npm - @jmruthers/pace-core - Versions diffs - 0.6.1 → 0.6.2 - Mend

@jmruthers/pace-core 0.6.1 → 0.6.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (502) hide show

package/CHANGELOG.md +43 -10
package/cursor-rules/00-pace-core-compliance.mdc +18 -91
package/cursor-rules/01-standards-compliance.mdc +16 -47
package/cursor-rules/02-project-structure.mdc +4 -4
package/cursor-rules/03-solid-principles.mdc +45 -164
package/cursor-rules/04-testing-standards.mdc +22 -69
package/cursor-rules/05-bug-reports-and-features.mdc +2 -2
package/cursor-rules/06-code-quality.mdc +42 -125
package/cursor-rules/07-tech-stack-compliance.mdc +33 -128
package/cursor-rules/08-markup-quality.mdc +452 -0
package/cursor-rules/CHANGELOG.md +18 -0
package/cursor-rules/README.md +2 -1
package/dist/{AuthService-DjnJHDtC.d.ts → AuthService-BPvc3Ka0.d.ts} +54 -0
package/dist/{DataTable-CH1U5Tpy.d.ts → DataTable-BMRU8a1j.d.ts} +33 -1
package/dist/{DataTable-DQ7RSOHE.js → DataTable-TPTKCX4D.js} +10 -9
package/dist/{PublicPageProvider-ce4xlHYA.d.ts → PublicPageProvider-DC6kCaqf.d.ts} +356 -111
package/dist/{UnifiedAuthProvider-ATAP5UTR.js → UnifiedAuthProvider-CH6Z342H.js} +3 -3
package/dist/{UnifiedAuthProvider-185Ih4dj.d.ts → UnifiedAuthProvider-CVcTjx-d.d.ts} +29 -0
package/dist/{api-N774RPUA.js → api-MVVQZLJI.js} +2 -2
package/dist/{chunk-KNC55RTG.js → chunk-24UVZUZG.js} +90 -54
package/dist/chunk-24UVZUZG.js.map +1 -0
package/dist/{chunk-4N5C5XZU.js → chunk-2UOI2FG5.js} +4 -4
package/dist/chunk-2UOI2FG5.js.map +1 -0
package/dist/{chunk-T33XF5ZC.js → chunk-3XC4CPTD.js} +4317 -3963
package/dist/chunk-3XC4CPTD.js.map +1 -0
package/dist/{chunk-4ZC4GX36.js → chunk-6J4GEEJR.js} +172 -45
package/dist/chunk-6J4GEEJR.js.map +1 -0
package/dist/{chunk-3QRJFVBR.js → chunk-6SOIHG6Z.js} +1 -1
package/dist/chunk-6SOIHG6Z.js.map +1 -0
package/dist/{chunk-BYFSK72L.js → chunk-EHMR7VYL.js} +4 -4
package/dist/chunk-EHMR7VYL.js.map +1 -0
package/dist/{chunk-I7PSE6JW.js → chunk-F2IMUDXZ.js} +2 -75
package/dist/chunk-F2IMUDXZ.js.map +1 -0
package/dist/{chunk-LXQLPRQ2.js → chunk-FFQEQTNW.js} +6 -8
package/dist/chunk-FFQEQTNW.js.map +1 -0
package/dist/chunk-FMUCXFII.js +76 -0
package/dist/chunk-FMUCXFII.js.map +1 -0
package/dist/{chunk-SQGMNID3.js → chunk-L4OXEN46.js} +4 -5
package/dist/chunk-L4OXEN46.js.map +1 -0
package/dist/{chunk-R77UEZ4E.js → chunk-M43Y4SSO.js} +1 -1
package/dist/chunk-M43Y4SSO.js.map +1 -0
package/dist/{chunk-3XTALGJF.js → chunk-MMZ7JXPU.js} +60 -223
package/dist/chunk-MMZ7JXPU.js.map +1 -0
package/dist/{chunk-GLK6VM3F.js → chunk-NECFR5MM.js} +254 -170
package/dist/chunk-NECFR5MM.js.map +1 -0
package/dist/{chunk-JBKQ3SAO.js → chunk-SFZUDBL5.js} +40 -4
package/dist/chunk-SFZUDBL5.js.map +1 -0
package/dist/{chunk-XM25TVIE.js → chunk-XWQCNGTQ.js} +724 -363
package/dist/chunk-XWQCNGTQ.js.map +1 -0
package/dist/components.d.ts +5 -5
package/dist/components.js +14 -11
package/dist/components.js.map +1 -1
package/dist/{functions-D_kgHktt.d.ts → functions-DHebl8-F.d.ts} +1 -1
package/dist/hooks.d.ts +55 -122
package/dist/hooks.js +8 -12
package/dist/hooks.js.map +1 -1
package/dist/index.d.ts +60 -13
package/dist/index.js +19 -19
package/dist/index.js.map +1 -1
package/dist/providers.d.ts +21 -3
package/dist/providers.js +2 -2
package/dist/rbac/index.d.ts +145 -114
package/dist/rbac/index.js +8 -11
package/dist/theming/runtime.d.ts +1 -13
package/dist/theming/runtime.js +1 -1
package/dist/{timezone-_pgH8qrY.d.ts → timezone-CHhWg6b4.d.ts} +3 -10
package/dist/{types-UU913iLA.d.ts → types-BeoeWV5I.d.ts} +8 -0
package/dist/{types-CEpcvwwF.d.ts → types-CkbwOr4Y.d.ts} +6 -0
package/dist/types.d.ts +2 -2
package/dist/{usePublicRouteParams-BJAlWfuJ.d.ts → usePublicRouteParams-1oMokgLF.d.ts} +31 -1
package/dist/utils.d.ts +4 -5
package/dist/utils.js +14 -14
package/dist/utils.js.map +1 -1
package/docs/api/README.md +7 -1
package/docs/api/classes/ColumnFactory.md +8 -8
package/docs/api/classes/InvalidScopeError.md +4 -4
package/docs/api/classes/Logger.md +1 -1
package/docs/api/classes/MissingUserContextError.md +4 -4
package/docs/api/classes/OrganisationContextRequiredError.md +4 -4
package/docs/api/classes/PermissionDeniedError.md +4 -4
package/docs/api/classes/RBACAuditManager.md +1 -1
package/docs/api/classes/RBACCache.md +1 -1
package/docs/api/classes/RBACEngine.md +1 -1
package/docs/api/classes/RBACError.md +4 -4
package/docs/api/classes/RBACNotInitializedError.md +4 -4
package/docs/api/classes/SecureSupabaseClient.md +18 -15
package/docs/api/classes/StorageUtils.md +1 -1
package/docs/api/enums/FileCategory.md +1 -1
package/docs/api/enums/LogLevel.md +1 -1
package/docs/api/enums/RBACErrorCode.md +1 -1
package/docs/api/enums/RPCFunction.md +1 -1
package/docs/api/interfaces/AddressFieldProps.md +1 -1
package/docs/api/interfaces/AddressFieldRef.md +1 -1
package/docs/api/interfaces/AggregateConfig.md +4 -4
package/docs/api/interfaces/AutocompleteOptions.md +1 -1
package/docs/api/interfaces/AvatarProps.md +1 -1
package/docs/api/interfaces/BadgeProps.md +9 -2
package/docs/api/interfaces/ButtonProps.md +7 -4
package/docs/api/interfaces/CalendarProps.md +8 -5
package/docs/api/interfaces/CardProps.md +8 -5
package/docs/api/interfaces/ColorPalette.md +1 -1
package/docs/api/interfaces/ColorShade.md +1 -1
package/docs/api/interfaces/ComplianceResult.md +1 -1
package/docs/api/interfaces/DataAccessRecord.md +9 -9
package/docs/api/interfaces/DataRecord.md +1 -1
package/docs/api/interfaces/DataTableAction.md +24 -21
package/docs/api/interfaces/DataTableColumn.md +31 -31
package/docs/api/interfaces/DataTableProps.md +1 -1
package/docs/api/interfaces/DataTableToolbarButton.md +7 -7
