@nsxbet/admin-sdk 0.7.1 → 0.8.0

package/dist/vite/config.js

@@ -2,18 +2,96 @@ import { loadEnv } from "vite";
 import { generateModuleManifestPlugin, serveDistPlugin } from "./plugins.js";
 import { adminModuleI18nPlugin } from "./i18n-plugin.js";
 import { getSharedExternals } from "./AdminShellSharedDeps.js";
-const ENV_KEY = "VITE_ADMIN_GATEWAY_URL";
-/**
- * Default admin gateway URL (staging environment).
- * Used by the env injection plugin when no explicit value is configured.
- */
-export const ADMIN_GATEWAY_STAGING_URL = "https://admin-bff-stg.nsx.dev";
+/** Default gateway when no env or option is set (internal to the plugin). */
+const DEFAULT_GATEWAY_URL = "https://admin-bff-stg.nsx.dev";
 /**
  * Shared dependencies that are externalized in module builds.
  * These are provided by the shell via import maps.
  * Derived from SHARED_DEPS_CONFIG — the single source of truth.
  */
 export const SHARED_EXTERNALS = getSharedExternals();
+function buildEnvJs(mode, gatewayUrl) {
+    const loaded = loadEnv(mode, process.cwd(), "");
+    const fromEnv = process.env.ADMIN_GATEWAY_URL || loaded.ADMIN_GATEWAY_URL;
+    let adminGateway;
+    if (fromEnv) {
+        adminGateway = fromEnv;
+    }
+    else if (gatewayUrl !== undefined && gatewayUrl !== null) {
+        adminGateway = gatewayUrl;
+    }
+    else {
+        adminGateway = DEFAULT_GATEWAY_URL;
+    }
+    const entries = {
+        ADMIN_GATEWAY_URL: adminGateway,
+    };
+    const mockAuth = loaded.MOCK_AUTH ?? process.env.MOCK_AUTH;
+    if (mockAuth !== undefined && mockAuth !== "") {
+        entries.MOCK_AUTH = mockAuth;
+    }
+    const environment = loaded.ENVIRONMENT ?? process.env.ENVIRONMENT;
+    if (environment !== undefined && environment !== "") {
+        entries.ENVIRONMENT = environment;
+    }
+    const registryPollInterval = loaded.REGISTRY_POLL_INTERVAL ?? process.env.REGISTRY_POLL_INTERVAL;
+    if (registryPollInterval !== undefined && registryPollInterval !== "") {
+        entries.REGISTRY_POLL_INTERVAL = registryPollInterval;
+    }
+    const body = Object.entries(entries)
+        .map(([k, v]) => `${k}:${JSON.stringify(v)}`)
+        .join(",");
+    return `window.__ENV__={${body}};`;
+}
+function createAdminModuleEnvPlugin(gatewayUrl) {
+    return {
+        name: "admin-module-env",
+        configureServer(server) {
+            if (gatewayUrl === null)
+                return;
+            server.middlewares.use((req, res, next) => {
+                const url = req.url?.split("?")[0];
+                if (url === "/env.js") {
+                    const mode = server.config.mode;
+                    res.setHeader("Content-Type", "application/javascript");
+                    res.setHeader("Cache-Control", "no-cache");
+                    res.end(buildEnvJs(mode, gatewayUrl));
+                    return;
+                }
+                next();
+            });
+        },
+        configurePreviewServer(server) {
+            if (gatewayUrl === null)
+                return;
+            server.middlewares.use((req, res, next) => {
+                const url = req.url?.split("?")[0];
+                if (url === "/env.js") {
+                    const mode = server.config.mode;
+                    res.setHeader("Content-Type", "application/javascript");
+                    res.setHeader("Cache-Control", "no-cache");
+                    res.end(buildEnvJs(mode, gatewayUrl));
+                    return;
+                }
+                next();
+            });
+        },
+        transformIndexHtml: {
+            order: "pre",
+            handler(html) {
+                if (gatewayUrl === null)
+                    return html;
+                if (html.includes('src="/env.js"') || html.includes("src='/env.js'")) {
+                    return html;
+                }
+                if (html.includes("</head>")) {
+                    return html.replace("</head>", `    <script src="/env.js"></script>\n  </head>`);
+                }
+                return html;
+            },
+        },
+    };
+}
 /**
  * Composable Vite plugin array for admin modules.
  * Returns plugins that handle build-time lib config, dist serving, and manifest generation.
@@ -54,26 +132,6 @@ export function adminModule(options = {}) {
             return true;
         return process.env.ADMIN_MODULE === "true";
     }
-    const envPlugin = {
-        name: "admin-module-env",
-        config(_config, { mode }) {
-            if (gatewayUrl === null)
-                return;
-            const env = loadEnv(mode, process.cwd(), "VITE_");
-            const fromEnv = process.env[ENV_KEY] || env[ENV_KEY];
-            if (fromEnv) {
-                console.log(`[admin-module-env] ${ENV_KEY} → ${fromEnv} (from env)`);
-                return;
-            }
-            const url = gatewayUrl ?? ADMIN_GATEWAY_STAGING_URL;
-            console.log(`[admin-module-env] ${ENV_KEY} → ${url} (auto-injected)`);
-            return {
-                define: {
-                    [`import.meta.env.${ENV_KEY}`]: JSON.stringify(url),
-                },
-            };
-        },
-    };
     const buildConfigPlugin = {
         name: "admin-module-build-config",
         config(_config, { command }) {
@@ -100,7 +158,7 @@ export function adminModule(options = {}) {
         },
     };
     return [
-        envPlugin,
+        createAdminModuleEnvPlugin(gatewayUrl),
         adminModuleI18nPlugin(),
         serveDistPlugin({ distDir: outDir }),
         generateModuleManifestPlugin(),

