npm - @open-mercato/enterprise - Versions diffs - 0.4.6-develop-15c18897fc → 0.4.6-develop-34aa847ce6 - Mend

@open-mercato/enterprise 0.4.6-develop-15c18897fc → 0.4.6-develop-34aa847ce6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (195) hide show

package/dist/modules/sso/api/scim/v2/ServiceProviderConfig/route.js ADDED Viewed

@@ -0,0 +1,42 @@
+import { scimJson } from "../../../../lib/scim-response.js";
+const metadata = {};
+async function GET() {
+  return scimJson({
+    schemas: ["urn:ietf:params:scim:schemas:core:2.0:ServiceProviderConfig"],
+    documentationUri: "https://open-mercato.com/docs/scim",
+    patch: { supported: true },
+    bulk: { supported: false, maxOperations: 0, maxPayloadSize: 0 },
+    filter: { supported: true, maxResults: 200 },
+    changePassword: { supported: false },
+    sort: { supported: false },
+    etag: { supported: false },
+    authenticationSchemes: [
+      {
+        type: "oauthbearertoken",
+        name: "OAuth Bearer Token",
+        description: "Authentication scheme using the OAuth Bearer Token standard",
+        specUri: "https://www.rfc-editor.org/info/rfc6750",
+        primary: true
+      }
+    ]
+  });
+}
+const openApi = {
+  tag: "SCIM",
+  summary: "SCIM Service Provider Configuration",
+  methods: {
+    GET: {
+      summary: "Get SCIM service provider configuration",
+      description: "Returns SCIM 2.0 ServiceProviderConfig. No authentication required \u2014 used by identity providers during connection testing.",
+      tags: ["SSO", "SCIM"],
+      responses: [{ status: 200, description: "SCIM ServiceProviderConfig" }],
+      errors: []
+    }
+  }
+};
+export {
+  GET,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/sso/api/scim/v2/ServiceProviderConfig/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../src/modules/sso/api/scim/v2/ServiceProviderConfig/route.ts"],
+  "sourcesContent": ["import type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { scimJson } from '../../../../lib/scim-response'\n\nexport const metadata = {}\n\nexport async function GET() {\n  return scimJson({\n    schemas: ['urn:ietf:params:scim:schemas:core:2.0:ServiceProviderConfig'],\n    documentationUri: 'https://open-mercato.com/docs/scim',\n    patch: { supported: true },\n    bulk: { supported: false, maxOperations: 0, maxPayloadSize: 0 },\n    filter: { supported: true, maxResults: 200 },\n    changePassword: { supported: false },\n    sort: { supported: false },\n    etag: { supported: false },\n    authenticationSchemes: [\n      {\n        type: 'oauthbearertoken',\n        name: 'OAuth Bearer Token',\n        description: 'Authentication scheme using the OAuth Bearer Token standard',\n        specUri: 'https://www.rfc-editor.org/info/rfc6750',\n        primary: true,\n      },\n    ],\n  })\n}\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'SCIM',\n  summary: 'SCIM Service Provider Configuration',\n  methods: {\n    GET: {\n      summary: 'Get SCIM service provider configuration',\n      description: 'Returns SCIM 2.0 ServiceProviderConfig. No authentication required \u2014 used by identity providers during connection testing.',\n      tags: ['SSO', 'SCIM'],\n      responses: [{ status: 200, description: 'SCIM ServiceProviderConfig' }],\n      errors: [],\n    },\n  },\n}\n"],
+  "mappings": "AACA,SAAS,gBAAgB;AAElB,MAAM,WAAW,CAAC;AAEzB,eAAsB,MAAM;AAC1B,SAAO,SAAS;AAAA,IACd,SAAS,CAAC,6DAA6D;AAAA,IACvE,kBAAkB;AAAA,IAClB,OAAO,EAAE,WAAW,KAAK;AAAA,IACzB,MAAM,EAAE,WAAW,OAAO,eAAe,GAAG,gBAAgB,EAAE;AAAA,IAC9D,QAAQ,EAAE,WAAW,MAAM,YAAY,IAAI;AAAA,IAC3C,gBAAgB,EAAE,WAAW,MAAM;AAAA,IACnC,MAAM,EAAE,WAAW,MAAM;AAAA,IACzB,MAAM,EAAE,WAAW,MAAM;AAAA,IACzB,uBAAuB;AAAA,MACrB;AAAA,QACE,MAAM;AAAA,QACN,MAAM;AAAA,QACN,aAAa;AAAA,QACb,SAAS;AAAA,QACT,SAAS;AAAA,MACX;AAAA,IACF;AAAA,EACF,CAAC;AACH;AAEO,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,EACT,SAAS;AAAA,IACP,KAAK;AAAA,MACH,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW,CAAC,EAAE,QAAQ,KAAK,aAAa,6BAA6B,CAAC;AAAA,MACtE,QAAQ,CAAC;AAAA,IACX;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/modules/sso/api/scim/v2/Users/[id]/route.js ADDED Viewed

@@ -0,0 +1,94 @@
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { resolveScimContext } from "../../../context.js";
+import { parseScimPatchOperations } from "../../../../../lib/scim-patch.js";
+import { scimJson } from "../../../../../lib/scim-response.js";
+import { handleScimApiError } from "../../../../error-handler.js";
+const metadata = {};
+async function GET(req, ctx) {
+  try {
+    const { id } = await ctx.params;
+    const scimCtx = await resolveScimContext(req);
+    if (!scimCtx.ok) return scimCtx.response;
+    const baseUrl = new URL(req.url).origin;
+    const container = await createRequestContainer();
+    const service = container.resolve("scimService");
+    const resource = await service.getUser(id, scimCtx.scope, baseUrl);
+    return scimJson(resource);
+  } catch (err) {
+    return handleScimApiError(err, "SCIM Users API");
+  }
+}
+async function PATCH(req, ctx) {
+  try {
+    const { id } = await ctx.params;
+    const scimCtx = await resolveScimContext(req);
+    if (!scimCtx.ok) return scimCtx.response;
+    const body = await req.json();
+    const operations = parseScimPatchOperations(body);
+    const baseUrl = new URL(req.url).origin;
+    const container = await createRequestContainer();
+    const service = container.resolve("scimService");
+    const resource = await service.patchUser(id, operations, scimCtx.scope, baseUrl);
+    return scimJson(resource);
+  } catch (err) {
+    return handleScimApiError(err, "SCIM Users API");
+  }
+}
+async function DELETE(req, ctx) {
+  try {
+    const { id } = await ctx.params;