package/docs/api/interfaces/DatabaseComplianceResult.md +1 -1
package/docs/api/interfaces/DatabaseIssue.md +1 -1
package/docs/api/interfaces/EmptyStateConfig.md +5 -5
package/docs/api/interfaces/EnhancedNavigationMenuProps.md +1 -1
package/docs/api/interfaces/ErrorBoundaryProps.md +147 -0
package/docs/api/interfaces/ErrorBoundaryProviderProps.md +36 -0
package/docs/api/interfaces/ErrorBoundaryState.md +75 -0
package/docs/api/interfaces/EventAppRoleData.md +1 -1
package/docs/api/interfaces/ExportColumn.md +1 -1
package/docs/api/interfaces/ExportOptions.md +8 -8
package/docs/api/interfaces/FileDisplayProps.md +1 -1
package/docs/api/interfaces/FileMetadata.md +1 -1
package/docs/api/interfaces/FileReference.md +1 -1
package/docs/api/interfaces/FileSizeLimits.md +1 -1
package/docs/api/interfaces/FileUploadOptions.md +1 -1
package/docs/api/interfaces/FileUploadProps.md +26 -23
package/docs/api/interfaces/FooterProps.md +10 -8
package/docs/api/interfaces/FormFieldProps.md +10 -10
package/docs/api/interfaces/FormProps.md +1 -1
package/docs/api/interfaces/GrantEventAppRoleParams.md +1 -1
package/docs/api/interfaces/InactivityWarningModalProps.md +1 -1
package/docs/api/interfaces/InputProps.md +7 -4
package/docs/api/interfaces/LabelProps.md +1 -1
package/docs/api/interfaces/LoggerConfig.md +1 -1
package/docs/api/interfaces/LoginFormProps.md +14 -11
package/docs/api/interfaces/NavigationAccessRecord.md +1 -1
package/docs/api/interfaces/NavigationContextType.md +1 -1
package/docs/api/interfaces/NavigationGuardProps.md +1 -1
package/docs/api/interfaces/NavigationItem.md +11 -11
package/docs/api/interfaces/NavigationMenuProps.md +15 -15
package/docs/api/interfaces/NavigationProviderProps.md +1 -1
package/docs/api/interfaces/Organisation.md +1 -1
package/docs/api/interfaces/OrganisationContextType.md +1 -1
package/docs/api/interfaces/OrganisationMembership.md +1 -1
package/docs/api/interfaces/OrganisationProviderProps.md +1 -1
package/docs/api/interfaces/OrganisationSecurityError.md +1 -1
package/docs/api/interfaces/PaceAppLayoutProps.md +30 -27
package/docs/api/interfaces/PaceLoginPageProps.md +6 -4
package/docs/api/interfaces/PageAccessRecord.md +1 -1
package/docs/api/interfaces/PagePermissionContextType.md +1 -1
package/docs/api/interfaces/PagePermissionGuardProps.md +1 -1
package/docs/api/interfaces/PagePermissionProviderProps.md +1 -1
package/docs/api/interfaces/PaletteData.md +1 -1
package/docs/api/interfaces/ParsedAddress.md +1 -1
package/docs/api/interfaces/PermissionEnforcerProps.md +1 -1
package/docs/api/interfaces/ProgressProps.md +1 -1
package/docs/api/interfaces/ProtectedRouteProps.md +7 -26
package/docs/api/interfaces/PublicPageFooterProps.md +9 -9
package/docs/api/interfaces/PublicPageHeaderProps.md +10 -10
package/docs/api/interfaces/PublicPageLayoutProps.md +7 -20
package/docs/api/interfaces/QuickFix.md +1 -1
package/docs/api/interfaces/RBACAccessValidateParams.md +1 -1
package/docs/api/interfaces/RBACAccessValidateResult.md +1 -1
package/docs/api/interfaces/RBACAuditLogParams.md +1 -1
package/docs/api/interfaces/RBACAuditLogResult.md +1 -1
package/docs/api/interfaces/RBACConfig.md +1 -1
package/docs/api/interfaces/RBACContext.md +1 -1
package/docs/api/interfaces/RBACLogger.md +1 -1
package/docs/api/interfaces/RBACPageAccessCheckParams.md +1 -1
package/docs/api/interfaces/RBACPerformanceMetrics.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckParams.md +1 -1
package/docs/api/interfaces/RBACPermissionCheckResult.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetParams.md +1 -1
package/docs/api/interfaces/RBACPermissionsGetResult.md +1 -1
package/docs/api/interfaces/RBACResult.md +1 -1
package/docs/api/interfaces/RBACRoleGrantParams.md +1 -1
package/docs/api/interfaces/RBACRoleGrantResult.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeParams.md +1 -1
package/docs/api/interfaces/RBACRoleRevokeResult.md +1 -1
package/docs/api/interfaces/RBACRoleValidateParams.md +1 -1
package/docs/api/interfaces/RBACRoleValidateResult.md +1 -1
package/docs/api/interfaces/RBACRolesListParams.md +1 -1
package/docs/api/interfaces/RBACRolesListResult.md +1 -1
package/docs/api/interfaces/RBACSessionTrackParams.md +1 -1
package/docs/api/interfaces/RBACSessionTrackResult.md +1 -1
package/docs/api/interfaces/ResourcePermissions.md +1 -1
package/docs/api/interfaces/RevokeEventAppRoleParams.md +1 -1
package/docs/api/interfaces/RoleBasedRouterContextType.md +1 -1
package/docs/api/interfaces/RoleBasedRouterProps.md +1 -1
package/docs/api/interfaces/RoleManagementResult.md +1 -1
package/docs/api/interfaces/RouteAccessRecord.md +1 -1
package/docs/api/interfaces/RouteConfig.md +1 -1
package/docs/api/interfaces/RuntimeComplianceResult.md +1 -1
package/docs/api/interfaces/SecureDataContextType.md +9 -9
package/docs/api/interfaces/SecureDataProviderProps.md +8 -8
package/docs/api/interfaces/SessionRestorationLoaderProps.md +3 -3
package/docs/api/interfaces/SetupIssue.md +1 -1
package/docs/api/interfaces/StorageConfig.md +1 -1
package/docs/api/interfaces/StorageFileInfo.md +1 -1
package/docs/api/interfaces/StorageFileMetadata.md +1 -1
package/docs/api/interfaces/StorageListOptions.md +1 -1
package/docs/api/interfaces/StorageListResult.md +1 -1
package/docs/api/interfaces/StorageUploadOptions.md +1 -1
package/docs/api/interfaces/StorageUploadResult.md +1 -1
package/docs/api/interfaces/StorageUrlOptions.md +1 -1
package/docs/api/interfaces/StyleImport.md +1 -1
package/docs/api/interfaces/SwitchProps.md +1 -1
package/docs/api/interfaces/TabsContentProps.md +1 -1
package/docs/api/interfaces/TabsListProps.md +1 -1
