npm - @objectstack/platform-objects - Versions diffs - 7.1.0 → 7.2.0 - Mend

@objectstack/platform-objects 7.1.0 → 7.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (31) hide show

package/dist/apps/index.js +3 -0
package/dist/apps/index.js.map +1 -1
package/dist/apps/index.mjs +3 -0
package/dist/apps/index.mjs.map +1 -1
package/dist/audit/index.d.mts +144 -48
package/dist/audit/index.d.ts +144 -48
package/dist/identity/index.d.mts +183 -61
package/dist/identity/index.d.ts +183 -61
package/dist/identity/index.js +4 -1
package/dist/identity/index.js.map +1 -1
package/dist/identity/index.mjs +4 -1
package/dist/identity/index.mjs.map +1 -1
package/dist/index.d.mts +1 -1
package/dist/index.d.ts +1 -1
package/dist/index.js +137 -1
package/dist/index.js.map +1 -1
package/dist/index.mjs +137 -2
package/dist/index.mjs.map +1 -1
package/dist/integration/index.d.mts +9 -3
package/dist/integration/index.d.ts +9 -3
package/dist/metadata/index.d.mts +3246 -7
package/dist/metadata/index.d.ts +3246 -7
package/dist/metadata/index.js +130 -0
package/dist/metadata/index.js.map +1 -1
package/dist/metadata/index.mjs +130 -1
package/dist/metadata/index.mjs.map +1 -1
package/dist/security/index.d.mts +63 -21
package/dist/security/index.d.ts +63 -21
package/dist/system/index.d.mts +27 -9
package/dist/system/index.d.ts +27 -9
package/package.json +2 -2

package/dist/index.d.mts CHANGED Viewed

@@ -2,7 +2,7 @@ export { SysAccount, SysApiKey, SysDepartment, SysDepartmentMember, SysDeviceCod
 export { SysPermissionSet, SysRecordShare, SysRole, SysRolePermissionSet, SysShareLink, SysSharingRule, SysUserPermissionSet, defaultPermissionSets } from './security/index.mjs';
 export { SysActivity, SysApprovalAction, SysApprovalProcess, SysApprovalRequest, SysAttachment, SysAuditLog, SysComment, SysEmail, SysEmailTemplate, SysJob, SysJobQueue, SysJobRun, SysNotification, SysPresence, SysReportSchedule, SysSavedReport } from './audit/index.mjs';
 export { SysWebhook } from './integration/index.mjs';
-export { SysMetadata, SysMetadataHistoryObject, SysMetadata as SysMetadataObject } from './metadata/index.mjs';
+export { SysMetadata, SysMetadataAuditObject, SysMetadataHistoryObject, SysMetadata as SysMetadataObject } from './metadata/index.mjs';
 export { SysSecret, SysSetting, SysSettingAudit } from './system/index.mjs';
 export { ACCOUNT_APP, SETUP_APP, STUDIO_APP, SetupAppTranslations, SystemOverviewDashboard, en, esES, jaJP, zhCN } from './apps/index.mjs';
 export { SysOrganizationDetailPage, SysUserDetailPage } from './pages/index.mjs';

package/dist/index.d.ts CHANGED Viewed

@@ -2,7 +2,7 @@ export { SysAccount, SysApiKey, SysDepartment, SysDepartmentMember, SysDeviceCod
 export { SysPermissionSet, SysRecordShare, SysRole, SysRolePermissionSet, SysShareLink, SysSharingRule, SysUserPermissionSet, defaultPermissionSets } from './security/index.js';
 export { SysActivity, SysApprovalAction, SysApprovalProcess, SysApprovalRequest, SysAttachment, SysAuditLog, SysComment, SysEmail, SysEmailTemplate, SysJob, SysJobQueue, SysJobRun, SysNotification, SysPresence, SysReportSchedule, SysSavedReport } from './audit/index.js';
 export { SysWebhook } from './integration/index.js';
-export { SysMetadata, SysMetadataHistoryObject, SysMetadata as SysMetadataObject } from './metadata/index.js';
+export { SysMetadata, SysMetadataAuditObject, SysMetadataHistoryObject, SysMetadata as SysMetadataObject } from './metadata/index.js';
 export { SysSecret, SysSetting, SysSettingAudit } from './system/index.js';
 export { ACCOUNT_APP, SETUP_APP, STUDIO_APP, SetupAppTranslations, SystemOverviewDashboard, en, esES, jaJP, zhCN } from './apps/index.js';
 export { SysOrganizationDetailPage, SysUserDetailPage } from './pages/index.js';

