npm - @jmruthers/pace-core - Versions diffs - 0.6.2 → 0.6.4 - Mend

@jmruthers/pace-core 0.6.2 → 0.6.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (299) hide show

package/CHANGELOG.md +45 -0
package/cursor-rules/00-pace-core-compliance.mdc +34 -2
package/dist/{AuthService-BPvc3Ka0.d.ts → AuthService-Cb34EQs3.d.ts} +9 -1
package/dist/{DataTable-TPTKCX4D.js → DataTable-E7YQZD7D.js} +9 -8
package/dist/{PublicPageProvider-DC6kCaqf.d.ts → PublicPageProvider-DEMpysFR.d.ts} +45 -67
package/dist/{UnifiedAuthProvider-CVcTjx-d.d.ts → UnifiedAuthProvider-CKvHP1MK.d.ts} +1 -8
package/dist/{UnifiedAuthProvider-CH6Z342H.js → UnifiedAuthProvider-QPXO24B4.js} +5 -4
package/dist/{api-MVVQZLJI.js → api-6LVZTHDS.js} +10 -10
package/dist/{audit-B5P6FFIR.js → audit-V53FV5AG.js} +2 -2
package/dist/chunk-36LVWXB2.js +227 -0
package/dist/chunk-36LVWXB2.js.map +1 -0
package/dist/{chunk-24UVZUZG.js → chunk-3LPHPB62.js} +129 -387
package/dist/chunk-3LPHPB62.js.map +1 -0
package/dist/{chunk-2UOI2FG5.js → chunk-5EC5MEWX.js} +4 -4
package/dist/{chunk-3XC4CPTD.js → chunk-7JPAB3T5.js} +244 -5727
package/dist/chunk-7JPAB3T5.js.map +1 -0
package/dist/{chunk-6J4GEEJR.js → chunk-ATKZM7RX.js} +53 -27
package/dist/chunk-ATKZM7RX.js.map +1 -0
package/dist/{chunk-EHMR7VYL.js → chunk-AVMLPIM7.js} +443 -189
package/dist/chunk-AVMLPIM7.js.map +1 -0
package/dist/chunk-DGUM43GV.js +11 -0
package/dist/{chunk-NECFR5MM.js → chunk-I6DAQMWX.js} +575 -647
package/dist/chunk-I6DAQMWX.js.map +1 -0
package/dist/{chunk-F2IMUDXZ.js → chunk-M7MPQISP.js} +2 -2
package/dist/{chunk-XWQCNGTQ.js → chunk-NN6WWZ5U.js} +173 -79
package/dist/chunk-NN6WWZ5U.js.map +1 -0
package/dist/{chunk-MMZ7JXPU.js → chunk-OEWDTMG7.js} +13 -21
package/dist/{chunk-MMZ7JXPU.js.map → chunk-OEWDTMG7.js.map} +1 -1
package/dist/{chunk-SFZUDBL5.js → chunk-YKRAFF5K.js} +70 -56
package/dist/chunk-YKRAFF5K.js.map +1 -0
package/dist/components.d.ts +2 -2
package/dist/components.js +12 -13
package/dist/contextValidator-OOPCLPZW.js +9 -0
package/dist/contextValidator-OOPCLPZW.js.map +1 -0
package/dist/eslint-rules/pace-core-compliance.cjs +106 -0
package/dist/hooks.d.ts +2 -2
package/dist/hooks.js +7 -6
package/dist/hooks.js.map +1 -1
package/dist/index.d.ts +7 -7
package/dist/index.js +21 -16
package/dist/index.js.map +1 -1
package/dist/providers.d.ts +3 -3
package/dist/providers.js +4 -3
package/dist/rbac/index.d.ts +67 -27
package/dist/rbac/index.js +15 -8
package/dist/styles/index.js +1 -1
package/dist/theming/runtime.js +1 -1
package/dist/types.js +1 -1
package/dist/{usePublicRouteParams-1oMokgLF.d.ts → usePublicRouteParams-i3qtoBgg.d.ts} +7 -16
package/dist/utils.js +5 -7
package/dist/utils.js.map +1 -1
package/docs/api/README.md +14 -16
package/docs/api/modules.md +3796 -2513
package/docs/components/context-selector.md +126 -0
package/docs/migration/RBAC_SCOPE_MIGRATION.md +385 -0
package/docs/pace-mint-fix-auto-selection.md +218 -0
package/docs/pace-mint-rbac-setup.md +391 -0
package/docs/rbac/secure-client-protection.md +330 -0
package/package.json +10 -5
package/scripts/audit/core/checks/compliance.cjs +72 -0
package/scripts/audit/core/checks/dependencies.cjs +568 -28
package/scripts/audit/core/checks/documentation.cjs +68 -3
package/scripts/audit/core/checks/environment.cjs +2 -14
package/scripts/audit/core/checks/error-handling.cjs +47 -6
package/src/components/ContextSelector/ContextSelector.tsx +384 -0
package/src/components/ContextSelector/index.ts +3 -0
package/src/components/DataTable/components/RowComponent.tsx +19 -19
package/src/components/DataTable/components/UnifiedTableBody.tsx +2 -2
package/src/components/DataTable/hooks/useDataTablePermissions.ts +8 -6
package/src/components/Dialog/Dialog.tsx +29 -1
package/src/components/FileDisplay/FileDisplay.tsx +42 -10
package/src/components/Header/Header.test.tsx +43 -73
package/src/components/Header/Header.tsx +44 -45
package/src/components/PaceAppLayout/PaceAppLayout.integration.test.tsx +10 -19
package/src/components/PaceAppLayout/PaceAppLayout.performance.test.tsx +2 -2
package/src/components/PaceAppLayout/PaceAppLayout.security.test.tsx +5 -5
package/src/components/PaceAppLayout/PaceAppLayout.test.tsx +9 -9
package/src/components/PaceAppLayout/PaceAppLayout.tsx +157 -36
package/src/components/PaceAppLayout/README.md +14 -17
package/src/components/PaceAppLayout/test-setup.tsx +2 -2
package/src/components/index.ts +5 -5
package/src/eslint-rules/pace-core-compliance.cjs +106 -0
package/src/hooks/__tests__/useAppConfig.unit.test.ts +4 -98
package/src/hooks/useAppConfig.ts +15 -30
package/src/hooks/useFileDisplay.ts +77 -50
package/src/index.ts +4 -5
package/src/providers/services/AuthServiceProvider.tsx +17 -7
package/src/providers/services/EventServiceProvider.tsx +33 -5
package/src/providers/services/UnifiedAuthProvider.tsx +90 -134
package/src/rbac/__tests__/adapters.comprehensive.test.tsx +1 -1
package/src/rbac/adapters.tsx +2 -2
package/src/rbac/api.test.ts +59 -51
package/src/rbac/api.ts +178 -132
package/src/rbac/components/PagePermissionGuard.tsx +38 -10
package/src/rbac/hooks/__tests__/useSecureSupabase.test.ts +32 -21
package/src/rbac/hooks/permissions/useAccessLevel.ts +1 -1
package/src/rbac/hooks/permissions/useCan.ts +41 -11
package/src/rbac/hooks/permissions/useHasAllPermissions.ts +1 -1
package/src/rbac/hooks/permissions/useHasAnyPermission.ts +1 -1
package/src/rbac/hooks/permissions/useMultiplePermissions.ts +1 -1
package/src/rbac/hooks/useCan.test.ts +0 -9
package/src/rbac/hooks/useRBAC.test.ts +1 -5
package/src/rbac/hooks/useRBAC.ts +36 -37
package/src/rbac/hooks/useResolvedScope.test.ts +120 -35
package/src/rbac/hooks/useResolvedScope.ts +35 -40
package/src/rbac/hooks/useSecureSupabase.ts +7 -7
package/src/rbac/index.ts +7 -0
package/src/rbac/secureClient.test.ts +22 -18
package/src/rbac/secureClient.ts +103 -16
package/src/rbac/security.ts +0 -17
package/src/rbac/types.ts +1 -0
package/src/rbac/utils/__tests__/contextValidator.test.ts +64 -86
package/src/rbac/utils/clientSecurity.ts +93 -0
package/src/rbac/utils/contextValidator.ts +77 -168
package/src/services/AuthService.ts +39 -7
package/src/services/EventService.ts +285 -56
package/src/services/OrganisationService.ts +81 -14
package/src/services/__tests__/EventService.test.ts +1 -2
package/src/services/base/BaseService.ts +3 -0
package/src/utils/dynamic/dynamicUtils.ts +7 -4
package/dist/chunk-24UVZUZG.js.map +0 -1
package/dist/chunk-3XC4CPTD.js.map +0 -1
package/dist/chunk-6J4GEEJR.js.map +0 -1
package/dist/chunk-7D4SUZUM.js +0 -38
package/dist/chunk-EHMR7VYL.js.map +0 -1
package/dist/chunk-NECFR5MM.js.map +0 -1
package/dist/chunk-SFZUDBL5.js.map +0 -1
package/dist/chunk-XWQCNGTQ.js.map +0 -1
package/docs/api/classes/ColumnFactory.md +0 -243
package/docs/api/classes/InvalidScopeError.md +0 -73
package/docs/api/classes/Logger.md +0 -178
package/docs/api/classes/MissingUserContextError.md +0 -66
package/docs/api/classes/OrganisationContextRequiredError.md +0 -66
package/docs/api/classes/PermissionDeniedError.md +0 -73
package/docs/api/classes/RBACAuditManager.md +0 -297
package/docs/api/classes/RBACCache.md +0 -322
package/docs/api/classes/RBACEngine.md +0 -171
package/docs/api/classes/RBACError.md +0 -76
package/docs/api/classes/RBACNotInitializedError.md +0 -66
package/docs/api/classes/SecureSupabaseClient.md +0 -163
package/docs/api/classes/StorageUtils.md +0 -328
package/docs/api/enums/FileCategory.md +0 -184
package/docs/api/enums/LogLevel.md +0 -54
package/docs/api/enums/RBACErrorCode.md +0 -228
package/docs/api/enums/RPCFunction.md +0 -118
package/docs/api/interfaces/AddressFieldProps.md +0 -241
package/docs/api/interfaces/AddressFieldRef.md +0 -94
package/docs/api/interfaces/AggregateConfig.md +0 -43
package/docs/api/interfaces/AutocompleteOptions.md +0 -75
package/docs/api/interfaces/AvatarProps.md +0 -128
package/docs/api/interfaces/BadgeProps.md +0 -34
package/docs/api/interfaces/ButtonProps.md +0 -56
package/docs/api/interfaces/CalendarProps.md +0 -73
package/docs/api/interfaces/CardProps.md +0 -69
package/docs/api/interfaces/ColorPalette.md +0 -7
package/docs/api/interfaces/ColorShade.md +0 -66
package/docs/api/interfaces/ComplianceResult.md +0 -30
