@lobb-js/lobb-ext-auth 0.1.66 → 0.2.1

package/.vscode/settings.json

@@ -0,0 +1,5 @@
+{
+  "deno.disablePaths": [
+    "studio"
+  ]
+}

package/CHANGELOG.md

@@ -2,49 +2,101 @@
 All notable changes to this project will be documented in this file. See [conventional commits](https://www.conventionalcommits.org/) for commit guidelines.
 
 - - -
-## auth-ext-studio@0.1.66 - 2026-03-01
+## auth-ext@0.2.1 - 2026-03-28
 #### Bug Fixes
+- adding readme to all packages - (3a9264a) - malik ben
+#### Miscellaneous Chores
+- add publishConfig and fix ext packages for npm publishing - (49747e9) - malik ben
+
+- - -
+
+## auth-ext@0.2.0 - 2026-03-28
+#### Features
+- (**auth-ext**) convert studio from Svelte SPA to SvelteKit - (6f24661) - malik ben
+- (**auth-ext**) add Playwright e2e tests for studio login page - (5679c3e) - malik ben
+- (**auth-ext**) auto-discover studio extensions via import.meta.glob - (478c4be) - malik ben
+- (**auth-ext**) enable parallel bun test execution with port/db isolation - (721ee14) - malik ben
+- (**auth-ext**) migrate packages/auth-ext from Deno to Bun - (2ce1866) - malik ben
+- replace hasDashboardExtension with virtual:lobb-studio-extensions module - (437cb2e) - malik ben
+#### Bug Fixes
+- (**auth-ext**) move onStartup.ts to extensions/auth/studio - (af08d43) - malik ben
 - (**studio**) prevent @lobb-js/studio version shadowing in extensions - (cd674b9) - malik ben
+- add /studio subpath exports to ext packages, update studio pages to use them - (c0b9a82) - malik ben
+- untrack .svelte-kit from mindhar, fix process leak and $lib imports, update ai sdk versions - (017f784) - malik ben
+- chaning $lib to relative path - (c6d9e8f) - malik ben
 #### Miscellaneous Chores
+- (**auth-ext**) remove dashboard extension.json reference from auth extension - (27df519) - malik ben
+- (**auth-ext**) move backend tests to extensions/auth/tests and rename scripts - (6ba4a4e) - malik ben
+- (**auth-ext**) split studio into host and extension-specific directories - (6f68493) - malik ben
+- (**auth-ext**) move extension logic from projectExtension to extensions/auth - (e172b74) - malik ben
+- (**auth-ext**) flatten studio into project root and simplify workspace globs - (7a9a873) - malik ben
+- (**auth-ext**) rename studio directory to __studio - (abdaa72) - malik ben
+- (**auth-ext**) clear create_users_collections migration - (cbe5d2a) - malik ben
+- (**version**) 0.25.2 - (a62acb9) - Cocogitto Bot
+- (**version**) 0.25.1 - (afe7e69) - Cocogitto Bot
+- (**version**) 0.25.0 - (77a383c) - Cocogitto Bot
+- (**version**) 0.24.0 - (a8cb605) - Cocogitto Bot
+- (**version**) 0.23.0 - (60f357e) - Cocogitto Bot
+- (**version**) 0.22.0 - (6510e32) - Cocogitto Bot
+- (**version**) 0.21.0 - (c973aa9) - Cocogitto Bot
+- (**version**) 0.20.0 - (06cc303) - Cocogitto Bot
+- (**version**) 0.19.0 - (6bbc900) - Cocogitto Bot
+- (**version**) 0.18.0 - (efc553f) - Cocogitto Bot
+- (**version**) 0.17.0 - (4174f0c) - Cocogitto Bot
+- (**version**) 0.16.0 - (9508655) - Cocogitto Bot
 - (**version**) 0.15.0 - (0c2c345) - Cocogitto Bot
-- fixing the /studio base issue - (de6686f) - Malik Najjar
+- (**version**) 0.14.11 - (ad92b61) - Cocogitto Bot
+- add dev:studio/build:studio scripts, fix Dockerfiles, remove --build flag - (1595975) - malik ben
+- add prepublish/postpublish scripts to extension packages for standalone compatibility - (4d6108f) - malik ben
+- centralize studio app.css in @lobb-js/studio package, remove local copies - (05192dc) - malik ben
+- rename @lobb/ scope to @lobb-js/ across all packages and apps - (cce4ce0) - malik ben
+- add start/build scripts and gitignore build dir across all projects - (58f539d) - malik ben
+- update CLAUDE.md to enforce no-commit-without-explicit-instruction rule - (6d63a42) - malik ben
+- replace workspace:* with exact versions in all package.json files - (74fbdb7) - malik ben
+- rename __studio to studio and remove unused studio dirs - (77fb932) - malik ben
 
