npm - @jmruthers/pace-core - Versions diffs - 0.6.4 → 0.6.6 - Mend

@jmruthers/pace-core 0.6.4 → 0.6.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (387) hide show

package/CHANGELOG.md +104 -0
package/README.md +5 -403
package/core-usage-manifest.json +93 -0
package/cursor-rules/00-pace-core-compliance.mdc +128 -26
package/cursor-rules/01-standards-compliance.mdc +49 -8
package/cursor-rules/02-project-structure.mdc +6 -0
package/cursor-rules/03-solid-principles.mdc +2 -0
package/cursor-rules/04-testing-standards.mdc +2 -0
package/cursor-rules/05-bug-reports-and-features.mdc +2 -0
package/cursor-rules/06-code-quality.mdc +2 -0
package/cursor-rules/07-tech-stack-compliance.mdc +2 -0
package/cursor-rules/08-markup-quality.mdc +52 -27
package/cursor-rules/09-rbac-compliance.mdc +462 -0
package/cursor-rules/10-error-handling-patterns.mdc +179 -0
package/cursor-rules/11-performance-optimization.mdc +169 -0
package/cursor-rules/12-ci-cd-integration.mdc +150 -0
package/dist/{AuthService-Cb34EQs3.d.ts → AuthService-DmfO5rGS.d.ts} +10 -0
package/dist/{DataTable-BMRU8a1j.d.ts → DataTable-2N_tqbfq.d.ts} +1 -1
package/dist/DataTable-LRJL4IRV.js +15 -0
package/dist/{PublicPageProvider-DEMpysFR.d.ts → PublicPageProvider-BBH6Vqg7.d.ts} +72 -139
package/dist/UnifiedAuthProvider-ZT6TIGM7.js +7 -0
package/dist/api-Y4MQWOFW.js +4 -0
package/dist/audit-MYQXYZFU.js +3 -0
package/dist/{chunk-J36DSWQK.js → chunk-2HGJFNAH.js} +8 -28
package/dist/{chunk-OEWDTMG7.js → chunk-3O3WHILE.js} +38 -121
package/dist/{chunk-M43Y4SSO.js → chunk-3QC3KRHK.js} +1 -14
package/dist/{chunk-DGUM43GV.js → chunk-3RG5ZIWI.js} +1 -4
package/dist/{chunk-QXHPKYJV.js → chunk-4SXLQIZO.js} +1 -26
package/dist/chunk-4T7OBVTU.js +62 -0
package/dist/{chunk-E66EQZE6.js → chunk-6GLLNA6U.js} +3 -9
package/dist/{chunk-ZSAAAMVR.js → chunk-6QYDGKQY.js} +1 -4
package/dist/{chunk-NN6WWZ5U.js → chunk-7TYHROIV.js} +579 -563
package/dist/{chunk-M7MPQISP.js → chunk-A55DK444.js} +9 -16
package/dist/{chunk-63FOKYGO.js → chunk-AHU7G2R5.js} +2 -11
package/dist/{chunk-L4OXEN46.js → chunk-BVP2BCJF.js} +2 -16
package/dist/chunk-C7NSAPTL.js +1 -0
package/dist/{chunk-YKRAFF5K.js → chunk-FENMYN2U.js} +73 -149
package/dist/{chunk-AVMLPIM7.js → chunk-FTCRZOG2.js} +284 -432
package/dist/{chunk-G37KK66H.js → chunk-FYHN4DD5.js} +60 -19
package/dist/{chunk-VBXEHIUJ.js → chunk-HF6O3O37.js} +6 -88
package/dist/{chunk-I6DAQMWX.js → chunk-LAZMKTTF.js} +930 -891
package/dist/{chunk-5EC5MEWX.js → chunk-MAGBIDNS.js} +77 -222
package/dist/chunk-MBADTM7L.js +64 -0
package/dist/chunk-OHIK3MIO.js +994 -0
package/dist/{chunk-6SOIHG6Z.js → chunk-S7DKJPLT.js} +115 -44
package/dist/{chunk-FMUCXFII.js → chunk-SD6WQY43.js} +1 -5
package/dist/{chunk-PWLANIRT.js → chunk-TTRFSOKR.js} +1 -7
package/dist/{chunk-5DRSZLL2.js → chunk-UH3NTO3F.js} +1 -6
package/dist/{chunk-FFQEQTNW.js → chunk-UIYSCEV7.js} +134 -45
package/dist/{chunk-3LPHPB62.js → chunk-ZFYPMX46.js} +271 -87
package/dist/{chunk-7JPAB3T5.js → chunk-ZS5VO5JB.js} +1989 -1283
package/dist/components.d.ts +6 -6
package/dist/components.js +57 -267
package/dist/{database.generated-CzIvgcPu.d.ts → database.generated-CcnC_DRc.d.ts} +4795 -3691
package/dist/eslint-rules/index.cjs +22 -0
package/dist/eslint-rules/rules/compliance.cjs +348 -0
package/dist/eslint-rules/rules/components.cjs +113 -0
package/dist/eslint-rules/rules/imports.cjs +102 -0
package/dist/eslint-rules/rules/rbac.cjs +790 -0
package/dist/eslint-rules/utils/helpers.cjs +42 -0
package/dist/eslint-rules/utils/manifest-loader.cjs +75 -0
package/dist/hooks.d.ts +5 -5
package/dist/hooks.js +62 -270
package/dist/icons/index.d.ts +1 -0
package/dist/icons/index.js +1 -0
package/dist/index.d.ts +36 -26
package/dist/index.js +87 -690
package/dist/providers.d.ts +2 -2
package/dist/providers.js +8 -35
package/dist/rbac/eslint-rules.d.ts +46 -44
package/dist/rbac/eslint-rules.js +7 -4
package/dist/rbac/index.d.ts +124 -594
package/dist/rbac/index.js +14 -207
package/dist/styles/index.js +2 -12
package/dist/theming/runtime.js +3 -19
package/dist/{timezone-CHhWg6b4.d.ts → timezone-BZe_eUxx.d.ts} +175 -1
package/dist/{types-CkbwOr4Y.d.ts → types-B-K_5VnO.d.ts} +4 -0
package/dist/types-t9H8qKRw.d.ts +55 -0
package/dist/types.d.ts +1 -1
package/dist/types.js +7 -94
package/dist/{usePublicRouteParams-i3qtoBgg.d.ts → usePublicRouteParams-COZ28Mvq.d.ts} +9 -9
package/dist/utils.d.ts +24 -117
package/dist/utils.js +54 -392
package/docs/README.md +16 -6
package/docs/api/README.md +4 -402
package/docs/api/modules.md +454 -930
package/docs/api-reference/components.md +3 -1
package/docs/api-reference/deprecated.md +31 -6
package/docs/api-reference/rpc-functions.md +78 -3
package/docs/best-practices/accessibility.md +6 -3
package/docs/getting-started/cursor-rules.md +3 -23
package/docs/getting-started/dependencies.md +650 -0
package/docs/getting-started/installation-guide.md +20 -7
package/docs/getting-started/quick-start.md +23 -12
package/docs/implementation-guides/permission-enforcement.md +4 -0
package/docs/rbac/MIGRATION_GUIDE.md +819 -0
