npm - @open-mercato/core - Versions diffs - 0.4.8-develop-28cee031d6 → 0.4.8-develop-15259be22b - Mend

@open-mercato/core 0.4.8-develop-28cee031d6 → 0.4.8-develop-15259be22b

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (333) hide show

package/dist/modules/customer_accounts/data/validators.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/data/validators.ts"],
+  "sourcesContent": ["import { z } from 'zod'\n\nconst emailField = z.string().email().max(255)\nconst passwordField = z.string().min(8).max(128)\nconst displayNameField = z.string().min(1).max(255)\n\nexport const signupSchema = z.object({\n  email: emailField,\n  password: passwordField,\n  displayName: displayNameField,\n  tenantId: z.string().uuid().optional(),\n  organizationId: z.string().uuid().optional(),\n})\n\nexport const loginSchema = z.object({\n  email: emailField,\n  password: z.string().min(1).max(128),\n  tenantId: z.string().uuid().optional(),\n})\n\nexport const emailVerifySchema = z.object({\n  token: z.string().min(1).max(512),\n})\n\nexport const passwordResetRequestSchema = z.object({\n  email: emailField,\n  tenantId: z.string().uuid().optional(),\n})\n\nexport const passwordResetConfirmSchema = z.object({\n  token: z.string().min(1).max(512),\n  password: passwordField,\n})\n\nexport const magicLinkRequestSchema = z.object({\n  email: emailField,\n  tenantId: z.string().uuid().optional(),\n})\n\nexport const magicLinkVerifySchema = z.object({\n  token: z.string().min(1).max(512),\n})\n\nexport const invitationAcceptSchema = z.object({\n  token: z.string().min(1).max(512),\n  password: passwordField,\n  displayName: displayNameField,\n})\n\nexport const profileUpdateSchema = z.object({\n  displayName: displayNameField.optional(),\n})\n\nexport const passwordChangeSchema = z.object({\n  currentPassword: z.string().min(1).max(128),\n  newPassword: passwordField,\n})\n\nexport const createRoleSchema = z.object({\n  name: z.string().min(1).max(255),\n  slug: z.string().min(1).max(255).regex(/^[a-z0-9_-]+$/),\n  description: z.string().max(1000).optional(),\n  isDefault: z.boolean().optional(),\n  customerAssignable: z.boolean().optional(),\n})\n\nexport const updateRoleSchema = z.object({\n  name: z.string().min(1).max(255).optional(),\n  description: z.string().max(1000).optional(),\n  isDefault: z.boolean().optional(),\n  customerAssignable: z.boolean().optional(),\n})\n\nexport const updateRoleAclSchema = z.object({\n  features: z.array(z.string().min(1).max(255)),\n  isPortalAdmin: z.boolean().optional(),\n})\n\nexport const inviteUserSchema = z.object({\n  email: emailField,\n  customerEntityId: z.string().uuid().optional(),\n  roleIds: z.array(z.string().uuid()).min(1),\n  displayName: displayNameField.optional(),\n})\n\nexport const assignRolesSchema = z.object({\n  roleIds: z.array(z.string().uuid()).min(1),\n})\n\nexport const adminCreateUserSchema = z.object({\n  email: emailField,\n  password: passwordField,\n  displayName: displayNameField,\n  roleIds: z.array(z.string().uuid()).optional(),\n  customerEntityId: z.string().uuid().optional(),\n})\n\nexport const adminUpdateUserSchema = z.object({\n  displayName: displayNameField.optional(),\n  isActive: z.boolean().optional(),\n  lockedUntil: z.string().datetime().nullable().optional(),\n  personEntityId: z.string().uuid().nullable().optional(),\n  customerEntityId: z.string().uuid().nullable().optional(),\n  roleIds: z.array(z.string().uuid()).optional(),\n})\n\nexport const adminResetPasswordSchema = z.object({\n  newPassword: passwordField,\n})\n\nexport type AdminCreateUserInput = z.infer<typeof adminCreateUserSchema>\nexport type AdminResetPasswordInput = z.infer<typeof adminResetPasswordSchema>\nexport type SignupInput = z.infer<typeof signupSchema>\nexport type LoginInput = z.infer<typeof loginSchema>\nexport type EmailVerifyInput = z.infer<typeof emailVerifySchema>\nexport type PasswordResetRequestInput = z.infer<typeof passwordResetRequestSchema>\nexport type PasswordResetConfirmInput = z.infer<typeof passwordResetConfirmSchema>\nexport type MagicLinkRequestInput = z.infer<typeof magicLinkRequestSchema>\nexport type MagicLinkVerifyInput = z.infer<typeof magicLinkVerifySchema>\nexport type InvitationAcceptInput = z.infer<typeof invitationAcceptSchema>\nexport type ProfileUpdateInput = z.infer<typeof profileUpdateSchema>\nexport type PasswordChangeInput = z.infer<typeof passwordChangeSchema>\nexport type CreateRoleInput = z.infer<typeof createRoleSchema>\nexport type UpdateRoleInput = z.infer<typeof updateRoleSchema>\nexport type UpdateRoleAclInput = z.infer<typeof updateRoleAclSchema>\nexport type InviteUserInput = z.infer<typeof inviteUserSchema>\nexport type AssignRolesInput = z.infer<typeof assignRolesSchema>\nexport type AdminUpdateUserInput = z.infer<typeof adminUpdateUserSchema>\n"],
+  "mappings": "AAAA,SAAS,SAAS;AAElB,MAAM,aAAa,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,GAAG;AAC7C,MAAM,gBAAgB,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAC/C,MAAM,mBAAmB,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAE3C,MAAM,eAAe,EAAE,OAAO;AAAA,EACnC,OAAO;AAAA,EACP,UAAU;AAAA,EACV,aAAa;AAAA,EACb,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACrC,gBAAgB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAC7C,CAAC;AAEM,MAAM,cAAc,EAAE,OAAO;AAAA,EAClC,OAAO;AAAA,EACP,UAAU,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAAA,EACnC,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AACvC,CAAC;AAEM,MAAM,oBAAoB,EAAE,OAAO;AAAA,EACxC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAClC,CAAC;AAEM,MAAM,6BAA6B,EAAE,OAAO;AAAA,EACjD,OAAO;AAAA,EACP,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AACvC,CAAC;AAEM,MAAM,6BAA6B,EAAE,OAAO;AAAA,EACjD,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAAA,EAChC,UAAU;AACZ,CAAC;AAEM,MAAM,yBAAyB,EAAE,OAAO;AAAA,EAC7C,OAAO;AAAA,EACP,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AACvC,CAAC;AAEM,MAAM,wBAAwB,EAAE,OAAO;AAAA,EAC5C,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAClC,CAAC;AAEM,MAAM,yBAAyB,EAAE,OAAO;AAAA,EAC7C,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAAA,EAChC,UAAU;AAAA,EACV,aAAa;AACf,CAAC;AAEM,MAAM,sBAAsB,EAAE,OAAO;AAAA,EAC1C,aAAa,iBAAiB,SAAS;AACzC,CAAC;AAEM,MAAM,uBAAuB,EAAE,OAAO;AAAA,EAC3C,iBAAiB,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAAA,EAC1C,aAAa;AACf,CAAC;AAEM,MAAM,mBAAmB,EAAE,OAAO;AAAA,EACvC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG;AAAA,EAC/B,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG,EAAE,MAAM,eAAe;AAAA,EACtD,aAAa,EAAE,OAAO,EAAE,IAAI,GAAI,EAAE,SAAS;AAAA,EAC3C,WAAW,EAAE,QAAQ,EAAE,SAAS;AAAA,EAChC,oBAAoB,EAAE,QAAQ,EAAE,SAAS;AAC3C,CAAC;AAEM,MAAM,mBAAmB,EAAE,OAAO;AAAA,EACvC,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG,EAAE,SAAS;AAAA,EAC1C,aAAa,EAAE,OAAO,EAAE,IAAI,GAAI,EAAE,SAAS;AAAA,EAC3C,WAAW,EAAE,QAAQ,EAAE,SAAS;AAAA,EAChC,oBAAoB,EAAE,QAAQ,EAAE,SAAS;AAC3C,CAAC;AAEM,MAAM,sBAAsB,EAAE,OAAO;AAAA,EAC1C,UAAU,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG,CAAC;AAAA,EAC5C,eAAe,EAAE,QAAQ,EAAE,SAAS;AACtC,CAAC;AAEM,MAAM,mBAAmB,EAAE,OAAO;AAAA,EACvC,OAAO;AAAA,EACP,kBAAkB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EAC7C,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,IAAI,CAAC;AAAA,EACzC,aAAa,iBAAiB,SAAS;AACzC,CAAC;AAEM,MAAM,oBAAoB,EAAE,OAAO;AAAA,EACxC,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,IAAI,CAAC;AAC3C,CAAC;AAEM,MAAM,wBAAwB,EAAE,OAAO;AAAA,EAC5C,OAAO;AAAA,EACP,UAAU;AAAA,EACV,aAAa;AAAA,EACb,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,SAAS;AAAA,EAC7C,kBAAkB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAC/C,CAAC;AAEM,MAAM,wBAAwB,EAAE,OAAO;AAAA,EAC5C,aAAa,iBAAiB,SAAS;AAAA,EACvC,UAAU,EAAE,QAAQ,EAAE,SAAS;AAAA,EAC/B,aAAa,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,SAAS;AAAA,EACvD,gBAAgB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EACtD,kBAAkB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EACxD,SAAS,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,EAAE,SAAS;AAC/C,CAAC;AAEM,MAAM,2BAA2B,EAAE,OAAO;AAAA,EAC/C,aAAa;AACf,CAAC;",
+  "names": []
+}

