@openhi/constructs 0.0.105 → 0.0.107

package/lib/{chunk-36YCDLLA.mjs → chunk-VYDIGFIX.mjs}

@@ -15,6 +15,9 @@ var dynamoClient = new DynamoDBClient({
 // src/data/dynamo/entities/control/configuration-entity.ts
 import { Entity } from "electrodb";
 
+// src/data/dynamo/entities/control/control-entity-common.ts
+import { extractLabel } from "@openhi/types";
+
 // src/data/dynamo/shard.ts
 var SHARD_COUNT = 4;
 function computeShard(id) {
@@ -37,6 +40,29 @@ var gsi1ShardAttribute = {
     return String(computeShard(item.id));
   }
 };
+var gsi1skAttribute = {
+  type: "string",
+  watch: ["resource", "lastUpdated", "id"],
+  set: (_val, item) => {
+    const id = typeof item?.id === "string" ? item.id : "";
+    const lastUpdated = typeof item?.lastUpdated === "string" ? item.lastUpdated : "";
+    const fallback = `${lastUpdated}#${id}`;
+    if (typeof item?.resource !== "string" || item.resource.length === 0) {
+      return fallback;
+    }
+    let parsed;
+    try {
+      parsed = JSON.parse(item.resource);
+    } catch {
+      return fallback;
+    }
+    if (!parsed || typeof parsed !== "object") return fallback;
+    const resourceType = parsed.resourceType;
+    if (typeof resourceType !== "string") return fallback;
+    const label = extractLabel(parsed);
+    return label !== void 0 ? `${label}#${id}` : fallback;
+  }
+};
 
 // src/data/dynamo/entities/control/configuration-entity.ts
 var ConfigurationEntity = new Entity({
@@ -142,8 +168,9 @@ var ConfigurationEntity = new Entity({
      * (workspaceId = "-") or "list configs scoped to this workspace". Does not support
      * hierarchical resolution in one query; use base table GetItem in fallback order
      * (user → workspace → tenant → baseline) for that.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * SK is `<key>#<id>` — Configuration's `key` is a required entity attribute (the
+     * config category: endpoints, branding, display, …) and the natural sort/lookup
+     * dimension. `casing: "none"` preserves the literal key value.
      */
     gsi1: {
       index: "GSI1",
@@ -155,8 +182,8 @@ var ConfigurationEntity = new Entity({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["key", "id"],
+        template: "${key}#${id}"
       }
     }
   }
@@ -210,6 +237,8 @@ var MembershipEntity = new Entity2({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -240,8 +269,9 @@ var MembershipEntity = new Entity2({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all Memberships for a tenant across the
      * four shards. Membership is tenant-scoped only, so `WID#-` is a sentinel.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * SK is derived via `gsi1skAttribute` — uses the resource's natural label when
+     * extractable, else `<lastUpdated>#<id>` (DR-004). `casing: "none"` preserves the
+     * normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -253,8 +283,8 @@ var MembershipEntity = new Entity2({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     }
   }
@@ -303,6 +333,8 @@ var RoleEntity = new Entity3({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -333,8 +365,9 @@ var RoleEntity = new Entity3({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all Roles across the four shards.
      * Non-tenant-isolated, so `TID#-#WID#-` sentinels precede `RT#Role#SHARD#<n>`.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * SK is derived via `gsi1skAttribute` — uses the resource's natural label when
+     * extractable, else `<lastUpdated>#<id>` (DR-004). `casing: "none"` preserves the
+     * normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -346,8 +379,8 @@ var RoleEntity = new Entity3({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     }
   }
@@ -401,6 +434,8 @@ var RoleAssignmentEntity = new Entity4({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -431,8 +466,9 @@ var RoleAssignmentEntity = new Entity4({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all RoleAssignments for a tenant across the
      * four shards. Tenant-scoped only, so `WID#-` is a sentinel.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * SK is derived via `gsi1skAttribute` — uses the resource's natural label when
+     * extractable, else `<lastUpdated>#<id>` (DR-004). `casing: "none"` preserves the
+     * normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -444,8 +480,8 @@ var RoleAssignmentEntity = new Entity4({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     }
   }
@@ -499,6 +535,8 @@ var TenantEntity = new Entity5({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -529,8 +567,9 @@ var TenantEntity = new Entity5({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all Tenants across the four shards.
