@nsxbet/admin-sdk 0.1.0 → 0.2.1

package/README.md

@@ -8,13 +8,43 @@ SDK for building admin modules for the NSX Admin platform.
 bun add @nsxbet/admin-sdk @nsxbet/admin-ui
 ```
 
-**Peer dependencies** (install these too):
+**Peer dependencies:**
 
 ```bash
-bun add react react-dom react-router-dom i18next react-i18next
-bun add -D @vitejs/plugin-react vite tailwindcss postcss autoprefixer typescript
+# Shared with shell - use exact versions to avoid conflicts
+bun add react@18.2.0 react-dom@18.2.0 react-router-dom@6.20.1 i18next@25.0.0 react-i18next@16.0.0
+
+# Styling - use exact versions for design system consistency
+bun add -D tailwindcss@3.4.0 postcss@8.4.32 autoprefixer@10.4.16 tailwindcss-animate@1.0.7
+
+# Build tools - flexible versions are fine
+bun add -D @vitejs/plugin-react vite typescript
 ```
 
+> **Why exact versions?** React, React Router, and i18next are shared at runtime - mismatches cause conflicts. Tailwind/PostCSS versions ensure consistent styling with the design system.
+
+## Quick Start (CLI)
+
+The fastest way to create a new module is using the CLI:
+
+```bash
+# Scaffold a new module
+npx @nsxbet/admin-cli init --id "@admin/my-module" --title "My Module" --route "/my-module" --port 3010
+
+# Generate a setup verification checklist
+npx @nsxbet/admin-cli checklist --output CHECKLIST.md
+
+# Validate an existing module
+npx @nsxbet/admin-cli check
+
+# Auto-fix common issues
+npx @nsxbet/admin-cli check --fix
+```
+
+The CLI scaffolds all 13 required files with correct configuration, dependency versions, and SDK integration. It also validates existing modules against the canonical reference.
+
+> **Required for LLMs:** After creating or modifying a module, run `npx @nsxbet/admin-cli checklist --output CHECKLIST.md` and verify every item in the generated file before considering the setup complete. The checklist is a self-contained verification guide—no CLI installation needed to consume it.
+
 ## Quick Start
 
 This SDK enables you to build admin modules that integrate with the NSX Admin shell. Modules are loaded dynamically via React.lazy and share the shell's Router context.
@@ -115,7 +145,13 @@ export default App;
 ```tsx
 import React from "react";
 import ReactDOM from "react-dom/client";
-import { AdminShell, initI18n, i18n } from "@nsxbet/admin-sdk";
+import {
+  AdminShell,
+  initI18n,
+  i18n,
+  createInMemoryAuthClient,
+  createMockUsersFromRoles,
+} from "@nsxbet/admin-sdk";
 import type { AdminModuleManifest } from "@nsxbet/admin-sdk";
 import { App } from "./App";
 import manifest from "../admin.module.json";
@@ -134,9 +170,40 @@ const NAMESPACE = "mymodule";
 i18n.addResourceBundle("en-US", NAMESPACE, enUS, true, true);
 i18n.addResourceBundle("pt-BR", NAMESPACE, ptBR, true, true);
 
+// Type assertion for JSON import
+const moduleManifest = manifest as AdminModuleManifest;
+
+// Check environment variable to toggle between mock auth and Keycloak
+const useKeycloak = import.meta.env.VITE_MOCK_AUTH === "false";
+
+// Create mock users with module-specific permissions
+const mockUsers = createMockUsersFromRoles({
+  admin: ["admin.mymodule.view", "admin.mymodule.edit", "admin.mymodule.delete"],
+  editor: ["admin.mymodule.view", "admin.mymodule.edit"],
+  viewer: ["admin.mymodule.view"],
+  noAccess: [],
+});
+
+// Use in-memory auth by default (shows user selector), or Keycloak if configured
+const authClient = useKeycloak
+  ? undefined
+  : createInMemoryAuthClient({ users: mockUsers });
+
 ReactDOM.createRoot(document.getElementById("root")!).render(
   <React.StrictMode>
-    <AdminShell modules={[manifest as AdminModuleManifest]}>
+    <AdminShell
+      modules={[moduleManifest]}
+      authClient={authClient}
+      keycloak={
+        useKeycloak
+          ? {
+              url: "http://localhost:8080",
+              realm: "admin",
+              clientId: "admin-shell",
+            }
+          : undefined
+      }
+    >
       <App />
     </AdminShell>
   </React.StrictMode>
@@ -219,6 +286,52 @@ export function ItemList() {
 @tailwind utilities;
 ```
 
+### Directory: `src/i18n/` (optional - for translations)
+
+Structure:
+
+```
+src/i18n/
+  locales/
+    en-US.json    # English (required)
+    pt-BR.json    # Portuguese
+```
+
+Example `src/i18n/locales/en-US.json`:
+
+```json
+{
+  "module": {
+    "title": "My Module",
+    "description": "Description of my module"
+  },
+  "list": {
+    "title": "All Items",
+    "noItems": "No items found.",
+    "create": "Create Item"
+  },
+  "form": {
+    "titleLabel": "Title",
+    "titlePlaceholder": "Enter title",
+    "cancel": "Cancel",
+    "submit": "Submit"
+  }
+}
+```
+
+Use translations in components:
+
+```tsx
+import { useI18n } from "@nsxbet/admin-sdk";
+
+function MyComponent() {
+  const { t } = useI18n();
+  
+  // Use with namespace prefix (set in standalone.tsx)
+  return <h1>{t("mymodule:list.title")}</h1>;
+}
+```
+
 ### File: `tailwind.config.js`
 
 Use `withAdminSdk` which automatically includes the UI preset and SDK/UI content paths:
@@ -247,25 +360,30 @@ export default withAdminSdk({
   "dependencies": {
     "@nsxbet/admin-sdk": "latest",
     "@nsxbet/admin-ui": "latest",
-    "react": "^18.2.0",
-    "react-dom": "^18.2.0",
-    "react-router-dom": "^6.20.0",
-    "i18next": "^25.0.0",
-    "react-i18next": "^16.0.0"
+    "react": "18.2.0",
+    "react-dom": "18.2.0",
+    "react-router-dom": "6.20.1",
+    "i18next": "25.0.0",
+    "react-i18next": "16.0.0"
   },
   "devDependencies": {
     "@types/react": "^18.2.0",
     "@types/react-dom": "^18.2.0",
     "@vitejs/plugin-react": "^4.2.0",
-    "autoprefixer": "^10.4.16",
-    "postcss": "^8.4.32",
-    "tailwindcss": "^3.4.0",
+    "autoprefixer": "10.4.16",
+    "postcss": "8.4.32",
+    "tailwindcss": "3.4.0",
+    "tailwindcss-animate": "1.0.7",
     "typescript": "^5.2.0",
     "vite": "^5.0.0"
   }
 }
 ```
 