package/docs/api/interfaces/TabsProps.md +1 -1
package/docs/api/interfaces/TabsTriggerProps.md +3 -3
package/docs/api/interfaces/TextareaProps.md +1 -1
package/docs/api/interfaces/ToastActionElement.md +4 -1
package/docs/api/interfaces/ToastProps.md +1 -1
package/docs/api/interfaces/UnifiedAuthContextType.md +58 -55
package/docs/api/interfaces/UnifiedAuthProviderProps.md +15 -13
package/docs/api/interfaces/UseFormDialogOptions.md +1 -1
package/docs/api/interfaces/UseFormDialogReturn.md +1 -1
package/docs/api/interfaces/UseInactivityTrackerOptions.md +11 -9
package/docs/api/interfaces/UseInactivityTrackerReturn.md +8 -8
package/docs/api/interfaces/UsePublicEventLogoOptions.md +6 -6
package/docs/api/interfaces/UsePublicEventLogoReturn.md +9 -6
package/docs/api/interfaces/UsePublicEventOptions.md +3 -3
package/docs/api/interfaces/UsePublicEventReturn.md +8 -5
package/docs/api/interfaces/UsePublicFileDisplayOptions.md +4 -4
package/docs/api/interfaces/UsePublicFileDisplayReturn.md +12 -9
package/docs/api/interfaces/UsePublicRouteParamsReturn.md +10 -7
package/docs/api/interfaces/UseResolvedScopeOptions.md +1 -1
package/docs/api/interfaces/UseResolvedScopeReturn.md +1 -1
package/docs/api/interfaces/UseResourcePermissionsOptions.md +1 -1
package/docs/api/interfaces/UserEventAccess.md +14 -11
package/docs/api/interfaces/UserMenuProps.md +8 -6
package/docs/api/interfaces/UserProfile.md +1 -1
package/docs/api/modules.md +575 -634
package/docs/architecture/database-schema-requirements.md +161 -0
package/docs/core-concepts/rbac-system.md +3 -3
package/docs/documentation-index.md +2 -4
package/docs/getting-started/cursor-rules.md +2 -1
package/docs/migration/DOCUMENTATION_STRUCTURE.md +441 -0
package/docs/migration/MIGRATION_GUIDE.md +2 -24
package/docs/migration/README.md +52 -6
package/docs/migration/V0.5.190_TO_V0.6.1_MIGRATION.md +1153 -0
package/docs/migration/database-changes-december-2025.md +3 -3
package/docs/rbac/event-based-apps.md +1 -1
package/docs/rbac/getting-started.md +1 -1
package/docs/rbac/quick-start.md +1 -1
package/docs/standards/README.md +1 -0
package/package.json +2 -1
package/scripts/audit/core/checks/accessibility.cjs +197 -0
package/scripts/audit/core/checks/api-usage.cjs +191 -0
package/scripts/audit/core/checks/bundle.cjs +142 -0
package/scripts/{check-pace-core-compliance.cjs → audit/core/checks/compliance.cjs} +714 -687
package/scripts/audit/core/checks/config.cjs +54 -0
package/scripts/audit/core/checks/coverage.cjs +84 -0
package/scripts/audit/core/checks/dependencies.cjs +454 -0
package/scripts/audit/core/checks/documentation.cjs +203 -0
package/scripts/audit/core/checks/environment.cjs +128 -0
package/scripts/audit/core/checks/error-handling.cjs +299 -0
package/scripts/audit/core/checks/forms.cjs +172 -0
package/scripts/audit/core/checks/heuristics.cjs +68 -0
package/scripts/audit/core/checks/hooks.cjs +334 -0
package/scripts/audit/core/checks/imports.cjs +244 -0
package/scripts/audit/core/checks/performance.cjs +325 -0
package/scripts/audit/core/checks/routes.cjs +117 -0
package/scripts/audit/core/checks/state.cjs +130 -0
package/scripts/audit/core/checks/structure.cjs +65 -0
package/scripts/audit/core/checks/style.cjs +584 -0
package/scripts/audit/core/checks/testing.cjs +122 -0
package/scripts/audit/core/checks/typescript.cjs +61 -0
package/scripts/audit/core/scanner.cjs +199 -0
package/scripts/audit/core/utils.cjs +137 -0
package/scripts/audit/index.cjs +223 -0
package/scripts/audit/reporters/console.cjs +151 -0
package/scripts/audit/reporters/json.cjs +54 -0
package/scripts/audit/reporters/markdown.cjs +124 -0
package/scripts/audit-consuming-app.cjs +61 -936
package/scripts/build-docs/build-decision.js +240 -0
package/scripts/build-docs/cache-utils.js +105 -0
package/scripts/build-docs/content-normalization.js +150 -0
package/scripts/build-docs/file-utils.js +105 -0
package/scripts/build-docs/git-utils.js +86 -0
package/scripts/build-docs/hash-utils.js +116 -0
package/scripts/build-docs/typedoc-runner.js +220 -0
package/scripts/build-docs-incremental.js +77 -913
package/scripts/utils/command-runner.js +16 -11
package/scripts/validate-formats.js +61 -56
package/scripts/validate-master.js +74 -69
package/scripts/validate-pre-publish.js +70 -65
package/src/__tests__/hooks/usePermissions.test.ts +2 -2
package/src/components/Alert/Alert.test.tsx +12 -18
package/src/components/Alert/Alert.tsx +5 -7
package/src/components/Avatar/Avatar.test.tsx +4 -4
package/src/components/Badge/Badge.tsx +14 -0
package/src/components/Button/Button.tsx +22 -0
package/src/components/Calendar/Calendar.tsx +8 -2
package/src/components/Card/Card.tsx +4 -0
package/src/components/Checkbox/Checkbox.test.tsx +12 -12
package/src/components/Checkbox/Checkbox.tsx +2 -2
package/src/components/DataTable/DataTable.tsx +38 -4
package/src/components/DataTable/__tests__/DataTableCore.test-setup.ts +5 -6
package/src/components/DataTable/__tests__/pagination.modes.test.tsx +18 -4
package/src/components/DataTable/__tests__/test-utils/sharedTestUtils.tsx +2 -3
package/src/components/DataTable/components/AccessDeniedPage.tsx +16 -25
package/src/components/DataTable/components/ActionButtons.tsx +10 -7
package/src/components/DataTable/components/BulkOperationsDropdown.tsx +1 -1
package/src/components/DataTable/components/ColumnFilter.tsx +10 -0
package/src/components/DataTable/components/ColumnVisibilityDropdown.tsx +12 -0
package/src/components/DataTable/components/DataTableBody.tsx +8 -0
package/src/components/DataTable/components/DataTableCore.tsx +196 -554