      * Tenant lives at the platform tier (no parent tenant or workspace), so `TID#-#WID#-`
-     * sentinels precede `RT#Tenant#SHARD#<n>`. SK is `<ISO-8601 lastUpdated>#<id>` (control-plane
-     * unlabeled per DR-004). `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * sentinels precede `RT#Tenant#SHARD#<n>`. SK is derived via `gsi1skAttribute` —
+     * `<normalizedName>#<id>` when the resource carries a `name`, else `<lastUpdated>#<id>`
+     * (DR-004). `casing: "none"` preserves the normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -542,8 +581,8 @@ var TenantEntity = new Entity5({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     }
   }
@@ -600,6 +639,8 @@ var UserEntity = new Entity6({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -630,8 +671,9 @@ var UserEntity = new Entity6({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all Users across the four shards.
      * Non-tenant-isolated, so `TID#-#WID#-` sentinels precede `RT#User#SHARD#<n>`.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z` characters.
+     * SK is derived via `gsi1skAttribute` — uses the resource's natural label when
+     * extractable (string `name`/`title` via introspection), else `<lastUpdated>#<id>`
+     * (DR-004). `casing: "none"` preserves the normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -643,8 +685,8 @@ var UserEntity = new Entity6({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     },
     /**
@@ -719,6 +761,8 @@ var WorkspaceEntity = new Entity7({
       required: true
     },
     gsi1Shard: gsi1ShardAttribute,
+    /** Derived GSI1 sort key — name-based when extractable; else `<lastUpdated>#<id>`. */
+    gsi1sk: gsi1skAttribute,
     deleted: {
       type: "boolean",
       required: false
@@ -749,8 +793,9 @@ var WorkspaceEntity = new Entity7({
     /**
      * GSI1 — Unified Sharded List per ADR-011: list all Workspaces for a tenant across the
      * four shards. Workspace is itself the workspace identity, so `WID#-` is a sentinel.
-     * SK is `<ISO-8601 lastUpdated>#<id>` (control-plane unlabeled per DR-004).
-     * `casing: "none"` on the SK preserves ISO-8601 `T`/`Z`.
+     * SK is derived via `gsi1skAttribute` — `<normalizedName>#<id>` when the resource
+     * carries a `name`, else `<lastUpdated>#<id>` (DR-004). `casing: "none"` preserves
+     * the normalized label and ISO-8601 `T`/`Z`.
      */
     gsi1: {
       index: "GSI1",
@@ -762,8 +807,8 @@ var WorkspaceEntity = new Entity7({
       sk: {
         field: "GSI1SK",
         casing: "none",
-        composite: ["lastUpdated", "id"],
-        template: "${lastUpdated}#${id}"
+        composite: ["gsi1sk"],
+        template: "${gsi1sk}"
       }
     }
   }
@@ -797,462 +842,11 @@ function getDynamoControlService(tableName) {
   };
 }
 
-// src/data/operations/control/user/user-create-operation.ts
-import { extractSummary } from "@openhi/types";
-async function createUserOperation(params) {
-  const { context, body, tableName } = params;
-  const service = getDynamoControlService(tableName);
-  const id = body.id ?? `user-${Date.now()}`;
-  const parsedResource = typeof body.resource === "string" ? JSON.parse(body.resource) : body.resource ?? {};
-  const lastUpdated = context.date ?? (/* @__PURE__ */ new Date()).toISOString();
-  const vid = `1`;
-  const resource = { resourceType: "User", id, ...parsedResource };
-  const summary = JSON.stringify(extractSummary(resource));
