@jmruthers/pace-core 0.6.2 → 0.6.3

package/CHANGELOG.md

@@ -7,6 +7,51 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+### Added
+- **Unified Context Selector**: New `ContextSelector` component that intelligently shows all accessible organisations and events in a single dropdown. Replaces the need for separate `OrganisationSelector`, `EventSelector`, and `HybridContextSelector` components.
+  - Automatically determines what to show based on user's roles and permissions
+  - Shows superset of all accessible orgs and events
+  - Works for all app types (org-based, event-based, hybrid)
+  - Used by default in `Header` and `PaceAppLayout` components
+
+### Changed
+- **Header Component**: Now uses unified `ContextSelector` by default instead of separate `OrganisationSelector` and `EventSelector`
+  - New prop: `showContextSelector` (default: `true`) - replaces `showEventSelector` and `showOrgSelector`
+- **PaceAppLayout Component**: Now uses unified `ContextSelector` by default
+  - New prop: `showContextSelector` (default: `true`)
+
+### Removed
+- **OrganisationSelector**: Removed - use `ContextSelector` instead
+- **EventSelector**: Removed - use `ContextSelector` instead
+- **HybridContextSelector**: Removed - use `ContextSelector` instead
+- **Header.showEventSelector**: Removed - use `showContextSelector` instead
+- **Header.showOrgSelector**: Removed - use `showContextSelector` instead
+- **PaceAppLayout.showEventSelector**: Removed - use `showContextSelector` instead
+- **PaceAppLayout.showOrgSelector**: Removed - use `showContextSelector` instead
+
+### Breaking Changes
+- **RBAC Scope Migration**: App-level scope (`rbac_apps.requires_event`) has been removed. All scope is now page-level only (`rbac_app_pages.scope_type`).
+  - **Removed**: `UnifiedAuthProvider.appConfig` prop - scope is now determined per page
+  - **Removed**: `useAppConfig().requiresEvent` and `useAppConfig().supportsDirectAccess` - use `getPageScopeType()` instead
+  - **Removed**: `ContextValidator.validateScope()` - use `ContextValidator.resolveScopeForPage()` instead
+  - **Removed**: `ContextValidator.resolveRequiredContext()` - use `ContextValidator.resolveScopeForPage()` instead
+  - **Removed**: `ContextValidator.isContextReady()` - context readiness is now checked per page
+  - **Removed**: `RBACSecurityValidator.validateContextRequirements()` - no longer needed
+  - **Removed**: `getAppConfigByName()` - use `getPageScopeType()` instead
+  - **Changed**: `useRBAC()` now requires `pageId` parameter for proper scope resolution
+  - **Changed**: `getPermissionMap()`, `getRoleContext()`, and `getAccessLevel()` no longer accept `appConfig` parameter
+
+### Migration Required
+**⚠️ CRITICAL**: All consuming apps must migrate to page-level scope. See [RBAC Scope Migration Guide](./docs/migration/RBAC_SCOPE_MIGRATION.md) for detailed instructions.
+
+**Quick Steps:**
+1. Run database migration: `supabase/migrations/20251231130000_migrate_scope_to_page_level.sql`
+2. Update all pages in `rbac_app_pages` to have explicit `scope_type` set
+3. Remove `appConfig` prop from `UnifiedAuthProvider`
+4. Update `useRBAC(pageId)` calls to pass `pageId` parameter
+5. Replace `useAppConfig().requiresEvent` with `getPageScopeType(pageId)`
+6. Update any code using deprecated `ContextValidator` methods
+
 ### Removed
 - **DataTable Debug Tools Exports**: Removed all public exports from `packages/core/src/components/DataTable/utils/debugTools.ts` as they were unused. The debug tools functionality remains available internally for development but is no longer exported. Removed exports include:
   - `DebugLevel` enum

package/cursor-rules/00-pace-core-compliance.mdc

@@ -79,9 +79,41 @@ This guide ensures consuming apps use pace-core components, hooks, and utilities
 
