npm - @nodii/approval - Versions diffs - 0.0.1 → 0.1.4 - Mend

@nodii/approval 0.0.1 → 0.1.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (60) hide show

package/README.md +40 -2
package/dist/consumer.d.ts +19 -0
package/dist/consumer.d.ts.map +1 -0
package/dist/consumer.js +274 -0
package/dist/consumer.js.map +1 -0
package/dist/deferred-actions.d.ts +34 -0
package/dist/deferred-actions.d.ts.map +1 -0
package/dist/deferred-actions.js +126 -0
package/dist/deferred-actions.js.map +1 -0
package/dist/errors.d.ts +51 -0
package/dist/errors.d.ts.map +1 -0
package/dist/errors.js +82 -0
package/dist/errors.js.map +1 -0
package/dist/handlers.d.ts +7 -0
package/dist/handlers.d.ts.map +1 -0
package/dist/handlers.js +20 -0
package/dist/handlers.js.map +1 -0
package/dist/index.d.ts +13 -2
package/dist/index.d.ts.map +1 -0
package/dist/index.js +15 -1
package/dist/index.js.map +1 -0
package/dist/init.d.ts +21 -0
package/dist/init.d.ts.map +1 -0
package/dist/init.js +139 -0
package/dist/init.js.map +1 -0
package/dist/kinds.d.ts +20 -0
package/dist/kinds.d.ts.map +1 -0
package/dist/kinds.js +72 -0
package/dist/kinds.js.map +1 -0
package/dist/migrations.d.ts +27 -0
package/dist/migrations.d.ts.map +1 -0
package/dist/migrations.js +67 -0
package/dist/migrations.js.map +1 -0
package/dist/policies.d.ts +21 -0
package/dist/policies.d.ts.map +1 -0
package/dist/policies.js +99 -0
package/dist/policies.js.map +1 -0
package/dist/request.d.ts +3 -0
package/dist/request.d.ts.map +1 -0
package/dist/request.js +356 -0
package/dist/request.js.map +1 -0
package/dist/task-tracking-client.d.ts +39 -0
package/dist/task-tracking-client.d.ts.map +1 -0
package/dist/task-tracking-client.js +100 -0
package/dist/task-tracking-client.js.map +1 -0
package/dist/telemetry-shim.d.ts +35 -0
package/dist/telemetry-shim.d.ts.map +1 -0
package/dist/telemetry-shim.js +88 -0
package/dist/telemetry-shim.js.map +1 -0
package/dist/types.d.ts +279 -0
package/dist/types.d.ts.map +1 -0
package/dist/types.js +18 -0
package/dist/types.js.map +1 -0
package/dist/validation.d.ts +5 -0
package/dist/validation.d.ts.map +1 -0
package/dist/validation.js +40 -0
package/dist/validation.js.map +1 -0
package/package.json +44 -3
package/src/migrations/001-approval-policies.sql +27 -0
package/src/migrations/002-deferred-actions.sql +41 -0

package/README.md CHANGED Viewed

@@ -1,5 +1,43 @@
 # @nodii/approval
-Placeholder package at v0.0.1. Real implementation ships at v0.1.0 per the locked feature_doc.
+Approval library for the Nodii microservice stack. Implements the platform-wide
+approval contract locked in `10-approval-doctrine.md`. Polyglot ship: TS + Python + Go
+at v0.1.0.
-**Spec**: `https://planning.dev.nucleus-cloud.in/api/v1/feature-docs?serviceId=nodii-libs&docKey=approval`
+## Public surface (v0.1.0)
+- `defineApprovalKinds(serviceName, defs)` — type-safe kind registry per spec § 5.3.
+- `initApproval({...})` — boot-time wiring (pg, redis, telemetry, task-tracking).
+- `bindApprovalHandlers({...})` — register `onApproved` / `onRejected` / `onExpired`.
+- `requestApproval({...})` — the canonical 7-step request sequence per spec § 5.2.
+- `startApprovalConsumer({...})` / `stopApprovalConsumer({...})` — BullMQ-leased
+  completion-event consumer per spec § 5.8.
+- `getApprovalMigrationSQL(serviceName)` — emit per-service `<service>_approval_policies`
+  + `<service>_deferred_actions` migration SQL per spec § 5.4 / § 5.6.
+Spec: planning hub `feature_doc` `docKey=approval`. See
+[`10-approval-doctrine.md`](../../../nodii-planning-hub/docs/planning/global/10-approval-doctrine.md)
+for the canonical contract.
+## Boot
+```typescript
+import { initApproval, startApprovalConsumer } from "@nodii/approval";
+import Redis from "ioredis";
+import postgres from "postgres";
+const pgPool = postgres(process.env.DATABASE_URL!);
+const redis = new Redis(process.env.REDIS_URL!);
+await initApproval({
+  serviceName: "billing",
+  pgPool,
+  redis,
+  taskServiceUrl: process.env.TASK_TRACKING_GRPC_URL!,
+});
+await startApprovalConsumer({ serviceName: "billing" });
+```
+See `tests/integration.test.ts` for an end-to-end example that wires the
+library against postgres + redis + an in-process task-tracking gRPC stub.

package/dist/consumer.d.ts ADDED Viewed

@@ -0,0 +1,19 @@
+import { Worker } from "bullmq";
+export interface StartApprovalConsumerOpts {
+    /** Defaults to `<serviceName>-approval-completions`. */
+    queueName?: string;
+    /** Defaults to `cfg.consumerMaxRetries`. */
+    maxAttempts?: number;
+}
+export interface ApprovalConsumerHandle {
+    worker: Worker;
+    close(timeoutMs?: number): Promise<void>;
+}
+export declare function startApprovalConsumer(opts?: StartApprovalConsumerOpts): Promise<ApprovalConsumerHandle>;
+export declare function stopApprovalConsumer(opts?: {
+    timeoutMs?: number;
+}): Promise<void>;
+export declare function defaultQueueName(serviceName: string): string;
+/** Test-only reset — closes the active worker if any. */
+export declare function _resetConsumerForTests(): void;
+//# sourceMappingURL=consumer.d.ts.map

package/dist/consumer.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"consumer.d.ts","sourceRoot":"","sources":["../src/consumer.ts"],"names":[],"mappings":"AAaA,OAAO,EAAE,MAAM,EAAY,MAAM,QAAQ,CAAC;AAmB1C,MAAM,WAAW,yBAAyB;IACxC,wDAAwD;IACxD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4CAA4C;IAC5C,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,SAAS,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;CAC1C;AAID,wBAAsB,qBAAqB,CACzC,IAAI,GAAE,yBAA8B,GACnC,OAAO,CAAC,sBAAsB,CAAC,CAyDjC;AAED,wBAAsB,oBAAoB,CACxC,IAAI,GAAE;IAAE,SAAS,CAAC,EAAE,MAAM,CAAA;CAAO,GAChC,OAAO,CAAC,IAAI,CAAC,CAGf;AAED,wBAAgB,gBAAgB,CAAC,WAAW,EAAE,MAAM,GAAG,MAAM,CAE5D;AAkPD,yDAAyD;AACzD,wBAAgB,sBAAsB,IAAI,IAAI,CAE7C"}