 - - -
 
-## auth-ext-studio@0.1.65 - 2026-02-22
+## auth-ext@0.1.67 - 2026-02-25
 #### Bug Fixes
-- adding a studio prefix for the studio app - (6607b5a) - malik ben
+- publishing extension again - (e07ac36) - Malik Najjar
 #### Miscellaneous Chores
-- (**version**) 0.14.2 - (6ecdc1d) - Cocogitto Bot
+- (**version**) 0.14.8 - (0e6c1cb) - Cocogitto Bot
 
 - - -
 
-## auth-ext-studio@0.1.64 - 2026-02-21
+## auth-ext@0.1.66 - 2026-02-22
 #### Bug Fixes
-- using default export instead of named export for extensions - (37dd485) - malik ben
-#### Miscellaneous Chores
-- (**version**) 0.14.0 - (7d2eb87) - Cocogitto Bot
-- (**version**) 0.12.1 - (c548105) - Cocogitto Bot
+- coggito publishing packages order fix - (573c75e) - malik ben
 
 - - -
 
-## auth-ext-studio@0.1.63 - 2026-02-17
+## auth-ext@0.1.65 - 2026-02-22
 #### Bug Fixes
-- fixing the standalone issue - (1a70a51) - Malik Najjar
-#### Miscellaneous Chores
-- (**version**) 0.10.9 - (19ac765) - Cocogitto Bot
+- adjusted the names of the events - (6543d8c) - malik ben
 
 - - -
 
-## auth-ext-studio@0.1.60 - 2026-02-17
+## auth-ext@0.1.64 - 2026-02-22
 #### Bug Fixes
-- removing a comment - (68c182d) - Malik Najjar
+- made the collectionService become an property in the main lobb object - (146e4cb) - malik ben
+
+- - -
+
+## auth-ext@0.1.63 - 2026-02-21
+#### Bug Fixes
+- using default export instead of named export for extensions - (37dd485) - malik ben
 #### Miscellaneous Chores
-- adding a comment - (c5c8fbf) - Malik Najjar
+- (**version**) 0.13.2 - (39b0145) - Cocogitto Bot
+- (**version**) 0.12.3 - (cd06fc0) - Cocogitto Bot
+- (**version**) 0.12.2 - (35b2ff3) - Cocogitto Bot
+- (**version**) 0.12.1 - (c548105) - Cocogitto Bot
+- (**version**) 0.11.1 - (659ebd3) - Cocogitto Bot
+- (**version**) 0.11.0 - (3f4f47e) - Cocogitto Bot
 
 - - -
 
-## auth-ext-studio@0.1.59 - 2026-02-17
+## auth-ext@0.1.62 - 2026-02-17
 #### Bug Fixes
 - removing a comment - (15c57c0) - Malik Najjar
 #### Miscellaneous Chores
@@ -52,7 +104,7 @@ All notable changes to this project will be documented in this file. See [conven
 
 - - -
 
-## auth-ext-studio@0.1.1 - 2026-02-17
+## auth-ext@0.1.61 - 2026-02-17
 #### Bug Fixes
 - removeing stupid comment - (ca41782) - Malik Najjar
 #### Miscellaneous Chores
@@ -61,20 +113,27 @@ All notable changes to this project will be documented in this file. See [conven
 
 - - -
 
-## auth-ext-studio@0.1.0 - 2026-02-15
-#### Features
-- add authentication and user settings pages with responsive design - (aba51e4) - Malik Najjar
+## auth-ext@0.1.60 - 2026-02-17
+#### Bug Fixes
+- update the auth extension - (5318dda) - Malik Najjar
+#### Miscellaneous Chores
+- (**version**) 0.8.0 - (fdee7ca) - Cocogitto Bot
+
+- - -
+
+## auth-ext@0.1.59 - 2026-02-15
+#### Bug Fixes
+- fix deno publish issue - (e8dcc4f) - malik ben
+- issue fix - (63d66d3) - malik ben
 #### Miscellaneous Chores
 - (**version**) 0.5.5 - (d4dedeb) - Cocogitto Bot
 - (**version**) 0.5.4 - (1ca3970) - Cocogitto Bot
 - (**version**) 0.5.3 - (dcdb9cb) - Cocogitto Bot
 - (**version**) 0.5.2 - (aa66e29) - Cocogitto Bot
 - (**version**) 0.5.1 - (41b7c35) - Cocogitto Bot
-- (**version**) 0.4.2 - (4395d99) - Cocogitto Bot
-- (**version**) 0.4.1 - (5e9f152) - Cocogitto Bot
-- (**version**) 0.4.0 - (aafd2d6) - Cocogitto Bot
-#### Style
-- Update background color from bg-soft to bg-muted/30 across various components - (ad2240a) - Malik Najjar
+- (**version**) 0.5.0 - (af63147) - Cocogitto Bot
+- (**version**) 0.4.4 - (eaed3b4) - Cocogitto Bot
+- (**version**) 0.4.3 - (ea9ec49) - Cocogitto Bot
 