package/dist/modules/customer_accounts/di.js ADDED Viewed

@@ -0,0 +1,17 @@
+import { asClass } from "awilix";
+import { CustomerUserService } from "@open-mercato/core/modules/customer_accounts/services/customerUserService";
+import { CustomerSessionService } from "@open-mercato/core/modules/customer_accounts/services/customerSessionService";
+import { CustomerTokenService } from "@open-mercato/core/modules/customer_accounts/services/customerTokenService";
+import { CustomerRbacService } from "@open-mercato/core/modules/customer_accounts/services/customerRbacService";
+import { CustomerInvitationService } from "@open-mercato/core/modules/customer_accounts/services/customerInvitationService";
+function register(container) {
+  container.register({ customerUserService: asClass(CustomerUserService).scoped() });
+  container.register({ customerSessionService: asClass(CustomerSessionService).scoped() });
+  container.register({ customerTokenService: asClass(CustomerTokenService).scoped() });
+  container.register({ customerRbacService: asClass(CustomerRbacService).scoped() });
+  container.register({ customerInvitationService: asClass(CustomerInvitationService).scoped() });
+}
+export {
+  register
+};
+//# sourceMappingURL=di.js.map

package/dist/modules/customer_accounts/di.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/customer_accounts/di.ts"],
+  "sourcesContent": ["import { asClass } from 'awilix'\nimport type { AppContainer } from '@open-mercato/shared/lib/di/container'\nimport { CustomerUserService } from '@open-mercato/core/modules/customer_accounts/services/customerUserService'\nimport { CustomerSessionService } from '@open-mercato/core/modules/customer_accounts/services/customerSessionService'\nimport { CustomerTokenService } from '@open-mercato/core/modules/customer_accounts/services/customerTokenService'\nimport { CustomerRbacService } from '@open-mercato/core/modules/customer_accounts/services/customerRbacService'\nimport { CustomerInvitationService } from '@open-mercato/core/modules/customer_accounts/services/customerInvitationService'\n\nexport function register(container: AppContainer) {\n  container.register({ customerUserService: asClass(CustomerUserService).scoped() })\n  container.register({ customerSessionService: asClass(CustomerSessionService).scoped() })\n  container.register({ customerTokenService: asClass(CustomerTokenService).scoped() })\n  container.register({ customerRbacService: asClass(CustomerRbacService).scoped() })\n  container.register({ customerInvitationService: asClass(CustomerInvitationService).scoped() })\n}\n"],
+  "mappings": "AAAA,SAAS,eAAe;AAExB,SAAS,2BAA2B;AACpC,SAAS,8BAA8B;AACvC,SAAS,4BAA4B;AACrC,SAAS,2BAA2B;AACpC,SAAS,iCAAiC;AAEnC,SAAS,SAAS,WAAyB;AAChD,YAAU,SAAS,EAAE,qBAAqB,QAAQ,mBAAmB,EAAE,OAAO,EAAE,CAAC;AACjF,YAAU,SAAS,EAAE,wBAAwB,QAAQ,sBAAsB,EAAE,OAAO,EAAE,CAAC;AACvF,YAAU,SAAS,EAAE,sBAAsB,QAAQ,oBAAoB,EAAE,OAAO,EAAE,CAAC;AACnF,YAAU,SAAS,EAAE,qBAAqB,QAAQ,mBAAmB,EAAE,OAAO,EAAE,CAAC;AACjF,YAAU,SAAS,EAAE,2BAA2B,QAAQ,yBAAyB,EAAE,OAAO,EAAE,CAAC;AAC/F;",
+  "names": []
+}

package/dist/modules/customer_accounts/events.js ADDED Viewed

@@ -0,0 +1,28 @@
+import { createModuleEvents } from "@open-mercato/shared/modules/events";
+const events = [
+  { id: "customer_accounts.user.created", label: "Customer User Created", entity: "user", category: "crud", clientBroadcast: true },
+  { id: "customer_accounts.user.updated", label: "Customer User Updated", entity: "user", category: "crud", portalBroadcast: true },
+  { id: "customer_accounts.user.deleted", label: "Customer User Deleted", entity: "user", category: "crud" },
+  { id: "customer_accounts.user.locked", label: "Customer User Locked", entity: "user", category: "lifecycle", portalBroadcast: true },
+  { id: "customer_accounts.user.unlocked", label: "Customer User Unlocked", entity: "user", category: "lifecycle", portalBroadcast: true },
+  { id: "customer_accounts.login.success", label: "Customer Login Successful", category: "lifecycle" },
+  { id: "customer_accounts.login.failed", label: "Customer Login Failed", category: "lifecycle" },
+  { id: "customer_accounts.email.verified", label: "Customer Email Verified", category: "lifecycle", portalBroadcast: true },
+  { id: "customer_accounts.password.reset", label: "Customer Password Reset", category: "lifecycle", portalBroadcast: true },
+  { id: "customer_accounts.role.created", label: "Customer Role Created", entity: "role", category: "crud" },
+  { id: "customer_accounts.role.updated", label: "Customer Role Updated", entity: "role", category: "crud", portalBroadcast: true },
+  { id: "customer_accounts.role.deleted", label: "Customer Role Deleted", entity: "role", category: "crud" },
+  { id: "customer_accounts.invitation.accepted", label: "Customer Invitation Accepted", category: "lifecycle", clientBroadcast: true }
+];
+const eventsConfig = createModuleEvents({
+  moduleId: "customer_accounts",
+  events
+});
+const emitCustomerAccountsEvent = eventsConfig.emit;
+var events_default = eventsConfig;
+export {
+  events_default as default,
+  emitCustomerAccountsEvent,
+  eventsConfig
+};
+//# sourceMappingURL=events.js.map

package/dist/modules/customer_accounts/events.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/customer_accounts/events.ts"],
+  "sourcesContent": ["import { createModuleEvents } from '@open-mercato/shared/modules/events'\n\nconst events = [\n  { id: 'customer_accounts.user.created', label: 'Customer User Created', entity: 'user', category: 'crud', clientBroadcast: true },\n  { id: 'customer_accounts.user.updated', label: 'Customer User Updated', entity: 'user', category: 'crud', portalBroadcast: true },\n  { id: 'customer_accounts.user.deleted', label: 'Customer User Deleted', entity: 'user', category: 'crud' },\n  { id: 'customer_accounts.user.locked', label: 'Customer User Locked', entity: 'user', category: 'lifecycle', portalBroadcast: true },\n  { id: 'customer_accounts.user.unlocked', label: 'Customer User Unlocked', entity: 'user', category: 'lifecycle', portalBroadcast: true },\n  { id: 'customer_accounts.login.success', label: 'Customer Login Successful', category: 'lifecycle' },\n  { id: 'customer_accounts.login.failed', label: 'Customer Login Failed', category: 'lifecycle' },\n  { id: 'customer_accounts.email.verified', label: 'Customer Email Verified', category: 'lifecycle', portalBroadcast: true },\n  { id: 'customer_accounts.password.reset', label: 'Customer Password Reset', category: 'lifecycle', portalBroadcast: true },\n  { id: 'customer_accounts.role.created', label: 'Customer Role Created', entity: 'role', category: 'crud' },\n  { id: 'customer_accounts.role.updated', label: 'Customer Role Updated', entity: 'role', category: 'crud', portalBroadcast: true },\n  { id: 'customer_accounts.role.deleted', label: 'Customer Role Deleted', entity: 'role', category: 'crud' },\n  { id: 'customer_accounts.invitation.accepted', label: 'Customer Invitation Accepted', category: 'lifecycle', clientBroadcast: true },\n] as const\n\nexport const eventsConfig = createModuleEvents({\n  moduleId: 'customer_accounts',\n  events,\n})\n\nexport const emitCustomerAccountsEvent = eventsConfig.emit\n\nexport type CustomerAccountsEventId = typeof events[number]['id']\n\nexport default eventsConfig\n"],
+  "mappings": "AAAA,SAAS,0BAA0B;AAEnC,MAAM,SAAS;AAAA,EACb,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,QAAQ,iBAAiB,KAAK;AAAA,EAChI,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,QAAQ,iBAAiB,KAAK;AAAA,EAChI,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,OAAO;AAAA,EACzG,EAAE,IAAI,iCAAiC,OAAO,wBAAwB,QAAQ,QAAQ,UAAU,aAAa,iBAAiB,KAAK;AAAA,EACnI,EAAE,IAAI,mCAAmC,OAAO,0BAA0B,QAAQ,QAAQ,UAAU,aAAa,iBAAiB,KAAK;AAAA,EACvI,EAAE,IAAI,mCAAmC,OAAO,6BAA6B,UAAU,YAAY;AAAA,EACnG,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,UAAU,YAAY;AAAA,EAC9F,EAAE,IAAI,oCAAoC,OAAO,2BAA2B,UAAU,aAAa,iBAAiB,KAAK;AAAA,EACzH,EAAE,IAAI,oCAAoC,OAAO,2BAA2B,UAAU,aAAa,iBAAiB,KAAK;AAAA,EACzH,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,OAAO;AAAA,EACzG,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,QAAQ,iBAAiB,KAAK;AAAA,EAChI,EAAE,IAAI,kCAAkC,OAAO,yBAAyB,QAAQ,QAAQ,UAAU,OAAO;AAAA,EACzG,EAAE,IAAI,yCAAyC,OAAO,gCAAgC,UAAU,aAAa,iBAAiB,KAAK;AACrI;AAEO,MAAM,eAAe,mBAAmB;AAAA,EAC7C,UAAU;AAAA,EACV;AACF,CAAC;AAEM,MAAM,4BAA4B,aAAa;AAItD,IAAO,iBAAQ;",
+  "names": []
+}