+> **Note:** Exact versions for runtime deps (react, i18next) avoid conflicts with the shell. Exact versions for styling (tailwindcss, postcss) ensure design system consistency.
+
+> **Note:** The build script copies `admin.module.json` to `dist/` because the shell needs the manifest to register your module.
+
 ### File: `tsconfig.json`
 
 ```json
@@ -319,6 +437,66 @@ export default {
 };
 ```
 
+### File: `src/globals.d.ts`
+
+TypeScript declarations for environment variables and platform API:
+
+```typescript
+/// <reference types="vite/client" />
+
+declare global {
+  interface ImportMetaEnv {
+    readonly VITE_MOCK_AUTH?: string;
+  }
+
+  interface ImportMeta {
+    readonly env: ImportMetaEnv;
+  }
+
+  interface Window {
+    __ADMIN_PLATFORM_API__?: import("@nsxbet/admin-sdk").PlatformAPI;
+    __ENV__?: {
+      ENVIRONMENT: string;
+      KEYCLOAK_URL: string;
+      KEYCLOAK_REALM: string;
+      KEYCLOAK_CLIENT_ID: string;
+    };
+  }
+}
+
+export {};
+```
+
+### File: `tsconfig.node.json`
+
+Separate TypeScript config for Vite configuration file:
+
+```json
+{
+  "compilerOptions": {
+    "composite": true,
+    "skipLibCheck": true,
+    "module": "ESNext",
+    "moduleResolution": "bundler",
+    "allowSyntheticDefaultImports": true,
+    "strict": true
+  },
+  "include": ["vite.config.ts"]
+}
+```
+
+### File: `.env.local` (optional)
+
+Environment configuration for development:
+
+```bash
+# Use mock authentication with user selector (default: true)
+VITE_MOCK_AUTH=true
+
+# Set to "false" to use Keycloak authentication
+# VITE_MOCK_AUTH=false
+```
+
 ## Manifest Schema (`admin.module.json`)
 
 | Field | Type | Required | Description |
@@ -371,6 +549,11 @@ export default defineModuleConfig({
 });
 ```
 
+> **Important:** Each module must use a unique port. Standard assignments:
+> - Shell: 3000
+> - API: 4000
+> - Modules: 3002, 3003, 3004, etc.
+
 ### Options
 
 | Option | Type | Default | Description |
@@ -511,6 +694,126 @@ function MyComponent() {
 }
 ```
 
