npm - @nextsparkjs/theme-default - Versions diffs - 0.1.0-beta.1 → 0.1.0-beta.101 - Mend

@nextsparkjs/theme-default 0.1.0-beta.1 → 0.1.0-beta.101

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (330) hide show

package/LICENSE +21 -0
package/api/ai/chat/stream/route.ts +4 -1
package/api/ai/orchestrator/route.ts +10 -3
package/api/ai/single-agent/route.ts +10 -3
package/api/ai/usage/route.ts +4 -1
package/blocks/benefits/component.tsx +4 -4
package/blocks/cta-section/component.tsx +4 -4
package/blocks/faq-accordion/component.tsx +2 -2
package/blocks/features-grid/component.tsx +5 -5
package/blocks/hero/component.tsx +2 -2
package/blocks/hero/fields.ts +1 -1
package/blocks/hero-with-form/component.tsx +7 -7
package/blocks/hero-with-form/fields.ts +1 -1
package/blocks/jumbotron/component.tsx +7 -7
package/blocks/jumbotron/fields.ts +1 -1
package/blocks/logo-cloud/component.tsx +6 -6
package/blocks/logo-cloud/fields.ts +1 -1
package/blocks/post-content/component.tsx +2 -2
package/blocks/pricing-table/component.tsx +5 -5
package/blocks/split-content/component.tsx +5 -5
package/blocks/split-content/fields.ts +1 -1
package/blocks/stats-counter/component.tsx +9 -9
package/blocks/testimonials/component.tsx +4 -4
package/blocks/testimonials/fields.ts +1 -1
package/blocks/text-content/component.tsx +12 -10
package/blocks/timeline/component.tsx +12 -12
package/blocks/video-hero/component.tsx +7 -7
package/blocks/video-hero/fields.ts +1 -1
package/components/ai-chat/ChatPanel.tsx +7 -7
package/components/ai-chat/Message.tsx +2 -2
package/components/ai-chat/MessageInput.tsx +3 -3
package/components/ai-chat/MessageList.tsx +3 -3
package/components/ai-chat/TypingIndicator.tsx +2 -2
package/config/app.config.ts +75 -62
package/config/dashboard.config.ts +14 -0
package/config/features.config.ts +10 -0
package/config/permissions.config.ts +26 -1
package/docs/{01-overview → public/01-overview}/01-introduction.md +5 -0
package/docs/{01-overview → public/01-overview}/02-customization.md +5 -0
package/docs/{02-features → public/02-features}/03-tasks-entity.md +5 -0
package/docs/{03-ai → public/03-ai}/01-overview.md +5 -0
package/docs/{03-ai → public/03-ai}/02-customization.md +5 -0
package/docs/superadmin/01-setup/01-configuration.md +79 -0
package/docs/superadmin/01-setup/02-deployment.md +82 -0
package/docs/superadmin/02-management/01-users.md +83 -0
package/docs/superadmin/03-integrations/01-langchain.md +139 -0
package/entities/customers/api/docs.md +107 -0
package/entities/customers/api/presets.ts +80 -0
package/entities/pages/api/docs.md +114 -0
package/entities/pages/api/presets.ts +72 -0
package/entities/posts/api/docs.md +120 -0
package/entities/posts/api/presets.ts +74 -0
package/entities/tasks/api/docs.md +126 -0
package/entities/tasks/api/presets.ts +84 -0
package/lib/selectors.ts +7 -4
package/messages/de/admin.json +45 -0
package/messages/en/admin.json +56 -0
package/messages/en/navigation.json +2 -1
package/messages/es/admin.json +56 -0
package/messages/es/navigation.json +2 -1
package/messages/fr/admin.json +45 -0
package/messages/it/admin.json +45 -0
package/messages/pt/admin.json +45 -0
package/migrations/090_demo_users_teams.sql +11 -11
package/migrations/091_greek_teams_billing.sql +15 -15
package/migrations/093_pages_sample_data.sql +7 -7
package/migrations/098_patterns_sample_data.sql +234 -0
package/package.json +8 -3
package/styles/globals.css +42 -0
package/templates/(public)/blog/[slug]/page.tsx +1 -1
package/templates/(public)/page.tsx +1 -1
package/tests/cypress/e2e/_utils/devtools/access.bdd.md +262 -0
package/tests/cypress/e2e/_utils/devtools/access.cy.ts +171 -0
package/tests/cypress/e2e/_utils/devtools/navigation.bdd.md +261 -0
package/tests/cypress/e2e/_utils/devtools/navigation.cy.ts +157 -0
package/tests/cypress/e2e/_utils/devtools/pages.bdd.md +303 -0
package/tests/cypress/e2e/_utils/devtools/pages.cy.ts +184 -0
package/tests/cypress/e2e/_utils/docs/README.md +215 -0
package/tests/cypress/e2e/_utils/selectors/auth.bdd.md +354 -0
package/tests/cypress/e2e/_utils/selectors/auth.cy.ts +310 -0
package/tests/cypress/e2e/_utils/selectors/billing.bdd.md +276 -0
package/tests/cypress/e2e/_utils/selectors/billing.cy.ts +182 -0
package/tests/cypress/e2e/_utils/selectors/block-editor.bdd.md +615 -0
package/tests/cypress/e2e/_utils/selectors/block-editor.cy.ts +783 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-container.cy.ts +52 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-mobile.bdd.md +205 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-mobile.cy.ts +137 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-navigation.bdd.md +147 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-navigation.cy.ts +114 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-sidebar.bdd.md +76 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-sidebar.cy.ts +68 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-topnav.bdd.md +326 -0
package/tests/cypress/e2e/_utils/selectors/dashboard-topnav.cy.ts +177 -0
package/tests/cypress/e2e/_utils/selectors/devtools.bdd.md +306 -0
