@objectstack/platform-objects 11.5.0 → 11.7.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/audit/index.d.mts +70 -250
- package/dist/audit/index.d.ts +70 -250
- package/dist/audit/index.js +10 -10
- package/dist/audit/index.js.map +1 -1
- package/dist/audit/index.mjs +10 -10
- package/dist/audit/index.mjs.map +1 -1
- package/dist/identity/index.d.mts +154 -550
- package/dist/identity/index.d.ts +154 -550
- package/dist/identity/index.js +22 -22
- package/dist/identity/index.js.map +1 -1
- package/dist/identity/index.mjs +22 -22
- package/dist/identity/index.mjs.map +1 -1
- package/dist/index.js +35 -35
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +35 -35
- package/dist/index.mjs.map +1 -1
- package/dist/system/index.d.mts +21 -75
- package/dist/system/index.d.ts +21 -75
- package/dist/system/index.js +3 -3
- package/dist/system/index.js.map +1 -1
- package/dist/system/index.mjs +3 -3
- package/dist/system/index.mjs.map +1 -1
- package/package.json +3 -3
package/dist/identity/index.mjs
CHANGED
|
@@ -19,7 +19,7 @@ var SysUser = ObjectSchema.create({
|
|
|
19
19
|
nameField: "name",
|
|
20
20
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
21
21
|
titleFormat: "{name}",
|
|
22
|
-
|
|
22
|
+
highlightFields: ["name", "email", "email_verified"],
|
|
23
23
|
// Custom actions — generic CRUD is suppressed because user accounts are
|
|
24
24
|
// managed by better-auth, but we still need first-class affordances for
|
|
25
25
|
// common operations. Each action delegates to a Console-side named script
|
|
@@ -545,7 +545,7 @@ var SysSession = ObjectSchema.create({
|
|
|
545
545
|
nameField: "user_id",
|
|
546
546
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
547
547
|
titleFormat: "Session \u2014 {user_id}",
|
|
548
|
-
|
|
548
|
+
highlightFields: ["user_id", "ip_address", "expires_at"],
|
|
549
549
|
// Custom actions — sessions are managed by better-auth (generic CRUD
|
|
550
550
|
// suppressed). "Sign out other devices" is the high-value self-service
|
|
551
551
|
// affordance every IdP exposes. Maps to better-auth's
|
|
@@ -730,7 +730,7 @@ var SysAccount = ObjectSchema.create({
|
|
|
730
730
|
},
|
|
731
731
|
description: "OAuth and authentication provider accounts",
|
|
732
732
|
titleFormat: "{provider_id} - {account_id}",
|
|
733
|
-
|
|
733
|
+
highlightFields: ["provider_id", "user_id", "account_id"],
|
|
734
734
|
// Custom actions — sysadmins routinely need to revoke a user's OAuth
|
|
735
735
|
// link (e.g. when an SSO provider is decommissioned or the user
|
|
736
736
|
// requests it). Better-auth exposes `/unlink-account { providerId,
|
|
@@ -921,7 +921,7 @@ var SysVerification = ObjectSchema.create({
|
|
|
921
921
|
},
|
|
922
922
|
description: "Email and phone verification tokens",
|
|
923
923
|
titleFormat: "Verification for {identifier}",
|
|
924
|
-
|
|
924
|
+
highlightFields: ["identifier", "expires_at", "created_at"],
|
|
925
925
|
fields: {
|
|
926
926
|
id: Field.text({
|
|
927
927
|
label: "Verification ID",
|
|
@@ -993,7 +993,7 @@ var SysOrganization = ObjectSchema.create({
|
|
|
993
993
|
nameField: "name",
|
|
994
994
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
995
995
|
titleFormat: "{name}",
|
|
996
|
-
|
|
996
|
+
highlightFields: ["name", "slug"],
|
|
997
997
|
// Custom actions — generic CRUD is suppressed (better-auth-managed),
|
|
998
998
|
// but admins still need to create new orgs from the Setup app.
|
|
999
999
|
actions: [
|
|
@@ -1224,7 +1224,7 @@ var SysMember = ObjectSchema.create({
|
|
|
1224
1224
|
// '{user_id} in {organization_id}' format renders "… in null". User + role
|
|
1225
1225
|
// identifies the membership in both single- and multi-org deployments.
|
|
1226
1226
|
titleFormat: "{user_id} ({role})",
|
|
1227
|
-
|
|
1227
|
+
highlightFields: ["user_id", "organization_id", "role"],
|
|
1228
1228
|
// Row-level actions: better-auth `organization/update-member-role` and
|
|
1229
1229
|
// `organization/remove-member`. Generic CRUD is suppressed on better-auth
|
|
1230
1230
|
// managed tables, so these are the canonical edit/delete entry points.