+## Custom Mock Users for Development
+
+During standalone development, the SDK uses an in-memory auth client with default mock users. You can customize these users to match your module's specific permission requirements.
+
+### Using `createMockUsersFromRoles()`
+
+The simplest way to create custom mock users is with the `createMockUsersFromRoles()` factory:
+
+```typescript
+import {
+  AdminShell,
+  createInMemoryAuthClient,
+  createMockUsersFromRoles,
+} from "@nsxbet/admin-sdk";
+
+// Define roles for your module
+const mockUsers = createMockUsersFromRoles({
+  admin: [
+    "admin.payments.view",
+    "admin.payments.edit",
+    "admin.payments.delete",
+  ],
+  editor: ["admin.payments.view", "admin.payments.edit"],
+  viewer: ["admin.payments.view"],
+  noAccess: [],
+});
+
+// Create auth client with custom users
+const authClient = createInMemoryAuthClient({ users: mockUsers });
+
+// Use in standalone.tsx
+ReactDOM.createRoot(document.getElementById("root")!).render(
+  <AdminShell authClient={authClient} modules={[manifest]}>
+    <App />
+  </AdminShell>
+);
+```
+
+This creates 4 standard user types with your custom roles:
+- **Admin User** - Full access (all roles in `admin` array)
+- **Editor User** - View/edit access (roles in `editor` array)
+- **Viewer User** - View-only access (roles in `viewer` array)
+- **No Access User** - No permissions (roles in `noAccess` array)
+
+### Using Custom Users Directly
+
+For more control, pass custom `MockUser` objects directly:
+
+```typescript
+import { createInMemoryAuthClient, type MockUser } from "@nsxbet/admin-sdk";
+
+const customUsers: MockUser[] = [
+  {
+    id: "super-admin",
+    email: "superadmin@example.com",
+    displayName: "Super Admin",
+    roles: ["*"], // Wildcard: all permissions
+  },
+  {
+    id: "payments-admin",
+    email: "payments@example.com",
+    displayName: "Payments Admin",
+    roles: ["admin.payments.view", "admin.payments.edit"],
+  },
+];
+
+const authClient = createInMemoryAuthClient({ users: customUsers });
+```
+
+### Options
+
+| Option | Type | Default | Description |
+|--------|------|---------|-------------|
+| `users` | MockUser[] | **required** | Mock users available for selection |
+| `storageKey` | string | `"@nsxbet/auth"` | localStorage key for persistence |
+
+## Keycloak Configuration (Production Auth)
+
+For production or when testing with real authentication, configure Keycloak:
+
+### Prerequisites
+
+1. Keycloak server running (default: `http://localhost:8080`)
+2. Realm named `admin` created
+3. Client named `admin-shell` configured with:
+   - Client Protocol: `openid-connect`
+   - Access Type: `public`
+   - Valid Redirect URIs: `http://localhost:3003/*`
+
+### Enable Keycloak in Development
+
+Set the environment variable in `.env.local`:
+
+```bash
+VITE_MOCK_AUTH=false
+```
+
+Or pass the `keycloak` prop directly without `authClient`:
+
+```tsx
+<AdminShell
+  modules={[manifest]}
+  keycloak={{
+    url: "http://localhost:8080",
+    realm: "admin",
+    clientId: "admin-shell",
+  }}
+>
+  <App />
+</AdminShell>
+```
+
+### Keycloak Configuration Options
+
+| Option | Type | Description |
+|--------|------|-------------|
+| `url` | string | Keycloak server URL |
+| `realm` | string | Realm name |
+| `clientId` | string | Client ID |
+
 ## DO NOT (Common Mistakes)
 
 ### ❌ DO NOT use MemoryRouter
@@ -614,6 +917,8 @@ import { useNavigate } from "react-router-dom"; // ✅
 
 ## Troubleshooting
 
+**First step:** Run `npx @nsxbet/admin-cli checklist` and verify all items. The checklist covers every setup requirement and often identifies misconfigurations quickly.
+
 ### "Failed to resolve module specifier 'react'"
 
 **Cause:** Module is bundling React instead of using shell's version.
@@ -643,7 +948,7 @@ define: {
 
 ### Styles not working
 
-**Checklist:**
+Run `npx @nsxbet/admin-cli checklist` to verify Tailwind/PostCSS configuration. Key items:
 1. ✅ `index.css` imports `@nsxbet/admin-ui/styles.css`
 2. ✅ `tailwind.config.js` uses `withAdminSdk` from `@nsxbet/admin-sdk/tailwind`
 3. ✅ `postcss.config.js` exists with tailwindcss plugin

package/dist/auth/client/in-memory.d.ts

@@ -5,21 +5,63 @@
  * Users can be selected from a predefined list or created custom.
  */
 import type { MockUser, InMemoryAuthClient } from './interface';
+/**
+ * Role configuration for creating mock users
+ */
+export interface MockUserRoles {
+    /** Roles for the admin user (full access) */
+    admin: string[];
+    /** Roles for the editor user (view/edit, no delete) */
+    editor: string[];
+    /** Roles for the viewer user (view only) */
+    viewer: string[];
+    /** Roles for the no-access user (typically empty) */
+    noAccess: string[];
+}
+/**
+ * Create mock users from a role configuration
+ *
+ * Generates the standard 4 user types (admin, editor, viewer, no-access)
+ * with custom roles. Use with `createInMemoryAuthClient({ users: ... })`.
+ *
+ * @example
+ * ```typescript
+ * const mockUsers = createMockUsersFromRoles({
+ *   admin: ['admin.payments.view', 'admin.payments.edit', 'admin.payments.delete'],
+ *   editor: ['admin.payments.view', 'admin.payments.edit'],
+ *   viewer: ['admin.payments.view'],
+ *   noAccess: [],
+ * });
+ *
+ * const authClient = createInMemoryAuthClient({ users: mockUsers });
+ * ```
+ */
+export declare function createMockUsersFromRoles(roles: MockUserRoles): MockUser[];
 /**
  * Options for creating an in-memory auth client
  */
 export interface InMemoryAuthClientOptions {
-    /** Custom mock users (merged with defaults) */
-    users?: MockUser[];
-    /** Replace default users instead of merging */
-    replaceDefaults?: boolean;
+    /** Mock users available for selection (required) */
+    users: MockUser[];
     /** localStorage key prefix (defaults to '@nsxbet/auth') */
     storageKey?: string;
 }
 /**
  * Create an in-memory auth client for development/testing
+ *
+ * @example
+ * ```typescript
+ * const mockUsers = createMockUsersFromRoles({
+ *   admin: ['admin.tasks.view', 'admin.tasks.edit', 'admin.tasks.delete'],
+ *   editor: ['admin.tasks.view', 'admin.tasks.edit'],
+ *   viewer: ['admin.tasks.view'],
+ *   noAccess: [],
+ * });
+ *
+ * const authClient = createInMemoryAuthClient({ users: mockUsers });
+ * ```
  */
-export declare function createInMemoryAuthClient(options?: InMemoryAuthClientOptions): InMemoryAuthClient;
+export declare function createInMemoryAuthClient(options: InMemoryAuthClientOptions): InMemoryAuthClient;
 /**
  * Clear in-memory auth storage (useful for tests)
  */