package/tests/cypress/e2e/_utils/selectors/devtools.cy.ts +273 -0
package/tests/cypress/e2e/_utils/selectors/global-search.bdd.md +115 -0
package/tests/cypress/e2e/_utils/selectors/global-search.cy.ts +93 -0
package/tests/cypress/e2e/_utils/selectors/patterns.bdd.md +388 -0
package/tests/cypress/e2e/_utils/selectors/patterns.cy.ts +559 -0
package/tests/cypress/e2e/_utils/selectors/public.cy.ts +112 -0
package/tests/cypress/e2e/_utils/selectors/settings-api-keys.bdd.md +266 -0
package/tests/cypress/e2e/_utils/selectors/settings-api-keys.cy.ts +233 -0
package/tests/cypress/e2e/_utils/selectors/settings-billing.bdd.md +78 -0
package/tests/cypress/e2e/_utils/selectors/settings-billing.cy.ts +108 -0
package/tests/cypress/e2e/_utils/selectors/settings-layout.bdd.md +129 -0
package/tests/cypress/e2e/_utils/selectors/settings-layout.cy.ts +115 -0
package/tests/cypress/e2e/_utils/selectors/settings-password.bdd.md +82 -0
package/tests/cypress/e2e/_utils/selectors/settings-password.cy.ts +74 -0
package/tests/cypress/e2e/_utils/selectors/settings-profile.bdd.md +77 -0
package/tests/cypress/e2e/_utils/selectors/settings-profile.cy.ts +79 -0
package/tests/cypress/e2e/_utils/selectors/settings-teams.bdd.md +130 -0
package/tests/cypress/e2e/_utils/selectors/settings-teams.cy.ts +86 -0
package/tests/cypress/e2e/_utils/selectors/superadmin.bdd.md +261 -0
package/tests/cypress/e2e/_utils/selectors/superadmin.cy.ts +193 -0
package/tests/cypress/e2e/_utils/selectors/tasks.bdd.md +593 -0
package/tests/cypress/e2e/_utils/selectors/tasks.cy.ts +864 -0
package/tests/cypress/e2e/_utils/selectors/taxonomies.cy.ts +126 -0
package/tests/cypress/e2e/_utils/selectors/teams.bdd.md +278 -0
package/tests/cypress/e2e/_utils/selectors/teams.cy.ts +195 -0
package/tests/cypress/e2e/_utils/superadmin/all-teams.bdd.md +261 -0
package/tests/cypress/e2e/_utils/superadmin/all-teams.cy.ts +177 -0
package/tests/cypress/e2e/_utils/superadmin/all-users.bdd.md +406 -0
package/tests/cypress/e2e/_utils/superadmin/all-users.cy.ts +294 -0
package/tests/cypress/e2e/_utils/superadmin/dashboard.bdd.md +235 -0
package/tests/cypress/e2e/_utils/superadmin/dashboard.cy.ts +149 -0
package/tests/cypress/e2e/_utils/superadmin/subscriptions-overview.bdd.md +290 -0
package/tests/cypress/e2e/_utils/superadmin/subscriptions-overview.cy.ts +194 -0
package/tests/cypress/e2e/ai/ai-usage.cy.ts +209 -0
package/tests/cypress/e2e/ai/chat-api.cy.ts +119 -0
package/tests/cypress/e2e/ai/guardrails.cy.ts +332 -0
package/tests/cypress/e2e/api/_core/billing/BillingAPIController.js +319 -0
package/tests/cypress/e2e/api/_core/billing/check-action.cy.ts +326 -0
package/tests/cypress/e2e/api/_core/billing/checkout.cy.ts +358 -0
package/tests/cypress/e2e/api/_core/billing/lifecycle.cy.ts +423 -0
package/tests/cypress/e2e/api/_core/billing/plans/README.md +345 -0
package/tests/cypress/e2e/api/_core/billing/plans/business.cy.ts +412 -0
package/tests/cypress/e2e/api/_core/billing/plans/downgrade.cy.ts +510 -0
package/tests/cypress/e2e/api/_core/billing/plans/fixtures/billing-plans.json +163 -0
package/tests/cypress/e2e/api/_core/billing/plans/free.cy.ts +500 -0
package/tests/cypress/e2e/api/_core/billing/plans/pro.cy.ts +497 -0
package/tests/cypress/e2e/api/_core/billing/plans/starter.cy.ts +342 -0
package/tests/cypress/e2e/api/_core/billing/portal.cy.ts +313 -0
package/tests/cypress/e2e/api/_core/devtools/registries.bdd.md +300 -0
package/tests/cypress/e2e/api/_core/devtools/registries.cy.ts +368 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/cron-endpoint.bdd.md +375 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/cron-endpoint.cy.ts +346 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/devtools-endpoint.bdd.md +451 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/devtools-endpoint.cy.ts +447 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/scheduling.bdd.md +649 -0
package/tests/cypress/e2e/api/_core/scheduled-actions/scheduling.cy.ts +333 -0
package/tests/cypress/e2e/api/_core/security/security-headers.cy.ts +601 -0
package/tests/cypress/e2e/api/_core/settings/api-keys.crud.cy.ts +923 -0
package/tests/cypress/e2e/api/_core/teams/teams-security.cy.ts +415 -0
package/tests/cypress/e2e/api/_core/users/users-crud.cy.ts +469 -0
package/tests/cypress/e2e/api/_core/users/users-metas.cy.ts +913 -0
package/tests/cypress/e2e/api/_core/users/users-security.cy.ts +375 -0
package/tests/cypress/e2e/api/entities/customers/customers-crud.cy.ts +648 -0
package/tests/cypress/e2e/api/entities/customers/customers-metas.cy.ts +839 -0
package/tests/cypress/e2e/api/entities/media/media-crud.cy.ts +600 -0
package/tests/cypress/e2e/api/entities/media/media-role-permissions.cy.ts +617 -0
package/tests/cypress/e2e/api/entities/media/media-team-isolation.cy.ts +464 -0
package/tests/cypress/e2e/api/entities/pages/blocks-scope.cy.ts +396 -0
package/tests/cypress/e2e/api/entities/pages/pages-crud.cy.ts +425 -0
package/tests/cypress/e2e/api/entities/pages/pages-status.cy.ts +335 -0
package/tests/cypress/e2e/api/entities/posts/post-categories-crud.cy.ts +610 -0
