@objectstack/platform-objects 11.6.0 → 11.7.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/audit/index.d.mts +70 -250
- package/dist/audit/index.d.ts +70 -250
- package/dist/audit/index.js +10 -10
- package/dist/audit/index.js.map +1 -1
- package/dist/audit/index.mjs +10 -10
- package/dist/audit/index.mjs.map +1 -1
- package/dist/identity/index.d.mts +154 -550
- package/dist/identity/index.d.ts +154 -550
- package/dist/identity/index.js +22 -22
- package/dist/identity/index.js.map +1 -1
- package/dist/identity/index.mjs +22 -22
- package/dist/identity/index.mjs.map +1 -1
- package/dist/index.js +35 -35
- package/dist/index.js.map +1 -1
- package/dist/index.mjs +35 -35
- package/dist/index.mjs.map +1 -1
- package/dist/system/index.d.mts +21 -75
- package/dist/system/index.d.ts +21 -75
- package/dist/system/index.js +3 -3
- package/dist/system/index.js.map +1 -1
- package/dist/system/index.mjs +3 -3
- package/dist/system/index.mjs.map +1 -1
- package/package.json +3 -3
package/dist/identity/index.js
CHANGED
|
@@ -21,7 +21,7 @@ var SysUser = data.ObjectSchema.create({
|
|
|
21
21
|
nameField: "name",
|
|
22
22
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
23
23
|
titleFormat: "{name}",
|
|
24
|
-
|
|
24
|
+
highlightFields: ["name", "email", "email_verified"],
|
|
25
25
|
// Custom actions — generic CRUD is suppressed because user accounts are
|
|
26
26
|
// managed by better-auth, but we still need first-class affordances for
|
|
27
27
|
// common operations. Each action delegates to a Console-side named script
|
|
@@ -547,7 +547,7 @@ var SysSession = data.ObjectSchema.create({
|
|
|
547
547
|
nameField: "user_id",
|
|
548
548
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
549
549
|
titleFormat: "Session \u2014 {user_id}",
|
|
550
|
-
|
|
550
|
+
highlightFields: ["user_id", "ip_address", "expires_at"],
|
|
551
551
|
// Custom actions — sessions are managed by better-auth (generic CRUD
|
|
552
552
|
// suppressed). "Sign out other devices" is the high-value self-service
|
|
553
553
|
// affordance every IdP exposes. Maps to better-auth's
|
|
@@ -732,7 +732,7 @@ var SysAccount = data.ObjectSchema.create({
|
|
|
732
732
|
},
|
|
733
733
|
description: "OAuth and authentication provider accounts",
|
|
734
734
|
titleFormat: "{provider_id} - {account_id}",
|
|
735
|
-
|
|
735
|
+
highlightFields: ["provider_id", "user_id", "account_id"],
|
|
736
736
|
// Custom actions — sysadmins routinely need to revoke a user's OAuth
|
|
737
737
|
// link (e.g. when an SSO provider is decommissioned or the user
|
|
738
738
|
// requests it). Better-auth exposes `/unlink-account { providerId,
|
|
@@ -923,7 +923,7 @@ var SysVerification = data.ObjectSchema.create({
|
|
|
923
923
|
},
|
|
924
924
|
description: "Email and phone verification tokens",
|
|
925
925
|
titleFormat: "Verification for {identifier}",
|
|
926
|
-
|
|
926
|
+
highlightFields: ["identifier", "expires_at", "created_at"],
|
|
927
927
|
fields: {
|
|
928
928
|
id: data.Field.text({
|
|
929
929
|
label: "Verification ID",
|
|
@@ -995,7 +995,7 @@ var SysOrganization = data.ObjectSchema.create({
|
|
|
995
995
|
nameField: "name",
|
|
996
996
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
997
997
|
titleFormat: "{name}",
|
|
998
|
-
|
|
998
|
+
highlightFields: ["name", "slug"],
|
|
999
999
|
// Custom actions — generic CRUD is suppressed (better-auth-managed),
|
|
1000
1000
|
// but admins still need to create new orgs from the Setup app.
|
|
1001
1001
|
actions: [
|
|
@@ -1226,7 +1226,7 @@ var SysMember = data.ObjectSchema.create({
|
|
|
1226
1226
|
// '{user_id} in {organization_id}' format renders "… in null". User + role
|
|
1227
1227
|
// identifies the membership in both single- and multi-org deployments.
|
|
1228
1228
|
titleFormat: "{user_id} ({role})",
|
|
1229
|
-
|
|
1229
|
+
highlightFields: ["user_id", "organization_id", "role"],
|
|
1230
1230
|
// Row-level actions: better-auth `organization/update-member-role` and
|
|
1231
1231
|
// `organization/remove-member`. Generic CRUD is suppressed on better-auth
|
|
1232
1232
|
// managed tables, so these are the canonical edit/delete entry points.