package/dist/modules/customer_accounts/index.js ADDED Viewed

@@ -0,0 +1,15 @@
+const metadata = {
+  name: "customer_accounts",
+  title: "Customer Identity & Portal Authentication",
+  version: "0.1.0",
+  description: "Customer-facing authentication with two-tier identity model and full RBAC.",
+  author: "Open Mercato Team",
+  license: "Proprietary",
+  ejectable: true
+};
+import { features } from "./acl.js";
+export {
+  features,
+  metadata
+};
+//# sourceMappingURL=index.js.map

package/dist/modules/customer_accounts/index.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/customer_accounts/index.ts"],
+  "sourcesContent": ["import type { ModuleInfo } from '@open-mercato/shared/modules/registry'\n\nexport const metadata: ModuleInfo = {\n  name: 'customer_accounts',\n  title: 'Customer Identity & Portal Authentication',\n  version: '0.1.0',\n  description: 'Customer-facing authentication with two-tier identity model and full RBAC.',\n  author: 'Open Mercato Team',\n  license: 'Proprietary',\n  ejectable: true,\n}\n\nexport { features } from './acl'\n"],
+  "mappings": "AAEO,MAAM,WAAuB;AAAA,EAClC,MAAM;AAAA,EACN,OAAO;AAAA,EACP,SAAS;AAAA,EACT,aAAa;AAAA,EACb,QAAQ;AAAA,EACR,SAAS;AAAA,EACT,WAAW;AACb;AAEA,SAAS,gBAAgB;",
+  "names": []
+}

package/dist/modules/customer_accounts/lib/customerAuth.js ADDED Viewed

@@ -0,0 +1,71 @@
+import { NextResponse } from "next/server";
+import { verifyJwt } from "@open-mercato/shared/lib/auth/jwt";
+import { hasAllFeatures } from "@open-mercato/shared/lib/auth/featureMatch";
+function readCookieFromHeader(header, name) {
+  if (!header) return void 0;
+  const parts = header.split(";");
+  for (const part of parts) {
+    const trimmed = part.trim();
+    if (trimmed.startsWith(`${name}=`)) {
+      return trimmed.slice(name.length + 1);
+    }
+  }
+  return void 0;
+}
+async function getCustomerAuthFromRequest(req) {
+  const cookieHeader = req.headers.get("cookie") || "";
+  const authHeader = (req.headers.get("authorization") || "").trim();
+  let token;
+  if (authHeader.toLowerCase().startsWith("bearer ")) {
+    token = authHeader.slice(7).trim();
+  }
+  if (!token) {
+    const cookieValue = readCookieFromHeader(cookieHeader, "customer_auth_token");
+    if (cookieValue) {
+      try {
+        token = decodeURIComponent(cookieValue);
+      } catch {
+        token = cookieValue;
+      }
+    }
+  }
+  if (!token) return null;
+  try {
+    const payload = verifyJwt(token);
+    if (!payload) return null;
+    if (payload.type !== "customer") return null;
+    return {
+      sub: String(payload.sub),
+      type: "customer",
+      tenantId: String(payload.tenantId),
+      orgId: String(payload.orgId),
+      email: String(payload.email || ""),
+      displayName: String(payload.displayName || ""),
+      customerEntityId: payload.customerEntityId ? String(payload.customerEntityId) : null,
+      personEntityId: payload.personEntityId ? String(payload.personEntityId) : null,
+      resolvedFeatures: Array.isArray(payload.resolvedFeatures) ? payload.resolvedFeatures : []
+    };
+  } catch {
+    return null;
+  }
+}
+async function requireCustomerAuth(req) {
+  const auth = await getCustomerAuthFromRequest(req);
+  if (!auth) {
+    throw NextResponse.json({ ok: false, error: "Authentication required" }, { status: 401 });
+  }
+  return auth;
+}
+function requireCustomerFeature(auth, features) {
+  if (!features.length) return;
+  if (!hasAllFeatures(features, auth.resolvedFeatures)) {
+    throw NextResponse.json({ ok: false, error: "Insufficient permissions" }, { status: 403 });
+  }
+}
+export {
+  getCustomerAuthFromRequest,
+  readCookieFromHeader,
+  requireCustomerAuth,
+  requireCustomerFeature
+};
+//# sourceMappingURL=customerAuth.js.map

