@openhi/constructs 0.0.159 → 0.0.160

package/lib/{events-DTgo2dcW.d.mts → events-TG654e7L.d.mts}

@@ -30,16 +30,54 @@ declare const DEMO_PERIOD: {
     readonly start: "2026-01-01T00:00:00Z";
 };
 
-/** Placeholder Tenant id seeded by the workflow as the dev-user `currentTenant`. */
+/**
+ * Placeholder Tenant id.
+ *
+ * The placeholder is a **system sentinel**, not a user-facing demo
+ * tenant. It exists for two reasons:
+ *
+ *   1. `pre-token-generation.handler.ts` stamps this id into the
+ *      JWT `ohi_tid` claim when a User cannot be resolved (no
+ *      DynamoDB record, missing `currentTenant`/`currentWorkspace`,
+ *      etc.) so the token still satisfies `openHiContextMiddleware`
+ *      and downstream APIs return a deterministic 403 instead of
+ *      crashing on a missing claim.
+ *   2. The seed workflow re-asserts a Tenant + Workspace record at
+ *      these ids so the JWT fallback dereferences to a real DynamoDB
+ *      row (avoids dangling references on read paths that follow
+ *      `Tenant/placeholder-tenant-id`).
+ *
+ * Dev users' `currentTenant`/`currentWorkspace` no longer point here
+ * (issue #1301) — they point at the on-site demo tenant below. The
+ * placeholder records remain seeded purely as a structural sentinel.
+ */
 declare const PLACEHOLDER_TENANT_ID = "placeholder-tenant-id";
-/** Placeholder Workspace id seeded by the workflow as the dev-user `currentWorkspace`. */
+/** Placeholder Workspace id. See {@link PLACEHOLDER_TENANT_ID}. */
 declare const PLACEHOLDER_WORKSPACE_ID = "placeholder-workspace-id";
+/**
+ * Stable Tenant id for the on-site-medical UAT demo tenant
+ * (issue #1301). Downstream demo-data tickets (#1302 providers,
+ * #1303 facilities, #1304 patients/encounters, etc.) import this
+ * constant to attach their fixture resources without re-discovering
+ * the tenant.
+ *
+ * This is the tenant every seeded dev user lands on at sign-in
+ * (`currentTenant` on the seeded User resource). UAT testers see
+ * "On-Site Medical — Demo" in the Tenant Switcher on first sign-in.
+ */
+declare const ON_SITE_DEMO_TENANT_ID = "on-site-demo-tenant";
+/**
+ * Stable Workspace id under {@link ON_SITE_DEMO_TENANT_ID}. Single
+ * workspace for v1 UAT; workspace topology (per business line vs
+ * per jurisdiction) is deferred pending an ADR (#1301 design note).
+ */
+declare const ON_SITE_DEMO_WORKSPACE_ID = "on-site-demo-workspace";
 /**
  * Dev-user descriptor. Every entry produces:
  *   - one Cognito user (idempotent create-then-skip),
  *   - one DynamoDB User record (id = `dev-<email-local-part>`),
- *   - four Memberships (placeholder + the three demo tenants),
- *   - four `tenant-admin` RoleAssignments (one per tenant the user
+ *   - five Memberships (placeholder + on-site demo + three demo tenants),
+ *   - five `tenant-admin` RoleAssignments (one per tenant the user
  *     belongs to),
  *   - one `system-admin` RoleAssignment scoped to {@link PLATFORM_SCOPE_TENANT_ID}.
  */
@@ -48,6 +86,10 @@ interface DemoDevUser {
     readonly id: string;
     /** Email used as the Cognito `Username` and as the seed for the password algorithm. */
     readonly email: string;
+    /** Given name, populated on the seeded User FHIR resource as `name[0].given[0]`. */
+    readonly firstName: string;
+    /** Family name, populated on the seeded User FHIR resource as `name[0].family`. */
+    readonly lastName: string;
 }
 /**
  * Hardcoded dev-user roster. Adding a new developer is a one-line
@@ -58,8 +100,9 @@ interface DemoDevUser {
 declare const DEV_USERS: ReadonlyArray<DemoDevUser>;
 /**
  * A single workspace inside a demo tenant. The mixed tenant has two
- * workspaces (wound-care and primary-care sub-workspaces); the other
- * two tenants have one each.
+ * workspaces (wound-care and primary-care sub-workspaces); every
+ * other tenant (placeholder, on-site demo, wound-care, primary-care)
+ * has exactly one.
  */
 interface DemoWorkspaceSpec {
     /** Stable id (DynamoDB record id; also drives the canonical OHI URN). */
@@ -80,9 +123,10 @@ interface DemoWorkspaceSpec {
  */
 interface DemoTenantSpec {
     /**
-     * Scenario slug — `placeholder`, `demo-wound-care`, `demo-primary-care`,
-     * `demo-mixed`. The placeholder tenant's slug is `placeholder`; the
-     * three demo tenants use `demo-*` slugs.
+     * Scenario slug — `placeholder`, `on-site-demo`, `demo-wound-care`,
+     * `demo-primary-care`, `demo-mixed`. The placeholder tenant uses
+     * `placeholder`; the on-site UAT demo tenant uses `on-site-demo`
+     * (#1301); the three demo tenants use `demo-*` slugs.
      */
     readonly scenario: string;
     /** Stable id (DynamoDB record id; also drives the canonical OHI URN). */
@@ -93,17 +137,22 @@ interface DemoTenantSpec {
     readonly workspaces: ReadonlyArray<DemoWorkspaceSpec>;
 }
 /**
- * The full demo-tenant graph. Four entries: the placeholder tenant the
- * JWT-claim fallback resolves to, plus the three v1 demo scenarios
- * (OPS-009 §"v1 scenarios"):
+ * The full demo-tenant graph. Five entries: the placeholder tenant
+ * the JWT-claim fallback resolves to, the on-site-medical UAT demo
+ * tenant every dev user lands on at sign-in (#1301), and the three
+ * v1 demo scenarios (OPS-009 §"v1 scenarios"):
  *
  *   0. Placeholder tenant — dereferences the JWT-claim fallback in
- *      `pre-token-generation.handler.ts` and acts as every dev user's
- *      `currentTenant`/`currentWorkspace` so Post-Confirmation skips
- *      default provisioning when a seeded User signs in.
- *   1. Single-workspace wound-care tenant.
- *   2. Single-workspace primary-care tenant.
- *   3. Two-workspace mixed tenant — exercises the cross-workspace
+ *      `pre-token-generation.handler.ts`. Carries no user-facing
+ *      content; exists purely so the JWT fallback resolves to a real
+ *      DynamoDB row instead of dangling.
+ *   1. On-site-medical UAT demo tenant — every seeded dev user's
+ *      `currentTenant`/`currentWorkspace`. Downstream demo-data
+ *      tickets (providers, facilities, patients) attach to this
+ *      tenant via {@link ON_SITE_DEMO_TENANT_ID}.
+ *   2. Single-workspace wound-care tenant.
+ *   3. Single-workspace primary-care tenant.
+ *   4. Two-workspace mixed tenant — exercises the cross-workspace
  *      isolation flow that single-workspace tenants cannot.
  */
 declare const DEMO_TENANT_SPECS: ReadonlyArray<DemoTenantSpec>;
@@ -146,4 +195,4 @@ declare const openhiResourceIdentifier: (params: {
  */
 declare const demoRolesForUserInTenant: (_user: DemoDevUser, _tenantId: string) => ReadonlyArray<PlatformRoleCode>;
 