package/dist/consumer.js ADDED Viewed

@@ -0,0 +1,274 @@
+// BullMQ-leased completion-event consumer per spec § 5.8.
+//
+// Subscribes to `tasks.task.completed.v1` and dispatches the registered
+// handler for each approval task that targets this service. Apply-tx
+// wraps status-update + handler invocation + audit emit + dedupe write
+// in one transaction.
+//
+// v0.1.0 scope: the consumer is a BullMQ Worker. Adopting services
+// publish completion events into the `tasks.task.completed.v1` queue
+// (either via a fan-out from task-tracking's outbox drainer, or via a
+// direct BullMQ producer in integration tests). We do NOT own the
+// publisher side — task-tracking does.
+import { Worker } from "bullmq";
+import { applyDecision, findById, findByTaskId, markExecuted, markFailed, } from "./deferred-actions";
+import { DeferredActionNotFound } from "./errors";
+import { requireApproval, requireHandlers } from "./init";
+import { emitAudit, inc, observe } from "./telemetry-shim";
+let CURRENT = null;
+export async function startApprovalConsumer(opts = {}) {
+    if (CURRENT) {
+        return CURRENT;
+    }
+    const cfg = requireApproval();
+    const queue = opts.queueName ?? defaultQueueName(cfg.serviceName);
+    const maxAttempts = opts.maxAttempts ?? cfg.consumerMaxRetries;
+    // BullMQ's Connection type is pinned to its own ioredis version; the
+    // workspace may resolve a different patch. Cast through `unknown` to
+    // accept the user-supplied Redis as long as it has the same structural
+    // surface BullMQ uses internally.
+    const worker = new Worker(queue, async (job) => {
+        await consumeCompletionEvent(cfg, job);
+    }, {
+        connection: cfg.redis,
+        concurrency: 1, // single-flight per service per spec § 5.8 lease semantics
+        lockDuration: cfg.consumerLeaseSeconds * 1000,
+        autorun: true,
+        removeOnComplete: { count: 1000 },
+        removeOnFail: { count: 1000 },
+        settings: {
+            backoffStrategy: (attempts) => Math.min(60_000, 2 ** attempts * 250),
+        },
+    });
+    worker.on("failed", (job, err) => {
+        cfg.logger.warn("approval.consumer.job_failed", {
+            job_id: job?.id,
+            attempts: job?.attemptsMade,
+            max_attempts: maxAttempts,
+            error: err.message,
+        });
+    });
+    CURRENT = {
+        worker,
+        async close(timeoutMs = 30_000) {
+            try {
+                await Promise.race([
+                    worker.close(),
+                    new Promise((resolve) => setTimeout(resolve, timeoutMs).unref()),
+                ]);
+            }
+            finally {
+                CURRENT = null;
+            }
+        },
+    };
+    return CURRENT;
+}
+export async function stopApprovalConsumer(opts = {}) {
+    if (!CURRENT)
+        return;
+    await CURRENT.close(opts.timeoutMs);
+}
+export function defaultQueueName(serviceName) {
+    return `${serviceName}-approval-completions`;
+}
+async function consumeCompletionEvent(cfg, job) {
+    const event = job.data;
+    const startMs = Date.now();
+    // Dedupe via consumed_events.
+    const already = await isAlreadyConsumed(cfg, event.eventId, event.topic);
+    if (already) {
+        cfg.logger.info("approval.consumer.dedupe_skip", {
+            event_id: event.eventId,
+        });
+        return;
+    }
+    // Filter to approval kinds for this service only.
+    if (!event.kind.startsWith(`approval:${cfg.serviceName}.`)) {
+        await markConsumed(cfg, event.eventId, event.topic);
+        return;
+    }
+    // Resolve the deferred-action row.
+    const pg = cfg.pgPool;
+    let row = await findByTaskId(cfg, pg, event.taskId);
+    if (!row) {
+        const fallbackId = typeof event.metadata?.deferredActionId === "string"
+            ? event.metadata.deferredActionId
+            : null;
+        if (fallbackId) {
+            row = await findById(cfg, pg, fallbackId);
+        }
+    }
+    if (!row) {
+        // No row found → no tenant id available. Pass null rather than the
+        // literal string "unknown" so downstream audit-chain queries
+        // filtering by tenant_id don't mistake this for a real tenant value.
+        emitAudit({
+            tenantId: null,
+            action: `${cfg.serviceName}.approval.completion_unknown`,
+            metadata: { task_id: event.taskId, event_id: event.eventId },
+        });
+        inc({
+            name: "approval_completion_unknown_total",
+            family: "async_worker",
+            labels: { service: cfg.serviceName },
+        });
+        await markConsumed(cfg, event.eventId, event.topic);
+        throw new DeferredActionNotFound(event.taskId);
+    }
+    // Apply tx: status update + handler dispatch + audit + dedupe insert.
+    // If no handler is registered for this kind, treat it as a terminal
+    // failure — mark the row failed, write the dedupe row to stop BullMQ
+    // from retrying forever, and emit the matching audit + metric.
+    const handlers = requireHandlers();
+    const handlerSet = handlers.get(row.kind);
+    if (!handlerSet) {
+        const reason = `HandlerNotRegistered: no handler for kind '${row.kind}'`;
+        await markFailed(cfg, pg, row.id, reason);
+        emitAudit({
+            tenantId: row.tenant_id,
+            action: `${cfg.serviceName}.approval.execution_failed`,
+            targetKind: "deferred_action",
+            targetId: row.id,
+            metadata: { kind: row.kind, error: reason },
+        });
+        inc({
+            name: "approval_handler_failures_total",
+            family: "async_worker",
+            labels: {
+                service: cfg.serviceName,
+                kind: row.kind,
+                decision: event.outcome,
+            },
+        });
+        await markConsumed(cfg, event.eventId, event.topic);