|
|
@@ -1394,7 +1394,7 @@ var SysInvitation = ObjectSchema.create({
|
|
|
1394
1394
|
// single-org mode (renders "Invitation to null"), and the recipient email is
|
|
1395
1395
|
// the more useful identifier in both modes anyway.
|
|
1396
1396
|
titleFormat: "Invitation for {email}",
|
|
1397
|
-
|
|
1397
|
+
highlightFields: ["email", "organization_id", "status"],
|
|
1398
1398
|
// Custom actions — generic CRUD is suppressed (better-auth-managed).
|
|
1399
1399
|
// Mirror the `invite_user` toolbar action from sys_user here so admins
|
|
1400
1400
|
// landing on the Invitations page get an obvious entry point.
|
|
@@ -1617,7 +1617,7 @@ var SysTeam = ObjectSchema.create({
|
|
|
1617
1617
|
nameField: "name",
|
|
1618
1618
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
1619
1619
|
titleFormat: "{name}",
|
|
1620
|
-
|
|
1620
|
+
highlightFields: ["name", "organization_id"],
|
|
1621
1621
|
// Custom actions calling better-auth's team endpoints. Generic CRUD is
|
|
1622
1622
|
// suppressed (managedBy: 'better-auth'), so these are the canonical
|
|
1623
1623
|
// entry points for create/update/delete.
|
|
@@ -1772,7 +1772,7 @@ var SysTeamMember = ObjectSchema.create({
|
|
|
1772
1772
|
},
|
|
1773
1773
|
description: "Team membership records linking users to teams",
|
|
1774
1774
|
titleFormat: "{user_id} in {team_id}",
|
|
1775
|
-
|
|
1775
|
+
highlightFields: ["user_id", "team_id", "created_at"],
|
|
1776
1776
|
// Custom actions calling better-auth's team-member endpoints. Generic
|
|
1777
1777
|
// CRUD is suppressed (managedBy: 'better-auth') so these are the
|
|
1778
1778
|
// canonical add/remove entry points.
|
|
@@ -1865,7 +1865,7 @@ var SysBusinessUnit = ObjectSchema.create({
|
|
|
1865
1865
|
nameField: "name",
|
|
1866
1866
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
1867
1867
|
titleFormat: "{name}",
|
|
1868
|
-
|
|
1868
|
+
highlightFields: ["name", "kind", "parent_business_unit_id", "manager_user_id"],
|
|
1869
1869
|
listViews: {
|
|
1870
1870
|
// Org chart — the hierarchy view. Surfaces the self-referencing
|
|
1871
1871
|
// `parent_business_unit_id` tree (ADR-0057 D2) as an indented, expand/
|
|
@@ -2048,7 +2048,7 @@ var SysBusinessUnitMember = ObjectSchema.create({
|
|
|
2048
2048
|
managedBy: "platform",
|
|
2049
2049
|
description: "User assignment to a business unit (matrix-org friendly, effective-dated).",
|
|
2050
2050
|
titleFormat: "{user_id} in {business_unit_id}",
|
|
2051
|
-
|
|
2051
|
+
highlightFields: ["user_id", "business_unit_id", "role_in_business_unit", "is_primary"],
|
|
2052
2052
|
fields: {
|
|
2053
2053
|
id: Field.text({
|
|
2054
2054
|
label: "Member ID",
|
|
@@ -2140,7 +2140,7 @@ var SysApiKey = ObjectSchema.create({
|
|
|
2140
2140
|
nameField: "name",
|
|
2141
2141
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
2142
2142
|
titleFormat: "{name}",
|
|
2143
|
-
|
|
2143
|
+
highlightFields: ["name", "prefix", "user_id", "expires_at", "revoked"],
|
|
2144
2144
|
// Custom actions — sys_api_key is managed-by 'better-auth' but the
|
|
2145
2145
|
// `revoked` boolean is a column we control via the data API. These row
|
|
2146
2146
|
// actions use the generic PATCH /api/v1/sys_api_key/{id} endpoint with
|
|
@@ -2329,7 +2329,7 @@ var SysTwoFactor = ObjectSchema.create({
|
|
|
2329
2329
|
},
|
|
2330
2330
|
description: "Two-factor authentication credentials",
|
|
2331
2331
|
titleFormat: "Two-factor for {user_id}",
|
|
2332
|
-
|
|
2332
|
+
highlightFields: ["user_id", "created_at"],
|
|
2333
2333
|
listViews: {
|
|
2334
2334
|
mine: {
|
|
2335
2335
|
type: "grid",
|
|
@@ -2485,7 +2485,7 @@ var SysDeviceCode = ObjectSchema.create({
|
|
|
2485
2485
|
nameField: "user_code",
|
|
2486
2486
|
// [ADR-0079] canonical primary-title pointer (single-field titleFormat)