package/dist/auth/client/in-memory.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"in-memory.d.ts","sourceRoot":"","sources":["../../../src/auth/client/in-memory.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,QAAQ,EAAE,kBAAkB,EAAgC,MAAM,aAAa,CAAC;AAoD9F;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,+CAA+C;IAC/C,KAAK,CAAC,EAAE,QAAQ,EAAE,CAAC;IACnB,+CAA+C;IAC/C,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,2DAA2D;IAC3D,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAYD;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,OAAO,GAAE,yBAA8B,GAAG,kBAAkB,CAiNpG;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,UAAU,SAAsB,GAAG,IAAI,CAExE"}
+{"version":3,"file":"in-memory.d.ts","sourceRoot":"","sources":["../../../src/auth/client/in-memory.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,QAAQ,EAAE,kBAAkB,EAAgC,MAAM,aAAa,CAAC;AAE9F;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,6CAA6C;IAC7C,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,uDAAuD;IACvD,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,qDAAqD;IACrD,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAgB,wBAAwB,CAAC,KAAK,EAAE,aAAa,GAAG,QAAQ,EAAE,CA2BzE;AAED;;GAEG;AACH,MAAM,WAAW,yBAAyB;IACxC,oDAAoD;IACpD,KAAK,EAAE,QAAQ,EAAE,CAAC;IAClB,2DAA2D;IAC3D,UAAU,CAAC,EAAE,MAAM,CAAC;CACrB;AAYD;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,yBAAyB,GAAG,kBAAkB,CA6M/F;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,UAAU,SAAsB,GAAG,IAAI,CAExE"}

package/dist/auth/client/in-memory.js

@@ -5,62 +5,71 @@
  * Users can be selected from a predefined list or created custom.
  */
 /**
- * Default mock users
+ * Create mock users from a role configuration
+ *
+ * Generates the standard 4 user types (admin, editor, viewer, no-access)
+ * with custom roles. Use with `createInMemoryAuthClient({ users: ... })`.
+ *
+ * @example
+ * ```typescript
+ * const mockUsers = createMockUsersFromRoles({
+ *   admin: ['admin.payments.view', 'admin.payments.edit', 'admin.payments.delete'],
+ *   editor: ['admin.payments.view', 'admin.payments.edit'],
+ *   viewer: ['admin.payments.view'],
+ *   noAccess: [],
+ * });
+ *
+ * const authClient = createInMemoryAuthClient({ users: mockUsers });
+ * ```
  */
-const DEFAULT_MOCK_USERS = [
-    {
-        id: 'admin-user',
-        email: 'admin@example.com',
-        displayName: 'Admin User',
-        roles: [
-            'admin',
-            // Tasks - full access
-            'admin.tasks.view',
-            'admin.tasks.edit',
-            'admin.tasks.delete',
-            // Users - full access
-            'admin.users.view',
-            'admin.users.edit',
-            'admin.users.delete',
-        ],
-    },
-    {
-        id: 'editor-user',
-        email: 'editor@example.com',
-        displayName: 'Editor User',
-        roles: [
-            // Tasks - can create/edit, no delete
-            'admin.tasks.view',
-            'admin.tasks.edit',
-            // Users - view only
-            'admin.users.view',
-        ],
-    },
-    {
-        id: 'viewer-user',
-        email: 'viewer@example.com',
-        displayName: 'Viewer User',
-        roles: [
-            // View only - no edit or delete
-            'admin.tasks.view',
-            'admin.users.view',
-        ],
-    },
-    {
-        id: 'no-access-user',
-        email: 'noaccess@example.com',
-        displayName: 'No Access User',
-        roles: [],
-    },
-];
+export function createMockUsersFromRoles(roles) {
+    return [
+        {
+            id: 'admin-user',
+            email: 'admin@example.com',
+            displayName: 'Admin User',
+            roles: roles.admin,
+        },
+        {
+            id: 'editor-user',
+            email: 'editor@example.com',
+            displayName: 'Editor User',
+            roles: roles.editor,
+        },
+        {
+            id: 'viewer-user',
+            email: 'viewer@example.com',
+            displayName: 'Viewer User',
+            roles: roles.viewer,
+        },
+        {
+            id: 'no-access-user',
+            email: 'noaccess@example.com',
+            displayName: 'No Access User',
+            roles: roles.noAccess,
+        },
+    ];
+}
 const DEFAULT_STORAGE_KEY = '@nsxbet/auth';
 /**
  * Create an in-memory auth client for development/testing
+ *
+ * @example
+ * ```typescript
+ * const mockUsers = createMockUsersFromRoles({
+ *   admin: ['admin.tasks.view', 'admin.tasks.edit', 'admin.tasks.delete'],
+ *   editor: ['admin.tasks.view', 'admin.tasks.edit'],
+ *   viewer: ['admin.tasks.view'],
+ *   noAccess: [],
+ * });
+ *
+ * const authClient = createInMemoryAuthClient({ users: mockUsers });
+ * ```
  */
-export function createInMemoryAuthClient(options = {}) {
-    const { users: customUsers = [], replaceDefaults = false, storageKey = DEFAULT_STORAGE_KEY, } = options;
-    // Merge users
-    const predefinedUsers = replaceDefaults ? customUsers : [...DEFAULT_MOCK_USERS, ...customUsers];
+export function createInMemoryAuthClient(options) {
+    const { users, storageKey = DEFAULT_STORAGE_KEY } = options;
+    // Use provided users
+    const predefinedUsers = users;
     // State
     let selectedUser = null;
     const subscribers = new Set();

