npm - @open-mercato/core - Versions diffs - 0.6.5-develop.4384.1.ce2ec6eaaa → 0.6.5-develop.4397.1.9a65481757 - Mend

@open-mercato/core 0.6.5-develop.4384.1.ce2ec6eaaa → 0.6.5-develop.4397.1.9a65481757

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (533) hide show

package/dist/modules/customers/api/interactions/counts/route.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../../../../../src/modules/customers/api/interactions/counts/route.ts"],
-  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { sql } from 'kysely'\nimport { CrudHttpError, isCrudHttpError } from '@open-mercato/shared/lib/crud/errors'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { resolveOrganizationScopeForRequest } from '@open-mercato/core/modules/directory/utils/organizationScope'\nimport { resolveTranslations } from '@open-mercato/shared/lib/i18n/server'\nimport type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\n\nconst querySchema = z.object({\n  entityId: z.string().uuid(),\n  status: z.enum(['done', 'planned']).optional(),\n})\n\nconst responseSchema = z.object({\n  ok: z.literal(true),\n  result: z.object({\n    call: z.number(),\n    email: z.number(),\n    meeting: z.number(),\n    note: z.number(),\n    task: z.number(),\n    total: z.number(),\n  }),\n})\n\nexport const metadata = {\n  GET: { requireAuth: true, requireFeatures: ['customers.interactions.view'] },\n}\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'Customers',\n  methods: {\n    GET: {\n      summary: 'Get interaction counts by type',\n      description: 'Returns per-type interaction counts scoped to an entity.',\n      query: querySchema,\n      responses: [\n        {\n          status: 200,\n          description: 'Counts by interaction type',\n          schema: responseSchema,\n        },\n      ],\n    },\n  },\n}\n\nexport async function GET(req: Request) {\n  try {\n    const queryUrl = new URL(req.url)\n    const query = querySchema.parse(Object.fromEntries(queryUrl.searchParams))\n    const container = await createRequestContainer()\n    const auth = await getAuthFromRequest(req)\n    const { translate } = await resolveTranslations()\n\n    if (!auth || !auth.tenantId) {\n      throw new CrudHttpError(401, {\n        error: translate('customers.errors.unauthorized', 'Unauthorized'),\n      })\n    }\n\n    const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req })\n    const organizationIds = Array.isArray(scope?.filterIds) && scope.filterIds.length > 0\n      ? scope.filterIds\n      : auth.orgId\n        ? [auth.orgId]\n        : []\n    const em = (container.resolve('em') as EntityManager).fork()\n    const kysely = em.getKysely<any>()\n\n    let baseQuery = (kysely as any)\n      .selectFrom('customer_interactions')\n      .where('entity_id', '=', query.entityId)\n      .where('tenant_id', '=', auth.tenantId)\n      .where('deleted_at', 'is', null)\n\n    if (organizationIds.length === 1) {\n      baseQuery = baseQuery.where('organization_id', '=', organizationIds[0])\n    } else if (organizationIds.length > 1) {\n      baseQuery = baseQuery.where('organization_id', 'in', organizationIds)\n    }\n\n    if (query.status) {\n      baseQuery = baseQuery.where('status', '=', query.status)\n    }\n\n    // Raw SELECT: reads only unencrypted columns (id, interaction_type); title/notes are excluded to avoid ciphertext leakage.\n    const rows = await baseQuery\n      .select(['interaction_type', sql<string>`count(*)`.as('count')])\n      .groupBy('interaction_type')\n      .execute() as Array<{ interaction_type: string; count: string | number }>\n\n    const counts: Record<string, number> = { call: 0, email: 0, meeting: 0, note: 0, task: 0 }\n    let total = 0\n    for (const row of rows) {\n      const count = typeof row.count === 'string' ? parseInt(row.count, 10) : row.count\n      const type = row.interaction_type\n      if (type in counts) {\n        counts[type] = count\n      }\n      total += count\n    }\n\n    return NextResponse.json({ ok: true, result: { ...counts, total } })\n  } catch (err) {\n    if (isCrudHttpError(err)) {\n      return NextResponse.json(err.body, { status: err.status })\n    }\n    console.error('[customers/interactions/counts] GET failed', err)\n    return NextResponse.json({ error: 'Internal server error' }, { status: 500 })\n  }\n}\n"],
-  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,SAAS;AAElB,SAAS,WAAW;AACpB,SAAS,eAAe,uBAAuB;AAC/C,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AACnC,SAAS,0CAA0C;AACnD,SAAS,2BAA2B;AAGpC,MAAM,cAAc,EAAE,OAAO;AAAA,EAC3B,UAAU,EAAE,OAAO,EAAE,KAAK;AAAA,EAC1B,QAAQ,EAAE,KAAK,CAAC,QAAQ,SAAS,CAAC,EAAE,SAAS;AAC/C,CAAC;AAED,MAAM,iBAAiB,EAAE,OAAO;AAAA,EAC9B,IAAI,EAAE,QAAQ,IAAI;AAAA,EAClB,QAAQ,EAAE,OAAO;AAAA,IACf,MAAM,EAAE,OAAO;AAAA,IACf,OAAO,EAAE,OAAO;AAAA,IAChB,SAAS,EAAE,OAAO;AAAA,IAClB,MAAM,EAAE,OAAO;AAAA,IACf,MAAM,EAAE,OAAO;AAAA,IACf,OAAO,EAAE,OAAO;AAAA,EAClB,CAAC;AACH,CAAC;AAEM,MAAM,WAAW;AAAA,EACtB,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,6BAA6B,EAAE;AAC7E;AAEO,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,IACP,KAAK;AAAA,MACH,SAAS;AAAA,MACT,aAAa;AAAA,MACb,OAAO;AAAA,MACP,WAAW;AAAA,QACT;AAAA,UACE,QAAQ;AAAA,UACR,aAAa;AAAA,UACb,QAAQ;AAAA,QACV;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF;AAEA,eAAsB,IAAI,KAAc;AACtC,MAAI;AACF,UAAM,WAAW,IAAI,IAAI,IAAI,GAAG;AAChC,UAAM,QAAQ,YAAY,MAAM,OAAO,YAAY,SAAS,YAAY,CAAC;AACzE,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAEhD,QAAI,CAAC,QAAQ,CAAC,KAAK,UAAU;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,iCAAiC,cAAc;AAAA,MAClE,CAAC;AAAA,IACH;AAEA,UAAM,QAAQ,MAAM,mCAAmC,EAAE,WAAW,MAAM,SAAS,IAAI,CAAC;AACxF,UAAM,kBAAkB,MAAM,QAAQ,OAAO,SAAS,KAAK,MAAM,UAAU,SAAS,IAChF,MAAM,YACN,KAAK,QACH,CAAC,KAAK,KAAK,IACX,CAAC;AACP,UAAM,KAAM,UAAU,QAAQ,IAAI,EAAoB,KAAK;AAC3D,UAAM,SAAS,GAAG,UAAe;AAEjC,QAAI,YAAa,OACd,WAAW,uBAAuB,EAClC,MAAM,aAAa,KAAK,MAAM,QAAQ,EACtC,MAAM,aAAa,KAAK,KAAK,QAAQ,EACrC,MAAM,cAAc,MAAM,IAAI;AAEjC,QAAI,gBAAgB,WAAW,GAAG;AAChC,kBAAY,UAAU,MAAM,mBAAmB,KAAK,gBAAgB,CAAC,CAAC;AAAA,IACxE,WAAW,gBAAgB,SAAS,GAAG;AACrC,kBAAY,UAAU,MAAM,mBAAmB,MAAM,eAAe;AAAA,IACtE;AAEA,QAAI,MAAM,QAAQ;AAChB,kBAAY,UAAU,MAAM,UAAU,KAAK,MAAM,MAAM;AAAA,IACzD;AAGA,UAAM,OAAO,MAAM,UAChB,OAAO,CAAC,oBAAoB,cAAsB,GAAG,OAAO,CAAC,CAAC,EAC9D,QAAQ,kBAAkB,EAC1B,QAAQ;AAEX,UAAM,SAAiC,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS,GAAG,MAAM,GAAG,MAAM,EAAE;AACzF,QAAI,QAAQ;AACZ,eAAW,OAAO,MAAM;AACtB,YAAM,QAAQ,OAAO,IAAI,UAAU,WAAW,SAAS,IAAI,OAAO,EAAE,IAAI,IAAI;AAC5E,YAAM,OAAO,IAAI;AACjB,UAAI,QAAQ,QAAQ;AAClB,eAAO,IAAI,IAAI;AAAA,MACjB;AACA,eAAS;AAAA,IACX;AAEA,WAAO,aAAa,KAAK,EAAE,IAAI,MAAM,QAAQ,EAAE,GAAG,QAAQ,MAAM,EAAE,CAAC;AAAA,EACrE,SAAS,KAAK;AACZ,QAAI,gBAAgB,GAAG,GAAG;AACxB,aAAO,aAAa,KAAK,IAAI,MAAM,EAAE,QAAQ,IAAI,OAAO,CAAC;AAAA,IAC3D;AACA,YAAQ,MAAM,8CAA8C,GAAG;AAC/D,WAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC9E;AACF;",
+  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { sql } from 'kysely'\nimport { CrudHttpError, isCrudHttpError } from '@open-mercato/shared/lib/crud/errors'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { resolveOrganizationScopeForRequest } from '@open-mercato/core/modules/directory/utils/organizationScope'\nimport { resolveTranslations } from '@open-mercato/shared/lib/i18n/server'\nimport type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { applyEmailVisibilityFilter } from '../../../lib/visibilityFilter'\n\nconst querySchema = z.object({\n  entityId: z.string().uuid(),\n  status: z.enum(['done', 'planned']).optional(),\n})\n\nconst responseSchema = z.object({\n  ok: z.literal(true),\n  result: z.object({\n    call: z.number(),\n    email: z.number(),\n    meeting: z.number(),\n    note: z.number(),\n    task: z.number(),\n    total: z.number(),\n  }),\n})\n\nexport const metadata = {\n  GET: { requireAuth: true, requireFeatures: ['customers.interactions.view'] },\n}\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'Customers',\n  methods: {\n    GET: {\n      summary: 'Get interaction counts by type',\n      description: 'Returns per-type interaction counts scoped to an entity.',\n      query: querySchema,\n      responses: [\n        {\n          status: 200,\n          description: 'Counts by interaction type',\n          schema: responseSchema,\n        },\n      ],\n    },\n  },\n}\n\nexport async function GET(req: Request) {\n  try {\n    const queryUrl = new URL(req.url)\n    const query = querySchema.parse(Object.fromEntries(queryUrl.searchParams))\n    const container = await createRequestContainer()\n    const auth = await getAuthFromRequest(req)\n    const { translate } = await resolveTranslations()\n\n    if (!auth || !auth.tenantId) {\n      throw new CrudHttpError(401, {\n        error: translate('customers.errors.unauthorized', 'Unauthorized'),\n      })\n    }\n\n    const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req })\n    const organizationIds = Array.isArray(scope?.filterIds) && scope.filterIds.length > 0\n      ? scope.filterIds\n      : auth.orgId\n        ? [auth.orgId]\n        : []\n    const em = (container.resolve('em') as EntityManager).fork()\n    const kysely = em.getKysely<any>()\n\n    let baseQuery = (kysely as any)\n      .selectFrom('customer_interactions')\n      .where('entity_id', '=', query.entityId)\n      .where('tenant_id', '=', auth.tenantId)\n      .where('deleted_at', 'is', null)\n\n    if (organizationIds.length === 1) {\n      baseQuery = baseQuery.where('organization_id', '=', organizationIds[0])\n    } else if (organizationIds.length > 1) {\n      baseQuery = baseQuery.where('organization_id', 'in', organizationIds)\n    }\n\n    if (query.status) {\n      baseQuery = baseQuery.where('status', '=', query.status)\n    }\n\n    // Per-user email privacy: exclude other users' private emails from the\n    // per-type counts so the `email` total matches the visibility-filtered list.\n    // v1 strict owner-only \u2014 no admin bypass (the filter ignores caller features).\n    const viewerUserId = auth.isApiKey ? null : auth.sub ?? null\n    baseQuery = applyEmailVisibilityFilter(baseQuery, {\n      currentUserId: viewerUserId,\n      userFeatures: undefined,\n    })\n\n    // Raw SELECT: reads only unencrypted columns (id, interaction_type); title/notes are excluded to avoid ciphertext leakage.\n    const rows = await baseQuery\n      .select(['interaction_type', sql<string>`count(*)`.as('count')])\n      .groupBy('interaction_type')\n      .execute() as Array<{ interaction_type: string; count: string | number }>\n\n    const counts: Record<string, number> = { call: 0, email: 0, meeting: 0, note: 0, task: 0 }\n    let total = 0\n    for (const row of rows) {\n      const count = typeof row.count === 'string' ? parseInt(row.count, 10) : row.count\n      const type = row.interaction_type\n      if (type in counts) {\n        counts[type] = count\n      }\n      total += count\n    }\n\n    return NextResponse.json({ ok: true, result: { ...counts, total } })\n  } catch (err) {\n    if (isCrudHttpError(err)) {\n      return NextResponse.json(err.body, { status: err.status })\n    }\n    console.error('[customers/interactions/counts] GET failed', err)\n    return NextResponse.json({ error: 'Internal server error' }, { status: 500 })\n  }\n}\n"],
+  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,SAAS;AAElB,SAAS,WAAW;AACpB,SAAS,eAAe,uBAAuB;AAC/C,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AACnC,SAAS,0CAA0C;AACnD,SAAS,2BAA2B;AAEpC,SAAS,kCAAkC;AAE3C,MAAM,cAAc,EAAE,OAAO;AAAA,EAC3B,UAAU,EAAE,OAAO,EAAE,KAAK;AAAA,EAC1B,QAAQ,EAAE,KAAK,CAAC,QAAQ,SAAS,CAAC,EAAE,SAAS;AAC/C,CAAC;AAED,MAAM,iBAAiB,EAAE,OAAO;AAAA,EAC9B,IAAI,EAAE,QAAQ,IAAI;AAAA,EAClB,QAAQ,EAAE,OAAO;AAAA,IACf,MAAM,EAAE,OAAO;AAAA,IACf,OAAO,EAAE,OAAO;AAAA,IAChB,SAAS,EAAE,OAAO;AAAA,IAClB,MAAM,EAAE,OAAO;AAAA,IACf,MAAM,EAAE,OAAO;AAAA,IACf,OAAO,EAAE,OAAO;AAAA,EAClB,CAAC;AACH,CAAC;AAEM,MAAM,WAAW;AAAA,EACtB,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,6BAA6B,EAAE;AAC7E;AAEO,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,IACP,KAAK;AAAA,MACH,SAAS;AAAA,MACT,aAAa;AAAA,MACb,OAAO;AAAA,MACP,WAAW;AAAA,QACT;AAAA,UACE,QAAQ;AAAA,UACR,aAAa;AAAA,UACb,QAAQ;AAAA,QACV;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF;AAEA,eAAsB,IAAI,KAAc;AACtC,MAAI;AACF,UAAM,WAAW,IAAI,IAAI,IAAI,GAAG;AAChC,UAAM,QAAQ,YAAY,MAAM,OAAO,YAAY,SAAS,YAAY,CAAC;AACzE,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAEhD,QAAI,CAAC,QAAQ,CAAC,KAAK,UAAU;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,iCAAiC,cAAc;AAAA,MAClE,CAAC;AAAA,IACH;AAEA,UAAM,QAAQ,MAAM,mCAAmC,EAAE,WAAW,MAAM,SAAS,IAAI,CAAC;AACxF,UAAM,kBAAkB,MAAM,QAAQ,OAAO,SAAS,KAAK,MAAM,UAAU,SAAS,IAChF,MAAM,YACN,KAAK,QACH,CAAC,KAAK,KAAK,IACX,CAAC;AACP,UAAM,KAAM,UAAU,QAAQ,IAAI,EAAoB,KAAK;AAC3D,UAAM,SAAS,GAAG,UAAe;AAEjC,QAAI,YAAa,OACd,WAAW,uBAAuB,EAClC,MAAM,aAAa,KAAK,MAAM,QAAQ,EACtC,MAAM,aAAa,KAAK,KAAK,QAAQ,EACrC,MAAM,cAAc,MAAM,IAAI;AAEjC,QAAI,gBAAgB,WAAW,GAAG;AAChC,kBAAY,UAAU,MAAM,mBAAmB,KAAK,gBAAgB,CAAC,CAAC;AAAA,IACxE,WAAW,gBAAgB,SAAS,GAAG;AACrC,kBAAY,UAAU,MAAM,mBAAmB,MAAM,eAAe;AAAA,IACtE;AAEA,QAAI,MAAM,QAAQ;AAChB,kBAAY,UAAU,MAAM,UAAU,KAAK,MAAM,MAAM;AAAA,IACzD;AAKA,UAAM,eAAe,KAAK,WAAW,OAAO,KAAK,OAAO;AACxD,gBAAY,2BAA2B,WAAW;AAAA,MAChD,eAAe;AAAA,MACf,cAAc;AAAA,IAChB,CAAC;AAGD,UAAM,OAAO,MAAM,UAChB,OAAO,CAAC,oBAAoB,cAAsB,GAAG,OAAO,CAAC,CAAC,EAC9D,QAAQ,kBAAkB,EAC1B,QAAQ;AAEX,UAAM,SAAiC,EAAE,MAAM,GAAG,OAAO,GAAG,SAAS,GAAG,MAAM,GAAG,MAAM,EAAE;AACzF,QAAI,QAAQ;AACZ,eAAW,OAAO,MAAM;AACtB,YAAM,QAAQ,OAAO,IAAI,UAAU,WAAW,SAAS,IAAI,OAAO,EAAE,IAAI,IAAI;AAC5E,YAAM,OAAO,IAAI;AACjB,UAAI,QAAQ,QAAQ;AAClB,eAAO,IAAI,IAAI;AAAA,MACjB;AACA,eAAS;AAAA,IACX;AAEA,WAAO,aAAa,KAAK,EAAE,IAAI,MAAM,QAAQ,EAAE,GAAG,QAAQ,MAAM,EAAE,CAAC;AAAA,EACrE,SAAS,KAAK;AACZ,QAAI,gBAAgB,GAAG,GAAG;AACxB,aAAO,aAAa,KAAK,IAAI,MAAM,EAAE,QAAQ,IAAI,OAAO,CAAC;AAAA,IAC3D;AACA,YAAQ,MAAM,8CAA8C,GAAG;AAC/D,WAAO,aAAa,KAAK,EAAE,OAAO,wBAAwB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC9E;AACF;",
   "names": []
 }

package/dist/modules/customers/api/interactions/route.js CHANGED Viewed

@@ -20,6 +20,7 @@ import {
   defaultOkResponseSchema
 } from "../openapi.js";
 import { CUSTOMER_INTERACTION_ENTITY_ID } from "../../lib/interactionCompatibility.js";
+import { applyEmailVisibilityFilter } from "../../lib/visibilityFilter.js";
 import { resolveCanonicalActivityTargetId } from "../../lib/legacyActivityBridge.js";
 const rawBodySchema = z.object({}).passthrough();
 const interactionSortFieldSchema = z.enum([
@@ -207,15 +208,16 @@ async function resolveUserFeatures(container, userId, tenantId, organizationId)
     return void 0;
   }
 }
-async function buildEnricherContext(container, auth, organizationId) {
+async function buildEnricherContext(container, auth, organizationId, precomputedUserFeatures) {
   const userId = typeof auth.sub === "string" && auth.sub.trim().length > 0 ? auth.sub : typeof auth.userId === "string" && auth.userId.trim().length > 0 ? auth.userId : typeof auth.keyId === "string" && auth.keyId.trim().length > 0 ? auth.keyId : "system";