package/dist/modules/customer_accounts/lib/customerAuth.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/lib/customerAuth.ts"],
+  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { verifyJwt } from '@open-mercato/shared/lib/auth/jwt'\nimport { hasAllFeatures } from '@open-mercato/shared/lib/auth/featureMatch'\n\nexport interface CustomerAuthContext {\n  sub: string\n  type: 'customer'\n  tenantId: string\n  orgId: string\n  email: string\n  displayName: string\n  customerEntityId?: string | null\n  personEntityId?: string | null\n  resolvedFeatures: string[]\n}\n\nexport function readCookieFromHeader(header: string | null | undefined, name: string): string | undefined {\n  if (!header) return undefined\n  const parts = header.split(';')\n  for (const part of parts) {\n    const trimmed = part.trim()\n    if (trimmed.startsWith(`${name}=`)) {\n      return trimmed.slice(name.length + 1)\n    }\n  }\n  return undefined\n}\n\nexport async function getCustomerAuthFromRequest(req: Request): Promise<CustomerAuthContext | null> {\n  const cookieHeader = req.headers.get('cookie') || ''\n  const authHeader = (req.headers.get('authorization') || '').trim()\n\n  let token: string | undefined\n  if (authHeader.toLowerCase().startsWith('bearer ')) {\n    token = authHeader.slice(7).trim()\n  }\n  if (!token) {\n    const cookieValue = readCookieFromHeader(cookieHeader, 'customer_auth_token')\n    if (cookieValue) {\n      try {\n        token = decodeURIComponent(cookieValue)\n      } catch {\n        // Malformed percent-encoding; use raw value\n        token = cookieValue\n      }\n    }\n  }\n  if (!token) return null\n\n  try {\n    const payload = verifyJwt(token) as Record<string, unknown> | null\n    if (!payload) return null\n    if (payload.type !== 'customer') return null\n\n    return {\n      sub: String(payload.sub),\n      type: 'customer',\n      tenantId: String(payload.tenantId),\n      orgId: String(payload.orgId),\n      email: String(payload.email || ''),\n      displayName: String(payload.displayName || ''),\n      customerEntityId: payload.customerEntityId ? String(payload.customerEntityId) : null,\n      personEntityId: payload.personEntityId ? String(payload.personEntityId) : null,\n      resolvedFeatures: Array.isArray(payload.resolvedFeatures) ? payload.resolvedFeatures as string[] : [],\n    }\n  } catch {\n    // Invalid or expired JWT \u2014 treat as unauthenticated\n    return null\n  }\n}\n\nexport async function requireCustomerAuth(req: Request): Promise<CustomerAuthContext> {\n  const auth = await getCustomerAuthFromRequest(req)\n  if (!auth) {\n    throw NextResponse.json({ ok: false, error: 'Authentication required' }, { status: 401 })\n  }\n  return auth\n}\n\nexport function requireCustomerFeature(auth: CustomerAuthContext, features: string[]): void {\n  if (!features.length) return\n  if (!hasAllFeatures(features, auth.resolvedFeatures)) {\n    throw NextResponse.json({ ok: false, error: 'Insufficient permissions' }, { status: 403 })\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,iBAAiB;AAC1B,SAAS,sBAAsB;AAcxB,SAAS,qBAAqB,QAAmC,MAAkC;AACxG,MAAI,CAAC,OAAQ,QAAO;AACpB,QAAM,QAAQ,OAAO,MAAM,GAAG;AAC9B,aAAW,QAAQ,OAAO;AACxB,UAAM,UAAU,KAAK,KAAK;AAC1B,QAAI,QAAQ,WAAW,GAAG,IAAI,GAAG,GAAG;AAClC,aAAO,QAAQ,MAAM,KAAK,SAAS,CAAC;AAAA,IACtC;AAAA,EACF;AACA,SAAO;AACT;AAEA,eAAsB,2BAA2B,KAAmD;AAClG,QAAM,eAAe,IAAI,QAAQ,IAAI,QAAQ,KAAK;AAClD,QAAM,cAAc,IAAI,QAAQ,IAAI,eAAe,KAAK,IAAI,KAAK;AAEjE,MAAI;AACJ,MAAI,WAAW,YAAY,EAAE,WAAW,SAAS,GAAG;AAClD,YAAQ,WAAW,MAAM,CAAC,EAAE,KAAK;AAAA,EACnC;AACA,MAAI,CAAC,OAAO;AACV,UAAM,cAAc,qBAAqB,cAAc,qBAAqB;AAC5E,QAAI,aAAa;AACf,UAAI;AACF,gBAAQ,mBAAmB,WAAW;AAAA,MACxC,QAAQ;AAEN,gBAAQ;AAAA,MACV;AAAA,IACF;AAAA,EACF;AACA,MAAI,CAAC,MAAO,QAAO;AAEnB,MAAI;AACF,UAAM,UAAU,UAAU,KAAK;AAC/B,QAAI,CAAC,QAAS,QAAO;AACrB,QAAI,QAAQ,SAAS,WAAY,QAAO;AAExC,WAAO;AAAA,MACL,KAAK,OAAO,QAAQ,GAAG;AAAA,MACvB,MAAM;AAAA,MACN,UAAU,OAAO,QAAQ,QAAQ;AAAA,MACjC,OAAO,OAAO,QAAQ,KAAK;AAAA,MAC3B,OAAO,OAAO,QAAQ,SAAS,EAAE;AAAA,MACjC,aAAa,OAAO,QAAQ,eAAe,EAAE;AAAA,MAC7C,kBAAkB,QAAQ,mBAAmB,OAAO,QAAQ,gBAAgB,IAAI;AAAA,MAChF,gBAAgB,QAAQ,iBAAiB,OAAO,QAAQ,cAAc,IAAI;AAAA,MAC1E,kBAAkB,MAAM,QAAQ,QAAQ,gBAAgB,IAAI,QAAQ,mBAA+B,CAAC;AAAA,IACtG;AAAA,EACF,QAAQ;AAEN,WAAO;AAAA,EACT;AACF;AAEA,eAAsB,oBAAoB,KAA4C;AACpF,QAAM,OAAO,MAAM,2BAA2B,GAAG;AACjD,MAAI,CAAC,MAAM;AACT,UAAM,aAAa,KAAK,EAAE,IAAI,OAAO,OAAO,0BAA0B,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC1F;AACA,SAAO;AACT;AAEO,SAAS,uBAAuB,MAA2B,UAA0B;AAC1F,MAAI,CAAC,SAAS,OAAQ;AACtB,MAAI,CAAC,eAAe,UAAU,KAAK,gBAAgB,GAAG;AACpD,UAAM,aAAa,KAAK,EAAE,IAAI,OAAO,OAAO,2BAA2B,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC3F;AACF;",
+  "names": []
+}

package/dist/modules/customer_accounts/lib/customerAuthServer.js ADDED Viewed

@@ -0,0 +1,29 @@
+import { cookies } from "next/headers";
+import { verifyJwt } from "@open-mercato/shared/lib/auth/jwt";
+async function getCustomerAuthFromCookies() {
+  const cookieStore = await cookies();
+  const token = cookieStore.get("customer_auth_token")?.value;
+  if (!token) return null;
+  try {
+    const payload = verifyJwt(token);
+    if (!payload) return null;
+    if (payload.type !== "customer") return null;
+    return {
+      sub: String(payload.sub),
+      type: "customer",
+      tenantId: String(payload.tenantId),
+      orgId: String(payload.orgId),
+      email: String(payload.email || ""),
+      displayName: String(payload.displayName || ""),
+      customerEntityId: payload.customerEntityId ? String(payload.customerEntityId) : null,
+      personEntityId: payload.personEntityId ? String(payload.personEntityId) : null,
+      resolvedFeatures: Array.isArray(payload.resolvedFeatures) ? payload.resolvedFeatures : []
+    };
+  } catch {
+    return null;
+  }
+}
+export {
+  getCustomerAuthFromCookies
+};
+//# sourceMappingURL=customerAuthServer.js.map

package/dist/modules/customer_accounts/lib/customerAuthServer.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/lib/customerAuthServer.ts"],
+  "sourcesContent": ["/**\n * Server-side customer auth helpers for Next.js server components.\n *\n * Uses the `cookies()` API from `next/headers` to read the customer auth token\n * from cookies \u2014 analogous to `getAuthFromCookies()` for staff auth.\n */\n\nimport { cookies } from 'next/headers'\nimport { verifyJwt } from '@open-mercato/shared/lib/auth/jwt'\nimport type { CustomerAuthContext } from './customerAuth'\n\nexport type { CustomerAuthContext }\n\n/**\n * Read and verify customer auth from cookies in server components.\n *\n * Returns the customer auth context if a valid customer JWT is found,\n * or null if not authenticated.\n *\n * @example\n * ```tsx\n * // In a server component or catch-all route\n * import { getCustomerAuthFromCookies } from '@open-mercato/core/modules/customer_accounts/lib/customerAuthServer'\n *\n * const customerAuth = await getCustomerAuthFromCookies()\n * if (!customerAuth) redirect('/login')\n * ```\n */\nexport async function getCustomerAuthFromCookies(): Promise<CustomerAuthContext | null> {\n  const cookieStore = await cookies()\n  const token = cookieStore.get('customer_auth_token')?.value\n  if (!token) return null\n\n  try {\n    const payload = verifyJwt(token) as Record<string, unknown> | null\n    if (!payload) return null\n    if (payload.type !== 'customer') return null\n\n    return {\n      sub: String(payload.sub),\n      type: 'customer',\n      tenantId: String(payload.tenantId),\n      orgId: String(payload.orgId),\n      email: String(payload.email || ''),\n      displayName: String(payload.displayName || ''),\n      customerEntityId: payload.customerEntityId ? String(payload.customerEntityId) : null,\n      personEntityId: payload.personEntityId ? String(payload.personEntityId) : null,\n      resolvedFeatures: Array.isArray(payload.resolvedFeatures) ? payload.resolvedFeatures as string[] : [],\n    }\n  } catch {\n    // Invalid or expired JWT \u2014 treat as unauthenticated\n    return null\n  }\n}\n"],
+  "mappings": "AAOA,SAAS,eAAe;AACxB,SAAS,iBAAiB;AAoB1B,eAAsB,6BAAkE;AACtF,QAAM,cAAc,MAAM,QAAQ;AAClC,QAAM,QAAQ,YAAY,IAAI,qBAAqB,GAAG;AACtD,MAAI,CAAC,MAAO,QAAO;AAEnB,MAAI;AACF,UAAM,UAAU,UAAU,KAAK;AAC/B,QAAI,CAAC,QAAS,QAAO;AACrB,QAAI,QAAQ,SAAS,WAAY,QAAO;AAExC,WAAO;AAAA,MACL,KAAK,OAAO,QAAQ,GAAG;AAAA,MACvB,MAAM;AAAA,MACN,UAAU,OAAO,QAAQ,QAAQ;AAAA,MACjC,OAAO,OAAO,QAAQ,KAAK;AAAA,MAC3B,OAAO,OAAO,QAAQ,SAAS,EAAE;AAAA,MACjC,aAAa,OAAO,QAAQ,eAAe,EAAE;AAAA,MAC7C,kBAAkB,QAAQ,mBAAmB,OAAO,QAAQ,gBAAgB,IAAI;AAAA,MAChF,gBAAgB,QAAQ,iBAAiB,OAAO,QAAQ,cAAc,IAAI;AAAA,MAC1E,kBAAkB,MAAM,QAAQ,QAAQ,gBAAgB,IAAI,QAAQ,mBAA+B,CAAC;AAAA,IACtG;AAAA,EACF,QAAQ;AAEN,WAAO;AAAA,EACT;AACF;",
+  "names": []
+}