package/tests/cypress/e2e/api/entities/posts/posts-crud.cy.ts +709 -0
package/tests/cypress/e2e/api/entities/posts/posts-status.cy.ts +396 -0
package/tests/cypress/e2e/api/entities/tasks/tasks-crud.cy.ts +602 -0
package/tests/cypress/e2e/api/entities/tasks/tasks-metas.cy.ts +878 -0
package/tests/cypress/e2e/patterns/patterns-in-pages.cy.ts +367 -0
package/tests/cypress/e2e/uat/_core/auth/app-roles/developer-login.bdd.md +231 -0
package/tests/cypress/e2e/uat/_core/auth/app-roles/developer-login.cy.ts +144 -0
package/tests/cypress/e2e/uat/_core/auth/app-roles/superadmin-login.bdd.md +118 -0
package/tests/cypress/e2e/uat/_core/auth/app-roles/superadmin-login.cy.ts +84 -0
package/tests/cypress/e2e/uat/_core/auth/custom-roles/editor-login.bdd.md +288 -0
package/tests/cypress/e2e/uat/_core/auth/custom-roles/editor-login.cy.ts +188 -0
package/tests/cypress/e2e/uat/_core/auth/login-logout.bdd.md +160 -0
package/tests/cypress/e2e/uat/_core/auth/login-logout.cy.ts +116 -0
package/tests/cypress/e2e/uat/_core/auth/password-reset.bdd.md +289 -0
package/tests/cypress/e2e/uat/_core/auth/password-reset.cy.ts +200 -0
package/tests/cypress/e2e/uat/_core/auth/registration-control-invitation.cy.ts +176 -0
package/tests/cypress/e2e/uat/_core/auth/registration-control-open.cy.ts +131 -0
package/tests/cypress/e2e/uat/_core/auth/registration-control.cy.ts +140 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/admin-login.bdd.md +225 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/admin-login.cy.ts +148 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/member-login.bdd.md +251 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/member-login.cy.ts +163 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/owner-login.bdd.md +231 -0
package/tests/cypress/e2e/uat/_core/auth/team-roles/owner-login.cy.ts +141 -0
package/tests/cypress/e2e/uat/_core/billing/extended.bdd.md +273 -0
package/tests/cypress/e2e/uat/_core/billing/extended.cy.ts +209 -0
package/tests/cypress/e2e/uat/_core/billing/feature-gates.bdd.md +407 -0
package/tests/cypress/e2e/uat/_core/billing/feature-gates.cy.ts +307 -0
package/tests/cypress/e2e/uat/_core/billing/page.bdd.md +329 -0
package/tests/cypress/e2e/uat/_core/billing/page.cy.ts +250 -0
package/tests/cypress/e2e/uat/_core/billing/status.bdd.md +190 -0
package/tests/cypress/e2e/uat/_core/billing/status.cy.ts +145 -0
package/tests/cypress/e2e/uat/_core/billing/team-switch.bdd.md +156 -0
package/tests/cypress/e2e/uat/_core/billing/team-switch.cy.ts +122 -0
package/tests/cypress/e2e/uat/_core/billing/usage.bdd.md +218 -0
package/tests/cypress/e2e/uat/_core/billing/usage.cy.ts +176 -0
package/tests/cypress/e2e/uat/_core/blocks/hero.bdd.md +124 -0
package/tests/cypress/e2e/uat/_core/blocks/hero.cy.ts +56 -0
package/tests/cypress/e2e/uat/_core/devtools/api-tester.cy.ts +390 -0
package/tests/cypress/e2e/uat/_core/performance/suspense-loading.cy.ts +134 -0
package/tests/cypress/e2e/uat/_core/scheduled-actions/devtools-ui.bdd.md +736 -0
package/tests/cypress/e2e/uat/_core/scheduled-actions/devtools-ui.cy.ts +740 -0
package/tests/cypress/e2e/uat/_core/teams/inline-edit.cy.ts +278 -0
package/tests/cypress/e2e/uat/_core/teams/roles-matrix.bdd.md +553 -0
package/tests/cypress/e2e/uat/_core/teams/roles-matrix.cy.ts +185 -0
package/tests/cypress/e2e/uat/_core/teams/switcher.bdd.md +1151 -0
package/tests/cypress/e2e/uat/_core/teams/switcher.cy.ts +497 -0
package/tests/cypress/e2e/uat/_core/teams/team-switcher.md +198 -0
package/tests/cypress/e2e/uat/entities/customers/member.bdd.md +275 -0
package/tests/cypress/e2e/uat/entities/customers/member.cy.ts +122 -0
package/tests/cypress/e2e/uat/entities/customers/owner.bdd.md +243 -0
package/tests/cypress/e2e/uat/entities/customers/owner.cy.ts +165 -0
package/tests/cypress/e2e/uat/entities/pages/block-crud.bdd.md +476 -0
package/tests/cypress/e2e/uat/entities/pages/block-crud.cy.ts +486 -0
package/tests/cypress/e2e/uat/entities/pages/block-editor.bdd.md +460 -0
package/tests/cypress/e2e/uat/entities/pages/block-editor.cy.ts +301 -0
package/tests/cypress/e2e/uat/entities/pages/list.bdd.md +432 -0
package/tests/cypress/e2e/uat/entities/pages/list.cy.ts +273 -0
package/tests/cypress/e2e/uat/entities/pages/public-rendering.bdd.md +696 -0
package/tests/cypress/e2e/uat/entities/pages/public-rendering.cy.ts +340 -0
package/tests/cypress/e2e/uat/entities/posts/categories-api-aware.bdd.md +161 -0
package/tests/cypress/e2e/uat/entities/posts/categories-api-aware.cy.ts +104 -0
package/tests/cypress/e2e/uat/entities/posts/categories.bdd.md +375 -0
package/tests/cypress/e2e/uat/entities/posts/categories.cy.ts +241 -0
package/tests/cypress/e2e/uat/entities/posts/editor.bdd.md +429 -0
package/tests/cypress/e2e/uat/entities/posts/editor.cy.ts +257 -0
package/tests/cypress/e2e/uat/entities/posts/list.bdd.md +340 -0
package/tests/cypress/e2e/uat/entities/posts/list.cy.ts +177 -0
package/tests/cypress/e2e/uat/entities/posts/public.bdd.md +614 -0
package/tests/cypress/e2e/uat/entities/posts/public.cy.ts +249 -0
