npm - @jmruthers/pace-core - Versions diffs - 0.5.193 → 0.6.2 - Mend

@jmruthers/pace-core 0.5.193 → 0.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (577) hide show

package/CHANGELOG.md +62 -0
package/README.md +7 -1
package/cursor-rules/00-pace-core-compliance.mdc +299 -0
package/cursor-rules/01-standards-compliance.mdc +244 -0
package/cursor-rules/02-project-structure.mdc +200 -0
package/cursor-rules/03-solid-principles.mdc +222 -0
package/cursor-rules/04-testing-standards.mdc +268 -0
package/cursor-rules/05-bug-reports-and-features.mdc +246 -0
package/cursor-rules/06-code-quality.mdc +309 -0
package/cursor-rules/07-tech-stack-compliance.mdc +214 -0
package/cursor-rules/08-markup-quality.mdc +452 -0
package/cursor-rules/CHANGELOG.md +119 -0
package/cursor-rules/README.md +192 -0
package/dist/{AuthService-DjnJHDtC.d.ts → AuthService-BPvc3Ka0.d.ts} +54 -0
package/dist/{DataTable-Be6dH_dR.d.ts → DataTable-BMRU8a1j.d.ts} +34 -2
package/dist/{DataTable-5FU7IESH.js → DataTable-TPTKCX4D.js} +10 -9
package/dist/{PublicPageProvider-C0Sm_e5k.d.ts → PublicPageProvider-DC6kCaqf.d.ts} +385 -261
package/dist/{UnifiedAuthProvider-RGJTDE2C.js → UnifiedAuthProvider-CH6Z342H.js} +3 -3
package/dist/{UnifiedAuthProvider-185Ih4dj.d.ts → UnifiedAuthProvider-CVcTjx-d.d.ts} +29 -0
package/dist/{api-N774RPUA.js → api-MVVQZLJI.js} +2 -2
package/dist/{chunk-KNC55RTG.js → chunk-24UVZUZG.js} +90 -54
package/dist/chunk-24UVZUZG.js.map +1 -0
package/dist/{chunk-HWIIPPNI.js → chunk-2UOI2FG5.js} +20 -20
package/dist/chunk-2UOI2FG5.js.map +1 -0
package/dist/{chunk-E3SPN4VZ 5.js → chunk-3XC4CPTD.js} +4345 -3986
package/dist/chunk-3XC4CPTD.js.map +1 -0
package/dist/{chunk-7EQTDTTJ.js → chunk-6J4GEEJR.js} +172 -45
package/dist/chunk-6J4GEEJR.js.map +1 -0
package/dist/{chunk-6C4YBBJM 5.js → chunk-6SOIHG6Z.js} +1 -1
package/dist/chunk-6SOIHG6Z.js.map +1 -0
package/dist/{chunk-7FLMSG37.js → chunk-EHMR7VYL.js} +25 -25
package/dist/chunk-EHMR7VYL.js.map +1 -0
package/dist/{chunk-I7PSE6JW.js → chunk-F2IMUDXZ.js} +2 -75
package/dist/chunk-F2IMUDXZ.js.map +1 -0
package/dist/{chunk-QWWZ5CAQ.js → chunk-FFQEQTNW.js} +7 -9
package/dist/chunk-FFQEQTNW.js.map +1 -0
package/dist/chunk-FMUCXFII.js +76 -0
package/dist/chunk-FMUCXFII.js.map +1 -0
package/dist/{chunk-HW3OVDUF.js → chunk-J36DSWQK.js} +1 -1
package/dist/{chunk-HW3OVDUF.js.map → chunk-J36DSWQK.js.map} +1 -1
package/dist/{chunk-SQGMNID3.js → chunk-L4OXEN46.js} +4 -5
package/dist/chunk-L4OXEN46.js.map +1 -0
package/dist/{chunk-R77UEZ4E 3.js → chunk-M43Y4SSO.js} +1 -1
package/dist/chunk-M43Y4SSO.js.map +1 -0
package/dist/{chunk-IIELH4DL.js → chunk-MMZ7JXPU.js} +60 -223
package/dist/chunk-MMZ7JXPU.js.map +1 -0
package/dist/{chunk-NOAYCWCX 5.js → chunk-NECFR5MM.js} +394 -312
package/dist/chunk-NECFR5MM.js.map +1 -0
package/dist/{chunk-BC4IJKSL.js → chunk-SFZUDBL5.js} +40 -4
package/dist/chunk-SFZUDBL5.js.map +1 -0
package/dist/{chunk-XNXXZ43G.js → chunk-XWQCNGTQ.js} +748 -364
package/dist/chunk-XWQCNGTQ.js.map +1 -0
package/dist/components.d.ts +6 -6
package/dist/components.js +15 -12
package/dist/components.js.map +1 -1
package/dist/{functions-D_kgHktt.d.ts → functions-DHebl8-F.d.ts} +1 -1
package/dist/hooks.d.ts +59 -126
package/dist/hooks.js +19 -28
package/dist/hooks.js.map +1 -1
package/dist/index.d.ts +63 -16
package/dist/index.js +23 -24
package/dist/index.js.map +1 -1
package/dist/providers.d.ts +21 -3
package/dist/providers.js +2 -2
package/dist/rbac/index.d.ts +146 -115
package/dist/rbac/index.js +8 -11
package/dist/theming/runtime.d.ts +1 -13
package/dist/theming/runtime.js +1 -1
package/dist/{timezone-_pgH8qrY.d.ts → timezone-CHhWg6b4.d.ts} +3 -10
package/dist/{types-UU913iLA.d.ts → types-BeoeWV5I.d.ts} +8 -0
package/dist/{types-CEpcvwwF.d.ts → types-CkbwOr4Y.d.ts} +6 -0
package/dist/types.d.ts +2 -2
package/dist/{usePublicRouteParams-TZe0gy-4.d.ts → usePublicRouteParams-1oMokgLF.d.ts} +34 -4
package/dist/{useToast-C8gR5ir4.d.ts → useToast-AyaT-x7p.d.ts} +2 -2
package/dist/utils.d.ts +4 -5
package/dist/utils.js +15 -15
package/dist/utils.js.map +1 -1
package/docs/api/README.md +7 -1
package/docs/api/classes/ColumnFactory.md +8 -8
package/docs/api/classes/InvalidScopeError.md +4 -4
package/docs/api/classes/Logger.md +1 -1
package/docs/api/classes/MissingUserContextError.md +4 -4
package/docs/api/classes/OrganisationContextRequiredError.md +4 -4
package/docs/api/classes/PermissionDeniedError.md +4 -4
package/docs/api/classes/RBACAuditManager.md +1 -1
package/docs/api/classes/RBACCache.md +1 -1
package/docs/api/classes/RBACEngine.md +1 -1
package/docs/api/classes/RBACError.md +4 -4
package/docs/api/classes/RBACNotInitializedError.md +4 -4
package/docs/api/classes/SecureSupabaseClient.md +18 -15
package/docs/api/classes/StorageUtils.md +1 -1
package/docs/api/enums/FileCategory.md +1 -1
package/docs/api/enums/LogLevel.md +1 -1
package/docs/api/enums/RBACErrorCode.md +1 -1
package/docs/api/enums/RPCFunction.md +1 -1
package/docs/api/interfaces/AddressFieldProps.md +1 -1
package/docs/api/interfaces/AddressFieldRef.md +1 -1
package/docs/api/interfaces/AggregateConfig.md +4 -4
package/docs/api/interfaces/AutocompleteOptions.md +1 -1
package/docs/api/interfaces/AvatarProps.md +1 -1
package/docs/api/interfaces/BadgeProps.md +9 -2
package/docs/api/interfaces/ButtonProps.md +7 -4
package/docs/api/interfaces/CalendarProps.md +8 -5
package/docs/api/interfaces/CardProps.md +8 -5
package/docs/api/interfaces/ColorPalette.md +1 -1
package/docs/api/interfaces/ColorShade.md +1 -1
package/docs/api/interfaces/ComplianceResult.md +1 -1
package/docs/api/interfaces/DataAccessRecord.md +9 -9
package/docs/api/interfaces/DataRecord.md +1 -1
package/docs/api/interfaces/DataTableAction.md +24 -21
package/docs/api/interfaces/DataTableColumn.md +31 -31
package/docs/api/interfaces/DataTableProps.md +1 -1
package/docs/api/interfaces/DataTableToolbarButton.md +7 -7
package/docs/api/interfaces/DatabaseComplianceResult.md +1 -1
package/docs/api/interfaces/DatabaseIssue.md +1 -1
package/docs/api/interfaces/EmptyStateConfig.md +5 -5
package/docs/api/interfaces/EnhancedNavigationMenuProps.md +1 -1
package/docs/api/interfaces/ErrorBoundaryProps.md +147 -0
package/docs/api/interfaces/ErrorBoundaryProviderProps.md +36 -0
package/docs/api/interfaces/ErrorBoundaryState.md +75 -0
package/docs/api/interfaces/EventAppRoleData.md +1 -1
package/docs/api/interfaces/ExportColumn.md +1 -1
package/docs/api/interfaces/ExportOptions.md +8 -8
package/docs/api/interfaces/FileDisplayProps.md +1 -1