-export { DEMO_PERIOD as D, OPENHI_RESOURCE_URN_SYSTEM as O, PLACEHOLDER_TENANT_ID as P, SEED_DEMO_DATA_CONSUMER_NAME as S, DEMO_TENANT_SPECS as a, DEMO_URN_SYSTEM as b, DEV_USERS as c, type DemoDevUser as d, type DemoTenantSpec as e, type DemoWorkspaceSpec as f, PLACEHOLDER_WORKSPACE_ID as g, demoMembershipId as h, demoRoleAssignmentId as i, demoRolesForUserInTenant as j, demoScenarioIdentifier as k, openhiResourceIdentifier as o };
+export { DEMO_PERIOD as D, ON_SITE_DEMO_TENANT_ID as O, PLACEHOLDER_TENANT_ID as P, SEED_DEMO_DATA_CONSUMER_NAME as S, DEMO_TENANT_SPECS as a, DEMO_URN_SYSTEM as b, DEV_USERS as c, type DemoDevUser as d, type DemoTenantSpec as e, type DemoWorkspaceSpec as f, ON_SITE_DEMO_WORKSPACE_ID as g, OPENHI_RESOURCE_URN_SYSTEM as h, PLACEHOLDER_WORKSPACE_ID as i, demoMembershipId as j, demoRoleAssignmentId as k, demoRolesForUserInTenant as l, demoScenarioIdentifier as m, openhiResourceIdentifier as o };

package/lib/{events-DTgo2dcW.d.ts → events-TG654e7L.d.ts}

@@ -30,16 +30,54 @@ declare const DEMO_PERIOD: {
     readonly start: "2026-01-01T00:00:00Z";
 };
 