 **You MUST use `useSecureSupabase()` for all database operations.** Never use the base Supabase client directly.
 
+**CRITICAL SECURITY REQUIREMENT:** Using `createClient()` from `@supabase/supabase-js` directly bypasses organisation context enforcement and RLS policies, which can lead to:
+- Cross-organisation data access
+- Security vulnerabilities  
+- Data leakage between organisations
+
 ```tsx
-// ❌ WRONG: import { createClient } from '@supabase/supabase-js'; const supabase = createClient(...);
-// ✅ CORRECT: import { useSecureSupabase } from '@jmruthers/pace-core/rbac'; const secureSupabase = useSecureSupabase();
+// ❌ WRONG: Direct Supabase client creation
+import { createClient } from '@supabase/supabase-js';
+const supabase = createClient(url, key);
+// This bypasses organisation context and RLS policies!
+
+// ✅ CORRECT: Use secure Supabase client
+import { useSecureSupabase } from '@jmruthers/pace-core/rbac';
+const secureSupabase = useSecureSupabase();
+// Organisation context is automatically enforced
+```
+
+### Detection and Enforcement
+
+pace-core provides multiple layers of protection:
+
+1. **ESLint Rule**: The `no-direct-supabase-client` rule detects `createClient` calls and reports errors
+2. **Runtime Warnings**: Development mode warnings when insecure clients are detected
+3. **Type Safety**: Use `isSecureClient()` to verify clients are secure
+
+```tsx
+// Verify client is secure (optional, but recommended)
+import { isSecureClient, warnIfInsecureClient } from '@jmruthers/pace-core/rbac/utils/clientSecurity';
+
+const supabase = useSecureSupabase();
+warnIfInsecureClient(supabase, 'MyComponent'); // Warns in dev if insecure
+
+if (isSecureClient(supabase)) {
+  // Client is secure, safe to use
+}
 ```
 
 ## MUST: Setup RBAC Before Use

package/dist/{AuthService-BPvc3Ka0.d.ts → AuthService-Cb34EQs3.d.ts}

@@ -93,6 +93,8 @@ interface IEventService {
  */
 
 declare class EventService extends BaseService implements IEventService {
+    private static instanceCount;
+    private instanceId;
     private events;
     private selectedEvent;
     private _isLoading;
@@ -104,12 +106,12 @@ declare class EventService extends BaseService implements IEventService {
     private selectedOrganisation;
     private setSelectedEventId;
     private isSuperAdmin;
-    private appConfig;
     private isInitializedRef;
     private isFetchingRef;
     private hasAutoSelectedRef;
     private userClearedEventRef;
     constructor(supabaseClient: SupabaseClient, user: User | null, session: Session | null, appName: string, selectedOrganisation: Organisation | null, setSelectedEventId: (eventId: string | null) => void);
+    getInstanceId(): number;
     private getStorageKey;
     updateDependencies(supabaseClient: SupabaseClient, user: User | null, session: Session | null, appName: string, selectedOrganisation: Organisation | null, setSelectedEventId: (eventId: string | null) => void): Promise<void>;
     getEvents(): Event[];
@@ -215,6 +217,8 @@ interface IOrganisationService {
  */
 
 declare class OrganisationService extends BaseService implements IOrganisationService {
+    private static instanceCount;
+    private instanceId;
     private _selectedOrganisation;
     private _organisations;
     private _userMemberships;
@@ -232,6 +236,7 @@ declare class OrganisationService extends BaseService implements IOrganisationSe
     private hasFailedRef;
     private abortControllerRef;
     constructor(supabaseClient: SupabaseClient, user: User | null, session: Session | null);
+    getInstanceId(): number;
     getSelectedOrganisation(): Organisation | null;
     getOrganisations(): Organisation[];
     getUserMemberships(): OrganisationMembership[];
@@ -457,6 +462,8 @@ interface IAuthService {
  */
 
 declare class AuthService extends BaseService implements IAuthService {
+    private static instanceCount;
+    private instanceId;
     private user;
     private session;
     private authLoading;
@@ -471,6 +478,7 @@ declare class AuthService extends BaseService implements IAuthService {
     private errorHandler;
     private unhandledRejectionHandler;
     constructor(supabaseClient: SupabaseClient, appName?: string);
+    getInstanceId(): number;
     getUser(): User | null;
     getSession(): Session | null;
     isAuthenticated(): boolean;