package/docs/api/interfaces/FileMetadata.md +1 -1
package/docs/api/interfaces/FileReference.md +1 -1
package/docs/api/interfaces/FileSizeLimits.md +1 -1
package/docs/api/interfaces/FileUploadOptions.md +1 -1
package/docs/api/interfaces/FileUploadProps.md +26 -23
package/docs/api/interfaces/FooterProps.md +10 -8
package/docs/api/interfaces/FormFieldProps.md +10 -10
package/docs/api/interfaces/FormProps.md +1 -1
package/docs/api/interfaces/GrantEventAppRoleParams.md +1 -1
package/docs/api/interfaces/InactivityWarningModalProps.md +1 -1
package/docs/api/interfaces/InputProps.md +7 -4
package/docs/api/interfaces/LabelProps.md +1 -1
package/docs/api/interfaces/LoggerConfig.md +1 -1
package/docs/api/interfaces/LoginFormProps.md +14 -11
package/docs/api/interfaces/NavigationAccessRecord.md +1 -1
package/docs/api/interfaces/NavigationContextType.md +1 -1
package/docs/api/interfaces/NavigationGuardProps.md +1 -1
package/docs/api/interfaces/NavigationItem.md +11 -11
package/docs/api/interfaces/NavigationMenuProps.md +15 -15
package/docs/api/interfaces/NavigationProviderProps.md +1 -1
package/docs/api/interfaces/Organisation.md +1 -1
package/docs/api/interfaces/OrganisationContextType.md +1 -1
package/docs/api/interfaces/OrganisationMembership.md +1 -1
package/docs/api/interfaces/OrganisationProviderProps.md +1 -1
package/docs/api/interfaces/OrganisationSecurityError.md +1 -1
package/docs/api/interfaces/PaceAppLayoutProps.md +30 -27
package/docs/api/interfaces/PaceLoginPageProps.md +6 -4
package/docs/api/interfaces/PageAccessRecord.md +1 -1
package/docs/api/interfaces/PagePermissionContextType.md +1 -1
package/docs/api/interfaces/PagePermissionGuardProps.md +1 -1
package/docs/api/interfaces/PagePermissionProviderProps.md +1 -1
package/docs/api/interfaces/PaletteData.md +1 -1
package/docs/api/interfaces/ParsedAddress.md +1 -1
package/docs/api/interfaces/PermissionEnforcerProps.md +1 -1
package/docs/api/interfaces/ProgressProps.md +1 -1
package/docs/api/interfaces/ProtectedRouteProps.md +7 -26
package/docs/api/interfaces/PublicPageFooterProps.md +9 -9
package/docs/api/interfaces/PublicPageHeaderProps.md +10 -10
package/docs/api/interfaces/PublicPageLayoutProps.md +7 -20
package/docs/api/interfaces/QuickFix.md +1 -1
package/docs/api/interfaces/RBACAccessValidateParams.md +1 -1
package/docs/api/interfaces/RBACAccessValidateResult.md +1 -1
package/docs/api/interfaces/RBACAuditLogParams.md +1 -1
package/docs/api/interfaces/RBACAuditLogResult.md +1 -1
package/docs/api/interfaces/RBACConfig.md +1 -1
package/docs/api/interfaces/RBACContext.md +1 -1
package/docs/api/interfaces/RBACLogger.md +1 -1
package/docs/api/interfaces/RBACPageAccessCheckParams.md +1 -1
package/docs/api/interfaces/RBACPerformanceMetrics.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckParams.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckResult.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetParams.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetResult.md +1 -1
package/docs/api/interfaces/RBACResult.md +1 -1
package/docs/api/interfaces/RBACRoleGrantParams.md +1 -1
package/docs/api/interfaces/RBACRoleGrantResult.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeParams.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeResult.md +1 -1
package/docs/api/interfaces/RBACRoleValidateParams.md +1 -1
package/docs/api/interfaces/RBACRoleValidateResult.md +1 -1
package/docs/api/interfaces/RBACRolesListParams.md +1 -1
package/docs/api/interfaces/RBACRolesListResult.md +1 -1
package/docs/api/interfaces/RBACSessionTrackParams.md +1 -1
package/docs/api/interfaces/RBACSessionTrackResult.md +1 -1
package/docs/api/interfaces/ResourcePermissions.md +1 -1
package/docs/api/interfaces/RevokeEventAppRoleParams.md +1 -1
package/docs/api/interfaces/RoleBasedRouterContextType.md +1 -1
package/docs/api/interfaces/RoleBasedRouterProps.md +1 -1
package/docs/api/interfaces/RoleManagementResult.md +1 -1
package/docs/api/interfaces/RouteAccessRecord.md +1 -1
package/docs/api/interfaces/RouteConfig.md +1 -1
package/docs/api/interfaces/RuntimeComplianceResult.md +1 -1
package/docs/api/interfaces/SecureDataContextType.md +9 -9
package/docs/api/interfaces/SecureDataProviderProps.md +8 -8
package/docs/api/interfaces/SessionRestorationLoaderProps.md +3 -3
package/docs/api/interfaces/SetupIssue.md +1 -1
package/docs/api/interfaces/StorageConfig.md +1 -1
package/docs/api/interfaces/StorageFileInfo.md +1 -1
package/docs/api/interfaces/StorageFileMetadata.md +1 -1
package/docs/api/interfaces/StorageListOptions.md +1 -1
package/docs/api/interfaces/StorageListResult.md +1 -1
package/docs/api/interfaces/StorageUploadOptions.md +1 -1
package/docs/api/interfaces/StorageUploadResult.md +1 -1
package/docs/api/interfaces/StorageUrlOptions.md +1 -1
package/docs/api/interfaces/StyleImport.md +1 -1
package/docs/api/interfaces/SwitchProps.md +1 -1
package/docs/api/interfaces/TabsContentProps.md +1 -1
package/docs/api/interfaces/TabsListProps.md +1 -1
package/docs/api/interfaces/TabsProps.md +1 -1
package/docs/api/interfaces/TabsTriggerProps.md +3 -3
package/docs/api/interfaces/TextareaProps.md +1 -1
package/docs/api/interfaces/ToastActionElement.md +4 -1
package/docs/api/interfaces/ToastProps.md +1 -1
package/docs/api/interfaces/UnifiedAuthContextType.md +58 -55
package/docs/api/interfaces/UnifiedAuthProviderProps.md +15 -13
package/docs/api/interfaces/UseFormDialogOptions.md +1 -1
package/docs/api/interfaces/UseFormDialogReturn.md +1 -1
package/docs/api/interfaces/UseInactivityTrackerOptions.md +11 -9
package/docs/api/interfaces/UseInactivityTrackerReturn.md +8 -8
package/docs/api/interfaces/UsePublicEventLogoOptions.md +6 -6
package/docs/api/interfaces/UsePublicEventLogoReturn.md +9 -6
package/docs/api/interfaces/UsePublicEventOptions.md +3 -3
package/docs/api/interfaces/UsePublicEventReturn.md +8 -5
package/docs/api/interfaces/UsePublicFileDisplayOptions.md +4 -4
package/docs/api/interfaces/UsePublicFileDisplayReturn.md +12 -9
package/docs/api/interfaces/UsePublicRouteParamsReturn.md +10 -7
package/docs/api/interfaces/UseResolvedScopeOptions.md +1 -1
package/docs/api/interfaces/UseResolvedScopeReturn.md +1 -1
package/docs/api/interfaces/UseResourcePermissionsOptions.md +1 -1
package/docs/api/interfaces/UserEventAccess.md +14 -11
package/docs/api/interfaces/UserMenuProps.md +8 -6
package/docs/api/interfaces/UserProfile.md +1 -1
package/docs/api/modules.md +575 -634
package/docs/architecture/database-schema-requirements.md +161 -0