package/dist/auth/client/index.d.ts

@@ -2,6 +2,6 @@
  * Auth Client exports
  */
 export type { AuthClient, InMemoryAuthClient, MockUser, AuthState, AuthStateCallback, } from './interface';
-export { createInMemoryAuthClient, clearInMemoryAuth, type InMemoryAuthClientOptions, } from './in-memory';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, type InMemoryAuthClientOptions, type MockUserRoles, } from './in-memory';
 export { createKeycloakAuthClient, type KeycloakAuthClientOptions, } from './keycloak';
 //# sourceMappingURL=index.d.ts.map

package/dist/auth/client/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/auth/client/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,KAAK,yBAAyB,GAC/B,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,wBAAwB,EACxB,KAAK,yBAAyB,GAC/B,MAAM,YAAY,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/auth/client/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,wBAAwB,EACxB,KAAK,yBAAyB,EAC9B,KAAK,aAAa,GACnB,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,wBAAwB,EACxB,KAAK,yBAAyB,GAC/B,MAAM,YAAY,CAAC"}

package/dist/auth/client/index.js

@@ -2,6 +2,6 @@
  * Auth Client exports
  */
 // In-memory client
-export { createInMemoryAuthClient, clearInMemoryAuth, } from './in-memory';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, } from './in-memory';
 // Keycloak client
 export { createKeycloakAuthClient, } from './keycloak';

package/dist/auth/components/UserSelector.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"UserSelector.d.ts","sourceRoot":"","sources":["../../../src/auth/components/UserSelector.tsx"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EAAE,kBAAkB,EAAY,MAAM,qBAAqB,CAAC;AAExE,UAAU,iBAAiB;IACzB,gCAAgC;IAChC,UAAU,EAAE,kBAAkB,CAAC;IAC/B,qCAAqC;IACrC,cAAc,CAAC,EAAE,MAAM,IAAI,CAAC;CAC7B;AA2ND;;GAEG;AACH,wBAAgB,YAAY,CAAC,EAAE,UAAU,EAAE,cAAc,EAAE,EAAE,iBAAiB,2CAqF7E"}
+{"version":3,"file":"UserSelector.d.ts","sourceRoot":"","sources":["../../../src/auth/components/UserSelector.tsx"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EAAE,kBAAkB,EAAY,MAAM,qBAAqB,CAAC;AAExE,UAAU,iBAAiB;IACzB,gCAAgC;IAChC,UAAU,EAAE,kBAAkB,CAAC;IAC/B,qCAAqC;IACrC,cAAc,CAAC,EAAE,MAAM,IAAI,CAAC;CAC7B;AA4OD;;GAEG;AACH,wBAAgB,YAAY,CAAC,EAAE,UAAU,EAAE,cAAc,EAAE,EAAE,iBAAiB,2CAqF7E"}

package/dist/auth/components/UserSelector.js

@@ -12,13 +12,24 @@ import { Crown, Ban, Eye, User, Users, Sparkles, Wrench, Trash2, Plus, ChevronRi
  */
 function getUserIcon(roles) {
     const iconClass = "h-7 w-7";
-    if (roles.includes('admin') || roles.includes('*')) {
-        return _jsx(Crown, { className: `${iconClass} text-amber-500` });
-    }
+    // No roles = no access
     if (roles.length === 0) {
         return _jsx(Ban, { className: `${iconClass} text-destructive` });
     }
-    if (roles.some((r) => r.includes('view') && !r.includes('edit'))) {
+    // Wildcard or 'admin' role = full admin
+    if (roles.includes('*') || roles.includes('admin')) {
+        return _jsx(Crown, { className: `${iconClass} text-amber-500` });
+    }
+    // Has delete permission = admin level
+    if (roles.some((r) => r.includes('.delete'))) {
+        return _jsx(Crown, { className: `${iconClass} text-amber-500` });
+    }
+    // Has edit permission = editor level
+    if (roles.some((r) => r.includes('.edit'))) {
+        return _jsx(User, { className: `${iconClass} text-success` });
+    }
+    // View only
+    if (roles.some((r) => r.includes('.view'))) {
         return _jsx(Eye, { className: `${iconClass} text-info` });
     }
     return _jsx(User, { className: `${iconClass} text-muted-foreground` });

package/dist/auth/index.d.ts

@@ -2,6 +2,6 @@
  * Authentication module exports
  */
 export type { AuthClient, InMemoryAuthClient, MockUser, AuthState, AuthStateCallback, } from './client';
-export { createInMemoryAuthClient, clearInMemoryAuth, createKeycloakAuthClient, type InMemoryAuthClientOptions, type KeycloakAuthClientOptions, } from './client';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, createKeycloakAuthClient, type InMemoryAuthClientOptions, type MockUserRoles, type KeycloakAuthClientOptions, } from './client';
 export { UserSelector } from './components';
 //# sourceMappingURL=index.d.ts.map