package/docs/rbac/RBAC_CONTRACT.md +724 -0
package/docs/rbac/README.md +12 -3
package/docs/rbac/edge-functions-guide.md +376 -0
package/docs/rbac/secure-client-protection.md +0 -34
package/docs/standards/00-pace-core-compliance.md +967 -0
package/docs/standards/01-standards-compliance.md +188 -0
package/docs/standards/02-project-structure.md +985 -0
package/docs/standards/03-solid-principles.md +39 -0
package/docs/standards/04-testing-standards.md +36 -0
package/docs/standards/05-bug-reports-and-features.md +27 -0
package/docs/standards/{04-code-style-standard.md → 06-code-quality.md} +2 -0
package/docs/standards/07-tech-stack-compliance.md +30 -0
package/docs/standards/08-markup-quality.md +345 -0
package/docs/standards/{07-rbac-and-rls-standard.md → 09-rbac-compliance.md} +149 -54
package/docs/standards/10-error-handling-patterns.md +401 -0
package/docs/standards/11-performance-optimization.md +348 -0
package/docs/standards/12-ci-cd-integration.md +370 -0
package/docs/standards/ALIGNMENT_REVIEW_SUMMARY.md +192 -0
package/docs/standards/README.md +62 -33
package/docs/troubleshooting/organisation-context-setup.md +42 -19
package/eslint-config-pace-core.cjs +20 -4
package/package.json +31 -21
package/scripts/audit/audit-compliance.cjs +1295 -0
package/scripts/audit/audit-components.cjs +260 -0
package/scripts/audit/audit-dependencies.cjs +395 -0
package/scripts/audit/audit-rbac.cjs +954 -0
package/scripts/audit/audit-standards.cjs +1268 -0
package/scripts/audit/index.cjs +1898 -194
package/scripts/install-cursor-rules.cjs +259 -8
package/scripts/validate-master.js +1 -1
package/src/__tests__/fixtures/supabase.ts +1 -1
package/src/__tests__/helpers/__tests__/component-test-utils.test.tsx +1 -1
package/src/__tests__/helpers/__tests__/optimized-test-setup.test.ts +1 -1
package/src/__tests__/helpers/__tests__/supabaseMock.test.ts +1 -1
package/src/__tests__/helpers/__tests__/test-utils.test.tsx +3 -3
package/src/__tests__/helpers/component-test-utils.tsx +1 -1
package/src/__tests__/helpers/supabaseMock.ts +2 -2
package/src/__tests__/public-recipe-view.test.ts +38 -9
package/src/components/Button/Button.tsx +5 -1
package/src/components/ContextSelector/ContextSelector.tsx +42 -39
package/src/components/DataTable/__tests__/keyboard.test.tsx +15 -2
package/src/components/DataTable/components/DataTableBody.tsx +55 -31
package/src/components/DataTable/components/DataTableCore.tsx +186 -13
package/src/components/DataTable/components/DataTableLayout.tsx +30 -5
package/src/components/DataTable/components/EditFields.tsx +23 -3
package/src/components/DataTable/components/EditableRow.tsx +7 -2
package/src/components/DataTable/components/ImportModal.tsx +4 -6
package/src/components/DataTable/components/RowComponent.tsx +12 -0
package/src/components/DataTable/components/ViewRowModal.tsx +4 -4
package/src/components/DataTable/components/__tests__/ImportModal.test.tsx +455 -96
package/src/components/DataTable/components/__tests__/ViewRowModal.test.tsx +122 -58
package/src/components/DataTable/components/hooks/usePermissionTracking.ts +0 -4
package/src/components/DataTable/core/DataTableContext.tsx +1 -1
package/src/components/DataTable/hooks/__tests__/useDataTableState.test.ts +51 -47
package/src/components/DataTable/hooks/useDataTablePermissions.ts +24 -21
package/src/components/DataTable/hooks/useDataTableState.ts +125 -9
package/src/components/DataTable/hooks/useTableColumns.ts +40 -2
package/src/components/DataTable/hooks/useTableHandlers.ts +11 -0
package/src/components/DataTable/types.ts +5 -0
package/src/components/DateTimeField/DateTimeField.tsx +20 -20
package/src/components/DateTimeField/README.md +5 -2
package/src/components/Dialog/Dialog.test.tsx +361 -318
package/src/components/Dialog/Dialog.tsx +1154 -323
package/src/components/Dialog/index.ts +3 -3
package/src/components/FileDisplay/FileDisplay.test.tsx +45 -2
package/src/components/FileDisplay/FileDisplay.tsx +28 -22
package/src/components/Form/Form.test.tsx +9 -10
package/src/components/Form/Form.tsx +369 -9
package/src/components/InactivityWarningModal/InactivityWarningModal.test.tsx +28 -28
package/src/components/InactivityWarningModal/InactivityWarningModal.tsx +40 -54
package/src/components/LoginForm/LoginForm.tsx +2 -2
package/src/components/NavigationMenu/NavigationMenu.test.tsx +14 -13
package/src/components/NavigationMenu/NavigationMenu.tsx +2 -2
package/src/components/NavigationMenu/useNavigationFiltering.ts +11 -21
package/src/components/PaceAppLayout/PaceAppLayout.test.tsx +6 -4
package/src/components/PaceAppLayout/PaceAppLayout.tsx +30 -41
package/src/components/PaceAppLayout/README.md +10 -9
package/src/components/PaceAppLayout/test-setup.tsx +40 -31
package/src/components/PaceLoginPage/PaceLoginPage.test.tsx +108 -61
package/src/components/PaceLoginPage/PaceLoginPage.tsx +27 -3
package/src/components/PasswordChange/PasswordChangeForm.test.tsx +61 -0
package/src/components/PasswordChange/PasswordChangeForm.tsx +20 -13
package/src/components/PublicLayout/PublicLayout.test.tsx +7 -3
