@open-mercato/core 0.6.5-develop.4616.1.0cd64e1448 → 0.6.5-develop.4620.1.c20bc7e4bb

package/.turbo/turbo-build.log

@@ -1,4 +1,4 @@
-[build:core] found 3172 entry points
+[build:core] found 3176 entry points
 [build:core] built successfully
 [build:core:generated] found 185 entry points
 [build:core:generated] built successfully

package/dist/helpers/integration/undoHarness.js

@@ -0,0 +1,81 @@
+import { expect } from "@playwright/test";
+import { apiRequest } from "./api.js";
+const HEADER_PREFIX = "omop:";
+const UNDO_PATH = "/api/audit_logs/audit-logs/actions/undo";
+const REDO_PATH = "/api/audit_logs/audit-logs/actions/redo";
+const ACTIONS_PATH = "/api/audit_logs/audit-logs/actions";
+function extractOperation(response) {
+  const header = response.headers()["x-om-operation"];
+  if (!header || typeof header !== "string") return null;
+  const trimmed = header.startsWith(HEADER_PREFIX) ? header.slice(HEADER_PREFIX.length) : header;
+  try {
+    const parsed = JSON.parse(decodeURIComponent(trimmed));
+    if (typeof parsed.id !== "string" || typeof parsed.commandId !== "string") return null;
+    if (typeof parsed.undoToken !== "string" || !parsed.undoToken) return null;
+    return {
+      logId: parsed.id,
+      undoToken: parsed.undoToken,
+      commandId: parsed.commandId,
+      resourceKind: parsed.resourceKind ?? null,
+      resourceId: parsed.resourceId ?? null
+    };
+  } catch {
+    return null;
+  }
+}
+function expectOperation(response, context) {
+  const op = extractOperation(response);
+  expect(op, `Expected an undo token (x-om-operation header) for ${context}, got none`).toBeTruthy();
+  return op;
+}
+async function undoByToken(request, token, undoToken) {
+  return apiRequest(request, "POST", UNDO_PATH, { token, data: { undoToken } });
+}
+async function redoByLogId(request, token, logId) {
+  return apiRequest(request, "POST", REDO_PATH, { token, data: { logId } });
+}
+async function undoOk(request, token, undoToken, context) {
+  const res = await undoByToken(request, token, undoToken);
+  const body = await res.json().catch(() => null);
+  expect(res.ok(), `Undo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy();
+  expect(body?.ok, `Undo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy();
+  return body?.logId;
+}
+async function redoOk(request, token, logId, context) {
+  const res = await redoByLogId(request, token, logId);
+  const body = await res.json().catch(() => null);
+  expect(res.ok(), `Redo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy();
+  expect(body?.ok, `Redo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy();
+  return { logId: body?.logId, undoToken: body?.undoToken ?? null };
+}
+async function expectTokenConsumed(request, token, undoToken, context) {
+  const res = await undoByToken(request, token, undoToken);
+  expect(res.ok(), `Expected double-undo to be rejected for ${context}, but it succeeded`).toBeFalsy();
+}
+async function listUndoable(request, token, params = {}) {
+  const qs = new URLSearchParams({ undoableOnly: "true", ...params }).toString();
+  const res = await apiRequest(request, "GET", `${ACTIONS_PATH}?${qs}`, { token });
+  return res.json().catch(() => null);
+}
+function assertFieldsEqual(actual, expected, fields, context) {
+  expect(actual, `${context}: actual entity missing`).toBeTruthy();
+  expect(expected, `${context}: expected entity missing`).toBeTruthy();
+  for (const field of fields) {
+    expect(
+      JSON.stringify(actual[field]),
