npm - @open-mercato/core - Versions diffs - 0.5.1-develop.2744.9c8be0dd93 → 0.5.1-develop.2762.90c271efe2 - Mend

@open-mercato/core 0.5.1-develop.2744.9c8be0dd93 → 0.5.1-develop.2762.90c271efe2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (41) hide show

package/src/modules/feature_toggles/lib/feature-flag-check.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 import { FeatureToggle, FeatureToggleOverride } from "../data/entities"
 import { EntityManager } from "@mikro-orm/core"
-import { CacheService } from "@open-mercato/cache"
+import { CacheService, runWithCacheTenant } from "@open-mercato/cache"
 type ToggleValueType = "boolean" | "string" | "number" | "json"
@@ -73,13 +73,16 @@ export class FeatureTogglesService {
     result: ToggleResolutionResult,
   ) {
     const key = getIsEnabledCacheKey(identifier, tenantId)
-    await this.cache.set(key, result, { ttl: this.cacheTtlMs, tags: getCacheTags(identifier, tenantId) })
+    await runWithCacheTenant(
+      tenantId,
+      () => this.cache.set(key, result, { ttl: this.cacheTtlMs, tags: getCacheTags(identifier, tenantId) }),
+    )
   }
   private async resolveToggle(identifier: string, tenantId: string): Promise<ToggleResolutionResult> {
     const key = getIsEnabledCacheKey(identifier, tenantId)
-    const cached = await this.cache.get(key)
+    const cached = await runWithCacheTenant(tenantId, () => this.cache.get(key))
     if (cached) {
       const parsed = toCachedResolution(cached)
       if (parsed) return parsed
@@ -122,7 +125,7 @@ export class FeatureTogglesService {
   }
   public async invalidateIsEnabledCacheByKey(identifier: string, tenantId: string) {
-    await this.cache.delete(getIsEnabledCacheKey(identifier, tenantId))
+    await runWithCacheTenant(tenantId, () => this.cache.delete(getIsEnabledCacheKey(identifier, tenantId)))
   }
   public async getFeatureToggleValue<T>(

package/src/modules/inbox_ops/encryption.ts ADDED Viewed

@@ -0,0 +1,51 @@
+import type { ModuleEncryptionMap } from '@open-mercato/shared/modules/encryption'
+// Message body, extracted business data, and correspondent identities all
+// count as tenant PII. Columns routed through WHERE/ILIKE lookups or UNIQUE
+// indexes (`inbox_settings.inbox_address`, `inbox_emails.message_id`,
+// `in_reply_to`, `references`, `*.metadata`) are intentionally left plaintext
+// for now — encrypting them requires paired `*_hash` columns plus rewriting
+// the inbound-webhook lookups, which is out of scope for this fix.
+export const defaultEncryptionMaps: ModuleEncryptionMap[] = [
+  {
+    entityId: 'inbox_ops:inbox_email',
+    fields: [
+      { field: 'subject' },
+      { field: 'raw_text' },
+      { field: 'raw_html' },
+      { field: 'cleaned_text' },
+      { field: 'thread_messages' },
+      { field: 'forwarded_by_address' },
+      { field: 'forwarded_by_name' },
+      { field: 'to_address' },
+      { field: 'reply_to' },
+      { field: 'processing_error' },
+    ],
+  },
+  {
+    entityId: 'inbox_ops:inbox_proposal',
+    fields: [
+      { field: 'summary' },
+      { field: 'participants' },
+      { field: 'translations' },
+    ],
+  },
+  {
+    entityId: 'inbox_ops:inbox_proposal_action',
+    fields: [
+      { field: 'description' },
+      { field: 'payload' },
+      { field: 'execution_error' },
+    ],
+  },
+  {
+    entityId: 'inbox_ops:inbox_discrepancy',
+    fields: [
+      { field: 'description' },
+      { field: 'expected_value' },
+      { field: 'found_value' },
+    ],
+  },
+]
+export default defaultEncryptionMaps

package/src/modules/workflows/api/definitions/[id]/route.ts CHANGED Viewed

@@ -19,6 +19,7 @@ import {
   type UpdateWorkflowDefinitionApiInput,
 } from '../../../data/validators'
 import { serializeWorkflowDefinition } from '../serialize'
+import { invalidateTriggerCache } from '../../../lib/event-trigger-service'
 export const metadata = {
   requireAuth: true,
@@ -178,6 +179,10 @@ export async function PUT(
     await em.flush()
+    // Embedded triggers may have changed; invalidate the in-memory cache so
+    // the wildcard event subscriber reloads them on the next event.
+    if (tenantId) invalidateTriggerCache(tenantId, organizationId ?? undefined)
     return NextResponse.json({
       data: serializeWorkflowDefinition(definition),
       message: 'Workflow definition updated successfully',
@@ -269,6 +274,8 @@ export async function DELETE(
     await em.flush()
+    if (tenantId) invalidateTriggerCache(tenantId, organizationId ?? undefined)
     return NextResponse.json({
       message: 'Workflow definition deleted successfully',
     })

package/src/modules/workflows/api/definitions/route.ts CHANGED Viewed

@@ -18,6 +18,7 @@ import {
   type CreateWorkflowDefinitionApiInput,
 } from '../../data/validators'
 import { serializeWorkflowDefinition } from './serialize'
+import { invalidateTriggerCache } from '../../lib/event-trigger-service'
 export const metadata = {
   requireAuth: true,
@@ -209,6 +210,11 @@ export async function POST(request: NextRequest) {
     await em.persist(definition).flush()
+    // Newly-created embedded triggers must be visible to the wildcard event
+    // subscriber immediately; invalidate the in-memory trigger cache so the
+    // next event reload picks up this definition.
+    if (tenantId) invalidateTriggerCache(tenantId, organizationId ?? undefined)
     return NextResponse.json(
       {
         data: serializeWorkflowDefinition(definition),