+  const userFeatures = precomputedUserFeatures && precomputedUserFeatures.userId === userId ? precomputedUserFeatures.features : await resolveUserFeatures(container, userId, auth.tenantId ?? null, organizationId);
   return {
     organizationId: organizationId ?? "",
     tenantId: auth.tenantId ?? "",
     userId,
     em: container.resolve("em"),
     container,
-    userFeatures: await resolveUserFeatures(container, userId, auth.tenantId ?? null, organizationId)
+    userFeatures
   };
 }
 async function GET(req) {
@@ -319,6 +321,12 @@ async function GET(req) {
         ])
       ]));
     }
+    const viewerUserId = auth.isApiKey ? null : auth.sub ?? null;
+    const callerUserFeatures = viewerUserId ? await resolveUserFeatures(container, viewerUserId, auth.tenantId ?? null, selectedOrganizationId) : void 0;
+    rowsQuery = applyEmailVisibilityFilter(rowsQuery, {
+      currentUserId: viewerUserId,
+      userFeatures: callerUserFeatures
+    });
     rowsQuery = rowsQuery.orderBy(sql`${sql.raw(sortSql)} ${sql.raw(sortDir)}`).orderBy("id", sortDir);
     const rows = await rowsQuery.execute();
     const pageRows = rows.slice(0, query.limit);
@@ -334,7 +342,7 @@ async function GET(req) {
       )
     );
     const interactionIds = pageRows.map((row) => row.id);
-    const [users, deals, customFieldValues] = await Promise.all([
+    const [users, deals, customFieldValues, interactionRecords] = await Promise.all([
       authorIds.length > 0 ? findWithDecryption(em, User, { id: { $in: authorIds } }, void 0, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),
       dealIds.length > 0 ? findWithDecryption(em, CustomerDeal, { id: { $in: dealIds } }, void 0, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),
       interactionIds.length > 0 ? loadCustomFieldValues({
@@ -344,7 +352,8 @@ async function GET(req) {
         tenantIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.tenant_id])),
         organizationIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.organization_id])),
         tenantFallbacks: [auth.tenantId].filter((value) => !!value)
-      }) : Promise.resolve({})
+      }) : Promise.resolve({}),
+      interactionIds.length > 0 ? findWithDecryption(em, CustomerInteraction, { id: { $in: interactionIds } }, void 0, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([])
     ]);
     const userMap = new Map(
       users.map((user) => [
@@ -358,13 +367,18 @@ async function GET(req) {
     const dealMap = new Map(
       deals.map((deal) => [deal.id, deal.title])
     );
+    const interactionContentMap = new Map(
+      interactionRecords.map(
+        (record) => [record.id, { title: record.title ?? null, body: record.body ?? null }]
+      )
+    );
     const baseItems = pageRows.map((row) => ({
       id: row.id,
       entityId: row.entity_id,
       dealId: row.deal_id ?? null,
       interactionType: row.interaction_type,
-      title: row.title ?? null,
-      body: row.body ?? null,
+      title: (interactionContentMap.has(row.id) ? interactionContentMap.get(row.id).title : row.title) ?? null,
+      body: (interactionContentMap.has(row.id) ? interactionContentMap.get(row.id).body : row.body) ?? null,
       status: row.status,
       scheduledAt: toIsoString(row.scheduled_at),
       occurredAt: toIsoString(row.occurred_at),
@@ -395,7 +409,12 @@ async function GET(req) {
       dealTitle: row.deal_id ? dealMap.get(row.deal_id) ?? null : null,
       customValues: normalizeCustomFieldResponse(customFieldValues[row.id]) ?? null
     }));
-    const enricherContext = await buildEnricherContext(container, auth, selectedOrganizationId);
+    const enricherContext = await buildEnricherContext(
+      container,
+      auth,
+      selectedOrganizationId,
+      viewerUserId ? { userId: viewerUserId, features: callerUserFeatures } : void 0
+    );
     const enriched = await applyResponseEnrichers(baseItems, "customers.interaction", enricherContext);
     let nextCursor;
     if (hasMore && pageRows.length > 0) {

package/dist/modules/customers/api/interactions/route.js.map CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "version": 3,
   "sources": ["../../../../../src/modules/customers/api/interactions/route.ts"],
-  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { sql } from 'kysely'\nimport { makeCrudRoute } from '@open-mercato/shared/lib/crud/factory'\nimport { CrudHttpError, isCrudHttpError } from '@open-mercato/shared/lib/crud/errors'\nimport { loadCustomFieldValues } from '@open-mercato/shared/lib/crud/custom-fields'\nimport { normalizeCustomFieldResponse } from '@open-mercato/shared/lib/custom-fields/normalize'\nimport { applyResponseEnrichers } from '@open-mercato/shared/lib/crud/enricher-runner'\nimport type { EnricherContext } from '@open-mercato/shared/lib/crud/response-enricher'\nimport { findWithDecryption } from '@open-mercato/shared/lib/encryption/find'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { resolveOrganizationScopeForRequest } from '@open-mercato/core/modules/directory/utils/organizationScope'\nimport { resolveTranslations } from '@open-mercato/shared/lib/i18n/server'\nimport { CustomerDeal, CustomerInteraction } from '../../data/entities'\nimport { User } from '@open-mercato/core/modules/auth/data/entities'\nimport { interactionCreateSchema, interactionUpdateSchema } from '../../data/validators'\nimport { parseScopedCommandInput } from '../utils'\nimport {\n  createCustomersCrudOpenApi,\n  defaultOkResponseSchema,\n} from '../openapi'\nimport { CUSTOMER_INTERACTION_ENTITY_ID } from '../../lib/interactionCompatibility'\nimport { resolveCanonicalActivityTargetId } from '../../lib/legacyActivityBridge'\nimport type { CommandBus, CommandRuntimeContext } from '@open-mercato/shared/lib/commands'\n\nconst rawBodySchema = z.object({}).passthrough()\n\nconst interactionSortFieldSchema = z.enum([\n  'scheduledAt',\n  'occurredAt',\n  'createdAt',\n  'updatedAt',\n  'status',\n  'priority',\n  'interactionType',\n  'title',\n])\n\nconst listSchema = z\n  .object({\n    limit: z.coerce.number().min(1).max(100).default(25),\n    cursor: z.string().optional(),\n    entityId: z.string().uuid().optional(),\n    dealId: z.string().uuid().optional(),\n    status: z.string().optional(),\n    interactionType: z.string().optional(),\n    type: z.string().optional(),\n    excludeInteractionType: z.string().optional(),\n    search: z.string().trim().min(1).optional(),\n    from: z.string().optional(),\n    to: z.string().optional(),\n    pinned: z.enum(['true', 'false']).optional(),\n    sortField: interactionSortFieldSchema.optional(),\n    sortDir: z.enum(['asc', 'desc']).optional(),\n  })\n  .passthrough()\n\nconst routeMetadata = {\n  GET: { requireAuth: true, requireFeatures: ['customers.interactions.view'] },\n  POST: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n  PUT: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n  DELETE: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n}\n\nexport const metadata = routeMetadata\n\nconst crud = makeCrudRoute({\n  metadata: routeMetadata,\n  orm: {\n    entity: CustomerInteraction,\n    idField: 'id',\n    orgField: 'organizationId',\n    tenantField: 'tenantId',\n    softDeleteField: 'deletedAt',\n  },\n  enrichers: { entityId: 'customers.interaction' },\n  indexer: {\n    entityType: 'customers:customer_interaction',\n  },\n  actions: {\n    create: {\n      commandId: 'customers.interactions.create',\n      schema: rawBodySchema,\n      mapInput: async ({ raw, ctx }) => {\n        const { translate } = await resolveTranslations()\n        return parseScopedCommandInput(interactionCreateSchema, raw ?? {}, ctx, translate)\n      },\n      response: ({ result }) => ({ id: result?.interactionId ?? result?.id ?? null }),\n      status: 201,\n    },\n    update: {\n      commandId: 'customers.interactions.update',\n      schema: rawBodySchema,\n      mapInput: async ({ raw, ctx }) => {\n        const { translate } = await resolveTranslations()\n        const parsed = parseScopedCommandInput(interactionUpdateSchema, raw ?? {}, ctx, translate)\n        // Bridge legacy `customer_activities` rows into `customer_interactions`\n        // before the canonical update runs so historical activities (#1807)\n        // remain editable through the new dialog. No-op when the canonical\n        // record already exists.\n        const tenantId = ctx.auth?.tenantId ?? null\n        if (typeof parsed.id === 'string' && tenantId) {\n          try {\n            const em = ctx.container.resolve('em') as EntityManager\n            const commandBus = ctx.container.resolve('commandBus') as CommandBus\n            const commandContext: CommandRuntimeContext = {\n              container: ctx.container,\n              auth: ctx.auth ?? null,\n              organizationScope: ctx.organizationScope ?? null,\n              selectedOrganizationId: ctx.selectedOrganizationId ?? null,\n              organizationIds: ctx.organizationIds ?? null,\n              request: ctx.request,\n            }\n            await resolveCanonicalActivityTargetId(em, commandBus, commandContext, parsed.id, tenantId)\n          } catch (err) {\n            // Bridging is best-effort; downstream lookup will surface a 404\n            // when neither canonical nor legacy rows exist.\n            console.warn('[customers.interactions.put] legacy bridge failed', { id: parsed.id, error: err })\n          }\n        }\n        return parsed\n      },\n      response: () => ({ ok: true }),\n    },\n    delete: {\n      commandId: 'customers.interactions.delete',\n      schema: rawBodySchema,\n      mapInput: async ({ parsed, ctx }) => {\n        const { translate } = await resolveTranslations()\n        const id =\n          parsed?.body?.id ??\n          parsed?.id ??\n          parsed?.query?.id ??\n          (ctx.request ? new URL(ctx.request.url).searchParams.get('id') : null)\n        if (!id) {\n          throw new CrudHttpError(400, {\n            error: translate('customers.errors.interaction_required', 'Interaction id is required'),\n          })\n        }\n        return { id }\n      },\n      response: () => ({ ok: true }),\n    },\n  },\n})\n\nconst { POST, PUT, DELETE } = crud\n\nexport { POST, PUT, DELETE }\n\ntype InteractionListRow = {\n  id: string\n  entity_id: string\n  deal_id: string | null\n  interaction_type: string\n  title: string | null\n  body: string | null\n  status: string\n  scheduled_at: Date | null\n  occurred_at: Date | null\n  priority: number | null\n  author_user_id: string | null\n  owner_user_id: string | null\n  appearance_icon: string | null\n  appearance_color: string | null\n  source: string | null\n  duration_minutes: number | null\n  location: string | null\n  all_day: boolean | null\n  recurrence_rule: string | null\n  recurrence_end: Date | null\n  participants: Array<{ userId: string; name?: string; email?: string; status?: string }> | null\n  reminder_minutes: number | null\n  visibility: string | null\n  linked_entities: Array<{ id: string; type: string; label: string }> | null\n  guest_permissions: { canInviteOthers?: boolean; canModify?: boolean; canSeeList?: boolean } | null\n  pinned: boolean\n  organization_id: string\n  tenant_id: string\n  created_at: Date\n  updated_at: Date\n  __sort_value: string | number | Date | null\n}\n\ntype CursorPayload = {\n  id: string\n  sortValue: string | number | null\n}\n\ntype RbacServiceLike = {\n  getGrantedFeatures?: (userId: string, input: { tenantId: string | null; organizationId: string | null }) => Promise<string[]>\n}\n\nconst cursorSchema = z.object({\n  id: z.string().uuid(),\n  sortValue: z.union([z.string(), z.number(), z.null()]),\n})\n\nconst interactionSortConfig = {\n  scheduledAt: { column: 'scheduled_at', type: 'date' as const, defaultDir: 'asc' as const },\n  occurredAt: { column: 'occurred_at', type: 'date' as const, defaultDir: 'desc' as const },\n  createdAt: { column: 'created_at', type: 'date' as const, defaultDir: 'desc' as const },\n  updatedAt: { column: 'updated_at', type: 'date' as const, defaultDir: 'desc' as const },\n  status: { column: 'status', type: 'text' as const, defaultDir: 'asc' as const },\n  priority: { column: 'priority', type: 'number' as const, defaultDir: 'desc' as const },\n  interactionType: { column: 'interaction_type', type: 'text' as const, defaultDir: 'asc' as const },\n  title: { column: 'title', type: 'text' as const, defaultDir: 'asc' as const },\n} as const\n\nfunction toIsoString(value: unknown): string | null {\n  if (value == null) return null\n  if (value instanceof Date) {\n    return Number.isNaN(value.getTime()) ? null : value.toISOString()\n  }\n  if (typeof value === 'string') {\n    const trimmed = value.trim()\n    if (!trimmed.length) return null\n    const parsed = new Date(trimmed)\n    return Number.isNaN(parsed.getTime()) ? trimmed : parsed.toISOString()\n  }\n  return null\n}\n\nfunction normalizeCursorValue(\n  value: string | number | Date | null,\n  type: 'date' | 'number' | 'text',\n): string | number | null {\n  if (value == null) return null\n  if (type === 'number') {\n    if (typeof value === 'number' && Number.isFinite(value)) return value\n    if (typeof value === 'string') {\n      const parsed = Number(value)\n      return Number.isNaN(parsed) ? null : parsed\n    }\n    return null\n  }\n  if (type === 'date') {\n    return toIsoString(value)\n  }\n  if (typeof value === 'string') return value\n  if (value instanceof Date) return value.toISOString()\n  return String(value)\n}\n\nfunction encodeCursor(payload: CursorPayload): string {\n  return Buffer.from(JSON.stringify(payload), 'utf8').toString('base64')\n}\n\nfunction decodeCursor(token: string | undefined, type: 'date' | 'number' | 'text'): CursorPayload | null {\n  if (!token) return null\n  try {\n    const decoded = Buffer.from(token, 'base64').toString('utf8')\n    const parsed = cursorSchema.parse(JSON.parse(decoded))\n    return {\n      id: parsed.id,\n      sortValue: normalizeCursorValue(parsed.sortValue, type),\n    }\n  } catch {\n    return null\n  }\n}\n\nfunction buildSortSql(\n  sortField: keyof typeof interactionSortConfig,\n  sortDir: 'asc' | 'desc',\n): string {\n  const config = interactionSortConfig[sortField]\n  if (config.type === 'date') {\n    const sentinel =\n      sortDir === 'asc'\n        ? \"timestamp with time zone '9999-12-31T23:59:59.999Z'\"\n        : \"timestamp with time zone '0001-01-01T00:00:00.000Z'\"\n    return `coalesce(${config.column}, ${sentinel})`\n  }\n  if (config.type === 'number') {\n    const sentinel = sortDir === 'asc' ? '2147483647' : '-2147483648'\n    return `coalesce(${config.column}, ${sentinel})`\n  }\n  const sentinel = sortDir === 'asc' ? \"'~~~~~~~~~~'\" : \"''\"\n  return `coalesce(${config.column}, ${sentinel})`\n}\n\nasync function resolveUserFeatures(\n  container: { resolve: (name: string) => unknown },\n  userId: string,\n  tenantId: string | null,\n  organizationId: string | null,\n): Promise<string[] | undefined> {\n  try {\n    const rbac = container.resolve('rbacService') as RbacServiceLike | undefined\n    if (!rbac?.getGrantedFeatures) return undefined\n    return await rbac.getGrantedFeatures(userId, { tenantId, organizationId })\n  } catch {\n    return undefined\n  }\n}\n\nasync function buildEnricherContext(\n  container: { resolve: (name: string) => unknown },\n  auth: NonNullable<Awaited<ReturnType<typeof getAuthFromRequest>>>,\n  organizationId: string | null,\n): Promise<EnricherContext> {\n  const userId =\n    (typeof auth.sub === 'string' && auth.sub.trim().length > 0\n      ? auth.sub\n      : typeof auth.userId === 'string' && auth.userId.trim().length > 0\n        ? auth.userId\n        : typeof auth.keyId === 'string' && auth.keyId.trim().length > 0\n          ? auth.keyId\n          : 'system')\n\n  return {\n    organizationId: organizationId ?? '',\n    tenantId: auth.tenantId ?? '',\n    userId,\n    em: container.resolve('em'),\n    container,\n    userFeatures: await resolveUserFeatures(container, userId, auth.tenantId ?? null, organizationId),\n  }\n}\n\nexport async function GET(req: Request) {\n  try {\n    const queryUrl = new URL(req.url)\n    const query = listSchema.parse(Object.fromEntries(queryUrl.searchParams))\n    const container = await createRequestContainer()\n    const auth = await getAuthFromRequest(req)\n    const { translate } = await resolveTranslations()\n\n    if (!auth || !auth.tenantId) {\n      throw new CrudHttpError(401, {\n        error: translate('customers.errors.unauthorized', 'Unauthorized'),\n      })\n    }\n\n    const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req })\n    const organizationIds = Array.isArray(scope?.filterIds) && scope.filterIds.length > 0\n      ? scope.filterIds\n      : auth.orgId\n        ? [auth.orgId]\n        : []\n    const selectedOrganizationId = scope?.selectedId ?? auth.orgId ?? organizationIds[0] ?? null\n    const em = (container.resolve('em') as EntityManager).fork()\n    const db = em.getKysely<any>() as any\n\n    const requestedSortField = query.sortField ?? 'scheduledAt'\n    const sortConfig = interactionSortConfig[requestedSortField]\n    const sortDir = query.sortDir ?? sortConfig.defaultDir\n    const sortSql = buildSortSql(requestedSortField, sortDir)\n    const cursor = decodeCursor(query.cursor, sortConfig.type)\n    if (query.cursor && !cursor) {\n      throw new CrudHttpError(400, {\n        error: translate('customers.interactions.cursor.invalid', 'Invalid cursor'),\n      })\n    }\n\n    let rowsQuery = db\n      .selectFrom('customer_interactions')\n      .select([\n        'id',\n        'entity_id',\n        'deal_id',\n        'interaction_type',\n        'title',\n        'body',\n        'status',\n        'scheduled_at',\n        'occurred_at',\n        'priority',\n        'author_user_id',\n        'owner_user_id',\n        'appearance_icon',\n        'appearance_color',\n        'source',\n        'duration_minutes',\n        'location',\n        'all_day',\n        'recurrence_rule',\n        'recurrence_end',\n        'participants',\n        'reminder_minutes',\n        'visibility',\n        'linked_entities',\n        'guest_permissions',\n        'pinned',\n        'organization_id',\n        'tenant_id',\n        'created_at',\n        'updated_at',\n        sql`${sql.raw(sortSql)}`.as('__sort_value'),\n      ])\n      .where('deleted_at', 'is', null)\n      .where('tenant_id', '=', auth.tenantId)\n      .limit(query.limit + 1)\n\n    if (organizationIds.length > 0) {\n      rowsQuery = rowsQuery.where('organization_id', 'in', organizationIds)\n    }\n    if (query.entityId) rowsQuery = rowsQuery.where('entity_id', '=', query.entityId)\n    if (query.dealId) rowsQuery = rowsQuery.where('deal_id', '=', query.dealId)\n    if (query.status) rowsQuery = rowsQuery.where('status', '=', query.status)\n    if (query.interactionType) rowsQuery = rowsQuery.where('interaction_type', '=', query.interactionType)\n    if (query.type) {\n      const types = query.type.split(',').map((t) => t.trim()).filter(Boolean)\n      if (types.length > 0) {\n        rowsQuery = rowsQuery.where('interaction_type', 'in', types)\n      }\n    }\n    if (query.pinned === 'true') {\n      rowsQuery = rowsQuery.where('pinned', '=', true)\n    } else if (query.pinned === 'false') {\n      rowsQuery = rowsQuery.where('pinned', '=', false)\n    }\n    if (query.excludeInteractionType) rowsQuery = rowsQuery.where('interaction_type', '!=', query.excludeInteractionType)\n    if (query.search) {\n      const searchTerm = `%${query.search}%`\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(title, '') ilike ${searchTerm} or coalesce(body, '') ilike ${searchTerm}`)\n    }\n    if (query.from) {\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(occurred_at, scheduled_at, created_at) >= ${new Date(query.from)}`)\n    }\n    if (query.to) {\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(occurred_at, scheduled_at, created_at) <= ${new Date(query.to)}`)\n    }\n\n    if (cursor) {\n      const op = sortDir === 'asc' ? '>' : '<'\n      const opRaw = sql.raw(op)\n      const sortRaw = sql.raw(sortSql)\n      rowsQuery = rowsQuery.where((eb: any) => eb.or([\n        sql<boolean>`${sortRaw} ${opRaw} ${cursor.sortValue}`,\n        eb.and([\n          sql<boolean>`${sortRaw} = ${cursor.sortValue}`,\n          eb('id', op, cursor.id),\n        ]),\n      ]))\n    }\n\n    rowsQuery = rowsQuery.orderBy(sql`${sql.raw(sortSql)} ${sql.raw(sortDir)}`).orderBy('id', sortDir)\n\n    const rows = await rowsQuery.execute() as InteractionListRow[]\n    const pageRows = rows.slice(0, query.limit)\n    const hasMore = rows.length > query.limit\n\n    const authorIds = Array.from(\n      new Set(\n        pageRows\n          .map((row) => (typeof row.author_user_id === 'string' ? row.author_user_id : null))\n          .filter((value): value is string => !!value),\n      ),\n    )\n    const dealIds = Array.from(\n      new Set(\n        pageRows\n          .map((row) => (typeof row.deal_id === 'string' ? row.deal_id : null))\n          .filter((value): value is string => !!value),\n      ),\n    )\n    const interactionIds = pageRows.map((row) => row.id)\n\n    const [users, deals, customFieldValues] = await Promise.all([\n      authorIds.length > 0 ? findWithDecryption(em, User, { id: { $in: authorIds } }, undefined, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),\n      dealIds.length > 0 ? findWithDecryption(em, CustomerDeal, { id: { $in: dealIds } }, undefined, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),\n      interactionIds.length > 0\n        ? loadCustomFieldValues({\n            em,\n            entityId: CUSTOMER_INTERACTION_ENTITY_ID,\n            recordIds: interactionIds,\n            tenantIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.tenant_id])),\n            organizationIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.organization_id])),\n            tenantFallbacks: [auth.tenantId].filter((value): value is string => !!value),\n          })\n        : Promise.resolve<Record<string, Record<string, unknown>>>({}),\n    ])\n\n    const userMap = new Map(\n      users.map((user) => [\n        user.id,\n        {\n          name: user.name ?? null,\n          email: user.email ?? null,\n        },\n      ]),\n    )\n    const dealMap = new Map(\n      deals.map((deal) => [deal.id, deal.title]),\n    )\n\n    const baseItems = pageRows.map((row) => ({\n      id: row.id,\n      entityId: row.entity_id,\n      dealId: row.deal_id ?? null,\n      interactionType: row.interaction_type,\n      title: row.title ?? null,\n      body: row.body ?? null,\n      status: row.status,\n      scheduledAt: toIsoString(row.scheduled_at),\n      occurredAt: toIsoString(row.occurred_at),\n      priority: row.priority ?? null,\n      authorUserId: row.author_user_id ?? null,\n      ownerUserId: row.owner_user_id ?? null,\n      appearanceIcon: row.appearance_icon ?? null,\n      appearanceColor: row.appearance_color ?? null,\n      source: row.source ?? null,\n      duration: row.duration_minutes ?? null,\n      durationMinutes: row.duration_minutes ?? null,\n      location: row.location ?? null,\n      allDay: row.all_day ?? null,\n      recurrenceRule: row.recurrence_rule ?? null,\n      recurrenceEnd: toIsoString(row.recurrence_end),\n      participants: row.participants ?? null,\n      reminderMinutes: row.reminder_minutes ?? null,\n      visibility: row.visibility ?? null,\n      linkedEntities: row.linked_entities ?? null,\n      guestPermissions: row.guest_permissions ?? null,\n      pinned: row.pinned ?? false,\n      organizationId: row.organization_id,\n      tenantId: row.tenant_id,\n      createdAt: toIsoString(row.created_at) ?? new Date().toISOString(),\n      updatedAt: toIsoString(row.updated_at) ?? new Date().toISOString(),\n      authorName: row.author_user_id ? userMap.get(row.author_user_id)?.name ?? null : null,\n      authorEmail: row.author_user_id ? userMap.get(row.author_user_id)?.email ?? null : null,\n      dealTitle: row.deal_id ? dealMap.get(row.deal_id) ?? null : null,\n      customValues: normalizeCustomFieldResponse(customFieldValues[row.id]) ?? null,\n    }))\n\n    const enricherContext = await buildEnricherContext(container, auth, selectedOrganizationId)\n    const enriched = await applyResponseEnrichers(baseItems, 'customers.interaction', enricherContext)\n\n    let nextCursor: string | undefined\n    if (hasMore && pageRows.length > 0) {\n      const last = pageRows[pageRows.length - 1]\n      nextCursor = encodeCursor({\n        id: last.id,\n        sortValue: normalizeCursorValue(last.__sort_value, sortConfig.type),\n      })\n    }\n\n    return NextResponse.json({\n      items: enriched.items,\n      nextCursor,\n    })\n  } catch (err) {\n    if (isCrudHttpError(err)) {\n      return NextResponse.json(err.body, { status: err.status })\n    }\n    if (err instanceof z.ZodError) {\n      return NextResponse.json(\n        { error: 'Validation failed', details: err.issues },\n        { status: 400 },\n      )\n    }\n    console.error('customers.interactions.get failed', err)\n    const { translate } = await resolveTranslations()\n    return NextResponse.json(\n      { error: translate('customers.interactions.load.error', 'Failed to load interactions.') },\n      { status: 500 },\n    )\n  }\n}\n\nconst interactionListItemSchema = z\n  .object({\n    id: z.string().uuid(),\n    entityId: z.string().uuid().nullable(),\n    dealId: z.string().uuid().nullable(),\n    interactionType: z.string(),\n    title: z.string().nullable(),\n    body: z.string().nullable(),\n    status: z.string(),\n    scheduledAt: z.string().nullable(),\n    occurredAt: z.string().nullable(),\n    priority: z.number().nullable(),\n    authorUserId: z.string().uuid().nullable(),\n    ownerUserId: z.string().uuid().nullable(),\n    appearanceIcon: z.string().nullable().optional(),\n    appearanceColor: z.string().nullable().optional(),\n    source: z.string().nullable().optional(),\n    duration: z.number().nullable().optional(),\n    durationMinutes: z.number().nullable().optional(),\n    location: z.string().nullable().optional(),\n    allDay: z.boolean().nullable().optional(),\n    recurrenceRule: z.string().nullable().optional(),\n    recurrenceEnd: z.string().nullable().optional(),\n    participants: z.array(\n      z.object({\n        userId: z.string().uuid(),\n        name: z.string().optional(),\n        email: z.string().optional(),\n        status: z.string().optional(),\n      }),\n    ).nullable().optional(),\n    reminderMinutes: z.number().nullable().optional(),\n    visibility: z.string().nullable().optional(),\n    linkedEntities: z.array(\n      z.object({\n        id: z.string().uuid(),\n        type: z.string(),\n        label: z.string(),\n      }),\n    ).nullable().optional(),\n    guestPermissions: z\n      .object({\n        canInviteOthers: z.boolean().optional(),\n        canModify: z.boolean().optional(),\n        canSeeList: z.boolean().optional(),\n      })\n      .nullable()\n      .optional(),\n    organizationId: z.string().uuid().nullable().optional(),\n    tenantId: z.string().uuid().nullable().optional(),\n    createdAt: z.string().nullable(),\n    updatedAt: z.string().nullable(),\n    authorName: z.string().nullable().optional(),\n    authorEmail: z.string().nullable().optional(),\n    dealTitle: z.string().nullable().optional(),\n    customValues: z.record(z.string(), z.unknown()).nullable().optional(),\n    _integrations: z.record(z.string(), z.unknown()).optional(),\n  })\n  .passthrough()\n\nconst interactionListResponseSchema = z.object({\n  items: z.array(interactionListItemSchema),\n  nextCursor: z.string().optional(),\n})\n\nconst interactionCreateResponseSchema = z.object({\n  id: z.string().uuid().nullable(),\n})\n\nexport const openApi = createCustomersCrudOpenApi({\n  resourceName: 'Interaction',\n  querySchema: listSchema,\n  listResponseSchema: interactionListResponseSchema,\n  create: {\n    schema: interactionCreateSchema,\n    responseSchema: interactionCreateResponseSchema,\n    description: 'Creates a new interaction linked to a customer entity or deal.',\n  },\n  update: {\n    schema: interactionUpdateSchema,\n    responseSchema: defaultOkResponseSchema,\n    description: 'Updates fields for an existing interaction.',\n  },\n  del: {\n    schema: z.object({ id: z.string().uuid() }),\n    responseSchema: defaultOkResponseSchema,\n    description: 'Soft-deletes an interaction identified by `id`. Accepts id via body or query string.',\n  },\n})\n"],