package/dist/vite/index.d.ts

@@ -15,5 +15,5 @@
  */
 export { generateModuleManifestPlugin, serveDistPlugin, type GenerateModuleManifestPluginOptions, type ServeDistPluginOptions, } from "./plugins.js";
 export { adminModuleI18nPlugin, type AdminModuleI18nPluginOptions, } from "./i18n-plugin.js";
-export { adminModule, defineModuleConfig, SHARED_EXTERNALS, ADMIN_GATEWAY_STAGING_URL, type AdminModuleOptions, type ModuleConfigOptions, } from "./config.js";
+export { adminModule, defineModuleConfig, SHARED_EXTERNALS, type AdminModuleOptions, type ModuleConfigOptions, } from "./config.js";
 export { AdminShellSharedDeps, SHARED_DEPS_CONFIG, getSharedExternals, type SharedDepConfig, } from "./AdminShellSharedDeps.js";

package/dist/vite/index.js

@@ -15,5 +15,5 @@
  */
 export { generateModuleManifestPlugin, serveDistPlugin, } from "./plugins.js";
 export { adminModuleI18nPlugin, } from "./i18n-plugin.js";
-export { adminModule, defineModuleConfig, SHARED_EXTERNALS, ADMIN_GATEWAY_STAGING_URL, } from "./config.js";
+export { adminModule, defineModuleConfig, SHARED_EXTERNALS, } from "./config.js";
 export { AdminShellSharedDeps, SHARED_DEPS_CONFIG, getSharedExternals, } from "./AdminShellSharedDeps.js";

package/dist/vite/plugins.js

@@ -1,5 +1,6 @@
 import { readFileSync, writeFileSync, existsSync } from "fs";
 import { resolve, join } from "path";
+import { SDK_PACKAGE_VERSION } from "../sdk-version.js";
 /**
  * Vite plugin to generate module.manifest.json after build.
  * Merges admin.module.json metadata with the build entry path.
@@ -22,7 +23,11 @@ export function generateModuleManifestPlugin(options = {}) {
             if (!spaEntry)
                 return;
             const metadata = JSON.parse(readFileSync(manifestPath, "utf-8"));
-            const manifest = { entry: spaEntry, ...metadata };
+            const manifest = {
+                entry: spaEntry,
+                sdkVersion: SDK_PACKAGE_VERSION,
+                ...metadata,
+            };
             const outDir = outputOptions.dir || "dist";
             const outputPath = join(outDir, "module.manifest.json");
             writeFileSync(outputPath, JSON.stringify(manifest, null, 2));