package/src/components/PublicLayout/PublicPageLayout.tsx +5 -8
package/src/components/Select/Select.tsx +23 -21
package/src/components/Select/types.ts +1 -1
package/src/components/UserMenu/UserMenu.test.tsx +38 -6
package/src/components/UserMenu/UserMenu.tsx +39 -34
package/src/components/index.ts +3 -4
package/src/eslint-rules/index.cjs +22 -0
package/src/eslint-rules/rules/compliance.cjs +348 -0
package/src/eslint-rules/rules/components.cjs +113 -0
package/src/eslint-rules/rules/imports.cjs +102 -0
package/src/eslint-rules/rules/rbac.cjs +790 -0
package/src/eslint-rules/utils/helpers.cjs +42 -0
package/src/eslint-rules/utils/manifest-loader.cjs +75 -0
package/src/hooks/__tests__/hooks.integration.test.tsx +6 -8
package/src/hooks/__tests__/useAppConfig.unit.test.ts +129 -67
package/src/hooks/__tests__/usePublicEvent.simple.test.ts +149 -67
package/src/hooks/__tests__/usePublicEvent.test.ts +149 -79
package/src/hooks/__tests__/usePublicEvent.unit.test.ts +158 -109
package/src/hooks/__tests__/useSessionDraft.test.ts +163 -0
package/src/hooks/__tests__/useSessionRestoration.unit.test.tsx +10 -5
package/src/hooks/public/usePublicEvent.ts +62 -190
package/src/hooks/public/usePublicEventLogo.test.ts +70 -17
package/src/hooks/public/usePublicEventLogo.ts +19 -9
package/src/hooks/useAppConfig.ts +26 -24
package/src/hooks/useEventTheme.test.ts +211 -233
package/src/hooks/useEventTheme.ts +19 -28
package/src/hooks/useEvents.ts +11 -7
package/src/hooks/useKeyboardShortcuts.ts +1 -1
package/src/hooks/useOrganisationPermissions.ts +9 -11
package/src/hooks/useOrganisations.ts +13 -7
package/src/hooks/useQueryCache.ts +0 -1
package/src/hooks/useSessionDraft.ts +380 -0
package/src/hooks/useSessionRestoration.ts +3 -1
package/src/icons/index.ts +27 -0
package/src/index.ts +16 -1
package/src/providers/OrganisationProvider.tsx +23 -14
package/src/providers/services/EventServiceProvider.tsx +1 -24
package/src/providers/services/UnifiedAuthProvider.tsx +5 -48
package/src/providers/services/__tests__/UnifiedAuthProvider.integration.test.tsx +3 -0
package/src/rbac/README.md +20 -20
package/src/rbac/__tests__/adapters.comprehensive.test.tsx +7 -457
package/src/rbac/__tests__/auth-rbac.e2e.test.tsx +33 -7
package/src/rbac/adapters.tsx +7 -295
package/src/rbac/api.test.ts +44 -56
package/src/rbac/api.ts +10 -17
package/src/rbac/cache-invalidation.ts +0 -1
package/src/rbac/compliance/index.ts +10 -0
package/src/rbac/compliance/pattern-detector.ts +553 -0
package/src/rbac/compliance/runtime-compliance.ts +22 -0
package/src/rbac/components/AccessDenied.tsx +150 -0
package/src/rbac/components/NavigationGuard.tsx +12 -20
package/src/rbac/components/PagePermissionGuard.tsx +4 -24
package/src/rbac/components/__tests__/NavigationGuard.test.tsx +21 -8
package/src/rbac/components/index.ts +3 -41
package/src/rbac/eslint-rules.js +1 -1
package/src/rbac/hooks/index.ts +0 -3
package/src/rbac/hooks/permissions/index.ts +0 -3
package/src/rbac/hooks/permissions/useAccessLevel.ts +4 -8
package/src/rbac/hooks/usePermissions.ts +0 -3
package/src/rbac/hooks/useRBAC.test.ts +21 -3
package/src/rbac/hooks/useRBAC.ts +4 -3
package/src/rbac/hooks/useResolvedScope.test.ts +57 -47
package/src/rbac/hooks/useResolvedScope.ts +58 -140
package/src/rbac/hooks/useResourcePermissions.test.ts +241 -60
package/src/rbac/hooks/useResourcePermissions.ts +182 -63
package/src/rbac/hooks/useRoleManagement.test.ts +65 -22
package/src/rbac/hooks/useRoleManagement.ts +147 -19
package/src/rbac/hooks/useSecureSupabase.ts +4 -8
package/src/rbac/index.ts +7 -9
package/src/rbac/permissions.ts +17 -17
package/src/rbac/utils/contextValidator.ts +45 -7
package/src/services/AuthService.ts +132 -23
package/src/services/EventService.ts +4 -97
package/src/services/InactivityService.ts +155 -58
package/src/services/OrganisationService.ts +7 -44
package/src/services/__tests__/OrganisationService.test.ts +26 -8
package/src/services/base/BaseService.ts +0 -3
package/src/styles/core.css +4 -0
package/src/types/database.generated.ts +4733 -3809
package/src/utils/__tests__/organisationContext.unit.test.ts +9 -10
package/src/utils/context/organisationContext.test.ts +13 -28
package/src/utils/context/organisationContext.ts +21 -52
package/src/utils/dynamic/dynamicUtils.ts +1 -1
package/src/utils/file-reference/index.ts +39 -15
package/src/utils/formatting/formatDateTime.test.ts +3 -2
package/src/utils/formatting/formatTime.test.ts +3 -2
package/src/utils/google-places/loadGoogleMapsScript.ts +29 -4
package/src/utils/index.ts +4 -1
package/src/utils/persistence/__tests__/keyDerivation.test.ts +135 -0
package/src/utils/persistence/__tests__/sensitiveFieldDetection.test.ts +123 -0
package/src/utils/persistence/keyDerivation.ts +304 -0
package/src/utils/persistence/sensitiveFieldDetection.ts +212 -0
package/src/utils/security/secureStorage.ts +5 -5
package/src/utils/storage/helpers.ts +3 -3
package/src/utils/supabase/createBaseClient.ts +147 -0
package/src/utils/timezone/timezone.test.ts +1 -2
package/src/utils/timezone/timezone.ts +1 -1
package/src/utils/validation/csrf.ts +4 -4