|
|
@@ -1396,7 +1396,7 @@ var SysInvitation = data.ObjectSchema.create({
|
|
|
1396
1396
|
// single-org mode (renders "Invitation to null"), and the recipient email is
|
|
1397
1397
|
// the more useful identifier in both modes anyway.
|
|
1398
1398
|
titleFormat: "Invitation for {email}",
|
|
1399
|
-
|
|
1399
|
+
highlightFields: ["email", "organization_id", "status"],
|
|
1400
1400
|
// Custom actions — generic CRUD is suppressed (better-auth-managed).
|
|
1401
1401
|
// Mirror the `invite_user` toolbar action from sys_user here so admins
|
|
1402
1402
|
// landing on the Invitations page get an obvious entry point.
|
|
@@ -1619,7 +1619,7 @@ var SysTeam = data.ObjectSchema.create({
|
|
|
1619
1619
|
nameField: "name",
|
|
1620
1620
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
1621
1621
|
titleFormat: "{name}",
|
|
1622
|
-
|
|
1622
|
+
highlightFields: ["name", "organization_id"],
|
|
1623
1623
|
// Custom actions calling better-auth's team endpoints. Generic CRUD is
|
|
1624
1624
|
// suppressed (managedBy: 'better-auth'), so these are the canonical
|
|
1625
1625
|
// entry points for create/update/delete.
|
|
@@ -1774,7 +1774,7 @@ var SysTeamMember = data.ObjectSchema.create({
|
|
|
1774
1774
|
},
|
|
1775
1775
|
description: "Team membership records linking users to teams",
|
|
1776
1776
|
titleFormat: "{user_id} in {team_id}",
|
|
1777
|
-
|
|
1777
|
+
highlightFields: ["user_id", "team_id", "created_at"],
|
|
1778
1778
|
// Custom actions calling better-auth's team-member endpoints. Generic
|
|
1779
1779
|
// CRUD is suppressed (managedBy: 'better-auth') so these are the
|
|
1780
1780
|
// canonical add/remove entry points.
|
|
@@ -1867,7 +1867,7 @@ var SysBusinessUnit = data.ObjectSchema.create({
|
|
|
1867
1867
|
nameField: "name",
|
|
1868
1868
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
1869
1869
|
titleFormat: "{name}",
|
|
1870
|
-
|
|
1870
|
+
highlightFields: ["name", "kind", "parent_business_unit_id", "manager_user_id"],
|
|
1871
1871
|
listViews: {
|
|
1872
1872
|
// Org chart — the hierarchy view. Surfaces the self-referencing
|
|
1873
1873
|
// `parent_business_unit_id` tree (ADR-0057 D2) as an indented, expand/
|
|
@@ -2050,7 +2050,7 @@ var SysBusinessUnitMember = data.ObjectSchema.create({
|
|
|
2050
2050
|
managedBy: "platform",
|
|
2051
2051
|
description: "User assignment to a business unit (matrix-org friendly, effective-dated).",
|
|
2052
2052
|
titleFormat: "{user_id} in {business_unit_id}",
|
|
2053
|
-
|
|
2053
|
+
highlightFields: ["user_id", "business_unit_id", "role_in_business_unit", "is_primary"],
|
|
2054
2054
|
fields: {
|
|
2055
2055
|
id: data.Field.text({
|
|
2056
2056
|
label: "Member ID",
|
|
@@ -2142,7 +2142,7 @@ var SysApiKey = data.ObjectSchema.create({
|
|
|
2142
2142
|
nameField: "name",
|
|
2143
2143
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
2144
2144
|
titleFormat: "{name}",
|
|
2145
|
-
|
|
2145
|
+
highlightFields: ["name", "prefix", "user_id", "expires_at", "revoked"],
|
|
2146
2146
|
// Custom actions — sys_api_key is managed-by 'better-auth' but the
|
|
2147
2147
|
// `revoked` boolean is a column we control via the data API. These row
|
|
2148
2148
|
// actions use the generic PATCH /api/v1/sys_api_key/{id} endpoint with
|
|
@@ -2331,7 +2331,7 @@ var SysTwoFactor = data.ObjectSchema.create({
|
|
|
2331
2331
|
},
|
|
2332
2332
|
description: "Two-factor authentication credentials",
|
|
2333
2333
|
titleFormat: "Two-factor for {user_id}",
|
|
2334
|
-
|
|
2334
|
+
highlightFields: ["user_id", "created_at"],
|
|
2335
2335
|
listViews: {
|
|
2336
2336
|
mine: {
|
|
2337
2337
|
type: "grid",
|
|
@@ -2487,7 +2487,7 @@ var SysDeviceCode = data.ObjectSchema.create({
|
|
|
2487
2487
|
nameField: "user_code",
|
|
2488
2488
|
// [ADR-0079] canonical primary-title pointer (single-field titleFormat)
|
|
2489
2489
|