package/docs/core-concepts/rbac-system.md +3 -3
package/docs/documentation-index.md +2 -4
package/docs/getting-started/cursor-rules.md +263 -0
package/docs/getting-started/installation-guide.md +6 -1
package/docs/getting-started/quick-start.md +6 -1
package/docs/migration/DOCUMENTATION_STRUCTURE.md +441 -0
package/docs/migration/MIGRATION_GUIDE.md +6 -28
package/docs/migration/README.md +52 -6
package/docs/migration/V0.5.190_TO_V0.6.1_MIGRATION.md +1153 -0
package/docs/migration/V0.6.0_REACT_19_MIGRATION.md +227 -0
package/docs/migration/database-changes-december-2025.md +3 -3
package/docs/rbac/event-based-apps.md +1 -1
package/docs/rbac/getting-started.md +1 -1
package/docs/rbac/quick-start.md +1 -1
package/docs/standards/README.md +40 -0
package/docs/troubleshooting/migration.md +4 -4
package/examples/PublicPages/PublicEventPage.tsx +1 -1
package/package.json +12 -6
package/scripts/audit/core/checks/accessibility.cjs +197 -0
package/scripts/audit/core/checks/api-usage.cjs +191 -0
package/scripts/audit/core/checks/bundle.cjs +142 -0
package/scripts/{check-pace-core-compliance.cjs → audit/core/checks/compliance.cjs} +737 -691
package/scripts/audit/core/checks/config.cjs +54 -0
package/scripts/audit/core/checks/coverage.cjs +84 -0
package/scripts/audit/core/checks/dependencies.cjs +454 -0
package/scripts/audit/core/checks/documentation.cjs +203 -0
package/scripts/audit/core/checks/environment.cjs +128 -0
package/scripts/audit/core/checks/error-handling.cjs +299 -0
package/scripts/audit/core/checks/forms.cjs +172 -0
package/scripts/audit/core/checks/heuristics.cjs +68 -0
package/scripts/audit/core/checks/hooks.cjs +334 -0
package/scripts/audit/core/checks/imports.cjs +244 -0
package/scripts/audit/core/checks/performance.cjs +325 -0
package/scripts/audit/core/checks/routes.cjs +117 -0
package/scripts/audit/core/checks/state.cjs +130 -0
package/scripts/audit/core/checks/structure.cjs +65 -0
package/scripts/audit/core/checks/style.cjs +584 -0
package/scripts/audit/core/checks/testing.cjs +122 -0
package/scripts/audit/core/checks/typescript.cjs +61 -0
package/scripts/audit/core/scanner.cjs +199 -0
package/scripts/audit/core/utils.cjs +137 -0
package/scripts/audit/index.cjs +223 -0
package/scripts/audit/reporters/console.cjs +151 -0
package/scripts/audit/reporters/json.cjs +54 -0
package/scripts/audit/reporters/markdown.cjs +124 -0
package/scripts/audit-consuming-app.cjs +86 -0
package/scripts/build-docs/build-decision.js +240 -0
package/scripts/build-docs/cache-utils.js +105 -0
package/scripts/build-docs/content-normalization.js +150 -0
package/scripts/build-docs/file-utils.js +105 -0
package/scripts/build-docs/git-utils.js +86 -0
package/scripts/build-docs/hash-utils.js +116 -0
package/scripts/build-docs/typedoc-runner.js +220 -0
package/scripts/build-docs-incremental.js +77 -913
package/scripts/install-cursor-rules.cjs +236 -0
package/scripts/utils/command-runner.js +16 -11
package/scripts/validate-formats.js +61 -56
package/scripts/validate-master.js +74 -69
package/scripts/validate-pre-publish.js +70 -65
package/src/__tests__/helpers/test-providers.tsx +1 -1
package/src/__tests__/helpers/test-utils.tsx +1 -1
package/src/__tests__/hooks/usePermissions.test.ts +2 -2
package/src/components/Alert/Alert.test.tsx +12 -18
package/src/components/Alert/Alert.tsx +5 -7
package/src/components/Avatar/Avatar.test.tsx +4 -4
package/src/components/Badge/Badge.tsx +16 -4
package/src/components/Button/Button.tsx +27 -4
package/src/components/Calendar/Calendar.tsx +9 -3
package/src/components/Card/Card.tsx +4 -0
package/src/components/Checkbox/Checkbox.test.tsx +12 -12
package/src/components/Checkbox/Checkbox.tsx +2 -2
package/src/components/DataTable/DataTable.test.tsx +57 -93
package/src/components/DataTable/DataTable.tsx +40 -6
package/src/components/DataTable/__tests__/DataTableCore.test-setup.ts +5 -6
package/src/components/DataTable/__tests__/pagination.modes.test.tsx +29 -7
package/src/components/DataTable/__tests__/ssr.strict-mode.test.tsx +12 -12
package/src/components/DataTable/__tests__/test-utils/sharedTestUtils.tsx +2 -3
package/src/components/DataTable/components/AccessDeniedPage.tsx +17 -26
package/src/components/DataTable/components/ActionButtons.tsx +10 -7
package/src/components/DataTable/components/BulkOperationsDropdown.tsx +2 -2
package/src/components/DataTable/components/ColumnFilter.tsx +10 -0
package/src/components/DataTable/components/ColumnVisibilityDropdown.tsx +12 -0
package/src/components/DataTable/components/DataTableBody.tsx +8 -0
package/src/components/DataTable/components/DataTableCore.tsx +200 -561
package/src/components/DataTable/components/DataTableErrorBoundary.tsx +11 -0
package/src/components/DataTable/components/DataTableLayout.tsx +559 -0
package/src/components/DataTable/components/DataTableModals.tsx +9 -1
package/src/components/DataTable/components/DataTableToolbar.tsx +8 -0
package/src/components/DataTable/components/DraggableColumnHeader.tsx +12 -0
package/src/components/DataTable/components/EditFields.tsx +307 -0
package/src/components/DataTable/components/EditableRow.tsx +9 -1
package/src/components/DataTable/components/EmptyState.tsx +10 -0
package/src/components/DataTable/components/FilterRow.tsx +12 -0
package/src/components/DataTable/components/GroupHeader.tsx +12 -0
package/src/components/DataTable/components/GroupingDropdown.tsx +12 -0
package/src/components/DataTable/components/ImportModal.tsx +7 -0
package/src/components/DataTable/components/LoadingState.tsx +6 -0
package/src/components/DataTable/components/PaginationControls.tsx +16 -1
package/src/components/DataTable/components/RowComponent.tsx +391 -0
package/src/components/DataTable/components/UnifiedTableBody.tsx +62 -852
package/src/components/DataTable/components/VirtualizedDataTable.tsx +16 -4
package/src/components/DataTable/components/__tests__/AccessDeniedPage.test.tsx +4 -2
package/src/components/DataTable/components/__tests__/DataTableModals.test.tsx +23 -23
package/src/components/DataTable/components/__tests__/EditableRow.test.tsx +11 -11
package/src/components/DataTable/components/__tests__/ExpandButton.test.tsx +36 -36
package/src/components/DataTable/components/__tests__/GroupHeader.test.tsx +27 -27
package/src/components/DataTable/components/__tests__/ImportModal.test.tsx +39 -39
package/src/components/DataTable/components/__tests__/UnifiedTableBody.test.tsx +33 -33
package/src/components/DataTable/components/__tests__/ViewRowModal.test.tsx +29 -29