package/cursor-rules/CHANGELOG.md +0 -119
package/cursor-rules/README.md +0 -192
package/dist/DataTable-E7YQZD7D.js +0 -175
package/dist/DataTable-E7YQZD7D.js.map +0 -1
package/dist/UnifiedAuthProvider-QPXO24B4.js +0 -18
package/dist/UnifiedAuthProvider-QPXO24B4.js.map +0 -1
package/dist/api-6LVZTHDS.js +0 -52
package/dist/api-6LVZTHDS.js.map +0 -1
package/dist/audit-V53FV5AG.js +0 -17
package/dist/audit-V53FV5AG.js.map +0 -1
package/dist/chunk-36LVWXB2.js +0 -227
package/dist/chunk-36LVWXB2.js.map +0 -1
package/dist/chunk-3LPHPB62.js.map +0 -1
package/dist/chunk-5DRSZLL2.js.map +0 -1
package/dist/chunk-5EC5MEWX.js.map +0 -1
package/dist/chunk-63FOKYGO.js.map +0 -1
package/dist/chunk-6SOIHG6Z.js.map +0 -1
package/dist/chunk-7JPAB3T5.js.map +0 -1
package/dist/chunk-ATKZM7RX.js +0 -2053
package/dist/chunk-ATKZM7RX.js.map +0 -1
package/dist/chunk-AVMLPIM7.js.map +0 -1
package/dist/chunk-DGUM43GV.js.map +0 -1
package/dist/chunk-E66EQZE6.js.map +0 -1
package/dist/chunk-FFQEQTNW.js.map +0 -1
package/dist/chunk-FMUCXFII.js.map +0 -1
package/dist/chunk-G37KK66H.js.map +0 -1
package/dist/chunk-I6DAQMWX.js.map +0 -1
package/dist/chunk-J36DSWQK.js.map +0 -1
package/dist/chunk-KQCRWDSA.js +0 -1
package/dist/chunk-KQCRWDSA.js.map +0 -1
package/dist/chunk-L4OXEN46.js.map +0 -1
package/dist/chunk-LMC26NLJ.js +0 -84
package/dist/chunk-LMC26NLJ.js.map +0 -1
package/dist/chunk-M43Y4SSO.js.map +0 -1
package/dist/chunk-M7MPQISP.js.map +0 -1
package/dist/chunk-NN6WWZ5U.js.map +0 -1
package/dist/chunk-OEWDTMG7.js.map +0 -1
package/dist/chunk-PWLANIRT.js.map +0 -1
package/dist/chunk-QXHPKYJV.js.map +0 -1
package/dist/chunk-VBXEHIUJ.js.map +0 -1
package/dist/chunk-YKRAFF5K.js.map +0 -1
package/dist/chunk-ZSAAAMVR.js.map +0 -1
package/dist/components.js.map +0 -1
package/dist/contextValidator-OOPCLPZW.js +0 -9
package/dist/contextValidator-OOPCLPZW.js.map +0 -1
package/dist/eslint-rules/pace-core-compliance.cjs +0 -510
package/dist/hooks.js.map +0 -1
package/dist/index.js.map +0 -1
package/dist/providers.js.map +0 -1
package/dist/rbac/eslint-rules.js.map +0 -1
package/dist/rbac/index.js.map +0 -1
package/dist/styles/index.js.map +0 -1
package/dist/theming/runtime.js.map +0 -1
package/dist/types.js.map +0 -1
package/dist/utils.js.map +0 -1
package/docs/standards/01-architecture-standard.md +0 -44
package/docs/standards/02-api-and-rpc-standard.md +0 -39
package/docs/standards/03-component-standard.md +0 -32
package/docs/standards/05-security-standard.md +0 -44
package/docs/standards/06-testing-and-docs-standard.md +0 -29
package/docs/standards/pace-core-compliance.md +0 -432
package/scripts/audit/core/checks/accessibility.cjs +0 -197
package/scripts/audit/core/checks/api-usage.cjs +0 -191
package/scripts/audit/core/checks/bundle.cjs +0 -142
package/scripts/audit/core/checks/compliance.cjs +0 -2706
package/scripts/audit/core/checks/config.cjs +0 -54
package/scripts/audit/core/checks/coverage.cjs +0 -84
package/scripts/audit/core/checks/dependencies.cjs +0 -994
package/scripts/audit/core/checks/documentation.cjs +0 -268
package/scripts/audit/core/checks/environment.cjs +0 -116
package/scripts/audit/core/checks/error-handling.cjs +0 -340
package/scripts/audit/core/checks/forms.cjs +0 -172
package/scripts/audit/core/checks/heuristics.cjs +0 -68
package/scripts/audit/core/checks/hooks.cjs +0 -334
package/scripts/audit/core/checks/imports.cjs +0 -244
package/scripts/audit/core/checks/performance.cjs +0 -325
package/scripts/audit/core/checks/routes.cjs +0 -117
package/scripts/audit/core/checks/state.cjs +0 -130
package/scripts/audit/core/checks/structure.cjs +0 -65
package/scripts/audit/core/checks/style.cjs +0 -584
package/scripts/audit/core/checks/testing.cjs +0 -122
package/scripts/audit/core/checks/typescript.cjs +0 -61
package/scripts/audit/core/scanner.cjs +0 -199
package/scripts/audit/core/utils.cjs +0 -137
package/scripts/audit/reporters/console.cjs +0 -151
package/scripts/audit/reporters/json.cjs +0 -54
package/scripts/audit/reporters/markdown.cjs +0 -124
package/scripts/audit-consuming-app.cjs +0 -86
package/src/eslint-rules/pace-core-compliance.cjs +0 -510
package/src/eslint-rules/pace-core-compliance.js +0 -638
package/src/rbac/components/EnhancedNavigationMenu.test.tsx +0 -555
package/src/rbac/components/EnhancedNavigationMenu.tsx +0 -293
package/src/rbac/components/NavigationProvider.test.tsx +0 -481
package/src/rbac/components/NavigationProvider.tsx +0 -345
package/src/rbac/components/PagePermissionProvider.test.tsx +0 -476
package/src/rbac/components/PagePermissionProvider.tsx +0 -279
package/src/rbac/components/PermissionEnforcer.tsx +0 -312
package/src/rbac/components/RoleBasedRouter.tsx +0 -440
package/src/rbac/components/SecureDataProvider.test.tsx +0 -543
package/src/rbac/components/SecureDataProvider.tsx +0 -339
package/src/rbac/components/__tests__/EnhancedNavigationMenu.test.tsx +0 -620
package/src/rbac/components/__tests__/NavigationProvider.test.tsx +0 -726
package/src/rbac/components/__tests__/PagePermissionProvider.test.tsx +0 -661