package/docs/api/interfaces/DataAccessRecord.md +0 -96
package/docs/api/interfaces/DataRecord.md +0 -11
package/docs/api/interfaces/DataTableAction.md +0 -252
package/docs/api/interfaces/DataTableColumn.md +0 -504
package/docs/api/interfaces/DataTableProps.md +0 -625
package/docs/api/interfaces/DataTableToolbarButton.md +0 -96
package/docs/api/interfaces/DatabaseComplianceResult.md +0 -85
package/docs/api/interfaces/DatabaseIssue.md +0 -41
package/docs/api/interfaces/EmptyStateConfig.md +0 -61
package/docs/api/interfaces/EnhancedNavigationMenuProps.md +0 -235
package/docs/api/interfaces/ErrorBoundaryProps.md +0 -147
package/docs/api/interfaces/ErrorBoundaryProviderProps.md +0 -36
package/docs/api/interfaces/ErrorBoundaryState.md +0 -75
package/docs/api/interfaces/EventAppRoleData.md +0 -71
package/docs/api/interfaces/ExportColumn.md +0 -90
package/docs/api/interfaces/ExportOptions.md +0 -126
package/docs/api/interfaces/FileDisplayProps.md +0 -249
package/docs/api/interfaces/FileMetadata.md +0 -129
package/docs/api/interfaces/FileReference.md +0 -118
package/docs/api/interfaces/FileSizeLimits.md +0 -7
package/docs/api/interfaces/FileUploadOptions.md +0 -139
package/docs/api/interfaces/FileUploadProps.md +0 -296
package/docs/api/interfaces/FooterProps.md +0 -107
package/docs/api/interfaces/FormFieldProps.md +0 -166
package/docs/api/interfaces/FormProps.md +0 -113
package/docs/api/interfaces/GrantEventAppRoleParams.md +0 -122
package/docs/api/interfaces/InactivityWarningModalProps.md +0 -115
package/docs/api/interfaces/InputProps.md +0 -56
package/docs/api/interfaces/LabelProps.md +0 -107
package/docs/api/interfaces/LoggerConfig.md +0 -62
package/docs/api/interfaces/LoginFormProps.md +0 -187
package/docs/api/interfaces/NavigationAccessRecord.md +0 -107
package/docs/api/interfaces/NavigationContextType.md +0 -164
package/docs/api/interfaces/NavigationGuardProps.md +0 -139
package/docs/api/interfaces/NavigationItem.md +0 -120
package/docs/api/interfaces/NavigationMenuProps.md +0 -221
package/docs/api/interfaces/NavigationProviderProps.md +0 -117
package/docs/api/interfaces/Organisation.md +0 -140
package/docs/api/interfaces/OrganisationContextType.md +0 -388
package/docs/api/interfaces/OrganisationMembership.md +0 -140
package/docs/api/interfaces/OrganisationProviderProps.md +0 -76
package/docs/api/interfaces/OrganisationSecurityError.md +0 -62
package/docs/api/interfaces/PaceAppLayoutProps.md +0 -409
package/docs/api/interfaces/PaceLoginPageProps.md +0 -49
package/docs/api/interfaces/PageAccessRecord.md +0 -85
package/docs/api/interfaces/PagePermissionContextType.md +0 -140
package/docs/api/interfaces/PagePermissionGuardProps.md +0 -153
package/docs/api/interfaces/PagePermissionProviderProps.md +0 -119
package/docs/api/interfaces/PaletteData.md +0 -41
package/docs/api/interfaces/ParsedAddress.md +0 -120
package/docs/api/interfaces/PermissionEnforcerProps.md +0 -153
package/docs/api/interfaces/ProgressProps.md +0 -42
package/docs/api/interfaces/ProtectedRouteProps.md +0 -78
package/docs/api/interfaces/PublicPageFooterProps.md +0 -112
package/docs/api/interfaces/PublicPageHeaderProps.md +0 -125
package/docs/api/interfaces/PublicPageLayoutProps.md +0 -185
package/docs/api/interfaces/QuickFix.md +0 -52
package/docs/api/interfaces/RBACAccessValidateParams.md +0 -52
package/docs/api/interfaces/RBACAccessValidateResult.md +0 -41
package/docs/api/interfaces/RBACAuditLogParams.md +0 -85
package/docs/api/interfaces/RBACAuditLogResult.md +0 -52
package/docs/api/interfaces/RBACConfig.md +0 -133
package/docs/api/interfaces/RBACContext.md +0 -52
package/docs/api/interfaces/RBACLogger.md +0 -112
package/docs/api/interfaces/RBACPageAccessCheckParams.md +0 -74
package/docs/api/interfaces/RBACPerformanceMetrics.md +0 -138
package/docs/api/interfaces/RBACPermissionCheckParams.md +0 -74
package/docs/api/interfaces/RBACPermissionCheckResult.md +0 -52
package/docs/api/interfaces/RBACPermissionsGetParams.md +0 -63
package/docs/api/interfaces/RBACPermissionsGetResult.md +0 -63
package/docs/api/interfaces/RBACResult.md +0 -58
package/docs/api/interfaces/RBACRoleGrantParams.md +0 -63
package/docs/api/interfaces/RBACRoleGrantResult.md +0 -52
package/docs/api/interfaces/RBACRoleRevokeParams.md +0 -63
package/docs/api/interfaces/RBACRoleRevokeResult.md +0 -52
package/docs/api/interfaces/RBACRoleValidateParams.md +0 -52
package/docs/api/interfaces/RBACRoleValidateResult.md +0 -63
package/docs/api/interfaces/RBACRolesListParams.md +0 -52
package/docs/api/interfaces/RBACRolesListResult.md +0 -74
package/docs/api/interfaces/RBACSessionTrackParams.md +0 -74
package/docs/api/interfaces/RBACSessionTrackResult.md +0 -52
package/docs/api/interfaces/ResourcePermissions.md +0 -155
package/docs/api/interfaces/RevokeEventAppRoleParams.md +0 -100
package/docs/api/interfaces/RoleBasedRouterContextType.md +0 -151
package/docs/api/interfaces/RoleBasedRouterProps.md +0 -156
package/docs/api/interfaces/RoleManagementResult.md +0 -52
package/docs/api/interfaces/RouteAccessRecord.md +0 -107
package/docs/api/interfaces/RouteConfig.md +0 -134
package/docs/api/interfaces/RuntimeComplianceResult.md +0 -55
package/docs/api/interfaces/SecureDataContextType.md +0 -168
package/docs/api/interfaces/SecureDataProviderProps.md +0 -132
package/docs/api/interfaces/SessionRestorationLoaderProps.md +0 -34
package/docs/api/interfaces/SetupIssue.md +0 -41
package/docs/api/interfaces/StorageConfig.md +0 -41
package/docs/api/interfaces/StorageFileInfo.md +0 -74
package/docs/api/interfaces/StorageFileMetadata.md +0 -151
package/docs/api/interfaces/StorageListOptions.md +0 -99
package/docs/api/interfaces/StorageListResult.md +0 -41
package/docs/api/interfaces/StorageUploadOptions.md +0 -101
package/docs/api/interfaces/StorageUploadResult.md +0 -63
package/docs/api/interfaces/StorageUrlOptions.md +0 -60
package/docs/api/interfaces/StyleImport.md +0 -19
package/docs/api/interfaces/SwitchProps.md +0 -34
package/docs/api/interfaces/TabsContentProps.md +0 -9
package/docs/api/interfaces/TabsListProps.md +0 -9
package/docs/api/interfaces/TabsProps.md +0 -9
package/docs/api/interfaces/TabsTriggerProps.md +0 -50
package/docs/api/interfaces/TextareaProps.md +0 -53
package/docs/api/interfaces/ToastActionElement.md +0 -12
package/docs/api/interfaces/ToastProps.md +0 -9
package/docs/api/interfaces/UnifiedAuthContextType.md +0 -823
package/docs/api/interfaces/UnifiedAuthProviderProps.md +0 -173
package/docs/api/interfaces/UseFormDialogOptions.md +0 -62
package/docs/api/interfaces/UseFormDialogReturn.md +0 -117
package/docs/api/interfaces/UseInactivityTrackerOptions.md +0 -138
package/docs/api/interfaces/UseInactivityTrackerReturn.md +0 -123
package/docs/api/interfaces/UsePublicEventLogoOptions.md +0 -87
package/docs/api/interfaces/UsePublicEventLogoReturn.md +0 -84
package/docs/api/interfaces/UsePublicEventOptions.md +0 -34
package/docs/api/interfaces/UsePublicEventReturn.md +0 -71
package/docs/api/interfaces/UsePublicFileDisplayOptions.md +0 -47
package/docs/api/interfaces/UsePublicFileDisplayReturn.md +0 -123
package/docs/api/interfaces/UsePublicRouteParamsReturn.md +0 -97
package/docs/api/interfaces/UseResolvedScopeOptions.md +0 -47
package/docs/api/interfaces/UseResolvedScopeReturn.md +0 -47
package/docs/api/interfaces/UseResourcePermissionsOptions.md +0 -34
package/docs/api/interfaces/UserEventAccess.md +0 -121
package/docs/api/interfaces/UserMenuProps.md +0 -88
package/docs/api/interfaces/UserProfile.md +0 -63
package/src/components/EventSelector/EventSelector.test.tsx +0 -720
package/src/components/EventSelector/EventSelector.tsx +0 -423
package/src/components/EventSelector/index.ts +0 -3
package/src/components/OrganisationSelector/OrganisationSelector.test.tsx +0 -784
package/src/components/OrganisationSelector/OrganisationSelector.tsx +0 -327
package/src/components/OrganisationSelector/index.ts +0 -9
/package/dist/{DataTable-TPTKCX4D.js.map → DataTable-E7YQZD7D.js.map} +0 -0
/package/dist/{UnifiedAuthProvider-CH6Z342H.js.map → UnifiedAuthProvider-QPXO24B4.js.map} +0 -0
/package/dist/{api-MVVQZLJI.js.map → api-6LVZTHDS.js.map} +0 -0
/package/dist/{audit-B5P6FFIR.js.map → audit-V53FV5AG.js.map} +0 -0
/package/dist/{chunk-2UOI2FG5.js.map → chunk-5EC5MEWX.js.map} +0 -0