package/src/components/DataTable/components/DataTableErrorBoundary.tsx +11 -0
package/src/components/DataTable/components/DataTableLayout.tsx +559 -0
package/src/components/DataTable/components/DataTableModals.tsx +8 -0
package/src/components/DataTable/components/DataTableToolbar.tsx +8 -0
package/src/components/DataTable/components/DraggableColumnHeader.tsx +12 -0
package/src/components/DataTable/components/EditFields.tsx +307 -0
package/src/components/DataTable/components/EditableRow.tsx +8 -0
package/src/components/DataTable/components/EmptyState.tsx +10 -0
package/src/components/DataTable/components/FilterRow.tsx +12 -0
package/src/components/DataTable/components/GroupHeader.tsx +12 -0
package/src/components/DataTable/components/GroupingDropdown.tsx +12 -0
package/src/components/DataTable/components/ImportModal.tsx +7 -0
package/src/components/DataTable/components/LoadingState.tsx +6 -0
package/src/components/DataTable/components/PaginationControls.tsx +16 -1
package/src/components/DataTable/components/RowComponent.tsx +391 -0
package/src/components/DataTable/components/UnifiedTableBody.tsx +61 -849
package/src/components/DataTable/components/VirtualizedDataTable.tsx +16 -4
package/src/components/DataTable/components/__tests__/AccessDeniedPage.test.tsx +4 -2
package/src/components/DataTable/components/cellValueUtils.ts +40 -0
package/src/components/DataTable/components/hooks/useImportModalFocus.ts +53 -0
package/src/components/DataTable/components/hooks/usePermissionTracking.ts +126 -0
package/src/components/DataTable/context/DataTableContext.tsx +50 -0
package/src/components/DataTable/core/ColumnFactory.ts +31 -0
package/src/components/DataTable/core/DataTableContext.tsx +32 -1
package/src/components/DataTable/hooks/useColumnOrderPersistence.ts +10 -0
package/src/components/DataTable/hooks/useColumnReordering.ts +12 -0
package/src/components/DataTable/hooks/useColumnVisibilityPersistence.ts +10 -0
package/src/components/DataTable/hooks/useDataTableDataPipeline.ts +16 -0
package/src/components/DataTable/hooks/useDataTablePermissions.ts +124 -32
package/src/components/DataTable/hooks/useDataTableState.ts +35 -1
package/src/components/DataTable/hooks/useEffectiveColumnOrder.ts +12 -0
package/src/components/DataTable/hooks/useServerSideDataEffect.ts +11 -0
package/src/components/DataTable/hooks/useTableColumns.ts +8 -0
package/src/components/DataTable/hooks/useTableHandlers.ts +14 -0
package/src/components/DataTable/styles.ts +6 -6
package/src/components/DataTable/types.ts +6 -10
package/src/components/DataTable/utils/a11yUtils.ts +7 -0
package/src/components/DataTable/utils/debugTools.ts +18 -113
package/src/components/DataTable/utils/errorHandling.ts +12 -0
package/src/components/DataTable/utils/exportUtils.ts +9 -0
package/src/components/DataTable/utils/flexibleImport.ts +12 -48
package/src/components/DataTable/utils/paginationUtils.ts +8 -0
package/src/components/DataTable/utils/performanceUtils.ts +5 -1
package/src/components/Dialog/Dialog.tsx +2 -2
package/src/components/ErrorBoundary/ErrorBoundary.test.tsx +180 -1
package/src/components/ErrorBoundary/ErrorBoundary.tsx +45 -5
package/src/components/ErrorBoundary/ErrorBoundaryContext.tsx +129 -0
package/src/components/ErrorBoundary/index.ts +27 -2
package/src/components/EventSelector/EventSelector.tsx +3 -0
package/src/components/FileDisplay/FileDisplay.tsx +32 -18
package/src/components/FileUpload/FileUpload.tsx +22 -2
package/src/components/Footer/Footer.test.tsx +16 -16
package/src/components/Footer/Footer.tsx +14 -11
package/src/components/Form/Form.tsx +1 -0
package/src/components/Header/Header.tsx +21 -10
package/src/components/Input/Input.test.tsx +2 -2
package/src/components/Input/Input.tsx +8 -4
package/src/components/LoadingSpinner/LoadingSpinner.test.tsx +4 -4
package/src/components/LoginForm/LoginForm.tsx +4 -0
package/src/components/NavigationMenu/NavigationMenu.tsx +14 -513
package/src/components/NavigationMenu/types.ts +56 -0
package/src/components/NavigationMenu/useNavigationFiltering.ts +390 -0
package/src/components/OrganisationSelector/OrganisationSelector.tsx +3 -0
package/src/components/PaceAppLayout/PaceAppLayout.test.tsx +4 -2
package/src/components/PaceAppLayout/PaceAppLayout.tsx +32 -11
package/src/components/PaceAppLayout/test-setup.tsx +1 -2
package/src/components/PaceLoginPage/PaceLoginPage.tsx +3 -0
package/src/components/PasswordChange/PasswordChangeForm.tsx +9 -0
package/src/components/ProtectedRoute/ProtectedRoute.tsx +3 -9
package/src/components/PublicLayout/PublicPageLayout.tsx +2 -5
package/src/components/PublicLayout/PublicPageProvider.tsx +4 -0
package/src/components/Select/Select.tsx +80 -434
package/src/components/Select/context.ts +23 -0
package/src/components/Select/hooks/useSelectEvents.ts +87 -0
package/src/components/Select/hooks/useSelectSearch.ts +91 -0
package/src/components/Select/hooks/useSelectState.ts +104 -0
package/src/components/Select/index.ts +9 -1
package/src/components/Select/types.ts +123 -0
package/src/components/Select/utils/text.ts +26 -0
package/src/components/SessionRestorationLoader/SessionRestorationLoader.tsx +4 -5
package/src/components/Switch/Switch.tsx +4 -4
package/src/components/Tabs/Tabs.tsx +1 -1
package/src/components/Toast/Toast.tsx +4 -0
package/src/components/Tooltip/Tooltip.tsx +2 -2
package/src/components/UserMenu/UserMenu.test.tsx +24 -11
package/src/components/UserMenu/UserMenu.tsx +21 -18
package/src/components/index.ts +2 -2
package/src/hooks/__tests__/index.unit.test.ts +2 -5
package/src/hooks/index.ts +1 -2
package/src/hooks/public/usePublicEvent.ts +4 -0
package/src/hooks/public/usePublicEventLogo.ts +4 -0