package/dist/modules/customer_accounts/lib/rateLimiter.js ADDED Viewed

@@ -0,0 +1,63 @@
+import { checkAuthRateLimit, resetAuthRateLimit } from "@open-mercato/core/modules/auth/lib/rateLimitCheck";
+import { readEndpointRateLimitConfig } from "@open-mercato/shared/lib/ratelimit/config";
+const customerLoginRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_LOGIN", {
+  points: 5,
+  duration: 60,
+  blockDuration: 60,
+  keyPrefix: "customer-login"
+});
+const customerLoginIpRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_LOGIN_IP", {
+  points: 20,
+  duration: 60,
+  blockDuration: 60,
+  keyPrefix: "customer-login-ip"
+});
+const customerSignupRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_SIGNUP", {
+  points: 3,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-signup"
+});
+const customerSignupIpRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_SIGNUP_IP", {
+  points: 10,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-signup-ip"
+});
+const customerPasswordResetRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_PASSWORD_RESET", {
+  points: 3,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-password-reset"
+});
+const customerPasswordResetIpRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_PASSWORD_RESET_IP", {
+  points: 10,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-password-reset-ip"
+});
+const customerMagicLinkRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_MAGIC_LINK", {
+  points: 3,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-magic-link"
+});
+const customerMagicLinkIpRateLimitConfig = readEndpointRateLimitConfig("CUSTOMER_MAGIC_LINK_IP", {
+  points: 10,
+  duration: 60,
+  blockDuration: 120,
+  keyPrefix: "customer-magic-link-ip"
+});
+export {
+  checkAuthRateLimit,
+  customerLoginIpRateLimitConfig,
+  customerLoginRateLimitConfig,
+  customerMagicLinkIpRateLimitConfig,
+  customerMagicLinkRateLimitConfig,
+  customerPasswordResetIpRateLimitConfig,
+  customerPasswordResetRateLimitConfig,
+  customerSignupIpRateLimitConfig,
+  customerSignupRateLimitConfig,
+  resetAuthRateLimit
+};
+//# sourceMappingURL=rateLimiter.js.map

package/dist/modules/customer_accounts/lib/rateLimiter.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/lib/rateLimiter.ts"],
+  "sourcesContent": ["import { checkAuthRateLimit, resetAuthRateLimit } from '@open-mercato/core/modules/auth/lib/rateLimitCheck'\nimport { readEndpointRateLimitConfig } from '@open-mercato/shared/lib/ratelimit/config'\n\nexport const customerLoginRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_LOGIN', {\n  points: 5, duration: 60, blockDuration: 60, keyPrefix: 'customer-login',\n})\n\nexport const customerLoginIpRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_LOGIN_IP', {\n  points: 20, duration: 60, blockDuration: 60, keyPrefix: 'customer-login-ip',\n})\n\nexport const customerSignupRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_SIGNUP', {\n  points: 3, duration: 60, blockDuration: 120, keyPrefix: 'customer-signup',\n})\n\nexport const customerSignupIpRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_SIGNUP_IP', {\n  points: 10, duration: 60, blockDuration: 120, keyPrefix: 'customer-signup-ip',\n})\n\nexport const customerPasswordResetRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_PASSWORD_RESET', {\n  points: 3, duration: 60, blockDuration: 120, keyPrefix: 'customer-password-reset',\n})\n\nexport const customerPasswordResetIpRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_PASSWORD_RESET_IP', {\n  points: 10, duration: 60, blockDuration: 120, keyPrefix: 'customer-password-reset-ip',\n})\n\nexport const customerMagicLinkRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_MAGIC_LINK', {\n  points: 3, duration: 60, blockDuration: 120, keyPrefix: 'customer-magic-link',\n})\n\nexport const customerMagicLinkIpRateLimitConfig = readEndpointRateLimitConfig('CUSTOMER_MAGIC_LINK_IP', {\n  points: 10, duration: 60, blockDuration: 120, keyPrefix: 'customer-magic-link-ip',\n})\n\nexport { checkAuthRateLimit, resetAuthRateLimit }\n"],
+  "mappings": "AAAA,SAAS,oBAAoB,0BAA0B;AACvD,SAAS,mCAAmC;AAErC,MAAM,+BAA+B,4BAA4B,kBAAkB;AAAA,EACxF,QAAQ;AAAA,EAAG,UAAU;AAAA,EAAI,eAAe;AAAA,EAAI,WAAW;AACzD,CAAC;AAEM,MAAM,iCAAiC,4BAA4B,qBAAqB;AAAA,EAC7F,QAAQ;AAAA,EAAI,UAAU;AAAA,EAAI,eAAe;AAAA,EAAI,WAAW;AAC1D,CAAC;AAEM,MAAM,gCAAgC,4BAA4B,mBAAmB;AAAA,EAC1F,QAAQ;AAAA,EAAG,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC1D,CAAC;AAEM,MAAM,kCAAkC,4BAA4B,sBAAsB;AAAA,EAC/F,QAAQ;AAAA,EAAI,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC3D,CAAC;AAEM,MAAM,uCAAuC,4BAA4B,2BAA2B;AAAA,EACzG,QAAQ;AAAA,EAAG,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC1D,CAAC;AAEM,MAAM,yCAAyC,4BAA4B,8BAA8B;AAAA,EAC9G,QAAQ;AAAA,EAAI,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC3D,CAAC;AAEM,MAAM,mCAAmC,4BAA4B,uBAAuB;AAAA,EACjG,QAAQ;AAAA,EAAG,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC1D,CAAC;AAEM,MAAM,qCAAqC,4BAA4B,0BAA0B;AAAA,EACtG,QAAQ;AAAA,EAAI,UAAU;AAAA,EAAI,eAAe;AAAA,EAAK,WAAW;AAC3D,CAAC;",
+  "names": []
+}

package/dist/modules/customer_accounts/lib/tokenGenerator.js ADDED Viewed

@@ -0,0 +1,12 @@
+import crypto from "node:crypto";
+function generateSecureToken() {
+  return crypto.randomBytes(32).toString("base64url");
+}
+function hashToken(token) {
+  return crypto.createHash("sha256").update(token).digest("hex");
+}
+export {
+  generateSecureToken,
+  hashToken
+};
+//# sourceMappingURL=tokenGenerator.js.map

package/dist/modules/customer_accounts/lib/tokenGenerator.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/lib/tokenGenerator.ts"],
+  "sourcesContent": ["import crypto from 'node:crypto'\n\nexport function generateSecureToken(): string {\n  return crypto.randomBytes(32).toString('base64url')\n}\n\nexport function hashToken(token: string): string {\n  return crypto.createHash('sha256').update(token).digest('hex')\n}\n"],
+  "mappings": "AAAA,OAAO,YAAY;AAEZ,SAAS,sBAA8B;AAC5C,SAAO,OAAO,YAAY,EAAE,EAAE,SAAS,WAAW;AACpD;AAEO,SAAS,UAAU,OAAuB;AAC/C,SAAO,OAAO,WAAW,QAAQ,EAAE,OAAO,KAAK,EAAE,OAAO,KAAK;AAC/D;",
+  "names": []
+}

package/dist/modules/customer_accounts/migrations/Migration20260313222043.js ADDED Viewed