-  await service.entities.user.put({
-    id,
-    resource: JSON.stringify(resource),
-    summary,
-    vid,
-    lastUpdated
-  }).go();
-  return {
-    id,
-    resource,
-    meta: { lastUpdated, versionId: vid }
-  };
-}
-
-// src/data/operations/control/user/user-delete-operation.ts
-async function deleteUserOperation(params) {
-  const { id, tableName } = params;
-  const service = getDynamoControlService(tableName);
-  await service.entities.user.delete({ id, sk: "CURRENT" }).go();
-}
-
-// src/data/errors/domain-errors.ts
-var DomainError = class extends Error {
-  constructor(message, code, options) {
-    super(message, options);
-    this.name = this.constructor.name;
-    this.code = code;
-    this.details = options?.details;
-    Object.setPrototypeOf(this, new.target.prototype);
-  }
-};
-var NotFoundError = class extends DomainError {
-  constructor(message, options) {
-    super(message, "NOT_FOUND", options);
-  }
-};
-var ValidationError = class extends DomainError {
-  constructor(message, options) {
-    super(message, "VALIDATION", options);
-  }
-};
-var ConflictError = class extends DomainError {
-  constructor(message, options) {
-    super(message, "CONFLICT", options);
-  }
-};
-function domainErrorToHttpStatus(err) {
-  if (err instanceof NotFoundError) return 404;
-  if (err instanceof ValidationError) return 400;
-  if (err instanceof ConflictError) return 409;
-  return null;
-}
-
-// src/data/operations/control/user/user-get-by-id-operation.ts
-async function getUserByIdOperation(params) {
-  const { id, tableName } = params;
-  const service = getDynamoControlService(tableName);
-  const response = await service.entities.user.get({ id, sk: "CURRENT" }).go();
-  const item = response.data;
-  if (!item) {
-    throw new NotFoundError(`User not found: ${id}`);
-  }
-  const parsedResource = JSON.parse(item.resource);
-  return {
-    id,
-    resource: { resourceType: "User", id, ...parsedResource }
-  };
-}
-
-// src/data/operations/data-operations-common.ts
-import { extractSortKey, extractSummary as extractSummary2 } from "@openhi/types";
-
-// src/lib/compression.ts
-import { gzipSync, gunzipSync } from "zlib";
-var ENVELOPE_VERSION = 1;
-var COMPRESSION_ALGOS = {
-  NONE: "none",
-  GZIP: "gzip",
-  BROTLI: "brotli",
-  DEFLATE: "deflate"
-};
-function isEnvelope(obj) {
-  return typeof obj === "object" && obj !== null && "v" in obj && "algo" in obj && "payload" in obj && typeof obj.payload === "string";
-}
-function compressResource(jsonString, options) {
-  const algo = options?.algo ?? COMPRESSION_ALGOS.GZIP;
-  if (algo === COMPRESSION_ALGOS.NONE) {
-    const envelope2 = {
-      v: ENVELOPE_VERSION,
-      algo: COMPRESSION_ALGOS.NONE,
-      payload: jsonString
-    };
-    return JSON.stringify(envelope2);
-  }
-  const buf = Buffer.from(jsonString, "utf-8");
-  const payload = gzipSync(buf).toString("base64");
-  const envelope = {
-    v: ENVELOPE_VERSION,
-    algo: COMPRESSION_ALGOS.GZIP,
-    payload
-  };
-  return JSON.stringify(envelope);
-}
-function decompressResource(compressedOrRaw) {
-  try {
-    const parsed = JSON.parse(compressedOrRaw);
-    if (isEnvelope(parsed)) {
-      if (parsed.algo === COMPRESSION_ALGOS.GZIP) {
-        const buf = Buffer.from(parsed.payload, "base64");
-        return gunzipSync(buf).toString("utf-8");
-      }
-      if (parsed.algo === COMPRESSION_ALGOS.NONE) {
-        return parsed.payload;