+        // Terminal — return so BullMQ stops retrying (matches the retry-
+        // exhaustion branch below). Operator recovery via RetryApproval RPC.
+        cfg.logger.error("approval.consumer.handler_not_registered", {
+            kind: row.kind,
+            row_id: row.id,
+        });
+        return;
+    }
+    const ctx = {
+        tenantId: row.tenant_id,
+        deferredActionId: row.id,
+        deferredActionPayload: row.deferred_action_payload,
+        requesterMembershipId: row.requester_membership_id,
+        approverMembershipId: event.completedByMembershipId,
+        approverNote: event.completionNote,
+        approverKind: "user",
+        kind: row.kind,
+        metadata: row.metadata,
+    };
+    try {
+        await pg.begin(async (tx) => {
+            const updated = await applyDecision(cfg, tx, row.id, event.outcome, event.completedByMembershipId, event.completionNote);
+            // Idempotency guard: if 0 rows updated, the row already moved past
+            // `pending` — a prior duplicate completion event already ran the
+            // handler. Skip rather than re-fire (consumed_events dedupe +
+            // status='pending' guard = exactly-once handler invocation).
+            if (updated === 0) {
+                cfg.logger.info("approval.consumer.duplicate_completion_skipped", {
+                    row_id: row.id,
+                    event_id: event.eventId,
+                    task_id: event.taskId,
+                });
+                await tx.unsafe(`INSERT INTO consumed_events (event_id, topic) VALUES ($1, $2)
+           ON CONFLICT (event_id, topic) DO NOTHING`, [event.eventId, event.topic]);
+                return;
+            }
+            if (event.outcome === "approved") {
+                await handlerSet.onApproved(ctx);
+            }
+            else if (event.outcome === "rejected") {
+                await handlerSet.onRejected(ctx);
+            }
+            else {
+                await handlerSet.onExpired(ctx);
+            }
+            await markExecuted(cfg, tx, row.id);
+            const auditAction = event.outcome === "approved"
+                ? `${cfg.serviceName}.approval.executed`
+                : `${cfg.serviceName}.approval.aborted`;
+            emitAudit({
+                tenantId: row.tenant_id,
+                action: auditAction,
+                targetKind: "deferred_action",
+                targetId: row.id,
+                // Event metadata first; lib-mandated fields last so they win.
+                metadata: {
+                    ...event.metadata,
+                    kind: row.kind,
+                    outcome: event.outcome,
+                    approver_membership_id: event.completedByMembershipId,
+                },
+            });
+            await tx.unsafe(`INSERT INTO consumed_events (event_id, topic) VALUES ($1, $2)
+         ON CONFLICT (event_id, topic) DO NOTHING`, [event.eventId, event.topic]);
+        });
+    }
+    catch (handlerErr) {
+        // Apply tx rolled back here — status reverts to whatever was before
+        // applyDecision ran, consumed_events row was NOT written, and the
+        // handler failure needs separate handling. Enforce consumerMaxRetries
+        // at this layer (BullMQ's per-job `attempts` is producer-controlled,
+        // so we cap on attemptsMade ourselves).
+        const reason = handlerErr instanceof Error ? handlerErr.message : String(handlerErr);
+        const attemptsMade = job.attemptsMade ?? 0;
+        const exhausted = attemptsMade + 1 >= cfg.consumerMaxRetries;
+        if (exhausted) {
+            // Terminal failure — mark + dedupe + don't re-throw so BullMQ stops.
+            await markFailed(cfg, pg, row.id, reason);
+            await markConsumed(cfg, event.eventId, event.topic);
+            emitAudit({
+                tenantId: row.tenant_id,
+                action: `${cfg.serviceName}.approval.execution_failed`,
+                targetKind: "deferred_action",
+                targetId: row.id,
+                metadata: { kind: row.kind, error: reason, attempts: attemptsMade + 1 },
+            });
+            inc({
+                name: "approval_handler_failures_total",
+                family: "async_worker",
+                labels: {
+                    service: cfg.serviceName,
+                    kind: row.kind,
+                    decision: event.outcome,
+                },
+            });
+            return; // do not re-throw — operator-recoverable via RetryApproval RPC
+        }
+        // Transient — re-throw so BullMQ retries with backoff. The status is
+        // already rolled back by the apply tx; next attempt re-enters cleanly.
+        throw handlerErr;
+    }
+    observe({
+        name: "approval_execution_duration_seconds",
+        family: "async_worker",
+        labels: { service: cfg.serviceName, kind: row.kind },
+        value: (Date.now() - startMs) / 1000,
+    });
+    if (event.publishedAt) {
+        const lag = (Date.now() - new Date(event.publishedAt).getTime()) / 1000;
+        observe({
+            name: "approval_consumer_lag_seconds",
+            family: "async_worker",
+            labels: { service: cfg.serviceName },
+            value: lag,
+        });
+    }
+}
+async function isAlreadyConsumed(cfg, eventId, topic) {
+    const rows = await cfg.pgPool.unsafe("SELECT 1 FROM consumed_events WHERE event_id = $1 AND topic = $2 LIMIT 1", [eventId, topic]);
+    return Array.isArray(rows) && rows.length > 0;
+}
+async function markConsumed(cfg, eventId, topic) {
+    await cfg.pgPool.unsafe(`INSERT INTO consumed_events (event_id, topic) VALUES ($1, $2)
+     ON CONFLICT (event_id, topic) DO NOTHING`, [eventId, topic]);
+}
+/** Test-only reset — closes the active worker if any. */
+export function _resetConsumerForTests() {
+    CURRENT = null;
+}
+//# sourceMappingURL=consumer.js.map

