appName);
           setCan(result);
         } catch (err) {
@@ -426,7 +456,7 @@ export function useCan(
       checkPermission();
     }
-  }, [userId, stableScope, permission, pageId, useCache]);
+  }, [userId, stableScope, permission, pageId, useCache, appName]);
   const refetch = useCallback(async () => {
     if (!userId) {
@@ -443,8 +473,13 @@ export function useCan(
       return;
     }
-    // Don't check permissions if scope is invalid (e.g., organisationId is null/empty)
-    if (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === '')) {
+    // For page-level permissions, allow undefined/null organisationId (database function handles it)
+    // For resource-level permissions, organisationId is required
+    const isPagePermission = permission.includes(':page.') || !!pageId;
+    const requiresOrgId = !isPagePermission;
+    // Don't check permissions if scope is invalid and orgId is required
+    if (requiresOrgId && (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
       setCan(false);
       setIsLoading(true);
       setError(null);
@@ -456,15 +491,16 @@ export function useCan(
       setError(null);
       // Create a valid scope object for the API call
+      // For page-level permissions, organisationId can be undefined (database handles it)
       const validScope: Scope = {
-        organisationId,
+        ...(organisationId ? { organisationId } : {}),
         ...(eventId ? { eventId } : {}),
         ...(appId ? { appId } : {})
       };
       const result = useCache
-        ? await isPermittedCached({ userId, scope: validScope, permission, pageId })
-        : await isPermitted({ userId, scope: validScope, permission, pageId });
+        ? await isPermittedCached({ userId, scope: validScope, permission, pageId }, undefined, appName)
+        : await isPermitted({ userId, scope: validScope, permission, pageId }, undefined, appName);
       setCan(result);
     } catch (err) {
@@ -473,7 +509,7 @@ export function useCan(
     } finally {
       setIsLoading(false);
     }
-  }, [userId, isValidScope, organisationId, eventId, appId, permission, pageId, useCache]);
+  }, [userId, isValidScope, organisationId, eventId, appId, permission, pageId, useCache, appName]);
   // Memoize the return object to prevent unnecessary re-renders
   return useMemo(() => ({
@@ -518,6 +554,15 @@ export function useAccessLevel(userId: UUID, scope: Scope): {
   const [isLoading, setIsLoading] = useState(true);
   const [error, setError] = useState<Error | null>(null);
+  // Get appName from context if available (safely handles missing context)
+  let appName: string | undefined;
+  try {
+    const { appName: contextAppName } = useAppConfig();
+    appName = contextAppName;
+  } catch {
+    // Not available, will use undefined
+  }
   const fetchAccessLevel = useCallback(async () => {
     if (!userId) {
       setAccessLevel('viewer');
@@ -529,15 +574,37 @@ export function useAccessLevel(userId: UUID, scope: Scope): {
       setIsLoading(true);
       setError(null);
-      const level = await getAccessLevel({ userId, scope });
+      // Check super admin status first - super admins bypass context requirements
+      // This allows super admins to check their access level without organisation context
+      const { isSuperAdmin: checkSuperAdmin } = await import('../api');
+      const isSuperAdminUser = await checkSuperAdmin(userId);
+      if (isSuperAdminUser) {
+        setAccessLevel('super');
+        setIsLoading(false);
+        return;
+      }
+      // Early validation: check if scope has required context
+      // PORTAL/ADMIN apps allow both contexts to be optional
+      if (appName !== 'PORTAL' && appName !== 'ADMIN' && !scope.organisationId && !scope.eventId) {
+        const orgError = new OrganisationContextRequiredError();
+        setError(orgError);
+        setAccessLevel('viewer');
+        setIsLoading(false);
+        return;
+      }
+      const level = await getAccessLevel({ userId, scope }, null, appName);
       setAccessLevel(level);
     } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to fetch access level'));
+      const error = err instanceof Error ? err : new Error('Failed to fetch access level');
+      setError(error);
       setAccessLevel('viewer');
     } finally {
       setIsLoading(false);
     }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId]);
+  }, [userId, scope.organisationId, scope.eventId, scope.appId, appName]);
   useEffect(() => {
     fetchAccessLevel();

package/src/rbac/hooks/useRBAC.test.ts CHANGED Viewed

@@ -108,10 +108,18 @@ describe('useRBAC', () => {
     expect(mockResolveAppContext).toHaveBeenCalledWith({ userId: 'user-1', appName: 'test-app' });
     expect(mockGetPermissionMap).toHaveBeenCalledWith(
-      expect.objectContaining({
+      {
         userId: 'user-1',