+    const scimCtx = await resolveScimContext(req);
+    if (!scimCtx.ok) return scimCtx.response;
+    const container = await createRequestContainer();
+    const service = container.resolve("scimService");
+    await service.deleteUser(id, scimCtx.scope);
+    return new Response(null, { status: 204 });
+  } catch (err) {
+    return handleScimApiError(err, "SCIM Users API");
+  }
+}
+const openApi = {
+  tag: "SCIM",
+  summary: "SCIM User by ID",
+  methods: {
+    GET: {
+      summary: "Get SCIM user",
+      description: "Returns a single provisioned user by SCIM ID.",
+      tags: ["SSO", "SCIM"],
+      responses: [{ status: 200, description: "SCIM User resource" }],
+      errors: [
+        { status: 401, description: "Unauthorized" },
+        { status: 404, description: "User not found" }
+      ]
+    },
+    PATCH: {
+      summary: "Patch SCIM user",
+      description: "Updates user attributes via SCIM PatchOp. Supports active/inactive toggling.",
+      tags: ["SSO", "SCIM"],
+      responses: [{ status: 200, description: "Updated SCIM User resource" }],
+      errors: [
+        { status: 400, description: "Invalid PatchOp" },
+        { status: 401, description: "Unauthorized" },
+        { status: 404, description: "User not found" }
+      ]
+    },
+    DELETE: {
+      summary: "Delete SCIM user",
+      description: "Deactivates the user and revokes sessions.",
+      tags: ["SSO", "SCIM"],
+      responses: [{ status: 204, description: "No content" }],
+      errors: [
+        { status: 401, description: "Unauthorized" },
+        { status: 404, description: "User not found" }
+      ]
+    }
+  }
+};
+export {
+  DELETE,
+  GET,
+  PATCH,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/sso/api/scim/v2/Users/[id]/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../../src/modules/sso/api/scim/v2/Users/%5Bid%5D/route.ts"],
+  "sourcesContent": ["import type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { resolveScimContext } from '../../../context'\nimport { ScimService } from '../../../../../services/scimService'\nimport { parseScimPatchOperations } from '../../../../../lib/scim-patch'\nimport { scimJson } from '../../../../../lib/scim-response'\nimport { handleScimApiError } from '../../../../error-handler'\n\nexport const metadata = {}\n\ntype RouteContext = { params: Promise<{ id: string }> }\n\nexport async function GET(req: Request, ctx: RouteContext) {\n  try {\n    const { id } = await ctx.params\n    const scimCtx = await resolveScimContext(req)\n    if (!scimCtx.ok) return scimCtx.response\n\n    const baseUrl = new URL(req.url).origin\n    const container = await createRequestContainer()\n    const service = container.resolve<ScimService>('scimService')\n    const resource = await service.getUser(id, scimCtx.scope, baseUrl)\n\n    return scimJson(resource)\n  } catch (err) {\n    return handleScimApiError(err, 'SCIM Users API')\n  }\n}\n\nexport async function PATCH(req: Request, ctx: RouteContext) {\n  try {\n    const { id } = await ctx.params\n    const scimCtx = await resolveScimContext(req)\n    if (!scimCtx.ok) return scimCtx.response\n\n    const body = await req.json()\n    const operations = parseScimPatchOperations(body)\n    const baseUrl = new URL(req.url).origin\n\n    const container = await createRequestContainer()\n    const service = container.resolve<ScimService>('scimService')\n    const resource = await service.patchUser(id, operations, scimCtx.scope, baseUrl)\n\n    return scimJson(resource)\n  } catch (err) {\n    return handleScimApiError(err, 'SCIM Users API')\n  }\n}\n\nexport async function DELETE(req: Request, ctx: RouteContext) {\n  try {\n    const { id } = await ctx.params\n    const scimCtx = await resolveScimContext(req)\n    if (!scimCtx.ok) return scimCtx.response\n\n    const container = await createRequestContainer()\n    const service = container.resolve<ScimService>('scimService')\n    await service.deleteUser(id, scimCtx.scope)\n\n    return new Response(null, { status: 204 })\n  } catch (err) {\n    return handleScimApiError(err, 'SCIM Users API')\n  }\n}\n\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'SCIM',\n  summary: 'SCIM User by ID',\n  methods: {\n    GET: {\n      summary: 'Get SCIM user',\n      description: 'Returns a single provisioned user by SCIM ID.',\n      tags: ['SSO', 'SCIM'],\n      responses: [{ status: 200, description: 'SCIM User resource' }],\n      errors: [\n        { status: 401, description: 'Unauthorized' },\n        { status: 404, description: 'User not found' },\n      ],\n    },\n    PATCH: {\n      summary: 'Patch SCIM user',\n      description: 'Updates user attributes via SCIM PatchOp. Supports active/inactive toggling.',\n      tags: ['SSO', 'SCIM'],\n      responses: [{ status: 200, description: 'Updated SCIM User resource' }],\n      errors: [\n        { status: 400, description: 'Invalid PatchOp' },\n        { status: 401, description: 'Unauthorized' },\n        { status: 404, description: 'User not found' },\n      ],\n    },\n    DELETE: {\n      summary: 'Delete SCIM user',\n      description: 'Deactivates the user and revokes sessions.',\n      tags: ['SSO', 'SCIM'],\n      responses: [{ status: 204, description: 'No content' }],\n      errors: [\n        { status: 401, description: 'Unauthorized' },\n        { status: 404, description: 'User not found' },\n      ],\n    },\n  },\n}\n"],