package/dist/consumer.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"consumer.js","sourceRoot":"","sources":["../src/consumer.ts"],"names":[],"mappings":"AAAA,0DAA0D;AAC1D,EAAE;AACF,wEAAwE;AACxE,qEAAqE;AACrE,uEAAuE;AACvE,sBAAsB;AACtB,EAAE;AACF,mEAAmE;AACnE,qEAAqE;AACrE,sEAAsE;AACtE,kEAAkE;AAClE,uCAAuC;AAEvC,OAAO,EAAE,MAAM,EAAY,MAAM,QAAQ,CAAC;AAE1C,OAAO,EACL,aAAa,EACb,QAAQ,EACR,YAAY,EACZ,YAAY,EACZ,UAAU,GACX,MAAM,oBAAoB,CAAC;AAC5B,OAAO,EAAE,sBAAsB,EAAE,MAAM,UAAU,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAC1D,OAAO,EAAE,SAAS,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAoB3D,IAAI,OAAO,GAAkC,IAAI,CAAC;AAElD,MAAM,CAAC,KAAK,UAAU,qBAAqB,CACzC,OAAkC,EAAE;IAEpC,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,OAAO,CAAC;IACjB,CAAC;IACD,MAAM,GAAG,GAAG,eAAe,EAAE,CAAC;IAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,SAAS,IAAI,gBAAgB,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IAClE,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,GAAG,CAAC,kBAAkB,CAAC;IAE/D,qEAAqE;IACrE,qEAAqE;IACrE,uEAAuE;IACvE,kCAAkC;IAClC,MAAM,MAAM,GAAG,IAAI,MAAM,CACvB,KAAK,EACL,KAAK,EAAE,GAAG,EAAE,EAAE;QACZ,MAAM,sBAAsB,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;IACzC,CAAC,EACD;QACE,UAAU,EAAE,GAAG,CAAC,KAIP;QACT,WAAW,EAAE,CAAC,EAAE,2DAA2D;QAC3E,YAAY,EAAE,GAAG,CAAC,oBAAoB,GAAG,IAAI;QAC7C,OAAO,EAAE,IAAI;QACb,gBAAgB,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE;QACjC,YAAY,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE;QAC7B,QAAQ,EAAE;YACR,eAAe,EAAE,CAAC,QAAQ,EAAE,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,CAAC,IAAI,QAAQ,GAAG,GAAG,CAAC;SACrE;KACF,CACF,CAAC;IAEF,MAAM,CAAC,EAAE,CAAC,QAAQ,EAAE,CAAC,GAAG,EAAE,GAAG,EAAE,EAAE;QAC/B,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,8BAA8B,EAAE;YAC9C,MAAM,EAAE,GAAG,EAAE,EAAE;YACf,QAAQ,EAAE,GAAG,EAAE,YAAY;YAC3B,YAAY,EAAE,WAAW;YACzB,KAAK,EAAE,GAAG,CAAC,OAAO;SACnB,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,OAAO,GAAG;QACR,MAAM;QACN,KAAK,CAAC,KAAK,CAAC,SAAS,GAAG,MAAM;YAC5B,IAAI,CAAC;gBACH,MAAM,OAAO,CAAC,IAAI,CAAC;oBACjB,MAAM,CAAC,KAAK,EAAE;oBACd,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC,KAAK,EAAE,CAAC;iBACjE,CAAC,CAAC;YACL,CAAC;oBAAS,CAAC;gBACT,OAAO,GAAG,IAAI,CAAC;YACjB,CAAC;QACH,CAAC;KACF,CAAC;IACF,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,OAA+B,EAAE;IAEjC,IAAI,CAAC,OAAO;QAAE,OAAO;IACrB,MAAM,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;AACtC,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,WAAmB;IAClD,OAAO,GAAG,WAAW,uBAAuB,CAAC;AAC/C,CAAC;AAED,KAAK,UAAU,sBAAsB,CACnC,GAA2B,EAC3B,GAA4B;IAE5B,MAAM,KAAK,GAAG,GAAG,CAAC,IAAI,CAAC;IACvB,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE3B,8BAA8B;IAC9B,MAAM,OAAO,GAAG,MAAM,iBAAiB,CAAC,GAAG,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;IACzE,IAAI,OAAO,EAAE,CAAC;QACZ,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,+BAA+B,EAAE;YAC/C,QAAQ,EAAE,KAAK,CAAC,OAAO;SACxB,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,kDAAkD;IAClD,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,YAAY,GAAG,CAAC,WAAW,GAAG,CAAC,EAAE,CAAC;QAC3D,MAAM,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;QACpD,OAAO;IACT,CAAC;IAED,mCAAmC;IACnC,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC;IACtB,IAAI,GAAG,GAAG,MAAM,YAAY,CAAC,GAAG,EAAE,EAAE,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;IACpD,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,MAAM,UAAU,GACd,OAAO,KAAK,CAAC,QAAQ,EAAE,gBAAgB,KAAK,QAAQ;YAClD,CAAC,CAAE,KAAK,CAAC,QAAQ,CAAC,gBAA2B;YAC7C,CAAC,CAAC,IAAI,CAAC;QACX,IAAI,UAAU,EAAE,CAAC;YACf,GAAG,GAAG,MAAM,QAAQ,CAAC,GAAG,EAAE,EAAE,EAAE,UAAU,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IACD,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,mEAAmE;QACnE,6DAA6D;QAC7D,qEAAqE;QACrE,SAAS,CAAC;YACR,QAAQ,EAAE,IAAI;YACd,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,8BAA8B;YACxD,QAAQ,EAAE,EAAE,OAAO,EAAE,KAAK,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,OAAO,EAAE;SAC7D,CAAC,CAAC;QACH,GAAG,CAAC;YACF,IAAI,EAAE,mCAAmC;YACzC,MAAM,EAAE,cAAc;YACtB,MAAM,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,WAAW,EAAE;SACrC,CAAC,CAAC;QACH,MAAM,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;QACpD,MAAM,IAAI,sBAAsB,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IACjD,CAAC;IAED,sEAAsE;IACtE,oEAAoE;IACpE,qEAAqE;IACrE,+DAA+D;IAC/D,MAAM,QAAQ,GAAG,eAAe,EAAE,CAAC;IACnC,MAAM,UAAU,GAAG,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAC1C,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,MAAM,MAAM,GAAG,8CAA8C,GAAG,CAAC,IAAI,GAAG,CAAC;QACzE,MAAM,UAAU,CAAC,GAAG,EAAE,EAAE,EAAE,GAAG,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;QAC1C,SAAS,CAAC;YACR,QAAQ,EAAE,GAAG,CAAC,SAAS;YACvB,