package/dist/{DataTable-TPTKCX4D.js → DataTable-THFPBKTP.js}

@@ -60,8 +60,8 @@ import {
   sum,
   validateHierarchicalData,
   validatePaginationConfig
-} from "./chunk-3XC4CPTD.js";
-import "./chunk-XWQCNGTQ.js";
+} from "./chunk-PQBSKX33.js";
+import "./chunk-YDQHOZNA.js";
 import {
   CircuitBreaker,
   DEFAULT_FALLBACK_CONFIG,
@@ -80,18 +80,19 @@ import {
   throttle,
   useDataTablePerformance
 } from "./chunk-6SOIHG6Z.js";
-import "./chunk-MMZ7JXPU.js";
+import "./chunk-6Z7LTB3D.js";
 import "./chunk-KQCRWDSA.js";
-import "./chunk-EHMR7VYL.js";
-import "./chunk-24UVZUZG.js";
+import "./chunk-DWUBLJJM.js";
+import "./chunk-RWEBCB47.js";
 import "./chunk-63FOKYGO.js";
+import "./chunk-QRPVRXYT.js";
 import "./chunk-QXHPKYJV.js";
 import "./chunk-M43Y4SSO.js";
-import "./chunk-F2IMUDXZ.js";
+import "./chunk-M7MPQISP.js";
 import "./chunk-FMUCXFII.js";
 import "./chunk-VBXEHIUJ.js";
 import "./chunk-PWLANIRT.js";
-import "./chunk-7D4SUZUM.js";
+import "./chunk-DGUM43GV.js";
 export {
   ActionButtons,
   BulkOperationsDropdown,
@@ -171,4 +172,4 @@ export {
   validateHierarchicalData,
   validatePaginationConfig
 };
-//# sourceMappingURL=DataTable-TPTKCX4D.js.map
+//# sourceMappingURL=DataTable-THFPBKTP.js.map

package/dist/{PublicPageProvider-DC6kCaqf.d.ts → PublicPageProvider-DEMpysFR.d.ts}

@@ -15,7 +15,7 @@ import { FieldValues, DefaultValues, SubmitHandler, SubmitErrorHandler, UseFormR
 import { z } from 'zod';
 import { User, SupabaseClient, createClient } from '@supabase/supabase-js';
 import { P as Permission, A as AccessLevel } from './types-BeoeWV5I.js';
-import { E as Event, O as Organisation } from './event-CW5YB_2p.js';
+import { O as Organisation, E as Event } from './event-CW5YB_2p.js';
 
 /**
  * Button component props
@@ -2648,10 +2648,12 @@ interface HeaderProps {
     userMenu?: React__default.ReactNode;
     /** Custom className */
     className?: string;
-    /** Show/hide event selector */
-    showEventSelector?: boolean;
-    /** Show/hide organisation selector */
-    showOrgSelector?: boolean;
+    /** Show/hide context selector (unified org/event selector) - default: true */
+    showContextSelector?: boolean;
+    /** Show organisations in context selector - default: true */
+    showOrganisations?: boolean;
+    /** Show events in context selector - default: true */
+    showEvents?: boolean;
     /** Show/hide user menu */
     showUserMenu?: boolean;
     /** Current path for navigation highlighting */
@@ -2749,7 +2751,7 @@ interface HeaderProps {
  *     <Header
  *       logoUrl="/simple-logo.svg"
  *       logoAlt="Simple App"
- *       showEventSelector={false}
+ *       showContextSelector={false}
  *       user={currentUser}
  *       onSignOut={handleSignOut}
  *     />
@@ -2769,7 +2771,7 @@ interface HeaderProps {
  * @param props - Header configuration
  * @returns The rendered header
  */
-declare function Header({ logoUrl, logoAlt, logo, navItems, user, onSignOut, onChangePassword, actions, userMenu, className, showEventSelector, showOrgSelector, showUserMenu, currentPath, onNavigate, logoHref }: HeaderProps): react_jsx_runtime.JSX.Element;
+declare function Header({ logoUrl, logoAlt, logo, navItems, user, onSignOut, onChangePassword, actions, userMenu, className, showContextSelector, showOrganisations, showEvents, showUserMenu, currentPath, onNavigate, logoHref }: HeaderProps): react_jsx_runtime.JSX.Element;
 