package/src/hooks/public/usePublicFileDisplay.ts +4 -0
package/src/hooks/public/usePublicRouteParams.ts +4 -0
package/src/hooks/services/useAuth.ts +32 -0
package/src/hooks/services/useCurrentEvent.ts +6 -0
package/src/hooks/services/useCurrentOrganisation.ts +6 -0
package/src/hooks/useDebounce.ts +9 -0
package/src/hooks/useEventTheme.ts +6 -0
package/src/hooks/useFileDisplay.ts +4 -0
package/src/hooks/useFileReference.ts +25 -7
package/src/hooks/useFileUrl.ts +11 -1
package/src/hooks/useFocusManagement.ts +14 -0
package/src/hooks/useFocusTrap.ts +3 -0
package/src/hooks/useInactivityTracker.ts +3 -0
package/src/hooks/useKeyboardShortcuts.ts +4 -0
package/src/hooks/useOrganisationPermissions.ts +4 -0
package/src/hooks/useOrganisationSecurity.ts +4 -0
package/src/hooks/usePerformanceMonitor.ts +4 -0
package/src/hooks/usePermissionCache.ts +7 -0
package/src/hooks/useQueryCache.ts +12 -1
package/src/hooks/useSessionRestoration.ts +4 -0
package/src/hooks/useStorage.ts +4 -0
package/src/hooks/useToast.ts +1 -1
package/src/index.ts +2 -1
package/src/providers/__tests__/OrganisationProvider.test.tsx +92 -70
package/src/providers/services/AuthServiceProvider.tsx +18 -0
package/src/providers/services/EventServiceProvider.tsx +18 -0
package/src/providers/services/InactivityServiceProvider.tsx +18 -0
package/src/providers/services/OrganisationServiceProvider.tsx +18 -0
package/src/providers/services/UnifiedAuthProvider.tsx +36 -0
package/src/providers/services/__tests__/AuthServiceProvider.integration.test.tsx +29 -13
package/src/rbac/README.md +1 -1
package/src/rbac/__tests__/adapters.comprehensive.test.tsx +2 -2
package/src/rbac/__tests__/scenarios.user-role.test.tsx +4 -5
package/src/rbac/adapters.tsx +14 -5
package/src/rbac/api.ts +100 -67
package/src/rbac/components/NavigationProvider.tsx +4 -1
package/src/rbac/components/PagePermissionGuard.tsx +157 -17
package/src/rbac/components/RoleBasedRouter.tsx +5 -1
package/src/rbac/components/SecureDataProvider.test.tsx +84 -49
package/src/rbac/components/SecureDataProvider.tsx +20 -5
package/src/rbac/components/__tests__/PagePermissionGuard.race-condition.test.tsx +24 -14
package/src/rbac/components/__tests__/PagePermissionGuard.test.tsx +7 -0
package/src/rbac/components/__tests__/PagePermissionGuard.verification.test.tsx +14 -6
package/src/rbac/components/__tests__/RoleBasedRouter.test.tsx +15 -4
package/src/rbac/components/__tests__/SecureDataProvider.fixed.test.tsx +148 -24
package/src/rbac/components/__tests__/SecureDataProvider.test.tsx +81 -15
package/src/rbac/engine.ts +38 -14
package/src/rbac/hooks/permissions/index.ts +7 -0
package/src/rbac/hooks/permissions/useAccessLevel.ts +105 -0
package/src/rbac/hooks/permissions/useCachedPermissions.ts +79 -0
package/src/rbac/hooks/permissions/useCan.ts +347 -0
package/src/rbac/hooks/permissions/useHasAllPermissions.ts +90 -0
package/src/rbac/hooks/permissions/useHasAnyPermission.ts +90 -0
package/src/rbac/hooks/permissions/useMultiplePermissions.ts +93 -0
package/src/rbac/hooks/permissions/usePermissions.ts +253 -0
package/src/rbac/hooks/useCan.test.ts +71 -64
package/src/rbac/hooks/usePermissions.ts +14 -995
package/src/rbac/hooks/useResourcePermissions.test.ts +54 -18
package/src/rbac/hooks/useResourcePermissions.ts +14 -4
package/src/rbac/hooks/useSecureSupabase.ts +33 -13
package/src/rbac/permissions.ts +0 -30
package/src/rbac/secureClient.ts +200 -61
package/src/rbac/types.ts +8 -0
package/src/theming/__tests__/parseEventColours.test.ts +6 -9
package/src/theming/parseEventColours.ts +5 -19
package/src/types/vitest-globals.d.ts +51 -26
package/src/utils/__mocks__/supabaseMock.ts +1 -3
package/src/utils/__tests__/formatting.unit.test.ts +4 -4
package/src/utils/__tests__/index.unit.test.ts +2 -2
package/src/utils/audit/audit.ts +0 -3
package/src/utils/core/cn.ts +1 -1
package/src/utils/file-reference/index.ts +53 -1
package/src/utils/formatting/formatting.ts +8 -18
package/src/utils/index.ts +0 -1
package/dist/chunk-3QRJFVBR.js.map +0 -1
package/dist/chunk-3XTALGJF.js.map +0 -1
package/dist/chunk-4N5C5XZU.js.map +0 -1
package/dist/chunk-4ZC4GX36.js.map +0 -1
package/dist/chunk-BYFSK72L.js.map +0 -1
package/dist/chunk-EXUD6RNJ.js +0 -451
package/dist/chunk-EXUD6RNJ.js.map +0 -1
package/dist/chunk-GLK6VM3F.js.map +0 -1
package/dist/chunk-I7PSE6JW.js.map +0 -1
package/dist/chunk-JBKQ3SAO.js.map +0 -1
package/dist/chunk-KNC55RTG.js.map +0 -1
package/dist/chunk-LXQLPRQ2.js.map +0 -1
package/dist/chunk-R77UEZ4E.js.map +0 -1
package/dist/chunk-SQGMNID3.js.map +0 -1
package/dist/chunk-T33XF5ZC.js.map +0 -1
package/dist/chunk-XM25TVIE.js.map +0 -1
package/docs/api/classes/ErrorBoundary.md +0 -144
package/docs/migration/quick-migration-guide.md +0 -356
package/docs/migration/service-architecture.md +0 -281
package/src/hooks/__tests__/useSecureDataAccess.unit.test.tsx +0 -680
package/src/hooks/useSecureDataAccess.test.ts +0 -559
package/src/hooks/useSecureDataAccess.ts +0 -681
/package/dist/{DataTable-DQ7RSOHE.js.map → DataTable-TPTKCX4D.js.map} +0 -0
/package/dist/{UnifiedAuthProvider-ATAP5UTR.js.map → UnifiedAuthProvider-CH6Z342H.js.map} +0 -0
/package/dist/{api-N774RPUA.js.map → api-MVVQZLJI.js.map} +0 -0
/package/docs/migration/{organisation-context-timing-fix.md → V0.3.44_organisation-context-timing-fix.md} +0 -0
/package/docs/migration/{rbac-migration.md → V0.4.0_rbac-migration.md} +0 -0
/package/docs/migration/{person-scoped-profiles-migration-guide.md → V0.5.190_person-scoped-profiles-migration-guide.md} +0 -0
/package/docs/migration/{REACT_19_MIGRATION.md → V0.6.0_REACT_19_MIGRATION.md} +0 -0