/package/dist/{chunk-7D4SUZUM.js.map → chunk-DGUM43GV.js.map} +0 -0
/package/dist/{chunk-F2IMUDXZ.js.map → chunk-M7MPQISP.js.map} +0 -0

package/dist/{chunk-EHMR7VYL.js → chunk-AVMLPIM7.js} RENAMED Viewed

@@ -1,7 +1,7 @@
 import {
-  getAppConfigByName,
-  isSuperAdmin
-} from "./chunk-24UVZUZG.js";
+  isRBACInitialized,
+  setupRBAC
+} from "./chunk-3LPHPB62.js";
 import {
   assertOrganisationId,
   assertUserId
@@ -16,10 +16,10 @@ import {
 } from "./chunk-PWLANIRT.js";
 // src/providers/services/UnifiedAuthProvider.tsx
-import { createContext as createContext5, useContext as useContext6, useMemo as useMemo6, useCallback, useRef as useRef8, useEffect as useEffect10, useState as useState3, useReducer as useReducer5 } from "react";
+import { createContext as createContext5, useContext as useContext6, useMemo as useMemo6, useCallback, useRef as useRef9, useEffect as useEffect10, useState as useState3, useReducer as useReducer5 } from "react";
 // src/providers/services/AuthServiceProvider.tsx
-import { createContext, useMemo, useEffect, useState } from "react";
+import { createContext, useMemo, useEffect, useState, useRef } from "react";
 // src/services/AuthService.ts
 import { AuthError } from "@supabase/supabase-js";
@@ -49,6 +49,9 @@ var BaseService = class {
    * This triggers React re-renders
    */
   notify() {
+    const serviceName = this.constructor.name;
+    const instanceId = this.instanceId || "unknown";
+    logger.debug("BaseService", `[${serviceName} ID:${instanceId}] Notifying ${this.subscribers.length} subscribers`);
     this.subscribers.forEach((callback) => {
       try {
         callback();
@@ -93,7 +96,7 @@ var BaseService = class {
 };
 // src/services/AuthService.ts
-var AuthService = class extends BaseService {
+var _AuthService = class _AuthService extends BaseService {
   constructor(supabaseClient, appName) {
     super();
     this.user = null;
@@ -113,11 +116,21 @@ var AuthService = class extends BaseService {
     this.appName = void 0;
     this.errorHandler = null;
     this.unhandledRejectionHandler = null;
+    this.instanceId = ++_AuthService.instanceCount;
     this.supabaseClient = supabaseClient;
     this.appName = appName;
+    logger.debug("AuthService", `Instance created [ID:${this.instanceId}]`, { appName });
+  }
+  getInstanceId() {
+    return this.instanceId;
   }
   // Auth state getters
   getUser() {
+    if (this.user) {
+      logger.debug("AuthService", `getUser() [ID:${this.instanceId}] returning user: ${this.user.id}`);
+    } else {
+      logger.debug("AuthService", `getUser() [ID:${this.instanceId}] returning null`);
+    }
     return this.user;
   }
   getSession() {
@@ -398,24 +411,29 @@ var AuthService = class extends BaseService {
       const subscription = this.supabaseClient.auth.onAuthStateChange(
         (event, session) => {
           try {
+            logger.debug("AuthService", `Auth state change [ID:${this.instanceId}]`, {
+              event,
+              hasSession: !!session,
+              userId: session?.user?.id
+            });
             if (event === "SIGNED_OUT") {
               this.session = null;
               this.user = null;
               this.authError = null;
               if (session?.user) {
                 this.trackSession("logout", session).catch((err) => {
-                  logger.warn("AuthService", "Failed to track logout session:", err);
+                  logger.warn("AuthService", `Failed to track logout session [ID:${this.instanceId}]:`, err);
                 });
               }
             } else if (event === "SIGNED_IN" || event === "TOKEN_REFRESHED") {
               this.session = session;
               this.user = session?.user ?? null;
-              if (session) {
+              if (session?.user) {
                 this.authError = null;
               }
               if (event === "SIGNED_IN" && session?.user) {
                 this.trackSession("login", session).catch((err) => {
-                  logger.warn("AuthService", "Failed to track login session:", err);
+                  logger.warn("AuthService", `Failed to track login session [ID:${this.instanceId}]:`, err);
                 });
               }
             } else if (event === "INITIAL_SESSION") {
@@ -433,13 +451,22 @@ var AuthService = class extends BaseService {
                 }
               }
               this.authLoading = false;
+              logger.debug("AuthService", `State synchronized after INITIAL_SESSION [ID:${this.instanceId}]`, {
+                hasUser: !!this.user,
+                userId: this.user?.id
+              });
               this.notify();
               return;
             }
             this.authLoading = false;
+            logger.debug("AuthService", `State synchronized after event [ID:${this.instanceId}]`, {
+              event,
+              hasUser: !!this.user,
+              userId: this.user?.id
+            });
             this.notify();
           } catch (error) {
-            logger.warn("AuthService", "Error in auth state change handler:", error);
+            logger.warn("AuthService", `Error in auth state change handler [ID:${this.instanceId}]:`, error);
             this.authLoading = false;
             this.notify();
           }
@@ -578,15 +605,20 @@ var AuthService = class extends BaseService {
     }
   }
 };
+_AuthService.instanceCount = 0;
+var AuthService = _AuthService;
 // src/providers/services/AuthServiceProvider.tsx
 import { jsx } from "react/jsx-runtime";
 var AuthServiceContext = createContext(null);
 function AuthServiceProvider({ children, supabaseClient, appName }) {
-  const authService = useMemo(
-    () => new AuthService(supabaseClient, appName),
-    [supabaseClient, appName]
-  );
+  const authServiceRef = useRef(null);
+  if (!authServiceRef.current) {
+    authServiceRef.current = new AuthService(supabaseClient, appName);
+  }
+  const authService = authServiceRef.current;
+  useEffect(() => {
+  }, [authService, supabaseClient, appName]);
   const [sessionRestoration, setSessionRestoration] = useState(
     () => authService.getSessionRestorationState()
   );
@@ -615,10 +647,10 @@ function AuthServiceProvider({ children, supabaseClient, appName }) {
 }
 // src/providers/services/OrganisationServiceProvider.tsx
-import { createContext as createContext2, useMemo as useMemo2, useEffect as useEffect2, useRef } from "react";
+import { createContext as createContext2, useMemo as useMemo2, useEffect as useEffect2, useRef as useRef2 } from "react";
 // src/services/OrganisationService.ts
-var OrganisationService = class extends BaseService {
+var _OrganisationService = class _OrganisationService extends BaseService {
   constructor(supabaseClient, user, session) {
     super();
     this._selectedOrganisation = null;
@@ -640,9 +672,17 @@ var OrganisationService = class extends BaseService {
     this.lastLoadTimeRef = 0;
     this.hasFailedRef = false;
     this.abortControllerRef = null;
+    this.instanceId = ++_OrganisationService.instanceCount;
     this.supabaseClient = supabaseClient;
     this.user = user;
     this.session = session;
+    logger.debug("OrganisationService", `Instance created [ID:${this.instanceId}]`, {
+      hasUser: !!user,
+      userId: user?.id
+    });
+  }
+  getInstanceId() {
+    return this.instanceId;
   }
   // Interface implementation
   getSelectedOrganisation() {
@@ -715,16 +755,35 @@ var OrganisationService = class extends BaseService {
   }
   // Update dependencies
   updateDependencies(user, session) {
-    const wasAuthenticated = !!(this.user && this.session);
-    const isAuthenticated = !!(user && session);
-    if (this.user?.id !== user?.id) {
+    const previousUserId = this.user?.id || null;
+    const newUserId = user?.id || null;
+    const userChanged = previousUserId !== newUserId;
+    const needsRetry = this._error !== null && !this.isLoadingRef;
+    const isEmpty = newUserId !== null && this._organisations.length === 0 && !this.isLoadingRef;
+    if (userChanged || needsRetry || isEmpty) {
+      if (userChanged) {