+  "mappings": "AACA,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AAEnC,SAAS,gCAAgC;AACzC,SAAS,gBAAgB;AACzB,SAAS,0BAA0B;AAE5B,MAAM,WAAW,CAAC;AAIzB,eAAsB,IAAI,KAAc,KAAmB;AACzD,MAAI;AACF,UAAM,EAAE,GAAG,IAAI,MAAM,IAAI;AACzB,UAAM,UAAU,MAAM,mBAAmB,GAAG;AAC5C,QAAI,CAAC,QAAQ,GAAI,QAAO,QAAQ;AAEhC,UAAM,UAAU,IAAI,IAAI,IAAI,GAAG,EAAE;AACjC,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,UAAU,UAAU,QAAqB,aAAa;AAC5D,UAAM,WAAW,MAAM,QAAQ,QAAQ,IAAI,QAAQ,OAAO,OAAO;AAEjE,WAAO,SAAS,QAAQ;AAAA,EAC1B,SAAS,KAAK;AACZ,WAAO,mBAAmB,KAAK,gBAAgB;AAAA,EACjD;AACF;AAEA,eAAsB,MAAM,KAAc,KAAmB;AAC3D,MAAI;AACF,UAAM,EAAE,GAAG,IAAI,MAAM,IAAI;AACzB,UAAM,UAAU,MAAM,mBAAmB,GAAG;AAC5C,QAAI,CAAC,QAAQ,GAAI,QAAO,QAAQ;AAEhC,UAAM,OAAO,MAAM,IAAI,KAAK;AAC5B,UAAM,aAAa,yBAAyB,IAAI;AAChD,UAAM,UAAU,IAAI,IAAI,IAAI,GAAG,EAAE;AAEjC,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,UAAU,UAAU,QAAqB,aAAa;AAC5D,UAAM,WAAW,MAAM,QAAQ,UAAU,IAAI,YAAY,QAAQ,OAAO,OAAO;AAE/E,WAAO,SAAS,QAAQ;AAAA,EAC1B,SAAS,KAAK;AACZ,WAAO,mBAAmB,KAAK,gBAAgB;AAAA,EACjD;AACF;AAEA,eAAsB,OAAO,KAAc,KAAmB;AAC5D,MAAI;AACF,UAAM,EAAE,GAAG,IAAI,MAAM,IAAI;AACzB,UAAM,UAAU,MAAM,mBAAmB,GAAG;AAC5C,QAAI,CAAC,QAAQ,GAAI,QAAO,QAAQ;AAEhC,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,UAAU,UAAU,QAAqB,aAAa;AAC5D,UAAM,QAAQ,WAAW,IAAI,QAAQ,KAAK;AAE1C,WAAO,IAAI,SAAS,MAAM,EAAE,QAAQ,IAAI,CAAC;AAAA,EAC3C,SAAS,KAAK;AACZ,WAAO,mBAAmB,KAAK,gBAAgB;AAAA,EACjD;AACF;AAGO,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,EACT,SAAS;AAAA,IACP,KAAK;AAAA,MACH,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW,CAAC,EAAE,QAAQ,KAAK,aAAa,qBAAqB,CAAC;AAAA,MAC9D,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,iBAAiB;AAAA,MAC/C;AAAA,IACF;AAAA,IACA,OAAO;AAAA,MACL,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW,CAAC,EAAE,QAAQ,KAAK,aAAa,6BAA6B,CAAC;AAAA,MACtE,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,kBAAkB;AAAA,QAC9C,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,iBAAiB;AAAA,MAC/C;AAAA,IACF;AAAA,IACA,QAAQ;AAAA,MACN,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW,CAAC,EAAE,QAAQ,KAAK,aAAa,aAAa,CAAC;AAAA,MACtD,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,iBAAiB;AAAA,MAC/C;AAAA,IACF;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/modules/sso/api/scim/v2/Users/route.js ADDED Viewed

@@ -0,0 +1,86 @@
+import { createRequestContainer } from "@open-mercato/shared/lib/di/container";
+import { resolveScimContext } from "../../context.js";
+import { handleScimApiError } from "../../../error-handler.js";
+import { scimUserPayloadSchema } from "../../../../data/validators.js";
+import { buildScimError, scimJson as scimJsonResponse } from "../../../../lib/scim-response.js";
+const metadata = {};
+async function POST(req) {
+  try {
+    const ctx = await resolveScimContext(req);
+    if (!ctx.ok) return ctx.response;
+    const body = await req.json();
+    const parsed = scimUserPayloadSchema.safeParse(body);
+    if (!parsed.success) {
+      return scimJsonResponse(
+        buildScimError(400, parsed.error.issues.map((e) => `${e.path.join(".")}: ${e.message}`).join("; "), "invalidValue"),
+        400
+      );
+    }
+    const baseUrl = new URL(req.url).origin;
+    const container = await createRequestContainer();
+    const service = container.resolve("scimService");
+    const { resource, status } = await service.createUser(parsed.data, ctx.scope, baseUrl);
+    const headers = {};
+    if (status === 201) {
+      headers.Location = resource.meta.location;
+    }
+    return scimJsonResponse(resource, status);
+  } catch (err) {
+    return handleScimApiError(err, "SCIM Users API");
+  }
+}
+async function GET(req) {
+  try {
+    const ctx = await resolveScimContext(req);
+    if (!ctx.ok) return ctx.response;
+    const url = new URL(req.url);
+    const filter = url.searchParams.get("filter");
+    const startIndex = Math.max(1, parseInt(url.searchParams.get("startIndex") ?? "1", 10) || 1);
+    const count = Math.min(200, Math.max(1, parseInt(url.searchParams.get("count") ?? "100", 10) || 100));
+    const baseUrl = url.origin;
+    const container = await createRequestContainer();
+    const service = container.resolve("scimService");
+    const result = await service.listUsers(filter, startIndex, count, ctx.scope, baseUrl);
+    return scimJsonResponse(result);
+  } catch (err) {
+    return handleScimApiError(err, "SCIM Users API");
+  }
+}
+const openApi = {
+  tag: "SCIM",
+  summary: "SCIM Users",
+  methods: {
+    POST: {
+      summary: "Create SCIM user",
+      description: "Provisions a new user via SCIM 2.0. Supports idempotency via externalId.",
+      tags: ["SSO", "SCIM"],
+      responses: [
+        { status: 201, description: "User created" },
+        { status: 200, description: "User already exists (idempotent)" }
+      ],
+      errors: [
+        { status: 400, description: "Invalid payload" },
+        { status: 401, description: "Unauthorized" },
+        { status: 403, description: "SSO config inactive" },
+        { status: 409, description: "Conflict \u2014 user already linked" }
+      ]
+    },
+    GET: {
+      summary: "List SCIM users",
+      description: "Lists provisioned users with optional SCIM filter (eq operator).",
+      tags: ["SSO", "SCIM"],
+      responses: [{ status: 200, description: "SCIM ListResponse" }],
+      errors: [
+        { status: 401, description: "Unauthorized" },
+        { status: 403, description: "SSO config inactive" }
+      ]
+    }
+  }
+};
+export {
+  GET,
+  POST,
+  metadata,
+  openApi
+};
+//# sourceMappingURL=route.js.map

package/dist/modules/sso/api/scim/v2/Users/route.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../../../../src/modules/sso/api/scim/v2/Users/route.ts"],