 /**
  * @file Footer Component
@@ -3024,10 +3026,12 @@ interface PaceAppLayoutProps {
     appName: string;
     /** Optional navigation items for the header menu. If not provided, uses default navigation. */
     navItems?: NavigationItem[];
-    /** Show/hide event selector in the header */
-    showEventSelector?: boolean;
-    /** Show/hide organisation selector in the header */
-    showOrgSelector?: boolean;
+    /** Show/hide unified context selector (shows all accessible orgs and events) - default: true */
+    showContextSelector?: boolean;
+    /** Show organisations in context selector - default: true */
+    showOrganisations?: boolean;
+    /** Show events in context selector - default: true */
+    showEvents?: boolean;
     /** Custom actions to display in the header (between event selector and user menu) */
     headerActions?: React__default.ReactNode;
     /** Custom logo component (overrides default logo) */
@@ -3235,7 +3239,7 @@ interface PaceAppLayoutProps {
  *
  * @since 0.1.0
  */
-declare function PaceAppLayout({ appName, navItems, showEventSelector, showOrgSelector, headerActions, customLogo, logoHref, customUserMenu, headerClassName, showUserMenu, enforcePermissions, defaultPermission, routePermissions, permissionFallback, pageIdMapping, strictMode, enforcePagePermissions, pagePermissionFallback, auditLog, onPageAccessDenied, onStrictModeViolation, roleBasedRouting, routeConfig, fallbackRoute, onRouteAccessDenied, onRouteStrictModeViolation }: PaceAppLayoutProps): react_jsx_runtime.JSX.Element;
+declare function PaceAppLayout({ appName, navItems, showContextSelector, showOrganisations, showEvents, headerActions, customLogo, logoHref, customUserMenu, headerClassName, showUserMenu, enforcePermissions, defaultPermission, routePermissions, permissionFallback, pageIdMapping, strictMode, enforcePagePermissions, pagePermissionFallback, auditLog, onPageAccessDenied, onStrictModeViolation, roleBasedRouting, routeConfig, fallbackRoute, onRouteAccessDenied, onRouteStrictModeViolation }: PaceAppLayoutProps): react_jsx_runtime.JSX.Element;
 
 /**
  * @file PACE Login Page Component
@@ -3694,76 +3698,50 @@ interface SessionRestorationLoaderProps {
 declare const SessionRestorationLoader: React__default.FC<SessionRestorationLoaderProps>;
 