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nsxbet/admin-sdk",
-  "version": "0.7.1",
+  "version": "0.8.0",
   "description": "SDK for building NSX Admin modules with integrated shell",
   "type": "module",
   "main": "./dist/index.js",
@@ -19,6 +19,12 @@
       "import": "./dist/vite/index.js",
       "default": "./dist/vite/index.js"
     },
+    "./env": {
+      "source": "./src/env.ts",
+      "types": "./dist/env.d.ts",
+      "import": "./dist/env.js",
+      "default": "./dist/env.js"
+    },
     "./tailwind": {
       "source": "./src/tailwind/index.ts",
       "types": "./dist/tailwind/index.d.ts",
@@ -34,9 +40,9 @@
   ],
   "scripts": {
     "postinstall": "node scripts/postinstall.js",
-    "build": "tsc",
-    "dev": "tsc --watch --preserveWatchOutput",
-    "type-check": "tsc --noEmit",
+    "build": "node scripts/write-sdk-version.mjs && tsc",
+    "dev": "node scripts/write-sdk-version.mjs && tsc --watch --preserveWatchOutput",
+    "type-check": "node scripts/write-sdk-version.mjs && tsc --noEmit",
     "test": "vitest run --passWithNoTests",
     "storybook": "storybook dev -p 6007 --host 0.0.0.0",
     "build-storybook": "storybook build -o storybook-static"
@@ -63,7 +69,6 @@
     }
   },
   "dependencies": {
-    "keycloak-js": "^23.0.0",
     "lucide-react": "^0.460.0"
   },
   "devDependencies": {
@@ -71,6 +76,7 @@
     "@storybook/react-vite": "^10.3.0",
     "@testing-library/jest-dom": "^6.9.1",
     "@testing-library/react": "^16.3.2",
+    "@types/node": "^20.3.1",
     "@types/react": "^18.2.0",
     "@types/react-dom": "^18.2.0",
     "@vitejs/plugin-react": "^4.3.4",

package/scripts/write-sdk-version.mjs

@@ -0,0 +1,21 @@
+/**
+ * Writes src/sdk-version.ts from package.json version so tsc can use rootDir "./src"
+ * without importing files outside src/ (which breaks dist/ layout vs package exports).
+ */
+import { readFileSync, writeFileSync } from "node:fs";
+import { dirname, join } from "node:path";
+import { fileURLToPath } from "node:url";
+
+const __dirname = dirname(fileURLToPath(import.meta.url));
+const pkgPath = join(__dirname, "..", "package.json");
+const outPath = join(__dirname, "..", "src", "sdk-version.ts");
+const { version } = JSON.parse(readFileSync(pkgPath, "utf8"));
+
+const contents = `/**
+ * Semver of @nsxbet/admin-sdk (synced from package.json by scripts/write-sdk-version.mjs).
+ * Do not edit manually — run \`node scripts/write-sdk-version.mjs\` after version bumps.
+ */
+export const SDK_PACKAGE_VERSION: string = ${JSON.stringify(version)};
+`;
+
+writeFileSync(outPath, contents, "utf8");

package/dist/auth/client/keycloak.d.ts

@@ -1,18 +0,0 @@
-/**
- * Keycloak Auth Client
- *
- * Provides real authentication via Keycloak for production environments.
- */
-import type { KeycloakConfig } from '../../types/keycloak';
-import type { AuthClient } from './interface';
-/**
- * Options for creating a Keycloak auth client
- */
-export interface KeycloakAuthClientOptions {
-    /** Keycloak configuration */
-    config: KeycloakConfig;
-}
-/**
- * Create a Keycloak auth client for production
- */
-export declare function createKeycloakAuthClient(options: KeycloakAuthClientOptions): AuthClient;