package/tests/cypress/e2e/uat/entities/tasks/member.bdd.md +222 -0
package/tests/cypress/e2e/uat/entities/tasks/member.cy.ts +165 -0
package/tests/cypress/e2e/uat/entities/tasks/owner.bdd.md +419 -0
package/tests/cypress/e2e/uat/entities/tasks/owner.cy.ts +191 -0
package/tests/cypress/e2e/uat/features/roles/editor-role.bdd.md +552 -0
package/tests/cypress/e2e/uat/features/roles/editor-role.cy.ts +210 -0
package/tests/cypress/e2e/uat/features/roles/member-restrictions.bdd.md +450 -0
package/tests/cypress/e2e/uat/features/roles/member-restrictions.cy.ts +189 -0
package/tests/cypress/e2e/uat/features/roles/owner-full-crud.bdd.md +530 -0
package/tests/cypress/e2e/uat/features/roles/owner-full-crud.cy.ts +247 -0
package/tests/cypress/fixtures/blocks.json +218 -0
package/tests/cypress/fixtures/entities.json +87 -0
package/tests/cypress/fixtures/page-builder.json +21 -0
package/tests/cypress/src/components/CategoriesPOM.ts +382 -0
package/tests/cypress/src/components/CustomersPOM.ts +439 -0
package/tests/cypress/src/components/DevKeyringPOM.ts +160 -0
package/tests/cypress/src/components/EntityForm.ts +375 -0
package/tests/cypress/src/components/EntityList.ts +389 -0
package/tests/cypress/src/components/PageBuilderPOM.ts +710 -0
package/tests/cypress/src/components/PostEditorPOM.ts +370 -0
package/tests/cypress/src/components/PostsListPOM.ts +223 -0
package/tests/cypress/src/components/PublicPagePOM.ts +447 -0
package/tests/cypress/src/components/PublicPostPOM.ts +146 -0
package/tests/cypress/src/components/TasksPOM.ts +272 -0
package/tests/cypress/src/components/TeamSwitcherPOM.ts +450 -0
package/tests/cypress/src/components/index.ts +21 -0
package/tests/cypress/src/controllers/ApiKeysAPIController.js +178 -0
package/tests/cypress/src/controllers/BaseAPIController.js +317 -0
package/tests/cypress/src/controllers/CustomerAPIController.js +251 -0
package/tests/cypress/src/controllers/MediaAPIController.js +231 -0
package/tests/cypress/src/controllers/PagesAPIController.js +226 -0
package/tests/cypress/src/controllers/PostsAPIController.js +250 -0
package/tests/cypress/src/controllers/TaskAPIController.js +240 -0
package/tests/cypress/src/controllers/UsersAPIController.js +242 -0
package/tests/cypress/src/controllers/index.js +25 -0
package/tests/cypress/src/core/AuthPOM.ts +450 -0
package/tests/cypress/src/core/BasePOM.ts +33 -0
package/tests/cypress/src/core/BlockEditorBasePOM.ts +874 -0
package/tests/cypress/src/core/DashboardEntityPOM.ts +41 -0
package/tests/cypress/src/core/index.ts +14 -0
package/tests/cypress/src/entities/CustomersPOM.ts +172 -0
package/tests/cypress/src/entities/PagesPOM.ts +137 -0
package/tests/cypress/src/entities/PatternsPOM.ts +329 -0
package/tests/cypress/src/entities/PostsPOM.ts +137 -0
package/tests/cypress/src/entities/TasksPOM.ts +246 -0
package/tests/cypress/src/entities/index.ts +16 -0
package/tests/cypress/src/features/BillingPOM.ts +385 -0
package/tests/cypress/src/features/DashboardPOM.ts +271 -0
package/tests/cypress/src/features/DevtoolsPOM.ts +750 -0
package/tests/cypress/src/features/PageBuilderPOM.ts +283 -0
package/tests/cypress/src/features/PostEditorPOM.ts +313 -0
package/tests/cypress/src/features/ScheduledActionsPOM.ts +463 -0
package/tests/cypress/src/features/SettingsPOM.ts +707 -0
package/tests/cypress/src/features/SuperadminPOM.ts +851 -0
package/tests/cypress/src/features/SuperadminTeamRolesPOM.ts +285 -0
package/tests/cypress/src/features/index.ts +28 -0
package/tests/cypress/src/helpers/ApiInterceptor.ts +20 -0
package/tests/cypress/src/index.ts +101 -0
package/tests/cypress/src/pages/dashboard/Dashboard.js +677 -0
package/tests/cypress/src/pages/dashboard/DashboardPage.js +43 -0
package/tests/cypress/src/pages/dashboard/DashboardStats.js +546 -0
package/tests/cypress/src/pages/dashboard/index.js +6 -0
package/tests/cypress/src/pages/index.js +5 -0
package/tests/cypress/src/pages/public/FeaturesPage.js +28 -0
package/tests/cypress/src/pages/public/LandingPage.js +69 -0
package/tests/cypress/src/pages/public/PricingPage.js +33 -0
package/tests/cypress/src/pages/public/index.js +6 -0
package/tests/cypress/src/selectors.ts +46 -0
package/tests/cypress/src/session-helpers.ts +518 -0
package/tests/cypress/support/doc-commands.ts +260 -0
package/tests/cypress/support/e2e.ts +90 -0
package/tests/cypress.config.ts +178 -0
package/tests/jest/__mocks__/@nextsparkjs/core/components/ui/badge.js +16 -0
package/tests/jest/__mocks__/@nextsparkjs/core/lib/db.js +11 -0
package/tests/jest/__mocks__/@nextsparkjs/registries/permissions-registry.ts +160 -0
package/tests/jest/__mocks__/@nextsparkjs/registries/theme-registry.ts +68 -0
package/tests/jest/__mocks__/jose.js +22 -0
package/tests/jest/__mocks__/next/image.js +15 -0
package/tests/jest/__mocks__/next-server.js +56 -0
package/tests/jest/components/post-header.test.tsx +377 -0
package/tests/jest/jest.config.cjs +154 -0
package/tests/jest/langchain/COVERAGE.md +372 -0
package/tests/jest/langchain/guardrails.test.ts +465 -0
package/tests/jest/langchain/streaming.test.ts +370 -0