-  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,SAAS;AAElB,SAAS,WAAW;AACpB,SAAS,qBAAqB;AAC9B,SAAS,eAAe,uBAAuB;AAC/C,SAAS,6BAA6B;AACtC,SAAS,oCAAoC;AAC7C,SAAS,8BAA8B;AAEvC,SAAS,0BAA0B;AACnC,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AACnC,SAAS,0CAA0C;AACnD,SAAS,2BAA2B;AACpC,SAAS,cAAc,2BAA2B;AAClD,SAAS,YAAY;AACrB,SAAS,yBAAyB,+BAA+B;AACjE,SAAS,+BAA+B;AACxC;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP,SAAS,sCAAsC;AAC/C,SAAS,wCAAwC;AAGjD,MAAM,gBAAgB,EAAE,OAAO,CAAC,CAAC,EAAE,YAAY;AAE/C,MAAM,6BAA6B,EAAE,KAAK;AAAA,EACxC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAED,MAAM,aAAa,EAChB,OAAO;AAAA,EACN,OAAO,EAAE,OAAO,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG,EAAE,QAAQ,EAAE;AAAA,EACnD,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5B,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACrC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACnC,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5B,iBAAiB,EAAE,OAAO,EAAE,SAAS;AAAA,EACrC,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,wBAAwB,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5C,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAC1C,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,IAAI,EAAE,OAAO,EAAE,SAAS;AAAA,EACxB,QAAQ,EAAE,KAAK,CAAC,QAAQ,OAAO,CAAC,EAAE,SAAS;AAAA,EAC3C,WAAW,2BAA2B,SAAS;AAAA,EAC/C,SAAS,EAAE,KAAK,CAAC,OAAO,MAAM,CAAC,EAAE,SAAS;AAC5C,CAAC,EACA,YAAY;AAEf,MAAM,gBAAgB;AAAA,EACpB,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,6BAA6B,EAAE;AAAA,EAC3E,MAAM,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAAA,EAC9E,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAAA,EAC7E,QAAQ,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAClF;AAEO,MAAM,WAAW;AAExB,MAAM,OAAO,cAAc;AAAA,EACzB,UAAU;AAAA,EACV,KAAK;AAAA,IACH,QAAQ;AAAA,IACR,SAAS;AAAA,IACT,UAAU;AAAA,IACV,aAAa;AAAA,IACb,iBAAiB;AAAA,EACnB;AAAA,EACA,WAAW,EAAE,UAAU,wBAAwB;AAAA,EAC/C,SAAS;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA,SAAS;AAAA,IACP,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,KAAK,IAAI,MAAM;AAChC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,eAAO,wBAAwB,yBAAyB,OAAO,CAAC,GAAG,KAAK,SAAS;AAAA,MACnF;AAAA,MACA,UAAU,CAAC,EAAE,OAAO,OAAO,EAAE,IAAI,QAAQ,iBAAiB,QAAQ,MAAM,KAAK;AAAA,MAC7E,QAAQ;AAAA,IACV;AAAA,IACA,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,KAAK,IAAI,MAAM;AAChC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,cAAM,SAAS,wBAAwB,yBAAyB,OAAO,CAAC,GAAG,KAAK,SAAS;AAKzF,cAAM,WAAW,IAAI,MAAM,YAAY;AACvC,YAAI,OAAO,OAAO,OAAO,YAAY,UAAU;AAC7C,cAAI;AACF,kBAAM,KAAK,IAAI,UAAU,QAAQ,IAAI;AACrC,kBAAM,aAAa,IAAI,UAAU,QAAQ,YAAY;AACrD,kBAAM,iBAAwC;AAAA,cAC5C,WAAW,IAAI;AAAA,cACf,MAAM,IAAI,QAAQ;AAAA,cAClB,mBAAmB,IAAI,qBAAqB;AAAA,cAC5C,wBAAwB,IAAI,0BAA0B;AAAA,cACtD,iBAAiB,IAAI,mBAAmB;AAAA,cACxC,SAAS,IAAI;AAAA,YACf;AACA,kBAAM,iCAAiC,IAAI,YAAY,gBAAgB,OAAO,IAAI,QAAQ;AAAA,UAC5F,SAAS,KAAK;AAGZ,oBAAQ,KAAK,qDAAqD,EAAE,IAAI,OAAO,IAAI,OAAO,IAAI,CAAC;AAAA,UACjG;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,MACA,UAAU,OAAO,EAAE,IAAI,KAAK;AAAA,IAC9B;AAAA,IACA,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,QAAQ,IAAI,MAAM;AACnC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,cAAM,KACJ,QAAQ,MAAM,MACd,QAAQ,MACR,QAAQ,OAAO,OACd,IAAI,UAAU,IAAI,IAAI,IAAI,QAAQ,GAAG,EAAE,aAAa,IAAI,IAAI,IAAI;AACnE,YAAI,CAAC,IAAI;AACP,gBAAM,IAAI,cAAc,KAAK;AAAA,YAC3B,OAAO,UAAU,yCAAyC,4BAA4B;AAAA,UACxF,CAAC;AAAA,QACH;AACA,eAAO,EAAE,GAAG;AAAA,MACd;AAAA,MACA,UAAU,OAAO,EAAE,IAAI,KAAK;AAAA,IAC9B;AAAA,EACF;AACF,CAAC;AAED,MAAM,EAAE,MAAM,KAAK,OAAO,IAAI;AA+C9B,MAAM,eAAe,EAAE,OAAO;AAAA,EAC5B,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,EACpB,WAAW,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,EAAE,OAAO,GAAG,EAAE,KAAK,CAAC,CAAC;AACvD,CAAC;AAED,MAAM,wBAAwB;AAAA,EAC5B,aAAa,EAAE,QAAQ,gBAAgB,MAAM,QAAiB,YAAY,MAAe;AAAA,EACzF,YAAY,EAAE,QAAQ,eAAe,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACxF,WAAW,EAAE,QAAQ,cAAc,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACtF,WAAW,EAAE,QAAQ,cAAc,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACtF,QAAQ,EAAE,QAAQ,UAAU,MAAM,QAAiB,YAAY,MAAe;AAAA,EAC9E,UAAU,EAAE,QAAQ,YAAY,MAAM,UAAmB,YAAY,OAAgB;AAAA,EACrF,iBAAiB,EAAE,QAAQ,oBAAoB,MAAM,QAAiB,YAAY,MAAe;AAAA,EACjG,OAAO,EAAE,QAAQ,SAAS,MAAM,QAAiB,YAAY,MAAe;AAC9E;AAEA,SAAS,YAAY,OAA+B;AAClD,MAAI,SAAS,KAAM,QAAO;AAC1B,MAAI,iBAAiB,MAAM;AACzB,WAAO,OAAO,MAAM,MAAM,QAAQ,CAAC,IAAI,OAAO,MAAM,YAAY;AAAA,EAClE;AACA,MAAI,OAAO,UAAU,UAAU;AAC7B,UAAM,UAAU,MAAM,KAAK;AAC3B,QAAI,CAAC,QAAQ,OAAQ,QAAO;AAC5B,UAAM,SAAS,IAAI,KAAK,OAAO;AAC/B,WAAO,OAAO,MAAM,OAAO,QAAQ,CAAC,IAAI,UAAU,OAAO,YAAY;AAAA,EACvE;AACA,SAAO;AACT;AAEA,SAAS,qBACP,OACA,MACwB;AACxB,MAAI,SAAS,KAAM,QAAO;AAC1B,MAAI,SAAS,UAAU;AACrB,QAAI,OAAO,UAAU,YAAY,OAAO,SAAS,KAAK,EAAG,QAAO;AAChE,QAAI,OAAO,UAAU,UAAU;AAC7B,YAAM,SAAS,OAAO,KAAK;AAC3B,aAAO,OAAO,MAAM,MAAM,IAAI,OAAO;AAAA,IACvC;AACA,WAAO;AAAA,EACT;AACA,MAAI,SAAS,QAAQ;AACnB,WAAO,YAAY,KAAK;AAAA,EAC1B;AACA,MAAI,OAAO,UAAU,SAAU,QAAO;AACtC,MAAI,iBAAiB,KAAM,QAAO,MAAM,YAAY;AACpD,SAAO,OAAO,KAAK;AACrB;AAEA,SAAS,aAAa,SAAgC;AACpD,SAAO,OAAO,KAAK,KAAK,UAAU,OAAO,GAAG,MAAM,EAAE,SAAS,QAAQ;AACvE;AAEA,SAAS,aAAa,OAA2B,MAAwD;AACvG,MAAI,CAAC,MAAO,QAAO;AACnB,MAAI;AACF,UAAM,UAAU,OAAO,KAAK,OAAO,QAAQ,EAAE,SAAS,MAAM;AAC5D,UAAM,SAAS,aAAa,MAAM,KAAK,MAAM,OAAO,CAAC;AACrD,WAAO;AAAA,MACL,IAAI,OAAO;AAAA,MACX,WAAW,qBAAqB,OAAO,WAAW,IAAI;AAAA,IACxD;AAAA,EACF,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,SAAS,aACP,WACA,SACQ;AACR,QAAM,SAAS,sBAAsB,SAAS;AAC9C,MAAI,OAAO,SAAS,QAAQ;AAC1B,UAAMA,YACJ,YAAY,QACR,wDACA;AACN,WAAO,YAAY,OAAO,MAAM,KAAKA,SAAQ;AAAA,EAC/C;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,UAAMA,YAAW,YAAY,QAAQ,eAAe;AACpD,WAAO,YAAY,OAAO,MAAM,KAAKA,SAAQ;AAAA,EAC/C;AACA,QAAM,WAAW,YAAY,QAAQ,iBAAiB;AACtD,SAAO,YAAY,OAAO,MAAM,KAAK,QAAQ;AAC/C;AAEA,eAAe,oBACb,WACA,QACA,UACA,gBAC+B;AAC/B,MAAI;AACF,UAAM,OAAO,UAAU,QAAQ,aAAa;AAC5C,QAAI,CAAC,MAAM,mBAAoB,QAAO;AACtC,WAAO,MAAM,KAAK,mBAAmB,QAAQ,EAAE,UAAU,eAAe,CAAC;AAAA,EAC3E,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,eAAe,qBACb,WACA,MACA,gBAC0B;AAC1B,QAAM,SACH,OAAO,KAAK,QAAQ,YAAY,KAAK,IAAI,KAAK,EAAE,SAAS,IACtD,KAAK,MACL,OAAO,KAAK,WAAW,YAAY,KAAK,OAAO,KAAK,EAAE,SAAS,IAC7D,KAAK,SACL,OAAO,KAAK,UAAU,YAAY,KAAK,MAAM,KAAK,EAAE,SAAS,IAC3D,KAAK,QACL;AAEV,SAAO;AAAA,IACL,gBAAgB,kBAAkB;AAAA,IAClC,UAAU,KAAK,YAAY;AAAA,IAC3B;AAAA,IACA,IAAI,UAAU,QAAQ,IAAI;AAAA,IAC1B;AAAA,IACA,cAAc,MAAM,oBAAoB,WAAW,QAAQ,KAAK,YAAY,MAAM,cAAc;AAAA,EAClG;AACF;AAEA,eAAsB,IAAI,KAAc;AACtC,MAAI;AACF,UAAM,WAAW,IAAI,IAAI,IAAI,GAAG;AAChC,UAAM,QAAQ,WAAW,MAAM,OAAO,YAAY,SAAS,YAAY,CAAC;AACxE,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAEhD,QAAI,CAAC,QAAQ,CAAC,KAAK,UAAU;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,iCAAiC,cAAc;AAAA,MAClE,CAAC;AAAA,IACH;AAEA,UAAM,QAAQ,MAAM,mCAAmC,EAAE,WAAW,MAAM,SAAS,IAAI,CAAC;AACxF,UAAM,kBAAkB,MAAM,QAAQ,OAAO,SAAS,KAAK,MAAM,UAAU,SAAS,IAChF,MAAM,YACN,KAAK,QACH,CAAC,KAAK,KAAK,IACX,CAAC;AACP,UAAM,yBAAyB,OAAO,cAAc,KAAK,SAAS,gBAAgB,CAAC,KAAK;AACxF,UAAM,KAAM,UAAU,QAAQ,IAAI,EAAoB,KAAK;AAC3D,UAAM,KAAK,GAAG,UAAe;AAE7B,UAAM,qBAAqB,MAAM,aAAa;AAC9C,UAAM,aAAa,sBAAsB,kBAAkB;AAC3D,UAAM,UAAU,MAAM,WAAW,WAAW;AAC5C,UAAM,UAAU,aAAa,oBAAoB,OAAO;AACxD,UAAM,SAAS,aAAa,MAAM,QAAQ,WAAW,IAAI;AACzD,QAAI,MAAM,UAAU,CAAC,QAAQ;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,yCAAyC,gBAAgB;AAAA,MAC5E,CAAC;AAAA,IACH;AAEA,QAAI,YAAY,GACb,WAAW,uBAAuB,EAClC,OAAO;AAAA,MACN;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA,MAAM,IAAI,IAAI,OAAO,CAAC,GAAG,GAAG,cAAc;AAAA,IAC5C,CAAC,EACA,MAAM,cAAc,MAAM,IAAI,EAC9B,MAAM,aAAa,KAAK,KAAK,QAAQ,EACrC,MAAM,MAAM,QAAQ,CAAC;AAExB,QAAI,gBAAgB,SAAS,GAAG;AAC9B,kBAAY,UAAU,MAAM,mBAAmB,MAAM,eAAe;AAAA,IACtE;AACA,QAAI,MAAM,SAAU,aAAY,UAAU,MAAM,aAAa,KAAK,MAAM,QAAQ;AAChF,QAAI,MAAM,OAAQ,aAAY,UAAU,MAAM,WAAW,KAAK,MAAM,MAAM;AAC1E,QAAI,MAAM,OAAQ,aAAY,UAAU,MAAM,UAAU,KAAK,MAAM,MAAM;AACzE,QAAI,MAAM,gBAAiB,aAAY,UAAU,MAAM,oBAAoB,KAAK,MAAM,eAAe;AACrG,QAAI,MAAM,MAAM;AACd,YAAM,QAAQ,MAAM,KAAK,MAAM,GAAG,EAAE,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,OAAO,OAAO;AACvE,UAAI,MAAM,SAAS,GAAG;AACpB,oBAAY,UAAU,MAAM,oBAAoB,MAAM,KAAK;AAAA,MAC7D;AAAA,IACF;AACA,QAAI,MAAM,WAAW,QAAQ;AAC3B,kBAAY,UAAU,MAAM,UAAU,KAAK,IAAI;AAAA,IACjD,WAAW,MAAM,WAAW,SAAS;AACnC,kBAAY,UAAU,MAAM,UAAU,KAAK,KAAK;AAAA,IAClD;AACA,QAAI,MAAM,uBAAwB,aAAY,UAAU,MAAM,oBAAoB,MAAM,MAAM,sBAAsB;AACpH,QAAI,MAAM,QAAQ;AAChB,YAAM,aAAa,IAAI,MAAM,MAAM;AACnC,kBAAY,UAAU,MAAM,gCAAyC,UAAU,gCAAgC,UAAU,EAAE;AAAA,IAC7H;AACA,QAAI,MAAM,MAAM;AACd,kBAAY,UAAU,MAAM,yDAAkE,IAAI,KAAK,MAAM,IAAI,CAAC,EAAE;AAAA,IACtH;AACA,QAAI,MAAM,IAAI;AACZ,kBAAY,UAAU,MAAM,yDAAkE,IAAI,KAAK,MAAM,EAAE,CAAC,EAAE;AAAA,IACpH;AAEA,QAAI,QAAQ;AACV,YAAM,KAAK,YAAY,QAAQ,MAAM;AACrC,YAAM,QAAQ,IAAI,IAAI,EAAE;AACxB,YAAM,UAAU,IAAI,IAAI,OAAO;AAC/B,kBAAY,UAAU,MAAM,CAAC,OAAY,GAAG,GAAG;AAAA,QAC7C,MAAe,OAAO,IAAI,KAAK,IAAI,OAAO,SAAS;AAAA,QACnD,GAAG,IAAI;AAAA,UACL,MAAe,OAAO,MAAM,OAAO,SAAS;AAAA,UAC5C,GAAG,MAAM,IAAI,OAAO,EAAE;AAAA,QACxB,CAAC;AAAA,MACH,CAAC,CAAC;AAAA,IACJ;AAEA,gBAAY,UAAU,QAAQ,MAAM,IAAI,IAAI,OAAO,CAAC,IAAI,IAAI,IAAI,OAAO,CAAC,EAAE,EAAE,QAAQ,MAAM,OAAO;AAEjG,UAAM,OAAO,MAAM,UAAU,QAAQ;AACrC,UAAM,WAAW,KAAK,MAAM,GAAG,MAAM,KAAK;AAC1C,UAAM,UAAU,KAAK,SAAS,MAAM;AAEpC,UAAM,YAAY,MAAM;AAAA,MACtB,IAAI;AAAA,QACF,SACG,IAAI,CAAC,QAAS,OAAO,IAAI,mBAAmB,WAAW,IAAI,iBAAiB,IAAK,EACjF,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC/C;AAAA,IACF;AACA,UAAM,UAAU,MAAM;AAAA,MACpB,IAAI;AAAA,QACF,SACG,IAAI,CAAC,QAAS,OAAO,IAAI,YAAY,WAAW,IAAI,UAAU,IAAK,EACnE,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC/C;AAAA,IACF;AACA,UAAM,iBAAiB,SAAS,IAAI,CAAC,QAAQ,IAAI,EAAE;AAEnD,UAAM,CAAC,OAAO,OAAO,iBAAiB,IAAI,MAAM,QAAQ,IAAI;AAAA,MAC1D,UAAU,SAAS,IAAI,mBAAmB,IAAI,MAAM,EAAE,IAAI,EAAE,KAAK,UAAU,EAAE,GAAG,QAAW,EAAE,UAAU,KAAK,UAAU,gBAAgB,uBAAuB,CAAC,IAAI,QAAQ,QAAQ,CAAC,CAAC;AAAA,MACpL,QAAQ,SAAS,IAAI,mBAAmB,IAAI,cAAc,EAAE,IAAI,EAAE,KAAK,QAAQ,EAAE,GAAG,QAAW,EAAE,UAAU,KAAK,UAAU,gBAAgB,uBAAuB,CAAC,IAAI,QAAQ,QAAQ,CAAC,CAAC;AAAA,MACxL,eAAe,SAAS,IACpB,sBAAsB;AAAA,QACpB;AAAA,QACA,UAAU;AAAA,QACV,WAAW;AAAA,QACX,kBAAkB,OAAO,YAAY,SAAS,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,SAAS,CAAC,CAAC;AAAA,QACnF,wBAAwB,OAAO,YAAY,SAAS,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,eAAe,CAAC,CAAC;AAAA,QAC/F,iBAAiB,CAAC,KAAK,QAAQ,EAAE,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC7E,CAAC,IACD,QAAQ,QAAiD,CAAC,CAAC;AAAA,IACjE,CAAC;AAED,UAAM,UAAU,IAAI;AAAA,MAClB,MAAM,IAAI,CAAC,SAAS;AAAA,QAClB,KAAK;AAAA,QACL;AAAA,UACE,MAAM,KAAK,QAAQ;AAAA,UACnB,OAAO,KAAK,SAAS;AAAA,QACvB;AAAA,MACF,CAAC;AAAA,IACH;AACA,UAAM,UAAU,IAAI;AAAA,MAClB,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,IAAI,KAAK,KAAK,CAAC;AAAA,IAC3C;AAEA,UAAM,YAAY,SAAS,IAAI,CAAC,SAAS;AAAA,MACvC,IAAI,IAAI;AAAA,MACR,UAAU,IAAI;AAAA,MACd,QAAQ,IAAI,WAAW;AAAA,MACvB,iBAAiB,IAAI;AAAA,MACrB,OAAO,IAAI,SAAS;AAAA,MACpB,MAAM,IAAI,QAAQ;AAAA,MAClB,QAAQ,IAAI;AAAA,MACZ,aAAa,YAAY,IAAI,YAAY;AAAA,MACzC,YAAY,YAAY,IAAI,WAAW;AAAA,MACvC,UAAU,IAAI,YAAY;AAAA,MAC1B,cAAc,IAAI,kBAAkB;AAAA,MACpC,aAAa,IAAI,iBAAiB;AAAA,MAClC,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,QAAQ,IAAI,UAAU;AAAA,MACtB,UAAU,IAAI,oBAAoB;AAAA,MAClC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,UAAU,IAAI,YAAY;AAAA,MAC1B,QAAQ,IAAI,WAAW;AAAA,MACvB,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,eAAe,YAAY,IAAI,cAAc;AAAA,MAC7C,cAAc,IAAI,gBAAgB;AAAA,MAClC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,YAAY,IAAI,cAAc;AAAA,MAC9B,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,kBAAkB,IAAI,qBAAqB;AAAA,MAC3C,QAAQ,IAAI,UAAU;AAAA,MACtB,gBAAgB,IAAI;AAAA,MACpB,UAAU,IAAI;AAAA,MACd,WAAW,YAAY,IAAI,UAAU,MAAK,oBAAI,KAAK,GAAE,YAAY;AAAA,MACjE,WAAW,YAAY,IAAI,UAAU,MAAK,oBAAI,KAAK,GAAE,YAAY;AAAA,MACjE,YAAY,IAAI,iBAAiB,QAAQ,IAAI,IAAI,cAAc,GAAG,QAAQ,OAAO;AAAA,MACjF,aAAa,IAAI,iBAAiB,QAAQ,IAAI,IAAI,cAAc,GAAG,SAAS,OAAO;AAAA,MACnF,WAAW,IAAI,UAAU,QAAQ,IAAI,IAAI,OAAO,KAAK,OAAO;AAAA,MAC5D,cAAc,6BAA6B,kBAAkB,IAAI,EAAE,CAAC,KAAK;AAAA,IAC3E,EAAE;AAEF,UAAM,kBAAkB,MAAM,qBAAqB,WAAW,MAAM,sBAAsB;AAC1F,UAAM,WAAW,MAAM,uBAAuB,WAAW,yBAAyB,eAAe;AAEjG,QAAI;AACJ,QAAI,WAAW,SAAS,SAAS,GAAG;AAClC,YAAM,OAAO,SAAS,SAAS,SAAS,CAAC;AACzC,mBAAa,aAAa;AAAA,QACxB,IAAI,KAAK;AAAA,QACT,WAAW,qBAAqB,KAAK,cAAc,WAAW,IAAI;AAAA,MACpE,CAAC;AAAA,IACH;AAEA,WAAO,aAAa,KAAK;AAAA,MACvB,OAAO,SAAS;AAAA,MAChB;AAAA,IACF,CAAC;AAAA,EACH,SAAS,KAAK;AACZ,QAAI,gBAAgB,GAAG,GAAG;AACxB,aAAO,aAAa,KAAK,IAAI,MAAM,EAAE,QAAQ,IAAI,OAAO,CAAC;AAAA,IAC3D;AACA,QAAI,eAAe,EAAE,UAAU;AAC7B,aAAO,aAAa;AAAA,QAClB,EAAE,OAAO,qBAAqB,SAAS,IAAI,OAAO;AAAA,QAClD,EAAE,QAAQ,IAAI;AAAA,MAChB;AAAA,IACF;AACA,YAAQ,MAAM,qCAAqC,GAAG;AACtD,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,WAAO,aAAa;AAAA,MAClB,EAAE,OAAO,UAAU,qCAAqC,8BAA8B,EAAE;AAAA,MACxF,EAAE,QAAQ,IAAI;AAAA,IAChB;AAAA,EACF;AACF;AAEA,MAAM,4BAA4B,EAC/B,OAAO;AAAA,EACN,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,EACpB,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACrC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACnC,iBAAiB,EAAE,OAAO;AAAA,EAC1B,OAAO,EAAE,OAAO,EAAE,SAAS;AAAA,EAC3B,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,QAAQ,EAAE,OAAO;AAAA,EACjB,aAAa,EAAE,OAAO,EAAE,SAAS;AAAA,EACjC,YAAY,EAAE,OAAO,EAAE,SAAS;AAAA,EAChC,UAAU,EAAE,OAAO,EAAE,SAAS;AAAA,EAC9B,cAAc,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACzC,aAAa,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACxC,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC/C,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACvC,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACzC,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACzC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS;AAAA,EACxC,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC/C,eAAe,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC9C,cAAc,EAAE;AAAA,IACd,EAAE,OAAO;AAAA,MACP,QAAQ,EAAE,OAAO,EAAE,KAAK;AAAA,MACxB,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,MAC1B,OAAO,EAAE,OAAO,EAAE,SAAS;AAAA,MAC3B,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,IAC9B,CAAC;AAAA,EACH,EAAE,SAAS,EAAE,SAAS;AAAA,EACtB,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC3C,gBAAgB,EAAE;AAAA,IAChB,EAAE,OAAO;AAAA,MACP,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,MACpB,MAAM,EAAE,OAAO;AAAA,MACf,OAAO,EAAE,OAAO;AAAA,IAClB,CAAC;AAAA,EACH,EAAE,SAAS,EAAE,SAAS;AAAA,EACtB,kBAAkB,EACf,OAAO;AAAA,IACN,iBAAiB,EAAE,QAAQ,EAAE,SAAS;AAAA,IACtC,WAAW,EAAE,QAAQ,EAAE,SAAS;AAAA,IAChC,YAAY,EAAE,QAAQ,EAAE,SAAS;AAAA,EACnC,CAAC,EACA,SAAS,EACT,SAAS;AAAA,EACZ,gBAAgB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EACtD,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC3C,aAAa,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC5C,WAAW,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC1C,cAAc,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,EAAE,SAAS,EAAE,SAAS;AAAA,EACpE,eAAe,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,EAAE,SAAS;AAC5D,CAAC,EACA,YAAY;AAEf,MAAM,gCAAgC,EAAE,OAAO;AAAA,EAC7C,OAAO,EAAE,MAAM,yBAAyB;AAAA,EACxC,YAAY,EAAE,OAAO,EAAE,SAAS;AAClC,CAAC;AAED,MAAM,kCAAkC,EAAE,OAAO;AAAA,EAC/C,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AACjC,CAAC;AAEM,MAAM,UAAU,2BAA2B;AAAA,EAChD,cAAc;AAAA,EACd,aAAa;AAAA,EACb,oBAAoB;AAAA,EACpB,QAAQ;AAAA,IACN,QAAQ;AAAA,IACR,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AAAA,EACA,QAAQ;AAAA,IACN,QAAQ;AAAA,IACR,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AAAA,EACA,KAAK;AAAA,IACH,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AAAA,IAC1C,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AACF,CAAC;",