titleFormat: "{user_code}",
|
|
2490
|
-
|
|
2490
|
+
highlightFields: ["user_code", "status", "client_id", "expires_at"],
|
|
2491
2491
|
fields: {
|
|
2492
2492
|
id: data.Field.text({
|
|
2493
2493
|
label: "Device Code ID",
|
|
@@ -2582,7 +2582,7 @@ var SysUserPreference = data.ObjectSchema.create({
|
|
|
2582
2582
|
nameField: "key",
|
|
2583
2583
|
// [ADR-0079] canonical primary-title pointer (single-field titleFormat)
|
|
2584
2584
|
titleFormat: "{key}",
|
|
2585
|
-
|
|
2585
|
+
highlightFields: ["user_id", "key"],
|
|
2586
2586
|
listViews: {
|
|
2587
2587
|
mine: {
|
|
2588
2588
|
type: "grid",
|
|
@@ -2679,7 +2679,7 @@ var SysOauthApplication = data.ObjectSchema.create({
|
|
|
2679
2679
|
nameField: "name",
|
|
2680
2680
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
2681
2681
|
titleFormat: "{name}",
|
|
2682
|
-
|
|
2682
|
+
highlightFields: ["name", "client_id", "type", "disabled"],
|
|
2683
2683
|
// Custom actions — all OAuth-application mutations are routed through
|
|
2684
2684
|
// better-auth's `@better-auth/oauth-provider` endpoints (and a thin
|
|
2685
2685
|
// ObjectStack-added auth route for the enable/disable toggle) rather
|
|
@@ -3079,7 +3079,7 @@ var SysOauthAccessToken = data.ObjectSchema.create({
|
|
|
3079
3079
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3080
3080
|
},
|
|
3081
3081
|
description: "Opaque OAuth access tokens issued to client applications",
|
|
3082
|
-
|
|
3082
|
+
highlightFields: ["client_id", "user_id", "expires_at"],
|
|
3083
3083
|
fields: {
|
|
3084
3084
|
id: data.Field.text({
|
|
3085
3085
|
label: "ID",
|
|
@@ -3165,7 +3165,7 @@ var SysOauthRefreshToken = data.ObjectSchema.create({
|
|
|
3165
3165
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3166
3166
|
},
|
|
3167
3167
|
description: "Opaque OAuth refresh tokens (linked to a session)",
|
|
3168
|
-
|
|
3168
|
+
highlightFields: ["client_id", "user_id", "expires_at"],
|
|
3169
3169
|
fields: {
|
|
3170
3170
|
id: data.Field.text({
|
|
3171
3171
|
label: "ID",
|
|
@@ -3255,7 +3255,7 @@ var SysOauthConsent = data.ObjectSchema.create({
|
|
|
3255
3255
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3256
3256
|
},
|
|
3257
3257
|
description: "User consent records for OAuth client applications",
|
|
3258
|
-
|
|
3258
|
+
highlightFields: ["client_id", "user_id", "scopes"],
|
|
3259
3259
|
fields: {
|
|
3260
3260
|
id: data.Field.text({
|
|
3261
3261
|
label: "ID",
|
|
@@ -3323,7 +3323,7 @@ var SysJwks = data.ObjectSchema.create({
|
|
|
3323
3323
|
docsUrl: "https://docs.objectstack.ai/adr/0010-metadata-protection"
|
|
3324
3324
|
},
|
|
3325
3325
|
description: "Asymmetric key pairs used to sign and verify issued JWTs",
|
|
3326
|
-
|
|
3326
|
+
highlightFields: ["id", "created_at", "expires_at"],
|
|
3327
3327
|
fields: {
|
|
3328
3328
|
id: data.Field.text({
|
|
3329
3329
|
label: "Key ID",
|
|
@@ -3396,7 +3396,7 @@ var SysSsoProvider = data.ObjectSchema.create({
|
|
|
3396
3396
|
nameField: "provider_id",
|
|
3397
3397
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
3398
3398
|
titleFormat: "{provider_id}",
|
|
3399
|
-
|
|
3399
|
+
highlightFields: ["provider_id", "issuer", "domain"],
|
|
3400
3400
|
// All mutations go through @better-auth/sso's endpoints under
|
|
3401
3401
|
// /api/v1/auth/sso/* (register / delete-provider) rather than the generic
|
|
3402
3402
|
// data layer, so server-side config validation + secret handling run.
|
|
@@ -3638,7 +3638,7 @@ var SysScimProvider = data.ObjectSchema.create({
|
|
|
3638
3638
|
nameField: "provider_id",
|
|
3639
3639
|
// [ADR-0079] canonical primary-title pointer (mirrors deprecated displayNameField)
|
|
3640
3640
|
titleFormat: "{provider_id}",
|
|
3641
|
-
|
|
3641
|
+
highlightFields: ["provider_id", "organization_id"],
|
|
3642
3642
|
listViews: {
|
|
3643
3643
|
all: {
|
|
3644
3644
|
type: "grid",
|