+        logger.debug("OrganisationService", `User changed [ID:${this.instanceId}], resetting initialization`, {
+          previousUserId,
+          newUserId
+        });
+      } else if (needsRetry) {
+        logger.debug("OrganisationService", `Previous error detected [ID:${this.instanceId}], retrying initialization`);
+      } else if (isEmpty) {
+        logger.debug("OrganisationService", `No organisations found [ID:${this.instanceId}], retrying initialization`);
+      }
       this._isSuperAdmin = false;
+      this.resetInitialization();
+      if (userChanged) {
+        this._organisations = [];
+        this._userMemberships = [];
+        this._roleMapState = /* @__PURE__ */ new Map();
+        this._selectedOrganisation = null;
+        this._isContextReady = false;
+      }
+      this.lastLoadTimeRef = 0;
     }
     this.user = user;
     this.session = session;
-    if (wasAuthenticated && !isAuthenticated) {
-      this.resetInitialization();
-    }
     this.notify();
   }
   // Organisation methods
@@ -793,6 +852,10 @@ var OrganisationService = class extends BaseService {
   }
   // Lifecycle methods
   async initialize() {
+    if (!this.user) {
+      logger.debug("OrganisationService", "Skipping initialization - no user");
+      return;
+    }
     await super.initialize();
     if (!this.isLoadingRef) {
       await this.loadUserOrganisations();
@@ -855,7 +918,7 @@ var OrganisationService = class extends BaseService {
       return;
     }
     const now = Date.now();
-    if (now - this.lastLoadTimeRef < 2e3) {
+    if (this._organisations.length > 0 && now - this.lastLoadTimeRef < 2e3) {
       if (this._organisations.length > 0 || this._selectedOrganisation) {
         this._isLoading = false;
       } else {
@@ -874,6 +937,9 @@ var OrganisationService = class extends BaseService {
     this._isLoading = true;
     this._error = null;
     this.notify();
+    logger.debug("OrganisationService", "Loading organisations for user", {
+      userId: this.user.id
+    });
     try {
       let memberships, membershipError, organisations = [];
       try {
@@ -932,6 +998,10 @@ var OrganisationService = class extends BaseService {
           }
         });
         organisations = Array.from(organisationsMap.values());
+        logger.debug("OrganisationService", "Query results", {
+          membershipsCount: memberships.length,
+          organisationsCount: organisations.length
+        });
       } catch (queryError) {
         if (queryError instanceof Error) {
           membershipError = queryError;
@@ -946,7 +1016,15 @@ var OrganisationService = class extends BaseService {
       let userIsSuperAdmin = false;
       if (this.user?.id) {
         try {
-          userIsSuperAdmin = await isSuperAdmin(this.user.id);
+          const { isSuperAdmin: checkSuperAdmin, isRBACInitialized: isRBACInitialized2, setupRBAC: setupRBAC2 } = await import("./api-6LVZTHDS.js");
+          if (!isRBACInitialized2() && this.supabaseClient) {
+            setupRBAC2(this.supabaseClient);
+          }
+          if (isRBACInitialized2()) {
+            userIsSuperAdmin = await checkSuperAdmin(this.user.id);
+          } else {
+            userIsSuperAdmin = false;
+          }
           this._isSuperAdmin = userIsSuperAdmin;
         } catch (error) {
           logger.warn("OrganisationService", "Failed to check super admin status", { error });
@@ -997,7 +1075,12 @@ var OrganisationService = class extends BaseService {
         }
         throw new Error("User has no access to active organisations");
       }
-      this._organisations = activeOrgs;
+      const sortedOrgs = [...activeOrgs].sort((a, b) => {
+        const nameA = (a.display_name || a.name || "").toLowerCase();
+        const nameB = (b.display_name || b.name || "").toLowerCase();
+        return nameA.localeCompare(nameB);
+      });
+      this._organisations = sortedOrgs;
       this._userMemberships = memberships;
       this._roleMapState = roleMap;
       let initialOrg = null;
@@ -1079,6 +1162,8 @@ var OrganisationService = class extends BaseService {
     this._isContextReady = false;
   }
 };
+_OrganisationService.instanceCount = 0;
+var OrganisationService = _OrganisationService;
 // src/providers/services/OrganisationServiceProvider.tsx
 import { jsx as jsx2 } from "react/jsx-runtime";
@@ -1089,7 +1174,7 @@ function OrganisationServiceProvider({
   user,
   session
 }) {
-  const organisationServiceRef = useRef(null);
+  const organisationServiceRef = useRef2(null);
   if (!organisationServiceRef.current) {
     organisationServiceRef.current = new OrganisationService(supabaseClient, user, session);
   }
@@ -1123,10 +1208,10 @@ function OrganisationServiceProvider({
 }
 // src/providers/services/EventServiceProvider.tsx
-import { createContext as createContext3, useMemo as useMemo3, useEffect as useEffect3, useRef as useRef2 } from "react";
+import { createContext as createContext3, useMemo as useMemo3, useEffect as useEffect3, useRef as useRef3 } from "react";
 // src/services/EventService.ts
-var EventService = class extends BaseService {
+var _EventService = class _EventService extends BaseService {
   constructor(supabaseClient, user, session, appName, selectedOrganisation, setSelectedEventId) {
     super();
     this.events = [];
@@ -1143,19 +1228,27 @@ var EventService = class extends BaseService {
     this.setSelectedEventId = null;
     this.isSuperAdmin = false;
     // Track super admin status for conditional validation
-    this.appConfig = null;
-    // Cache app config to avoid repeated lookups
+    // App config removed - scope is now page-level only (rbac_app_pages.scope_type)
     // Internal state management
     this.isInitializedRef = false;
     this.isFetchingRef = false;
     this.hasAutoSelectedRef = false;
     this.userClearedEventRef = false;
+    this.instanceId = ++_EventService.instanceCount;
     this.supabaseClient = supabaseClient;
     this.user = user;
     this.session = session;
     this.appName = appName;
     this.selectedOrganisation = selectedOrganisation;
     this.setSelectedEventId = setSelectedEventId;
+    logger.debug("EventService", `Instance created [ID:${this.instanceId}]`, {
+      appName,
+      hasUser: !!user,
+      userId: user?.id
+    });
+  }
+  getInstanceId() {
+    return this.instanceId;
   }
   // Helper method to get user-scoped storage key
   getStorageKey(userId) {
@@ -1182,6 +1275,13 @@ var EventService = class extends BaseService {
       this.resetInitialization();
       this.isInitializedRef = false;
       this.isFetchingRef = false;
+      this.userClearedEventRef = false;
+      this.hasAutoSelectedRef = false;
+      logger.debug("EventService", `User changed [ID:${this.instanceId}]`, {
+        previousUserId,
+        newUserId,
+        willInitialize: newUserId !== null
+      });
     }
     this.supabaseClient = supabaseClient;
     this.user = user;
@@ -1189,15 +1289,31 @@ var EventService = class extends BaseService {
     this.appName = appName;
     this.selectedOrganisation = selectedOrganisation;
     this.setSelectedEventId = setSelectedEventId;
-    if (previousAppName !== appName) {
-      this.appConfig = null;
-    }
     if (user?.id) {
       try {
-        this.isSuperAdmin = await isSuperAdmin(user.id);
+        const { isRBACInitialized: isRBACInitialized2, isSuperAdmin: checkSuperAdmin, setupRBAC: setupRBAC2 } = await import("./api-6LVZTHDS.js");
+        if (!isRBACInitialized2() && this.supabaseClient) {
+          setupRBAC2(this.supabaseClient);
+        }
+        if (isRBACInitialized2()) {
+          this.isSuperAdmin = await checkSuperAdmin(user.id);
+          logger.debug("EventService", "Super admin status updated in updateDependencies", {
+            userId: user.id,
+            isSuperAdmin: this.isSuperAdmin
+          });
+        } else {
+          logger.warn("EventService", "RBAC not initialized in updateDependencies, keeping existing super admin status", {
+            userId: user.id,
+            existingIsSuperAdmin: this.isSuperAdmin,
+            note: "RBAC should be initialized by UnifiedAuthProvider. This may indicate EventService is being used outside the provider."