package/dist/auth/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,UAAU,CAAC;AAGlB,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,wBAAwB,EACxB,KAAK,yBAAyB,EAC9B,KAAK,yBAAyB,GAC/B,MAAM,UAAU,CAAC;AAGlB,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/auth/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAGH,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,SAAS,EACT,iBAAiB,GAClB,MAAM,UAAU,CAAC;AAGlB,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,wBAAwB,EACxB,wBAAwB,EACxB,KAAK,yBAAyB,EAC9B,KAAK,aAAa,EAClB,KAAK,yBAAyB,GAC/B,MAAM,UAAU,CAAC;AAGlB,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC"}

package/dist/auth/index.js

@@ -2,6 +2,6 @@
  * Authentication module exports
  */
 // Auth client factories
-export { createInMemoryAuthClient, clearInMemoryAuth, createKeycloakAuthClient, } from './client';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, createKeycloakAuthClient, } from './client';
 // Auth components
 export { UserSelector } from './components';

package/dist/index.d.ts

@@ -10,8 +10,8 @@ export { usePlatformAPI } from './hooks/usePlatformAPI';
 export { useFetch } from './hooks/useFetch';
 export { useTelemetry } from './hooks/useTelemetry';
 export { useI18n } from './hooks/useI18n';
-export { createInMemoryAuthClient, clearInMemoryAuth, createKeycloakAuthClient, UserSelector, } from './auth';
-export type { AuthClient, InMemoryAuthClient, MockUser, AuthState, AuthStateCallback, InMemoryAuthClientOptions, KeycloakAuthClientOptions, } from './auth';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, createKeycloakAuthClient, UserSelector, } from './auth';
+export type { AuthClient, InMemoryAuthClient, MockUser, MockUserRoles, AuthState, AuthStateCallback, InMemoryAuthClientOptions, KeycloakAuthClientOptions, } from './auth';
 export type { PlatformAPI, Breadcrumb, User } from './types/platform';
 export type { KeycloakConfig } from './types/keycloak';
 export type { UseAuthResult } from './hooks/useAuth';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAGjG,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAG1C,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,wBAAwB,EACxB,YAAY,GACb,MAAM,QAAQ,CAAC;AAEhB,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,SAAS,EACT,iBAAiB,EACjB,yBAAyB,EACzB,yBAAyB,GAC1B,MAAM,QAAQ,CAAC;AAGhB,YAAY,EAAE,WAAW,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AACvD,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrD,YAAY,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAGrD,OAAO,EACL,QAAQ,EACR,UAAU,EACV,iBAAiB,EACjB,IAAI,EACJ,iBAAiB,EACjB,YAAY,EACZ,YAAY,GACb,MAAM,QAAQ,CAAC;AAEhB,YAAY,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAG9C,OAAO,EAEL,4BAA4B,EAC5B,qBAAqB,EACrB,wBAAwB,EAExB,gBAAgB,EAChB,aAAa,EAEb,kBAAkB,EAClB,WAAW,EACX,iBAAiB,GAClB,MAAM,YAAY,CAAC;AAEpB,YAAY,EAEV,cAAc,EACd,gBAAgB,EAChB,iBAAiB,EACjB,uBAAuB,EACvB,mBAAmB,EACnB,mBAAmB,EAEnB,mBAAmB,EACnB,aAAa,IAAI,qBAAqB,EACtC,iBAAiB,EACjB,YAAY,EACZ,YAAY,IAAI,oBAAoB,EAEpC,gBAAgB,EAChB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,OAAO,IAAI,eAAe,EAC1B,aAAa,EACb,SAAS,IAAI,iBAAiB,EAE9B,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,UAAU,EACV,MAAM,EACN,OAAO,EACP,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,aAAa,EACb,KAAK,EACL,UAAU,EACV,WAAW,GACZ,MAAM,SAAS,CAAC;AAGjB,OAAO,EACL,aAAa,EACb,aAAa,EACb,mBAAmB,GACpB,MAAM,UAAU,CAAC;AAElB,YAAY,EACV,eAAe,EACf,WAAW,EACX,mBAAmB,EACnB,MAAM,EACN,aAAa,EACb,YAAY,EACZ,OAAO,EACP,SAAS,EACT,cAAc,EACd,YAAY,EACZ,aAAa,GACd,MAAM,SAAS,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,EAAE,YAAY,EAAE,cAAc,EAAE,sBAAsB,EAAE,MAAM,2BAA2B,CAAC;AAGjG,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAC1C,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,sBAAsB,CAAC;AACpD,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAG1C,OAAO,EACL,wBAAwB,EACxB,iBAAiB,EACjB,wBAAwB,EACxB,wBAAwB,EACxB,YAAY,GACb,MAAM,QAAQ,CAAC;AAEhB,YAAY,EACV,UAAU,EACV,kBAAkB,EAClB,QAAQ,EACR,aAAa,EACb,SAAS,EACT,iBAAiB,EACjB,yBAAyB,EACzB,yBAAyB,GAC1B,MAAM,QAAQ,CAAC;AAGhB,YAAY,EAAE,WAAW,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AACtE,YAAY,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AACvD,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AACrD,YAAY,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC/D,YAAY,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAGrD,OAAO,EACL,QAAQ,EACR,UAAU,EACV,iBAAiB,EACjB,IAAI,EACJ,iBAAiB,EACjB,YAAY,EACZ,YAAY,GACb,MAAM,QAAQ,CAAC;AAEhB,YAAY,EAAE,eAAe,EAAE,MAAM,QAAQ,CAAC;AAG9C,OAAO,EAEL,4BAA4B,EAC5B,qBAAqB,EACrB,wBAAwB,EAExB,gBAAgB,EAChB,aAAa,EAEb,kBAAkB,EAClB,WAAW,EACX,iBAAiB,GAClB,MAAM,YAAY,CAAC;AAEpB,YAAY,EAEV,cAAc,EACd,gBAAgB,EAChB,iBAAiB,EACjB,uBAAuB,EACvB,mBAAmB,EACnB,mBAAmB,EAEnB,mBAAmB,EACnB,aAAa,IAAI,qBAAqB,EACtC,iBAAiB,EACjB,YAAY,EACZ,YAAY,IAAI,oBAAoB,EAEpC,gBAAgB,EAChB,eAAe,EACf,gBAAgB,EAChB,aAAa,EACb,OAAO,IAAI,eAAe,EAC1B,aAAa,EACb,SAAS,IAAI,iBAAiB,EAE9B,oBAAoB,EACpB,uBAAuB,GACxB,MAAM,YAAY,CAAC;AAGpB,OAAO,EACL,UAAU,EACV,MAAM,EACN,OAAO,EACP,WAAW,EACX,cAAc,EACd,aAAa,EACb,QAAQ,EACR,aAAa,EACb,KAAK,EACL,UAAU,EACV,WAAW,GACZ,MAAM,SAAS,CAAC;AAGjB,OAAO,EACL,aAAa,EACb,aAAa,EACb,mBAAmB,GACpB,MAAM,UAAU,CAAC;AAElB,YAAY,EACV,eAAe,EACf,WAAW,EACX,mBAAmB,EACnB,MAAM,EACN,aAAa,EACb,YAAY,EACZ,OAAO,EACP,SAAS,EACT,cAAc,EACd,YAAY,EACZ,aAAa,GACd,MAAM,SAAS,CAAC"}