@@ -0,0 +1,49 @@
+import { Migration } from "@mikro-orm/migrations";
+class Migration20260313222043 extends Migration {
+  async up() {
+    this.addSql(`create table "customer_roles" ("id" uuid not null default gen_random_uuid(), "tenant_id" uuid not null, "organization_id" uuid not null, "name" text not null, "slug" text not null, "description" text null, "is_default" boolean not null default false, "is_system" boolean not null default false, "customer_assignable" boolean not null default false, "created_at" timestamptz not null, "updated_at" timestamptz null, "deleted_at" timestamptz null, constraint "customer_roles_pkey" primary key ("id"));`);
+    this.addSql(`alter table "customer_roles" add constraint "customer_roles_tenant_slug_uniq" unique ("tenant_id", "slug");`);
+    this.addSql(`create table "customer_role_acls" ("id" uuid not null default gen_random_uuid(), "role_id" uuid not null, "tenant_id" uuid not null, "features_json" jsonb null, "is_portal_admin" boolean not null default false, "created_at" timestamptz not null, "updated_at" timestamptz null, "deleted_at" timestamptz null, constraint "customer_role_acls_pkey" primary key ("id"));`);
+    this.addSql(`alter table "customer_role_acls" add constraint "customer_role_acls_role_tenant_uniq" unique ("role_id", "tenant_id");`);
+    this.addSql(`create table "customer_users" ("id" uuid not null default gen_random_uuid(), "tenant_id" uuid not null, "organization_id" uuid not null, "email" text not null, "email_hash" text not null, "password_hash" text null, "display_name" text not null, "email_verified_at" timestamptz null, "failed_login_attempts" int not null default 0, "locked_until" timestamptz null, "last_login_at" timestamptz null, "person_entity_id" uuid null, "customer_entity_id" uuid null, "is_active" boolean not null default true, "created_at" timestamptz not null, "updated_at" timestamptz null, "deleted_at" timestamptz null, constraint "customer_users_pkey" primary key ("id"));`);
+    this.addSql(`create index "customer_users_email_hash_idx" on "customer_users" ("email_hash");`);
+    this.addSql(`create index "customer_users_person_entity_idx" on "customer_users" ("person_entity_id");`);
+    this.addSql(`create index "customer_users_customer_entity_idx" on "customer_users" ("customer_entity_id");`);
+    this.addSql(`alter table "customer_users" add constraint "customer_users_tenant_email_hash_uniq" unique ("tenant_id", "email_hash");`);
+    this.addSql(`create table "customer_user_acls" ("id" uuid not null default gen_random_uuid(), "user_id" uuid not null, "tenant_id" uuid not null, "features_json" jsonb null, "is_portal_admin" boolean not null default false, "created_at" timestamptz not null, "updated_at" timestamptz null, "deleted_at" timestamptz null, constraint "customer_user_acls_pkey" primary key ("id"));`);
+    this.addSql(`alter table "customer_user_acls" add constraint "customer_user_acls_user_tenant_uniq" unique ("user_id", "tenant_id");`);
+    this.addSql(`create table "customer_user_email_verifications" ("id" uuid not null default gen_random_uuid(), "user_id" uuid not null, "token" text not null, "purpose" text not null default 'email_verification', "expires_at" timestamptz not null, "used_at" timestamptz null, "created_at" timestamptz not null, constraint "customer_user_email_verifications_pkey" primary key ("id"));`);
+    this.addSql(`create index "customer_user_email_verifications_token_idx" on "customer_user_email_verifications" ("token");`);
+    this.addSql(`create table "customer_user_invitations" ("id" uuid not null default gen_random_uuid(), "tenant_id" uuid not null, "organization_id" uuid not null, "email" text not null, "email_hash" text not null, "token" text not null, "customer_entity_id" uuid null, "role_ids_json" jsonb null, "invited_by_user_id" uuid null, "invited_by_customer_user_id" uuid null, "display_name" text null, "expires_at" timestamptz not null, "accepted_at" timestamptz null, "cancelled_at" timestamptz null, "created_at" timestamptz not null, constraint "customer_user_invitations_pkey" primary key ("id"));`);
+    this.addSql(`create index "customer_user_invitations_tenant_email_hash_idx" on "customer_user_invitations" ("tenant_id", "email_hash");`);
+    this.addSql(`create index "customer_user_invitations_token_idx" on "customer_user_invitations" ("token");`);
+    this.addSql(`create table "customer_user_password_resets" ("id" uuid not null default gen_random_uuid(), "user_id" uuid not null, "token" text not null, "expires_at" timestamptz not null, "used_at" timestamptz null, "created_at" timestamptz not null, constraint "customer_user_password_resets_pkey" primary key ("id"));`);
+    this.addSql(`create index "customer_user_password_resets_token_idx" on "customer_user_password_resets" ("token");`);
+    this.addSql(`create table "customer_user_roles" ("id" uuid not null default gen_random_uuid(), "user_id" uuid not null, "role_id" uuid not null, "created_at" timestamptz not null, "deleted_at" timestamptz null, constraint "customer_user_roles_pkey" primary key ("id"));`);
+    this.addSql(`alter table "customer_user_roles" add constraint "customer_user_roles_user_role_uniq" unique ("user_id", "role_id");`);
+    this.addSql(`create table "customer_user_sessions" ("id" uuid not null default gen_random_uuid(), "user_id" uuid not null, "token_hash" text not null, "ip_address" text null, "user_agent" text null, "expires_at" timestamptz not null, "last_used_at" timestamptz null, "created_at" timestamptz not null, "deleted_at" timestamptz null, constraint "customer_user_sessions_pkey" primary key ("id"));`);
+    this.addSql(`create index "customer_user_sessions_token_hash_idx" on "customer_user_sessions" ("token_hash");`);
+    this.addSql(`alter table "customer_role_acls" add constraint "customer_role_acls_role_id_foreign" foreign key ("role_id") references "customer_roles" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_acls" add constraint "customer_user_acls_user_id_foreign" foreign key ("user_id") references "customer_users" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_email_verifications" add constraint "customer_user_email_verifications_user_id_foreign" foreign key ("user_id") references "customer_users" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_password_resets" add constraint "customer_user_password_resets_user_id_foreign" foreign key ("user_id") references "customer_users" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_roles" add constraint "customer_user_roles_user_id_foreign" foreign key ("user_id") references "customer_users" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_roles" add constraint "customer_user_roles_role_id_foreign" foreign key ("role_id") references "customer_roles" ("id") on update cascade;`);
+    this.addSql(`alter table "customer_user_sessions" add constraint "customer_user_sessions_user_id_foreign" foreign key ("user_id") references "customer_users" ("id") on update cascade;`);
+  }
+  async down() {
+    this.addSql(`drop table if exists "customer_user_sessions" cascade;`);
+    this.addSql(`drop table if exists "customer_user_roles" cascade;`);
+    this.addSql(`drop table if exists "customer_user_password_resets" cascade;`);
+    this.addSql(`drop table if exists "customer_user_invitations" cascade;`);
+    this.addSql(`drop table if exists "customer_user_email_verifications" cascade;`);
+    this.addSql(`drop table if exists "customer_user_acls" cascade;`);
+    this.addSql(`drop table if exists "customer_role_acls" cascade;`);
+    this.addSql(`drop table if exists "customer_users" cascade;`);
+    this.addSql(`drop table if exists "customer_roles" cascade;`);
+  }
+}
+export {
+  Migration20260313222043
+};
+//# sourceMappingURL=Migration20260313222043.js.map