+  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { sql } from 'kysely'\nimport { makeCrudRoute } from '@open-mercato/shared/lib/crud/factory'\nimport { CrudHttpError, isCrudHttpError } from '@open-mercato/shared/lib/crud/errors'\nimport { loadCustomFieldValues } from '@open-mercato/shared/lib/crud/custom-fields'\nimport { normalizeCustomFieldResponse } from '@open-mercato/shared/lib/custom-fields/normalize'\nimport { applyResponseEnrichers } from '@open-mercato/shared/lib/crud/enricher-runner'\nimport type { EnricherContext } from '@open-mercato/shared/lib/crud/response-enricher'\nimport { findWithDecryption } from '@open-mercato/shared/lib/encryption/find'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { resolveOrganizationScopeForRequest } from '@open-mercato/core/modules/directory/utils/organizationScope'\nimport { resolveTranslations } from '@open-mercato/shared/lib/i18n/server'\nimport { CustomerDeal, CustomerInteraction } from '../../data/entities'\nimport { User } from '@open-mercato/core/modules/auth/data/entities'\nimport { interactionCreateSchema, interactionUpdateSchema } from '../../data/validators'\nimport { parseScopedCommandInput } from '../utils'\nimport {\n  createCustomersCrudOpenApi,\n  defaultOkResponseSchema,\n} from '../openapi'\nimport { CUSTOMER_INTERACTION_ENTITY_ID } from '../../lib/interactionCompatibility'\nimport { applyEmailVisibilityFilter } from '../../lib/visibilityFilter'\nimport { resolveCanonicalActivityTargetId } from '../../lib/legacyActivityBridge'\nimport type { CommandBus, CommandRuntimeContext } from '@open-mercato/shared/lib/commands'\n\nconst rawBodySchema = z.object({}).passthrough()\n\nconst interactionSortFieldSchema = z.enum([\n  'scheduledAt',\n  'occurredAt',\n  'createdAt',\n  'updatedAt',\n  'status',\n  'priority',\n  'interactionType',\n  'title',\n])\n\nconst listSchema = z\n  .object({\n    limit: z.coerce.number().min(1).max(100).default(25),\n    cursor: z.string().optional(),\n    entityId: z.string().uuid().optional(),\n    dealId: z.string().uuid().optional(),\n    status: z.string().optional(),\n    interactionType: z.string().optional(),\n    type: z.string().optional(),\n    excludeInteractionType: z.string().optional(),\n    search: z.string().trim().min(1).optional(),\n    from: z.string().optional(),\n    to: z.string().optional(),\n    pinned: z.enum(['true', 'false']).optional(),\n    sortField: interactionSortFieldSchema.optional(),\n    sortDir: z.enum(['asc', 'desc']).optional(),\n  })\n  .passthrough()\n\nconst routeMetadata = {\n  GET: { requireAuth: true, requireFeatures: ['customers.interactions.view'] },\n  POST: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n  PUT: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n  DELETE: { requireAuth: true, requireFeatures: ['customers.interactions.manage'] },\n}\n\nexport const metadata = routeMetadata\n\nconst crud = makeCrudRoute({\n  metadata: routeMetadata,\n  orm: {\n    entity: CustomerInteraction,\n    idField: 'id',\n    orgField: 'organizationId',\n    tenantField: 'tenantId',\n    softDeleteField: 'deletedAt',\n  },\n  enrichers: { entityId: 'customers.interaction' },\n  indexer: {\n    entityType: 'customers:customer_interaction',\n  },\n  actions: {\n    create: {\n      commandId: 'customers.interactions.create',\n      schema: rawBodySchema,\n      mapInput: async ({ raw, ctx }) => {\n        const { translate } = await resolveTranslations()\n        return parseScopedCommandInput(interactionCreateSchema, raw ?? {}, ctx, translate)\n      },\n      response: ({ result }) => ({ id: result?.interactionId ?? result?.id ?? null }),\n      status: 201,\n    },\n    update: {\n      commandId: 'customers.interactions.update',\n      schema: rawBodySchema,\n      mapInput: async ({ raw, ctx }) => {\n        const { translate } = await resolveTranslations()\n        const parsed = parseScopedCommandInput(interactionUpdateSchema, raw ?? {}, ctx, translate)\n        // Bridge legacy `customer_activities` rows into `customer_interactions`\n        // before the canonical update runs so historical activities (#1807)\n        // remain editable through the new dialog. No-op when the canonical\n        // record already exists.\n        const tenantId = ctx.auth?.tenantId ?? null\n        if (typeof parsed.id === 'string' && tenantId) {\n          try {\n            const em = ctx.container.resolve('em') as EntityManager\n            const commandBus = ctx.container.resolve('commandBus') as CommandBus\n            const commandContext: CommandRuntimeContext = {\n              container: ctx.container,\n              auth: ctx.auth ?? null,\n              organizationScope: ctx.organizationScope ?? null,\n              selectedOrganizationId: ctx.selectedOrganizationId ?? null,\n              organizationIds: ctx.organizationIds ?? null,\n              request: ctx.request,\n            }\n            await resolveCanonicalActivityTargetId(em, commandBus, commandContext, parsed.id, tenantId)\n          } catch (err) {\n            // Bridging is best-effort; downstream lookup will surface a 404\n            // when neither canonical nor legacy rows exist.\n            console.warn('[customers.interactions.put] legacy bridge failed', { id: parsed.id, error: err })\n          }\n        }\n        return parsed\n      },\n      response: () => ({ ok: true }),\n    },\n    delete: {\n      commandId: 'customers.interactions.delete',\n      schema: rawBodySchema,\n      mapInput: async ({ parsed, ctx }) => {\n        const { translate } = await resolveTranslations()\n        const id =\n          parsed?.body?.id ??\n          parsed?.id ??\n          parsed?.query?.id ??\n          (ctx.request ? new URL(ctx.request.url).searchParams.get('id') : null)\n        if (!id) {\n          throw new CrudHttpError(400, {\n            error: translate('customers.errors.interaction_required', 'Interaction id is required'),\n          })\n        }\n        return { id }\n      },\n      response: () => ({ ok: true }),\n    },\n  },\n})\n\nconst { POST, PUT, DELETE } = crud\n\nexport { POST, PUT, DELETE }\n\ntype InteractionListRow = {\n  id: string\n  entity_id: string\n  deal_id: string | null\n  interaction_type: string\n  title: string | null\n  body: string | null\n  status: string\n  scheduled_at: Date | null\n  occurred_at: Date | null\n  priority: number | null\n  author_user_id: string | null\n  owner_user_id: string | null\n  appearance_icon: string | null\n  appearance_color: string | null\n  source: string | null\n  duration_minutes: number | null\n  location: string | null\n  all_day: boolean | null\n  recurrence_rule: string | null\n  recurrence_end: Date | null\n  participants: Array<{ userId: string; name?: string; email?: string; status?: string }> | null\n  reminder_minutes: number | null\n  visibility: string | null\n  linked_entities: Array<{ id: string; type: string; label: string }> | null\n  guest_permissions: { canInviteOthers?: boolean; canModify?: boolean; canSeeList?: boolean } | null\n  pinned: boolean\n  organization_id: string\n  tenant_id: string\n  created_at: Date\n  updated_at: Date\n  __sort_value: string | number | Date | null\n}\n\ntype CursorPayload = {\n  id: string\n  sortValue: string | number | null\n}\n\ntype RbacServiceLike = {\n  getGrantedFeatures?: (userId: string, input: { tenantId: string | null; organizationId: string | null }) => Promise<string[]>\n}\n\nconst cursorSchema = z.object({\n  id: z.string().uuid(),\n  sortValue: z.union([z.string(), z.number(), z.null()]),\n})\n\nconst interactionSortConfig = {\n  scheduledAt: { column: 'scheduled_at', type: 'date' as const, defaultDir: 'asc' as const },\n  occurredAt: { column: 'occurred_at', type: 'date' as const, defaultDir: 'desc' as const },\n  createdAt: { column: 'created_at', type: 'date' as const, defaultDir: 'desc' as const },\n  updatedAt: { column: 'updated_at', type: 'date' as const, defaultDir: 'desc' as const },\n  status: { column: 'status', type: 'text' as const, defaultDir: 'asc' as const },\n  priority: { column: 'priority', type: 'number' as const, defaultDir: 'desc' as const },\n  interactionType: { column: 'interaction_type', type: 'text' as const, defaultDir: 'asc' as const },\n  title: { column: 'title', type: 'text' as const, defaultDir: 'asc' as const },\n} as const\n\nfunction toIsoString(value: unknown): string | null {\n  if (value == null) return null\n  if (value instanceof Date) {\n    return Number.isNaN(value.getTime()) ? null : value.toISOString()\n  }\n  if (typeof value === 'string') {\n    const trimmed = value.trim()\n    if (!trimmed.length) return null\n    const parsed = new Date(trimmed)\n    return Number.isNaN(parsed.getTime()) ? trimmed : parsed.toISOString()\n  }\n  return null\n}\n\nfunction normalizeCursorValue(\n  value: string | number | Date | null,\n  type: 'date' | 'number' | 'text',\n): string | number | null {\n  if (value == null) return null\n  if (type === 'number') {\n    if (typeof value === 'number' && Number.isFinite(value)) return value\n    if (typeof value === 'string') {\n      const parsed = Number(value)\n      return Number.isNaN(parsed) ? null : parsed\n    }\n    return null\n  }\n  if (type === 'date') {\n    return toIsoString(value)\n  }\n  if (typeof value === 'string') return value\n  if (value instanceof Date) return value.toISOString()\n  return String(value)\n}\n\nfunction encodeCursor(payload: CursorPayload): string {\n  return Buffer.from(JSON.stringify(payload), 'utf8').toString('base64')\n}\n\nfunction decodeCursor(token: string | undefined, type: 'date' | 'number' | 'text'): CursorPayload | null {\n  if (!token) return null\n  try {\n    const decoded = Buffer.from(token, 'base64').toString('utf8')\n    const parsed = cursorSchema.parse(JSON.parse(decoded))\n    return {\n      id: parsed.id,\n      sortValue: normalizeCursorValue(parsed.sortValue, type),\n    }\n  } catch {\n    return null\n  }\n}\n\nfunction buildSortSql(\n  sortField: keyof typeof interactionSortConfig,\n  sortDir: 'asc' | 'desc',\n): string {\n  const config = interactionSortConfig[sortField]\n  if (config.type === 'date') {\n    const sentinel =\n      sortDir === 'asc'\n        ? \"timestamp with time zone '9999-12-31T23:59:59.999Z'\"\n        : \"timestamp with time zone '0001-01-01T00:00:00.000Z'\"\n    return `coalesce(${config.column}, ${sentinel})`\n  }\n  if (config.type === 'number') {\n    const sentinel = sortDir === 'asc' ? '2147483647' : '-2147483648'\n    return `coalesce(${config.column}, ${sentinel})`\n  }\n  const sentinel = sortDir === 'asc' ? \"'~~~~~~~~~~'\" : \"''\"\n  return `coalesce(${config.column}, ${sentinel})`\n}\n\nasync function resolveUserFeatures(\n  container: { resolve: (name: string) => unknown },\n  userId: string,\n  tenantId: string | null,\n  organizationId: string | null,\n): Promise<string[] | undefined> {\n  try {\n    const rbac = container.resolve('rbacService') as RbacServiceLike | undefined\n    if (!rbac?.getGrantedFeatures) return undefined\n    return await rbac.getGrantedFeatures(userId, { tenantId, organizationId })\n  } catch {\n    return undefined\n  }\n}\n\nasync function buildEnricherContext(\n  container: { resolve: (name: string) => unknown },\n  auth: NonNullable<Awaited<ReturnType<typeof getAuthFromRequest>>>,\n  organizationId: string | null,\n  precomputedUserFeatures?: { userId: string; features: string[] | undefined },\n): Promise<EnricherContext> {\n  const userId =\n    (typeof auth.sub === 'string' && auth.sub.trim().length > 0\n      ? auth.sub\n      : typeof auth.userId === 'string' && auth.userId.trim().length > 0\n        ? auth.userId\n        : typeof auth.keyId === 'string' && auth.keyId.trim().length > 0\n          ? auth.keyId\n          : 'system')\n\n  // Reuse features already resolved for this same user (the GET handler resolves\n  // them once for the visibility filter) to avoid a second RBAC lookup per request.\n  const userFeatures =\n    precomputedUserFeatures && precomputedUserFeatures.userId === userId\n      ? precomputedUserFeatures.features\n      : await resolveUserFeatures(container, userId, auth.tenantId ?? null, organizationId)\n\n  return {\n    organizationId: organizationId ?? '',\n    tenantId: auth.tenantId ?? '',\n    userId,\n    em: container.resolve('em'),\n    container,\n    userFeatures,\n  }\n}\n\nexport async function GET(req: Request) {\n  try {\n    const queryUrl = new URL(req.url)\n    const query = listSchema.parse(Object.fromEntries(queryUrl.searchParams))\n    const container = await createRequestContainer()\n    const auth = await getAuthFromRequest(req)\n    const { translate } = await resolveTranslations()\n\n    if (!auth || !auth.tenantId) {\n      throw new CrudHttpError(401, {\n        error: translate('customers.errors.unauthorized', 'Unauthorized'),\n      })\n    }\n\n    const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req })\n    const organizationIds = Array.isArray(scope?.filterIds) && scope.filterIds.length > 0\n      ? scope.filterIds\n      : auth.orgId\n        ? [auth.orgId]\n        : []\n    const selectedOrganizationId = scope?.selectedId ?? auth.orgId ?? organizationIds[0] ?? null\n    const em = (container.resolve('em') as EntityManager).fork()\n    const db = em.getKysely<any>() as any\n\n    const requestedSortField = query.sortField ?? 'scheduledAt'\n    const sortConfig = interactionSortConfig[requestedSortField]\n    const sortDir = query.sortDir ?? sortConfig.defaultDir\n    const sortSql = buildSortSql(requestedSortField, sortDir)\n    const cursor = decodeCursor(query.cursor, sortConfig.type)\n    if (query.cursor && !cursor) {\n      throw new CrudHttpError(400, {\n        error: translate('customers.interactions.cursor.invalid', 'Invalid cursor'),\n      })\n    }\n\n    let rowsQuery = db\n      .selectFrom('customer_interactions')\n      .select([\n        'id',\n        'entity_id',\n        'deal_id',\n        'interaction_type',\n        'title',\n        'body',\n        'status',\n        'scheduled_at',\n        'occurred_at',\n        'priority',\n        'author_user_id',\n        'owner_user_id',\n        'appearance_icon',\n        'appearance_color',\n        'source',\n        'duration_minutes',\n        'location',\n        'all_day',\n        'recurrence_rule',\n        'recurrence_end',\n        'participants',\n        'reminder_minutes',\n        'visibility',\n        'linked_entities',\n        'guest_permissions',\n        'pinned',\n        'organization_id',\n        'tenant_id',\n        'created_at',\n        'updated_at',\n        sql`${sql.raw(sortSql)}`.as('__sort_value'),\n      ])\n      .where('deleted_at', 'is', null)\n      .where('tenant_id', '=', auth.tenantId)\n      .limit(query.limit + 1)\n\n    if (organizationIds.length > 0) {\n      rowsQuery = rowsQuery.where('organization_id', 'in', organizationIds)\n    }\n    if (query.entityId) rowsQuery = rowsQuery.where('entity_id', '=', query.entityId)\n    if (query.dealId) rowsQuery = rowsQuery.where('deal_id', '=', query.dealId)\n    if (query.status) rowsQuery = rowsQuery.where('status', '=', query.status)\n    if (query.interactionType) rowsQuery = rowsQuery.where('interaction_type', '=', query.interactionType)\n    if (query.type) {\n      const types = query.type.split(',').map((t) => t.trim()).filter(Boolean)\n      if (types.length > 0) {\n        rowsQuery = rowsQuery.where('interaction_type', 'in', types)\n      }\n    }\n    if (query.pinned === 'true') {\n      rowsQuery = rowsQuery.where('pinned', '=', true)\n    } else if (query.pinned === 'false') {\n      rowsQuery = rowsQuery.where('pinned', '=', false)\n    }\n    if (query.excludeInteractionType) rowsQuery = rowsQuery.where('interaction_type', '!