+          });
+        }
       } catch (error) {
-        logger.warn("EventService", "Failed to check super admin status", { error });
-        this.isSuperAdmin = false;
+        logger.warn("EventService", "Failed to check super admin status in updateDependencies", {
+          error,
+          userId: user.id,
+          existingIsSuperAdmin: this.isSuperAdmin
+        });
       }
     } else {
       this.isSuperAdmin = false;
@@ -1206,12 +1322,33 @@ var EventService = class extends BaseService {
       this.resetInitialization();
       this.isInitializedRef = false;
       this.isFetchingRef = false;
-      if (previousOrgId !== null && newOrgId !== null && previousOrgId !== newOrgId) {
-        this.events = [];
-        this.selectedEvent = null;
-      } else if (previousOrgId !== null && newOrgId === null) {
-        this.events = [];
-        this.selectedEvent = null;
+      const shouldClearEvents = !this.isSuperAdmin;
+      const isFirstOrgSet = (previousOrgId === null || previousOrgId === void 0) && newOrgId !== null && newOrgId !== void 0;
+      if (isFirstOrgSet) {
+        const hadAutoSelectedEvent = this.hasAutoSelectedRef && !!this.selectedEvent;
+        this.userClearedEventRef = false;
+        if (!hadAutoSelectedEvent) {
+          this.hasAutoSelectedRef = false;
+        }
+        logger.debug("EventService", "Organisation first set - preserving event and resetting auto-selection flags", {
+          organisationId: newOrgId,
+          hasSelectedEvent: !!this.selectedEvent,
+          selectedEventId: this.selectedEvent?.event_id,
+          hadAutoSelectedEvent,
+          preservingEvent: hadAutoSelectedEvent,
+          previousOrgId,
+          newOrgId
+        });
+      } else if (previousOrgId !== null && previousOrgId !== void 0 && newOrgId !== null && newOrgId !== void 0 && previousOrgId !== newOrgId) {
+        if (shouldClearEvents) {
+          this.events = [];
+          this.setSelectedEvent(null);
+        }
+      } else if (previousOrgId !== null && previousOrgId !== void 0 && newOrgId === null) {
+        if (shouldClearEvents) {
+          this.events = [];
+          this.setSelectedEvent(null);
+        }
       }
     }
     this.notify();
@@ -1238,7 +1375,13 @@ var EventService = class extends BaseService {
         logger.warn("EventService", "Failed to persist event selection:", error);
       });
       this.userClearedEventRef = false;
+      logger.debug("EventService", "Event selected", {
+        eventId: event.event_id,
+        eventName: event.event_name,
+        userClearedEventRef: this.userClearedEventRef
+      });
     } else {
+      const previousEventId = this.selectedEvent?.event_id;
       this.selectedEvent = null;
       this.setSelectedEventId?.(null);
       this.clearEventSelection().catch((error) => {
@@ -1246,6 +1389,11 @@ var EventService = class extends BaseService {
       });
       this.hasAutoSelectedRef = false;
       this.userClearedEventRef = true;
+      logger.debug("EventService", "Event cleared via setSelectedEvent(null)", {
+        previousEventId,
+        userClearedEventRef: this.userClearedEventRef,
+        stackTrace: new Error().stack
+      });
     }
     this.notify();
   }
@@ -1335,9 +1483,11 @@ var EventService = class extends BaseService {
   }
   async doInitialize() {
     if (this.isInitializedRef) {
+      logger.debug("EventService", "Skipping initialization - already initialized");
       return;
     }
     if (this.isFetchingRef) {
+      logger.debug("EventService", "Skipping initialization - already fetching");
       return;
     }
     try {
@@ -1348,10 +1498,22 @@ var EventService = class extends BaseService {
       logger.warn("EventService", "Failed to clean up old storage keys:", error);
     }
     if (!this.user) {
+      logger.debug("EventService", "Skipping initialization - no user");
       return;
     }
+    logger.debug("EventService", "Initializing", {
+      userId: this.user.id,
+      appName: this.appName,
+      hasSelectedOrganisation: !!this.selectedOrganisation,
+      hasSupabaseClient: !!this.supabaseClient,
+      hasSession: !!this.session
+    });
     await this.fetchEvents(false);
     this.isInitializedRef = true;
+    logger.debug("EventService", "Initialization complete", {
+      eventsCount: this.events.length,
+      hasError: !!this.error
+    });
   }
   doCleanup() {
   }
@@ -1368,55 +1530,91 @@ var EventService = class extends BaseService {
     this.isFetchingRef = true;
     let isMounted = true;
     try {
-      if (!this.appConfig && this.appName) {
-        try {
-          this.appConfig = await getAppConfigByName(this.appName);
-        } catch (configError) {
-          logger.warn("EventService", "Failed to load app config, defaulting to event-required", {
-            error: configError
-          });
-          this.appConfig = { requires_event: true };
-        }
-      }
       let organisationIdForRpc = null;
-      let userIsSuperAdmin = false;
+      let userIsSuperAdmin = this.isSuperAdmin;
       try {
-        userIsSuperAdmin = await isSuperAdmin(this.user.id);
+        const { isRBACInitialized: isRBACInitialized2, isSuperAdmin: checkSuperAdmin, setupRBAC: setupRBAC2 } = await import("./api-6LVZTHDS.js");
+        if (!isRBACInitialized2() && this.supabaseClient) {
+          setupRBAC2(this.supabaseClient);
+        }
+        if (isRBACInitialized2()) {
+          userIsSuperAdmin = await checkSuperAdmin(this.user.id);
+          this.isSuperAdmin = userIsSuperAdmin;
+          logger.debug("EventService", "Super admin check completed", {
+            userId: this.user.id,
+            isSuperAdmin: userIsSuperAdmin
+          });
+        } else {
+          if (this.isSuperAdmin) {
+            userIsSuperAdmin = true;
+            logger.warn("EventService", "RBAC not initialized, using cached super admin status", {
+              userId: this.user.id,
+              cachedIsSuperAdmin: this.isSuperAdmin,
+              note: "RBAC should be initialized by UnifiedAuthProvider. This may indicate EventService is being used outside the provider."
+            });
+          } else {
+            logger.warn("EventService", "RBAC not initialized, using cached non-super-admin status", {
+              userId: this.user.id,
+              cachedIsSuperAdmin: this.isSuperAdmin,
+              note: "RBAC should be initialized by UnifiedAuthProvider. This may indicate EventService is being used outside the provider."