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,4BAA4B;YACtD,UAAU,EAAE,iBAAiB;YAC7B,QAAQ,EAAE,GAAG,CAAC,EAAE;YAChB,QAAQ,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE;SAC5C,CAAC,CAAC;QACH,GAAG,CAAC;YACF,IAAI,EAAE,iCAAiC;YACvC,MAAM,EAAE,cAAc;YACtB,MAAM,EAAE;gBACN,OAAO,EAAE,GAAG,CAAC,WAAW;gBACxB,IAAI,EAAE,GAAG,CAAC,IAAI;gBACd,QAAQ,EAAE,KAAK,CAAC,OAAO;aACxB;SACF,CAAC,CAAC;QACH,MAAM,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;QACpD,iEAAiE;QACjE,qEAAqE;QACrE,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,0CAA0C,EAAE;YAC3D,IAAI,EAAE,GAAG,CAAC,IAAI;YACd,MAAM,EAAE,GAAG,CAAC,EAAE;SACf,CAAC,CAAC;QACH,OAAO;IACT,CAAC;IAED,MAAM,GAAG,GAAmB;QAC1B,QAAQ,EAAE,GAAG,CAAC,SAAS;QACvB,gBAAgB,EAAE,GAAG,CAAC,EAAE;QACxB,qBAAqB,EAAE,GAAG,CAAC,uBAAuB;QAClD,qBAAqB,EAAE,GAAG,CAAC,uBAAuB;QAClD,oBAAoB,EAAE,KAAK,CAAC,uBAAuB;QACnD,YAAY,EAAE,KAAK,CAAC,cAAc;QAClC,YAAY,EAAE,MAA6B;QAC3C,IAAI,EAAE,GAAG,CAAC,IAAI;QACd,QAAQ,EAAE,GAAG,CAAC,QAAQ;KACvB,CAAC;IAEF,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,EAAE,EAAE;YAC1B,MAAM,OAAO,GAAG,MAAM,aAAa,CACjC,GAAG,EACH,EAAE,EACF,GAAG,CAAC,EAAE,EACN,KAAK,CAAC,OAAO,EACb,KAAK,CAAC,uBAAuB,EAC7B,KAAK,CAAC,cAAc,CACrB,CAAC;YAEF,mEAAmE;YACnE,iEAAiE;YACjE,8DAA8D;YAC9D,6DAA6D;YAC7D,IAAI,OAAO,KAAK,CAAC,EAAE,CAAC;gBAClB,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,gDAAgD,EAAE;oBAChE,MAAM,EAAE,GAAG,CAAC,EAAE;oBACd,QAAQ,EAAE,KAAK,CAAC,OAAO;oBACvB,OAAO,EAAE,KAAK,CAAC,MAAM;iBACtB,CAAC,CAAC;gBACH,MAAM,EAAE,CAAC,MAAM,CACb;oDAC0C,EAC1C,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAC7B,CAAC;gBACF,OAAO;YACT,CAAC;YAED,IAAI,KAAK,CAAC,OAAO,KAAK,UAAU,EAAE,CAAC;gBACjC,MAAM,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YACnC,CAAC;iBAAM,IAAI,KAAK,CAAC,OAAO,KAAK,UAAU,EAAE,CAAC;gBACxC,MAAM,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;YACnC,CAAC;iBAAM,CAAC;gBACN,MAAM,UAAU,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;YAClC,CAAC;YAED,MAAM,YAAY,CAAC,GAAG,EAAE,EAAE,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;YAEpC,MAAM,WAAW,GACf,KAAK,CAAC,OAAO,KAAK,UAAU;gBAC1B,CAAC,CAAC,GAAG,GAAG,CAAC,WAAW,oBAAoB;gBACxC,CAAC,CAAC,GAAG,GAAG,CAAC,WAAW,mBAAmB,CAAC;YAC5C,SAAS,CAAC;gBACR,QAAQ,EAAE,GAAG,CAAC,SAAS;gBACvB,MAAM,EAAE,WAAW;gBACnB,UAAU,EAAE,iBAAiB;gBAC7B,QAAQ,EAAE,GAAG,CAAC,EAAE;gBAChB,8DAA8D;gBAC9D,QAAQ,EAAE;oBACR,GAAG,KAAK,CAAC,QAAQ;oBACjB,IAAI,EAAE,GAAG,CAAC,IAAI;oBACd,OAAO,EAAE,KAAK,CAAC,OAAO;oBACtB,sBAAsB,EAAE,KAAK,CAAC,uBAAuB;iBACtD;aACF,CAAC,CAAC;YAEH,MAAM,EAAE,CAAC,MAAM,CACb;kDAC0C,EAC1C,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAC7B,CAAC;QACJ,CAAC,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,UAAU,EAAE,CAAC;QACpB,oEAAoE;QACpE,kEAAkE;QAClE,sEAAsE;QACtE,qEAAqE;QACrE,wCAAwC;QACxC,MAAM,MAAM,GACV,UAAU,YAAY,KAAK,CAAC,CAAC,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QACxE,MAAM,YAAY,GAAG,GAAG,CAAC,YAAY,IAAI,CAAC,CAAC;QAC3C,MAAM,SAAS,GAAG,YAAY,GAAG,CAAC,IAAI,GAAG,CAAC,kBAAkB,CAAC;QAC7D,IAAI,SAAS,EAAE,CAAC;YACd,qEAAqE;YACrE,MAAM,UAAU,CAAC,GAAG,EAAE,EAAE,EAAE,GAAG,CAAC,EAAE,EAAE,MAAM,CAAC,CAAC;YAC1C,MAAM,YAAY,CAAC,GAAG,EAAE,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;YACpD,SAAS,CAAC;gBACR,QAAQ,EAAE,GAAG,CAAC,SAAS;gBACvB,MAAM,EAAE,GAAG,GAAG,CAAC,WAAW,4BAA4B;gBACtD,UAAU,EAAE,iBAAiB;gBAC7B,QAAQ,EAAE,GAAG,CAAC,EAAE;gBAChB,QAAQ,EAAE,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,QAAQ,EAAE,YAAY,GAAG,CAAC,EAAE;aACxE,CAAC,CAAC;YACH,GAAG,CAAC;gBACF,IAAI,EAAE,iCAAiC;gBACvC,MAAM,EAAE,cAAc;gBACtB,MAAM,EAAE;oBACN,OAAO,EAAE,GAAG,CAAC,WAAW;oBACxB,IAAI,EAAE,GAAG,CAAC,IAAI;oBACd,QAAQ,EAAE,KAAK,CAAC,OAAO;iBACxB;aACF,CAAC,CAAC;YACH,OAAO,CAAC,+DAA+D;QACzE,CAAC;QACD,qEAAqE;QACrE,uEAAuE;QACvE,MAAM,UAAU,CAAC;IACnB,CAAC;IAED,OAAO,CAAC;QACN,IAAI,EAAE,qCAAqC;QAC3C,MAAM,EAAE,cAAc;QACtB,MAAM,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,WAAW,EAAE,IAAI,EAAE,GAAG,CAAC,IAAI,EAAE;QACpD,KAAK,EAAE,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,OAAO,CAAC,GAAG,IAAI;KACrC,CAAC,CAAC;IACH,IAAI,KAAK,CAAC,WAAW,EAAE,CAAC;QACtB,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC,OAAO,EAAE,CAAC,GAAG,IAAI,CAAC;QACxE,OAAO,CAAC;YACN,IAAI,EAAE,+BAA+B;YACrC,MAAM,EAAE,cAAc;YACtB,MAAM,EAAE,EAAE,OAAO,EAAE,GAAG,CAAC,WAAW,EAAE;YACpC,KAAK,EAAE,GAAG;SACX,CAAC,CAAC;IACL,CAAC;AACH,CAAC;AAED,KAAK,UAAU,iBAAiB,CAC9B,GAA2B,EAC3B,OAAe,EACf,KAAa;IAEb,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,MAAM,CAAC,MAAM,CAClC,0EAA0E,EAC1E,CAAC,OAAO,EAAE,KAAK,CAAC,CACjB,CAAC;IACF,OAAO,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;AAChD,CAAC;AAED,KAAK,UAAU,YAAY,CACzB,GAA2B,EAC3B,OAAe,EACf,KAAa;IAEb,MAAM,GAAG,CAAC,MAAM,CAAC,MAAM,CACrB;8CAC0C,EAC1C,CAAC,OAAO,EAAE,KAAK,CAAC,CACjB,CAAC;AACJ,CAAC;AAED,yDAAyD;AACzD,MAAM,UAAU,sBAAsB;IACpC,OAAO,GAAG,IAAI,CAAC;AACjB,CAAC"}