 /**
- * Props for the EventSelector component.
+ * Props for the ContextSelector component.
  */
-interface EventSelectorProps {
+interface ContextSelectorProps {
     /** Placeholder text for the dropdown */
     placeholder?: string;
     /** Additional CSS classes */
     className?: string;
-    /** Callback fired when an event changes, providing full event object */
-    onEventChange?: (event: Event | null) => void;
-    /** Show friendly message when no events available */
-    showNoEventsMessage?: boolean;
+    /** Callback fired when an organisation is selected */
+    onOrganisationSelect?: (org: Organisation) => void;
+    /** Callback fired when an event is selected */
+    onEventSelect?: (event: Event) => void;
+    /** Show friendly message when no items available */
+    showNoItemsMessage?: boolean;
     /** Show retry button on errors */
     showRetryButton?: boolean;
-    /** Show event details in dropdown */
-    showEventDetails?: boolean;
-    /** Show indicator for next/upcoming events */
-    showNextEventIndicator?: boolean;
-}
-/**
- * EventSelector component for selecting events with built-in access control
- *
- * This component provides secure event selection with:
- * - Database integration via rbac_event_app_roles table
- * - Auto-selection of next upcoming event by date
- * - Cross-device sync via Supabase user session metadata
- * - localStorage fallback for offline scenarios
- * - Comprehensive error handling and user feedback
- *
- * @component
- * @example
- * <UnifiedAuthProvider supabaseClient={supabase} appName="PACE">
- *   <EventSelector onEventChange={(event) => console.log(event)} />
- * </UnifiedAuthProvider>
- */
-declare function EventSelector({ placeholder, className, onEventChange, showNoEventsMessage, showRetryButton, showEventDetails, showNextEventIndicator }: EventSelectorProps): react_jsx_runtime.JSX.Element | null;
-
-/**
- * Props for the OrganisationSelector component.
- */
-interface OrganisationSelectorProps {
-    /** Placeholder text for the dropdown */
-    placeholder?: string;
-    /** Additional CSS classes */
-    className?: string;
-    /** Callback fired when organisation changes, providing full organisation object */
-    onOrganisationChange?: (org: Organisation) => void;
-    /** Show friendly message when no organisations available */
-    showNoOrganisationsMessage?: boolean;
-    /** Show retry button on errors */
-    showRetryButton?: boolean;
-    /** Show user's role in each organisation */
-    showRole?: boolean;
     /** Compact display mode */
     compact?: boolean;
     /** Disabled state */
     disabled?: boolean;
+    /** Show organisations section (default: true) */
+    showOrganisations?: boolean;
+    /** Show events section (default: true) */
+    showEvents?: boolean;
 }
 /**
- * OrganisationSelector component for secure organisation switching
+ * ContextSelector component for selecting organisations or events
+ *
+ * This is the unified intelligent selector that shows all organisations and events
+ * a user can access. It automatically determines what to show based on the user's
+ * roles and permissions - no need to configure separate org/event selectors.
  *
- * This component provides secure organisation selection with:
- * - User membership validation
- * - Role-based access display
- * - Security error handling
- * - Real-time organisation switching
- * - Accessible interface design
+ * The selector intelligently shows:
+ * - All organisations the user has access to (via organisation roles)
+ * - All events the user has access to (via event-app roles or organisation membership)
+ * - Everything for super admins
  *
- * Security: Only shows organisations the user has valid access to
+ * @component
+ * @example
+ * <ContextSelector
+ *   onOrganisationSelect={(org) => switchOrganisation(org)}
+ *   onEventSelect={(event) => setSelectedEvent(event)}
+ * />
  */
-declare function OrganisationSelector({ placeholder, className, onOrganisationChange, showNoOrganisationsMessage, showRetryButton, showRole, compact, disabled }: OrganisationSelectorProps): react_jsx_runtime.JSX.Element | null;
+declare function ContextSelector({ placeholder, className, onOrganisationSelect, onEventSelect, showNoItemsMessage, showRetryButton, compact, disabled, showOrganisations, showEvents }: ContextSelectorProps): react_jsx_runtime.JSX.Element | null;
 
 /**
  * Props for the FileUpload component.
@@ -4217,4 +4195,4 @@ declare function usePublicPageContext(): PublicPageContextType;
  */
 declare function useIsPublicPage(): boolean;
 