|
|
2487
2487
|
titleFormat: "{user_code}",
|
|
2488
|
-
|
|
2488
|
+
highlightFields: ["user_code", "status", "client_id", "expires_at"],
|
|
2489
2489
|
fields: {
|
|
2490
2490
|
id: Field.text({
|
|
2491
2491
|
label: "Device Code ID",
|
|
@@ -2580,7 +2580,7 @@ var SysUserPreference = ObjectSchema.create({
|
|
|
2580
2580
|
nameField: "key",
|
|
2581
2581
|
// [ADR-0079] canonical primary-title pointer (single-field titleFormat)
|
|
2582
2582
|
titleFormat: "{key}",
|
|
2583
|
-
|
|
2583
|
+
highlightFields: ["user_id", "key"],
|
|
2584
2584
|
listViews: {
|
|
2585
2585
|
mine: {
|
|
2586
2586
|
type: "grid",
|
|
@@ -2677,7 +2677,7 @@ var SysOauthApplication = ObjectSchema.create({
|
|
|
2677
2677
|
nameField: "name",
|
|
2678
2678
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
2679
2679
|
titleFormat: "{name}",
|
|
2680
|
-
|
|
2680
|
+
highlightFields: ["name", "client_id", "type", "disabled"],
|
|
2681
2681
|
// Custom actions — all OAuth-application mutations are routed through
|
|
2682
2682
|
// better-auth's `@better-auth/oauth-provider` endpoints (and a thin
|
|
2683
2683
|
// ObjectStack-added auth route for the enable/disable toggle) rather
|
|
@@ -3077,7 +3077,7 @@ var SysOauthAccessToken = ObjectSchema.create({
|
|
|
3077
3077
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3078
3078
|
},
|
|
3079
3079
|
description: "Opaque OAuth access tokens issued to client applications",
|
|
3080
|
-
|
|
3080
|
+
highlightFields: ["client_id", "user_id", "expires_at"],
|
|
3081
3081
|
fields: {
|
|
3082
3082
|
id: Field.text({
|
|
3083
3083
|
label: "ID",
|
|
@@ -3163,7 +3163,7 @@ var SysOauthRefreshToken = ObjectSchema.create({
|
|
|
3163
3163
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3164
3164
|
},
|
|
3165
3165
|
description: "Opaque OAuth refresh tokens (linked to a session)",
|
|
3166
|
-
|
|
3166
|
+
highlightFields: ["client_id", "user_id", "expires_at"],
|
|
3167
3167
|
fields: {
|
|
3168
3168
|
id: Field.text({
|
|
3169
3169
|
label: "ID",
|
|
@@ -3253,7 +3253,7 @@ var SysOauthConsent = ObjectSchema.create({
|
|
|
3253
3253
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3254
3254
|
},
|
|
3255
3255
|
description: "User consent records for OAuth client applications",
|
|
3256
|
-
|
|
3256
|
+
highlightFields: ["client_id", "user_id", "scopes"],
|
|
3257
3257
|
fields: {
|
|
3258
3258
|
id: Field.text({
|
|
3259
3259
|
label: "ID",
|
|
@@ -3321,7 +3321,7 @@ var SysJwks = ObjectSchema.create({
|
|
|
3321
3321
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3322
3322
|
},
|
|
3323
3323
|
description: "Asymmetric key pairs used to sign and verify issued JWTs",
|
|
3324
|
-
|
|
3324
|
+
highlightFields: ["id", "created_at", "expires_at"],
|
|
3325
3325
|
fields: {
|
|
3326
3326
|
id: Field.text({
|
|
3327
3327
|
label: "Key ID",
|
|
@@ -3394,7 +3394,7 @@ var SysSsoProvider = ObjectSchema.create({
|
|
|
3394
3394
|
nameField: "provider_id",
|
|
3395
3395
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
3396
3396
|
titleFormat: "{provider_id}",
|
|
3397
|
-
|
|
3397
|
+
highlightFields: ["provider_id", "issuer", "domain"],
|
|
3398
3398
|
// All mutations go through @better-auth/sso's endpoints under
|
|
3399
3399
|
// /api/v1/auth/sso/* (register / delete-provider) rather than the generic
|
|
3400
3400
|
// data layer, so server-side config validation + secret handling run.
|
|
@@ -3636,7 +3636,7 @@ var SysScimProvider = ObjectSchema.create({
|
|
|
3636
3636
|
nameField: "provider_id",
|
|
3637
3637
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
3638
3638
|
titleFormat: "{provider_id}",
|
|
3639
|
-
|
|
3639
|
+
highlightFields: ["provider_id", "organization_id"],
|
|
3640
3640
|
listViews: {
|
|
3641
3641
|
all: {
|
|
3642
3642
|
type: "grid",
|