+      `${context}: field "${field}" not restored (expected ${JSON.stringify(expected[field])}, got ${JSON.stringify(actual[field])})`
+    ).toBe(JSON.stringify(expected[field]));
+  }
+}
+export {
+  assertFieldsEqual,
+  expectOperation,
+  expectTokenConsumed,
+  extractOperation,
+  listUndoable,
+  redoByLogId,
+  redoOk,
+  undoByToken,
+  undoOk
+};
+//# sourceMappingURL=undoHarness.js.map

package/dist/helpers/integration/undoHarness.js.map

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../src/helpers/integration/undoHarness.ts"],
+  "sourcesContent": ["import { type APIRequestContext, type APIResponse, expect } from '@playwright/test'\nimport { apiRequest } from './api'\n\n/**\n * Shared harness for verifying Undo/Redo correctness against the real command bus.\n *\n * Every mutating Open Mercato API response carries the operation metadata in the\n * `x-om-operation` header (`omop:<urlencoded JSON>`) containing the `undoToken` and the\n * audit log `id` (used as `logId` for redo). These helpers extract that envelope and drive\n * the real undo/redo endpoints so tests can assert full state restoration per TC-UNDO-001.\n */\n\nconst HEADER_PREFIX = 'omop:'\nconst UNDO_PATH = '/api/audit_logs/audit-logs/actions/undo'\nconst REDO_PATH = '/api/audit_logs/audit-logs/actions/redo'\nconst ACTIONS_PATH = '/api/audit_logs/audit-logs/actions'\n\nexport type Operation = {\n  logId: string\n  undoToken: string\n  commandId: string\n  resourceKind: string | null\n  resourceId: string | null\n}\n\n/** Parse the `x-om-operation` header into a structured operation, or null when absent/malformed. */\nexport function extractOperation(response: APIResponse): Operation | null {\n  const header = response.headers()['x-om-operation']\n  if (!header || typeof header !== 'string') return null\n  const trimmed = header.startsWith(HEADER_PREFIX) ? header.slice(HEADER_PREFIX.length) : header\n  try {\n    const parsed = JSON.parse(decodeURIComponent(trimmed)) as Record<string, unknown>\n    if (typeof parsed.id !== 'string' || typeof parsed.commandId !== 'string') return null\n    if (typeof parsed.undoToken !== 'string' || !parsed.undoToken) return null\n    return {\n      logId: parsed.id,\n      undoToken: parsed.undoToken,\n      commandId: parsed.commandId,\n      resourceKind: (parsed.resourceKind as string) ?? null,\n      resourceId: (parsed.resourceId as string) ?? null,\n    }\n  } catch {\n    return null\n  }\n}\n\n/** Like extractOperation but fails the test if no undo token was issued. */\nexport function expectOperation(response: APIResponse, context: string): Operation {\n  const op = extractOperation(response)\n  expect(op, `Expected an undo token (x-om-operation header) for ${context}, got none`).toBeTruthy()\n  return op as Operation\n}\n\nexport async function undoByToken(request: APIRequestContext, token: string, undoToken: string): Promise<APIResponse> {\n  return apiRequest(request, 'POST', UNDO_PATH, { token, data: { undoToken } })\n}\n\nexport async function redoByLogId(request: APIRequestContext, token: string, logId: string): Promise<APIResponse> {\n  return apiRequest(request, 'POST', REDO_PATH, { token, data: { logId } })\n}\n\n/** Undo and assert success; returns the resolved logId. */\nexport async function undoOk(request: APIRequestContext, token: string, undoToken: string, context: string): Promise<string> {\n  const res = await undoByToken(request, token, undoToken)\n  const body = (await