package/dist/modules/customer_accounts/migrations/Migration20260313222043.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/customer_accounts/migrations/Migration20260313222043.ts"],
+  "sourcesContent": ["import { Migration } from '@mikro-orm/migrations';\n\nexport class Migration20260313222043 extends Migration {\n\n  override async up(): Promise<void> {\n    this.addSql(`create table \"customer_roles\" (\"id\" uuid not null default gen_random_uuid(), \"tenant_id\" uuid not null, \"organization_id\" uuid not null, \"name\" text not null, \"slug\" text not null, \"description\" text null, \"is_default\" boolean not null default false, \"is_system\" boolean not null default false, \"customer_assignable\" boolean not null default false, \"created_at\" timestamptz not null, \"updated_at\" timestamptz null, \"deleted_at\" timestamptz null, constraint \"customer_roles_pkey\" primary key (\"id\"));`);\n    this.addSql(`alter table \"customer_roles\" add constraint \"customer_roles_tenant_slug_uniq\" unique (\"tenant_id\", \"slug\");`);\n\n    this.addSql(`create table \"customer_role_acls\" (\"id\" uuid not null default gen_random_uuid(), \"role_id\" uuid not null, \"tenant_id\" uuid not null, \"features_json\" jsonb null, \"is_portal_admin\" boolean not null default false, \"created_at\" timestamptz not null, \"updated_at\" timestamptz null, \"deleted_at\" timestamptz null, constraint \"customer_role_acls_pkey\" primary key (\"id\"));`);\n    this.addSql(`alter table \"customer_role_acls\" add constraint \"customer_role_acls_role_tenant_uniq\" unique (\"role_id\", \"tenant_id\");`);\n\n    this.addSql(`create table \"customer_users\" (\"id\" uuid not null default gen_random_uuid(), \"tenant_id\" uuid not null, \"organization_id\" uuid not null, \"email\" text not null, \"email_hash\" text not null, \"password_hash\" text null, \"display_name\" text not null, \"email_verified_at\" timestamptz null, \"failed_login_attempts\" int not null default 0, \"locked_until\" timestamptz null, \"last_login_at\" timestamptz null, \"person_entity_id\" uuid null, \"customer_entity_id\" uuid null, \"is_active\" boolean not null default true, \"created_at\" timestamptz not null, \"updated_at\" timestamptz null, \"deleted_at\" timestamptz null, constraint \"customer_users_pkey\" primary key (\"id\"));`);\n    this.addSql(`create index \"customer_users_email_hash_idx\" on \"customer_users\" (\"email_hash\");`);\n    this.addSql(`create index \"customer_users_person_entity_idx\" on \"customer_users\" (\"person_entity_id\");`);\n    this.addSql(`create index \"customer_users_customer_entity_idx\" on \"customer_users\" (\"customer_entity_id\");`);\n    this.addSql(`alter table \"customer_users\" add constraint \"customer_users_tenant_email_hash_uniq\" unique (\"tenant_id\", \"email_hash\");`);\n\n    this.addSql(`create table \"customer_user_acls\" (\"id\" uuid not null default gen_random_uuid(), \"user_id\" uuid not null, \"tenant_id\" uuid not null, \"features_json\" jsonb null, \"is_portal_admin\" boolean not null default false, \"created_at\" timestamptz not null, \"updated_at\" timestamptz null, \"deleted_at\" timestamptz null, constraint \"customer_user_acls_pkey\" primary key (\"id\"));`);\n    this.addSql(`alter table \"customer_user_acls\" add constraint \"customer_user_acls_user_tenant_uniq\" unique (\"user_id\", \"tenant_id\");`);\n\n    this.addSql(`create table \"customer_user_email_verifications\" (\"id\" uuid not null default gen_random_uuid(), \"user_id\" uuid not null, \"token\" text not null, \"purpose\" text not null default 'email_verification', \"expires_at\" timestamptz not null, \"used_at\" timestamptz null, \"created_at\" timestamptz not null, constraint \"customer_user_email_verifications_pkey\" primary key (\"id\"));`);\n    this.addSql(`create index \"customer_user_email_verifications_token_idx\" on \"customer_user_email_verifications\" (\"token\");`);\n\n    this.addSql(`create table \"customer_user_invitations\" (\"id\" uuid not null default gen_random_uuid(), \"tenant_id\" uuid not null, \"organization_id\" uuid not null, \"email\" text not null, \"email_hash\" text not null, \"token\" text not null, \"customer_entity_id\" uuid null, \"role_ids_json\" jsonb null, \"invited_by_user_id\" uuid null, \"invited_by_customer_user_id\" uuid null, \"display_name\" text null, \"expires_at\" timestamptz not null, \"accepted_at\" timestamptz null, \"cancelled_at\" timestamptz null, \"created_at\" timestamptz not null, constraint \"customer_user_invitations_pkey\" primary key (\"id\"));`);\n    this.addSql(`create index \"customer_user_invitations_tenant_email_hash_idx\" on \"customer_user_invitations\" (\"tenant_id\", \"email_hash\");`);\n    this.addSql(`create index \"customer_user_invitations_token_idx\" on \"customer_user_invitations\" (\"token\");`);\n\n    this.addSql(`create table \"customer_user_password_resets\" (\"id\" uuid not null default gen_random_uuid(), \"user_id\" uuid not null, \"token\" text not null, \"expires_at\" timestamptz not null, \"used_at\" timestamptz null, \"created_at\" timestamptz not null, constraint \"customer_user_password_resets_pkey\" primary key (\"id\"));`);\n    this.addSql(`create index \"customer_user_password_resets_token_idx\" on \"customer_user_password_resets\" (\"token\");`);\n\n    this.addSql(`create table \"customer_user_roles\" (\"id\" uuid not null default gen_random_uuid(), \"user_id\" uuid not null, \"role_id\" uuid not null, \"created_at\" timestamptz not null, \"deleted_at\" timestamptz null, constraint \"customer_user_roles_pkey\" primary key (\"id\"));`);\n    this.addSql(`alter table \"customer_user_roles\" add constraint \"customer_user_roles_user_role_uniq\" unique (\"user_id\", \"role_id\");`);\n\n    this.addSql(`create table \"customer_user_sessions\" (\"id\" uuid not null default gen_random_uuid(), \"user_id\" uuid not null, \"token_hash\" text not null, \"ip_address\" text null, \"user_agent\" text null, \"expires_at\" timestamptz not null, \"last_used_at\" timestamptz null, \"created_at\" timestamptz not null, \"deleted_at\" timestamptz null, constraint \"customer_user_sessions_pkey\" primary key (\"id\"));`);\n    this.addSql(`create index \"customer_user_sessions_token_hash_idx\" on \"customer_user_sessions\" (\"token_hash\");`);\n\n    this.addSql(`alter table \"customer_role_acls\" add constraint \"customer_role_acls_role_id_foreign\" foreign key (\"role_id\") references \"customer_roles\" (\"id\") on update cascade;`);\n\n    this.addSql(`alter table \"customer_user_acls\" add constraint \"customer_user_acls_user_id_foreign\" foreign key (\"user_id\") references \"customer_users\" (\"id\") on update cascade;`);\n\n    this.addSql(`alter table \"customer_user_email_verifications\" add constraint \"customer_user_email_verifications_user_id_foreign\" foreign key (\"user_id\") references \"customer_users\" (\"id\") on update cascade;`);\n\n    this.addSql(`alter table \"customer_user_password_resets\" add constraint \"customer_user_password_resets_user_id_foreign\" foreign key (\"user_id\") references \"customer_users\" (\"id\") on update cascade;`);\n\n    this.addSql(`alter table \"customer_user_roles\" add constraint \"customer_user_roles_user_id_foreign\" foreign key (\"user_id\") references \"customer_users\" (\"id\") on update cascade;`);\n    this.addSql(`alter table \"customer_user_roles\" add constraint \"customer_user_roles_role_id_foreign\" foreign key (\"role_id\") references \"customer_roles\" (\"id\") on update cascade;`);\n\n    this.addSql(`alter table \"customer_user_sessions\" add constraint \"customer_user_sessions_user_id_foreign\" foreign key (\"user_id\") references \"customer_users\" (\"id\") on update cascade;`);\n  }\n\n  override async down(): Promise<void> {\n    this.addSql(`drop table if exists \"customer_user_sessions\" cascade;`);\n    this.addSql(`drop table if exists \"customer_user_roles\" cascade;`);\n    this.addSql(`drop table if exists \"customer_user_password_resets\" cascade;`);\n    this.addSql(`drop table if exists \"customer_user_invitations\" cascade;`);\n    this.addSql(`drop table if exists \"customer_user_email_verifications\" cascade;`);\n    this.addSql(`drop table if exists \"customer_user_acls\" cascade;`);\n    this.addSql(`drop table if exists \"customer_role_acls\" cascade;`);\n    this.addSql(`drop table if exists \"customer_users\" cascade;`);\n    this.addSql(`drop table if exists \"customer_roles\" cascade;`);\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,iBAAiB;AAEnB,MAAM,gCAAgC,UAAU;AAAA,EAErD,MAAe,KAAoB;AACjC,SAAK,OAAO,qfAAqf;AACjgB,SAAK,OAAO,6GAA6G;AAEzH,SAAK,OAAO,+WAA+W;AAC3X,SAAK,OAAO,wHAAwH;AAEpI,SAAK,OAAO,+oBAA+oB;AAC3pB,SAAK,OAAO,kFAAkF;AAC9F,SAAK,OAAO,2FAA2F;AACvG,SAAK,OAAO,+FAA+F;AAC3G,SAAK,OAAO,yHAAyH;AAErI,SAAK,OAAO,+WAA+W;AAC3X,SAAK,OAAO,wHAAwH;AAEpI,SAAK,OAAO,kXAAkX;AAC9X,SAAK,OAAO,8GAA8G;AAE1H,SAAK,OAAO,skBAAskB;AACllB,SAAK,OAAO,4HAA4H;AACxI,SAAK,OAAO,8FAA8F;AAE1G,SAAK,OAAO,oTAAoT;AAChU,SAAK,OAAO,sGAAsG;AAElH,SAAK,OAAO,kQAAkQ;AAC9Q,SAAK,OAAO,sHAAsH;AAElI,SAAK,OAAO,+XAA+X;AAC3Y,SAAK,OAAO,kGAAkG;AAE9G,SAAK,OAAO,oKAAoK;AAEhL,SAAK,OAAO,oKAAoK;AAEhL,SAAK,OAAO,kMAAkM;AAE9M,SAAK,OAAO,0LAA0L;AAEtM,SAAK,OAAO,sKAAsK;AAClL,SAAK,OAAO,sKAAsK;AAElL,SAAK,OAAO,4KAA4K;AAAA,EAC1L;AAAA,EAEA,MAAe,OAAsB;AACnC,SAAK,OAAO,wDAAwD;AACpE,SAAK,OAAO,qDAAqD;AACjE,SAAK,OAAO,+DAA+D;AAC3E,SAAK,OAAO,2DAA2D;AACvE,SAAK,OAAO,mEAAmE;AAC/E,SAAK,OAAO,oDAAoD;AAChE,SAAK,OAAO,oDAAoD;AAChE,SAAK,OAAO,gDAAgD;AAC5D,SAAK,OAAO,gDAAgD;AAAA,EAC9D;AACF;",
+  "names": []
+}