package/src/components/NavigationMenu/useNavigationFiltering.ts ADDED Viewed

@@ -0,0 +1,390 @@
+import * as React from "react";
+import { useUnifiedAuth } from "../../providers/services/UnifiedAuthProvider";
+import { useRBAC } from "../../rbac/hooks/useRBAC";
+import { useResolvedScope } from "../../rbac/hooks";
+import { usePermissions } from "../../rbac/hooks/usePermissions";
+import type {
+  Permission,
+  AccessLevel as RBACAccessLevel,
+  UUID,
+  PermissionMap,
+} from "../../rbac/types";
+import { logger } from "../../utils/core/logger";
+import type { NavigationItem } from "./types";
+/**
+ * Options for the useNavigationFiltering hook.
+ */
+interface UseNavigationFilteringOptions {
+  items: NavigationItem[];
+  itemsPreFiltered?: boolean;
+  auditLog?: boolean;
+}
+/**
+ * Return value of the useNavigationFiltering hook.
+ */
+interface UseNavigationFilteringResult {
+  authContext: ReturnType<typeof useUnifiedAuth> | null;
+  rbacContext: ReturnType<typeof useRBAC> | null;
+  filteredItems: NavigationItem[];
+  permissionMap: PermissionMap;
+  hasAnyPermission: ((permissions: Permission[]) => boolean) | null;
+}
+/**
+ * Hook for filtering navigation items based on RBAC permissions.
+ * Filters navigation items to show only those the user has access to.
+ *
+ * @param options - Navigation filtering configuration
+ * @returns Filtered navigation items and permission context
+ */
+export function useNavigationFiltering({
+  items,
+  itemsPreFiltered = false,
+  auditLog = true,
+}: UseNavigationFilteringOptions): UseNavigationFilteringResult {
+  const [resolvedAppId, setResolvedAppId] = React.useState<string | undefined>(undefined);
+  const previousFilteredItemsRef = React.useRef<NavigationItem[]>([]);
+  let authContext = null;
+  try {
+    authContext = useUnifiedAuth();
+  } catch (error) {
+    logger.warn(
+      "NavigationMenu",
+      "useUnifiedAuth not available, running in unauthenticated mode",
+    );
+  }
+  let rbacContext = null;
+  try {
+    rbacContext = useRBAC();
+  } catch (error) {
+    logger.warn(
+      "NavigationMenu",
+      "useRBAC not available, permission filtering disabled",
+    );
+  }
+  const eventLoadingRaw = authContext?.eventLoading;
+  const eventLoading = eventLoadingRaw ?? false;
+  const selectedEvent = authContext?.selectedEvent || null;
+  const orgContextReady =
+    authContext?.isContextReady ?? (authContext?.selectedOrganisation?.id ? true : false);
+  const { supabase } = authContext || {};
+  const { selectedOrganisation } = authContext || {};
+  const { resolvedScope, isLoading: scopeLoading, error: scopeError } = useResolvedScope({
+    supabase: itemsPreFiltered ? null : supabase || null,
+    selectedOrganisationId: itemsPreFiltered ? null : selectedOrganisation?.id || null,
+    selectedEventId: itemsPreFiltered ? null : selectedEvent?.event_id || null,
+  });
+  React.useEffect(() => {
+    if (
+      !scopeLoading &&
+      !resolvedScope?.appId &&
+      selectedOrganisation?.id &&
+      authContext?.appName &&
+      authContext?.user?.id &&
+      !resolvedAppId
+    ) {
+      if (!authContext.user || !authContext.appName) {
+        return;
+      }
+      const userId = authContext.user.id;
+      const appName = authContext.appName;
+      import("../../rbac/api")
+        .then(({ resolveAppContext }) => {
+          resolveAppContext({
+            userId,
+            appName,
+          })
+            .then((result) => {
+              if (result?.appId) {
+                setResolvedAppId(result.appId);
+              }
+            })
+            .catch(() => {});
+        })
+        .catch(() => {});
+    }
+  }, [
+    scopeLoading,
+    resolvedScope?.appId,
+    selectedOrganisation?.id,
+    authContext?.appName,
+    authContext?.user?.id,
+    resolvedAppId,
+  ]);
+  const effectiveScope = React.useMemo(() => {
+    if (resolvedScope?.organisationId) {
+      return resolvedScope;
+    }
+    if (selectedOrganisation?.id) {
+      const fallbackScope = {
+        organisationId: selectedOrganisation.id,
+        eventId: selectedEvent?.event_id || undefined,
+        appId: resolvedAppId,
+      };
+      return fallbackScope;
+    }
+    return null;
+  }, [resolvedScope, selectedOrganisation?.id, selectedEvent?.event_id, resolvedAppId]);
+  const scopeKey = effectiveScope
+    ? `${effectiveScope.organisationId || ""}-${effectiveScope.eventId || ""}-${
+        effectiveScope.appId || ""
+      }`
+    : "empty";
+  const stableScope = React.useMemo(() => {
+    if (effectiveScope?.organisationId) {
+      return {
+        organisationId: effectiveScope.organisationId,
+        eventId: effectiveScope.eventId,
+        appId: effectiveScope.appId,
+      };
+    }
+    return {
+      organisationId: "",
+      eventId: undefined,
+      appId: undefined,
+    };
+  }, [scopeKey, effectiveScope]);
+  const userId = (authContext?.user?.id || "") as UUID;
+  const {
+    permissions: permissionMap,
+    hasAnyPermission,
+    isLoading: permissionsLoading,
+    error: permissionsError,
+  } = usePermissions(
+    itemsPreFiltered ? (null as any) : userId,
+    itemsPreFiltered ? undefined : stableScope.organisationId,
+    itemsPreFiltered ? undefined : stableScope.eventId,
+    itemsPreFiltered ? undefined : stableScope.appId,
+  );
+  const filteredItems = React.useMemo(() => {
+    if (itemsPreFiltered && items && items.length > 0) {
+      const visibleItems = (items || []).filter((item) => !item.meta?.hidden);
+      previousFilteredItemsRef.current = visibleItems;
+      return visibleItems;
+    }
+    const isOrgContextReady = orgContextReady && selectedOrganisation?.id;
+    const isEventContextReady = eventLoadingRaw === undefined ? true : !eventLoading;
+    const hasValidContext = isOrgContextReady && isEventContextReady;
+    const shouldWaitForScope = scopeLoading || !hasValidContext;
+    const shouldRetryAfterError = scopeError && hasValidContext && !scopeLoading;
+    if (items && items.length > 0 && selectedOrganisation?.id) {
+      const visibleItems = (items || []).filter((item) => !item.meta?.hidden);
+      previousFilteredItemsRef.current = visibleItems;
+      return visibleItems;
+    }
+    if (!authContext || !rbacContext || (shouldWaitForScope && !shouldRetryAfterError)) {
+      return [];
+    }
+    if (permissionsLoading) {
+      if (previousFilteredItemsRef.current.length > 0) {
+        return previousFilteredItemsRef.current;
+      }
+      if (items && items.length > 0 && stableScope.organisationId) {
+        return (items || []).filter((item) => !item.meta?.hidden);
+      }
+      return [];
+    }
+    if (permissionsError) {
+      logger.warn(
+        "NavigationMenu",
+        "Permission check error - showing no items for security",
+        {
+          permissionsError: permissionsError?.message,
+        },
+      );
+      return [];
+    }
+    if (!permissionMap || Object.keys(permissionMap).length === 0) {
+      if (stableScope.organisationId && items && items.length > 0) {
+        return (items || []).filter((item) => !item.meta?.hidden);
+      }
+      if (stableScope.organisationId) {
+        logger.warn("NavigationMenu", "Permission map is empty and no items provided - showing nothing", {
+          permissionMapSize: 0,
+          organisationId: stableScope.organisationId,
+          eventId: stableScope.eventId,
+          appId: stableScope.appId,
+        });
+      }
+      return [];
+    }
+    const getPageIdFromHref = (href?: string): string | null => {
+      if (!href) return null;
+      const path = href.split("?")[0].split("#")[0].replace(/^\//, "");
+      return path || "home";
+    };
+    const hasItemPermission = (item: NavigationItem): boolean => {
+      if (item.permissions && item.permissions.length > 0 && !item.href) {
+        const permissions = item.permissions
+          .filter((p): p is string => typeof p === "string")
+          .map((p) => p as Permission);
+        if (permissions.length > 0) {
+          const hasPermission = hasAnyPermission?.(permissions);
+          if (!hasPermission) {
+            return false;
+          }
+        }
+      }
+      if (item.roles && item.roles.length > 0) {
+        const hasRole = item.roles.some((role) => {
+          if (typeof role !== "string") return true;
+          switch (role.toLowerCase()) {
+            case "super_admin":
+            case "super admin":
+              return rbacContext.isSuperAdmin;
+            case "org_admin":
+            case "org admin":
+            case "admin":
+              return rbacContext.isOrgAdmin || rbacContext.isSuperAdmin;
+            case "event_admin":
+            case "event admin":
+              return rbacContext.isEventAdmin || rbacContext.isSuperAdmin;
+            default:
+              return (
+                rbacContext.organisationRole === role ||
+                rbacContext.eventAppRole === role ||
+                rbacContext.isSuperAdmin
+              );
+          }
+        });
+        if (!hasRole) {
+          return false;
+        }
+      }
+      if (item.accessLevel) {
+        if (typeof item.accessLevel === "string") {
+          const accessLevel = item.accessLevel.toLowerCase() as RBACAccessLevel;
+          const userEventRole = rbacContext.eventAppRole;
+          if (!rbacContext.isSuperAdmin) {
+            const roleToAccessLevel: Record<string, RBACAccessLevel> = {
+              viewer: "viewer",
+              participant: "participant",
+              planner: "planner",
+              event_admin: "admin",
+            };
+            const userAccessLevel = userEventRole ? roleToAccessLevel[userEventRole] || "viewer" : null;
+            const levelHierarchy: Record<RBACAccessLevel, number> = {
+              viewer: 1,
+              participant: 2,
+              planner: 3,
+              admin: 4,
+              super: 5,
+            };
+            const requiredLevel = levelHierarchy[accessLevel] || 0;
+            const userLevel = userAccessLevel ? levelHierarchy[userAccessLevel] || 0 : 0;
+            if (userLevel < requiredLevel) {
+              return false;
+            }
+          }
+        }
+      }
+      if (item.href) {
+        const pageId = item.pageId || getPageIdFromHref(item.href);
+        if (pageId) {
+          const pagePermission: Permission = `read:page.${pageId}` as Permission;
+          const isSuperAdmin = permissionMap["*"] === true;
+          const hasPagePermission = permissionMap[pagePermission] === true;
+          const finalHasPermission = isSuperAdmin || hasPagePermission;
+          if (!finalHasPermission) {
+            return false;
+          }
+        }
+      }
+      return true;
+    };
+    const filterItem = (item: NavigationItem): NavigationItem | null => {
+      if (item.meta?.hidden) return null;
+      if (!hasItemPermission(item)) return null;
+      let filteredChildren: NavigationItem[] | undefined;
+      if (item.children && item.children.length > 0) {
+        filteredChildren = item.children
+          .map((child) => filterItem(child))
+          .filter((child): child is NavigationItem => child !== null);
+        if (filteredChildren.length === 0 && !item.href) {
+          return null;
+        }
+      }
+      return {
+        ...item,
+        children: filteredChildren,
+      };
+    };
+    const filtered = (items || [])
+      .map((item) => filterItem(item))
+      .filter((item): item is NavigationItem => item !== null);
+    previousFilteredItemsRef.current = filtered;
+    return filtered;
+  }, [
+    items,
+    itemsPreFiltered,
+    authContext,
+    rbacContext,
+    permissionMap,
+    hasAnyPermission,
+    scopeLoading,
+    scopeError,
+    permissionsLoading,
+    resolvedScope,
+    effectiveScope,
+    auditLog,
+    eventLoadingRaw,
+    eventLoading,
+    selectedEvent,
+    orgContextReady,
+    selectedOrganisation?.id,
+    permissionsError,
+    stableScope.organisationId,
+    stableScope.eventId,
+    stableScope.appId,
+  ]);
+  return {
+    authContext,
+    rbacContext,
+    filteredItems,
+    permissionMap,
+    hasAnyPermission: hasAnyPermission || null,
+  };
+}