package/dist/auth/client/keycloak.js

@@ -1,129 +0,0 @@
-/**
- * Keycloak Auth Client
- *
- * Provides real authentication via Keycloak for production environments.
- */
-import Keycloak from 'keycloak-js';
-/**
- * Create a Keycloak auth client for production
- */
-export function createKeycloakAuthClient(options) {
-    const { config } = options;
-    let keycloak = null;
-    let currentUser = null;
-    let isInitialized = false;
-    const subscribers = new Set();
-    /**
-     * Parse user from Keycloak token
-     */
-    function parseUser(tokenParsed) {
-        return {
-            id: tokenParsed.sub || '',
-            email: tokenParsed.email || '',
-            displayName: tokenParsed.name || tokenParsed.preferred_username || '',
-            roles: tokenParsed.realm_access?.roles ?? [],
-        };
-    }
-    /**
-     * Notify subscribers of state change
-     */
-    function notifySubscribers() {
-        const state = {
-            isAuthenticated: currentUser !== null,
-            user: currentUser,
-        };
-        subscribers.forEach((callback) => callback(state));
-    }
-    const client = {
-        type: 'keycloak',
-        async initialize() {
-            if (keycloak) {
-                return keycloak.authenticated ?? false;
-            }
-            keycloak = new Keycloak({
-                url: config.url || 'http://localhost:8080',
-                realm: config.realm || 'admin',
-                clientId: config.clientId,
-            });
-            try {
-                const authenticated = await keycloak.init({
-                    onLoad: 'login-required',
-                    checkLoginIframe: false,
-                    pkceMethod: 'S256',
-                });
-                if (authenticated && keycloak.tokenParsed) {
-                    currentUser = parseUser(keycloak.tokenParsed);
-                }
-                isInitialized = true;
-                // Notify subscribers that auth is ready - this triggers React re-render
-                // which will re-evaluate permissions with the now-available token
-                notifySubscribers();
-                // Setup token refresh
-                keycloak.onTokenExpired = () => {
-                    keycloak?.updateToken(30).catch(() => {
-                        console.error('[AuthClient] Failed to refresh token');
-                        client.logout();
-                    });
-                };
-                // Setup auth state changes
-                keycloak.onAuthLogout = () => {
-                    currentUser = null;
-                    notifySubscribers();
-                };
-                keycloak.onAuthRefreshError = () => {
-                    currentUser = null;
-                    notifySubscribers();
-                };
-                return authenticated;
-            }
-            catch (error) {
-                console.error('[AuthClient] Keycloak initialization failed:', error);
-                throw error;
-            }
-        },
-        isAuthenticated() {
-            return keycloak?.authenticated ?? false;
-        },
-        getUser() {
-            return currentUser;
-        },
-        async getAccessToken() {
-            if (!keycloak) {
-                throw new Error('Keycloak not initialized');
-            }
-            try {
-                await keycloak.updateToken(5);
-                return keycloak.token || '';
-            }
-            catch (error) {
-                console.error('[AuthClient] Failed to refresh token');
-                client.logout();
-                throw error;
-            }
-        },
-        hasPermission(permission) {
-            // Deny-by-default: return false until Keycloak is fully initialized.
-            // This prevents a window where all actions appear permitted during auth init.
-            // AuthProvider gates rendering behind isAuthenticated, so modules won't
-            // render permission-gated UI until auth completes.
-            if (!isInitialized || !keycloak) {
-                return false;
-            }
-            return keycloak.hasRealmRole(permission);
-        },
-        logout() {
-            currentUser = null;
-            if (keycloak) {
-                keycloak.logout();
-            }
-            notifySubscribers();
-        },
-        subscribe(callback) {
-            subscribers.add(callback);
-            return () => {
-                subscribers.delete(callback);
-            };
-        },
-    };
-    return client;
-}

package/dist/shell/BackofficeShell.d.ts

@@ -1,37 +0,0 @@
-import type { AuthClient } from "../auth/client/interface";
-import type { AdminModuleManifest, RegistryClient } from "../registry";
-export interface AdminShellProps {
-    /**
-     * Module manifests to load (used for standalone mode when no registryClient)
-     * In standalone mode, modules are rendered via children prop
-     */
-    modules?: AdminModuleManifest[];
-    /**
-     * Content to render for standalone module development.
-     * Only used in standalone mode (when modules prop is provided)
-     */
-    children?: React.ReactNode;
-    /**
-     * Keycloak configuration
-     * If not provided, uses in-memory (mock) authentication
-     */
-    keycloak?: {
-        url: string;
-        realm: string;
-        clientId: string;
-    };
-    /**
-     * Auth client to use for authentication.
-     * If not provided, creates one based on keycloak prop or environment.
-     */
-    authClient?: AuthClient;
-    /** Registry client for fetching modules from API */
-    registryClient?: RegistryClient;
-    /** API URL for registry management (e.g., "http://localhost:4000/api") */
-    apiUrl?: string;
-    /** Use in-memory registry (default: true, ignored if registryClient is provided) */
-    inMemoryRegistry?: boolean;
-    /** Environment (default: "local") */
-    environment?: string;
-}
-export declare function AdminShell({ modules: manifests, children, keycloak, authClient: providedAuthClient, registryClient, apiUrl, inMemoryRegistry, environment, }: AdminShellProps): import("react/jsx-runtime").JSX.Element;