-      }
-      return parsed.payload;
-    }
-  } catch {
-  }
-  try {
-    const buf = Buffer.from(compressedOrRaw, "base64");
-    if (buf.length >= 2 && buf[0] === 31 && buf[1] === 139) {
-      return gunzipSync(buf).toString("utf-8");
-    }
-  } catch {
-  }
-  return compressedOrRaw;
-}
-
-// src/data/audit-meta.ts
-var OPENHI_EXT = "http://openhi.org/fhir/StructureDefinition";
-function mergeAuditIntoMeta(meta, audit) {
-  const existing = meta ?? {};
-  const ext = [
-    ...Array.isArray(existing.extension) ? existing.extension : []
-  ];
-  const byUrl = new Map(ext.map((e) => [e.url, e]));
-  function set(url, value, type) {
-    if (value == null) return;
-    byUrl.set(url, { url, [type]: value });
-  }
-  set(`${OPENHI_EXT}/created-date`, audit.createdDate, "valueDateTime");
-  set(`${OPENHI_EXT}/created-by-id`, audit.createdById, "valueString");
-  set(`${OPENHI_EXT}/created-by-name`, audit.createdByName, "valueString");
-  set(`${OPENHI_EXT}/modified-date`, audit.modifiedDate, "valueDateTime");
-  set(`${OPENHI_EXT}/modified-by-id`, audit.modifiedById, "valueString");
-  set(`${OPENHI_EXT}/modified-by-name`, audit.modifiedByName, "valueString");
-  set(`${OPENHI_EXT}/deleted-date`, audit.deletedDate, "valueDateTime");
-  set(`${OPENHI_EXT}/deleted-by-id`, audit.deletedById, "valueString");
-  set(`${OPENHI_EXT}/deleted-by-name`, audit.deletedByName, "valueString");
-  return { ...existing, extension: Array.from(byUrl.values()) };
-}
-
-// src/data/operations/data-operations-common.ts
-var DATA_ENTITY_SK = "CURRENT";
-async function getDataEntityById(entity, tenantId, workspaceId, id, resourceLabel) {
-  const result = await entity.get({
-    tenantId,
-    workspaceId,
-    id,
-    sk: DATA_ENTITY_SK
-  }).go();
-  if (!result.data) {
-    throw new NotFoundError(`${resourceLabel} ${id} not found`, {
-      details: { id }
-    });
-  }
-  const parsed = JSON.parse(decompressResource(result.data.resource));
-  return {
-    id: result.data.id,
-    resource: { ...parsed, id: result.data.id }
-  };
-}
-async function deleteDataEntityById(entity, tenantId, workspaceId, id) {
-  await entity.delete({
-    tenantId,
-    workspaceId,
-    id,
-    sk: DATA_ENTITY_SK
-  }).go();
-}
-var BATCH_GET_MAX_ATTEMPTS = 3;
-var BATCH_GET_BASE_BACKOFF_MS = 50;
-async function batchGetWithRetry(entity, keys) {
-  if (keys.length === 0) return [];
-  const collected = [];
-  let pending = keys;
-  let attempt = 0;
-  while (pending.length > 0) {
-    if (attempt > 0) {
-      await new Promise(
-        (resolve) => setTimeout(resolve, BATCH_GET_BASE_BACKOFF_MS * 2 ** (attempt - 1))
-      );
-    }
-    attempt++;
-    const result = await entity.get(pending).go();
-    collected.push(...result.data);
-    const unprocessed = result.unprocessed ?? [];
-    if (unprocessed.length === 0) break;
-    if (attempt >= BATCH_GET_MAX_ATTEMPTS) {
-      throw new Error(
-        `BatchGet exhausted retries: ${unprocessed.length} key(s) still unprocessed after ${BATCH_GET_MAX_ATTEMPTS} attempt(s)`
-      );
-    }
-    pending = unprocessed;
-  }
-  return collected;
-}
-async function dispatchListMode(mode, shardResults, hooks) {
-  if (mode === "count") {
-    let total = 0;
-    for (const shardResult of shardResults) {
-      total += (shardResult.data ?? []).length;
-    }
-    return { entries: [], total };
-  }
-  if (mode === "summary") {
-    const entries2 = [];