=', query.excludeInteractionType)\n    if (query.search) {\n      // NOTE: for tenants with data encryption enabled, `title`/`body` are\n      // ciphertext at rest (see encryption.ts), so this ILIKE matches encrypted\n      // bytes and returns no rows \u2014 substring search over encrypted free-text\n      // columns is unsupported, the same documented limitation as\n      // customer_activity / customer_comment. The returned page's title/body are\n      // still decrypted for display further below.\n      const searchTerm = `%${query.search}%`\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(title, '') ilike ${searchTerm} or coalesce(body, '') ilike ${searchTerm}`)\n    }\n    if (query.from) {\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(occurred_at, scheduled_at, created_at) >= ${new Date(query.from)}`)\n    }\n    if (query.to) {\n      rowsQuery = rowsQuery.where(sql<boolean>`coalesce(occurred_at, scheduled_at, created_at) <= ${new Date(query.to)}`)\n    }\n\n    if (cursor) {\n      const op = sortDir === 'asc' ? '>' : '<'\n      const opRaw = sql.raw(op)\n      const sortRaw = sql.raw(sortSql)\n      rowsQuery = rowsQuery.where((eb: any) => eb.or([\n        sql<boolean>`${sortRaw} ${opRaw} ${cursor.sortValue}`,\n        eb.and([\n          sql<boolean>`${sortRaw} = ${cursor.sortValue}`,\n          eb('id', op, cursor.id),\n        ]),\n      ]))\n    }\n\n    // \u2500\u2500 Email visibility filter (2026-05-27) \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\n    // Non-email interactions pass through; email rows with visibility='private'\n    // are filtered out unless the caller is the author or has admin bypass.\n    // API-key callers have no user identity (`auth.sub` undefined): resolve the\n    // viewer to null so they never gain the author bypass and only see shared\n    // emails (fail-closed). Mirrors counts/people/activities routes.\n    const viewerUserId = auth.isApiKey ? null : (auth.sub ?? null)\n    const callerUserFeatures = viewerUserId\n      ? await resolveUserFeatures(container, viewerUserId, auth.tenantId ?? null, selectedOrganizationId)\n      : undefined\n    rowsQuery = applyEmailVisibilityFilter(rowsQuery as any, {\n      currentUserId: viewerUserId,\n      userFeatures: callerUserFeatures,\n    })\n\n    rowsQuery = rowsQuery.orderBy(sql`${sql.raw(sortSql)} ${sql.raw(sortDir)}`).orderBy('id', sortDir)\n\n    const rows = await rowsQuery.execute() as InteractionListRow[]\n    const pageRows = rows.slice(0, query.limit)\n    const hasMore = rows.length > query.limit\n\n    const authorIds = Array.from(\n      new Set(\n        pageRows\n          .map((row) => (typeof row.author_user_id === 'string' ? row.author_user_id : null))\n          .filter((value): value is string => !!value),\n      ),\n    )\n    const dealIds = Array.from(\n      new Set(\n        pageRows\n          .map((row) => (typeof row.deal_id === 'string' ? row.deal_id : null))\n          .filter((value): value is string => !!value),\n      ),\n    )\n    const interactionIds = pageRows.map((row) => row.id)\n\n    const [users, deals, customFieldValues, interactionRecords] = await Promise.all([\n      authorIds.length > 0 ? findWithDecryption(em, User, { id: { $in: authorIds } }, undefined, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),\n      dealIds.length > 0 ? findWithDecryption(em, CustomerDeal, { id: { $in: dealIds } }, undefined, { tenantId: auth.tenantId, organizationId: selectedOrganizationId }) : Promise.resolve([]),\n      interactionIds.length > 0\n        ? loadCustomFieldValues({\n            em,\n            entityId: CUSTOMER_INTERACTION_ENTITY_ID,\n            recordIds: interactionIds,\n            tenantIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.tenant_id])),\n            organizationIdByRecord: Object.fromEntries(pageRows.map((row) => [row.id, row.organization_id])),\n            tenantFallbacks: [auth.tenantId].filter((value): value is string => !!value),\n          })\n        : Promise.resolve<Record<string, Record<string, unknown>>>({}),\n      interactionIds.length > 0\n        ? findWithDecryption(em, CustomerInteraction, { id: { $in: interactionIds } } as never, undefined, { tenantId: auth.tenantId, organizationId: selectedOrganizationId })\n        : Promise.resolve([]),\n    ])\n\n    const userMap = new Map(\n      users.map((user) => [\n        user.id,\n        {\n          name: user.name ?? null,\n          email: user.email ?? null,\n        },\n      ]),\n    )\n    const dealMap = new Map(\n      deals.map((deal) => [deal.id, deal.title]),\n    )\n    // title/body are encrypted at rest (see encryption.ts). The kysely rows above\n    // carry ciphertext when tenant encryption is enabled, so override them with the\n    // decrypted values from findWithDecryption for the returned page.\n    const interactionContentMap = new Map(\n      (interactionRecords as Array<{ id: string; title?: string | null; body?: string | null }>).map(\n        (record) => [record.id, { title: record.title ?? null, body: record.body ?? null }],\n      ),\n    )\n\n    const baseItems = pageRows.map((row) => ({\n      id: row.id,\n      entityId: row.entity_id,\n      dealId: row.deal_id ?? null,\n      interactionType: row.interaction_type,\n      title: (interactionContentMap.has(row.id) ? interactionContentMap.get(row.id)!.title : row.title) ?? null,\n      body: (interactionContentMap.has(row.id) ? interactionContentMap.get(row.id)!.body : row.body) ?? null,\n      status: row.status,\n      scheduledAt: toIsoString(row.scheduled_at),\n      occurredAt: toIsoString(row.occurred_at),\n      priority: row.priority ?? null,\n      authorUserId: row.author_user_id ?? null,\n      ownerUserId: row.owner_user_id ?? null,\n      appearanceIcon: row.appearance_icon ?? null,\n      appearanceColor: row.appearance_color ?? null,\n      source: row.source ?? null,\n      duration: row.duration_minutes ?? null,\n      durationMinutes: row.duration_minutes ?? null,\n      location: row.location ?? null,\n      allDay: row.all_day ?? null,\n      recurrenceRule: row.recurrence_rule ?? null,\n      recurrenceEnd: toIsoString(row.recurrence_end),\n      participants: row.participants ?? null,\n      reminderMinutes: row.reminder_minutes ?? null,\n      visibility: row.visibility ?? null,\n      linkedEntities: row.linked_entities ?? null,\n      guestPermissions: row.guest_permissions ?? null,\n      pinned: row.pinned ?? false,\n      organizationId: row.organization_id,\n      tenantId: row.tenant_id,\n      createdAt: toIsoString(row.created_at) ?? new Date().toISOString(),\n      updatedAt: toIsoString(row.updated_at) ?? new Date().toISOString(),\n      authorName: row.author_user_id ? userMap.get(row.author_user_id)?.name ?? null : null,\n      authorEmail: row.author_user_id ? userMap.get(row.author_user_id)?.email ?? null : null,\n      dealTitle: row.deal_id ? dealMap.get(row.deal_id) ?? null : null,\n      customValues: normalizeCustomFieldResponse(customFieldValues[row.id]) ?? null,\n    }))\n\n    const enricherContext = await buildEnricherContext(\n      container,\n      auth,\n      selectedOrganizationId,\n      viewerUserId ? { userId: viewerUserId, features: callerUserFeatures } : undefined,\n    )\n    const enriched = await applyResponseEnrichers(baseItems, 'customers.interaction', enricherContext)\n\n    let nextCursor: string | undefined\n    if (hasMore && pageRows.length > 0) {\n      const last = pageRows[pageRows.length - 1]\n      nextCursor = encodeCursor({\n        id: last.id,\n        sortValue: normalizeCursorValue(last.__sort_value, sortConfig.type),\n      })\n    }\n\n    return NextResponse.json({\n      items: enriched.items,\n      nextCursor,\n    })\n  } catch (err) {\n    if (isCrudHttpError(err)) {\n      return NextResponse.json(err.body, { status: err.status })\n    }\n    if (err instanceof z.ZodError) {\n      return NextResponse.json(\n        { error: 'Validation failed', details: err.issues },\n        { status: 400 },\n      )\n    }\n    console.error('customers.interactions.get failed', err)\n    const { translate } = await resolveTranslations()\n    return NextResponse.json(\n      { error: translate('customers.interactions.load.error', 'Failed to load interactions.') },\n      { status: 500 },\n    )\n  }\n}\n\nconst interactionListItemSchema = z\n  .object({\n    id: z.string().uuid(),\n    entityId: z.string().uuid().nullable(),\n    dealId: z.string().uuid().nullable(),\n    interactionType: z.string(),\n    title: z.string().nullable(),\n    body: z.string().nullable(),\n    status: z.string(),\n    scheduledAt: z.string().nullable(),\n    occurredAt: z.string().nullable(),\n    priority: z.number().nullable(),\n    authorUserId: z.string().uuid().nullable(),\n    ownerUserId: z.string().uuid().nullable(),\n    appearanceIcon: z.string().nullable().optional(),\n    appearanceColor: z.string().nullable().optional(),\n    source: z.string().nullable().optional(),\n    duration: z.number().nullable().optional(),\n    durationMinutes: z.number().nullable().optional(),\n    location: z.string().nullable().optional(),\n    allDay: z.boolean().nullable().optional(),\n    recurrenceRule: z.string().nullable().optional(),\n    recurrenceEnd: z.string().nullable().optional(),\n    participants: z.array(\n      z.object({\n        userId: z.string().uuid(),\n        name: z.string().optional(),\n        email: z.string().optional(),\n        status: z.string().optional(),\n      }),\n    ).nullable().optional(),\n    reminderMinutes: z.number().nullable().optional(),\n    visibility: z.string().nullable().optional(),\n    linkedEntities: z.array(\n      z.object({\n        id: z.string().uuid(),\n        type: z.string(),\n        label: z.string(),\n      }),\n    ).nullable().optional(),\n    guestPermissions: z\n      .object({\n        canInviteOthers: z.boolean().optional(),\n        canModify: z.boolean().optional(),\n        canSeeList: z.boolean().optional(),\n      })\n      .nullable()\n      .optional(),\n    organizationId: z.string().uuid().nullable().optional(),\n    tenantId: z.string().uuid().nullable().optional(),\n    createdAt: z.string().nullable(),\n    updatedAt: z.string().nullable(),\n    authorName: z.string().nullable().optional(),\n    authorEmail: z.string().nullable().optional(),\n    dealTitle: z.string().nullable().optional(),\n    customValues: z.record(z.string(), z.unknown()).nullable().optional(),\n    _integrations: z.record(z.string(), z.unknown()).optional(),\n  })\n  .passthrough()\n\nconst interactionListResponseSchema = z.object({\n  items: z.array(interactionListItemSchema),\n  nextCursor: z.string().optional(),\n})\n\nconst interactionCreateResponseSchema = z.object({\n  id: z.string().uuid().nullable(),\n})\n\nexport const openApi = createCustomersCrudOpenApi({\n  resourceName: 'Interaction',\n  querySchema: listSchema,\n  listResponseSchema: interactionListResponseSchema,\n  create: {\n    schema: interactionCreateSchema,\n    responseSchema: interactionCreateResponseSchema,\n    description: 'Creates a new interaction linked to a customer entity or deal.',\n  },\n  update: {\n    schema: interactionUpdateSchema,\n    responseSchema: defaultOkResponseSchema,\n    description: 'Updates fields for an existing interaction.',\n  },\n  del: {\n    schema: z.object({ id: z.string().uuid() }),\n    responseSchema: defaultOkResponseSchema,\n    description: 'Soft-deletes an interaction identified by `id`. Accepts id via body or query string.',\n  },\n})\n"],
+  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,SAAS;AAElB,SAAS,WAAW;AACpB,SAAS,qBAAqB;AAC9B,SAAS,eAAe,uBAAuB;AAC/C,SAAS,6BAA6B;AACtC,SAAS,oCAAoC;AAC7C,SAAS,8BAA8B;AAEvC,SAAS,0BAA0B;AACnC,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AACnC,SAAS,0CAA0C;AACnD,SAAS,2BAA2B;AACpC,SAAS,cAAc,2BAA2B;AAClD,SAAS,YAAY;AACrB,SAAS,yBAAyB,+BAA+B;AACjE,SAAS,+BAA+B;AACxC;AAAA,EACE;AAAA,EACA;AAAA,OACK;AACP,SAAS,sCAAsC;AAC/C,SAAS,kCAAkC;AAC3C,SAAS,wCAAwC;AAGjD,MAAM,gBAAgB,EAAE,OAAO,CAAC,CAAC,EAAE,YAAY;AAE/C,MAAM,6BAA6B,EAAE,KAAK;AAAA,EACxC;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF,CAAC;AAED,MAAM,aAAa,EAChB,OAAO;AAAA,EACN,OAAO,EAAE,OAAO,OAAO,EAAE,IAAI,CAAC,EAAE,IAAI,GAAG,EAAE,QAAQ,EAAE;AAAA,EACnD,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5B,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACrC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACnC,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5B,iBAAiB,EAAE,OAAO,EAAE,SAAS;AAAA,EACrC,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,wBAAwB,EAAE,OAAO,EAAE,SAAS;AAAA,EAC5C,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,CAAC,EAAE,SAAS;AAAA,EAC1C,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,IAAI,EAAE,OAAO,EAAE,SAAS;AAAA,EACxB,QAAQ,EAAE,KAAK,CAAC,QAAQ,OAAO,CAAC,EAAE,SAAS;AAAA,EAC3C,WAAW,2BAA2B,SAAS;AAAA,EAC/C,SAAS,EAAE,KAAK,CAAC,OAAO,MAAM,CAAC,EAAE,SAAS;AAC5C,CAAC,EACA,YAAY;AAEf,MAAM,gBAAgB;AAAA,EACpB,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,6BAA6B,EAAE;AAAA,EAC3E,MAAM,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAAA,EAC9E,KAAK,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAAA,EAC7E,QAAQ,EAAE,aAAa,MAAM,iBAAiB,CAAC,+BAA+B,EAAE;AAClF;AAEO,MAAM,WAAW;AAExB,MAAM,OAAO,cAAc;AAAA,EACzB,UAAU;AAAA,EACV,KAAK;AAAA,IACH,QAAQ;AAAA,IACR,SAAS;AAAA,IACT,UAAU;AAAA,IACV,aAAa;AAAA,IACb,iBAAiB;AAAA,EACnB;AAAA,EACA,WAAW,EAAE,UAAU,wBAAwB;AAAA,EAC/C,SAAS;AAAA,IACP,YAAY;AAAA,EACd;AAAA,EACA,SAAS;AAAA,IACP,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,KAAK,IAAI,MAAM;AAChC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,eAAO,wBAAwB,yBAAyB,OAAO,CAAC,GAAG,KAAK,SAAS;AAAA,MACnF;AAAA,MACA,UAAU,CAAC,EAAE,OAAO,OAAO,EAAE,IAAI,QAAQ,iBAAiB,QAAQ,MAAM,KAAK;AAAA,MAC7E,QAAQ;AAAA,IACV;AAAA,IACA,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,KAAK,IAAI,MAAM;AAChC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,cAAM,SAAS,wBAAwB,yBAAyB,OAAO,CAAC,GAAG,KAAK,SAAS;AAKzF,cAAM,WAAW,IAAI,MAAM,YAAY;AACvC,YAAI,OAAO,OAAO,OAAO,YAAY,UAAU;AAC7C,cAAI;AACF,kBAAM,KAAK,IAAI,UAAU,QAAQ,IAAI;AACrC,kBAAM,aAAa,IAAI,UAAU,QAAQ,YAAY;AACrD,kBAAM,iBAAwC;AAAA,cAC5C,WAAW,IAAI;AAAA,cACf,MAAM,IAAI,QAAQ;AAAA,cAClB,mBAAmB,IAAI,qBAAqB;AAAA,cAC5C,wBAAwB,IAAI,0BAA0B;AAAA,cACtD,iBAAiB,IAAI,mBAAmB;AAAA,cACxC,SAAS,IAAI;AAAA,YACf;AACA,kBAAM,iCAAiC,IAAI,YAAY,gBAAgB,OAAO,IAAI,QAAQ;AAAA,UAC5F,SAAS,KAAK;AAGZ,oBAAQ,KAAK,qDAAqD,EAAE,IAAI,OAAO,IAAI,OAAO,IAAI,CAAC;AAAA,UACjG;AAAA,QACF;AACA,eAAO;AAAA,MACT;AAAA,MACA,UAAU,OAAO,EAAE,IAAI,KAAK;AAAA,IAC9B;AAAA,IACA,QAAQ;AAAA,MACN,WAAW;AAAA,MACX,QAAQ;AAAA,MACR,UAAU,OAAO,EAAE,QAAQ,IAAI,MAAM;AACnC,cAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,cAAM,KACJ,QAAQ,MAAM,MACd,QAAQ,MACR,QAAQ,OAAO,OACd,IAAI,UAAU,IAAI,IAAI,IAAI,QAAQ,GAAG,EAAE,aAAa,IAAI,IAAI,IAAI;AACnE,YAAI,