package/src/components/DataTable/components/cellValueUtils.ts +40 -0
package/src/components/DataTable/components/hooks/useImportModalFocus.ts +53 -0
package/src/components/DataTable/components/hooks/usePermissionTracking.ts +126 -0
package/src/components/DataTable/context/DataTableContext.tsx +50 -0
package/src/components/DataTable/core/ColumnFactory.ts +31 -0
package/src/components/DataTable/core/DataTableContext.tsx +32 -1
package/src/components/DataTable/hooks/useColumnOrderPersistence.ts +10 -0
package/src/components/DataTable/hooks/useColumnReordering.ts +14 -2
package/src/components/DataTable/hooks/useColumnVisibilityPersistence.ts +10 -0
package/src/components/DataTable/hooks/useDataTableDataPipeline.ts +16 -0
package/src/components/DataTable/hooks/useDataTablePermissions.ts +124 -32
package/src/components/DataTable/hooks/useDataTableState.ts +35 -1
package/src/components/DataTable/hooks/useEffectiveColumnOrder.ts +12 -0
package/src/components/DataTable/hooks/useKeyboardNavigation.ts +2 -2
package/src/components/DataTable/hooks/useServerSideDataEffect.ts +11 -0
package/src/components/DataTable/hooks/useTableColumns.ts +8 -0
package/src/components/DataTable/hooks/useTableHandlers.ts +14 -0
package/src/components/DataTable/styles.ts +6 -6
package/src/components/DataTable/types.ts +6 -10
package/src/components/DataTable/utils/a11yUtils.ts +7 -0
package/src/components/DataTable/utils/debugTools.ts +18 -113
package/src/components/DataTable/utils/errorHandling.ts +12 -0
package/src/components/DataTable/utils/exportUtils.ts +9 -0
package/src/components/DataTable/utils/flexibleImport.ts +12 -48
package/src/components/DataTable/utils/paginationUtils.ts +8 -0
package/src/components/DataTable/utils/performanceUtils.ts +5 -1
package/src/components/DatePickerWithTimezone/DatePickerWithTimezone.test.tsx +8 -14
package/src/components/Dialog/Dialog.tsx +8 -7
package/src/components/ErrorBoundary/ErrorBoundary.test.tsx +180 -1
package/src/components/ErrorBoundary/ErrorBoundary.tsx +46 -6
package/src/components/ErrorBoundary/ErrorBoundaryContext.tsx +129 -0
package/src/components/ErrorBoundary/index.ts +27 -2
package/src/components/EventSelector/EventSelector.tsx +4 -1
package/src/components/FileDisplay/FileDisplay.test.tsx +2 -2
package/src/components/FileDisplay/FileDisplay.tsx +32 -18
package/src/components/FileUpload/FileUpload.tsx +22 -2
package/src/components/Footer/Footer.test.tsx +16 -16
package/src/components/Footer/Footer.tsx +15 -12
package/src/components/Form/Form.test.tsx +36 -15
package/src/components/Form/Form.tsx +31 -26
package/src/components/Header/Header.tsx +22 -11
package/src/components/InactivityWarningModal/InactivityWarningModal.test.tsx +40 -40
package/src/components/InactivityWarningModal/InactivityWarningModal.tsx +1 -1
package/src/components/Input/Input.test.tsx +2 -2
package/src/components/Input/Input.tsx +36 -34
package/src/components/Label/Label.tsx +1 -1
package/src/components/LoadingSpinner/LoadingSpinner.test.tsx +4 -4
package/src/components/LoadingSpinner/LoadingSpinner.tsx +1 -1
package/src/components/LoginForm/LoginForm.test.tsx +42 -42
package/src/components/LoginForm/LoginForm.tsx +12 -8
package/src/components/NavigationMenu/NavigationMenu.tsx +15 -514
package/src/components/NavigationMenu/types.ts +56 -0
package/src/components/NavigationMenu/useNavigationFiltering.ts +390 -0
package/src/components/OrganisationSelector/OrganisationSelector.tsx +3 -0
package/src/components/PaceAppLayout/PaceAppLayout.performance.test.tsx +1 -1
package/src/components/PaceAppLayout/PaceAppLayout.test.tsx +54 -52
package/src/components/PaceAppLayout/PaceAppLayout.tsx +33 -12
package/src/components/PaceAppLayout/README.md +1 -1
package/src/components/PaceAppLayout/test-setup.tsx +1 -2
package/src/components/PaceLoginPage/PaceLoginPage.tsx +4 -1
package/src/components/PasswordChange/PasswordChangeForm.test.tsx +33 -33
package/src/components/PasswordChange/PasswordChangeForm.tsx +10 -1
package/src/components/Progress/Progress.tsx +1 -1
package/src/components/ProtectedRoute/ProtectedRoute.tsx +3 -9
package/src/components/PublicLayout/PublicPageLayout.tsx +3 -6
package/src/components/PublicLayout/PublicPageProvider.tsx +4 -0
package/src/components/Select/Select.tsx +95 -438
package/src/components/Select/context.ts +23 -0
package/src/components/Select/hooks/useSelectEvents.ts +87 -0
package/src/components/Select/hooks/useSelectSearch.ts +91 -0
package/src/components/Select/hooks/useSelectState.ts +104 -0
package/src/components/Select/index.ts +9 -1
package/src/components/Select/types.ts +123 -0
package/src/components/Select/utils/text.ts +26 -0
package/src/components/SessionRestorationLoader/SessionRestorationLoader.tsx +5 -6
package/src/components/Switch/Switch.tsx +4 -4
package/src/components/Table/Table.tsx +1 -1
package/src/components/Tabs/Tabs.tsx +1 -1
package/src/components/Textarea/Textarea.tsx +27 -29
package/src/components/Toast/Toast.tsx +5 -1
package/src/components/Tooltip/Tooltip.tsx +3 -3
package/src/components/UserMenu/UserMenu.test.tsx +24 -11
package/src/components/UserMenu/UserMenu.tsx +22 -19
package/src/components/index.ts +2 -2
package/src/hooks/__tests__/hooks.integration.test.tsx +80 -55
package/src/hooks/__tests__/index.unit.test.ts +2 -5
package/src/hooks/__tests__/useStorage.unit.test.ts +36 -36
package/src/hooks/index.ts +1 -2
package/src/hooks/public/usePublicEvent.ts +5 -1
package/src/hooks/public/usePublicEventLogo.ts +5 -1
package/src/hooks/public/usePublicFileDisplay.ts +4 -0
package/src/hooks/public/usePublicRouteParams.ts +5 -1
package/src/hooks/services/useAuth.ts +32 -0
package/src/hooks/services/useCurrentEvent.ts +6 -0
package/src/hooks/services/useCurrentOrganisation.ts +6 -0
package/src/hooks/useDataTableState.ts +8 -18
package/src/hooks/useDebounce.ts +9 -0
package/src/hooks/useEventTheme.ts +6 -0
package/src/hooks/useFileDisplay.ts +4 -0
package/src/hooks/useFileReference.ts +25 -7
package/src/hooks/useFileUrl.ts +11 -1
package/src/hooks/useFocusManagement.ts +16 -2
package/src/hooks/useFocusTrap.ts +7 -4
package/src/hooks/useFormDialog.ts +8 -7
package/src/hooks/useInactivityTracker.ts +4 -1
package/src/hooks/useKeyboardShortcuts.ts +4 -0
package/src/hooks/useOrganisationPermissions.ts +4 -0
package/src/hooks/useOrganisationSecurity.ts +4 -0
package/src/hooks/usePerformanceMonitor.ts +4 -0
package/src/hooks/usePermissionCache.ts +8 -1
package/src/hooks/useQueryCache.ts +12 -1
package/src/hooks/useSessionRestoration.ts +4 -0