package/src/rbac/components/__tests__/PermissionEnforcer.test.tsx +0 -881
package/src/rbac/components/__tests__/RoleBasedRouter.test.tsx +0 -783
package/src/rbac/components/__tests__/SecureDataProvider.fixed.test.tsx +0 -645
package/src/rbac/components/__tests__/SecureDataProvider.test.tsx +0 -659
package/src/rbac/hooks/permissions/useCachedPermissions.ts +0 -79
package/src/rbac/hooks/permissions/useHasAllPermissions.ts +0 -90
package/src/rbac/hooks/permissions/useHasAnyPermission.ts +0 -90

package/src/services/AuthService.ts CHANGED Viewed

@@ -37,18 +37,20 @@ export class AuthService extends BaseService implements IAuthService {
     restorationError: null,
   };
   private restorationTimeoutId: ReturnType<typeof setTimeout> | null = null;
-  private readonly restorationTimeoutMs = 5000;
+  // Increased timeout to handle hard refresh scenarios where localStorage access
+  // and session restoration may take longer, especially with organisation/event context
+  private readonly restorationTimeoutMs = 10000; // 10 seconds (increased from 5)
   private restorationStartTime: number | null = null;
   private appName: string | undefined = undefined;
   private errorHandler: ((event: ErrorEvent) => void) | null = null;
   private unhandledRejectionHandler: ((event: PromiseRejectionEvent) => void) | null = null;
+  private wasAuthenticatedRef: boolean = false; // Track previous auth state to detect transitions
   constructor(supabaseClient: SupabaseClient, appName?: string) {
     super();
     this.instanceId = ++AuthService.instanceCount;
     this.supabaseClient = supabaseClient;
     this.appName = appName;
-    logger.debug('AuthService', `Instance created [ID:${this.instanceId}]`, { appName });
   }
   getInstanceId(): number {
@@ -57,11 +59,8 @@ export class AuthService extends BaseService implements IAuthService {
   // Auth state getters
   getUser(): User | null {
-    if (this.user) {
-      logger.debug('AuthService', `getUser() [ID:${this.instanceId}] returning user: ${this.user.id}`);
-    } else {
-      logger.debug('AuthService', `getUser() [ID:${this.instanceId}] returning null`);
-    }
+    // Removed debug logging - getUser() is called frequently and state changes
+    // are already logged in the auth state change handler
     return this.user;
   }
@@ -112,6 +111,15 @@ export class AuthService extends BaseService implements IAuthService {
         this.authError = null;
         this.user = data.user;
         this.session = data.session;
+        // Clear persistence immediately on successful login
+        // This prevents dialogs/forms/datatables from auto-opening with stale state
+        // We clear here synchronously before components can mount and check persisted state
+        // Also clear old unscoped keys to prevent data leakage
+        if (!this.wasAuthenticatedRef && data.user) {
+          this.clearPersistenceOnLogin(null, true);
+          this.wasAuthenticatedRef = true;
+        }
       }
       this.notify();
@@ -151,6 +159,14 @@ export class AuthService extends BaseService implements IAuthService {
         this.authError = null;
         this.user = data.user;
         this.session = data.session;
+        // Clear persistence immediately on successful signup/login
+        // This prevents dialogs/forms/datatables from auto-opening with stale state
+        // Also clear old unscoped keys to prevent data leakage
+        if (!this.wasAuthenticatedRef && data.user) {
+          this.clearPersistenceOnLogin(null, true);
+          this.wasAuthenticatedRef = true;
+        }
       }
       this.notify();
@@ -179,6 +195,14 @@ export class AuthService extends BaseService implements IAuthService {
     try {
       const { error } = await this.supabaseClient.auth.signOut();
+      // Clear sessionStorage on logout
+      try {
+        sessionStorage.clear();
+      } catch (storageError) {
+        // Ignore storage errors (e.g., in private browsing mode)
+        logger.warn('AuthService', 'Failed to clear sessionStorage', { error: storageError });
+      }
       if (error) {
         this.authError = error;
       } else {
@@ -190,6 +214,14 @@ export class AuthService extends BaseService implements IAuthService {
       this.notify();
       return { user: null, session: null, error };
     } catch (error) {
+      // Clear sessionStorage even on error
+      try {
+        sessionStorage.clear();
+      } catch (storageError) {
+        // Ignore storage errors (e.g., in private browsing mode)
+        logger.warn('AuthService', 'Failed to clear sessionStorage', { error: storageError });
+      }
       // Convert regular Error to AuthError if needed
       const authError = error instanceof AuthError
         ? error
@@ -400,6 +432,56 @@ export class AuthService extends BaseService implements IAuthService {
     }
   }
+  /**
+   * Clear pace-core persistence entries from sessionStorage
+   * This includes dialog, form, and datatable persistence
+   *
+   * @param userId - Optional user ID to clear only that user's persistence.