package/src/components/OrganisationSelector/OrganisationSelector.tsx CHANGED Viewed

@@ -63,6 +63,9 @@ import { useOrganisations } from '../../hooks/useOrganisations';
 import type { Organisation } from '../../types/organisation';
 import { logger } from '../../utils/core/logger';
+/**
+ * Props for the OrganisationSelector component.
+ */
 export interface OrganisationSelectorProps {
   /** Placeholder text for the dropdown */
   placeholder?: string;

package/src/components/PaceAppLayout/PaceAppLayout.test.tsx CHANGED Viewed

@@ -889,7 +889,7 @@ describe('PaceAppLayout Component', () => {
       );
       await waitFor(() => {
-        // useCan is called with userId, scope, permission, pageId, useCache, appName
+        // useCan is called with userId, scope, permission, pageId, useCache, precomputedSuperAdmin, appName
         expect(mockUseCan).toHaveBeenCalledWith(
           'user-123',
           expect.objectContaining({
@@ -900,6 +900,7 @@ describe('PaceAppLayout Component', () => {
           'update:page.dashboard-page',
           'dashboard-page',
           true,
+          expect.any(Boolean), // precomputedSuperAdmin - can be false, null, or undefined during checks
           'Test App'
         );
       }, { timeout: 2000 });
@@ -921,7 +922,7 @@ describe('PaceAppLayout Component', () => {
       );
       await waitFor(() => {
-        // useCan is called with userId, scope, permission, pageId, useCache, appName
+        // useCan is called with userId, scope, permission, pageId, useCache, precomputedSuperAdmin, appName
         // Uses defaultPermission "create" since /dashboard is not in routePermissions
         expect(mockUseCan).toHaveBeenCalledWith(
           'user-123',
@@ -933,6 +934,7 @@ describe('PaceAppLayout Component', () => {
           'create:page.dashboard',
           'dashboard',
           true,
+          expect.any(Boolean), // precomputedSuperAdmin - can be false, null, or undefined during checks
           'Test App'
         );
       }, { timeout: 2000 });