 - - -
 

package/README.md

@@ -1 +1 @@
-# instagram_api_integration
+# @lobb-js/lobb-ext-auth

package/extensions/auth/collections/activityFeed.ts

@@ -0,0 +1,53 @@
+import type { CollectionConfig } from "@lobb-js/core";
+
+export const activityFeedCollection: CollectionConfig = {
+  indexes: {},
+  fields: {
+    id: {
+      type: "integer",
+    },
+    user_id: {
+      type: "integer",
+      references: {
+        collection: "auth_users",
+        field: "id",
+      },
+      validators: {
+        required: true,
+      },
+    },
+    action: {
+      type: "string",
+      length: 255,
+      validators: {
+        required: true,
+        enum: [
+          "create",
+          "read",
+          "update",
+          "delete",
+        ],
+      },
+    },
+    collection: {
+      type: "string",
+      length: 255,
+      validators: {
+        required: true,
+      },
+    },
+    item_id: {
+      type: "string",
+      length: 255,
+      validators: {
+        required: true,
+      },
+    },
+    created_at: {
+      type: "datetime",
+      pre_processors: {
+        default: "{{ now }}",
+      },
+    },
+  },
+};

package/extensions/auth/collections/collections.ts

@@ -0,0 +1,43 @@
+import type { CollectionConfig, Lobb } from "@lobb-js/core";
+import { usersCollection } from "./users.ts";
+import { sessionsCollection } from "./sessions.ts";
+import type { ExtensionConfig } from "../config/extensionConfigSchema.ts";
+import { activityFeedCollection } from "./activityFeed.ts";
+
+export function collections(
+  lobb: Lobb,
+  extensionConfig: ExtensionConfig,
+): Record<string, CollectionConfig> {
+  const collectionsSchemas: Record<string, CollectionConfig> = {};
+  collectionsSchemas["auth_users"] = usersCollection;
+  collectionsSchemas["auth_sessions"] = sessionsCollection;
+
+  // adding the additional fields and indexes if the extend_users property exists
+  if (extensionConfig.extend_users) {
+    collectionsSchemas["auth_users"].indexes = {
+      ...collectionsSchemas["auth_users"].indexes,
+      ...extensionConfig.extend_users.indexes,
+    };
+    collectionsSchemas["auth_users"].fields = {
+      ...collectionsSchemas["auth_users"].fields,
+      ...extensionConfig.extend_users.fields,
+    };
+  }
+
+  const authConfig = extensionConfig;
+
+  if (!authConfig.roles) {
+    authConfig.roles = {};
+  }
+
+  collectionsSchemas["auth_roles"] = lobb.utils.lockCollectionToObject(
+    {
+      collectionName: "auth_roles",
+      object: authConfig.roles,
+    },
+  );
+
+  collectionsSchemas["auth_activity_feed"] = activityFeedCollection;
+
+  return collectionsSchemas;
+}

package/extensions/auth/collections/sessions.ts

@@ -0,0 +1,34 @@
+import type { CollectionConfig } from "@lobb-js/core";
+
+export const sessionsCollection: CollectionConfig = {
+  indexes: {},
+  fields: {
+    id: {
+      type: "integer",
+    },
+    user_id: {
+      type: "integer",
+      references: {
+        collection: "auth_users",
+        field: "id",
+      },
+      validators: {
+        required: true,
+      },
+    },
+    token: {
+      type: "string",
+      length: 255,
+      validators: {
+        maxLength: 255,
+        required: true,
+      },
+    },
+    expires_at: {
+      type: "datetime",
+      validators: {
+        required: true,
+      },
+    },
+  },
+};