package/tests/jest/langchain/token-tracker.test.ts +455 -0
package/tests/jest/langchain/tracer-callbacks.test.ts +881 -0
package/tests/jest/langchain/tracer.test.ts +823 -0
package/tests/jest/services/tasks.service.test.ts +707 -0
package/tests/jest/setup.ts +170 -0
package/tests/jest/tsconfig.jest.json +6 -0
package/tests/jest/validation/categories.test.ts +429 -0
package/tests/jest/validation/posts.test.ts +546 -0
package/tests/tsconfig.json +21 -0
/package/docs/{02-features → public/02-features}/01-components.md +0 -0
/package/docs/{02-features → public/02-features}/02-styling.md +0 -0

package/tests/cypress/e2e/api/entities/media/media-team-isolation.cy.ts ADDED Viewed

@@ -0,0 +1,464 @@
+/**
+ * Media API - Team Isolation Tests
+ *
+ * Validates that media is properly isolated by team:
+ * - Users can only see media from their active team
+ * - CRUD operations respect team boundaries
+ * - Cross-team access is prevented by membership validation (403)
+ * - Duplicate detection is team-scoped
+ *
+ * Test Cases:
+ * - MEDIA_TEAM_001: GET without x-team-id falls back to defaultTeamId
+ * - MEDIA_TEAM_002: GET with team A only returns team A media
+ * - MEDIA_TEAM_003: GET with non-member team returns 403
+ * - MEDIA_TEAM_004: POST upload creates media in correct team
+ * - MEDIA_TEAM_005: PATCH cannot modify media from another team (403 - not a member)
+ * - MEDIA_TEAM_006: DELETE cannot delete media from another team (403 - not a member)
+ * - MEDIA_TEAM_007: GET by ID cannot view media from another team (403 - not a member)
+ * - MEDIA_TEAM_008: Check duplicates only searches within active team
+ * - MEDIA_TEAM_009: Search with non-member team returns 403
+ * - MEDIA_TEAM_010: Pagination with non-member team returns 403
+ * - MEDIA_TEAM_009: Type filtering with non-member team returns 403
+ */
+/// <reference types="cypress" />
+import * as allure from 'allure-cypress'
+const MediaAPIController = require('../../../../src/controllers/MediaAPIController.js')
+describe('Media API - Team Isolation', {
+  tags: ['@api', '@feat-media-library', '@security', '@team-isolation']
+}, () => {
+  // Test constants
+  const SUPERADMIN_API_KEY = Cypress.env('SUPERADMIN_API_KEY') || 'test_api_key_for_testing_purposes_only_not_a_real_secret_key_abc123'
+  const BASE_URL = Cypress.config('baseUrl') || 'http://localhost:3010'
+  // Team IDs from sample data
+  const TEAM_A_ID = 'team-nextspark-001'  // NextSpark Team (system admin team with media)
+  const TEAM_B_ID = 'team-alpha-001'      // Alpha Tech (different team, no media)
+  // Controller instances
+  let mediaAPITeamA: InstanceType<typeof MediaAPIController>
+  let mediaAPITeamB: InstanceType<typeof MediaAPIController>
+  let mediaAPINoTeam: InstanceType<typeof MediaAPIController>
+  // Track created media for cleanup
+  let createdMediaTeamA: string[] = []
+  let createdMediaTeamB: string[] = []
+  before(() => {
+    // Initialize controllers for different team contexts
+    mediaAPITeamA = new MediaAPIController(BASE_URL, SUPERADMIN_API_KEY, TEAM_A_ID)
+    mediaAPITeamB = new MediaAPIController(BASE_URL, SUPERADMIN_API_KEY, TEAM_B_ID)
+    mediaAPINoTeam = new MediaAPIController(BASE_URL, SUPERADMIN_API_KEY, null) // No team context
+  })
+  beforeEach(() => {
+    allure.epic('API')
+    allure.feature('Media Library')
+    allure.story('Team Isolation')
+  })
+  afterEach(() => {
+    // Cleanup created media
+    createdMediaTeamA.forEach((id) => {
+      mediaAPITeamA.deleteMedia(id)
+    })
+    createdMediaTeamB.forEach((id) => {
+      mediaAPITeamB.deleteMedia(id)
+    })
+    createdMediaTeamA = []
+    createdMediaTeamB = []
+  })
+  // ============================================
+  // MEDIA_TEAM_001: GET without x-team-id falls back to defaultTeamId
+  // ============================================
+  describe('Team Context Fallback', () => {
+    it('MEDIA_TEAM_001: Should fall back to defaultTeamId when x-team-id header is not provided', { tags: '@smoke' }, () => {
+      allure.severity('critical')
+      // Superadmin has defaultTeamId set (team-nextspark-001 via activeTeamId meta)
+      // Without x-team-id header, API falls back to user's defaultTeamId
+      mediaAPINoTeam.getMedia().then((response: any) => {
+        expect(response.status).to.eq(200)
+        expect(response.body).to.have.property('success', true)
+        expect(response.body.data.data).to.be.an('array')
+        // All returned media should belong to the defaultTeamId (team-nextspark-001)
+        response.body.data.data.forEach((media: any) => {
+          expect(media.teamId).to.eq(TEAM_A_ID)
+        })
+        cy.log('Without x-team-id, API falls back to defaultTeamId correctly')
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_002 & 003: GET returns only team-specific media
+  // ============================================
+  describe('Team Isolation - List Media', () => {
+    it('MEDIA_TEAM_002: Should return only media from team A when using team A context', { tags: '@smoke' }, () => {
+      allure.severity('critical')