package/src/hooks/useStorage.ts +4 -0
package/src/hooks/useToast.ts +3 -3
package/src/index.ts +2 -1
package/src/providers/__tests__/OrganisationProvider.test.tsx +115 -49
package/src/providers/__tests__/ProviderLifecycle.test.tsx +21 -6
package/src/providers/__tests__/UnifiedAuthProvider.test.tsx +10 -10
package/src/providers/services/AuthServiceProvider.tsx +18 -0
package/src/providers/services/EventServiceProvider.tsx +18 -0
package/src/providers/services/InactivityServiceProvider.tsx +18 -0
package/src/providers/services/OrganisationServiceProvider.tsx +18 -0
package/src/providers/services/UnifiedAuthProvider.tsx +58 -22
package/src/providers/services/__tests__/AuthServiceProvider.integration.test.tsx +33 -7
package/src/rbac/README.md +1 -1
package/src/rbac/__tests__/adapters.comprehensive.test.tsx +26 -26
package/src/rbac/__tests__/scenarios.user-role.test.tsx +4 -5
package/src/rbac/adapters.tsx +14 -5
package/src/rbac/api.ts +100 -67
package/src/rbac/components/EnhancedNavigationMenu.tsx +1 -1
package/src/rbac/components/NavigationGuard.tsx +1 -1
package/src/rbac/components/NavigationProvider.tsx +5 -2
package/src/rbac/components/PagePermissionGuard.tsx +158 -18
package/src/rbac/components/PagePermissionProvider.tsx +1 -1
package/src/rbac/components/PermissionEnforcer.tsx +1 -1
package/src/rbac/components/RoleBasedRouter.tsx +6 -2
package/src/rbac/components/SecureDataProvider.test.tsx +84 -49
package/src/rbac/components/SecureDataProvider.tsx +21 -6
package/src/rbac/components/__tests__/PagePermissionGuard.race-condition.test.tsx +24 -14
package/src/rbac/components/__tests__/PagePermissionGuard.test.tsx +7 -0
package/src/rbac/components/__tests__/PagePermissionGuard.verification.test.tsx +14 -6
package/src/rbac/components/__tests__/RoleBasedRouter.test.tsx +15 -4
package/src/rbac/components/__tests__/SecureDataProvider.fixed.test.tsx +148 -24
package/src/rbac/components/__tests__/SecureDataProvider.test.tsx +81 -15
package/src/rbac/engine.ts +38 -14
package/src/rbac/hooks/permissions/index.ts +7 -0
package/src/rbac/hooks/permissions/useAccessLevel.ts +105 -0
package/src/rbac/hooks/permissions/useCachedPermissions.ts +79 -0
package/src/rbac/hooks/permissions/useCan.ts +347 -0
package/src/rbac/hooks/permissions/useHasAllPermissions.ts +90 -0
package/src/rbac/hooks/permissions/useHasAnyPermission.ts +90 -0
package/src/rbac/hooks/permissions/useMultiplePermissions.ts +93 -0
package/src/rbac/hooks/permissions/usePermissions.ts +253 -0
package/src/rbac/hooks/useCan.test.ts +71 -64
package/src/rbac/hooks/usePermissions.ts +14 -995
package/src/rbac/hooks/useResourcePermissions.test.ts +54 -18
package/src/rbac/hooks/useResourcePermissions.ts +14 -4
package/src/rbac/hooks/useSecureSupabase.ts +33 -13
package/src/rbac/permissions.ts +0 -30
package/src/rbac/secureClient.ts +212 -61
package/src/rbac/types.ts +8 -0
package/src/theming/__tests__/parseEventColours.test.ts +6 -9
package/src/theming/parseEventColours.ts +5 -19
package/src/types/vitest-globals.d.ts +51 -26
package/src/utils/__mocks__/supabaseMock.ts +1 -3
package/src/utils/__tests__/formatting.unit.test.ts +4 -4
package/src/utils/__tests__/index.unit.test.ts +2 -2
package/src/utils/audit/audit.ts +0 -3
package/src/utils/core/cn.ts +1 -1
package/src/utils/file-reference/index.ts +53 -1
package/src/utils/formatting/formatting.ts +8 -18
package/src/utils/index.ts +0 -1
package/src/utils/security/secureDataAccess.test.ts +31 -20
package/src/utils/security/secureDataAccess.ts +4 -3
package/dist/chunk-6C4YBBJM.js +0 -628
package/dist/chunk-6C4YBBJM.js.map +0 -1
package/dist/chunk-7D4SUZUM.js 2.map +0 -1
package/dist/chunk-7EQTDTTJ.js 2.map +0 -1
package/dist/chunk-7EQTDTTJ.js.map +0 -1
package/dist/chunk-7FLMSG37.js 2.map +0 -1
package/dist/chunk-7FLMSG37.js.map +0 -1
package/dist/chunk-BC4IJKSL.js.map +0 -1
package/dist/chunk-E3SPN4VZ.js +0 -12917
package/dist/chunk-E3SPN4VZ.js.map +0 -1
package/dist/chunk-E66EQZE6 5.js +0 -37
package/dist/chunk-E66EQZE6.js 2.map +0 -1
package/dist/chunk-HWIIPPNI.js.map +0 -1
package/dist/chunk-I7PSE6JW 5.js +0 -191
package/dist/chunk-I7PSE6JW.js 2.map +0 -1
package/dist/chunk-I7PSE6JW.js.map +0 -1
package/dist/chunk-IIELH4DL.js.map +0 -1
package/dist/chunk-KNC55RTG.js 5.map +0 -1
package/dist/chunk-KNC55RTG.js.map +0 -1
package/dist/chunk-KQCRWDSA.js 5.map +0 -1
package/dist/chunk-LFNCN2SP.js +0 -412
package/dist/chunk-LFNCN2SP.js 2.map +0 -1
package/dist/chunk-LFNCN2SP.js.map +0 -1
package/dist/chunk-LMC26NLJ 2.js +0 -84
package/dist/chunk-NOAYCWCX.js +0 -4993
package/dist/chunk-NOAYCWCX.js.map +0 -1
package/dist/chunk-QWWZ5CAQ.js 3.map +0 -1
package/dist/chunk-QWWZ5CAQ.js.map +0 -1
package/dist/chunk-QXHPKYJV 3.js +0 -113
package/dist/chunk-R77UEZ4E.js +0 -68
package/dist/chunk-R77UEZ4E.js.map +0 -1
package/dist/chunk-SQGMNID3.js.map +0 -1
package/dist/chunk-VBXEHIUJ.js 6.map +0 -1
package/dist/chunk-XNXXZ43G.js.map +0 -1
package/dist/chunk-ZSAAAMVR 6.js +0 -25
package/dist/components.js 5.map +0 -1
package/dist/styles/index 2.js +0 -12
package/dist/styles/index.js 5.map +0 -1
package/dist/theming/runtime 5.js +0 -19
package/dist/theming/runtime.js 5.map +0 -1
package/docs/api/classes/ErrorBoundary.md +0 -144
package/docs/migration/quick-migration-guide.md +0 -356
package/docs/migration/service-architecture.md +0 -281
package/src/hooks/__tests__/useSecureDataAccess.unit.test.tsx +0 -680
package/src/hooks/useSecureDataAccess.test.ts +0 -559
package/src/hooks/useSecureDataAccess.ts +0 -666
/package/dist/{DataTable-5FU7IESH.js.map → DataTable-TPTKCX4D.js.map} +0 -0
/package/dist/{UnifiedAuthProvider-RGJTDE2C.js.map → UnifiedAuthProvider-CH6Z342H.js.map} +0 -0
/package/dist/{api-N774RPUA.js.map → api-MVVQZLJI.js.map} +0 -0
/package/docs/migration/{organisation-context-timing-fix.md → V0.3.44_organisation-context-timing-fix.md} +0 -0
/package/docs/migration/{rbac-migration.md → V0.4.0_rbac-migration.md} +0 -0
/package/docs/migration/{person-scoped-profiles-migration-guide.md → V0.5.190_person-scoped-profiles-migration-guide.md} +0 -0
/package/examples/{rbac → RBAC}/CompleteRBACExample.tsx +0 -0
/package/examples/{rbac → RBAC}/EventBasedApp.tsx +0 -0
/package/examples/{rbac → RBAC}/PermissionExample.tsx +0 -0
/package/examples/{rbac → RBAC}/index.ts +0 -0

package/src/rbac/hooks/usePermissions.ts CHANGED Viewed

@@ -1,996 +1,15 @@
 /**
- * @file RBAC Permission Hooks
- * @package @jmruthers/pace-core
- * @module RBAC/Hooks
- * @since 1.0.0
- *
- * This module provides React hooks for RBAC functionality.