package/dist/deferred-actions.d.ts ADDED Viewed

@@ -0,0 +1,34 @@
+import type { DeferredActionRow, ResolvedApprovalConfig, SqlExecutor, SqlTxExecutor } from "./types";
+export interface InsertDeferredActionInput {
+    tenantId: string;
+    kind: string;
+    requesterMembershipId: string;
+    deferredActionPayload: Record<string, unknown>;
+    idempotencyKey: string;
+    metadata: Record<string, unknown>;
+    auditCorrelationId: string | null;
+}
+/** Insert a fresh `pending` deferred-action row. Returns the inserted row.
+ *  Used by `requestApproval` step [5]. */
+export declare function insertDeferredAction(cfg: ResolvedApprovalConfig, tx: SqlTxExecutor, input: InsertDeferredActionInput): Promise<DeferredActionRow>;
+/** Update the row's `task_id` after task-tracking returns. */
+export declare function setTaskId(cfg: ResolvedApprovalConfig, tx: SqlTxExecutor, rowId: string, taskId: string): Promise<void>;
+/** Look up a deferred-action row by task_id. Returns null if not found. */
+export declare function findByTaskId(cfg: ResolvedApprovalConfig, pg: SqlExecutor, taskId: string): Promise<DeferredActionRow | null>;
+/** Look up a deferred-action row by id. */
+export declare function findById(cfg: ResolvedApprovalConfig, pg: SqlExecutor, id: string): Promise<DeferredActionRow | null>;
+/** Atomic transition to `approved` | `rejected` | `expired` with decision
+ *  metadata. Used by the completion-event consumer.
+ *
+ *  Returns the number of rows updated. The caller short-circuits when 0,
+ *  which happens if a duplicate completion event with a different event_id
+ *  but the same task_id is delivered — the first event already moved the
+ *  row past `pending`, and the handler must NOT re-fire. (Per
+ *  consumed_events dedupe + this WHERE guard, the handler runs exactly
+ *  once even under producer-side double-publish.) */
+export declare function applyDecision(cfg: ResolvedApprovalConfig, tx: SqlTxExecutor, rowId: string, newStatus: "approved" | "rejected" | "expired", approverMembershipId: string | null, approverNote: string | null): Promise<number>;
+/** Final transition to `executed` (handler ran clean). */
+export declare function markExecuted(cfg: ResolvedApprovalConfig, tx: SqlTxExecutor, rowId: string): Promise<void>;
+/** Final transition to `failed` (handler threw post-retries). */
+export declare function markFailed(cfg: ResolvedApprovalConfig, tx: SqlTxExecutor, rowId: string, reason: string): Promise<void>;
+//# sourceMappingURL=deferred-actions.d.ts.map

package/dist/deferred-actions.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"deferred-actions.d.ts","sourceRoot":"","sources":["../src/deferred-actions.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EACV,iBAAiB,EACjB,sBAAsB,EACtB,WAAW,EACX,aAAa,EACd,MAAM,SAAS,CAAC;AAMjB,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,qBAAqB,EAAE,MAAM,CAAC;IAC9B,qBAAqB,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC/C,cAAc,EAAE,MAAM,CAAC;IACvB,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,kBAAkB,EAAE,MAAM,GAAG,IAAI,CAAC;CACnC;AAED;0CAC0C;AAC1C,wBAAsB,oBAAoB,CACxC,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,aAAa,EACjB,KAAK,EAAE,yBAAyB,GAC/B,OAAO,CAAC,iBAAiB,CAAC,CAmB5B;AAED,8DAA8D;AAC9D,wBAAsB,SAAS,CAC7B,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,aAAa,EACjB,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,IAAI,CAAC,CAMf;AAED,2EAA2E;AAC3E,wBAAsB,YAAY,CAChC,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,WAAW,EACf,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAQnC;AAED,2CAA2C;AAC3C,wBAAsB,QAAQ,CAC5B,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,WAAW,EACf,EAAE,EAAE,MAAM,GACT,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAOnC;AAED;;;;;;;;qDAQqD;AACrD,wBAAsB,aAAa,CACjC,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,aAAa,EACjB,KAAK,EAAE,MAAM,EACb,SAAS,EAAE,UAAU,GAAG,UAAU,GAAG,SAAS,EAC9C,oBAAoB,EAAE,MAAM,GAAG,IAAI,EACnC,YAAY,EAAE,MAAM,GAAG,IAAI,GAC1B,OAAO,CAAC,MAAM,CAAC,CAiBjB;AAED,0DAA0D;AAC1D,wBAAsB,YAAY,CAChC,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,aAAa,EACjB,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,IAAI,CAAC,CAMf;AAED,iEAAiE;AACjE,wBAAsB,UAAU,CAC9B,GAAG,EAAE,sBAAsB,EAC3B,EAAE,EAAE,aAAa,EACjB,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,IAAI,CAAC,CAMf"}

package/dist/deferred-actions.js ADDED Viewed

@@ -0,0 +1,126 @@
+// DB CRUD for `<service>_deferred_actions` per spec § 5.6.
+//
+// All queries go through the postgres.js handle (raw mode) OR the db-rls
+// `withSystemContext` wrapper (RLS-aware mode). The library defers tenant-
+// scoping to db-rls when wired; in raw mode, callers must ensure tenant
+// isolation themselves (only acceptable for platform-tenant scope per
+// 08-rls-doctrine § 4).
+function tableName(serviceName) {
+    return `${serviceName}_deferred_actions`;
+}
+/** Insert a fresh `pending` deferred-action row. Returns the inserted row.
+ *  Used by `requestApproval` step [5]. */
+export async function insertDeferredAction(cfg, tx, input) {
+    const tbl = tableName(cfg.serviceName);
+    const rows = await tx.unsafe(`INSERT INTO ${tbl}
+       (tenant_id, kind, requester_membership_id, deferred_action_payload,
+        status, idempotency_key, metadata, audit_correlation_id)
+     VALUES ($1, $2, $3, $4, 'pending', $5, $6, $7)
+     RETURNING *`, [
+        input.tenantId,
+        input.kind,
+        input.requesterMembershipId,
+        JSON.stringify(input.deferredActionPayload),
+        input.idempotencyKey,
+        JSON.stringify(input.metadata),
+        input.auditCorrelationId,
+    ]);
+    return rowFromSql(rows[0]);
+}
+/** Update the row's `task_id` after task-tracking returns. */
+export async function setTaskId(cfg, tx, rowId, taskId) {
+    const tbl = tableName(cfg.serviceName);
+    await tx.unsafe(`UPDATE ${tbl} SET task_id = $1 WHERE id = $2`, [
+        taskId,
+        rowId,
+    ]);
+}
+/** Look up a deferred-action row by task_id. Returns null if not found. */
+export async function findByTaskId(cfg, pg, taskId) {
+    const tbl = tableName(cfg.serviceName);
+    const rows = await pg.unsafe(`SELECT * FROM ${tbl} WHERE task_id = $1 LIMIT 1`, [taskId]);
+    if (!Array.isArray(rows) || rows.length === 0)
+        return null;
+    return rowFromSql(rows[0]);
+}
+/** Look up a deferred-action row by id. */
+export async function findById(cfg, pg, id) {
+    const tbl = tableName(cfg.serviceName);
+    const rows = await pg.unsafe(`SELECT * FROM ${tbl} WHERE id = $1 LIMIT 1`, [
+        id,
+    ]);
+    if (!Array.isArray(rows) || rows.length === 0)
+        return null;
+    return rowFromSql(rows[0]);
+}
+/** Atomic transition to `approved` | `rejected` | `expired` with decision
+ *  metadata. Used by the completion-event consumer.
+ *
+ *  Returns the number of rows updated. The caller short-circuits when 0,
+ *  which happens if a duplicate completion event with a different event_id
+ *  but the same task_id is delivered — the first event already moved the
+ *  row past `pending`, and the handler must NOT re-fire. (Per
+ *  consumed_events dedupe + this WHERE guard, the handler runs exactly
+ *  once even under producer-side double-publish.) */
+export async function applyDecision(cfg, tx, rowId, newStatus, approverMembershipId, approverNote) {
+    const tbl = tableName(cfg.serviceName);
+    const result = await tx.unsafe(`UPDATE ${tbl}
+        SET status = $1, approver_membership_id = $2, approver_note = $3, decided_at = now()
+      WHERE id = $4 AND status = 'pending'`, [newStatus, approverMembershipId, approverNote, rowId]);
+    // postgres.js returns an array-shaped result with a `.count` property
+    // for non-returning UPDATEs.
+    const count = typeof result.count === "number"
+        ? result.count
+        : Array.isArray(result)
+            ? result.length
+            : 0;
+    return count;
+}
+/** Final transition to `executed` (handler ran clean). */
+export async function markExecuted(cfg, tx, rowId) {
+    const tbl = tableName(cfg.serviceName);
+    await tx.unsafe(`UPDATE ${tbl} SET status = 'executed', executed_at = now() WHERE id = $1`, [rowId]);
+}
+/** Final transition to `failed` (handler threw post-retries). */
+export async function markFailed(cfg, tx, rowId, reason) {
+    const tbl = tableName(cfg.serviceName);
+    await tx.unsafe(`UPDATE ${tbl} SET status = 'failed', failed_reason = $1, executed_at = now() WHERE id = $2`, [reason, rowId]);
+}
+function rowFromSql(r) {
+    return {
+        id: String(r.id),
+        tenant_id: String(r.tenant_id),
+        kind: String(r.kind),
+        requester_membership_id: String(r.requester_membership_id),
+        deferred_action_payload: parseJsonb(r.deferred_action_payload),
+        status: r.status,
+        task_id: r.task_id == null ? null : String(r.task_id),
+        approver_membership_id: r.approver_membership_id == null
+            ? null
+            : String(r.approver_membership_id),
+        approver_note: r.approver_note == null ? null : String(r.approver_note),
+        requested_at: String(r.requested_at ?? ""),
+        decided_at: r.decided_at == null ? null : String(r.decided_at),
+        executed_at: r.executed_at == null ? null : String(r.executed_at),
+        failed_reason: r.failed_reason == null ? null : String(r.failed_reason),
+        idempotency_key: String(r.idempotency_key),
+        audit_correlation_id: r.audit_correlation_id == null ? null : String(r.audit_correlation_id),
+        metadata: parseJsonb(r.metadata) ?? {},
+    };
+}
+function parseJsonb(v) {
+    if (v == null)
+        return {};
+    if (typeof v === "string") {
+        try {
+            return JSON.parse(v);
+        }
+        catch {
+            return {};
+        }
+    }
+    if (typeof v === "object")
+        return v;
+    return {};
+}
+//# sourceMappingURL=deferred-actions.js.map