-export { type DialogTriggerProps as $, AddressField as A, Button as B, Card as C, TableHeader as D, TableBody as E, TableCaption as F, TableCell as G, TableFooter as H, Input as I, TableHead as J, TableRow as K, Label as L, Dialog as M, DialogPortal as N, DialogOverlay as O, Progress as P, DialogTrigger as Q, DialogClose as R, Switch as S, Textarea as T, DialogContent as U, DialogHeader as V, DialogBody as W, DialogFooter as X, DialogTitle as Y, DialogDescription as Z, type DialogProps as _, type ButtonProps as a, LoadingSpinner as a$, type DialogContentProps as a0, type DialogOverlayProps as a1, type DialogHeaderProps as a2, type DialogFooterProps as a3, type DialogTitleProps as a4, type DialogDescriptionProps as a5, type DialogSize as a6, Select as a7, SelectGroup as a8, SelectValue as a9, TooltipTrigger as aA, TooltipContent as aB, TooltipProvider as aC, TooltipRoot as aD, Form as aE, FormField as aF, type FormProps as aG, type FormFieldProps as aH, LoginForm as aI, type LoginFormProps as aJ, Header as aK, Footer as aL, type FooterProps as aM, ProtectedRoute as aN, type ProtectedRouteProps as aO, NavigationMenu as aP, type NavigationMenuProps as aQ, type NavigationItem as aR, OrganisationSelector as aS, type OrganisationSelectorProps as aT, UserMenu as aU, ErrorBoundary as aV, ErrorBoundaryProvider as aW, type ErrorBoundaryProps as aX, type ErrorBoundaryState as aY, type ErrorBoundaryProviderProps as aZ, type GlobalErrorHandler as a_, SelectTrigger as aa, SelectContent as ab, SelectLabel as ac, SelectItem as ad, SelectSeparator as ae, Tabs as af, TabsList as ag, TabsTrigger as ah, TabsContent as ai, type TabsProps as aj, type TabsListProps as ak, type TabsTriggerProps as al, type TabsContentProps as am, Calendar as an, type CalendarProps as ao, Toast as ap, Toaster as aq, ToastAction as ar, ToastProvider as as, ToastViewport as at, ToastTitle as au, ToastDescription as av, ToastClose as aw, type ToastActionElement as ax, type ToastProps as ay, Tooltip as az, CardHeader as b, SessionRestorationLoader as b0, type SessionRestorationLoaderProps as b1, EventSelector as b2, FileUpload as b3, type FileUploadProps as b4, FileDisplay as b5, type FileDisplayProps as b6, useFileReference as b7, useFileReferenceForRecord as b8, useFileReferenceById as b9, useFilesByCategory as ba, type UseFileReferenceOptions as bb, type UseFileReferenceReturn as bc, type UseFileReferenceForRecordReturn as bd, PublicPageLayout as be, PublicPageHeader as bf, PublicPageFooter as bg, PublicPageProvider as bh, usePublicPageContext as bi, useIsPublicPage as bj, type PublicPageLayoutProps as bk, type PublicPageHeaderProps as bl, type PublicPageFooterProps as bm, type PaceAppLayoutProps as bn, PaceAppLayout as bo, type PaceLoginPageProps as bp, PaceLoginPage as bq, type NavigationMode as br, type UserMenuProps as bs, PasswordChangeForm as bt, CardFooter as c, CardTitle as d, CardDescription as e, CardContent as f, CardActions as g, type CardProps as h, type CardActionsProps as i, type InputProps as j, type AddressFieldProps as k, type AddressFieldRef as l, type LabelProps as m, type TextareaProps as n, Alert as o, AlertTitle as p, AlertDescription as q, Avatar as r, type AvatarProps as s, Badge as t, type BadgeProps as u, type BadgeVariant as v, Checkbox as w, type SwitchProps as x, type ProgressProps as y, Table as z };
+export { type DialogTriggerProps as $, AddressField as A, Button as B, Card as C, TableHeader as D, TableBody as E, TableCaption as F, TableCell as G, TableFooter as H, Input as I, TableHead as J, TableRow as K, Label as L, Dialog as M, DialogPortal as N, DialogOverlay as O, Progress as P, DialogTrigger as Q, DialogClose as R, Switch as S, Textarea as T, DialogContent as U, DialogHeader as V, DialogBody as W, DialogFooter as X, DialogTitle as Y, DialogDescription as Z, type DialogProps as _, type ButtonProps as a, LoadingSpinner as a$, type DialogContentProps as a0, type DialogOverlayProps as a1, type DialogHeaderProps as a2, type DialogFooterProps as a3, type DialogTitleProps as a4, type DialogDescriptionProps as a5, type DialogSize as a6, Select as a7, SelectGroup as a8, SelectValue as a9, TooltipTrigger as aA, TooltipContent as aB, TooltipProvider as aC, TooltipRoot as aD, Form as aE, FormField as aF, type FormProps as aG, type FormFieldProps as aH, LoginForm as aI, type LoginFormProps as aJ, Header as aK, Footer as aL, type FooterProps as aM, ProtectedRoute as aN, type ProtectedRouteProps as aO, NavigationMenu as aP, type NavigationMenuProps as aQ, type NavigationItem as aR, ContextSelector as aS, type ContextSelectorProps as aT, UserMenu as aU, ErrorBoundary as aV, ErrorBoundaryProvider as aW, type ErrorBoundaryProps as aX, type ErrorBoundaryState as aY, type ErrorBoundaryProviderProps as aZ, type GlobalErrorHandler as a_, SelectTrigger as aa, SelectContent as ab, SelectLabel as ac, SelectItem as ad, SelectSeparator as ae, Tabs as af, TabsList as ag, TabsTrigger as ah, TabsContent as ai, type TabsProps as aj, type TabsListProps as ak, type TabsTriggerProps as al, type TabsContentProps as am, Calendar as an, type CalendarProps as ao, Toast as ap, Toaster as aq, ToastAction as ar, ToastProvider as as, ToastViewport as at, ToastTitle as au, ToastDescription as av, ToastClose as aw, type ToastActionElement as ax, type ToastProps as ay, Tooltip as az, CardHeader as b, SessionRestorationLoader as b0, type SessionRestorationLoaderProps as b1, FileUpload as b2, type FileUploadProps as b3, FileDisplay as b4, type FileDisplayProps as b5, useFileReference as b6, useFileReferenceForRecord as b7, useFileReferenceById as b8, useFilesByCategory as b9, type UseFileReferenceOptions as ba, type UseFileReferenceReturn as bb, type UseFileReferenceForRecordReturn as bc, PublicPageLayout as bd, PublicPageHeader as be, PublicPageFooter as bf, PublicPageProvider as bg, usePublicPageContext as bh, useIsPublicPage as bi, type PublicPageLayoutProps as bj, type PublicPageHeaderProps as bk, type PublicPageFooterProps as bl, type PaceAppLayoutProps as bm, PaceAppLayout as bn, type PaceLoginPageProps as bo, PaceLoginPage as bp, type NavigationMode as bq, type UserMenuProps as br, PasswordChangeForm as bs, CardFooter as c, CardTitle as d, CardDescription as e, CardContent as f, CardActions as g, type CardProps as h, type CardActionsProps as i, type InputProps as j, type AddressFieldProps as k, type AddressFieldRef as l, type LabelProps as m, type TextareaProps as n, Alert as o, AlertTitle as p, AlertDescription as q, Avatar as r, type AvatarProps as s, Badge as t, type BadgeProps as u, type BadgeVariant as v, Checkbox as w, type SwitchProps as x, type ProgressProps as y, Table as z };