- */
-import React, { useState, useEffect, useCallback, useMemo, useRef } from 'react';
-import {
-  UUID,
-  Scope,
-  Permission,
-  PermissionMap,
-  OrganisationContextRequiredError
-} from '../types';
-import { AccessLevel as AccessLevelType } from '../types';
-import {
-  getAccessLevel,
-  getPermissionMap,
-  isPermitted,
-  isPermittedCached
-} from '../api';
-import { getRBACLogger } from '../config';
-import { scopeEqual } from '../utils/deep-equal';
-import { useAppConfig } from '../../hooks/useAppConfig';
-/**
- * Hook to get user's permissions in a scope
- *
- * @param userId - User ID
- * @param organisationId - Organisation ID
- * @param eventId - Event ID (optional)
- * @param appId - Application ID (optional)
- * @returns Permission state and methods
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { permissions, isLoading, error } = usePermissions(
- *     userId,
- *     organisationId,
- *     eventId,
- *     appId
- *   );
- *
- *   if (isLoading) return <div>Loading...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return (
- *     <div>
- *       {permissions['read:users'] && <UserList />}
- *       {permissions['create:users'] && <CreateUserButton />}
- *     </div>
- *   );
- * }
- * ```
- */
-export function usePermissions(
-  userId: UUID,
-  organisationId: string | undefined,
-  eventId: string | undefined,
-  appId: string | undefined
-) {
-  const [permissions, setPermissions] = useState<PermissionMap>({} as PermissionMap);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const [fetchTrigger, setFetchTrigger] = useState(0);
-  const isFetchingRef = useRef(false);
-  const logger = getRBACLogger();
-  // Track previous values to detect changes imperatively
-  const prevValuesRef = useRef({ userId, organisationId, eventId, appId });
-  // Normalize organisationId to empty string if undefined
-  const orgId = organisationId || '';
-  // Removed excessive logging - only log when scope actually changes (not on every render)
-  // Add timeout for missing organisation context (3 seconds)
-  // OPTIMIZATION: Skip timeout if userId is null/undefined (indicates pre-filtered mode)
-  useEffect(() => {
-    // If userId is null/undefined, skip the timeout - this indicates items are pre-filtered
-    // and we don't need to wait for organisation context
-    if (!userId) {
-      return; // Skip timeout when userId is null (pre-filtered mode)
-    }
-    if (!orgId || orgId === null || (typeof orgId === 'string' && orgId.trim() === '')) {
-      const timeoutId = setTimeout(() => {
-        setError(new Error('Organisation context is required for permission checks'));
-        setIsLoading(false);
-      }, 3000); // 3 seconds - typical permission check is < 1 second
-      return () => clearTimeout(timeoutId);
-    }
-    // Clear error if organisation context becomes available
-    if (error?.message === 'Organisation context is required for permission checks') {
-      setError(null);
-    }
-  }, [userId, organisationId, error, orgId]);
-  // CRITICAL: Detect parameter changes and trigger fetch
-  // Moved to useEffect to prevent render-time state updates that could cause render loops
-  useEffect(() => {
-    const paramsChanged =
-      prevValuesRef.current.userId !== userId ||
-      prevValuesRef.current.organisationId !== organisationId ||
-      prevValuesRef.current.eventId !== eventId ||
-      prevValuesRef.current.appId !== appId;
-    if (paramsChanged) {
-      // Only log significant changes (appId changes are most important)
-      if (prevValuesRef.current.appId !== appId) {
-        // AppId changed - triggering fetch
-      }
-      prevValuesRef.current = { userId, organisationId, eventId, appId };
-      // Increment counter to force fetch useEffect to run
-      setFetchTrigger(prev => prev + 1);
-    }
-  }, [userId, organisationId, eventId, appId, logger]);
-  useEffect(() => {
-    const fetchPermissions = async () => {
-      // Prevent multiple simultaneous fetches
-      if (isFetchingRef.current) {
-        return;
-      }
-      if (!userId) {
-        setPermissions({} as PermissionMap);
-        setIsLoading(false);
-        return;
-      }
-      // Don't fetch permissions if scope is invalid (e.g., organisationId is null/empty)
-      // Wait for organisation context to resolve
-      // IMPORTANT: Don't clear existing permissions here - keep them until we have new ones
-      // OPTIMIZATION: If userId is null/undefined, immediately set loading to false
-      // This indicates pre-filtered mode where we don't need to wait for organisation context
-      if (!userId) {
-        setPermissions({} as PermissionMap);
-        setIsLoading(false);
-        return;
-      }
-      if (!orgId || orgId === null || (typeof orgId === 'string' && orgId.trim() === '')) {
-        // Keep existing permissions, just mark as loading
-        setIsLoading(true);
-        setError(null);
-        return;
-      }
-      try {
-        isFetchingRef.current = true;
-        setIsLoading(true);
-        setError(null);
-        // Build scope object for API call
-        const scope: Scope = {
-          organisationId: orgId,
-          eventId: eventId,
-          appId: appId
-        };
-        // Fetch new permissions - don't clear old ones until we have new ones
-        const permissionMap = await getPermissionMap({ userId, scope });
-        // Only log if there's a significant change or error
-        const permissionCount = Object.keys(permissionMap).length;
-        if (permissionCount === 0 && Object.keys(permissions).length > 0) {
-          logger.warn('[usePermissions] Permissions fetched but returned empty map', {
-            scope: { organisationId: orgId, eventId, appId }
-          });
-        }
-        // Only update permissions if fetch was successful
-        setPermissions(permissionMap);
-      } catch (err) {
-        // On error, keep existing permissions but set error state
-        // This prevents the UI from losing all items when there's a transient error
-        logger.error('[usePermissions] Failed to fetch permissions:', err);
-        setError(err instanceof Error ? err : new Error('Failed to fetch permissions'));
-        // Don't clear permissions on error - keep what we had
-      } finally {
-        setIsLoading(false);
-        isFetchingRef.current = false;
-      }
-    };
-    fetchPermissions();
-  }, [fetchTrigger, userId, organisationId, eventId, appId]);
-  const hasPermission = useCallback((permission: Permission): boolean => {
-    if (permissions['*']) {
-      return true;
-    }
-    return permissions[permission] === true;
-  }, [permissions]);
-  const hasAnyPermission = useCallback((permissionList: Permission[]): boolean => {
-    if (permissions['*']) {
-      return true;
-    }
-    return permissionList.some(p => permissions[p] === true);
-  }, [permissions]);
-  const hasAllPermissions = useCallback((permissionList: Permission[]): boolean => {
-    if (permissions['*']) {
-      return true;
-    }
-    return permissionList.every(p => permissions[p] === true);
-  }, [permissions]);
-  const refetch = useCallback(async () => {
-    // Prevent multiple simultaneous fetches
-    if (isFetchingRef.current) {
-      return;
-    }
-    if (!userId) {
-      setPermissions({} as PermissionMap);
-      setIsLoading(false);
-      return;
-    }
-    // Don't fetch permissions if scope is invalid (e.g., organisationId is null/empty)
-    // IMPORTANT: Don't clear existing permissions - keep them until we have new ones
-    if (!orgId || orgId === null || (typeof orgId === 'string' && orgId.trim() === '')) {
-      // Keep existing permissions, just mark as loading
-      setIsLoading(true);
-      setError(null);
-      return;
-    }
-    try {
-      isFetchingRef.current = true;
-      setIsLoading(true);
-      setError(null);
-      // Build scope object for API call
-      const scope: Scope = {
-        organisationId: orgId,
-        eventId: eventId,
-        appId: appId
-      };
-      // Fetch new permissions - don't clear old ones until we have new ones
-      const permissionMap = await getPermissionMap({ userId, scope });
-      // Only update permissions if fetch was successful
-      setPermissions(permissionMap);
-    } catch (err) {
-      // On error, keep existing permissions but set error state
-      // This prevents the UI from losing all items when there's a transient error
-      const logger = getRBACLogger();
-      logger.error('Failed to refetch permissions:', err);
-      setError(err instanceof Error ? err : new Error('Failed to fetch permissions'));
-      // Don't clear permissions on error - keep what we had
-    } finally {
-      setIsLoading(false);
-      isFetchingRef.current = false;
-    }
-  }, [userId, organisationId, eventId, appId]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    permissions,
-    isLoading,
-    error,
-    hasPermission,
-    hasAnyPermission,
-    hasAllPermissions,
-    refetch
-  }), [permissions, isLoading, error, hasPermission, hasAnyPermission, hasAllPermissions, refetch]);
-}
-/**
- * Hook to check if user can perform an action
- *
- * @param userId - User ID
- * @param scope - Scope for permission checking
- * @param permission - Permission to check
- * @param pageId - Optional page ID
- * @param useCache - Whether to use cached results
- * @param appName - Optional app name (for PORTAL/ADMIN special case)
- * @returns Permission check state and methods
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { can, isLoading, error } = useCan(userId, scope, 'read:users');
- *
- *   if (isLoading) return <div>Checking permission...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return can ? <UserList /> : <div>Access denied</div>;
- * }
- * ```
- */
-export function useCan(
-  userId: UUID,
-  scope: Scope,
-  permission: Permission,
-  pageId?: UUID,
-  useCache: boolean = true,
-  appName?: string
-) {
-  const [can, setCan] = useState<boolean>(false);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const [isSuperAdmin, setIsSuperAdmin] = useState<boolean | null>(null);
-  // Validate scope parameter - handle undefined/null scope gracefully
-  const isValidScope = scope && typeof scope === 'object';
-  const organisationId = isValidScope ? scope.organisationId : undefined;
-  const eventId = isValidScope ? scope.eventId : undefined;
-  const appId = isValidScope ? scope.appId : undefined;