package/dist/index.js

@@ -13,7 +13,7 @@ export { useFetch } from './hooks/useFetch';
 export { useTelemetry } from './hooks/useTelemetry';
 export { useI18n } from './hooks/useI18n';
 // Auth Client
-export { createInMemoryAuthClient, clearInMemoryAuth, createKeycloakAuthClient, UserSelector, } from './auth';
+export { createInMemoryAuthClient, clearInMemoryAuth, createMockUsersFromRoles, createKeycloakAuthClient, UserSelector, } from './auth';
 // i18n
 export { initI18n, saveLocale, isSupportedLocale, i18n, SUPPORTED_LOCALES, LOCALE_FLAGS, LOCALE_NAMES, } from './i18n';
 // Registry

package/dist/registry/client/http.d.ts

@@ -2,7 +2,7 @@
  * HTTP Registry Client
  *
  * Implementation of RegistryClient that communicates with the admin-api.
- * Used when running with PostgreSQL backend.
+ * Used when running with MySQL backend.
  */
 import type { RegistryClient } from './interface';
 /**

package/dist/registry/client/http.js

@@ -2,7 +2,7 @@
  * HTTP Registry Client
  *
  * Implementation of RegistryClient that communicates with the admin-api.
- * Used when running with PostgreSQL backend.
+ * Used when running with MySQL backend.
  */
 /**
  * Create an HTTP registry client

package/dist/shell/AdminShell.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"AdminShell.d.ts","sourceRoot":"","sources":["../../src/shell/AdminShell.tsx"],"names":[],"mappings":"AAmBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,KAAK,EAAE,mBAAmB,EAAE,cAAc,EAAiB,MAAM,aAAa,CAAC;AAMtF,MAAM,WAAW,eAAe;IAC9B;;;OAGG;IACH,OAAO,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAChC;;;OAGG;IACH,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;IAC3B;;;OAGG;IACH,QAAQ,CAAC,EAAE;QACT,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;IACF;;;OAGG;IACH,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,oDAAoD;IACpD,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,0EAA0E;IAC1E,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,oFAAoF;IACpF,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AA8RD,wBAAgB,UAAU,CAAC,EACzB,OAAO,EAAE,SAAc,EACvB,QAAQ,EACR,QAAQ,EACR,UAAU,EAAE,kBAAkB,EAC9B,cAAc,EACd,MAAM,EACN,gBAAuB,EACvB,WAAqB,GACtB,EAAE,eAAe,2CAsLjB"}
+{"version":3,"file":"AdminShell.d.ts","sourceRoot":"","sources":["../../src/shell/AdminShell.tsx"],"names":[],"mappings":"AAmBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,KAAK,EAAE,mBAAmB,EAAE,cAAc,EAAiB,MAAM,aAAa,CAAC;AAMtF,MAAM,WAAW,eAAe;IAC9B;;;OAGG;IACH,OAAO,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAChC;;;OAGG;IACH,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;IAC3B;;;OAGG;IACH,QAAQ,CAAC,EAAE;QACT,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;IACF;;;OAGG;IACH,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,oDAAoD;IACpD,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,0EAA0E;IAC1E,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,oFAAoF;IACpF,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AA8RD,wBAAgB,UAAU,CAAC,EACzB,OAAO,EAAE,SAAc,EACvB,QAAQ,EACR,QAAQ,EACR,UAAU,EAAE,kBAAkB,EAC9B,cAAc,EACd,MAAM,EACN,gBAAuB,EACvB,WAAqB,GACtB,EAAE,eAAe,2CA4LjB"}