+            });
+          }
+        }
         if (userIsSuperAdmin) {
           organisationIdForRpc = null;
         } else {
           if (this.selectedEvent) {
             organisationIdForRpc = this.selectedEvent.organisation_id;
-          } else if (this.appConfig?.requires_event === true) {
-            organisationIdForRpc = null;
           } else if (this.selectedOrganisation) {
             organisationIdForRpc = this.selectedOrganisation.id;
           } else {
-            logger.warn("EventService", "No organisation context available for event fetch", {
+            logger.debug("EventService", "No organisation context available, fetching all accessible events", {
               hasSelectedEvent: !!this.selectedEvent,
-              hasSelectedOrganisation: !!this.selectedOrganisation,
-              appRequiresEvent: this.appConfig?.requires_event
+              hasSelectedOrganisation: !!this.selectedOrganisation
             });
             organisationIdForRpc = null;
           }
         }
       } catch (superAdminCheckError) {
-        logger.warn("EventService", "Failed to check super admin status, using organisation-scoped query", {
-          error: superAdminCheckError
-        });
-        if (this.selectedEvent) {
-          organisationIdForRpc = this.selectedEvent.organisation_id;
-        } else if (this.appConfig?.requires_event === true) {
+        if (this.isSuperAdmin) {
+          userIsSuperAdmin = true;
           organisationIdForRpc = null;
-        } else if (this.selectedOrganisation) {
-          organisationIdForRpc = this.selectedOrganisation.id;
+          logger.warn("EventService", "Super admin check failed, using cached super admin status", {
+            error: superAdminCheckError,
+            cachedIsSuperAdmin: this.isSuperAdmin
+          });
+        } else {
+          logger.warn("EventService", "Failed to check super admin status, using organisation-scoped query", {
+            error: superAdminCheckError,
+            cachedIsSuperAdmin: this.isSuperAdmin
+          });
+          if (this.selectedEvent) {
+            organisationIdForRpc = this.selectedEvent.organisation_id;
+          } else if (this.selectedOrganisation) {
+            organisationIdForRpc = this.selectedOrganisation.id;
+          } else {
+            organisationIdForRpc = null;
+          }
         }
       }
+      logger.debug("EventService", "Fetching events", {
+        userId: this.user.id,
+        organisationIdForRpc,
+        appName: this.appName,
+        hasSelectedEvent: !!this.selectedEvent,
+        hasSelectedOrganisation: !!this.selectedOrganisation,
+        isSuperAdmin: userIsSuperAdmin
+      });
       let { data, error: rpcError } = await this.supabaseClient.rpc("data_user_events_get", {
         p_user_id: this.user.id,
         p_organisation_id: organisationIdForRpc,
         p_app_name: this.appName
       });
+      logger.debug("EventService", "RPC response", {
+        dataLength: data?.length || 0,
+        hasError: !!rpcError,
+        error: rpcError
+      });
       if (rpcError) {
         logger.error("EventService", "RPC error fetching events:", rpcError);
         throw new Error(rpcError.message || "Failed to fetch events");
@@ -1439,25 +1637,84 @@ var EventService = class extends BaseService {
           created_at: (/* @__PURE__ */ new Date()).toISOString(),
           updated_at: (/* @__PURE__ */ new Date()).toISOString()
         }));
-        this.events = transformedEvents;
+        const sortedEvents = [...transformedEvents].sort((a, b) => {
+          if (a.event_date && b.event_date) {
+            return new Date(b.event_date).getTime() - new Date(a.event_date).getTime();
+          }
+          if (a.event_date && !b.event_date) return -1;
+          if (!a.event_date && b.event_date) return 1;
+          return 0;
+        });
+        this.events = sortedEvents;
         this.error = null;
+        if (this.selectedEvent) {
+          const selectedEventId = this.selectedEvent.event_id;
+          const eventStillExists = transformedEvents.some(
+            (e) => e.event_id === selectedEventId
+          );
+          if (!eventStillExists) {
+            const previousUserClearedRef = this.userClearedEventRef;
+            this.selectedEvent = null;
+            this.setSelectedEventId?.(null);
+            this.userClearedEventRef = previousUserClearedRef;
+            logger.debug("EventService", "Cleared selected event - no longer in events list", {
+              previousEventId: selectedEventId,
+              eventsCount: transformedEvents.length
+            });
+          }
+        }
         this.hasAutoSelectedRef = false;
         if (!skipLoadPersisted) {
           const persistedEventLoaded = await this.loadPersistedEvent(transformedEvents);
+          logger.debug("EventService", "Event selection check", {
+            persistedEventLoaded,
+            userClearedEventRef: this.userClearedEventRef,
+            eventsCount: transformedEvents.length,
+            hasSelectedEvent: !!this.selectedEvent
+          });
           if (!persistedEventLoaded && !this.userClearedEventRef) {
             const nextEvent = this.getNextEventByDate(transformedEvents);
+            logger.debug("EventService", "Auto-selection attempt", {
+              nextEventFound: !!nextEvent,
+              nextEventId: nextEvent?.event_id,
+              nextEventDate: nextEvent?.event_date
+            });
             if (nextEvent) {
               this.hasAutoSelectedRef = true;
               this.setSelectedEvent(nextEvent);
+              logger.debug("EventService", "Auto-selected next event", {
+                eventId: nextEvent.event_id,
+                eventName: nextEvent.event_name,
+                eventDate: nextEvent.event_date
+              });
+            } else {
+              logger.debug("EventService", "No next event found for auto-selection", {
+                eventsCount: transformedEvents.length,
+                eventsWithDates: transformedEvents.filter((e) => e.event_date).length
+              });
             }
+          } else if (persistedEventLoaded) {
+            logger.debug("EventService", "Skipped auto-selection - persisted event loaded");
+          } else if (this.userClearedEventRef) {
+            logger.debug("EventService", "Skipped auto-selection - user explicitly cleared event");
           }
         } else {
           if (!this.userClearedEventRef) {
             const nextEvent = this.getNextEventByDate(transformedEvents);
+            logger.debug("EventService", "Auto-selection attempt (skip persisted)", {
+              nextEventFound: !!nextEvent,
+              nextEventId: nextEvent?.event_id
+            });
             if (nextEvent) {
               this.hasAutoSelectedRef = true;
               this.setSelectedEvent(nextEvent);
+              logger.debug("EventService", "Auto-selected next event (skip persisted)", {
+                eventId: nextEvent.event_id,
+                eventName: nextEvent.event_name
+              });
             }
+          } else {
+            logger.debug("EventService", "Skipped auto-selection (skip persisted) - user explicitly cleared event");
           }
         }
       }
@@ -1514,6 +1771,8 @@ var EventService = class extends BaseService {
     return null;
   }
 };
+_EventService.instanceCount = 0;
+var EventService = _EventService;
 // src/providers/services/EventServiceProvider.tsx
 import { jsx as jsx3 } from "react/jsx-runtime";
@@ -1527,27 +1786,52 @@ function EventServiceProvider({
   selectedOrganisation,
   setSelectedEventId
 }) {
-  const eventServiceRef = useRef2(null);
-  const initializingRef = useRef2(false);
+  const eventServiceRef = useRef3(null);
+  const initializingRef = useRef3(false);
   if (!eventServiceRef.current) {
     eventServiceRef.current = new EventService(supabaseClient, user, session, appName, selectedOrganisation, setSelectedEventId);
   }
   const eventService = eventServiceRef.current;
   useEffect3(() => {
     let isMounted = true;
+    logger.debug("EventServiceProvider", "useEffect triggered", {
+      hasUser: !!user,
+      userId: user?.id,
+      hasSession: !!session,
+      appName,
+      isInitializing: initializingRef.current
+    });
     if (initializingRef.current) {
+      logger.debug("EventServiceProvider", "Skipping - already initializing");
       return;
     }
     const updateAndInitialize = async () => {
       initializingRef.current = true;
       try {
+        logger.debug("EventServiceProvider", "Updating dependencies and initializing", {
+          hasUser: !!user,
+          userId: user?.id,
+          hasSession: !!session,
+          appName,
+          hasSelectedOrganisation: !!selectedOrganisation
+        });
         await eventService.updateDependencies(supabaseClient, user, session, appName, selectedOrganisation, setSelectedEventId);