+   *                 If not provided, clears all pace-core persistence (for user changes).
+   * @param clearUnscoped - If true, also clears old unscoped keys (without :user: prefix)
+   */
+  private clearPersistenceOnLogin(userId?: string | null, clearUnscoped: boolean = true): void {
+    if (typeof window === 'undefined' || !window.sessionStorage) {
+      return;
+    }
+    try {
+      const keysToRemove: string[] = [];
+      // Collect all pace-core persistence keys
+      for (let i = 0; i < sessionStorage.length; i++) {
+        const key = sessionStorage.key(i);
+        if (key && (
+          key.startsWith('pace-core:draft:') ||
+          key.startsWith('pace-core:dialog:')
+        )) {
+          // If userId is provided, only clear keys for that user
+          // Otherwise, clear all (for user changes or fresh login)
+          if (userId && !key.includes(`:user:${userId}`)) {
+            // Also clear old unscoped keys (without :user: prefix) if requested
+            if (clearUnscoped && !key.includes(':user:')) {
+              keysToRemove.push(key);
+            }
+            continue; // Skip keys that don't match this user
+          }
+          keysToRemove.push(key);
+        }
+      }
+      // Remove all collected keys
+      keysToRemove.forEach(key => {
+        try {
+          sessionStorage.removeItem(key);
+        } catch (error) {
+          logger.warn('AuthService', `Failed to remove persistence key: ${key}`, error);
+        }
+      });
+    } catch (error) {
+      logger.warn('AuthService', `Failed to clear persistence [ID:${this.instanceId}]:`, error);
+    }
+  }
   private async setupAuthStateListener(): Promise<void> {
     if (!this.supabaseClient) {
       this.authLoading = false;
@@ -411,16 +493,20 @@ export class AuthService extends BaseService implements IAuthService {
       const subscription = this.supabaseClient.auth.onAuthStateChange(
         (event: AuthChangeEvent, session: SupabaseSession | null) => {
           try {
-            logger.debug('AuthService', `Auth state change [ID:${this.instanceId}]`, {
-              event,
-              hasSession: !!session,
-              userId: session?.user?.id
-            });
+            // Track authentication state transition
+            const wasAuthenticated = this.wasAuthenticatedRef;
+            const isNowAuthenticated = !!session?.user;
+            const previousUserId = this.user?.id || null;
+            const newUserId = session?.user?.id || null;
+            const userChanged = previousUserId !== null && newUserId !== null && previousUserId !== newUserId;
             // Handle different auth events
             if (event === 'SIGNED_OUT') {
               this.session = null;
               this.user = null;
               this.authError = null;
+              this.wasAuthenticatedRef = false;
               // Automatic session tracking (non-blocking)
               if (session?.user) {
@@ -437,6 +523,19 @@ export class AuthService extends BaseService implements IAuthService {
                 this.authError = null;
               }
+              // Clear persistence when:
+              // 1. Transitioning from unauthenticated to authenticated (fresh login) - clear all + old unscoped keys
+              // 2. User changes (different user logs in) - clear previous user's persistence + old unscoped keys
+              if (!wasAuthenticated && isNowAuthenticated && event === 'SIGNED_IN') {
+                // Fresh login - clear all persistence including old unscoped keys
+                this.clearPersistenceOnLogin(null, true);
+              } else if (userChanged && previousUserId) {
+                // User changed - clear previous user's persistence + old unscoped keys
+                this.clearPersistenceOnLogin(previousUserId, true);
+              }
+              this.wasAuthenticatedRef = isNowAuthenticated;
               // Automatic session tracking for login (non-blocking)
               // Only track on SIGNED_IN, not TOKEN_REFRESHED (to avoid duplicate login records)
               if (event === 'SIGNED_IN' && session?.user) {
@@ -446,10 +545,30 @@ export class AuthService extends BaseService implements IAuthService {
               }
             } else if (event === 'INITIAL_SESSION') {
               if (session) {
+                const previousUserId = this.user?.id || null;
+                const newUserId = session.user?.id || null;
+                const userChanged = previousUserId !== null && newUserId !== null && previousUserId !== newUserId;
                 this.session = session;
                 this.user = session.user ?? null;
                 this.authError = null;
+                // Clear persistence if user changed (e.g., different user's session restored)
+                // This prevents data leakage when a different user's session is restored
+                if (userChanged && previousUserId) {
+                  // Clear previous user's persistence + old unscoped keys
+                  this.clearPersistenceOnLogin(previousUserId, true);
+                } else if (!wasAuthenticated && !!session.user) {
+                  // Fresh login on INITIAL_SESSION - clear all persistence including old unscoped keys
+                  this.clearPersistenceOnLogin(null, true);
+                }
+                // Don't clear persistence on INITIAL_SESSION for same user - this is just session restoration
+                // Persistence should only be cleared on actual SIGNED_IN events or user changes
+                // INITIAL_SESSION happens on page load/refresh, and we want to preserve
+                // dialog/form/datatable state across page refreshes for the same user
+                this.wasAuthenticatedRef = !!session.user;
                 // Reset restoration state if valid session arrives after earlier failure
                 // This clears stale errors when session eventually succeeds
                 const hasTimeoutError = this.sessionRestorationState.restorationError?.name === 'SessionRestorationTimeoutError';