package/dist/deferred-actions.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"deferred-actions.js","sourceRoot":"","sources":["../src/deferred-actions.ts"],"names":[],"mappings":"AAAA,2DAA2D;AAC3D,EAAE;AACF,yEAAyE;AACzE,2EAA2E;AAC3E,wEAAwE;AACxE,sEAAsE;AACtE,wBAAwB;AASxB,SAAS,SAAS,CAAC,WAAmB;IACpC,OAAO,GAAG,WAAW,mBAAmB,CAAC;AAC3C,CAAC;AAYD;0CAC0C;AAC1C,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,GAA2B,EAC3B,EAAiB,EACjB,KAAgC;IAEhC,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,MAAM,CAC1B,eAAe,GAAG;;;;iBAIL,EACb;QACE,KAAK,CAAC,QAAQ;QACd,KAAK,CAAC,IAAI;QACV,KAAK,CAAC,qBAAqB;QAC3B,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,qBAAqB,CAAC;QAC3C,KAAK,CAAC,cAAc;QACpB,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,QAAQ,CAAC;QAC9B,KAAK,CAAC,kBAAkB;KACzB,CACF,CAAC;IACF,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,CAA4B,CAAC,CAAC;AACxD,CAAC;AAED,8DAA8D;AAC9D,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,GAA2B,EAC3B,EAAiB,EACjB,KAAa,EACb,MAAc;IAEd,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,EAAE,CAAC,MAAM,CAAC,UAAU,GAAG,iCAAiC,EAAE;QAC9D,MAAM;QACN,KAAK;KACN,CAAC,CAAC;AACL,CAAC;AAED,2EAA2E;AAC3E,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,GAA2B,EAC3B,EAAe,EACf,MAAc;IAEd,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,MAAM,CAC1B,iBAAiB,GAAG,6BAA6B,EACjD,CAAC,MAAM,CAAC,CACT,CAAC;IACF,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC3D,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,CAA4B,CAAC,CAAC;AACxD,CAAC;AAED,2CAA2C;AAC3C,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,GAA2B,EAC3B,EAAe,EACf,EAAU;IAEV,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,MAAM,CAAC,iBAAiB,GAAG,wBAAwB,EAAE;QACzE,EAAE;KACH,CAAC,CAAC;IACH,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC3D,OAAO,UAAU,CAAC,IAAI,CAAC,CAAC,CAA4B,CAAC,CAAC;AACxD,CAAC;AAED;;;;;;;;qDAQqD;AACrD,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,GAA2B,EAC3B,EAAiB,EACjB,KAAa,EACb,SAA8C,EAC9C,oBAAmC,EACnC,YAA2B;IAE3B,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,MAAM,GAAG,MAAM,EAAE,CAAC,MAAM,CAC5B,UAAU,GAAG;;2CAE0B,EACvC,CAAC,SAAS,EAAE,oBAAoB,EAAE,YAAY,EAAE,KAAK,CAAC,CACvD,CAAC;IACF,sEAAsE;IACtE,6BAA6B;IAC7B,MAAM,KAAK,GACT,OAAQ,MAA6B,CAAC,KAAK,KAAK,QAAQ;QACtD,CAAC,CAAE,MAA4B,CAAC,KAAK;QACrC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC;YACrB,CAAC,CAAC,MAAM,CAAC,MAAM;YACf,CAAC,CAAC,CAAC,CAAC;IACV,OAAO,KAAK,CAAC;AACf,CAAC;AAED,0DAA0D;AAC1D,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,GAA2B,EAC3B,EAAiB,EACjB,KAAa;IAEb,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,EAAE,CAAC,MAAM,CACb,UAAU,GAAG,6DAA6D,EAC1E,CAAC,KAAK,CAAC,CACR,CAAC;AACJ,CAAC;AAED,iEAAiE;AACjE,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,GAA2B,EAC3B,EAAiB,EACjB,KAAa,EACb,MAAc;IAEd,MAAM,GAAG,GAAG,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACvC,MAAM,EAAE,CAAC,MAAM,CACb,UAAU,GAAG,+EAA+E,EAC5F,CAAC,MAAM,EAAE,KAAK,CAAC,CAChB,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,CAA0B;IAC5C,OAAO;QACL,EAAE,EAAE,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC;QAChB,SAAS,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;QAC9B,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC;QACpB,uBAAuB,EAAE,MAAM,CAAC,CAAC,CAAC,uBAAuB,CAAC;QAC1D,uBAAuB,EAAE,UAAU,CAAC,CAAC,CAAC,uBAAuB,CAAC;QAC9D,MAAM,EAAE,CAAC,CAAC,MAAqC;QAC/C,OAAO,EAAE,CAAC,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC;QACrD,sBAAsB,EACpB,CAAC,CAAC,sBAAsB,IAAI,IAAI;YAC9B,CAAC,CAAC,IAAI;YACN,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,sBAAsB,CAAC;QACtC,aAAa,EAAE,CAAC,CAAC,aAAa,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC;QACvE,YAAY,EAAE,MAAM,CAAC,CAAC,CAAC,YAAY,IAAI,EAAE,CAAC;QAC1C,UAAU,EAAE,CAAC,CAAC,UAAU,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC;QAC9D,WAAW,EAAE,CAAC,CAAC,WAAW,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,WAAW,CAAC;QACjE,aAAa,EAAE,CAAC,CAAC,aAAa,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,aAAa,CAAC;QACvE,eAAe,EAAE,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC;QAC1C,oBAAoB,EAClB,CAAC,CAAC,oBAAoB,IAAI,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,oBAAoB,CAAC;QACxE,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE;KACvC,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,CAAU;IAC5B,IAAI,CAAC,IAAI,IAAI;QAAE,OAAO,EAAE,CAAC;IACzB,IAAI,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,CAA4B,CAAC;QAClD,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IACD,IAAI,OAAO,CAAC,KAAK,QAAQ;QAAE,OAAO,CAA4B,CAAC;IAC/D,OAAO,EAAE,CAAC;AACZ,CAAC"}