package/extensions/auth/collections/users.ts

@@ -0,0 +1,44 @@
+import type { CollectionConfig } from "@lobb-js/core";
+
+export const usersCollection: CollectionConfig = {
+  indexes: {
+    auth_users_email_index: {
+      unique: true,
+      fields: {
+        email: {
+          order: "asc",
+        },
+      },
+    },
+  },
+  fields: {
+    id: {
+      type: "integer",
+    },
+    email: {
+      type: "string",
+      length: 255,
+      validators: {
+        validator: {
+          name: "isEmail",
+        },
+        maxLength: 255,
+        required: true,
+      },
+    },
+    password: {
+      type: "string",
+      length: 255,
+      validators: {
+        required: true,
+      },
+    },
+    role: {
+      type: "string",
+      length: 255,
+      validators: {
+        required: true,
+      },
+    },
+  },
+};

package/extensions/auth/config/extensionConfigSchema.ts

@@ -0,0 +1,47 @@
+import type { CollectionConfig } from "@lobb-js/core";
+import type { CreatePermissionAction } from "./permissionsAction/create.ts";
+import type { ReadPermissionAction } from "./permissionsAction/read.ts";
+import type { UpdatePermissionAction } from "./permissionsAction/update.ts";
+import type { DeletePermissionAction } from "./permissionsAction/delete.ts";
+
+export interface User {
+  id: number;
+  email: string;
+  password: string;
+  role: string;
+}
+
+export interface PermissionAction {}
+
+export type CollectionPermissionsActions = {
+  create?: true | CreatePermissionAction;
+  read?: true | ReadPermissionAction;
+  update?: true | UpdatePermissionAction;
+  delete?: true | DeletePermissionAction;
+};
+
+export type CollectionPermissionActionsKeys =
+  keyof CollectionPermissionsActions;
+export type CollectionPermissionsConfig =
+  | true
+  | CollectionPermissionsActions;
+export type PermissionsConfig =
+  | true
+  | Record<string, CollectionPermissionsConfig | undefined>;
+
+export type RolesConfig = {
+  permissions: PermissionsConfig;
+};
+
+export type ExtensionConfig = {
+  admin: {
+    password: string;
+    email: string;
+  };
+  dashboard_access_roles?: string[];
+  roles: Record<string, RolesConfig | undefined>;
+  extend_users?: {
+    indexes?: CollectionConfig["indexes"];
+    fields?: Omit<CollectionConfig["fields"], "id">;
+  };
+};

package/extensions/auth/config/permissionsAction/create.ts

@@ -0,0 +1,20 @@
+import type { PermissionAction, User } from "../extensionConfigSchema.ts";
+
+interface FieldTrasnsformerFnParams {
+  value: unknown;
+  payload: Record<string, unknown>;
+  user?: User;
+}
+type FieldTrasnsformerFn = (params: FieldTrasnsformerFnParams) => unknown;
+
+interface CreateGuardProps {
+  payload: Record<string, unknown>;
+  user?: User;
+}
+type CreateGuardFn = (props: CreateGuardProps) => true | void;
+
+export interface CreatePermissionAction extends PermissionAction {
+  payloadGuard?: CreateGuardFn;
+  fields?: Record<string, true>;
+  mutate?: Record<string, FieldTrasnsformerFn>;
+}

package/extensions/auth/config/permissionsAction/delete.ts

@@ -0,0 +1,3 @@
+import type { PermissionAction } from "../extensionConfigSchema.ts";
+
+export interface DeletePermissionAction extends PermissionAction {}

package/extensions/auth/config/permissionsAction/read.ts

@@ -0,0 +1,10 @@
+import type { Filter } from "@lobb-js/core";
+import type { PermissionAction, User } from "../extensionConfigSchema.ts";
+
+export interface ReadPermissionAction extends PermissionAction {
+  /**
+   * Filter that gets passed to the db select query condition
+   */
+  filter?: Filter<{ user?: User }>;
+  fields?: Record<string, true>;
+}

package/extensions/auth/config/permissionsAction/update.ts

@@ -0,0 +1,20 @@
+import type { PermissionAction, User } from "../extensionConfigSchema.ts";
+
+interface FieldTrasnsformerFnParams {
+  value: unknown;
+  payload: Record<string, unknown>;
+  user?: User;
+}
+type FieldTrasnsformerFn = (params: FieldTrasnsformerFnParams) => unknown;
+
+interface UpdateGuardProps {
+  payload: Record<string, unknown>;
+  user?: User;
+}
+type UpdateGuardFn = (props: UpdateGuardProps) => true | void;
+
+export interface UpdatePermissionAction extends PermissionAction {
+  payloadGuard?: UpdateGuardFn;
+  fields?: Record<string, true>;
+  mutate?: Record<string, FieldTrasnsformerFn>;
+}