@@ -460,6 +579,7 @@ export class AuthService extends BaseService implements IAuthService {
                 }
               } else {
                 // No session in INITIAL_SESSION event - user is not authenticated
+                this.wasAuthenticatedRef = false;
                 // Finish restoration to clear loading state
                 if (this.sessionRestorationState.isRestoring) {
                   this.finishSessionRestoration();
@@ -471,11 +591,6 @@ export class AuthService extends BaseService implements IAuthService {
               // before checking authentication state
               this.authLoading = false;
-              // Final check: Ensure state matches what we just logged
-              logger.debug('AuthService', `State synchronized after INITIAL_SESSION [ID:${this.instanceId}]`, {
-                hasUser: !!this.user,
-                userId: this.user?.id
-              });
               this.notify();
               return; // Return early to avoid setting loading to false again below
@@ -484,12 +599,6 @@ export class AuthService extends BaseService implements IAuthService {
             // For other events (SIGNED_IN, SIGNED_OUT, TOKEN_REFRESHED), set loading to false and notify
             this.authLoading = false;
-            // Final check: Ensure state matches what we just logged
-            logger.debug('AuthService', `State synchronized after event [ID:${this.instanceId}]`, {
-              event,
-              hasUser: !!this.user,
-              userId: this.user?.id
-            });
             this.notify();
           } catch (error) {

package/src/services/EventService.ts CHANGED Viewed

@@ -59,11 +59,6 @@ export class EventService extends BaseService implements IEventService {
     this.appName = appName;
     this.selectedOrganisation = selectedOrganisation;
     this.setSelectedEventId = setSelectedEventId;
-    logger.debug('EventService', `Instance created [ID:${this.instanceId}]`, {
-      appName,
-      hasUser: !!user,
-      userId: user?.id
-    });
   }
   getInstanceId(): number {
@@ -112,11 +107,6 @@ export class EventService extends BaseService implements IEventService {
       this.userClearedEventRef = false;
       this.hasAutoSelectedRef = false;
-      logger.debug('EventService', `User changed [ID:${this.instanceId}]`, {
-        previousUserId,
-        newUserId,
-        willInitialize: newUserId !== null
-      });
     }
     this.supabaseClient = supabaseClient;
@@ -142,10 +132,6 @@ export class EventService extends BaseService implements IEventService {
         if (isRBACInitialized()) {
           this.isSuperAdmin = await checkSuperAdmin(user.id as UUID);
-          logger.debug('EventService', 'Super admin status updated in updateDependencies', {
-            userId: user.id,
-            isSuperAdmin: this.isSuperAdmin
-          });
         } else {
           // RBAC not initialized - this should be rare since UnifiedAuthProvider initializes it synchronously
           // Keep existing value (don't reset to false) to avoid clearing a previously determined super admin status
@@ -260,11 +246,6 @@ export class EventService extends BaseService implements IEventService {
       });
       // Reset the user cleared flag when selecting an event
       this.userClearedEventRef = false;
-      logger.debug('EventService', 'Event selected', {
-        eventId: event.event_id,
-        eventName: event.event_name,
-        userClearedEventRef: this.userClearedEventRef
-      });
     } else {
       const previousEventId = this.selectedEvent?.event_id;
       this.selectedEvent = null;
@@ -277,11 +258,6 @@ export class EventService extends BaseService implements IEventService {
       this.hasAutoSelectedRef = false;
       // Mark that user explicitly cleared the event to prevent auto-selection
       this.userClearedEventRef = true;
-      logger.debug('EventService', 'Event cleared via setSelectedEvent(null)', {
-        previousEventId,
-        userClearedEventRef: this.userClearedEventRef,
-        stackTrace: new Error().stack
-      });
     }
     this.notify();
   }
@@ -407,13 +383,11 @@ export class EventService extends BaseService implements IEventService {
   protected async doInitialize(): Promise<void> {
     // Skip if already initialized
     if (this.isInitializedRef) {
-      logger.debug('EventService', 'Skipping initialization - already initialized');
       return;
     }
     // Skip if already fetching
     if (this.isFetchingRef) {
-      logger.debug('EventService', 'Skipping initialization - already fetching');
       return;
     }
@@ -430,27 +404,14 @@ export class EventService extends BaseService implements IEventService {
     // For event-required apps, selectedOrganisation may be null (org derived from event)
     // For org-required apps, selectedOrganisation is required
     if (!this.user) {
-      logger.debug('EventService', 'Skipping initialization - no user');
       return;
     }
-    logger.debug('EventService', 'Initializing', {
-      userId: this.user.id,
-      appName: this.appName,
-      hasSelectedOrganisation: !!this.selectedOrganisation,
-      hasSupabaseClient: !!this.supabaseClient,
-      hasSession: !!this.session
-    });
     // Initial setup - fetch events on initialization
     await this.fetchEvents(false);
     // Mark as initialized after successful fetch
     this.isInitializedRef = true;
-    logger.debug('EventService', 'Initialization complete', {
-      eventsCount: this.events.length,
-      hasError: !!this.error
-    });
   }
   protected doCleanup(): void {
@@ -505,10 +466,6 @@ export class EventService extends BaseService implements IEventService {
           userIsSuperAdmin = await checkSuperAdmin(this.user.id as UUID);
           // Update cached value for future use
           this.isSuperAdmin = userIsSuperAdmin;
-          logger.debug('EventService', 'Super admin check completed', {
-            userId: this.user.id,