package/dist/{UnifiedAuthProvider-CVcTjx-d.d.ts → UnifiedAuthProvider-CKvHP1MK.d.ts}

@@ -85,9 +85,6 @@ interface UnifiedAuthContextType {
     handleIdleLogout: () => Promise<void>;
     handleStaySignedIn: () => void;
     handleSignOutNow: () => Promise<void>;
-    appConfig: {
-        requires_event: boolean;
-    } | null;
     isLoading: boolean;
     hasErrors: boolean;
     sessionRestoration: SessionRestorationState;
@@ -117,9 +114,6 @@ interface UnifiedAuthProviderProps {
     persistState?: boolean;
     enablePersistence?: boolean;
     requireOrganisationContext?: boolean;
-    appConfig?: {
-        requires_event: boolean;
-    } | null;
     idleTimeoutMs: number;
     warnBeforeMs: number;
     onIdleLogout: (reason: 'inactivity') => void;
@@ -137,8 +131,7 @@ interface UnifiedAuthProviderProps {
  * @param props - Unified auth provider configuration
  * @returns The unified auth provider
  */
-declare function UnifiedAuthProvider({ children, supabaseClient, appName, appConfig, // Default to requiring events
-persistState, enablePersistence, requireOrganisationContext, idleTimeoutMs, // REQUIRED: No default - must be explicitly provided
+declare function UnifiedAuthProvider({ children, supabaseClient, appName, persistState, enablePersistence, requireOrganisationContext, idleTimeoutMs, // REQUIRED: No default - must be explicitly provided
 warnBeforeMs, // REQUIRED: No default - must be explicitly provided
 onIdleLogout, // REQUIRED: No default - must be explicitly provided
 renderInactivityWarning, dangerouslyDisableInactivity }: UnifiedAuthProviderProps): react_jsx_runtime.JSX.Element;