+  "sourcesContent": ["import type { OpenApiRouteDoc } from '@open-mercato/shared/lib/openapi'\nimport { createRequestContainer } from '@open-mercato/shared/lib/di/container'\nimport { resolveScimContext } from '../../context'\nimport { ScimService } from '../../../../services/scimService'\nimport { handleScimApiError } from '../../../error-handler'\nimport { scimUserPayloadSchema } from '../../../../data/validators'\nimport { buildScimError, scimJson as scimJsonResponse } from '../../../../lib/scim-response'\n\nexport const metadata = {}\n\nexport async function POST(req: Request) {\n  try {\n    const ctx = await resolveScimContext(req)\n    if (!ctx.ok) return ctx.response\n\n    const body = await req.json()\n    const parsed = scimUserPayloadSchema.safeParse(body)\n    if (!parsed.success) {\n      return scimJsonResponse(\n        buildScimError(400, parsed.error.issues.map((e) => `${e.path.join('.')}: ${e.message}`).join('; '), 'invalidValue'),\n        400,\n      )\n    }\n\n    const baseUrl = new URL(req.url).origin\n\n    const container = await createRequestContainer()\n    const service = container.resolve<ScimService>('scimService')\n    const { resource, status } = await service.createUser(parsed.data, ctx.scope, baseUrl)\n\n    const headers: Record<string, string> = {}\n    if (status === 201) {\n      headers.Location = resource.meta.location\n    }\n\n    return scimJsonResponse(resource, status)\n  } catch (err) {\n    return handleScimApiError(err, 'SCIM Users API')\n  }\n}\n\nexport async function GET(req: Request) {\n  try {\n    const ctx = await resolveScimContext(req)\n    if (!ctx.ok) return ctx.response\n\n    const url = new URL(req.url)\n    const filter = url.searchParams.get('filter')\n    const startIndex = Math.max(1, parseInt(url.searchParams.get('startIndex') ?? '1', 10) || 1)\n    const count = Math.min(200, Math.max(1, parseInt(url.searchParams.get('count') ?? '100', 10) || 100))\n    const baseUrl = url.origin\n\n    const container = await createRequestContainer()\n    const service = container.resolve<ScimService>('scimService')\n    const result = await service.listUsers(filter, startIndex, count, ctx.scope, baseUrl)\n\n    return scimJsonResponse(result)\n  } catch (err) {\n    return handleScimApiError(err, 'SCIM Users API')\n  }\n}\n\n\nexport const openApi: OpenApiRouteDoc = {\n  tag: 'SCIM',\n  summary: 'SCIM Users',\n  methods: {\n    POST: {\n      summary: 'Create SCIM user',\n      description: 'Provisions a new user via SCIM 2.0. Supports idempotency via externalId.',\n      tags: ['SSO', 'SCIM'],\n      responses: [\n        { status: 201, description: 'User created' },\n        { status: 200, description: 'User already exists (idempotent)' },\n      ],\n      errors: [\n        { status: 400, description: 'Invalid payload' },\n        { status: 401, description: 'Unauthorized' },\n        { status: 403, description: 'SSO config inactive' },\n        { status: 409, description: 'Conflict \u2014 user already linked' },\n      ],\n    },\n    GET: {\n      summary: 'List SCIM users',\n      description: 'Lists provisioned users with optional SCIM filter (eq operator).',\n      tags: ['SSO', 'SCIM'],\n      responses: [{ status: 200, description: 'SCIM ListResponse' }],\n      errors: [\n        { status: 401, description: 'Unauthorized' },\n        { status: 403, description: 'SSO config inactive' },\n      ],\n    },\n  },\n}\n"],
+  "mappings": "AACA,SAAS,8BAA8B;AACvC,SAAS,0BAA0B;AAEnC,SAAS,0BAA0B;AACnC,SAAS,6BAA6B;AACtC,SAAS,gBAAgB,YAAY,wBAAwB;AAEtD,MAAM,WAAW,CAAC;AAEzB,eAAsB,KAAK,KAAc;AACvC,MAAI;AACF,UAAM,MAAM,MAAM,mBAAmB,GAAG;AACxC,QAAI,CAAC,IAAI,GAAI,QAAO,IAAI;AAExB,UAAM,OAAO,MAAM,IAAI,KAAK;AAC5B,UAAM,SAAS,sBAAsB,UAAU,IAAI;AACnD,QAAI,CAAC,OAAO,SAAS;AACnB,aAAO;AAAA,QACL,eAAe,KAAK,OAAO,MAAM,OAAO,IAAI,CAAC,MAAM,GAAG,EAAE,KAAK,KAAK,GAAG,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,KAAK,IAAI,GAAG,cAAc;AAAA,QAClH;AAAA,MACF;AAAA,IACF;AAEA,UAAM,UAAU,IAAI,IAAI,IAAI,GAAG,EAAE;AAEjC,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,UAAU,UAAU,QAAqB,aAAa;AAC5D,UAAM,EAAE,UAAU,OAAO,IAAI,MAAM,QAAQ,WAAW,OAAO,MAAM,IAAI,OAAO,OAAO;AAErF,UAAM,UAAkC,CAAC;AACzC,QAAI,WAAW,KAAK;AAClB,cAAQ,WAAW,SAAS,KAAK;AAAA,IACnC;AAEA,WAAO,iBAAiB,UAAU,MAAM;AAAA,EAC1C,SAAS,KAAK;AACZ,WAAO,mBAAmB,KAAK,gBAAgB;AAAA,EACjD;AACF;AAEA,eAAsB,IAAI,KAAc;AACtC,MAAI;AACF,UAAM,MAAM,MAAM,mBAAmB,GAAG;AACxC,QAAI,CAAC,IAAI,GAAI,QAAO,IAAI;AAExB,UAAM,MAAM,IAAI,IAAI,IAAI,GAAG;AAC3B,UAAM,SAAS,IAAI,aAAa,IAAI,QAAQ;AAC5C,UAAM,aAAa,KAAK,IAAI,GAAG,SAAS,IAAI,aAAa,IAAI,YAAY,KAAK,KAAK,EAAE,KAAK,CAAC;AAC3F,UAAM,QAAQ,KAAK,IAAI,KAAK,KAAK,IAAI,GAAG,SAAS,IAAI,aAAa,IAAI,OAAO,KAAK,OAAO,EAAE,KAAK,GAAG,CAAC;AACpG,UAAM,UAAU,IAAI;AAEpB,UAAM,YAAY,MAAM,uBAAuB;AAC/C,UAAM,UAAU,UAAU,QAAqB,aAAa;AAC5D,UAAM,SAAS,MAAM,QAAQ,UAAU,QAAQ,YAAY,OAAO,IAAI,OAAO,OAAO;AAEpF,WAAO,iBAAiB,MAAM;AAAA,EAChC,SAAS,KAAK;AACZ,WAAO,mBAAmB,KAAK,gBAAgB;AAAA,EACjD;AACF;AAGO,MAAM,UAA2B;AAAA,EACtC,KAAK;AAAA,EACL,SAAS;AAAA,EACT,SAAS;AAAA,IACP,MAAM;AAAA,MACJ,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW;AAAA,QACT,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,mCAAmC;AAAA,MACjE;AAAA,MACA,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,kBAAkB;AAAA,QAC9C,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,sBAAsB;AAAA,QAClD,EAAE,QAAQ,KAAK,aAAa,sCAAiC;AAAA,MAC/D;AAAA,IACF;AAAA,IACA,KAAK;AAAA,MACH,SAAS;AAAA,MACT,aAAa;AAAA,MACb,MAAM,CAAC,OAAO,MAAM;AAAA,MACpB,WAAW,CAAC,EAAE,QAAQ,KAAK,aAAa,oBAAoB,CAAC;AAAA,MAC7D,QAAQ;AAAA,QACN,EAAE,QAAQ,KAAK,aAAa,eAAe;AAAA,QAC3C,EAAE,QAAQ,KAAK,aAAa,sBAAsB;AAAA,MACpD;AAAA,IACF;AAAA,EACF;AACF;",
+  "names": []
+}

package/dist/modules/sso/backend/page.js ADDED Viewed

@@ -0,0 +1,173 @@
+"use client";
+import { jsx, jsxs } from "react/jsx-runtime";
+import React from "react";
+import { useRouter } from "next/navigation";
+import { Page, PageBody } from "@open-mercato/ui/backend/Page";
+import { DataTable } from "@open-mercato/ui/backend/DataTable";
+import { RowActions } from "@open-mercato/ui/backend/RowActions";
+import { Button } from "@open-mercato/ui/primitives/button";