package/dist/shell/AdminShell.js

@@ -204,7 +204,13 @@ export function AdminShell({ modules: manifests = [], children, keycloak, authCl
         const useMockAuth = typeof window !== 'undefined' &&
             (import.meta.env.VITE_MOCK_AUTH === 'true' || !keycloak);
         if (useMockAuth) {
-            return createInMemoryAuthClient();
+            // Create default mock users with wildcard permissions for shell development
+            return createInMemoryAuthClient({
+                users: [
+                    { id: 'admin-user', email: 'admin@example.com', displayName: 'Admin User', roles: ['*'] },
+                    { id: 'viewer-user', email: 'viewer@example.com', displayName: 'Viewer User', roles: [] },
+                ],
+            });
         }
         // Use Keycloak
         return createKeycloakAuthClient({

package/dist/shell/BackofficeShell.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"BackofficeShell.d.ts","sourceRoot":"","sources":["../../src/shell/BackofficeShell.tsx"],"names":[],"mappings":"AAmBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,KAAK,EAAE,mBAAmB,EAAE,cAAc,EAAiB,MAAM,aAAa,CAAC;AAMtF,MAAM,WAAW,eAAe;IAC9B;;;OAGG;IACH,OAAO,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAChC;;;OAGG;IACH,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;IAC3B;;;OAGG;IACH,QAAQ,CAAC,EAAE;QACT,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;IACF;;;OAGG;IACH,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,oDAAoD;IACpD,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,0EAA0E;IAC1E,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,oFAAoF;IACpF,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AA8RD,wBAAgB,UAAU,CAAC,EACzB,OAAO,EAAE,SAAc,EACvB,QAAQ,EACR,QAAQ,EACR,UAAU,EAAE,kBAAkB,EAC9B,cAAc,EACd,MAAM,EACN,gBAAuB,EACvB,WAAqB,GACtB,EAAE,eAAe,2CAsLjB"}
+{"version":3,"file":"BackofficeShell.d.ts","sourceRoot":"","sources":["../../src/shell/BackofficeShell.tsx"],"names":[],"mappings":"AAmBA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,0BAA0B,CAAC;AAC3D,OAAO,KAAK,EAAE,mBAAmB,EAAE,cAAc,EAAiB,MAAM,aAAa,CAAC;AAMtF,MAAM,WAAW,eAAe;IAC9B;;;OAGG;IACH,OAAO,CAAC,EAAE,mBAAmB,EAAE,CAAC;IAChC;;;OAGG;IACH,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;IAC3B;;;OAGG;IACH,QAAQ,CAAC,EAAE;QACT,GAAG,EAAE,MAAM,CAAC;QACZ,KAAK,EAAE,MAAM,CAAC;QACd,QAAQ,EAAE,MAAM,CAAC;KAClB,CAAC;IACF;;;OAGG;IACH,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,oDAAoD;IACpD,cAAc,CAAC,EAAE,cAAc,CAAC;IAChC,0EAA0E;IAC1E,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,oFAAoF;IACpF,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,qCAAqC;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AA8RD,wBAAgB,UAAU,CAAC,EACzB,OAAO,EAAE,SAAc,EACvB,QAAQ,EACR,QAAQ,EACR,UAAU,EAAE,kBAAkB,EAC9B,cAAc,EACd,MAAM,EACN,gBAAuB,EACvB,WAAqB,GACtB,EAAE,eAAe,2CA4LjB"}

package/dist/shell/BackofficeShell.js

@@ -204,7 +204,13 @@ export function AdminShell({ modules: manifests = [], children, keycloak, authCl
         const useMockAuth = typeof window !== 'undefined' &&
             (import.meta.env.VITE_MOCK_AUTH === 'true' || !keycloak);
         if (useMockAuth) {
-            return createInMemoryAuthClient();
+            // Create default mock users with wildcard permissions for shell development
+            return createInMemoryAuthClient({
+                users: [
+                    { id: 'admin-user', email: 'admin@example.com', displayName: 'Admin User', roles: ['*'] },
+                    { id: 'viewer-user', email: 'viewer@example.com', displayName: 'Viewer User', roles: [] },
+                ],
+            });
         }
         // Use Keycloak
         return createKeycloakAuthClient({

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nsxbet/admin-sdk",
-  "version": "0.1.0",
+  "version": "0.2.1",
   "description": "SDK for building NSX Admin modules with integrated shell",
   "type": "module",
   "main": "./dist/index.js",
@@ -34,7 +34,7 @@
     "test": "vitest run --passWithNoTests"
   },
   "peerDependencies": {
-    "@nsxbet/admin-ui": ">=0.1.0",
+    "@nsxbet/admin-ui": "^0.2.0",
     "@vitejs/plugin-react": "^4.0.0",
     "i18next": "^23.0.0 || ^24.0.0 || ^25.0.0",
     "react": "^18.2.0",