+      mediaAPITeamA.getMedia().then((response: any) => {
+        expect(response.status).to.eq(200)
+        expect(response.body).to.have.property('success', true)
+        expect(response.body.data.data).to.be.an('array')
+        // All returned media should belong to team A
+        response.body.data.data.forEach((media: any) => {
+          expect(media.teamId).to.eq(TEAM_A_ID)
+        })
+        cy.log(`Team A has ${response.body.data.data.length} media items (all isolated to team A)`)
+      })
+    })
+    it('MEDIA_TEAM_003: Should return 403 when requesting media from a team the user is not a member of', { tags: '@smoke' }, () => {
+      allure.severity('critical')
+      // SuperAdmin is NOT a member of team-alpha-001, so membership validation rejects with 403
+      mediaAPITeamB.getMedia().then((response: any) => {
+        expect(response.status).to.eq(403)
+        expect(response.body).to.have.property('success', false)
+        cy.log('Non-member team access correctly rejected with 403')
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_004: POST upload creates media in correct team
+  // Note: Skipped because cy.request doesn't handle FormData properly.
+  // Upload team isolation is verified via curl in manual testing.
+  // ============================================
+  describe('Team Isolation - Upload', () => {
+    it.skip('MEDIA_TEAM_004: Should create media in the correct team context (team A)', () => {
+      allure.severity('critical')
+      const filename = `test-team-a-${Date.now()}.jpg`
+      cy.fixture('test-image.jpg', 'binary').then((fileContent) => {
+        const blob = Cypress.Blob.binaryStringToBlob(fileContent, 'image/jpeg')
+        const file = new File([blob], filename, { type: 'image/jpeg' })
+        mediaAPITeamA.uploadMedia(file).then((response: any) => {
+          expect(response.status).to.eq(200)
+          expect(response.body).to.have.property('success', true)
+          expect(response.body.data.media).to.be.an('array')
+          expect(response.body.data.media.length).to.be.greaterThan(0)
+          const uploadedMedia = response.body.data.media[0]
+          expect(uploadedMedia.teamId).to.eq(TEAM_A_ID)
+          createdMediaTeamA.push(uploadedMedia.id)
+          cy.log(`Media uploaded to team A: ${uploadedMedia.id}`)
+          // Verify team B cannot see this media (403 - not a member)
+          mediaAPITeamB.getMediaById(uploadedMedia.id).then((getResponse: any) => {
+            expect(getResponse.status).to.eq(403)
+            cy.log('Team B cannot access team A media (403 - not a member)')
+          })
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_005: PATCH cannot modify media from another team
+  // ============================================
+  describe('Team Isolation - Update', () => {
+    it('MEDIA_TEAM_005: Should return 403 when trying to update media from a non-member team', () => {
+      allure.severity('critical')
+      // Get first media from team A
+      mediaAPITeamA.getMedia({ limit: 1 }).then((listResponse: any) => {
+        expect(listResponse.body.data.data.length).to.be.greaterThan(0)
+        const teamAMediaId = listResponse.body.data.data[0].id
+        // Try to update it using team B context (user is not a member of team B)
+        const updateData = { alt: 'Hacked from team B' }
+        mediaAPITeamB.updateMedia(teamAMediaId, updateData).then((updateResponse: any) => {
+          // Membership validation rejects before media lookup
+          expect(updateResponse.status).to.eq(403)
+          expect(updateResponse.body).to.have.property('success', false)
+          cy.log('Non-member team cannot update media (403)')
+          // Verify original media unchanged
+          mediaAPITeamA.getMediaById(teamAMediaId).then((getResponse: any) => {
+            expect(getResponse.status).to.eq(200)
+            expect(getResponse.body.data.alt).to.not.eq('Hacked from team B')
+            cy.log('Team A media unchanged after non-member update attempt')
+          })
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_006: DELETE cannot delete media from another team
+  // ============================================
+  describe('Team Isolation - Delete', () => {
+    it('MEDIA_TEAM_006: Should return 403 when trying to delete media from a non-member team', () => {
+      allure.severity('critical')
+      // Get first media from team A
+      mediaAPITeamA.getMedia({ limit: 1 }).then((listResponse: any) => {
+        expect(listResponse.body.data.data.length).to.be.greaterThan(0)
+        const teamAMediaId = listResponse.body.data.data[0].id
+        // Try to delete it using team B context (user is not a member of team B)
+        mediaAPITeamB.deleteMedia(teamAMediaId).then((deleteResponse: any) => {
+          // Membership validation rejects before media lookup
+          expect(deleteResponse.status).to.eq(403)
+          expect(deleteResponse.body).to.have.property('success', false)
+          cy.log('Non-member team cannot delete media (403)')