         if (!isMounted) return;
-        await eventService.initialize().catch((error) => {
-          if (isMounted) {
-            logger.error("EventServiceProvider", "Failed to initialize event service:", error);
-          }
-        });
+        if (user && session && supabaseClient && appName) {
+          logger.debug("EventServiceProvider", "Initializing event service");
+          await eventService.initialize().catch((error) => {
+            if (isMounted) {
+              logger.error("EventServiceProvider", "Failed to initialize event service:", error);
+            }
+          });
+        } else {
+          logger.debug("EventServiceProvider", "Skipping initialization - missing required dependencies", {
+            hasUser: !!user,
+            hasSession: !!session,
+            hasSupabaseClient: !!supabaseClient,
+            appName
+          });
+        }
       } finally {
         initializingRef.current = false;
       }
@@ -1570,7 +1854,7 @@ function EventServiceProvider({
 }
 // src/providers/services/InactivityServiceProvider.tsx
-import { createContext as createContext4, useMemo as useMemo4, useEffect as useEffect4, useRef as useRef3 } from "react";
+import { createContext as createContext4, useMemo as useMemo4, useEffect as useEffect4, useRef as useRef4 } from "react";
 // src/services/InactivityService.ts
 var InactivityService = class extends BaseService {
@@ -1914,7 +2198,7 @@ function InactivityServiceProvider({
   // REQUIRED: No default - must be explicitly provided
   onIdleLogout
 }) {
-  const inactivityServiceRef = useRef3(null);
+  const inactivityServiceRef = useRef4(null);
   if (!inactivityServiceRef.current) {
     inactivityServiceRef.current = new InactivityService(supabaseClient, user, session, idleTimeoutMs, warnBeforeMs, onIdleLogout);
   }
@@ -1943,14 +2227,14 @@ function InactivityServiceProvider({
 }
 // src/hooks/services/useAuthService.ts
-import { useContext, useReducer, useEffect as useEffect5, useRef as useRef4 } from "react";
+import { useContext, useReducer, useEffect as useEffect5, useRef as useRef5 } from "react";
 function useAuthService() {
   const context = useContext(AuthServiceContext);
   if (!context) {
     throw new Error("useAuthService must be used within AuthServiceProvider");
   }
   const [, forceUpdate] = useReducer((x) => x + 1, 0);
-  const timeoutRef = useRef4(null);
+  const timeoutRef = useRef5(null);
   useEffect5(() => {
     const debouncedUpdate = () => {
       if (timeoutRef.current) {
@@ -1973,14 +2257,14 @@ function useAuthService() {
 }
 // src/hooks/services/useOrganisationService.ts
-import { useContext as useContext2, useReducer as useReducer2, useEffect as useEffect6, useRef as useRef5 } from "react";
+import { useContext as useContext2, useReducer as useReducer2, useEffect as useEffect6, useRef as useRef6 } from "react";
 function useOrganisationService() {
   const context = useContext2(OrganisationServiceContext);
   if (!context) {
     throw new Error("useOrganisationService must be used within OrganisationServiceProvider");
   }
   const [, forceUpdate] = useReducer2((x) => x + 1, 0);
-  const timeoutRef = useRef5(null);
+  const timeoutRef = useRef6(null);
   useEffect6(() => {
     const debouncedUpdate = () => {
       if (timeoutRef.current) {
@@ -2026,14 +2310,14 @@ function useOrganisations() {
 }
 // src/hooks/services/useEventService.ts
-import { useContext as useContext3, useReducer as useReducer3, useEffect as useEffect7, useRef as useRef6 } from "react";
+import { useContext as useContext3, useReducer as useReducer3, useEffect as useEffect7, useRef as useRef7 } from "react";
 function useEventService() {
   const context = useContext3(EventServiceContext);
   if (!context) {
     throw new Error("useEventService must be used within EventServiceProvider");
   }
   const [, forceUpdate] = useReducer3((x) => x + 1, 0);
-  const timeoutRef = useRef6(null);
+  const timeoutRef = useRef7(null);
   useEffect7(() => {
     const debouncedUpdate = () => {
       if (timeoutRef.current) {
@@ -2056,14 +2340,14 @@ function useEventService() {
 }
 // src/hooks/services/useInactivityService.ts
-import { useContext as useContext4, useReducer as useReducer4, useEffect as useEffect8, useRef as useRef7 } from "react";
+import { useContext as useContext4, useReducer as useReducer4, useEffect as useEffect8, useRef as useRef8 } from "react";
 function useInactivityService() {
   const context = useContext4(InactivityServiceContext);
   if (!context) {
     throw new Error("useInactivityService must be used within InactivityServiceProvider");
   }
   const [, forceUpdate] = useReducer4((x) => x + 1, 0);
-  const timeoutRef = useRef7(null);
+  const timeoutRef = useRef8(null);
   useEffect8(() => {
     const debouncedUpdate = () => {
       if (timeoutRef.current) {
@@ -2138,7 +2422,6 @@ var useUnifiedAuth = () => {
 function UnifiedAuthContextProvider({
   children,
   appName,
-  appConfig: appConfigProp,
   supabaseClient: supabaseClientProp,
   ...props
 }) {
@@ -2158,13 +2441,6 @@ function UnifiedAuthContextProvider({
     restorationComplete,
     restorationError
   }), [isRestoring, restorationComplete, restorationError]);
-  const [appConfigState, setAppConfigState] = useState3(appConfigProp || null);
-  const isResolvingAppConfigRef = useRef8(false);
-  const resolvedAppConfigRef = useRef8(null);
-  const appConfig = useMemo6(() => {
-    if (!appConfigState) return null;
-    return { requires_event: appConfigState.requires_event };
-  }, [appConfigState?.requires_event]);
   let eventService;
   try {
     eventService = useEventService();
@@ -2188,9 +2464,17 @@ function UnifiedAuthContextProvider({
   const isAuth = !!(currentUser && currentSession);
   const supabase = useMemo6(() => supabaseClientProp, [supabaseClientProp]);
   const [appId, setAppId] = useState3(void 0);
-  const isResolvingAppIdRef = useRef8(false);
-  const resolvedAppIdRef = useRef8(void 0);
-  const resolvedUserIdRef = useRef8(void 0);
+  useEffect10(() => {
+    logger.debug("UnifiedAuthContextProvider", `Rendering [AuthService ID:${authService.getInstanceId?.() || "unknown"}]`, {
+      hasUser: !!currentUser,
+      userId: currentUser?.id,
+      hasSession: !!currentSession,
+      isAuth
+    });
+  }, [currentUser?.id, currentSession?.access_token, isAuth, authService]);
+  const isResolvingAppIdRef = useRef9(false);
+  const resolvedAppIdRef = useRef9(void 0);
+  const resolvedUserIdRef = useRef9(void 0);
   useEffect10(() => {
     if (!isAuth) {
       resolvedAppIdRef.current = void 0;
@@ -2210,9 +2494,9 @@ function UnifiedAuthContextProvider({
       resolvedUserIdRef.current = currentUserId;
       const userId = currentUserId;
       const appNameValue = appName;
-      import("./api-MVVQZLJI.js").then(async ({ resolveAppContext, setupRBAC }) => {
+      import("./api-6LVZTHDS.js").then(async ({ resolveAppContext, setupRBAC: setupRBAC2 }) => {
         try {
-          setupRBAC(supabase);
+          setupRBAC2(supabase);
           const result = await resolveAppContext({
             userId,
             appName: appNameValue
@@ -2240,59 +2524,8 @@ function UnifiedAuthContextProvider({
       });
     }
   }, [isAuth, currentUser?.id, supabase, appName]);
-  useEffect10(() => {
-    if (appConfigProp !== void 0) {
-      setAppConfigState(appConfigProp);
-      resolvedAppConfigRef.current = appConfigProp;
-      return;
-    }
-    if (resolvedAppConfigRef.current !== null || isResolvingAppConfigRef.current) {
-      return;
-    }
-    if (!supabase || !appName) {
-      return;
-    }
-    isResolvingAppConfigRef.current = true;
-    import("./api-MVVQZLJI.js").then(async ({ getAppConfigByName: getAppConfigByName2 }) => {
-      try {
-        const config = await getAppConfigByName2(appName);
-        const resolvedConfig = config || { requires_event: false };
-        if (resolvedAppConfigRef.current?.requires_event !== resolvedConfig.requires_event) {
-          resolvedAppConfigRef.current = resolvedConfig;
-          setAppConfigState(resolvedConfig);
-        }
-        if (import.meta.env.DEV && appName === "MINT") {
-          logger.debug("UnifiedAuthProvider", "App config loaded", {
-            appName,
-            config: resolvedConfig,
-            requiresEvent: resolvedConfig.requires_event
-          });
-        }
-      } catch (error) {
-        logger.warn("UnifiedAuthProvider", "Failed to load app config, defaulting to organisation-based", {
-          error: error instanceof Error ? error.message : String(error),
-          appName
-        });
-        if (resolvedAppConfigRef.current?.requires_event !== false) {
-          const defaultConfig = { requires_event: false };
-          resolvedAppConfigRef.current = defaultConfig;
-          setAppConfigState(defaultConfig);
-        }
-      } finally {
-        isResolvingAppConfigRef.current = false;
-      }