package/dist/{UnifiedAuthProvider-CH6Z342H.js → UnifiedAuthProvider-KAGUYQ4J.js}

@@ -2,16 +2,17 @@ import {
   UnifiedAuthContext,
   UnifiedAuthProvider,
   useUnifiedAuth
-} from "./chunk-EHMR7VYL.js";
-import "./chunk-24UVZUZG.js";
+} from "./chunk-DWUBLJJM.js";
+import "./chunk-RWEBCB47.js";
 import "./chunk-63FOKYGO.js";
+import "./chunk-QRPVRXYT.js";
 import "./chunk-QXHPKYJV.js";
 import "./chunk-VBXEHIUJ.js";
 import "./chunk-PWLANIRT.js";
-import "./chunk-7D4SUZUM.js";
+import "./chunk-DGUM43GV.js";
 export {
   UnifiedAuthContext,
   UnifiedAuthProvider,
   useUnifiedAuth
 };
-//# sourceMappingURL=UnifiedAuthProvider-CH6Z342H.js.map
+//# sourceMappingURL=UnifiedAuthProvider-KAGUYQ4J.js.map

package/dist/{api-MVVQZLJI.js → api-IAGWF3ZG.js}

@@ -1,10 +1,7 @@
 import {
-  OrganisationContextRequiredError,
   clearCache,
   getAccessLevel,
-  getAppConfig,
-  getAppConfigByName,
-  getAppConfigWithClient,
+  getPageScopeType,
   getPermissionMap,
   getRoleContext,
   hasAllPermissions,
@@ -18,20 +15,22 @@ import {
   isOrganisationAdmin,
   isPermitted,
   isPermittedCached,
+  isRBACInitialized,
   isSuperAdmin,
   resolveAppContext,
   setupRBAC
-} from "./chunk-24UVZUZG.js";
+} from "./chunk-RWEBCB47.js";
 import "./chunk-63FOKYGO.js";
+import {
+  OrganisationContextRequiredError
+} from "./chunk-QRPVRXYT.js";
 import "./chunk-PWLANIRT.js";
-import "./chunk-7D4SUZUM.js";
+import "./chunk-DGUM43GV.js";
 export {
   OrganisationContextRequiredError,
   clearCache,
   getAccessLevel,
-  getAppConfig,
-  getAppConfigByName,
-  getAppConfigWithClient,
+  getPageScopeType,
   getPermissionMap,
   getRoleContext,
   hasAllPermissions,
@@ -45,8 +44,9 @@ export {
   isOrganisationAdmin,
   isPermitted,
   isPermittedCached,
+  isRBACInitialized,
   isSuperAdmin,
   resolveAppContext,
   setupRBAC
 };
-//# sourceMappingURL=api-MVVQZLJI.js.map
+//# sourceMappingURL=api-IAGWF3ZG.js.map

package/dist/{audit-B5P6FFIR.js → audit-V53FV5AG.js}

@@ -6,7 +6,7 @@ import {
   setGlobalAuditManager
 } from "./chunk-63FOKYGO.js";
 import "./chunk-PWLANIRT.js";
-import "./chunk-7D4SUZUM.js";
+import "./chunk-DGUM43GV.js";
 export {
   RBACAuditManager,
   createAuditManager,
@@ -14,4 +14,4 @@ export {
   getGlobalAuditManager,
   setGlobalAuditManager
 };
-//# sourceMappingURL=audit-B5P6FFIR.js.map
+//# sourceMappingURL=audit-V53FV5AG.js.map