-/** Placeholder Tenant id seeded by the workflow as the dev-user `currentTenant`. */
+/**
+ * Placeholder Tenant id.
+ *
+ * The placeholder is a **system sentinel**, not a user-facing demo
+ * tenant. It exists for two reasons:
+ *
+ *   1. `pre-token-generation.handler.ts` stamps this id into the
+ *      JWT `ohi_tid` claim when a User cannot be resolved (no
+ *      DynamoDB record, missing `currentTenant`/`currentWorkspace`,
+ *      etc.) so the token still satisfies `openHiContextMiddleware`
+ *      and downstream APIs return a deterministic 403 instead of
+ *      crashing on a missing claim.
+ *   2. The seed workflow re-asserts a Tenant + Workspace record at
+ *      these ids so the JWT fallback dereferences to a real DynamoDB
+ *      row (avoids dangling references on read paths that follow
+ *      `Tenant/placeholder-tenant-id`).
+ *
+ * Dev users' `currentTenant`/`currentWorkspace` no longer point here
+ * (issue #1301) — they point at the on-site demo tenant below. The
+ * placeholder records remain seeded purely as a structural sentinel.
+ */
 declare const PLACEHOLDER_TENANT_ID = "placeholder-tenant-id";
-/** Placeholder Workspace id seeded by the workflow as the dev-user `currentWorkspace`. */
+/** Placeholder Workspace id. See {@link PLACEHOLDER_TENANT_ID}. */
 declare const PLACEHOLDER_WORKSPACE_ID = "placeholder-workspace-id";
+/**
+ * Stable Tenant id for the on-site-medical UAT demo tenant
+ * (issue #1301). Downstream demo-data tickets (#1302 providers,
+ * #1303 facilities, #1304 patients/encounters, etc.) import this
+ * constant to attach their fixture resources without re-discovering
+ * the tenant.
+ *
+ * This is the tenant every seeded dev user lands on at sign-in
+ * (`currentTenant` on the seeded User resource). UAT testers see
+ * "On-Site Medical — Demo" in the Tenant Switcher on first sign-in.
+ */
+declare const ON_SITE_DEMO_TENANT_ID = "on-site-demo-tenant";
+/**
+ * Stable Workspace id under {@link ON_SITE_DEMO_TENANT_ID}. Single
+ * workspace for v1 UAT; workspace topology (per business line vs
+ * per jurisdiction) is deferred pending an ADR (#1301 design note).
+ */
+declare const ON_SITE_DEMO_WORKSPACE_ID = "on-site-demo-workspace";
 /**
  * Dev-user descriptor. Every entry produces:
  *   - one Cognito user (idempotent create-then-skip),
  *   - one DynamoDB User record (id = `dev-<email-local-part>`),
- *   - four Memberships (placeholder + the three demo tenants),
- *   - four `tenant-admin` RoleAssignments (one per tenant the user
+ *   - five Memberships (placeholder + on-site demo + three demo tenants),
+ *   - five `tenant-admin` RoleAssignments (one per tenant the user
  *     belongs to),
  *   - one `system-admin` RoleAssignment scoped to {@link PLATFORM_SCOPE_TENANT_ID}.
  */
@@ -48,6 +86,10 @@ interface DemoDevUser {
     readonly id: string;
     /** Email used as the Cognito `Username` and as the seed for the password algorithm. */
     readonly email: string;
+    /** Given name, populated on the seeded User FHIR resource as `name[0].given[0]`. */
+    readonly firstName: string;
+    /** Family name, populated on the seeded User FHIR resource as `name[0].family`. */
+    readonly lastName: string;
 }
 /**
  * Hardcoded dev-user roster. Adding a new developer is a one-line
@@ -58,8 +100,9 @@ interface DemoDevUser {
 declare const DEV_USERS: ReadonlyArray<DemoDevUser>;
 /**
  * A single workspace inside a demo tenant. The mixed tenant has two
- * workspaces (wound-care and primary-care sub-workspaces); the other
- * two tenants have one each.
+ * workspaces (wound-care and primary-care sub-workspaces); every
+ * other tenant (placeholder, on-site demo, wound-care, primary-care)
+ * has exactly one.
  */
 interface DemoWorkspaceSpec {
     /** Stable id (DynamoDB record id; also drives the canonical OHI URN). */
@@ -80,9 +123,10 @@ interface DemoWorkspaceSpec {
  */
 interface DemoTenantSpec {
     /**
-     * Scenario slug — `placeholder`, `demo-wound-care`, `demo-primary-care`,
-     * `demo-mixed`. The placeholder tenant's slug is `placeholder`; the
-     * three demo tenants use `demo-*` slugs.
+     * Scenario slug — `placeholder`, `on-site-demo`, `demo-wound-care`,
+     * `demo-primary-care`, `demo-mixed`. The placeholder tenant uses
+     * `placeholder`; the on-site UAT demo tenant uses `on-site-demo`
+     * (#1301); the three demo tenants use `demo-*` slugs.
      */
     readonly scenario: string;
     /** Stable id (DynamoDB record id; also drives the canonical OHI URN). */
@@ -93,17 +137,22 @@ interface DemoTenantSpec {
     readonly workspaces: ReadonlyArray<DemoWorkspaceSpec>;
 }
 /**
- * The full demo-tenant graph. Four entries: the placeholder tenant the
- * JWT-claim fallback resolves to, plus the three v1 demo scenarios
- * (OPS-009 §"v1 scenarios"):
+ * The full demo-tenant graph. Five entries: the placeholder tenant
+ * the JWT-claim fallback resolves to, the on-site-medical UAT demo
+ * tenant every dev user lands on at sign-in (#1301), and the three
+ * v1 demo scenarios (OPS-009 §"v1 scenarios"):
  *
  *   0. Placeholder tenant — dereferences the JWT-claim fallback in
- *      `pre-token-generation.handler.ts` and acts as every dev user's
- *      `currentTenant`/`currentWorkspace` so Post-Confirmation skips
- *      default provisioning when a seeded User signs in.
- *   1. Single-workspace wound-care tenant.
- *   2. Single-workspace primary-care tenant.
- *   3. Two-workspace mixed tenant — exercises the cross-workspace
+ *      `pre-token-generation.handler.ts`. Carries no user-facing
+ *      content; exists purely so the JWT fallback resolves to a real
+ *      DynamoDB row instead of dangling.
+ *   1. On-site-medical UAT demo tenant — every seeded dev user's
+ *      `currentTenant`/`currentWorkspace`. Downstream demo-data
+ *      tickets (providers, facilities, patients) attach to this
+ *      tenant via {@link ON_SITE_DEMO_TENANT_ID}.
+ *   2. Single-workspace wound-care tenant.
+ *   3. Single-workspace primary-care tenant.
+ *   4. Two-workspace mixed tenant — exercises the cross-workspace
  *      isolation flow that single-workspace tenants cannot.
  */
 declare const DEMO_TENANT_SPECS: ReadonlyArray<DemoTenantSpec>;
@@ -146,4 +195,4 @@ declare const openhiResourceIdentifier: (params: {
  */
 declare const demoRolesForUserInTenant: (_user: DemoDevUser, _tenantId: string) => ReadonlyArray<PlatformRoleCode>;
 