CAAC,IAAI;AACP,gBAAM,IAAI,cAAc,KAAK;AAAA,YAC3B,OAAO,UAAU,yCAAyC,4BAA4B;AAAA,UACxF,CAAC;AAAA,QACH;AACA,eAAO,EAAE,GAAG;AAAA,MACd;AAAA,MACA,UAAU,OAAO,EAAE,IAAI,KAAK;AAAA,IAC9B;AAAA,EACF;AACF,CAAC;AAED,MAAM,EAAE,MAAM,KAAK,OAAO,IAAI;AA+C9B,MAAM,eAAe,EAAE,OAAO;AAAA,EAC5B,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,EACpB,WAAW,EAAE,MAAM,CAAC,EAAE,OAAO,GAAG,EAAE,OAAO,GAAG,EAAE,KAAK,CAAC,CAAC;AACvD,CAAC;AAED,MAAM,wBAAwB;AAAA,EAC5B,aAAa,EAAE,QAAQ,gBAAgB,MAAM,QAAiB,YAAY,MAAe;AAAA,EACzF,YAAY,EAAE,QAAQ,eAAe,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACxF,WAAW,EAAE,QAAQ,cAAc,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACtF,WAAW,EAAE,QAAQ,cAAc,MAAM,QAAiB,YAAY,OAAgB;AAAA,EACtF,QAAQ,EAAE,QAAQ,UAAU,MAAM,QAAiB,YAAY,MAAe;AAAA,EAC9E,UAAU,EAAE,QAAQ,YAAY,MAAM,UAAmB,YAAY,OAAgB;AAAA,EACrF,iBAAiB,EAAE,QAAQ,oBAAoB,MAAM,QAAiB,YAAY,MAAe;AAAA,EACjG,OAAO,EAAE,QAAQ,SAAS,MAAM,QAAiB,YAAY,MAAe;AAC9E;AAEA,SAAS,YAAY,OAA+B;AAClD,MAAI,SAAS,KAAM,QAAO;AAC1B,MAAI,iBAAiB,MAAM;AACzB,WAAO,OAAO,MAAM,MAAM,QAAQ,CAAC,IAAI,OAAO,MAAM,YAAY;AAAA,EAClE;AACA,MAAI,OAAO,UAAU,UAAU;AAC7B,UAAM,UAAU,MAAM,KAAK;AAC3B,QAAI,CAAC,QAAQ,OAAQ,QAAO;AAC5B,UAAM,SAAS,IAAI,KAAK,OAAO;AAC/B,WAAO,OAAO,MAAM,OAAO,QAAQ,CAAC,IAAI,UAAU,OAAO,YAAY;AAAA,EACvE;AACA,SAAO;AACT;AAEA,SAAS,qBACP,OACA,MACwB;AACxB,MAAI,SAAS,KAAM,QAAO;AAC1B,MAAI,SAAS,UAAU;AACrB,QAAI,OAAO,UAAU,YAAY,OAAO,SAAS,KAAK,EAAG,QAAO;AAChE,QAAI,OAAO,UAAU,UAAU;AAC7B,YAAM,SAAS,OAAO,KAAK;AAC3B,aAAO,OAAO,MAAM,MAAM,IAAI,OAAO;AAAA,IACvC;AACA,WAAO;AAAA,EACT;AACA,MAAI,SAAS,QAAQ;AACnB,WAAO,YAAY,KAAK;AAAA,EAC1B;AACA,MAAI,OAAO,UAAU,SAAU,QAAO;AACtC,MAAI,iBAAiB,KAAM,QAAO,MAAM,YAAY;AACpD,SAAO,OAAO,KAAK;AACrB;AAEA,SAAS,aAAa,SAAgC;AACpD,SAAO,OAAO,KAAK,KAAK,UAAU,OAAO,GAAG,MAAM,EAAE,SAAS,QAAQ;AACvE;AAEA,SAAS,aAAa,OAA2B,MAAwD;AACvG,MAAI,CAAC,MAAO,QAAO;AACnB,MAAI;AACF,UAAM,UAAU,OAAO,KAAK,OAAO,QAAQ,EAAE,SAAS,MAAM;AAC5D,UAAM,SAAS,aAAa,MAAM,KAAK,MAAM,OAAO,CAAC;AACrD,WAAO;AAAA,MACL,IAAI,OAAO;AAAA,MACX,WAAW,qBAAqB,OAAO,WAAW,IAAI;AAAA,IACxD;AAAA,EACF,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,SAAS,aACP,WACA,SACQ;AACR,QAAM,SAAS,sBAAsB,SAAS;AAC9C,MAAI,OAAO,SAAS,QAAQ;AAC1B,UAAMA,YACJ,YAAY,QACR,wDACA;AACN,WAAO,YAAY,OAAO,MAAM,KAAKA,SAAQ;AAAA,EAC/C;AACA,MAAI,OAAO,SAAS,UAAU;AAC5B,UAAMA,YAAW,YAAY,QAAQ,eAAe;AACpD,WAAO,YAAY,OAAO,MAAM,KAAKA,SAAQ;AAAA,EAC/C;AACA,QAAM,WAAW,YAAY,QAAQ,iBAAiB;AACtD,SAAO,YAAY,OAAO,MAAM,KAAK,QAAQ;AAC/C;AAEA,eAAe,oBACb,WACA,QACA,UACA,gBAC+B;AAC/B,MAAI;AACF,UAAM,OAAO,UAAU,QAAQ,aAAa;AAC5C,QAAI,CAAC,MAAM,mBAAoB,QAAO;AACtC,WAAO,MAAM,KAAK,mBAAmB,QAAQ,EAAE,UAAU,eAAe,CAAC;AAAA,EAC3E,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAEA,eAAe,qBACb,WACA,MACA,gBACA,yBAC0B;AAC1B,QAAM,SACH,OAAO,KAAK,QAAQ,YAAY,KAAK,IAAI,KAAK,EAAE,SAAS,IACtD,KAAK,MACL,OAAO,KAAK,WAAW,YAAY,KAAK,OAAO,KAAK,EAAE,SAAS,IAC7D,KAAK,SACL,OAAO,KAAK,UAAU,YAAY,KAAK,MAAM,KAAK,EAAE,SAAS,IAC3D,KAAK,QACL;AAIV,QAAM,eACJ,2BAA2B,wBAAwB,WAAW,SAC1D,wBAAwB,WACxB,MAAM,oBAAoB,WAAW,QAAQ,KAAK,YAAY,MAAM,cAAc;AAExF,SAAO;AAAA,IACL,gBAAgB,kBAAkB;AAAA,IAClC,UAAU,KAAK,YAAY;AAAA,IAC3B;AAAA,IACA,IAAI,UAAU,QAAQ,IAAI;AAAA,IAC1B;AAAA,IACA;AAAA,EACF;AACF;AAEA,eAAsB,IAAI,KAAc;AACtC,MAAI;AACF,UAAM,WAAW,IAAI,IAAI,IAAI,GAAG;AAChC,UAAM,QAAQ,WAAW,MAAM,OAAO,YAAY,SAAS,YAAY,CAAC;AACxE,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAEhD,QAAI,CAAC,QAAQ,CAAC,KAAK,UAAU;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,iCAAiC,cAAc;AAAA,MAClE,CAAC;AAAA,IACH;AAEA,UAAM,QAAQ,MAAM,mCAAmC,EAAE,WAAW,MAAM,SAAS,IAAI,CAAC;AACxF,UAAM,kBAAkB,MAAM,QAAQ,OAAO,SAAS,KAAK,MAAM,UAAU,SAAS,IAChF,MAAM,YACN,KAAK,QACH,CAAC,KAAK,KAAK,IACX,CAAC;AACP,UAAM,yBAAyB,OAAO,cAAc,KAAK,SAAS,gBAAgB,CAAC,KAAK;AACxF,UAAM,KAAM,UAAU,QAAQ,IAAI,EAAoB,KAAK;AAC3D,UAAM,KAAK,GAAG,UAAe;AAE7B,UAAM,qBAAqB,MAAM,aAAa;AAC9C,UAAM,aAAa,sBAAsB,kBAAkB;AAC3D,UAAM,UAAU,MAAM,WAAW,WAAW;AAC5C,UAAM,UAAU,aAAa,oBAAoB,OAAO;AACxD,UAAM,SAAS,aAAa,MAAM,QAAQ,WAAW,IAAI;AACzD,QAAI,MAAM,UAAU,CAAC,QAAQ;AAC3B,YAAM,IAAI,cAAc,KAAK;AAAA,QAC3B,OAAO,UAAU,yCAAyC,gBAAgB;AAAA,MAC5E,CAAC;AAAA,IACH;AAEA,QAAI,YAAY,GACb,WAAW,uBAAuB,EAClC,OAAO;AAAA,MACN;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,MACA,MAAM,IAAI,IAAI,OAAO,CAAC,GAAG,GAAG,cAAc;AAAA,IAC5C,CAAC,EACA,MAAM,cAAc,MAAM,IAAI,EAC9B,MAAM,aAAa,KAAK,KAAK,QAAQ,EACrC,MAAM,MAAM,QAAQ,CAAC;AAExB,QAAI,gBAAgB,SAAS,GAAG;AAC9B,kBAAY,UAAU,MAAM,mBAAmB,MAAM,eAAe;AAAA,IACtE;AACA,QAAI,MAAM,SAAU,aAAY,UAAU,MAAM,aAAa,KAAK,MAAM,QAAQ;AAChF,QAAI,MAAM,OAAQ,aAAY,UAAU,MAAM,WAAW,KAAK,MAAM,MAAM;AAC1E,QAAI,MAAM,OAAQ,aAAY,UAAU,MAAM,UAAU,KAAK,MAAM,MAAM;AACzE,QAAI,MAAM,gBAAiB,aAAY,UAAU,MAAM,oBAAoB,KAAK,MAAM,eAAe;AACrG,QAAI,MAAM,MAAM;AACd,YAAM,QAAQ,MAAM,KAAK,MAAM,GAAG,EAAE,IAAI,CAAC,MAAM,EAAE,KAAK,CAAC,EAAE,OAAO,OAAO;AACvE,UAAI,MAAM,SAAS,GAAG;AACpB,oBAAY,UAAU,MAAM,oBAAoB,MAAM,KAAK;AAAA,MAC7D;AAAA,IACF;AACA,QAAI,MAAM,WAAW,QAAQ;AAC3B,kBAAY,UAAU,MAAM,UAAU,KAAK,IAAI;AAAA,IACjD,WAAW,MAAM,WAAW,SAAS;AACnC,kBAAY,UAAU,MAAM,UAAU,KAAK,KAAK;AAAA,IAClD;AACA,QAAI,MAAM,uBAAwB,aAAY,UAAU,MAAM,oBAAoB,MAAM,MAAM,sBAAsB;AACpH,QAAI,MAAM,QAAQ;AAOhB,YAAM,aAAa,IAAI,MAAM,MAAM;AACnC,kBAAY,UAAU,MAAM,gCAAyC,UAAU,gCAAgC,UAAU,EAAE;AAAA,IAC7H;AACA,QAAI,MAAM,MAAM;AACd,kBAAY,UAAU,MAAM,yDAAkE,IAAI,KAAK,MAAM,IAAI,CAAC,EAAE;AAAA,IACtH;AACA,QAAI,MAAM,IAAI;AACZ,kBAAY,UAAU,MAAM,yDAAkE,IAAI,KAAK,MAAM,EAAE,CAAC,EAAE;AAAA,IACpH;AAEA,QAAI,QAAQ;AACV,YAAM,KAAK,YAAY,QAAQ,MAAM;AACrC,YAAM,QAAQ,IAAI,IAAI,EAAE;AACxB,YAAM,UAAU,IAAI,IAAI,OAAO;AAC/B,kBAAY,UAAU,MAAM,CAAC,OAAY,GAAG,GAAG;AAAA,QAC7C,MAAe,OAAO,IAAI,KAAK,IAAI,OAAO,SAAS;AAAA,QACnD,GAAG,IAAI;AAAA,UACL,MAAe,OAAO,MAAM,OAAO,SAAS;AAAA,UAC5C,GAAG,MAAM,IAAI,OAAO,EAAE;AAAA,QACxB,CAAC;AAAA,MACH,CAAC,CAAC;AAAA,IACJ;AAQA,UAAM,eAAe,KAAK,WAAW,OAAQ,KAAK,OAAO;AACzD,UAAM,qBAAqB,eACvB,MAAM,oBAAoB,WAAW,cAAc,KAAK,YAAY,MAAM,sBAAsB,IAChG;AACJ,gBAAY,2BAA2B,WAAkB;AAAA,MACvD,eAAe;AAAA,MACf,cAAc;AAAA,IAChB,CAAC;AAED,gBAAY,UAAU,QAAQ,MAAM,IAAI,IAAI,OAAO,CAAC,IAAI,IAAI,IAAI,OAAO,CAAC,EAAE,EAAE,QAAQ,MAAM,OAAO;AAEjG,UAAM,OAAO,MAAM,UAAU,QAAQ;AACrC,UAAM,WAAW,KAAK,MAAM,GAAG,MAAM,KAAK;AAC1C,UAAM,UAAU,KAAK,SAAS,MAAM;AAEpC,UAAM,YAAY,MAAM;AAAA,MACtB,IAAI;AAAA,QACF,SACG,IAAI,CAAC,QAAS,OAAO,IAAI,mBAAmB,WAAW,IAAI,iBAAiB,IAAK,EACjF,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC/C;AAAA,IACF;AACA,UAAM,UAAU,MAAM;AAAA,MACpB,IAAI;AAAA,QACF,SACG,IAAI,CAAC,QAAS,OAAO,IAAI,YAAY,WAAW,IAAI,UAAU,IAAK,EACnE,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC/C;AAAA,IACF;AACA,UAAM,iBAAiB,SAAS,IAAI,CAAC,QAAQ,IAAI,EAAE;AAEnD,UAAM,CAAC,OAAO,OAAO,mBAAmB,kBAAkB,IAAI,MAAM,QAAQ,IAAI;AAAA,MAC9E,UAAU,SAAS,IAAI,mBAAmB,IAAI,MAAM,EAAE,IAAI,EAAE,KAAK,UAAU,EAAE,GAAG,QAAW,EAAE,UAAU,KAAK,UAAU,gBAAgB,uBAAuB,CAAC,IAAI,QAAQ,QAAQ,CAAC,CAAC;AAAA,MACpL,QAAQ,SAAS,IAAI,mBAAmB,IAAI,cAAc,EAAE,IAAI,EAAE,KAAK,QAAQ,EAAE,GAAG,QAAW,EAAE,UAAU,KAAK,UAAU,gBAAgB,uBAAuB,CAAC,IAAI,QAAQ,QAAQ,CAAC,CAAC;AAAA,MACxL,eAAe,SAAS,IACpB,sBAAsB;AAAA,QACpB;AAAA,QACA,UAAU;AAAA,QACV,WAAW;AAAA,QACX,kBAAkB,OAAO,YAAY,SAAS,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,SAAS,CAAC,CAAC;AAAA,QACnF,wBAAwB,OAAO,YAAY,SAAS,IAAI,CAAC,QAAQ,CAAC,IAAI,IAAI,IAAI,eAAe,CAAC,CAAC;AAAA,QAC/F,iBAAiB,CAAC,KAAK,QAAQ,EAAE,OAAO,CAAC,UAA2B,CAAC,CAAC,KAAK;AAAA,MAC7E,CAAC,IACD,QAAQ,QAAiD,CAAC,CAAC;AAAA,MAC/D,eAAe,SAAS,IACpB,mBAAmB,IAAI,qBAAqB,EAAE,IAAI,EAAE,KAAK,eAAe,EAAE,GAAY,QAAW,EAAE,UAAU,KAAK,UAAU,gBAAgB,uBAAuB,CAAC,IACpK,QAAQ,QAAQ,CAAC,CAAC;AAAA,IACxB,CAAC;AAED,UAAM,UAAU,IAAI;AAAA,MAClB,MAAM,IAAI,CAAC,SAAS;AAAA,QAClB,KAAK;AAAA,QACL;AAAA,UACE,MAAM,KAAK,QAAQ;AAAA,UACnB,OAAO,KAAK,SAAS;AAAA,QACvB;AAAA,MACF,CAAC;AAAA,IACH;AACA,UAAM,UAAU,IAAI;AAAA,MAClB,MAAM,IAAI,CAAC,SAAS,CAAC,KAAK,IAAI,KAAK,KAAK,CAAC;AAAA,IAC3C;AAIA,UAAM,wBAAwB,IAAI;AAAA,MAC/B,mBAA0F;AAAA,QACzF,CAAC,WAAW,CAAC,OAAO,IAAI,EAAE,OAAO,OAAO,SAAS,MAAM,MAAM,OAAO,QAAQ,KAAK,CAAC;AAAA,MACpF;AAAA,IACF;AAEA,UAAM,YAAY,SAAS,IAAI,CAAC,SAAS;AAAA,MACvC,IAAI,IAAI;AAAA,MACR,UAAU,IAAI;AAAA,MACd,QAAQ,IAAI,WAAW;AAAA,MACvB,iBAAiB,IAAI;AAAA,MACrB,QAAQ,sBAAsB,IAAI,IAAI,EAAE,IAAI,sBAAsB,IAAI,IAAI,EAAE,EAAG,QAAQ,IAAI,UAAU;AAAA,MACrG,OAAO,sBAAsB,IAAI,IAAI,EAAE,IAAI,sBAAsB,IAAI,IAAI,EAAE,EAAG,OAAO,IAAI,SAAS;AAAA,MAClG,QAAQ,IAAI;AAAA,MACZ,aAAa,YAAY,IAAI,YAAY;AAAA,MACzC,YAAY,YAAY,IAAI,WAAW;AAAA,MACvC,UAAU,IAAI,YAAY;AAAA,MAC1B,cAAc,IAAI,kBAAkB;AAAA,MACpC,aAAa,IAAI,iBAAiB;AAAA,MAClC,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,QAAQ,IAAI,UAAU;AAAA,MACtB,UAAU,IAAI,oBAAoB;AAAA,MAClC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,UAAU,IAAI,YAAY;AAAA,MAC1B,QAAQ,IAAI,WAAW;AAAA,MACvB,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,eAAe,YAAY,IAAI,cAAc;AAAA,MAC7C,cAAc,IAAI,gBAAgB;AAAA,MAClC,iBAAiB,IAAI,oBAAoB;AAAA,MACzC,YAAY,IAAI,cAAc;AAAA,MAC9B,gBAAgB,IAAI,mBAAmB;AAAA,MACvC,kBAAkB,IAAI,qBAAqB;AAAA,MAC3C,QAAQ,IAAI,UAAU;AAAA,MACtB,gBAAgB,IAAI;AAAA,MACpB,UAAU,IAAI;AAAA,MACd,WAAW,YAAY,IAAI,UAAU,MAAK,oBAAI,KAAK,GAAE,YAAY;AAAA,MACjE,WAAW,YAAY,IAAI,UAAU,MAAK,oBAAI,KAAK,GAAE,YAAY;AAAA,MACjE,YAAY,IAAI,iBAAiB,QAAQ,IAAI,IAAI,cAAc,GAAG,QAAQ,OAAO;AAAA,MACjF,aAAa,IAAI,iBAAiB,QAAQ,IAAI,IAAI,cAAc,GAAG,SAAS,OAAO;AAAA,MACnF,WAAW,IAAI,UAAU,QAAQ,IAAI,IAAI,OAAO,KAAK,OAAO;AAAA,MAC5D,cAAc,6BAA6B,kBAAkB,IAAI,EAAE,CAAC,KAAK;AAAA,IAC3E,EAAE;AAEF,UAAM,kBAAkB,MAAM;AAAA,MAC5B;AAAA,MACA;AAAA,MACA;AAAA,MACA,eAAe,EAAE,QAAQ,cAAc,UAAU,mBAAmB,IAAI;AAAA,IAC1E;AACA,UAAM,WAAW,MAAM,uBAAuB,WAAW,yBAAyB,eAAe;AAEjG,QAAI;AACJ,QAAI,WAAW,SAAS,SAAS,GAAG;AAClC,YAAM,OAAO,SAAS,SAAS,SAAS,CAAC;AACzC,mBAAa,aAAa;AAAA,QACxB,IAAI,KAAK;AAAA,QACT,WAAW,qBAAqB,KAAK,cAAc,WAAW,IAAI;AAAA,MACpE,CAAC;AAAA,IACH;AAEA,WAAO,aAAa,KAAK;AAAA,MACvB,OAAO,SAAS;AAAA,MAChB;AAAA,IACF,CAAC;AAAA,EACH,SAAS,KAAK;AACZ,QAAI,gBAAgB,GAAG,GAAG;AACxB,aAAO,aAAa,KAAK,IAAI,MAAM,EAAE,QAAQ,IAAI,OAAO,CAAC;AAAA,IAC3D;AACA,QAAI,eAAe,EAAE,UAAU;AAC7B,aAAO,aAAa;AAAA,QAClB,EAAE,OAAO,qBAAqB,SAAS,IAAI,OAAO;AAAA,QAClD,EAAE,QAAQ,IAAI;AAAA,MAChB;AAAA,IACF;AACA,YAAQ,MAAM,qCAAqC,GAAG;AACtD,UAAM,EAAE,UAAU,IAAI,MAAM,oBAAoB;AAChD,WAAO,aAAa;AAAA,MAClB,EAAE,OAAO,UAAU,qCAAqC,8BAA8B,EAAE;AAAA,MACxF,EAAE,QAAQ,IAAI;AAAA,IAChB;AAAA,EACF;AACF;AAEA,MAAM,4BAA4B,EAC/B,OAAO;AAAA,EACN,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,EACpB,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACrC,QAAQ,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACnC,iBAAiB,EAAE,OAAO;AAAA,EAC1B,OAAO,EAAE,OAAO,EAAE,SAAS;AAAA,EAC3B,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,EAC1B,QAAQ,EAAE,OAAO;AAAA,EACjB,aAAa,EAAE,OAAO,EAAE,SAAS;AAAA,EACjC,YAAY,EAAE,OAAO,EAAE,SAAS;AAAA,EAChC,UAAU,EAAE,OAAO,EAAE,SAAS;AAAA,EAC9B,cAAc,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACzC,aAAa,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AAAA,EACxC,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC/C,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACvC,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACzC,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,UAAU,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EACzC,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,SAAS;AAAA,EACxC,gBAAgB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC/C,eAAe,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC9C,cAAc,EAAE;AAAA,IACd,EAAE,OAAO;AAAA,MACP,QAAQ,EAAE,OAAO,EAAE,KAAK;AAAA,MACxB,MAAM,EAAE,OAAO,EAAE,SAAS;AAAA,MAC1B,OAAO,EAAE,OAAO,EAAE,SAAS;AAAA,MAC3B,QAAQ,EAAE,OAAO,EAAE,SAAS;AAAA,IAC9B,CAAC;AAAA,EACH,EAAE,SAAS,EAAE,SAAS;AAAA,EACtB,iBAAiB,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC3C,gBAAgB,EAAE;AAAA,IAChB,EAAE,OAAO;AAAA,MACP,IAAI,EAAE,OAAO,EAAE,KAAK;AAAA,MACpB,MAAM,EAAE,OAAO;AAAA,MACf,OAAO,EAAE,OAAO;AAAA,IAClB,CAAC;AAAA,EACH,EAAE,SAAS,EAAE,SAAS;AAAA,EACtB,kBAAkB,EACf,OAAO;AAAA,IACN,iBAAiB,EAAE,QAAQ,EAAE,SAAS;AAAA,IACtC,WAAW,EAAE,QAAQ,EAAE,SAAS;AAAA,IAChC,YAAY,EAAE,QAAQ,EAAE,SAAS;AAAA,EACnC,CAAC,EACA,SAAS,EACT,SAAS;AAAA,EACZ,gBAAgB,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EACtD,UAAU,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS,EAAE,SAAS;AAAA,EAChD,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,WAAW,EAAE,OAAO,EAAE,SAAS;AAAA,EAC/B,YAAY,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC3C,aAAa,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC5C,WAAW,EAAE,OAAO,EAAE,SAAS,EAAE,SAAS;AAAA,EAC1C,cAAc,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,EAAE,SAAS,EAAE,SAAS;AAAA,EACpE,eAAe,EAAE,OAAO,EAAE,OAAO,GAAG,EAAE,QAAQ,CAAC,EAAE,SAAS;AAC5D,CAAC,EACA,YAAY;AAEf,MAAM,gCAAgC,EAAE,OAAO;AAAA,EAC7C,OAAO,EAAE,MAAM,yBAAyB;AAAA,EACxC,YAAY,EAAE,OAAO,EAAE,SAAS;AAClC,CAAC;AAED,MAAM,kCAAkC,EAAE,OAAO;AAAA,EAC/C,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,SAAS;AACjC,CAAC;AAEM,MAAM,UAAU,2BAA2B;AAAA,EAChD,cAAc;AAAA,EACd,aAAa;AAAA,EACb,oBAAoB;AAAA,EACpB,QAAQ;AAAA,IACN,QAAQ;AAAA,IACR,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AAAA,EACA,QAAQ;AAAA,IACN,QAAQ;AAAA,IACR,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AAAA,EACA,KAAK;AAAA,IACH,QAAQ,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;AAAA,IAC1C,gBAAgB;AAAA,IAChB,aAAa;AAAA,EACf;AACF,CAAC;",
   "names": ["sentinel"]
 }

package/dist/modules/customers/api/people/[id]/email-threads/route.js ADDED Viewed

@@ -0,0 +1,82 @@
+import { NextResponse } from "next/server";
+import { z } from "zod";
+import { getAuthFromRequest } from "@open-mercato/shared/lib/auth/server";
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { findOneWithDecryption } from "@open-mercato/shared/lib/encryption/find";
+import { resolveOrganizationScopeForRequest } from "@open-mercato/core/modules/directory/utils/organizationScope";
+import { CustomerEntity } from "../../../../data/entities.js";
+import { buildPersonEmailThreads } from "../../../../lib/personEmailThreads.js";
+const metadata = {
+  path: "/customers/people/[id]/email-threads",
+  GET: {
+    requireAuth: true,
+    requireFeatures: ["customers.people.view"]
+  }
+};
+async function GET(req, context) {
+  const { id: personId } = await context.params;
+  if (!z.string().uuid().safeParse(personId).success) {
+    return NextResponse.json({ error: "Invalid person id" }, { status: 400 });
+  }
+  const auth = await getAuthFromRequest(req);
+  if (!auth?.sub || !auth?.tenantId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
+  }
+  const container = await createRequestContainer();
+  const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req });
+  const organizationId = scope?.selectedId ?? auth.orgId ?? null;
+  const em = container.resolve("em").fork();
+  const dscope = { tenantId: auth.tenantId, organizationId };
+  const person = await findOneWithDecryption(
+    em,
+    CustomerEntity,
+    {
+      id: personId,
+      kind: "person",
+      tenantId: auth.tenantId,
+      organizationId,
+      deletedAt: null
+    },
+    void 0,
+    dscope
+  );
+  if (!person) {
+    return NextResponse.json({ error: "Person not found" }, { status: 404 });
+  }
+  const viewerUserId = auth.isApiKey ? null : auth.sub ?? null;
+  const threads = await buildPersonEmailThreads(em, {
+    personId,
+    tenantId: auth.tenantId,
+    organizationId,
+    viewerUserId,
+    // The v1 visibility filter is owner-only and ignores `userFeatures`; match
+    // the sibling read routes (people/[id], interactions) by passing `undefined`
+    // rather than paying an RBAC round-trip the filter discards.