+import { apiCall, apiCallOrThrow } from "@open-mercato/ui/backend/utils/apiCall";
+import { flash } from "@open-mercato/ui/backend/FlashMessages";
+import { useConfirmDialog } from "@open-mercato/ui/backend/confirm-dialog";
+import { useT } from "@open-mercato/shared/lib/i18n/context";
+import Link from "next/link";
+const fallback = { items: [], total: 0, totalPages: 1 };
+function SsoConfigListPage() {
+  const router = useRouter();
+  const t = useT();
+  const [data, setData] = React.useState(fallback);
+  const [isLoading, setIsLoading] = React.useState(true);
+  const [page, setPage] = React.useState(1);
+  const [search, setSearch] = React.useState("");
+  const { confirm, ConfirmDialogElement } = useConfirmDialog();
+  const isSuperAdmin = !!data.isSuperAdmin;
+  const fetchData = React.useCallback(async () => {
+    setIsLoading(true);
+    const params = new URLSearchParams();
+    params.set("page", String(page));
+    params.set("pageSize", "50");
+    if (search) params.set("search", search);
+    const call = await apiCall(`/api/sso/config?${params}`, void 0, { fallback });
+    if (call.ok && call.result) {
+      setData(call.result);
+    }
+    setIsLoading(false);
+  }, [page, search]);
+  React.useEffect(() => {
+    fetchData();
+  }, [fetchData]);
+  const handleDelete = async (row) => {
+    if (row.isActive) {
+      flash(t("sso.admin.error.deleteActive", "Cannot delete an active SSO configuration \u2014 deactivate it first"), "error");
+      return;
+    }
+    const confirmed = await confirm({
+      title: t("sso.admin.delete.title", "Delete SSO Configuration"),
+      text: t("sso.admin.delete.confirm", "Are you sure? This will remove the SSO configuration. Users with linked SSO identities will need to use password login."),
+      confirmText: t("common.delete", "Delete"),
+      variant: "destructive"
+    });
+    if (!confirmed) return;
+    await apiCallOrThrow(`/api/sso/config/${row.id}`, { method: "DELETE" }, {
+      errorMessage: t("sso.admin.error.deleteFailed", "Failed to delete SSO configuration")
+    });
+    flash(t("sso.admin.delete.success", "SSO configuration deleted"), "success");
+    fetchData();
+  };
+  const handleToggleActivation = async (row) => {
+    try {
+      await apiCallOrThrow(
+        `/api/sso/config/${row.id}/activate`,
+        {
+          method: "POST",
+          headers: { "content-type": "application/json" },
+          body: JSON.stringify({ active: !row.isActive })
+        },
+        { errorMessage: t("sso.admin.error.activationFailed", "Failed to update activation status") }
+      );
+      flash(
+        row.isActive ? t("sso.admin.deactivated", "SSO configuration deactivated") : t("sso.admin.activated", "SSO configuration activated"),
+        "success"
+      );
+      fetchData();
+    } catch {
+    }
+  };
+  const handleTestConnection = async (row) => {
+    try {
+      const call = await apiCallOrThrow(
+        `/api/sso/config/${row.id}/test`,
+        { method: "POST" },
+        { errorMessage: t("sso.admin.error.testFailed", "Connection test failed") }
+      );
+      if (call.result?.ok) {
+        flash(t("sso.admin.test.success", "Discovery successful \u2014 issuer is reachable"), "success");
+      } else {
+        flash(call.result?.error || t("sso.admin.test.failed", "Discovery failed"), "error");
+      }
+    } catch {
+    }
+  };
+  const columns = React.useMemo(() => {
+    const cols = [
+      {
+        accessorKey: "name",
+        header: t("sso.admin.column.name", "Name"),
+        cell: ({ row }) => row.original.name || row.original.issuer || "\u2014"
+      },
+      {
+        accessorKey: "protocol",
+        header: t("sso.admin.column.protocol", "Protocol"),
+        cell: ({ row }) => row.original.protocol.toUpperCase()
+      },
+      {
+        accessorKey: "allowedDomains",
+        header: t("sso.admin.column.domains", "Domains"),
+        cell: ({ row }) => row.original.allowedDomains.join(", ") || "\u2014"
+      },
+      {
+        accessorKey: "isActive",
+        header: t("sso.admin.column.status", "Status"),
+        cell: ({ row }) => /* @__PURE__ */ jsx("span", { className: `inline-flex items-center rounded-full px-2 py-1 text-xs font-medium ${row.original.isActive ? "bg-green-50 text-green-700" : "bg-gray-100 text-gray-600"}`, children: row.original.isActive ? t("sso.admin.status.active", "Active") : t("sso.admin.status.inactive", "Inactive") })
+      },
+      {
+        accessorKey: "createdAt",
+        header: t("sso.admin.column.created", "Created"),
+        cell: ({ row }) => new Date(row.original.createdAt).toLocaleDateString()
+      }
+    ];
+    return cols;
+  }, [t, isSuperAdmin]);
+  const hasConfigs = data.items.length > 0 || search;
+  const canCreateNew = isSuperAdmin || data.items.length === 0;
+  return /* @__PURE__ */ jsx(Page, { children: /* @__PURE__ */ jsxs(PageBody, { children: [
+    !hasConfigs && !isLoading ? /* @__PURE__ */ jsxs("div", { className: "flex flex-col items-center justify-center py-16 text-center", children: [
+      /* @__PURE__ */ jsx("h3", { className: "text-lg font-semibold mb-2", children: t("sso.admin.empty.title", "No SSO configured") }),
+      /* @__PURE__ */ jsx("p", { className: "text-muted-foreground mb-4 max-w-md", children: t("sso.admin.empty.description", "Configure Single Sign-On to let your users authenticate with your identity provider.") }),
+      /* @__PURE__ */ jsx(Button, { asChild: true, children: /* @__PURE__ */ jsx(Link, { href: "/backend/sso/config/new", children: t("sso.admin.empty.cta", "Configure SSO") }) })
+    ] }) : /* @__PURE__ */ jsx(
+      DataTable,
+      {
+        title: t("sso.admin.title", "Single Sign-On"),