-    }).catch((importError) => {
-      logger.error("UnifiedAuthProvider", "Failed to import RBAC API for app config", importError);
-      isResolvingAppConfigRef.current = false;
-      if (resolvedAppConfigRef.current?.requires_event !== false) {
-        const defaultConfig = { requires_event: false };
-        resolvedAppConfigRef.current = defaultConfig;
-        setAppConfigState(defaultConfig);
-      }
-    });
-  }, [supabase, appName, appConfigProp]);
   const [, forceUpdate] = useReducer5((x) => x + 1, 0);
-  const forceUpdateTimeoutRef = useRef8(null);
+  const forceUpdateTimeoutRef = useRef9(null);
   const debouncedForceUpdate = useCallback(() => {
     if (forceUpdateTimeoutRef.current) {
       clearTimeout(forceUpdateTimeoutRef.current);
@@ -2302,10 +2535,10 @@ function UnifiedAuthContextProvider({
       forceUpdateTimeoutRef.current = null;
     }, 100);
   }, [forceUpdate]);
-  const authServiceRef = useRef8(authService);
-  const organisationServiceRef = useRef8(organisationService);
-  const eventServiceRef = useRef8(eventService);
-  const inactivityServiceRef = useRef8(inactivityService);
+  const authServiceRef = useRef9(authService);
+  const organisationServiceRef = useRef9(organisationService);
+  const eventServiceRef = useRef9(eventService);
+  const inactivityServiceRef = useRef9(inactivityService);
   useEffect10(() => {
     authServiceRef.current = authService;
     organisationServiceRef.current = organisationService;
@@ -2336,20 +2569,7 @@ function UnifiedAuthContextProvider({
   const authError = authService.getError();
   const rawSelectedOrganisation = organisationService.getSelectedOrganisation();
   const organisationError = organisationService.getError();
-  const selectedOrganisation = appConfig !== null && appConfig?.requires_event === true && !rawSelectedOrganisation ? null : rawSelectedOrganisation;
-  useEffect10(() => {
-    if (import.meta.env.DEV && appName === "MINT") {
-      logger.debug("UnifiedAuthProvider", "Organisation state check", {
-        rawSelectedOrganisation: rawSelectedOrganisation?.id || null,
-        rawSelectedOrganisationType: typeof rawSelectedOrganisation,
-        appConfig,
-        appConfigRequiresEvent: appConfig?.requires_event,
-        selectedOrganisation: selectedOrganisation?.id || null,
-        selectedOrganisationId: selectedOrganisation?.id || null,
-        checkResult: appConfig?.requires_event === true
-      });
-    }
-  }, [appName, rawSelectedOrganisation?.id, appConfig?.requires_event, selectedOrganisation?.id]);
+  const selectedOrganisation = rawSelectedOrganisation;
   const hasValidOrganisationContext = organisationService.hasValidOrganisationContext();
   const isContextReady = organisationService.isContextReady();
   const rawEvents = eventService.getEvents();
@@ -2418,7 +2638,7 @@ function UnifiedAuthContextProvider({
   const handleIdleLogout = () => inactivityService.handleIdleLogout();
   const handleStaySignedIn = () => inactivityService.handleStaySignedIn();
   const handleSignOutNow = () => inactivityService.handleSignOutNow();
-  const prevStateRef = useRef8(null);
+  const prevStateRef = useRef9(null);
   const isDev = import.meta.env.DEV || import.meta.env.MODE === "development";
   if (isDev) {
     const currentState = {
@@ -2491,7 +2711,6 @@ function UnifiedAuthContextProvider({
       appName,
       appId,
       // Resolved immediately on login
-      appConfig,
       isLoading: totalLoading,
       hasErrors,
       sessionRestoration,
@@ -2524,7 +2743,6 @@ function UnifiedAuthContextProvider({
     hasErrors,
     appName,
     appId,
-    appConfig,
     sessionRestoration,
     sessionRestorationTimedOut,
     sessionRestorationTimeoutMs,
@@ -2558,13 +2776,19 @@ function EventServiceProviderWrapper({
   supabaseClient,
   user,
   session,
-  appName,
-  appConfig
+  appName
 }) {
-  const { selectedOrganisation: rawSelectedOrganisation } = useOrganisations();
-  const selectedOrganisation = appConfig !== null && appConfig?.requires_event === true && !rawSelectedOrganisation ? null : rawSelectedOrganisation;
+  const { selectedOrganisation } = useOrganisations();
   const setSelectedEventId = useCallback(() => {
   }, []);
+  useEffect10(() => {
+    logger.debug("EventServiceProviderWrapper", "Rendering with props", {
+      hasUser: !!user,
+      userId: user?.id,
+      hasSession: !!session,
+      selectedOrganisationId: selectedOrganisation?.id
+    });
+  }, [user?.id, session?.access_token, selectedOrganisation?.id]);
   return /* @__PURE__ */ jsx5(
     EventServiceProvider,
     {
@@ -2582,7 +2806,6 @@ function ServiceAwareProviders({
   children,
   supabaseClient,
   appName,
-  appConfig,
   persistState,
   enablePersistence,
   requireOrganisationContext,
@@ -2593,26 +2816,51 @@ function ServiceAwareProviders({
   dangerouslyDisableInactivity
 }) {
   const authService = useAuthService();
+  const [userState, setUserState] = useState3(() => authService.getUser());
+  const [sessionState, setSessionState] = useState3(() => authService.getSession());
+  useEffect10(() => {
+    const unsubscribe = authService.subscribe(() => {
+      const newUser = authService.getUser();
+      const newSession = authService.getSession();
+      logger.debug("ServiceAwareProviders", "Auth service notified, updating state", {
+        hasUser: !!newUser,
+        userId: newUser?.id,
+        hasSession: !!newSession
+      });
+      setUserState(newUser);
+      setSessionState(newSession);
+    });
+    return unsubscribe;
+  }, [authService]);
+  const user = userState;
+  const session = sessionState;
+  useEffect10(() => {
+    logger.debug("ServiceAwareProviders", `User/session state [AuthService ID:${authService.getInstanceId?.() || "unknown"}]`, {
+      hasUser: !!user,
+      userId: user?.id,
+      hasSession: !!session,
+      sessionToken: session?.access_token ? "present" : "missing"
+    });
+  }, [user?.id, session?.access_token, authService]);
   return /* @__PURE__ */ jsx5(
     OrganisationServiceProvider,
     {
       supabaseClient,
-      user: authService.getUser(),
-      session: authService.getSession(),
+      user,
+      session,
       children: /* @__PURE__ */ jsx5(
         EventServiceProviderWrapper,
         {
           supabaseClient,
-          user: authService.getUser(),
-          session: authService.getSession(),
+          user,
+          session,
           appName,
-          appConfig,
           children: /* @__PURE__ */ jsx5(
             InactivityServiceProvider,
             {
               supabaseClient,
-              user: authService.getUser(),
-              session: authService.getSession(),
+              user,
+              session,
               idleTimeoutMs,
               warnBeforeMs,
               onIdleLogout,
@@ -2620,7 +2868,6 @@ function ServiceAwareProviders({
                 UnifiedAuthContextProvider,
                 {
                   appName,
-                  appConfig,
                   supabaseClient,
                   persistState,
                   enablePersistence,
@@ -2644,8 +2891,6 @@ function UnifiedAuthProvider({
   children,
   supabaseClient,
   appName,
-  appConfig = { requires_event: true },
-  // Default to requiring events
   persistState = true,
   enablePersistence,
   requireOrganisationContext = true,
@@ -2658,7 +2903,7 @@ function UnifiedAuthProvider({
   renderInactivityWarning,
   dangerouslyDisableInactivity = false
 }) {
-  const clientRef = useRef8(supabaseClient);
+  const clientRef = useRef9(supabaseClient);
   useEffect10(() => {
     if (clientRef.current !== supabaseClient) {
       logger.warn("UnifiedAuthProvider", "Supabase client reference changed - this may indicate multiple client instances are being created", {
@@ -2667,14 +2912,23 @@ function UnifiedAuthProvider({
         note: 'Ensure you create the Supabase client once and reuse it. Creating multiple clients can cause performance issues and the "Multiple GoTrueClient instances" warning.'
       });
       clientRef.current = supabaseClient;
+    } else {
+      logger.debug("UnifiedAuthProvider", "Supabase client reference is stable");
     }
   }, [supabaseClient]);
+  if (supabaseClient && !isRBACInitialized()) {
+    try {
+      setupRBAC(supabaseClient);
+      logger.debug("UnifiedAuthProvider", "RBAC initialized synchronously");
+    } catch (err) {
+      logger.error("UnifiedAuthProvider", "Failed to initialize RBAC", err);
+    }
+  }
   return /* @__PURE__ */ jsx5(AuthServiceProvider, { supabaseClient, appName, children: /* @__PURE__ */ jsx5(
     ServiceAwareProviders,
     {
       supabaseClient,
       appName,
-      appConfig,
       persistState,
       enablePersistence,
       requireOrganisationContext,
@@ -2707,4 +2961,4 @@ export {
   useUnifiedAuth,
   UnifiedAuthProvider
 };
-//# sourceMappingURL=chunk-EHMR7VYL.js.map
+//# sourceMappingURL=chunk-AVMLPIM7.js.map