-        scope: expect.objectContaining({ organisationId: 'org-1' }),
-      }),
+        scope: {
+          organisationId: 'org-1',
+          eventId: undefined,
+          appId: 'app-123'
+        }
+      },
+      {
+        requires_event: false,
+      },
+      'test-app'
     );
   });

package/src/rbac/hooks/useRBAC.ts CHANGED Viewed

@@ -21,6 +21,7 @@ import {
   getRoleContext,
 } from '../api';
 import { getRBACLogger } from '../config';
+import { ContextValidator } from '../utils/contextValidator';
 import type {
   UserRBACContext,
   GlobalRole,
@@ -55,8 +56,10 @@ export function useRBAC(pageId?: string): UserRBACContext {
   const {
     user,
     session,
+    supabase,
     appName,
     appConfig,
+    appId: contextAppId,
     selectedOrganisation,
     isContextReady: orgContextReady,
     organisationLoading: orgLoading,
@@ -64,11 +67,6 @@ export function useRBAC(pageId?: string): UserRBACContext {
     eventLoading
   } = useUnifiedAuth();
-  // Check if app requires event context
-  // IMPORTANT: If appConfig is null initially, default to true (safer for event-based apps)
-  // This prevents premature loading when appConfig hasn't loaded yet
-  const requiresEvent = appConfig?.requires_event ?? (appConfig === null ? true : false);
   // Removed excessive logging - hook initialization logged only on first mount or significant changes
   const [globalRole, setGlobalRole] = useState<GlobalRole | null>(null);
@@ -95,55 +93,79 @@ export function useRBAC(pageId?: string): UserRBACContext {
       return;
     }
-    // Wait for organisation context to be ready before loading RBAC
-    // This is critical - without organisation ID, RPC calls can't resolve permissions
-    if (orgLoading || !orgContextReady || !selectedOrganisation?.id) {
+    // Build initial scope from available context
+    // For event-required apps: use organisation_id from selectedEvent if available (faster than deriving)
+    // For org-required apps: use selectedOrganisation.id
+    const initialScope: Scope = {
+      organisationId: appConfig?.requires_event
+        ? (selectedEvent?.organisation_id || selectedOrganisation?.id)
+        : selectedOrganisation?.id,
+      eventId: selectedEvent?.event_id || undefined,
+      appId: undefined
+    };
+    // Check if context is ready using ContextValidator
+    const contextReady = ContextValidator.isContextReady(
+      initialScope,
+      appConfig,
+      appName,
+      !!selectedEvent,
+      !!selectedOrganisation
+    );
+    // PORTAL/ADMIN special case: context is always ready
+    if (appName !== 'PORTAL' && appName !== 'ADMIN' && !contextReady) {
+      // Wait for appropriate context based on app config
       setIsLoading(true);
       return;
     }
-    // For event-based apps, wait for event context to be ready before loading RBAC
-    // This prevents NetworkError when RPC calls are made before event context is available
-    if (requiresEvent) {
-      if (eventLoading || !selectedEvent) {
-        // Event context not ready yet - don't load RBAC yet
-        // This prevents premature RPC calls that can cause NetworkError
-        // Set loading state so React knows we're waiting
-        setIsLoading(true);
-        return;
-      }
-    }
     setIsLoading(true);
     setError(null);
     // Only log at debug level - loading RBAC context is normal operation
-    // Changed from warn to debug to reduce console noise
     logger.debug('[useRBAC] Loading RBAC context', {
       appName,
-      requiresEvent,
+      appConfig,
       hasSelectedEvent: !!selectedEvent,
       selectedEventId: selectedEvent?.event_id,
       organisationId: selectedOrganisation?.id
     });
     try {
-      let appId: UUID | undefined;
-      if (appName) {
+      let appId: UUID | undefined = contextAppId; // Use contextAppId as default (already resolved in UnifiedAuthProvider)
+      if (appName && !appId) {
         // Wrap RPC call in try-catch to handle NetworkError gracefully
         try {
           const resolved = await resolveAppContext({ userId: user.id as UUID, appName });
-          if (!resolved || !resolved.hasAccess) {
+          // For PORTAL/ADMIN apps, allow access even if hasAccess is false (users can view their own profile, super admins have global access)
+          if (!resolved) {
+            if (appName === 'PORTAL' || appName === 'ADMIN') {
+              // For PORTAL/ADMIN, try to get appId directly from database
+              logger.debug(`[useRBAC] ${appName} app context not resolved, attempting direct lookup`);
+              try {
+                const { getAppConfigByName } = await import('../api');
+                const config = await getAppConfigByName(appName);
+                // We can't get appId from config, but that's OK - use contextAppId or proceed without
+                logger.debug(`[useRBAC] ${appName} app - proceeding without appId for page-level permissions`);