-            isSuperAdmin: userIsSuperAdmin
-          });
         } else {
           // RBAC not initialized - this should be rare since UnifiedAuthProvider initializes it synchronously
           // Use cached value from updateDependencies as fallback
@@ -544,10 +501,6 @@ export class EventService extends BaseService implements IEventService {
           } else {
             // No context available - pass null to get all accessible events via event-app roles
             // This allows users with event-app roles to see their events even without org context
-            logger.debug('EventService', 'No organisation context available, fetching all accessible events', {
-              hasSelectedEvent: !!this.selectedEvent,
-              hasSelectedOrganisation: !!this.selectedOrganisation
-            });
             organisationIdForRpc = null; // Will return events user has access to via event-app roles
           }
         }
@@ -580,14 +533,6 @@ export class EventService extends BaseService implements IEventService {
       // Call the RPC function following the established pattern
       // For super admins, pass null for p_organisation_id to see all events
-      logger.debug('EventService', 'Fetching events', {
-        userId: this.user.id,
-        organisationIdForRpc,
-        appName: this.appName,
-        hasSelectedEvent: !!this.selectedEvent,
-        hasSelectedOrganisation: !!this.selectedOrganisation,
-        isSuperAdmin: userIsSuperAdmin
-      });
       let { data, error: rpcError } = await this.supabaseClient.rpc('data_user_events_get', {
         p_user_id: this.user.id,
@@ -595,11 +540,6 @@ export class EventService extends BaseService implements IEventService {
         p_app_name: this.appName
       });
-      logger.debug('EventService', 'RPC response', {
-        dataLength: data?.length || 0,
-        hasError: !!rpcError,
-        error: rpcError
-      });
       if (rpcError) {
         logger.error('EventService', 'RPC error fetching events:', rpcError);
@@ -671,10 +611,7 @@ export class EventService extends BaseService implements IEventService {
             this.setSelectedEventId?.(null);
             // Restore the previous userClearedEventRef value - this was an automatic clear, not user-initiated
             this.userClearedEventRef = previousUserClearedRef;
-            logger.debug('EventService', 'Cleared selected event - no longer in events list', {
-              previousEventId: selectedEventId,
-              eventsCount: transformedEvents.length
-            });
+            // Cleared selected event - no longer in events list
           }
         }
@@ -685,62 +622,32 @@ export class EventService extends BaseService implements IEventService {
         if (!skipLoadPersisted) {
           const persistedEventLoaded = await this.loadPersistedEvent(transformedEvents);
-          logger.debug('EventService', 'Event selection check', {
-            persistedEventLoaded,
-            userClearedEventRef: this.userClearedEventRef,
-            eventsCount: transformedEvents.length,
-            hasSelectedEvent: !!this.selectedEvent
-          });
           // If no persisted event was loaded and user hasn't explicitly cleared an event, auto-select the next event
           if (!persistedEventLoaded && !this.userClearedEventRef) {
             const nextEvent = this.getNextEventByDate(transformedEvents);
-            logger.debug('EventService', 'Auto-selection attempt', {
-              nextEventFound: !!nextEvent,
-              nextEventId: nextEvent?.event_id,
-              nextEventDate: nextEvent?.event_date
-            });
             if (nextEvent) {
               this.hasAutoSelectedRef = true;
               // Use setSelectedEvent() to ensure consistent behavior
               // Theme will be applied by useEventTheme() hook
               this.setSelectedEvent(nextEvent);
-              logger.debug('EventService', 'Auto-selected next event', {
-                eventId: nextEvent.event_id,
-                eventName: nextEvent.event_name,
-                eventDate: nextEvent.event_date
-              });
-            } else {
-              logger.debug('EventService', 'No next event found for auto-selection', {
-                eventsCount: transformedEvents.length,
-                eventsWithDates: transformedEvents.filter(e => e.event_date).length
-              });
             }
           } else if (persistedEventLoaded) {
-            logger.debug('EventService', 'Skipped auto-selection - persisted event loaded');
+            // Skipped auto-selection - persisted event loaded
           } else if (this.userClearedEventRef) {
-            logger.debug('EventService', 'Skipped auto-selection - user explicitly cleared event');
+            // Skipped auto-selection - user explicitly cleared event
           }
         } else {
           // If skipping persisted event load, still do auto-selection for new users
           if (!this.userClearedEventRef) {
             const nextEvent = this.getNextEventByDate(transformedEvents);
-            logger.debug('EventService', 'Auto-selection attempt (skip persisted)', {
-              nextEventFound: !!nextEvent,
-              nextEventId: nextEvent?.event_id
-            });
             if (nextEvent) {
               this.hasAutoSelectedRef = true;
               // Use setSelectedEvent() to ensure consistent behavior
               // Theme will be applied by useEventTheme() hook
               this.setSelectedEvent(nextEvent);
-              logger.debug('EventService', 'Auto-selected next event (skip persisted)', {
-                eventId: nextEvent.event_id,
-                eventName: nextEvent.event_name
-              });
             }
           } else {
-            logger.debug('EventService', 'Skipped auto-selection (skip persisted) - user explicitly cleared event');
+            // Skipped auto-selection (skip persisted) - user explicitly cleared event
           }
         }
       }