package/dist/index.js CHANGED Viewed

@@ -12,6 +12,9 @@ var SysUser = data.ObjectSchema.create({
   icon: "user",
   isSystem: true,
   managedBy: "better-auth",
+  // ADR-0010 — identity table is managed by better-auth, schema must not drift.
+  _lock: "full",
+  _lockReason: "Identity table managed by better-auth \u2014 see ADR-0010.",
   description: "User accounts for authentication",
   displayNameField: "name",
   titleFormat: "{name}",
@@ -603,7 +606,7 @@ var SysAccount = data.ObjectSchema.create({
       mode: "create",
       locations: ["list_toolbar"],
       type: "url",
-      target: "/api/v1/auth/sign-in/social?provider=${param.provider}&callbackURL=${ctx.origin}/apps/account/sys_account",
+      target: "/api/v1/auth/sign-in/social?provider=${param.provider}&callbackURL=${ctx.origin}/_console/apps/account/sys_account",
       params: [
         {
           name: "provider",
@@ -6924,6 +6927,135 @@ var SysMetadataHistoryObject = data.ObjectSchema.create({
     trash: false
   }
 });
+var SysMetadataAuditObject = data.ObjectSchema.create({
+  name: "sys_metadata_audit",
+  label: "Metadata Audit",
+  pluralLabel: "Metadata Audit",
+  icon: "shield-check",
+  isSystem: true,
+  managedBy: "append-only",
+  description: "Append-only audit trail of metadata write decisions (ADR-0010).",
+  fields: {
+    /** Primary Key (UUID) */
+    id: data.Field.text({
+      label: "ID",
+      required: true,
+      readonly: true
+    }),
+    /** When the decision was made (ISO-8601 UTC). */
+    occurred_at: data.Field.datetime({
+      label: "Occurred At",
+      required: true,
+      readonly: true
+    }),
+    /** Acting principal (user id, system id, or 'system'). */
+    actor: data.Field.text({
+      label: "Actor",
+      required: true,
+      readonly: true,
+      maxLength: 255,
+      description: 'Acting principal \u2014 user id, system id, or "system".'
+    }),
+    /** Code path that produced the decision (e.g. `protocol.saveMetaItem`). */
+    source: data.Field.text({
+      label: "Source",
+      required: false,
+      readonly: true,
+      maxLength: 128
+    }),
+    /** Metadata type (singular, e.g. `app`, `object`, `view`). */
+    type: data.Field.text({
+      label: "Metadata Type",
+      required: true,
+      readonly: true,
+      searchable: true,
+      maxLength: 100
+    }),
+    /** Item machine name. */
+    name: data.Field.text({
+      label: "Name",
+      required: true,
+      readonly: true,
+      searchable: true,
+      maxLength: 255
+    }),
+    /** Organization for multi-tenant filtering. NULL for env-wide writes. */
+    organization_id: data.Field.lookup("sys_organization", {
+      label: "Organization",
+      required: false,
+      readonly: true
+    }),
+    /** Operation kind. */
+    operation: data.Field.select(["save", "publish", "rollback", "delete", "reset"], {
+      label: "Operation",
+      required: true,
+      readonly: true
+    }),
+    /** Decision outcome — allowed, denied (refused), or forced (bypassed via override). */
+    outcome: data.Field.select(["allowed", "denied", "forced"], {
+      label: "Outcome",
+      required: true,
+      readonly: true
+    }),
+    /**
+     * Machine-readable code for the decision:
+     *  - on `allowed`: `'ok'`
+     *  - on `denied`: `'not_overridable'` | `'not_creatable'` |
+     *    `'item_locked'` | `'invalid_metadata'` | `'destructive_change'` |
+     *    `'metadata_conflict'`
+     *  - on `forced`: `'lock_override'` (Phase 3)
+     */
+    code: data.Field.text({
+      label: "Code",
+      required: true,
+      readonly: true,
+      maxLength: 64
+    }),
+    /**
+     * Lock state observed at the time of the decision (`none` if the
+     * item carried no `_lock`). Captured even on `allowed` rows so
+     * later compliance queries can see "what was the lock state when
+     * this write succeeded".
+     */
+    lock_state: data.Field.select(["none", "no-overlay", "no-delete", "full"], {
+      label: "Lock State",
+      required: false,
+      readonly: true
+    }),
+    /** True when the write succeeded by bypassing a lock (Phase 3). */
+    lock_overridden: data.Field.boolean({
+      label: "Lock Overridden",
+      required: false,
+      readonly: true
+    }),
+    /** Optional request correlation id for tracing. */
+    request_id: data.Field.text({
+      label: "Request ID",
+      required: false,
+      readonly: true,
+      maxLength: 128
+    }),
+    /** Optional free-form context (e.g. brief diff summary). */
+    note: data.Field.textarea({
+      label: "Note",
+      required: false,
+      readonly: true
+    })
+  },
+  indexes: [
+    { fields: ["organization_id", "occurred_at"] },
+    { fields: ["type", "name", "occurred_at"] },
+    { fields: ["actor", "occurred_at"] },
+    { fields: ["outcome"] }
+  ],
+  enable: {
+    trackHistory: false,
+    searchable: false,
+    apiEnabled: true,
+    apiMethods: ["get", "list"],
+    trash: false
+  }
+});
 var SysSetting = data.ObjectSchema.create({
   name: "sys_setting",
   label: "Setting",
@@ -7317,6 +7449,9 @@ var SETUP_APP = {
   icon: "settings",
   active: true,
   isDefault: false,
+  // ADR-0010 — core admin UI must not be overlay-edited or deleted.
+  _lock: "full",
+  _lockReason: "Core admin UI shipped by @objectstack/platform-objects \u2014 see ADR-0010.",
   branding: {
     primaryColor: "#475569"
     // Slate-600 — neutral admin palette
@@ -26029,6 +26164,7 @@ exports.SysJobRun = SysJobRun;
 exports.SysJwks = SysJwks;
 exports.SysMember = SysMember;
 exports.SysMetadata = SysMetadataObject;
+exports.SysMetadataAuditObject = SysMetadataAuditObject;
 exports.SysMetadataHistoryObject = SysMetadataHistoryObject;
 exports.SysMetadataObject = SysMetadataObject;
 exports.SysNotification = SysNotification;