-    for (const shardResult of shardResults) {
-      for (const item of shardResult.data ?? []) {
-        if (typeof item.summary !== "string") continue;
-        let parsed;
-        try {
-          parsed = JSON.parse(item.summary);
-        } catch {
-          continue;
-        }
-        entries2.push(hooks.buildSummaryEntry(item.id, parsed));
-      }
-    }
-    return { entries: entries2, total: entries2.length };
-  }
-  const orderedIds = [];
-  for (const shardResult of shardResults) {
-    for (const item of shardResult.data ?? []) {
-      orderedIds.push(item.id);
-    }
-  }
-  if (orderedIds.length === 0) return { entries: [], total: 0 };
-  const items = await hooks.hydrate(orderedIds);
-  const byId = new Map(items.map((item) => [hooks.getId(item), item]));
-  const entries = [];
-  for (const id of orderedIds) {
-    const item = byId.get(id);
-    if (!item) continue;
-    entries.push(hooks.buildEntry(id, item));
-  }
-  return { entries, total: entries.length };
-}
-async function listDataEntitiesByWorkspace(entity, tenantId, workspaceId, mode = "full") {
-  const shardResults = await Promise.all(
-    Array.from(
-      { length: SHARD_COUNT },
-      (_, shard) => entity.query.gsi1({ tenantId, workspaceId, gsi1Shard: String(shard) }).go()
-    )
-  );
-  return dispatchListMode(
-    mode,
-    shardResults,
-    {
-      hydrate: (orderedIds) => batchGetWithRetry(
-        entity,
-        orderedIds.map((id) => ({
-          tenantId,
-          workspaceId,
-          id,
-          sk: DATA_ENTITY_SK
-        }))
-      ),
-      getId: (item) => item.id,
-      buildEntry: (id, item) => {
-        const parsed = JSON.parse(decompressResource(item.resource));
-        return { id, resource: { ...parsed, id } };
-      },
-      buildSummaryEntry: (id, parsed) => ({
-        id,
-        resource: { ...parsed, id }
-      })
-    }
-  );
-}
-async function createDataEntityRecord(entity, tenantId, workspaceId, id, resourceWithAudit, fallbackDate) {
-  const lastUpdated = resourceWithAudit.meta?.lastUpdated ?? fallbackDate ?? (/* @__PURE__ */ new Date()).toISOString();
-  const vid = lastUpdated.replace(/[-:T.Z]/g, "").slice(0, 12) || Date.now().toString(36);
-  const resourceLike = resourceWithAudit;
-  const summary = JSON.stringify(extractSummary2(resourceLike));
-  const gsi1sk = extractSortKey(resourceLike);
-  await entity.put({
-    sk: DATA_ENTITY_SK,
-    tenantId,
-    workspaceId,
-    id,
-    resource: compressResource(JSON.stringify(resourceWithAudit)),
-    summary,
-    vid,
-    lastUpdated,
-    gsi1sk
-  }).go();
-  return {
-    id,
-    resource: resourceWithAudit
-  };
-}
-function buildUpdatedResourceWithAudit(body, id, date, actorId, actorName, existingResourceStr, resourceType) {
-  const existingMeta = JSON.parse(existingResourceStr).meta;
-  const bodyWithMeta = body;
-  const resourceWithVersion = {
-    ...body,
-    resourceType,
-    id,
-    meta: {
-      ...bodyWithMeta.meta ?? {},
-      lastUpdated: date,
-      versionId: "2"
-    }
-  };
-  const resourceWithAudit = {
-    ...resourceWithVersion,
-    meta: mergeAuditIntoMeta(resourceWithVersion.meta ?? existingMeta, {
-      modifiedDate: date,
-      modifiedById: actorId,
-      modifiedByName: actorName
-    })
-  };
-  return {
-    resource: resourceWithAudit,
-    lastUpdated: date
-  };
-}
-async function updateDataEntityById(entity, tenantId, workspaceId, id, resourceLabel, context, buildPatched) {