res.json().catch(() => null)) as { ok?: boolean; logId?: string } | null\n  expect(res.ok(), `Undo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy()\n  expect(body?.ok, `Undo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy()\n  return body?.logId as string\n}\n\n/** Redo and assert success; returns the new operation (new undoToken + logId). */\nexport async function redoOk(request: APIRequestContext, token: string, logId: string, context: string): Promise<{ logId: string; undoToken: string | null }> {\n  const res = await redoByLogId(request, token, logId)\n  const body = (await res.json().catch(() => null)) as { ok?: boolean; logId?: string; undoToken?: string } | null\n  expect(res.ok(), `Redo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy()\n  expect(body?.ok, `Redo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy()\n  return { logId: body?.logId as string, undoToken: body?.undoToken ?? null }\n}\n\n/** Assert that undoing an already-consumed token is rejected (token consumption / no double-undo). */\nexport async function expectTokenConsumed(request: APIRequestContext, token: string, undoToken: string, context: string): Promise<void> {\n  const res = await undoByToken(request, token, undoToken)\n  expect(res.ok(), `Expected double-undo to be rejected for ${context}, but it succeeded`).toBeFalsy()\n}\n\n/** Fetch undoable actions list (for Version History assertions). */\nexport async function listUndoable(request: APIRequestContext, token: string, params: Record<string, string> = {}): Promise<unknown> {\n  const qs = new URLSearchParams({ undoableOnly: 'true', ...params }).toString()\n  const res = await apiRequest(request, 'GET', `${ACTIONS_PATH}?${qs}`, { token })\n  return res.json().catch(() => null)\n}\n\n/**\n * Deep-equality assertion for a selected set of fields between two entity snapshots.\n * Reports the first mismatching field with context for clear bug triage.\n */\nexport function assertFieldsEqual(\n  actual: Record<string, unknown> | null | undefined,\n  expected: Record<string, unknown> | null | undefined,\n  fields: string[],\n  context: string,\n): void {\n  expect(actual, `${context}: actual entity missing`).toBeTruthy()\n  expect(expected, `${context}: expected entity missing`).toBeTruthy()\n  for (const field of fields) {\n    expect(\n      JSON.stringify((actual as Record<string, unknown>)[field]),\n      `${context}: field \"${field}\" not restored (expected ${JSON.stringify((expected as Record<string, unknown>)[field])}, got ${JSON.stringify((actual as Record<string, unknown>)[field])})`,\n    ).toBe(JSON.stringify((expected as Record<string, unknown>)[field]))\n  }\n}\n"],
+  "mappings": "AAAA,SAAmD,cAAc;AACjE,SAAS,kBAAkB;AAW3B,MAAM,gBAAgB;AACtB,MAAM,YAAY;AAClB,MAAM,YAAY;AAClB,MAAM,eAAe;AAWd,SAAS,iBAAiB,UAAyC;AACxE,QAAM,SAAS,SAAS,QAAQ,EAAE,gBAAgB;AAClD,MAAI,CAAC,UAAU,OAAO,WAAW,SAAU,QAAO;AAClD,QAAM,UAAU,OAAO,WAAW,aAAa,IAAI,OAAO,MAAM,cAAc,MAAM,IAAI;AACxF,MAAI;AACF,UAAM,SAAS,KAAK,MAAM,mBAAmB,OAAO,CAAC;AACrD,QAAI,OAAO,OAAO,OAAO,YAAY,OAAO,OAAO,cAAc,SAAU,QAAO;AAClF,QAAI,OAAO,OAAO,cAAc,YAAY,CAAC,OAAO,UAAW,QAAO;AACtE,WAAO;AAAA,MACL,OAAO,OAAO;AAAA,MACd,WAAW,OAAO;AAAA,MAClB,WAAW,OAAO;AAAA,MAClB,cAAe,OAAO,gBAA2B;AAAA,MACjD,YAAa,OAAO,cAAyB;AAAA,IAC/C;AAAA,EACF,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAGO,SAAS,gBAAgB,UAAuB,SAA4B;AACjF,QAAM,KAAK,iBAAiB,QAAQ;AACpC,SAAO,IAAI,sDAAsD,OAAO,YAAY,EAAE,WAAW;AACjG,SAAO;AACT;AAEA,eAAsB,YAAY,SAA4B,OAAe,WAAyC;AACpH,SAAO,WAAW,SAAS,QAAQ,WAAW,EAAE,OAAO,MAAM,EAAE,UAAU,EAAE,CAAC;AAC9E;AAEA,eAAsB,YAAY,SAA4B,OAAe,OAAqC;AAChH,SAAO,WAAW,SAAS,QAAQ,WAAW,EAAE,OAAO,MAAM,EAAE,MAAM,EAAE,CAAC;AAC1E;AAGA,eAAsB,OAAO,SAA4B,OAAe,WAAmB,SAAkC;AAC3H,QAAM,MAAM,MAAM,YAAY,SAAS,OAAO,SAAS;AACvD,QAAM,OAAQ,MAAM,IAAI,KAAK,EAAE,MAAM,MAAM,IAAI;AAC/C,SAAO,IAAI,GAAG,GAAG,mBAAmB,OAAO,YAAY,IAAI,OAAO,CAAC,SAAS,KAAK,UAAU,IAAI,CAAC,EAAE,EAAE,WAAW;AAC/G,SAAO,MAAM,IAAI,mBAAmB,OAAO,KAAK,KAAK,UAAU,IAAI,CAAC,EAAE,EAAE,WAAW;AACnF,SAAO,MAAM;AACf;AAGA,eAAsB,OAAO,SAA4B,OAAe,OAAe,SAAuE;AAC5J,QAAM,MAAM,MAAM,YAAY,SAAS,OAAO,KAAK;AACnD,QAAM,OAAQ,MAAM,IAAI,KAAK,EAAE,MAAM,MAAM,IAAI;AAC/C,SAAO,IAAI,GAAG,GAAG,mBAAmB,OAAO,YAAY,IAAI,OAAO,CAAC,SAAS,KAAK,UAAU,IAAI,CAAC,EAAE,EAAE,WAAW;AAC/G,SAAO,MAAM,IAAI,mBAAmB,OAAO,KAAK,KAAK,UAAU,IAAI,CAAC,EAAE,EAAE,WAAW;AACnF,SAAO,EAAE,OAAO,MAAM,OAAiB,WAAW,MAAM,aAAa,KAAK;AAC5E;AAGA,eAAsB,oBAAoB,SAA4B,OAAe,WAAmB,SAAgC;AACtI,QAAM,MAAM,MAAM,YAAY,SAAS,OAAO,SAAS;AACvD,SAAO,IAAI,GAAG,GAAG,2CAA2C,OAAO,oBAAoB,EAAE,UAAU;AACrG;AAGA,eAAsB,aAAa,SAA4B,OAAe,SAAiC,CAAC,GAAqB;AACnI,QAAM,KAAK,IAAI,gBAAgB,EAAE,cAAc,QAAQ,GAAG,OAAO,CAAC,EAAE,SAAS;AAC7E,QAAM,MAAM,MAAM,WAAW,SAAS,OAAO,GAAG,YAAY,IAAI,EAAE,IAAI,EAAE,MAAM,CAAC;AAC/E,SAAO,IAAI,KAAK,EAAE,MAAM,MAAM,IAAI;AACpC;AAMO,SAAS,kBACd,QACA,UACA,QACA,SACM;AACN,SAAO,QAAQ,GAAG,OAAO,yBAAyB,EAAE,WAAW;AAC/D,SAAO,UAAU,GAAG,OAAO,2BAA2B,EAAE,WAAW;AACnE,aAAW,SAAS,QAAQ;AAC1B;AAAA,MACE,KAAK,UAAW,OAAmC,KAAK,CAAC;AAAA,MACzD,GAAG,OAAO,YAAY,KAAK,4BAA4B,KAAK,UAAW,SAAqC,KAAK,CAAC,CAAC,SAAS,KAAK,UAAW,OAAmC,KAAK,CAAC,CAAC;AAAA,IACxL,EAAE,KAAK,KAAK,UAAW,SAAqC,KAAK,CAAC,CAAC;AAAA,EACrE;AACF;",
+  "names": []
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@open-mercato/core",
-  "version": "0.6.5-develop.4616.1.0cd64e1448",
+  "version": "0.6.5-develop.4620.1.c20bc7e4bb",
   "type": "module",
   "main": "./dist/index.js",
   "scripts": {
@@ -245,16 +245,16 @@
     "zod": "^4.4.3"
   },
   "peerDependencies": {
-    "@open-mercato/ai-assistant": "0.6.5-develop.4616.1.0cd64e1448",
-    "@open-mercato/shared": "0.6.5-develop.4616.1.0cd64e1448",
-    "@open-mercato/ui": "0.6.5-develop.4616.1.0cd64e1448",
+    "@open-mercato/ai-assistant": "0.6.5-develop.4620.1.c20bc7e4bb",
+    "@open-mercato/shared": "0.6.5-develop.4620.1.c20bc7e4bb",
+    "@open-mercato/ui": "0.6.5-develop.4620.1.c20bc7e4bb",
     "react": "^19.0.0",
     "react-dom": "^19.0.0"
   },
   "devDependencies": {
-    "@open-mercato/ai-assistant": "0.6.5-develop.4616.1.0cd64e1448",
-    "@open-mercato/shared": "0.6.5-develop.4616.1.0cd64e1448",
-    "@open-mercato/ui": "0.6.5-develop.4616.1.0cd64e1448",
+    "@open-mercato/ai-assistant": "0.6.5-develop.4620.1.c20bc7e4bb",
+    "@open-mercato/shared": "0.6.5-develop.4620.1.c20bc7e4bb",
+    "@open-mercato/ui": "0.6.5-develop.4620.1.c20bc7e4bb",
     "@testing-library/dom": "^10.4.1",
     "@testing-library/jest-dom": "^6.9.1",
     "@testing-library/react": "^16.3.1",

package/src/helpers/integration/undoHarness.ts

@@ -0,0 +1,111 @@
+import { type APIRequestContext, type APIResponse, expect } from '@playwright/test'
+import { apiRequest } from './api'
+
+/**
+ * Shared harness for verifying Undo/Redo correctness against the real command bus.
+ *
+ * Every mutating Open Mercato API response carries the operation metadata in the
+ * `x-om-operation` header (`omop:<urlencoded JSON>`) containing the `undoToken` and the
+ * audit log `id` (used as `logId` for redo). These helpers extract that envelope and drive
+ * the real undo/redo endpoints so tests can assert full state restoration per TC-UNDO-001.