+          // Verify media still exists for team A
+          mediaAPITeamA.getMediaById(teamAMediaId).then((getResponse: any) => {
+            expect(getResponse.status).to.eq(200)
+            cy.log('Team A media still exists after non-member delete attempt')
+          })
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_007: GET by ID cannot view media from another team
+  // ============================================
+  describe('Team Isolation - Get by ID', () => {
+    it('MEDIA_TEAM_007: Should return 403 when trying to access media from a non-member team by ID', { tags: '@smoke' }, () => {
+      allure.severity('critical')
+      // Get first media from team A
+      mediaAPITeamA.getMedia({ limit: 1 }).then((listResponse: any) => {
+        expect(listResponse.body.data.data.length).to.be.greaterThan(0)
+        const teamAMediaId = listResponse.body.data.data[0].id
+        // Try to access it using team B context (user is not a member of team B)
+        mediaAPITeamB.getMediaById(teamAMediaId).then((getResponse: any) => {
+          // Membership validation rejects before media lookup
+          expect(getResponse.status).to.eq(403)
+          expect(getResponse.body).to.have.property('success', false)
+          cy.log('Non-member team cannot view media by ID (403)')
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_008: Check duplicates only searches within active team
+  // ============================================
+  describe('Team Isolation - Duplicate Detection', () => {
+    it.skip('MEDIA_TEAM_008: Should only detect duplicates within the same team', () => {
+      allure.severity('high')
+      const filename = `duplicate-test-${Date.now()}.jpg`
+      // Upload to team A
+      cy.fixture('test-image.jpg', 'binary').then((fileContent) => {
+        const blob = Cypress.Blob.binaryStringToBlob(fileContent, 'image/jpeg')
+        const fileA = new File([blob], filename, { type: 'image/jpeg' })
+        mediaAPITeamA.uploadMedia(fileA).then((uploadAResponse: any) => {
+          expect(uploadAResponse.status).to.eq(200)
+          const mediaA = uploadAResponse.body.data.media[0]
+          createdMediaTeamA.push(mediaA.id)
+          cy.log(`Uploaded to team A: ${mediaA.id}`)
+          // Upload same file to team B (should NOT be detected as duplicate)
+          const fileB = new File([blob], filename, { type: 'image/jpeg' })
+          mediaAPITeamB.uploadMedia(fileB).then((uploadBResponse: any) => {
+            expect(uploadBResponse.status).to.eq(200)
+            const mediaB = uploadBResponse.body.data.media[0]
+            createdMediaTeamB.push(mediaB.id)
+            cy.log(`Uploaded to team B: ${mediaB.id}`)
+            // Both uploads should succeed (no duplicate detected across teams)
+            expect(mediaA.id).to.not.eq(mediaB.id)
+            expect(mediaA.teamId).to.eq(TEAM_A_ID)
+            expect(mediaB.teamId).to.eq(TEAM_B_ID)
+            cy.log('Same file uploaded to both teams - no cross-team duplicate detection')
+          })
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_009: Search respects team isolation
+  // ============================================
+  describe('Team Isolation - Search', () => {
+    it('MEDIA_TEAM_009: Should search within active team and reject non-member teams', () => {
+      allure.severity('high')
+      const searchTerm = 'sample'
+      // Search in team A (user is a member)
+      mediaAPITeamA.getMedia({ search: searchTerm }).then((searchAResponse: any) => {
+        expect(searchAResponse.status).to.eq(200)
+        expect(searchAResponse.body).to.have.property('success', true)
+        expect(searchAResponse.body.data.data).to.be.an('array')
+        // All results should belong to team A
+        searchAResponse.body.data.data.forEach((media: any) => {
+          expect(media.teamId).to.eq(TEAM_A_ID)
+        })
+        cy.log(`Team A search found ${searchAResponse.body.data.data.length} results (all in team A)`)
+      })
+      // Search in team B (user is NOT a member) - should be rejected
+      mediaAPITeamB.getMedia({ search: searchTerm }).then((searchBResponse: any) => {
+        expect(searchBResponse.status).to.eq(403)
+        expect(searchBResponse.body).to.have.property('success', false)
+        cy.log('Non-member team search correctly rejected with 403')
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_010: Pagination reflects only active team
+  // ============================================
+  describe('Team Isolation - Pagination', () => {
+    it('MEDIA_TEAM_010: Should paginate within member team and reject non-member teams', () => {
+      allure.severity('medium')
+      // Get total count for team A (user is a member)
+      mediaAPITeamA.getMedia({ limit: 100 }).then((teamAResponse: any) => {
+        const teamATotal = teamAResponse.body.data.total
+        expect(teamAResponse.body.data.data).to.be.an('array')
+        expect(teamATotal).to.be.greaterThan(0)
+        teamAResponse.body.data.data.forEach((media: any) => {