package/dist/modules/customer_accounts/notifications.client.js ADDED Viewed

@@ -0,0 +1,47 @@
+"use client";
+const customerAccountsNotificationTypes = [
+  {
+    type: "customer_accounts.user.signup",
+    module: "customer_accounts",
+    titleKey: "customer_accounts.notifications.user.signup.title",
+    bodyKey: "customer_accounts.notifications.user.signup.body",
+    icon: "user-plus",
+    severity: "info",
+    actions: [
+      {
+        id: "view",
+        labelKey: "common.view",
+        variant: "outline",
+        href: "/backend/customer_accounts/{sourceEntityId}",
+        icon: "external-link"
+      }
+    ],
+    linkHref: "/backend/customer_accounts/{sourceEntityId}",
+    expiresAfterHours: 168
+  },
+  {
+    type: "customer_accounts.user.locked",
+    module: "customer_accounts",
+    titleKey: "customer_accounts.notifications.user.locked.title",
+    bodyKey: "customer_accounts.notifications.user.locked.body",
+    icon: "lock",
+    severity: "warning",
+    actions: [
+      {
+        id: "view",
+        labelKey: "common.view",
+        variant: "outline",
+        href: "/backend/customer_accounts/{sourceEntityId}",
+        icon: "external-link"
+      }
+    ],
+    linkHref: "/backend/customer_accounts/{sourceEntityId}",
+    expiresAfterHours: 168
+  }
+];
+var notifications_client_default = customerAccountsNotificationTypes;
+export {
+  customerAccountsNotificationTypes,
+  notifications_client_default as default
+};
+//# sourceMappingURL=notifications.client.js.map

package/dist/modules/customer_accounts/notifications.client.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/customer_accounts/notifications.client.ts"],
+  "sourcesContent": ["'use client'\n\nimport type { NotificationTypeDefinition } from '@open-mercato/shared/modules/notifications/types'\n\nexport const customerAccountsNotificationTypes: NotificationTypeDefinition[] = [\n  {\n    type: 'customer_accounts.user.signup',\n    module: 'customer_accounts',\n    titleKey: 'customer_accounts.notifications.user.signup.title',\n    bodyKey: 'customer_accounts.notifications.user.signup.body',\n    icon: 'user-plus',\n    severity: 'info',\n    actions: [\n      {\n        id: 'view',\n        labelKey: 'common.view',\n        variant: 'outline',\n        href: '/backend/customer_accounts/{sourceEntityId}',\n        icon: 'external-link',\n      },\n    ],\n    linkHref: '/backend/customer_accounts/{sourceEntityId}',\n    expiresAfterHours: 168,\n  },\n  {\n    type: 'customer_accounts.user.locked',\n    module: 'customer_accounts',\n    titleKey: 'customer_accounts.notifications.user.locked.title',\n    bodyKey: 'customer_accounts.notifications.user.locked.body',\n    icon: 'lock',\n    severity: 'warning',\n    actions: [\n      {\n        id: 'view',\n        labelKey: 'common.view',\n        variant: 'outline',\n        href: '/backend/customer_accounts/{sourceEntityId}',\n        icon: 'external-link',\n      },\n    ],\n    linkHref: '/backend/customer_accounts/{sourceEntityId}',\n    expiresAfterHours: 168,\n  },\n]\n\nexport default customerAccountsNotificationTypes\n"],
+  "mappings": ";AAIO,MAAM,oCAAkE;AAAA,EAC7E;AAAA,IACE,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS;AAAA,IACT,MAAM;AAAA,IACN,UAAU;AAAA,IACV,SAAS;AAAA,MACP;AAAA,QACE,IAAI;AAAA,QACJ,UAAU;AAAA,QACV,SAAS;AAAA,QACT,MAAM;AAAA,QACN,MAAM;AAAA,MACR;AAAA,IACF;AAAA,IACA,UAAU;AAAA,IACV,mBAAmB;AAAA,EACrB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS;AAAA,IACT,MAAM;AAAA,IACN,UAAU;AAAA,IACV,SAAS;AAAA,MACP;AAAA,QACE,IAAI;AAAA,QACJ,UAAU;AAAA,QACV,SAAS;AAAA,QACT,MAAM;AAAA,QACN,MAAM;AAAA,MACR;AAAA,IACF;AAAA,IACA,UAAU;AAAA,IACV,mBAAmB;AAAA,EACrB;AACF;AAEA,IAAO,+BAAQ;",
+  "names": []
+}

package/dist/modules/customer_accounts/notifications.js ADDED Viewed

@@ -0,0 +1,46 @@
+const notificationTypes = [
+  {
+    type: "customer_accounts.user.signup",
+    module: "customer_accounts",
+    titleKey: "customer_accounts.notifications.user.signup.title",
+    bodyKey: "customer_accounts.notifications.user.signup.body",
+    icon: "user-plus",
+    severity: "info",
+    actions: [
+      {
+        id: "view",
+        labelKey: "common.view",
+        variant: "outline",
+        href: "/backend/customer_accounts/{sourceEntityId}",
+        icon: "external-link"
+      }
+    ],
+    linkHref: "/backend/customer_accounts/{sourceEntityId}",
+    expiresAfterHours: 168
+  },
+  {
+    type: "customer_accounts.user.locked",
+    module: "customer_accounts",
+    titleKey: "customer_accounts.notifications.user.locked.title",
+    bodyKey: "customer_accounts.notifications.user.locked.body",
+    icon: "lock",
+    severity: "warning",
+    actions: [
+      {
+        id: "view",
+        labelKey: "common.view",
+        variant: "outline",
+        href: "/backend/customer_accounts/{sourceEntityId}",
+        icon: "external-link"
+      }
+    ],
+    linkHref: "/backend/customer_accounts/{sourceEntityId}",
+    expiresAfterHours: 168
+  }
+];
+var notifications_default = notificationTypes;
+export {
+  notifications_default as default,
+  notificationTypes
+};
+//# sourceMappingURL=notifications.js.map

package/dist/modules/customer_accounts/notifications.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/modules/customer_accounts/notifications.ts"],
+  "sourcesContent": ["import type { NotificationTypeDefinition } from '@open-mercato/shared/modules/notifications/types'\n\nexport const notificationTypes: NotificationTypeDefinition[] = [\n  {\n    type: 'customer_accounts.user.signup',\n    module: 'customer_accounts',\n    titleKey: 'customer_accounts.notifications.user.signup.title',\n    bodyKey: 'customer_accounts.notifications.user.signup.body',\n    icon: 'user-plus',\n    severity: 'info',\n    actions: [\n      {\n        id: 'view',\n        labelKey: 'common.view',\n        variant: 'outline',\n        href: '/backend/customer_accounts/{sourceEntityId}',\n        icon: 'external-link',\n      },\n    ],\n    linkHref: '/backend/customer_accounts/{sourceEntityId}',\n    expiresAfterHours: 168,\n  },\n  {\n    type: 'customer_accounts.user.locked',\n    module: 'customer_accounts',\n    titleKey: 'customer_accounts.notifications.user.locked.title',\n    bodyKey: 'customer_accounts.notifications.user.locked.body',\n    icon: 'lock',\n    severity: 'warning',\n    actions: [\n      {\n        id: 'view',\n        labelKey: 'common.view',\n        variant: 'outline',\n        href: '/backend/customer_accounts/{sourceEntityId}',\n        icon: 'external-link',\n      },\n    ],\n    linkHref: '/backend/customer_accounts/{sourceEntityId}',\n    expiresAfterHours: 168,\n  },\n]\n\nexport default notificationTypes\n"],
+  "mappings": "AAEO,MAAM,oBAAkD;AAAA,EAC7D;AAAA,IACE,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS;AAAA,IACT,MAAM;AAAA,IACN,UAAU;AAAA,IACV,SAAS;AAAA,MACP;AAAA,QACE,IAAI;AAAA,QACJ,UAAU;AAAA,QACV,SAAS;AAAA,QACT,MAAM;AAAA,QACN,MAAM;AAAA,MACR;AAAA,IACF;AAAA,IACA,UAAU;AAAA,IACV,mBAAmB;AAAA,EACrB;AAAA,EACA;AAAA,IACE,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,UAAU;AAAA,IACV,SAAS;AAAA,IACT,MAAM;AAAA,IACN,UAAU;AAAA,IACV,SAAS;AAAA,MACP;AAAA,QACE,IAAI;AAAA,QACJ,UAAU;AAAA,QACV,SAAS;AAAA,QACT,MAAM;AAAA,QACN,MAAM;AAAA,MACR;AAAA,IACF;AAAA,IACA,UAAU;AAAA,IACV,mBAAmB;AAAA,EACrB;AACF;AAEA,IAAO,wBAAQ;",
+  "names": []
+}