+ */
+
+const HEADER_PREFIX = 'omop:'
+const UNDO_PATH = '/api/audit_logs/audit-logs/actions/undo'
+const REDO_PATH = '/api/audit_logs/audit-logs/actions/redo'
+const ACTIONS_PATH = '/api/audit_logs/audit-logs/actions'
+
+export type Operation = {
+  logId: string
+  undoToken: string
+  commandId: string
+  resourceKind: string | null
+  resourceId: string | null
+}
+
+/** Parse the `x-om-operation` header into a structured operation, or null when absent/malformed. */
+export function extractOperation(response: APIResponse): Operation | null {
+  const header = response.headers()['x-om-operation']
+  if (!header || typeof header !== 'string') return null
+  const trimmed = header.startsWith(HEADER_PREFIX) ? header.slice(HEADER_PREFIX.length) : header
+  try {
+    const parsed = JSON.parse(decodeURIComponent(trimmed)) as Record<string, unknown>
+    if (typeof parsed.id !== 'string' || typeof parsed.commandId !== 'string') return null
+    if (typeof parsed.undoToken !== 'string' || !parsed.undoToken) return null
+    return {
+      logId: parsed.id,
+      undoToken: parsed.undoToken,
+      commandId: parsed.commandId,
+      resourceKind: (parsed.resourceKind as string) ?? null,
+      resourceId: (parsed.resourceId as string) ?? null,
+    }
+  } catch {
+    return null
+  }
+}
+
+/** Like extractOperation but fails the test if no undo token was issued. */
+export function expectOperation(response: APIResponse, context: string): Operation {
+  const op = extractOperation(response)
+  expect(op, `Expected an undo token (x-om-operation header) for ${context}, got none`).toBeTruthy()
+  return op as Operation
+}
+
+export async function undoByToken(request: APIRequestContext, token: string, undoToken: string): Promise<APIResponse> {
+  return apiRequest(request, 'POST', UNDO_PATH, { token, data: { undoToken } })
+}
+
+export async function redoByLogId(request: APIRequestContext, token: string, logId: string): Promise<APIResponse> {
+  return apiRequest(request, 'POST', REDO_PATH, { token, data: { logId } })
+}
+
+/** Undo and assert success; returns the resolved logId. */
+export async function undoOk(request: APIRequestContext, token: string, undoToken: string, context: string): Promise<string> {
+  const res = await undoByToken(request, token, undoToken)
+  const body = (await res.json().catch(() => null)) as { ok?: boolean; logId?: string } | null
+  expect(res.ok(), `Undo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy()
+  expect(body?.ok, `Undo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy()
+  return body?.logId as string
+}
+
+/** Redo and assert success; returns the new operation (new undoToken + logId). */
+export async function redoOk(request: APIRequestContext, token: string, logId: string, context: string): Promise<{ logId: string; undoToken: string | null }> {
+  const res = await redoByLogId(request, token, logId)
+  const body = (await res.json().catch(() => null)) as { ok?: boolean; logId?: string; undoToken?: string } | null
+  expect(res.ok(), `Redo failed for ${context}: status ${res.status()} body ${JSON.stringify(body)}`).toBeTruthy()
+  expect(body?.ok, `Redo not ok for ${context}: ${JSON.stringify(body)}`).toBeTruthy()
+  return { logId: body?.logId as string, undoToken: body?.undoToken ?? null }
+}
+
+/** Assert that undoing an already-consumed token is rejected (token consumption / no double-undo). */
+export async function expectTokenConsumed(request: APIRequestContext, token: string, undoToken: string, context: string): Promise<void> {
+  const res = await undoByToken(request, token, undoToken)
+  expect(res.ok(), `Expected double-undo to be rejected for ${context}, but it succeeded`).toBeFalsy()
+}
+
+/** Fetch undoable actions list (for Version History assertions). */
+export async function listUndoable(request: APIRequestContext, token: string, params: Record<string, string> = {}): Promise<unknown> {
+  const qs = new URLSearchParams({ undoableOnly: 'true', ...params }).toString()
+  const res = await apiRequest(request, 'GET', `${ACTIONS_PATH}?${qs}`, { token })
+  return res.json().catch(() => null)
+}
+
+/**
+ * Deep-equality assertion for a selected set of fields between two entity snapshots.
+ * Reports the first mismatching field with context for clear bug triage.
+ */
+export function assertFieldsEqual(
+  actual: Record<string, unknown> | null | undefined,
+  expected: Record<string, unknown> | null | undefined,
+  fields: string[],
+  context: string,
+): void {
+  expect(actual, `${context}: actual entity missing`).toBeTruthy()
+  expect(expected, `${context}: expected entity missing`).toBeTruthy()
+  for (const field of fields) {
+    expect(
+      JSON.stringify((actual as Record<string, unknown>)[field]),
+      `${context}: field "${field}" not restored (expected ${JSON.stringify((expected as Record<string, unknown>)[field])}, got ${JSON.stringify((actual as Record<string, unknown>)[field])})`,
+    ).toBe(JSON.stringify((expected as Record<string, unknown>)[field]))
+  }
+}