-  const existing = await entity.get({
-    tenantId,
-    workspaceId,
-    id,
-    sk: DATA_ENTITY_SK
-  }).go();
-  if (!existing.data) {
-    throw new NotFoundError(`${resourceLabel} ${id} not found`, {
-      details: { id }
-    });
-  }
-  const existingStr = decompressResource(existing.data.resource);
-  const { resource, lastUpdated } = buildPatched(existingStr);
-  const resourceLike = resource;
-  const summary = JSON.stringify(extractSummary2(resourceLike));
-  const gsi1sk = extractSortKey(resourceLike);
-  await entity.patch({
-    tenantId,
-    workspaceId,
-    id,
-    sk: DATA_ENTITY_SK
-  }).set({
-    resource: compressResource(JSON.stringify(resource)),
-    summary,
-    lastUpdated,
-    gsi1sk
-  }).go();
-  return {
-    id,
-    resource
-  };
-}
-
-// src/data/operations/control/user/user-list-operation.ts
-var SK = "CURRENT";
-async function listUsersOperation(params) {
-  const { tableName, mode = "full" } = params;
-  const service = getDynamoControlService(tableName);
-  const shardResults = await Promise.all(
-    Array.from(
-      { length: SHARD_COUNT },
-      (_, shard) => service.entities.user.query.gsi1({ gsi1Shard: String(shard) }).go()
-    )
-  );
-  return dispatchListMode(mode, shardResults, {
-    hydrate: (orderedIds) => batchGetWithRetry(
-      service.entities.user,
-      orderedIds.map((id) => ({ id, sk: SK }))
-    ),
-    getId: (item) => item.id,
-    buildEntry: (id, item) => ({
-      id,
-      resource: {
-        resourceType: "User",
-        id,
-        ...JSON.parse(item.resource)
-      }
-    }),
-    buildSummaryEntry: (id, parsed) => ({
-      id,
-      resource: { resourceType: "User", id, ...parsed }
-    })
-  });
-}
-
-// src/data/operations/control/user/user-update-operation.ts
-import { extractSummary as extractSummary3 } from "@openhi/types";
-async function updateUserOperation(params) {
-  const { context, id, body, tableName } = params;
-  const service = getDynamoControlService(tableName);
-  const existing = await service.entities.user.get({ id, sk: "CURRENT" }).go();
-  if (!existing.data) {
-    throw new NotFoundError(`User not found: ${id}`);
-  }
-  const parsedResource = typeof body.resource === "string" ? JSON.parse(body.resource) : body.resource ?? {};
-  const lastUpdated = context.date ?? (/* @__PURE__ */ new Date()).toISOString();
-  const vid = `${Date.now()}`;
-  const resource = { resourceType: "User", id, ...parsedResource };
-  const summary = JSON.stringify(extractSummary3(resource));
-  await service.entities.user.put({
-    id,
-    resource: JSON.stringify(resource),
-    summary,
-    vid,
-    lastUpdated
-  }).go();
-  return {
-    id,
-    resource,
-    meta: { lastUpdated, versionId: vid }
-  };
-}
-
 export {
-  compressResource,
-  decompressResource,
   defaultTableName,
   dynamoClient,
   SHARD_COUNT,
   computeShard,
-  getDynamoControlService,
-  NotFoundError,
-  domainErrorToHttpStatus,
-  mergeAuditIntoMeta,
-  getDataEntityById,
-  deleteDataEntityById,
-  batchGetWithRetry,
-  dispatchListMode,
-  listDataEntitiesByWorkspace,
-  createDataEntityRecord,
-  buildUpdatedResourceWithAudit,
-  updateDataEntityById,
-  createUserOperation,
-  deleteUserOperation,
-  getUserByIdOperation,
-  listUsersOperation,
-  updateUserOperation
+  getDynamoControlService
 };
-//# sourceMappingURL=chunk-36YCDLLA.mjs.map
+//# sourceMappingURL=chunk-VYDIGFIX.mjs.map