+        actions: canCreateNew ? /* @__PURE__ */ jsx(Button, { asChild: true, size: "sm", children: /* @__PURE__ */ jsx(Link, { href: "/backend/sso/config/new", children: t("sso.admin.new", "New SSO Config") }) }) : void 0,
+        columns,
+        data: data.items,
+        searchValue: search,
+        onSearchChange: (value) => {
+          setSearch(value);
+          setPage(1);
+        },
+        searchPlaceholder: t("sso.admin.search", "Search by name or issuer..."),
+        onRowClick: (row) => router.push(`/backend/sso/config/${row.id}`),
+        rowActions: (row) => /* @__PURE__ */ jsx(
+          RowActions,
+          {
+            items: [
+              { id: "edit", label: t("common.edit", "Edit"), onSelect: () => router.push(`/backend/sso/config/${row.id}`) },
+              { id: "test", label: t("sso.admin.action.test", "Verify Discovery"), onSelect: () => handleTestConnection(row) },
+              {
+                id: "toggle",
+                label: row.isActive ? t("sso.admin.action.deactivate", "Deactivate") : t("sso.admin.action.activate", "Activate"),
+                onSelect: () => handleToggleActivation(row)
+              },
+              { id: "delete", label: t("common.delete", "Delete"), destructive: true, onSelect: () => handleDelete(row) }
+            ]
+          }
+        ),
+        pagination: {
+          page,
+          pageSize: 50,
+          total: data.total,
+          totalPages: data.totalPages,
+          onPageChange: setPage
+        },
+        isLoading
+      }
+    ),
+    ConfirmDialogElement
+  ] }) });
+}
+export {
+  SsoConfigListPage as default
+};
+//# sourceMappingURL=page.js.map

package/dist/modules/sso/backend/page.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/sso/backend/page.tsx"],
+  "sourcesContent": ["'use client'\n\nimport React from 'react'\nimport { useRouter } from 'next/navigation'\nimport type { ColumnDef } from '@tanstack/react-table'\nimport { Page, PageBody } from '@open-mercato/ui/backend/Page'\nimport { DataTable } from '@open-mercato/ui/backend/DataTable'\nimport { RowActions } from '@open-mercato/ui/backend/RowActions'\nimport { Button } from '@open-mercato/ui/primitives/button'\nimport { apiCall, apiCallOrThrow } from '@open-mercato/ui/backend/utils/apiCall'\nimport { flash } from '@open-mercato/ui/backend/FlashMessages'\nimport { useConfirmDialog } from '@open-mercato/ui/backend/confirm-dialog'\nimport { useT } from '@open-mercato/shared/lib/i18n/context'\nimport Link from 'next/link'\n\ninterface SsoConfigRow {\n  id: string\n  name: string | null\n  protocol: string\n  issuer: string | null\n  allowedDomains: string[]\n  isActive: boolean\n  hasClientSecret: boolean\n  organizationId: string\n  tenantId: string | null\n  createdAt: string\n}\n\ninterface ListResponse {\n  items: SsoConfigRow[]\n  total: number\n  totalPages: number\n  isSuperAdmin?: boolean\n}\n\nconst fallback: ListResponse = { items: [], total: 0, totalPages: 1 }\n\nexport default function SsoConfigListPage() {\n  const router = useRouter()\n  const t = useT()\n\n  const [data, setData] = React.useState<ListResponse>(fallback)\n  const [isLoading, setIsLoading] = React.useState(true)\n  const [page, setPage] = React.useState(1)\n  const [search, setSearch] = React.useState('')\n  const { confirm, ConfirmDialogElement } = useConfirmDialog()\n\n  const isSuperAdmin = !!data.isSuperAdmin\n\n  const fetchData = React.useCallback(async () => {\n    setIsLoading(true)\n    const params = new URLSearchParams()\n    params.set('page', String(page))\n    params.set('pageSize', '50')\n    if (search) params.set('search', search)\n\n    const call = await apiCall<ListResponse>(`/api/sso/config?${params}`, undefined, { fallback })\n    if (call.ok && call.result) {\n      setData(call.result)\n    }\n    setIsLoading(false)\n  }, [page, search])\n\n  React.useEffect(() => { fetchData() }, [fetchData])\n\n  const handleDelete = async (row: SsoConfigRow) => {\n    if (row.isActive) {\n      flash(t('sso.admin.error.deleteActive', 'Cannot delete an active SSO configuration \u2014 deactivate it first'), 'error')\n      return\n    }\n\n    const confirmed = await confirm({\n      title: t('sso.admin.delete.title', 'Delete SSO Configuration'),\n      text: t('sso.admin.delete.confirm', 'Are you sure? This will remove the SSO configuration. Users with linked SSO identities will need to use password login.'),\n      confirmText: t('common.delete', 'Delete'),\n      variant: 'destructive',\n    })\n\n    if (!confirmed) return\n\n    await apiCallOrThrow(`/api/sso/config/${row.id}`, { method: 'DELETE' }, {\n      errorMessage: t('sso.admin.error.deleteFailed', 'Failed to delete SSO configuration'),\n    })\n    flash(t('sso.admin.delete.success', 'SSO configuration deleted'), 'success')\n    fetchData()\n  }\n\n  const handleToggleActivation = async (row: SsoConfigRow) => {\n    try {\n      await apiCallOrThrow(\n        `/api/sso/config/${row.id}/activate`,\n        {\n          method: 'POST',\n          headers: { 'content-type': 'application/json' },\n          body: JSON.stringify({ active: !row.isActive }),\n        },\n        { errorMessage: t('sso.admin.error.activationFailed', 'Failed to update activation status') },\n      )\n      flash(\n        row.isActive\n          ? t('sso.admin.deactivated', 'SSO configuration deactivated')\n          : t('sso.admin.activated', 'SSO configuration activated'),\n        'success',\n      )\n      fetchData()\n    } catch {\n      // apiCallOrThrow already flashes the error\n    }\n  }\n\n  const handleTestConnection = async (row: SsoConfigRow) => {\n    try {\n      const call = await apiCallOrThrow<{ ok: boolean; error?: string }>(\n        `/api/sso/config/${row.id}/test`,\n        { method: 'POST' },\n        { errorMessage: t('sso.admin.error.testFailed', 'Connection test failed') },\n      )\n      if (call.result?.ok) {\n        flash(t('sso.admin.test.success', 'Discovery successful \u2014 issuer is reachable'), 'success')\n      } else {\n        flash(call.result?.error || t('sso.admin.test.failed', 'Discovery failed'), 'error')\n      }\n    } catch {\n      // apiCallOrThrow already flashes the error\n    }\n  }\n\n  const columns = React.useMemo<ColumnDef<SsoConfigRow>[]>(() => {\n    const cols: ColumnDef<SsoConfigRow>[] = [\n      {\n        accessorKey: 'name',\n        header: t('sso.admin.column.name', 'Name'),\n        cell: ({ row }) => row.original.name || row.original.issuer || '\u2014',\n      },\n      {\n        accessorKey: 'protocol',\n        header: t('sso.admin.column.protocol', 'Protocol'),\n        cell: ({ row }) => row.original.protocol.toUpperCase(),\n      },\n      {\n        accessorKey: 'allowedDomains',\n        header: t('sso.admin.column.domains', 'Domains'),\n        cell: ({ row }) => row.original.allowedDomains.join(', ') || '\u2014',\n      },\n      {\n        accessorKey: 'isActive',\n        header: t('sso.admin.column.status', 'Status'),\n        cell: ({ row }) => (\n          <span className={`inline-flex items-center rounded-full px-2 py-1 text-xs font-medium ${row.original.isActive ? 'bg-green-50 text-green-700' : 'bg-gray-100 text-gray-600'}`}>\n            {row.original.isActive\n              ? t('sso.admin.status.active', 'Active')\n              : t('sso.admin.status.inactive', 'Inactive')}\n          </span>\n        ),\n      },\n      {\n        accessorKey: 'createdAt',\n        header: t('sso.admin.column.created', 'Created'),\n        cell: ({ row }) => new Date(row.original.createdAt).toLocaleDateString(),\n      },\n    ]\n\n    return cols\n  }, [t, isSuperAdmin])\n\n  const hasConfigs = data.items.length > 0 || search\n  const canCreateNew = isSuperAdmin || data.items.length === 0\n\n  return (\n    <Page>\n      <PageBody>\n        {!hasConfigs && !isLoading ? (\n          <div className=\"flex flex-col items-center justify-center py-16 text-center\">\n            <h3 className=\"text-lg font-semibold mb-2\">\n              {t('sso.admin.empty.title', 'No SSO configured')}\n            </h3>\n            <p className=\"text-muted-foreground mb-4 max-w-md\">\n              {t('sso.admin.empty.description', 'Configure Single Sign-On to let your users authenticate with your identity provider.')}\n            </p>\n            <Button asChild>\n              <Link href=\"/backend/sso/config/new\">\n                {t('sso.admin.empty.cta', 'Configure SSO')}\n              </Link>\n            </Button>\n          </div>\n        ) : (\n          <DataTable<SsoConfigRow>\n            title={t('sso.admin.title', 'Single Sign-On')}\n            actions={canCreateNew ? (\n              <Button asChild size=\"sm\">\n                <Link href=\"/backend/sso/config/new\">\n                  {t('sso.admin.new', 'New SSO Config')}\n                </Link>\n              </Button>\n            ) : undefined}\n            columns={columns}\n            data={data.items}\n            searchValue={search}\n            onSearchChange={(value) => { setSearch(value); setPage(1) }}\n            searchPlaceholder={t('sso.admin.search', 'Search by name or issuer...')}\n            onRowClick={(row) => router.push(`/backend/sso/config/${row.id}`)}\n            rowActions={(row) => (\n              <RowActions\n                items={[\n                  { id: 'edit', label: t('common.edit', 'Edit'), onSelect: () => router.push(`/backend/sso/config/${row.id}`) },\n                  { id: 'test', label: t('sso.admin.action.test', 'Verify Discovery'), onSelect: () => handleTestConnection(row) },\n                  {\n                    id: 'toggle',\n                    label: row.isActive\n                      ? t('sso.admin.action.deactivate', 'Deactivate')\n                      : t('sso.admin.action.activate', 'Activate'),\n                    onSelect: () => handleToggleActivation(row),\n                  },\n                  { id: 'delete', label: t('common.delete', 'Delete'), destructive: true, onSelect: () => handleDelete(row) },\n                ]}\n              />\n            )}\n            pagination={{\n              page,\n              pageSize: 50,\n              total: data.total,\n              totalPages: data.totalPages,\n              onPageChange: setPage,\n            }}\n            isLoading={isLoading}\n          />\n        )}\n        {ConfirmDialogElement}\n      </PageBody>\n    </Page>\n  )\n}\n"],
+  "mappings": ";AAoJU,cAwBA,YAxBA;AAlJV,OAAO,WAAW;AAClB,SAAS,iBAAiB;AAE1B,SAAS,MAAM,gBAAgB;AAC/B,SAAS,iBAAiB;AAC1B,SAAS,kBAAkB;AAC3B,SAAS,cAAc;AACvB,SAAS,SAAS,sBAAsB;AACxC,SAAS,aAAa;AACtB,SAAS,wBAAwB;AACjC,SAAS,YAAY;AACrB,OAAO,UAAU;AAsBjB,MAAM,WAAyB,EAAE,OAAO,CAAC,GAAG,OAAO,GAAG,YAAY,EAAE;AAErD,SAAR,oBAAqC;AAC1C,QAAM,SAAS,UAAU;AACzB,QAAM,IAAI,KAAK;AAEf,QAAM,CAAC,MAAM,OAAO,IAAI,MAAM,SAAuB,QAAQ;AAC7D,QAAM,CAAC,WAAW,YAAY,IAAI,MAAM,SAAS,IAAI;AACrD,QAAM,CAAC,MAAM,OAAO,IAAI,MAAM,SAAS,CAAC;AACxC,QAAM,CAAC,QAAQ,SAAS,IAAI,MAAM,SAAS,EAAE;AAC7C,QAAM,EAAE,SAAS,qBAAqB,IAAI,iBAAiB;AAE3D,QAAM,eAAe,CAAC,CAAC,KAAK;AAE5B,QAAM,YAAY,MAAM,YAAY,YAAY;AAC9C,iBAAa,IAAI;AACjB,UAAM,SAAS,IAAI,gBAAgB;AACnC,WAAO,IAAI,QAAQ,OAAO,IAAI,CAAC;AAC/B,WAAO,IAAI,YAAY,IAAI;AAC3B,QAAI,OAAQ,QAAO,IAAI,UAAU,MAAM;AAEvC,UAAM,OAAO,MAAM,QAAsB,mBAAmB,MAAM,IAAI,QAAW,EAAE,SAAS,CAAC;AAC7F,QAAI,KAAK,MAAM,KAAK,QAAQ;AAC1B,cAAQ,KAAK,MAAM;AAAA,IACrB;AACA,iBAAa,KAAK;AAAA,EACpB,GAAG,CAAC,MAAM,MAAM,CAAC;AAEjB,QAAM,UAAU,MAAM;AAAE,cAAU;AAAA,EAAE,GAAG,CAAC,SAAS,CAAC;AAElD,QAAM,eAAe,OAAO,QAAsB;AAChD,QAAI,IAAI,UAAU;AAChB,YAAM,EAAE,gCAAgC,sEAAiE,GAAG,OAAO;AACnH;AAAA,IACF;AAEA,UAAM,YAAY,MAAM,QAAQ;AAAA,MAC9B,OAAO,EAAE,0BAA0B,0BAA0B;AAAA,MAC7D,MAAM,EAAE,4BAA4B,yHAAyH;AAAA,MAC7J,aAAa,EAAE,iBAAiB,QAAQ;AAAA,MACxC,SAAS;AAAA,IACX,CAAC;AAED,QAAI,CAAC,UAAW;AAEhB,UAAM,eAAe,mBAAmB,IAAI,EAAE,IAAI,EAAE,QAAQ,SAAS,GAAG;AAAA,MACtE,cAAc,EAAE,gCAAgC,oCAAoC;AAAA,IACtF,CAAC;AACD,UAAM,EAAE,4BAA4B,2BAA2B,GAAG,SAAS;AAC3E,cAAU;AAAA,EACZ;AAEA,QAAM,yBAAyB,OAAO,QAAsB;AAC1D,QAAI;AACF,YAAM;AAAA,QACJ,mBAAmB,IAAI,EAAE;AAAA,QACzB;AAAA,UACE,QAAQ;AAAA,UACR,SAAS,EAAE,gBAAgB,mBAAmB;AAAA,UAC9C,MAAM,KAAK,UAAU,EAAE,QAAQ,CAAC,IAAI,SAAS,CAAC;AAAA,QAChD;AAAA,QACA,EAAE,cAAc,EAAE,oCAAoC,oCAAoC,EAAE;AAAA,MAC9F;AACA;AAAA,QACE,IAAI,WACA,EAAE,yBAAyB,+BAA+B,IAC1D,EAAE,uBAAuB,6BAA6B;AAAA,QAC1D;AAAA,MACF;AACA,gBAAU;AAAA,IACZ,QAAQ;AAAA,IAER;AAAA,EACF;AAEA,QAAM,uBAAuB,OAAO,QAAsB;AACxD,QAAI;AACF,YAAM,OAAO,MAAM;AAAA,QACjB,mBAAmB,IAAI,EAAE;AAAA,QACzB,EAAE,QAAQ,OAAO;AAAA,QACjB,EAAE,cAAc,EAAE,8BAA8B,wBAAwB,EAAE;AAAA,MAC5E;AACA,UAAI,KAAK,QAAQ,IAAI;AACnB,cAAM,EAAE,0BAA0B,iDAA4C,GAAG,SAAS;AAAA,MAC5F,OAAO;AACL,cAAM,KAAK,QAAQ,SAAS,EAAE,yBAAyB,kBAAkB,GAAG,OAAO;AAAA,MACrF;AAAA,IACF,QAAQ;AAAA,IAER;AAAA,EACF;AAEA,QAAM,UAAU,MAAM,QAAmC,MAAM;AAC7D,UAAM,OAAkC;AAAA,MACtC;AAAA,QACE,aAAa;AAAA,QACb,QAAQ,EAAE,yBAAyB,MAAM;AAAA,QACzC,MAAM,CAAC,EAAE,IAAI,MAAM,IAAI,SAAS,QAAQ,IAAI,SAAS,UAAU;AAAA,MACjE;AAAA,MACA;AAAA,QACE,aAAa;AAAA,QACb,QAAQ,EAAE,6BAA6B,UAAU;AAAA,QACjD,MAAM,CAAC,EAAE,IAAI,MAAM,IAAI,SAAS,SAAS,YAAY;AAAA,MACvD;AAAA,MACA;AAAA,QACE,aAAa;AAAA,QACb,QAAQ,EAAE,4BAA4B,SAAS;AAAA,QAC/C,MAAM,CAAC,EAAE,IAAI,MAAM,IAAI,SAAS,eAAe,KAAK,IAAI,KAAK;AAAA,MAC/D;AAAA,MACA;AAAA,QACE,aAAa;AAAA,QACb,QAAQ,EAAE,2BAA2B,QAAQ;AAAA,QAC7C,MAAM,CAAC,EAAE,IAAI,MACX,oBAAC,UAAK,WAAW,uEAAuE,IAAI,SAAS,WAAW,+BAA+B,2BAA2B,IACvK,cAAI,SAAS,WACV,EAAE,2BAA2B,QAAQ,IACrC,EAAE,6BAA6B,UAAU,GAC/C;AAAA,MAEJ;AAAA,MACA;AAAA,QACE,aAAa;AAAA,QACb,QAAQ,EAAE,4BAA4B,SAAS;AAAA,QAC/C,MAAM,CAAC,EAAE,IAAI,MAAM,IAAI,KAAK,IAAI,SAAS,SAAS,EAAE,mBAAmB;AAAA,MACzE;AAAA,IACF;AAEA,WAAO;AAAA,EACT,GAAG,CAAC,GAAG,YAAY,CAAC;AAEpB,QAAM,aAAa,KAAK,MAAM,SAAS,KAAK;AAC5C,QAAM,eAAe,gBAAgB,KAAK,MAAM,WAAW;AAE3D,SACE,oBAAC,QACC,+BAAC,YACE;AAAA,KAAC,cAAc,CAAC,YACf,qBAAC,SAAI,WAAU,+DACb;AAAA,0BAAC,QAAG,WAAU,8BACX,YAAE,yBAAyB,mBAAmB,GACjD;AAAA,MACA,oBAAC,OAAE,WAAU,uCACV,YAAE,+BAA+B,sFAAsF,GAC1H;AAAA,MACA,oBAAC,UAAO,SAAO,MACb,8BAAC,QAAK,MAAK,2BACR,YAAE,uBAAuB,eAAe,GAC3C,GACF;AAAA,OACF,IAEA;AAAA,MAAC;AAAA;AAAA,QACC,OAAO,EAAE,mBAAmB,gBAAgB;AAAA,QAC5C,SAAS,eACP,oBAAC,UAAO,SAAO,MAAC,MAAK,MACnB,8BAAC,QAAK,MAAK,2BACR,YAAE,iBAAiB,gBAAgB,GACtC,GACF,IACE;AAAA,QACJ;AAAA,QACA,MAAM,KAAK;AAAA,QACX,aAAa;AAAA,QACb,gBAAgB,CAAC,UAAU;AAAE,oBAAU,KAAK;AAAG,kBAAQ,CAAC;AAAA,QAAE;AAAA,QAC1D,mBAAmB,EAAE,oBAAoB,6BAA6B;AAAA,QACtE,YAAY,CAAC,QAAQ,OAAO,KAAK,uBAAuB,IAAI,EAAE,EAAE;AAAA,QAChE,YAAY,CAAC,QACX;AAAA,UAAC;AAAA;AAAA,YACC,OAAO;AAAA,cACL,EAAE,IAAI,QAAQ,OAAO,EAAE,eAAe,MAAM,GAAG,UAAU,MAAM,OAAO,KAAK,uBAAuB,IAAI,EAAE,EAAE,EAAE;AAAA,cAC5G,EAAE,IAAI,QAAQ,OAAO,EAAE,yBAAyB,kBAAkB,GAAG,UAAU,MAAM,qBAAqB,GAAG,EAAE;AAAA,cAC/G;AAAA,gBACE,IAAI;AAAA,gBACJ,OAAO,IAAI,WACP,EAAE,+BAA+B,YAAY,IAC7C,EAAE,6BAA6B,UAAU;AAAA,gBAC7C,UAAU,MAAM,uBAAuB,GAAG;AAAA,cAC5C;AAAA,cACA,EAAE,IAAI,UAAU,OAAO,EAAE,iBAAiB,QAAQ,GAAG,aAAa,MAAM,UAAU,MAAM,aAAa,GAAG,EAAE;AAAA,YAC5G;AAAA;AAAA,QACF;AAAA,QAEF,YAAY;AAAA,UACV;AAAA,UACA,UAAU;AAAA,UACV,OAAO,KAAK;AAAA,UACZ,YAAY,KAAK;AAAA,UACjB,cAAc;AAAA,QAChB;AAAA,QACA;AAAA;AAAA,IACF;AAAA,IAED;AAAA,KACH,GACF;AAEJ;",
+  "names": []
+}

package/dist/modules/sso/backend/page.meta.js ADDED Viewed

@@ -0,0 +1,31 @@
+import React from "react";
+const ssoIcon = React.createElement(
+  "svg",
+  {
+    width: 16,
+    height: 16,
+    viewBox: "0 0 24 24",
+    fill: "none",
+    stroke: "currentColor",
+    strokeWidth: 2,
+    strokeLinecap: "round",
+    strokeLinejoin: "round"
+  },
+  React.createElement("path", { d: "M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z" })
+);
+const metadata = {
+  requireAuth: true,
+  requireFeatures: ["sso.config.view"],
+  pageTitle: "Single Sign-On",
+  pageTitleKey: "sso.admin.title",
+  pageGroup: "Auth",
+  pageGroupKey: "settings.sections.auth",
+  pageOrder: 520,
+  icon: ssoIcon,
+  pageContext: "settings",
+  breadcrumb: [{ label: "Single Sign-On", labelKey: "sso.admin.title" }]
+};
+export {
+  metadata
+};
+//# sourceMappingURL=page.meta.js.map

package/dist/modules/sso/backend/page.meta.js.map ADDED Viewed

@@ -0,0 +1,7 @@
+{
+  "version": 3,
+  "sources": ["../../../../src/modules/sso/backend/page.meta.ts"],
+  "sourcesContent": ["import React from 'react'\n\nconst ssoIcon = React.createElement(\n  'svg',\n  {\n    width: 16,\n    height: 16,\n    viewBox: '0 0 24 24',\n    fill: 'none',\n    stroke: 'currentColor',\n    strokeWidth: 2,\n    strokeLinecap: 'round',\n    strokeLinejoin: 'round',\n  },\n  React.createElement('path', { d: 'M12 22s8-4 8-10V5l-8-3-8 3v7c0 6 8 10 8 10z' }),\n)\n\nexport const metadata = {\n  requireAuth: true,\n  requireFeatures: ['sso.config.view'],\n  pageTitle: 'Single Sign-On',\n  pageTitleKey: 'sso.admin.title',\n  pageGroup: 'Auth',\n  pageGroupKey: 'settings.sections.auth',\n  pageOrder: 520,\n  icon: ssoIcon,\n  pageContext: 'settings' as const,\n  breadcrumb: [{ label: 'Single Sign-On', labelKey: 'sso.admin.title' }],\n}\n"],
+  "mappings": "AAAA,OAAO,WAAW;AAElB,MAAM,UAAU,MAAM;AAAA,EACpB;AAAA,EACA;AAAA,IACE,OAAO;AAAA,IACP,QAAQ;AAAA,IACR,SAAS;AAAA,IACT,MAAM;AAAA,IACN,QAAQ;AAAA,IACR,aAAa;AAAA,IACb,eAAe;AAAA,IACf,gBAAgB;AAAA,EAClB;AAAA,EACA,MAAM,cAAc,QAAQ,EAAE,GAAG,8CAA8C,CAAC;AAClF;AAEO,MAAM,WAAW;AAAA,EACtB,aAAa;AAAA,EACb,iBAAiB,CAAC,iBAAiB;AAAA,EACnC,WAAW;AAAA,EACX,cAAc;AAAA,EACd,WAAW;AAAA,EACX,cAAc;AAAA,EACd,WAAW;AAAA,EACX,MAAM;AAAA,EACN,aAAa;AAAA,EACb,YAAY,CAAC,EAAE,OAAO,kBAAkB,UAAU,kBAAkB,CAAC;AACvE;",
+  "names": []
+}