-export { DEMO_PERIOD as D, OPENHI_RESOURCE_URN_SYSTEM as O, PLACEHOLDER_TENANT_ID as P, SEED_DEMO_DATA_CONSUMER_NAME as S, DEMO_TENANT_SPECS as a, DEMO_URN_SYSTEM as b, DEV_USERS as c, type DemoDevUser as d, type DemoTenantSpec as e, type DemoWorkspaceSpec as f, PLACEHOLDER_WORKSPACE_ID as g, demoMembershipId as h, demoRoleAssignmentId as i, demoRolesForUserInTenant as j, demoScenarioIdentifier as k, openhiResourceIdentifier as o };
+export { DEMO_PERIOD as D, ON_SITE_DEMO_TENANT_ID as O, PLACEHOLDER_TENANT_ID as P, SEED_DEMO_DATA_CONSUMER_NAME as S, DEMO_TENANT_SPECS as a, DEMO_URN_SYSTEM as b, DEV_USERS as c, type DemoDevUser as d, type DemoTenantSpec as e, type DemoWorkspaceSpec as f, ON_SITE_DEMO_WORKSPACE_ID as g, OPENHI_RESOURCE_URN_SYSTEM as h, PLACEHOLDER_WORKSPACE_ID as i, demoMembershipId as j, demoRoleAssignmentId as k, demoRolesForUserInTenant as l, demoScenarioIdentifier as m, openhiResourceIdentifier as o };