+          expect(media.teamId).to.eq(TEAM_A_ID)
+        })
+        cy.log(`Team A total: ${teamATotal} (correctly isolated)`)
+        // Team B access (user is NOT a member) - should be rejected
+        mediaAPITeamB.getMedia({ limit: 100 }).then((teamBResponse: any) => {
+          expect(teamBResponse.status).to.eq(403)
+          expect(teamBResponse.body).to.have.property('success', false)
+          cy.log('Non-member team pagination correctly rejected with 403')
+        })
+      })
+    })
+  })
+  // ============================================
+  // MEDIA_TEAM_011: Type filtering respects team isolation
+  // ============================================
+  describe('Team Isolation - Type Filtering', () => {
+    it('MEDIA_TEAM_011: Should filter by type within member team and reject non-member teams', () => {
+      allure.severity('medium')
+      // Get images from team A (user is a member)
+      mediaAPITeamA.getMedia({ type: 'image' }).then((teamAResponse: any) => {
+        expect(teamAResponse.status).to.eq(200)
+        expect(teamAResponse.body).to.have.property('success', true)
+        expect(teamAResponse.body.data.data).to.be.an('array')
+        // All results should be images from team A
+        teamAResponse.body.data.data.forEach((media: any) => {
+          expect(media.teamId).to.eq(TEAM_A_ID)
+        })
+        cy.log(`Team A has ${teamAResponse.body.data.data.length} images (all in team A)`)
+      })
+      // Get images from team B (user is NOT a member) - should be rejected
+      mediaAPITeamB.getMedia({ type: 'image' }).then((teamBResponse: any) => {
+        expect(teamBResponse.status).to.eq(403)
+        expect(teamBResponse.body).to.have.property('success', false)
+        cy.log('Non-member team type filter correctly rejected with 403')
+      })
+    })
+  })
+  // ============================================
+  // Integration Test: Full CRUD lifecycle with team isolation
+  // ============================================
+  describe('Integration - CRUD Lifecycle with Team Isolation', () => {
+    it.skip('MEDIA_TEAM_100: Should complete full lifecycle respecting team boundaries', () => {
+      allure.severity('critical')
+      const filename = `lifecycle-test-${Date.now()}.jpg`
+      // 1. Upload to team A
+      cy.fixture('test-image.jpg', 'binary').then((fileContent) => {
+        const blob = Cypress.Blob.binaryStringToBlob(fileContent, 'image/jpeg')
+        const file = new File([blob], filename, { type: 'image/jpeg' })
+        mediaAPITeamA.uploadMedia(file).then((uploadResponse: any) => {
+          expect(uploadResponse.status).to.eq(200)
+          const mediaId = uploadResponse.body.data.media[0].id
+          createdMediaTeamA.push(mediaId)
+          cy.log(`1. Uploaded to team A: ${mediaId}`)
+          // 2. Team A can read it
+          mediaAPITeamA.getMediaById(mediaId).then((readResponse: any) => {
+            expect(readResponse.status).to.eq(200)
+            expect(readResponse.body.data.teamId).to.eq(TEAM_A_ID)
+            cy.log('2. Team A can read the media')
+            // 3. Team B CANNOT read it (403 - not a member)
+            mediaAPITeamB.getMediaById(mediaId).then((crossTeamReadResponse: any) => {
+              expect(crossTeamReadResponse.status).to.eq(403)
+              cy.log('3. Team B cannot read team A media (403 - not a member)')
+              // 4. Team A can update it
+              mediaAPITeamA.updateMedia(mediaId, { alt: 'Updated by team A' }).then((updateResponse: any) => {
+                expect(updateResponse.status).to.eq(200)
+                expect(updateResponse.body.data.alt).to.eq('Updated by team A')
+                cy.log('4. Team A updated the media')
+                // 5. Team B CANNOT update it (403 - not a member)
+                mediaAPITeamB.updateMedia(mediaId, { alt: 'Hacked by team B' }).then((crossTeamUpdateResponse: any) => {
+                  expect(crossTeamUpdateResponse.status).to.eq(403)
+                  cy.log('5. Team B cannot update team A media (403 - not a member)')
+                  // 6. Team A can delete it
+                  mediaAPITeamA.deleteMedia(mediaId).then((deleteResponse: any) => {
+                    expect(deleteResponse.status).to.eq(200)
+                    cy.log('6. Team A deleted the media')
+                    // 7. Verify deletion (404 for both teams)
+                    mediaAPITeamA.getMediaById(mediaId).then((verifyAResponse: any) => {
+                      expect(verifyAResponse.status).to.eq(404)
+                      mediaAPITeamB.getMediaById(mediaId).then((verifyBResponse: any) => {
+                        expect(verifyBResponse.status).to.eq(403)
+                        cy.log('7. Media deleted - team A gets 404, team B gets 403 (not a member)')
+                        cy.log('Full lifecycle completed with team isolation!')
+                      })
+                    })
+                  })
+                })
+              })
+            })
+          })
+        })
+      })
+    })
+  })
+})