+              } catch (err) {
+                logger.debug(`[useRBAC] ${appName} app - proceeding without appId for page-level permissions`);
+              }
+            } else {
+              throw new Error(`User does not have access to app "${appName}"`);
+            }
+          } else if (!resolved.hasAccess && appName !== 'PORTAL' && appName !== 'ADMIN') {
             throw new Error(`User does not have access to app "${appName}"`);
+          } else {
+            appId = resolved.appId;
           }
-          appId = resolved.appId;
         } catch (rpcError: any) {
           // Handle NetworkError - might be due to timing issue
           if (rpcError?.message?.includes('NetworkError') || rpcError?.message?.includes('fetch')) {
             logger.warn('[useRBAC] NetworkError resolving app context - may be timing issue, will retry when context is ready', {
               appName,
               error: rpcError.message,
-              requiresEvent,
               eventLoading,
               hasSelectedEvent: !!selectedEvent
             });
@@ -151,23 +173,44 @@ export function useRBAC(pageId?: string): UserRBACContext {
             setIsLoading(false);
             return;
           }
-          // Re-throw other errors
-          throw rpcError;
+          // For PORTAL/ADMIN, allow proceeding without app access check (for profile pages, super admin access)
+          if (appName === 'PORTAL' || appName === 'ADMIN') {
+            logger.debug(`[useRBAC] ${appName} app - allowing access despite app context resolution failure`);
+            // appId will use contextAppId or be undefined, which is OK for PORTAL/ADMIN page-level permissions
+          } else {
+            // Re-throw other errors for non-PORTAL apps
+            throw rpcError;
+          }
         }
       }
+      // Update scope with appId (use contextAppId as fallback for PORTAL)
       const scope: Scope = {
-        organisationId: selectedOrganisation?.id,
-        eventId: selectedEvent?.event_id || undefined,
-        appId,
+        ...initialScope,
+        appId: appId || contextAppId,
       };
-      setCurrentScope(scope);
+      // Resolve required context using ContextValidator
+      // Pass supabase client to allow deriving organisation from event for event-required apps
+      const validation = await ContextValidator.resolveRequiredContext(
+        scope,
+        appConfig,
+        appName,
+        supabase || null
+      );
+      if (!validation.isValid || !validation.resolvedScope) {
+        throw validation.error || new Error('Context validation failed');
+      }
+      const resolvedScope = validation.resolvedScope;
+      setCurrentScope(resolvedScope);
+      // Pass appConfig and appName to API calls for context validation
       const [map, roleContext, accessLevel] = await Promise.all([
-        getPermissionMap({ userId: user.id as UUID, scope }),
-        getRoleContext({ userId: user.id as UUID, scope }),
-        getAccessLevel({ userId: user.id as UUID, scope }),
+        getPermissionMap({ userId: user.id as UUID, scope: resolvedScope }, appConfig, appName),
+        getRoleContext({ userId: user.id as UUID, scope: resolvedScope }, appConfig, appName),
+        getAccessLevel({ userId: user.id as UUID, scope: resolvedScope }, appConfig, appName),
       ]);
       setPermissionMap(map);
@@ -180,8 +223,8 @@ export function useRBAC(pageId?: string): UserRBACContext {
       if (permissionCount === 0) {
         logger.warn('[useRBAC] RBAC context loaded but returned 0 permissions', {
           appName,
-          organisationId: selectedOrganisation.id,
-          eventId: selectedEvent?.event_id
+          organisationId: resolvedScope.organisationId,
+          eventId: resolvedScope.eventId
         });
       }
     } catch (err) {
@@ -192,7 +235,7 @@ export function useRBAC(pageId?: string): UserRBACContext {
     } finally {
       setIsLoading(false);
     }
-  }, [appName, logger, resetState, selectedEvent?.event_id, selectedOrganisation?.id, session, user, requiresEvent, eventLoading, appConfig, orgContextReady, orgLoading]);
+  }, [appName, logger, resetState, selectedEvent?.event_id, selectedOrganisation?.id, session, user, eventLoading, appConfig, orgContextReady, orgLoading]);
   const hasGlobalPermission = useCallback(
     (permission: string): boolean => {
@@ -221,7 +264,7 @@ export function useRBAC(pageId?: string): UserRBACContext {
   useEffect(() => {
     loadRBACContext();
-  }, [loadRBACContext, appName, requiresEvent, eventLoading, selectedEvent?.event_id, user, session, selectedOrganisation?.id, orgContextReady, orgLoading]);
+  }, [loadRBACContext, appName, appConfig, eventLoading, selectedEvent?.event_id, user, session, selectedOrganisation?.id, orgContextReady, orgLoading]);
   return {
     user,