package/extensions/auth/database/init.ts

@@ -0,0 +1,51 @@
+import type { Lobb } from "@lobb-js/core";
+import { verify } from "argon2";
+import type { ExtensionConfig } from "../config/extensionConfigSchema.ts";
+import { checkCollectionsInPermissions } from "./utils.ts";
+
+export async function init(lobb: Lobb, extensionConfig: ExtensionConfig) {
+  checkCollectionsInPermissions(lobb, extensionConfig);
+  await syncincAdminUserInDB(lobb, extensionConfig);
+}
+
+async function syncincAdminUserInDB(lobb: Lobb, extensionConfig: ExtensionConfig) {
+  // syncinc the admin user in users collection
+  const config = extensionConfig;
+  const adminUserData = config.admin;
+  const entries = (await lobb.collectionService.findAll({
+    collectionName: "auth_users",
+    params: {
+      filter: {
+        role: "admin",
+      },
+      sort: "id",
+    },
+  })).data;
+  const adminUser = entries[0];
+  if (!adminUser) {
+    await lobb.collectionService.createOne({
+      collectionName: "auth_users",
+      data: {
+        email: adminUserData.email,
+        password: adminUserData.password,
+        role: "admin",
+      },
+    });
+  } else {
+    const passwordIdentical = await verify(
+      adminUser.password,
+      adminUserData.password,
+    );
+
+    if (adminUser.email !== adminUserData.email || !passwordIdentical) {
+      await lobb.collectionService.updateOne({
+        collectionName: "auth_users",
+        id: adminUser.id,
+        data: {
+          email: adminUserData.email,
+          password: adminUserData.password,
+        },
+      });
+    }
+  }
+}

package/extensions/auth/database/migrations.ts

@@ -0,0 +1,3 @@
+import type { Migrations } from "@lobb-js/core";
+
+export const migrations: Migrations = {};

package/extensions/auth/database/utils.ts

@@ -0,0 +1,36 @@
+import type { Lobb } from "@lobb-js/core";
+import { LobbError } from "@lobb-js/core";
+import type { ExtensionConfig } from "../config/extensionConfigSchema.ts";
+
+export function checkCollectionsInPermissions(
+  lobb: Lobb,
+  extensionConfig: ExtensionConfig,
+) {
+  const authExtensionConfig = extensionConfig;
+  for (const roleName in authExtensionConfig.roles) {
+    const role = authExtensionConfig.roles[roleName];
+
+    if (typeof role === "undefined") {
+      throw new LobbError({
+        code: "INTERNAL_SERVER_ERROR",
+        message: `The (${roleName}) role in the auth permissions doesnt exist`,
+      });
+    }
+
+    const permissions = role.permissions;
+    const collectionNames = Object.keys(permissions);
+    for (let index = 0; index < collectionNames.length; index++) {
+      const collectionName = collectionNames[index];
+      const collectionExists = lobb.configManager.collectionExists(
+        collectionName,
+      );
+      if (!collectionExists) {
+        throw new LobbError({
+          code: "INTERNAL_SERVER_ERROR",
+          message:
+            `The (${collectionName}) collection in the auth permissions doesnt exist`,
+        });
+      }
+    }
+  }
+}

package/extensions/auth/index.ts

@@ -0,0 +1,19 @@
+import type { Extension } from "@lobb-js/core";
+import type { ExtensionConfig } from "./config/extensionConfigSchema.ts";
+
+import { init } from "./database/init.ts";
+import { collections } from "./collections/collections.ts";
+import { meta } from "./meta/meta.ts";
+import { migrations } from "./database/migrations.ts";
+import { getWorkflows } from "./workflows/index.ts";
+
+export default function auth(extensionConfig: ExtensionConfig): Extension {
+  return {
+    name: "auth",
+    init: (lobb) => init(lobb, extensionConfig),
+    collections: (lobb) => collections(lobb, extensionConfig),
+    migrations: migrations,
+    meta: (lobb) => meta(lobb, extensionConfig),
+    workflows: getWorkflows(extensionConfig),
+  };
+}

package/extensions/auth/meta/meta.ts

@@ -0,0 +1,11 @@
+import type { Lobb } from "@lobb-js/core";
+import type { ExtensionConfig } from "../config/extensionConfigSchema.ts";
+
+export async function meta(lobb: Lobb, extensionConfig: ExtensionConfig) {
+  const config = extensionConfig;
+  const meta: any = {};
+
+  meta["dashboard_access_roles"] = config.dashboard_access_roles ?? ["admin"];
+
+  return meta;
+}