+    userFeatures: void 0
+  });
+  return NextResponse.json({ threads });
+}
+const openApi = {
+  tags: ["Customers", "Email"],
+  methods: {
+    GET: {
+      summary: "List a Person's email threads (Gmail-style conversation grouping)",
+      tags: ["Customers", "Email"],
+      responses: [
+        { status: 200, description: "Email threads for the person, grouped by conversation" },
+        { status: 400, description: "Invalid person id" },
+        { status: 401, description: "Unauthorized" },
+        { status: 403, description: "Missing customers.people.view feature" },
+        { status: 404, description: "Person not found" }
+      ]
+    }
+  }
+};
+var route_default = GET;
+export {
+  GET,
+  route_default as default,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/customers/api/people/[id]/email-threads/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../src/modules/customers/api/people/%5Bid%5D/email-threads/route.ts"],
+  "sourcesContent": ["import { NextResponse } from 'next/server'\nimport { z } from 'zod'\nimport type { EntityManager } from '@mikro-orm/postgresql'\nimport { getAuthFromRequest } from '@open-mercato/shared/lib/auth/server'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { findOneWithDecryption } from '@open-mercato/shared/lib/encryption/find'\nimport { resolveOrganizationScopeForRequest } from '@open-mercato/core/modules/directory/utils/organizationScope'\nimport { CustomerEntity } from '../../../../data/entities'\nimport { buildPersonEmailThreads } from '../../../../lib/personEmailThreads'\n\nexport const metadata = {\n  path: '/customers/people/[id]/email-threads',\n  GET: {\n    requireAuth: true,\n    requireFeatures: ['customers.people.view'],\n  },\n}\n\ntype RouteContext = {\n  params: Promise<{ id: string }> | { id: string }\n}\n\nexport async function GET(req: Request, context: RouteContext): Promise<Response> {\n  const { id: personId } = await context.params\n  if (!z.string().uuid().safeParse(personId).success) {\n    return NextResponse.json({ error: 'Invalid person id' }, { status: 400 })\n  }\n\n  const auth = await getAuthFromRequest(req)\n  if (!auth?.sub || !auth?.tenantId) {\n    return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })\n  }\n\n  const container = await createRequestContainer()\n  const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req })\n  const organizationId = scope?.selectedId ?? (auth as { orgId?: string | null }).orgId ?? null\n  const em = (container.resolve('em') as EntityManager).fork()\n  const dscope = { tenantId: auth.tenantId as string, organizationId }\n\n  // Verify the Person exists in the caller's tenant/org (ownership check,\n  // same pattern as the [id]/emails compose route).\n  const person = await findOneWithDecryption(\n    em,\n    CustomerEntity,\n    {\n      id: personId,\n      kind: 'person',\n      tenantId: auth.tenantId,\n      organizationId,\n      deletedAt: null,\n    } as never,\n    undefined,\n    dscope,\n  )\n  if (!person) {\n    return NextResponse.json({ error: 'Person not found' }, { status: 404 })\n  }\n\n  const viewerUserId = auth.isApiKey ? null : auth.sub ?? null\n\n  const threads = await buildPersonEmailThreads(em, {\n    personId,\n    tenantId: auth.tenantId as string,\n    organizationId,\n    viewerUserId,\n    // The v1 visibility filter is owner-only and ignores `userFeatures`; match\n    // the sibling read routes (people/[id], interactions) by passing `undefined`\n    // rather than paying an RBAC round-trip the filter discards.\n    userFeatures: undefined,\n  })\n\n  return NextResponse.json({ threads })\n}\n\nexport const openApi = {\n  tags: ['Customers', 'Email'],\n  methods: {\n    GET: {\n      summary: 'List a Person\\'s email threads (Gmail-style conversation grouping)',\n      tags: ['Customers', 'Email'],\n      responses: [\n        { status: 200, description: 'Email threads for the person, grouped by conversation' },\n        { status: 400, description: 'Invalid person id' },\n        { status: 401, description: 'Unauthorized' },\n        { status: 403, description: 'Missing customers.people.view feature' },\n        { status: 404, description: 'Person not found' },\n      ],\n    },\n  },\n}\n\nexport default GET\n"],
+  "mappings": "AAAA,SAAS,oBAAoB;AAC7B,SAAS,SAAS;AAElB,SAAS,0BAA0B;AACnC,SAAS,8BAA8B;AACvC,SAAS,6BAA6B;AACtC,SAAS,0CAA0C;AACnD,SAAS,sBAAsB;AAC/B,SAAS,+BAA+B;AAEjC,MAAM,WAAW;AAAA,EACtB,MAAM;AAAA,EACN,KAAK;AAAA,IACH,aAAa;AAAA,IACb,iBAAiB,CAAC,uBAAuB;AAAA,EAC3C;AACF;AAMA,eAAsB,IAAI,KAAc,SAA0C;AAChF,QAAM,EAAE,IAAI,SAAS,IAAI,MAAM,QAAQ;AACvC,MAAI,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,QAAQ,EAAE,SAAS;AAClD,WAAO,aAAa,KAAK,EAAE,OAAO,oBAAoB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC1E;AAEA,QAAM,OAAO,MAAM,mBAAmB,GAAG;AACzC,MAAI,CAAC,MAAM,OAAO,CAAC,MAAM,UAAU;AACjC,WAAO,aAAa,KAAK,EAAE,OAAO,eAAe,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EACrE;AAEA,QAAM,YAAY,MAAM,uBAAuB;AAC/C,QAAM,QAAQ,MAAM,mCAAmC,EAAE,WAAW,MAAM,SAAS,IAAI,CAAC;AACxF,QAAM,iBAAiB,OAAO,cAAe,KAAmC,SAAS;AACzF,QAAM,KAAM,UAAU,QAAQ,IAAI,EAAoB,KAAK;AAC3D,QAAM,SAAS,EAAE,UAAU,KAAK,UAAoB,eAAe;AAInE,QAAM,SAAS,MAAM;AAAA,IACnB;AAAA,IACA;AAAA,IACA;AAAA,MACE,IAAI;AAAA,MACJ,MAAM;AAAA,MACN,UAAU,KAAK;AAAA,MACf;AAAA,MACA,WAAW;AAAA,IACb;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACA,MAAI,CAAC,QAAQ;AACX,WAAO,aAAa,KAAK,EAAE,OAAO,mBAAmB,GAAG,EAAE,QAAQ,IAAI,CAAC;AAAA,EACzE;AAEA,QAAM,eAAe,KAAK,WAAW,OAAO,KAAK,OAAO;AAExD,QAAM,UAAU,MAAM,wBAAwB,IAAI;AAAA,IAChD;AAAA,IACA,UAAU,KAAK;AAAA,IACf;AAAA,IACA;AAAA;AAAA;AAAA;AAAA,IAIA,cAAc;AAAA,EAChB,CAAC;AAED,SAAO,aAAa,KAAK,EAAE,QAAQ,CAAC;AACtC;AAEO,MAAM,UAAU;AAAA,EACrB,MAAM,CAAC,aAAa,OAAO;AAAA,EAC3B,SAAS;AAAA,IACP,KAAK;AAAA,MACH,SAAS;AAAA,MACT,MAAM,CAAC,aAAa,OAAO;AAAA,MAC3B,WAAW;AAAA,QACT,EAAE,QAAQ,KAAK,aAAa,wDAAwD;AAAA,QACpF,EAAE,QAAQ,KAAK,aAAa,oBAAoB;AAAA,QAChD,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,wCAAwC;AAAA,QACpE,EAAE,QAAQ,KAAK,aAAa,mBAAmB;AAAA,MACjD;AAAA,IACF;AAAA,EACF;AACF;AAEA,IAAO,gBAAQ;",
+  "names": []
+}

package/dist/modules/customers/api/people/[id]/emails/route.js ADDED Viewed

@@ -0,0 +1,157 @@
+import { NextResponse } from "next/server";
+import { z } from "zod";
+import { getAuthFromRequest } from "@open-mercato/shared/lib/auth/server";
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { findOneWithDecryption } from "@open-mercato/shared/lib/encryption/find";
+import { readJsonSafe } from "@open-mercato/shared/lib/http/readJsonSafe";
+import {
+  validateCrudMutationGuard,
+  runCrudMutationGuardAfterSuccess
+} from "@open-mercato/shared/lib/crud/mutation-guard";
+import { resolveOrganizationScopeForRequest } from "@open-mercato/core/modules/directory/utils/organizationScope";
+import { resolveAuthActorId } from "../../../../lib/interactionRequestContext.js";
+import { CustomerEntity } from "../../../../data/entities.js";
+const metadata = {
+  path: "/customers/people/[id]/emails",
+  POST: {
+    requireAuth: true,
+    requireFeatures: ["customers.email.compose"]
+  }
+};
+const composeSchema = z.object({
+  userChannelId: z.string().uuid(),
+  to: z.array(z.string().email()).min(1).max(50),
+  cc: z.array(z.string().email()).max(50).optional(),
+  bcc: z.array(z.string().email()).max(50).optional(),
+  subject: z.string().min(1).max(500),
+  body: z.string().min(1).max(2e5),
+  bodyFormat: z.enum(["text", "html"]).default("html"),
+  visibility: z.enum(["private", "shared"]).default("private"),
+  inReplyTo: z.string().max(500).optional(),
+  references: z.array(z.string().max(500)).max(50).optional(),
+  parentMessageId: z.string().uuid().optional()
+}).strict();
+async function POST(req, context) {
+  const { id: personId } = await context.params;
+  if (!z.string().uuid().safeParse(personId).success) {
+    return NextResponse.json({ error: "Invalid person id" }, { status: 400 });
+  }
+  const auth = await getAuthFromRequest(req);
+  if (!auth?.sub || !auth?.tenantId) {
+    return NextResponse.json({ error: "Unauthorized" }, { status: 401 });
+  }
+  let body;
+  try {
+    body = composeSchema.parse(await readJsonSafe(req, null));
+  } catch (err) {
+    return NextResponse.json(
+      { error: err instanceof Error ? err.message : "Invalid request body" },
+      { status: 422 }
+    );
+  }
+  const container = await createRequestContainer();
+  const userId = resolveAuthActorId(auth);
+  const scope = await resolveOrganizationScopeForRequest({ container, auth, request: req });
+  const organizationId = scope?.selectedId ?? auth.orgId ?? null;
+  const guardResult = await validateCrudMutationGuard(container, {
+    tenantId: auth.tenantId,
+    organizationId,
+    userId,
+    resourceKind: "customers.person",
+    resourceId: personId,
+    operation: "custom",
+    requestMethod: req.method,
+    requestHeaders: req.headers
+  });
+  if (guardResult && !guardResult.ok) {
+    return NextResponse.json(guardResult.body, { status: guardResult.status });
+  }
+  const em = container.resolve("em").fork();
+  const dscope = { tenantId: auth.tenantId, organizationId };
+  const person = await findOneWithDecryption(
+    em,
+    CustomerEntity,
+    {
+      id: personId,
+      kind: "person",
+      tenantId: auth.tenantId,
+      organizationId,
+      deletedAt: null
+    },
+    void 0,
+    dscope
+  );
+  if (!person) {
+    return NextResponse.json({ error: "Person not found" }, { status: 404 });
+  }
+  const sendAsUserService = container.resolve(
+    "communicationChannelsSendAsUser"
+  );
+  const sendResult = await sendAsUserService(
+    container,
+    { userId: auth.sub, tenantId: auth.tenantId, organizationId, auth },
+    {
+      userChannelId: body.userChannelId,
+      to: body.to,
+      cc: body.cc,
+      bcc: body.bcc,
+      subject: body.subject,
+      body: body.bodyFormat === "html" ? { html: body.body } : { plain: body.body },
+      inReplyTo: body.inReplyTo,
+      references: body.references,
+      parentMessageId: body.parentMessageId,
+      channelMetadata: {
+        crmVisibility: body.visibility,
+        crmPersonId: personId
+      }
+    }
+  );
+  if (!sendResult.ok) {
+    return NextResponse.json({ error: sendResult.error }, { status: sendResult.status });
+  }
+  if (guardResult?.ok && guardResult.shouldRunAfterSuccess) {
+    await runCrudMutationGuardAfterSuccess(container, {
+      tenantId: auth.tenantId,
+      organizationId,
+      userId,
+      resourceKind: "customers.person",
+      resourceId: personId,
+      operation: "custom",
+      requestMethod: req.method,
+      requestHeaders: req.headers,
+      metadata: guardResult.metadata ?? null
+    });
+  }
+  return NextResponse.json({
+    messageId: sendResult.messageId,
+    threadId: sendResult.threadId,
+    queuedAt: (/* @__PURE__ */ new Date()).toISOString()
+  });
+}
+const openApi = {
+  tags: ["Customers", "Email"],
+  methods: {
+    POST: {
+      summary: "Compose + send an email anchored to a Person",
+      tags: ["Customers", "Email"],
+      responses: [
+        { status: 200, description: "Email queued for send" },
+        { status: 400, description: "Invalid person id" },
+        { status: 401, description: "Unauthorized" },
+        { status: 403, description: "Missing customers.email.compose feature or mutation guard rejection" },
+        { status: 404, description: "Person or channel not found" },
+        { status: 409, description: "Channel not connected" },
+        { status: 422, description: "Invalid request body" },
+        { status: 500, description: "Send failed" }
+      ]
+    }
+  }
+};
+var route_default = POST;
+export {
+  POST,
+  route_default as default,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map