package/dist/errors.d.ts ADDED Viewed

@@ -0,0 +1,51 @@
+export declare class ApprovalError extends Error {
+    readonly name: string;
+}
+export declare class ApprovalNotInitialized extends ApprovalError {
+    readonly name = "ApprovalNotInitialized";
+    constructor();
+}
+export declare class UnknownApprovalKind extends ApprovalError {
+    readonly name = "UnknownApprovalKind";
+    constructor(kind: string, registered: readonly string[]);
+}
+export declare class HandlerForUnregisteredKind extends ApprovalError {
+    readonly name = "HandlerForUnregisteredKind";
+    constructor(kind: string, registered: readonly string[]);
+}
+export declare class HandlerNotRegistered extends ApprovalError {
+    readonly name = "HandlerNotRegistered";
+    constructor(kind: string);
+}
+export declare class IdempotencyKeyRequired extends ApprovalError {
+    readonly name = "IdempotencyKeyRequired";
+    constructor();
+}
+export declare class ReservedServiceNameViolation extends ApprovalError {
+    readonly name = "ReservedServiceNameViolation";
+    constructor(serviceName: string, reserved: readonly string[]);
+}
+export declare class InvalidApprovalSegment extends ApprovalError {
+    readonly which: "resource" | "verb";
+    readonly value: string;
+    readonly name = "InvalidApprovalSegment";
+    constructor(which: "resource" | "verb", value: string, msg: string);
+}
+export declare class ApproverRoleNotInCatalog extends ApprovalError {
+    readonly name = "ApproverRoleNotInCatalog";
+    constructor(approverRole: string, kindName: string, knownRoles: readonly string[]);
+}
+export declare class TaskCreationFailed extends ApprovalError {
+    readonly cause: unknown;
+    readonly name = "TaskCreationFailed";
+    constructor(cause: unknown, msg: string);
+}
+export declare class DeferredActionNotFound extends ApprovalError {
+    readonly name = "DeferredActionNotFound";
+    constructor(taskId: string);
+}
+export declare class TenantPolicyKindUnknown extends ApprovalError {
+    readonly name = "TenantPolicyKindUnknown";
+    constructor(kind: string);
+}
+//# sourceMappingURL=errors.d.ts.map

package/dist/errors.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"errors.d.ts","sourceRoot":"","sources":["../src/errors.ts"],"names":[],"mappings":"AAMA,qBAAa,aAAc,SAAQ,KAAK;IACtC,SAAkB,IAAI,EAAE,MAAM,CAAmB;CAClD;AAED,qBAAa,sBAAuB,SAAQ,aAAa;IACvD,SAAkB,IAAI,4BAA4B;;CAOnD;AAED,qBAAa,mBAAoB,SAAQ,aAAa;IACpD,SAAkB,IAAI,yBAAyB;gBACnC,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,MAAM,EAAE;CAKxD;AAED,qBAAa,0BAA2B,SAAQ,aAAa;IAC3D,SAAkB,IAAI,gCAAgC;gBAC1C,IAAI,EAAE,MAAM,EAAE,UAAU,EAAE,SAAS,MAAM,EAAE;CAKxD;AAED,qBAAa,oBAAqB,SAAQ,aAAa;IACrD,SAAkB,IAAI,0BAA0B;gBACpC,IAAI,EAAE,MAAM;CAKzB;AAED,qBAAa,sBAAuB,SAAQ,aAAa;IACvD,SAAkB,IAAI,4BAA4B;;CAMnD;AAED,qBAAa,4BAA6B,SAAQ,aAAa;IAC7D,SAAkB,IAAI,kCAAkC;gBAC5C,WAAW,EAAE,MAAM,EAAE,QAAQ,EAAE,SAAS,MAAM,EAAE;CAK7D;AAED,qBAAa,sBAAuB,SAAQ,aAAa;aAGrC,KAAK,EAAE,UAAU,GAAG,MAAM;aAC1B,KAAK,EAAE,MAAM;IAH/B,SAAkB,IAAI,4BAA4B;gBAEhC,KAAK,EAAE,UAAU,GAAG,MAAM,EAC1B,KAAK,EAAE,MAAM,EAC7B,GAAG,EAAE,MAAM;CAId;AAED,qBAAa,wBAAyB,SAAQ,aAAa;IACzD,SAAkB,IAAI,8BAA8B;gBAElD,YAAY,EAAE,MAAM,EACpB,QAAQ,EAAE,MAAM,EAChB,UAAU,EAAE,SAAS,MAAM,EAAE;CAMhC;AAED,qBAAa,kBAAmB,SAAQ,aAAa;aAGjC,KAAK,EAAE,OAAO;IAFhC,SAAkB,IAAI,wBAAwB;gBAE5B,KAAK,EAAE,OAAO,EAC9B,GAAG,EAAE,MAAM;CAId;AAED,qBAAa,sBAAuB,SAAQ,aAAa;IACvD,SAAkB,IAAI,4BAA4B;gBACtC,MAAM,EAAE,MAAM;CAG3B;AAED,qBAAa,uBAAwB,SAAQ,aAAa;IACxD,SAAkB,IAAI,6BAA6B;gBACvC,IAAI,EAAE,MAAM;CAKzB"}