package/src/components/PaceAppLayout/PaceAppLayout.tsx CHANGED Viewed

@@ -121,6 +121,10 @@ import type { PasswordChangeFormError } from '../PasswordChange/PasswordChangeFo
 // Define Operation type locally since old RBAC types are removed
 type Operation = 'read' | 'create' | 'update' | 'delete' | 'manage';
+/**
+ * Props for the PaceAppLayout component.
+ * Configures the application layout including navigation, header, and footer.
+ */
 export interface PaceAppLayoutProps {
   /** The name of the application to be displayed in the header. */
   appName: string;
@@ -524,12 +528,15 @@ export function PaceAppLayout({
   // Pass appName to useCan so it can be passed to isPermitted for PORTAL/ADMIN special case
   // Only check permissions if enforcePermissions is true and we have a valid permission string
   const shouldCheckPermission = enforcePermissions && !!currentPermission && !!currentPageId;
+  // Pass super admin status to avoid duplicate check - use null if still checking, false/true if known
+  const superAdminStatus = isSuperAdminFromRBAC ? true : (isCheckingSuperAdminDirect ? null : isSuperAdminDirect);
   const { can: canFromHook, isLoading: isCheckingPermission, error: permissionError } = useCan(
     user?.id || '',
     scope,
     shouldCheckPermission ? currentPermission : ('' as Permission),
     shouldCheckPermission ? currentPageId : '',
     true, // useCache
+    superAdminStatus, // Pass super admin status to avoid duplicate check
     appName // Pass appName for PORTAL/ADMIN special case
   );
@@ -817,25 +824,39 @@ export function PaceAppLayout({
   }, [roleBasedRouting, routeConfig, location.pathname, strictMode, user?.id, fallbackRoute, scope, navigate, auditLog, onRouteAccessDenied, onRouteStrictModeViolation]);
   const handleSignOut = async () => {
-    await signOut();
+    try {
+      await signOut();
+    } catch (error) {
+      logger.error('PaceAppLayout', 'Failed to sign out', { error: error instanceof Error ? error.message : String(error) });
+    }
   };
   const handleChangePassword = async (newPassword: string, confirmPassword: string) => {
-    // The form component in UserMenu already checks for matching passwords
-    const result = await updatePassword(newPassword);
-    if (result?.error) {
-      // The form will display the error message
-      logger.error('PaceAppLayout', 'Failed to change password', { error: result.error.message });
-      // Convert AuthError to PasswordChangeFormError
+    try {
+      // The form component in UserMenu already checks for matching passwords
+      const result = await updatePassword(newPassword);
+      if (result?.error) {
+        // The form will display the error message
+        logger.error('PaceAppLayout', 'Failed to change password', { error: result.error.message });
+        // Convert AuthError to PasswordChangeFormError
+        return {
+          error: {
+            message: result.error.message,
+            code: result.error.name || 'PASSWORD_UPDATE_ERROR'
+          }
+        };
+      }
+      // The form will handle closing the modal on success
+      return {};
+    } catch (error) {
+      logger.error('PaceAppLayout', 'Failed to change password', { error: error instanceof Error ? error.message : String(error) });
       return {
         error: {
-          message: result.error.message,
-          code: result.error.name || 'PASSWORD_UPDATE_ERROR'
+          message: error instanceof Error ? error.message : 'An unexpected error occurred',
+          code: 'PASSWORD_UPDATE_ERROR'
         }
       };
     }
-    // The form will handle closing the modal on success
-    return {};
   };
   // CRITICAL: Wait for organisation context to be ready before proceeding

package/src/components/PaceAppLayout/test-setup.tsx CHANGED Viewed

@@ -1,3 +1,4 @@
+/// <reference types="vitest/globals" />
 /**
  * @file Shared Test Setup for PaceAppLayout Tests
  * @package @jmruthers/pace-core
@@ -10,8 +11,6 @@
  * provides the shared mock data and reset functions that can be imported and used
  * in the vi.mock() factory functions.
  */
-import { vi } from 'vitest';
 import React from 'react';
 // === MOCK DATA ===

package/src/components/PaceLoginPage/PaceLoginPage.tsx CHANGED Viewed

@@ -131,6 +131,9 @@ import { clearPalette } from '../../theming/runtime';
 import { EventServiceContext } from '../../providers/services/EventServiceProvider';
 import { logger } from '../../utils/core/logger';
+/**
+ * Props for the PaceLoginPage component.
+ */
 export interface PaceLoginPageProps {
   /** The name of the application to be displayed on the login form. */
   appName: string;

package/src/components/PasswordChange/PasswordChangeForm.tsx CHANGED Viewed

@@ -103,16 +103,25 @@ import { Input } from '../Input/Input';
 import { Label } from '../Label';
 import { cn } from '../../utils/core/cn';
+/**
+ * Form values for password change.
+ */
 export interface PasswordChangeFormValues {
   newPassword: string;
   confirmPassword: string;
 }
+/**
+ * Error structure for password change form.
+ */
 export interface PasswordChangeFormError {
   message?: string;
   code?: string;
 }
+/**
+ * Props for the PasswordChangeForm component.
+ */
 export interface PasswordChangeFormProps {
   onSubmit: (values: PasswordChangeFormValues) => Promise<{ error?: PasswordChangeFormError }>;
   className?: string;

package/src/components/ProtectedRoute/ProtectedRoute.tsx CHANGED Viewed

@@ -79,6 +79,9 @@ import { Alert, AlertDescription, AlertTitle } from '../Alert/Alert';
 import { logger } from '../../utils/core/logger';
 import { usePreventTabReload } from '../../hooks/usePreventTabReload';
+/**
+ * Props for the ProtectedRoute component.
+ */
 export interface ProtectedRouteProps {
   /**
    * Whether an event is required for routes inside this component.
@@ -88,14 +91,6 @@ export interface ProtectedRouteProps {
    */
   requireEvent?: boolean;
-  /**
-   * Whether super admins can bypass event requirement.
-   * Note: This feature requires additional RBAC setup. For simple bypass, set requireEvent={false} instead.
-   * @default false
-   * @deprecated Use requireEvent={false} for routes that don't need events
-   */
-  allowSuperAdminBypass?: boolean;
   /**
    * Custom component to render when no events are available.
    * If not provided, a default message is shown.
@@ -133,7 +128,6 @@ export interface ProtectedRouteProps {
  */
 export function ProtectedRoute({
   requireEvent = false,
-  allowSuperAdminBypass = false,
   noEventsFallback,
   loadingFallback,
   loginPath = '/login'

package/src/components/PublicLayout/PublicPageLayout.tsx CHANGED Viewed

@@ -35,9 +35,9 @@
  *       refetch={refetch}
  *     >
  *       <h1>Event Details</h1>
- *       <div className="content">
+ *       <main className="content">
  *         Your public page content
- *       </div>
+ *       </main>
  *     </PublicPageLayout>
  *   );
  * }
@@ -90,8 +90,6 @@ export interface PublicPageLayoutProps {
   refetch?: () => Promise<void> | void;
   /** Whether to show the footer (default: true) */
   showFooter?: boolean;
-  /** @deprecated Custom CSS classes for the layout - no longer used as wrapper div was removed */
-  className?: string;
   /** Custom error fallback component */
   errorFallback?: React.ComponentType<{ error: Error; retry: () => void }>;
   /** Custom loading fallback component */
@@ -294,7 +292,6 @@ export function PublicPageLayout({
   error = null,
   refetch,
   showFooter = true,
-  className = '',
   errorFallback: ErrorFallback,
   loadingFallback: LoadingFallback,
   customHeader,

package/src/components/PublicLayout/PublicPageProvider.tsx CHANGED Viewed

@@ -50,6 +50,10 @@ interface PublicPageContextType {
   };
 }
+/**
+ * Context for public pages.
+ * Provides isolated context for public pages without authentication requirements.
+ */
 export const PublicPageContext = createContext<PublicPageContextType | undefined>(undefined);
 export interface PublicPageProviderProps {