-  // Check super-admin status - super admins bypass organisation context requirements
-  useEffect(() => {
-    if (!userId) {
-      setIsSuperAdmin(false);
-      return;
-    }
-    let cancelled = false;
-    const checkSuperAdmin = async () => {
-      try {
-        const { isSuperAdmin: checkSuperAdmin } = await import('../api');
-        const isSuper = await checkSuperAdmin(userId);
-        if (!cancelled) {
-          setIsSuperAdmin(isSuper);
-        }
-      } catch (err) {
-        if (!cancelled) {
-          setIsSuperAdmin(false);
-        }
-      }
-    };
-    checkSuperAdmin();
-    return () => {
-      cancelled = true;
-    };
-  }, [userId]);
-  // Add timeout for missing organisation context (3 seconds)
-  // Only apply timeout for resource-level permissions, not page-level (which can handle null orgs)
-  // Super admins bypass this check
-  useEffect(() => {
-    const isPagePermission = permission.includes(':page.') || !!pageId;
-    const requiresOrgId = !isPagePermission;
-    // Don't block if user is super-admin (they bypass context requirements)
-    if (isSuperAdmin === true) {
-      return;
-    }
-    if (requiresOrgId && (!isValidScope || !organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
-      const timeoutId = setTimeout(() => {
-        setError(new Error('Organisation context is required for permission checks'));
-        setIsLoading(false);
-        setCan(false);
-      }, 3000); // 3 seconds - typical permission check is < 1 second
-      return () => clearTimeout(timeoutId);
-    }
-    // Clear error if organisation context becomes available
-    if (error?.message === 'Organisation context is required for permission checks') {
-      setError(null);
-    }
-  }, [isValidScope, organisationId, error, permission, pageId, isSuperAdmin]);
-  // Use refs to track the last values to prevent unnecessary re-runs
-  const lastUserIdRef = useRef<UUID | null>(null);
-  const lastScopeRef = useRef<string | null>(null);
-  const lastPermissionRef = useRef<Permission | null>(null);
-  const lastPageIdRef = useRef<UUID | undefined | null>(null);
-  const lastUseCacheRef = useRef<boolean | null>(null);
-  // Create a stable scope object for comparison
-  const stableScope = useMemo(() => {
-    if (!isValidScope) {
-      return null;
-    }
-    return {
-      organisationId,
-      eventId,
-      appId,
-    };
-  }, [isValidScope, organisationId, eventId, appId]);
-  // Track previous scope for deep equality comparison
-  const prevScopeRef = useRef<Scope | null>(null);
-  useEffect(() => {
-    // Use deep equality check for scope to prevent unnecessary re-runs
-    const scopeChanged = !scopeEqual(prevScopeRef.current, stableScope);
-    // Only run if something has actually changed
-    if (
-      lastUserIdRef.current !== userId ||
-      scopeChanged ||
-      lastPermissionRef.current !== permission ||
-      lastPageIdRef.current !== pageId ||
-      lastUseCacheRef.current !== useCache
-    ) {
-      lastUserIdRef.current = userId;
-      prevScopeRef.current = stableScope;
-      lastPermissionRef.current = permission;
-      lastPageIdRef.current = pageId;
-      lastUseCacheRef.current = useCache;
-      // Inline the permission check logic to avoid useCallback dependency issues
-      const checkPermission = async () => {
-        if (!userId) {
-          setCan(false);
-          setIsLoading(false);
-          return;
-        }
-        // Validate scope before accessing properties
-        if (!isValidScope) {
-          setIsLoading(true);
-          setCan(false);
-          setError(null);
-          // Timeout is handled in separate useEffect
-          return;
-        }
-        // For page-level permissions, allow undefined/null organisationId (database function handles it)
-        // For resource-level permissions, organisationId is required
-        const isPagePermission = permission.includes(':page.') || !!pageId;
-        const requiresOrgId = !isPagePermission;
-        // Check if pageId is a pageName (not a UUID) - if so, we need appId to resolve it
-        const isPageName = pageId && typeof pageId === 'string' && !/^[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}$/i.test(pageId);
-        const needsAppIdForPageName = isPagePermission && isPageName;
-        // Don't check permissions if scope is invalid and orgId is required
-        // Wait for organisation context to resolve (unless it's a page permission that can handle null orgs)
-        // Super admins bypass this check - only proceed if super-admin status is confirmed to be true
-        // If super-admin status is still being checked (null), wait for it to complete
-        if (requiresOrgId && (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
-          // Only proceed if user is confirmed to be super-admin
-          if (isSuperAdmin === true) {
-            // Super-admin bypass - allow check to proceed (isPermitted will handle super-admin bypass)
-          } else {
-            // Not super-admin or still checking - wait for org context or super-admin check to complete
-            setIsLoading(true);
-            setCan(false);
-            setError(null);
-            // Timeout is handled in separate useEffect (Phase 1.4)
-            return;
-          }
-        }
-        // For page-level permissions with pageName (not UUID), we need appId to resolve the pageName to pageId
-        // Wait for appId to be available before checking permissions
-        if (needsAppIdForPageName && (!appId || appId === null || (typeof appId === 'string' && appId.trim() === ''))) {
-          setIsLoading(true);
-          setCan(false);
-          setError(null);
-          // Will re-run when appId becomes available (via scope change detection)
-          return;
-        }
-        try {
-          setIsLoading(true);
-          setError(null);
-          // Create a valid scope object for the API call
-          // For page-level permissions, organisationId can be undefined (database handles it)
-          const validScope: Scope = {
-            ...(organisationId ? { organisationId } : {}),
-            ...(eventId ? { eventId } : {}),
-            ...(appId ? { appId } : {})
-          };
-          const result = useCache
-            ? await isPermittedCached({ userId, scope: validScope, permission, pageId }, undefined, appName)
-            : await isPermitted({ userId, scope: validScope, permission, pageId }, undefined, appName);
-          setCan(result);
-        } catch (err) {
-          const logger = getRBACLogger();
-          logger.error('Permission check error:', { permission, error: err });
-          setError(err instanceof Error ? err : new Error('Failed to check permission'));
-          setCan(false);
-        } finally {
-          setIsLoading(false);
-        }
-      };
-      checkPermission();
-    }
-  }, [userId, stableScope, permission, pageId, useCache, appName, isSuperAdmin]);
-  const refetch = useCallback(async () => {
-    if (!userId) {
-      setCan(false);
-      setIsLoading(false);
-      return;
-    }
-    // Validate scope before accessing properties
-    if (!isValidScope) {
-      setCan(false);
-      setIsLoading(true);
-      setError(null);
-      return;
-    }
-    // For page-level permissions, allow undefined/null organisationId (database function handles it)
-    // For resource-level permissions, organisationId is required
-    const isPagePermission = permission.includes(':page.') || !!pageId;
-    const requiresOrgId = !isPagePermission;
-    // Don't check permissions if scope is invalid and orgId is required
-    if (requiresOrgId && (!organisationId || organisationId === null || (typeof organisationId === 'string' && organisationId.trim() === ''))) {
-      setCan(false);
-      setIsLoading(true);
-      setError(null);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      // Create a valid scope object for the API call
-      // For page-level permissions, organisationId can be undefined (database handles it)
-      const validScope: Scope = {
-        ...(organisationId ? { organisationId } : {}),
-        ...(eventId ? { eventId } : {}),
-        ...(appId ? { appId } : {})
-      };
-      const result = useCache
-        ? await isPermittedCached({ userId, scope: validScope, permission, pageId }, undefined, appName)
-        : await isPermitted({ userId, scope: validScope, permission, pageId }, undefined, appName);
-      setCan(result);
-    } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to check permission'));
-      setCan(false);
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, isValidScope, organisationId, eventId, appId, permission, pageId, useCache, appName]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    can,
-    isLoading,
-    error,
-    refetch
-  }), [can, isLoading, error, refetch]);
-}
-/**
- * Hook to get user's access level in a scope
- *
- * @param userId - User ID
- * @param scope - Scope for access level checking
- * @returns Access level state and methods
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { accessLevel, isLoading, error } = useAccessLevel(userId, scope);
- *
- *   if (isLoading) return <div>Loading access level...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return (
- *     <div>
- *       Access Level: {accessLevel}
- *       {accessLevel >= AccessLevel.ADMIN && <AdminPanel />}
- *     </div>
- *   );
- * }
- * ```
- */
-export function useAccessLevel(userId: UUID, scope: Scope): {
-  accessLevel: AccessLevelType;
-  isLoading: boolean;
-  error: Error | null;
-  refetch: () => Promise<void>;
-} {
-  const [accessLevel, setAccessLevel] = useState<AccessLevelType>('viewer');
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  // Get appName from context if available (safely handles missing context)
-  let appName: string | undefined;
-  try {
-    const { appName: contextAppName } = useAppConfig();
-    appName = contextAppName;
-  } catch {
-    // Not available, will use undefined
-  }
-  const fetchAccessLevel = useCallback(async () => {
-    if (!userId) {
-      setAccessLevel('viewer');
-      setIsLoading(false);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      // Check super admin status first - super admins bypass context requirements
-      // This allows super admins to check their access level without organisation context
-      const { isSuperAdmin: checkSuperAdmin } = await import('../api');
-      const isSuperAdminUser = await checkSuperAdmin(userId);
-      if (isSuperAdminUser) {
-        setAccessLevel('super');
-        setIsLoading(false);
-        return;
-      }
-      // Early validation: check if scope has required context
-      // PORTAL/ADMIN apps allow both contexts to be optional
-      if (appName !== 'PORTAL' && appName !== 'ADMIN' && !scope.organisationId && !scope.eventId) {
-        const orgError = new OrganisationContextRequiredError();
-        setError(orgError);
-        setAccessLevel('viewer');
-        setIsLoading(false);
-        return;
-      }
-      const level = await getAccessLevel({ userId, scope }, null, appName);
-      setAccessLevel(level);
-    } catch (err) {
-      const error = err instanceof Error ? err : new Error('Failed to fetch access level');
-      setError(error);
-      setAccessLevel('viewer');
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId, appName]);
-  useEffect(() => {
-    fetchAccessLevel();
-  }, [fetchAccessLevel]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    accessLevel,
-    isLoading,
-    error,
-    refetch: fetchAccessLevel
-  }), [accessLevel, isLoading, error, fetchAccessLevel]);
-}
-/**
- * Hook to check multiple permissions at once
- *
- * @param userId - User ID
- * @param scope - Scope for permission checking
- * @param permissions - Array of permissions to check
- * @param useCache - Whether to use cached results
- * @returns Multiple permission check results
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { results, isLoading, error } = useMultiplePermissions(
- *     userId,
- *     scope,
- *     ['read:users', 'create:users', 'update:users']
- *   );
- *
- *   if (isLoading) return <div>Checking permissions...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return (
- *     <div>
- *       {results['read:users'] && <UserList />}
- *       {results['create:users'] && <CreateUserButton />}
- *       {results['update:users'] && <EditUserButton />}
- *     </div>
- *   );
- * }
- * ```
- */
-export function useMultiplePermissions(
-  userId: UUID,
-  scope: Scope,
-  permissions: Permission[],
-  useCache: boolean = true
-): {
-  results: Record<Permission, boolean>;
-  isLoading: boolean;
-  error: Error | null;
-  refetch: () => Promise<void>;
-} {
-  const [results, setResults] = useState<Record<Permission, boolean>>({} as Record<Permission, boolean>);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const checkPermissions = useCallback(async () => {
-    if (!userId || permissions.length === 0) {
-      setResults({} as Record<Permission, boolean>);
-      setIsLoading(false);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      const permissionResults: Record<Permission, boolean> = {} as Record<Permission, boolean>;
-      // Check each permission
-      for (const permission of permissions) {
-        const result = useCache
-          ? await isPermittedCached({ userId, scope, permission })
-          : await isPermitted({ userId, scope, permission });
-        permissionResults[permission] = result;
-      }
-      setResults(permissionResults);
-    } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to check permissions'));
-      setResults({} as Record<Permission, boolean>);
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId, permissions, useCache]);
-  useEffect(() => {
-    checkPermissions();
-  }, [checkPermissions]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    results,
-    isLoading,
-    error,
-    refetch: checkPermissions
-  }), [results, isLoading, error, checkPermissions]);
-}
-/**
- * Hook to check if user has any of the specified permissions
- *
- * @param userId - User ID
- * @param scope - Scope for permission checking
- * @param permissions - Array of permissions to check
- * @param useCache - Whether to use cached results
- * @returns Whether user has any of the permissions
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { hasAny, isLoading, error } = useHasAnyPermission(
- *     userId,
- *     scope,
- *     ['read:users', 'create:users']
- *   );
- *
- *   if (isLoading) return <div>Checking permissions...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return hasAny ? <UserManagementPanel /> : <div>No user permissions</div>;
- * }
- * ```
- */
-export function useHasAnyPermission(
-  userId: UUID,
-  scope: Scope,
-  permissions: Permission[],
-  useCache: boolean = true
-): {
-  hasAny: boolean;
-  isLoading: boolean;
-  error: Error | null;
-  refetch: () => Promise<void>;
-} {
-  const [hasAny, setHasAny] = useState<boolean>(false);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const checkAnyPermission = useCallback(async () => {
-    if (!userId || permissions.length === 0) {
-      setHasAny(false);
-      setIsLoading(false);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      let hasAnyPermission = false;
-      for (const permission of permissions) {
-        const result = useCache
-          ? await isPermittedCached({ userId, scope, permission })
-          : await isPermitted({ userId, scope, permission });
-        if (result) {
-          hasAnyPermission = true;
-          break;
-        }
-      }
-      setHasAny(hasAnyPermission);
-    } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to check permissions'));
-      setHasAny(false);
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId, permissions, useCache]);
-  useEffect(() => {
-    checkAnyPermission();
-  }, [checkAnyPermission]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    hasAny,
-    isLoading,
-    error,
-    refetch: checkAnyPermission
-  }), [hasAny, isLoading, error, checkAnyPermission]);
-}
-/**
- * Hook to check if user has all of the specified permissions
- *
- * @param userId - User ID
- * @param scope - Scope for permission checking
- * @param permissions - Array of permissions to check
- * @param useCache - Whether to use cached results
- * @returns Whether user has all of the permissions
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { hasAll, isLoading, error } = useHasAllPermissions(
- *     userId,
- *     scope,
- *     ['read:users', 'create:users', 'update:users']
- *   );
- *
- *   if (isLoading) return <div>Checking permissions...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return hasAll ? <FullUserManagementPanel /> : <div>Insufficient permissions</div>;
- * }
- * ```
- */
-export function useHasAllPermissions(
-  userId: UUID,
-  scope: Scope,
-  permissions: Permission[],
-  useCache: boolean = true
-): {
-  hasAll: boolean;
-  isLoading: boolean;
-  error: Error | null;
-  refetch: () => Promise<void>;
-} {
-  const [hasAll, setHasAll] = useState<boolean>(false);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const checkAllPermissions = useCallback(async () => {
-    if (!userId || permissions.length === 0) {
-      setHasAll(false);
-      setIsLoading(false);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      let hasAllPermissions = true;
-      for (const permission of permissions) {
-        const result = useCache
-          ? await isPermittedCached({ userId, scope, permission })
-          : await isPermitted({ userId, scope, permission });
-        if (!result) {
-          hasAllPermissions = false;
-          break;
-        }
-      }
-      setHasAll(hasAllPermissions);
-    } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to check permissions'));
-      setHasAll(false);
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId, permissions, useCache]);
-  useEffect(() => {
-    checkAllPermissions();
-  }, [checkAllPermissions]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    hasAll,
-    isLoading,
-    error,
-    refetch: checkAllPermissions
-  }), [hasAll, isLoading, error, checkAllPermissions]);
-}
-/**
- * Hook to get cached permissions with TTL management
- *
- * @param userId - User ID
- * @param scope - Scope for permission checking
- * @returns Cached permission state and methods
- *
- * @example
- * ```tsx
- * function MyComponent() {
- *   const { permissions, isLoading, error, invalidateCache } = useCachedPermissions(userId, scope);
- *
- *   if (isLoading) return <div>Loading cached permissions...</div>;
- *   if (error) return <div>Error: {error.message}</div>;
- *
- *   return (
- *     <div>
- *       {permissions['read:users'] && <UserList />}
- *       <button onClick={invalidateCache}>Refresh Permissions</button>
- *     </div>
- *   );
- * }
- * ```
- */
-export function useCachedPermissions(userId: UUID, scope: Scope): {
-  permissions: PermissionMap;
-  isLoading: boolean;
-  error: Error | null;
-  invalidateCache: () => void;
-  refetch: () => Promise<void>;
-} {
-  const [permissions, setPermissions] = useState<PermissionMap>({} as PermissionMap);
-  const [isLoading, setIsLoading] = useState(true);
-  const [error, setError] = useState<Error | null>(null);
-  const fetchCachedPermissions = useCallback(async () => {
-    if (!userId) {
-      setPermissions({} as PermissionMap);
-      setIsLoading(false);
-      return;
-    }
-    try {
-      setIsLoading(true);
-      setError(null);
-      const permissionMap = await getPermissionMap({ userId, scope });
-      setPermissions(permissionMap);
-    } catch (err) {
-      setError(err instanceof Error ? err : new Error('Failed to fetch cached permissions'));
-    } finally {
-      setIsLoading(false);
-    }
-  }, [userId, scope.organisationId, scope.eventId, scope.appId]);
-  const invalidateCache = useCallback(() => {
-    // This would typically invalidate the cache in the actual implementation
-    // For now, we'll just refetch
-    fetchCachedPermissions();
-  }, [fetchCachedPermissions]);
-  useEffect(() => {
-    fetchCachedPermissions();
-  }, [fetchCachedPermissions]);
-  // Memoize the return object to prevent unnecessary re-renders
-  return useMemo(() => ({
-    permissions,
-    isLoading,
-    error,
-    invalidateCache,
-    refetch: fetchCachedPermissions
-  }), [permissions, isLoading, error, invalidateCache, fetchCachedPermissions]);
-}
+ * RBAC Permission Hooks
+ *
+ * This barrel file re-exports the permission-related hooks. The implementations
+ * are organized in `./permissions` to keep the modules focused and maintainable.
+ */
+export {
+  usePermissions,
+  useCan,
+  useAccessLevel,
+  useMultiplePermissions,
+  useHasAnyPermission,
+  useHasAllPermissions,
+  useCachedPermissions,
+} from './permissions';