@orhancodestudio/ocsm-core 0.1.0-alpha.1

package/src/theme/theme-store.ts

@@ -0,0 +1,19 @@
+import type { JsonStore } from "../storage/json-store";
+import { DEFAULT_THEME, type OcsmTheme } from "./theme.types";
+
+const THEME_PATH = "ocsm/theme.json";
+
+/** Reads and writes the public-site theme from `ocsm/theme.json`. */
+export class ThemeStore {
+  constructor(private readonly json: JsonStore) {}
+
+  /** Returns the saved theme merged over defaults (so new fields always resolve). */
+  async get(): Promise<OcsmTheme> {
+    const saved = await this.json.read<Partial<OcsmTheme>>(THEME_PATH);
+    return { ...DEFAULT_THEME, ...(saved ?? {}) };
+  }
+
+  async save(theme: OcsmTheme): Promise<void> {
+    await this.json.write<OcsmTheme>(THEME_PATH, theme, "ocsm: update theme");
+  }
+}

package/src/theme/theme.types.ts

@@ -0,0 +1,53 @@
+/** Visual theme for the public site, editable from the admin panel. */
+export interface OcsmTheme {
+  primaryColor: string;
+  accentColor: string;
+  backgroundColor: string;
+  surfaceColor: string;
+  textColor: string;
+  mutedColor: string;
+  fontFamily: string;
+  headingFontFamily: string;
+  radius: string;
+  maxWidth: string;
+}
+
+/** A single editable theme field, used to render the theme editor generically. */
+export interface ThemeFieldDescriptor {
+  key: keyof OcsmTheme;
+  label: string;
+  type: "color" | "text";
+  help?: string;
+}
+
+export const DEFAULT_THEME: OcsmTheme = {
+  primaryColor: "#2563eb",
+  accentColor: "#7c3aed",
+  backgroundColor: "#ffffff",
+  surfaceColor: "#f8fafc",
+  textColor: "#0f172a",
+  mutedColor: "#64748b",
+  fontFamily: "system-ui, -apple-system, Segoe UI, Roboto, sans-serif",
+  headingFontFamily: "system-ui, -apple-system, Segoe UI, Roboto, sans-serif",
+  radius: "10px",
+  maxWidth: "720px",
+};
+
+/** Field metadata driving the theme editor UI. */
+export const THEME_FIELDS: readonly ThemeFieldDescriptor[] = [
+  { key: "primaryColor", label: "Birincil renk", type: "color" },
+  { key: "accentColor", label: "Vurgu rengi", type: "color" },
+  { key: "backgroundColor", label: "Arka plan", type: "color" },
+  { key: "surfaceColor", label: "Yüzey rengi", type: "color" },
+  { key: "textColor", label: "Metin rengi", type: "color" },
+  { key: "mutedColor", label: "Soluk metin", type: "color" },
+  {
+    key: "fontFamily",
+    label: "Gövde fontu",
+    type: "text",
+    help: "CSS font-family değeri",
+  },
+  { key: "headingFontFamily", label: "Başlık fontu", type: "text" },
+  { key: "radius", label: "Köşe yuvarlaklığı", type: "text", help: "örn. 10px" },
+  { key: "maxWidth", label: "İçerik genişliği", type: "text", help: "örn. 720px" },
+];

package/src/types/css-modules.d.ts

@@ -0,0 +1,4 @@
+declare module "*.module.css" {
+  const classes: { readonly [key: string]: string };
+  export default classes;
+}

package/src/update/check-for-updates.ts

@@ -0,0 +1,50 @@
+import { OCSM_PACKAGE_NAME, OCSM_VERSION } from "../version";
+
+export interface UpdateStatus {
+  /** The version currently installed. */
+  current: string;
+  /** The latest version published under the queried dist-tag, or `null` on failure. */
+  latest: string | null;
+  /** Whether a newer version is available. */
+  updateAvailable: boolean;
+}
+
+const REGISTRY_URL = "https://registry.npmjs.org";
+
+/**
+ * Checks the npm registry for a newer release of the OCS Management core.
+ *
+ * Powers the "update available" notice in the admin panel. Network failures are
+ * swallowed and reported as "no update available" so the panel never breaks.
+ *
+ * @param distTag - npm dist-tag to compare against (default `"alpha"`).
+ */
+export async function checkForUpdates(distTag = "alpha"): Promise<UpdateStatus> {
+  try {
+    const response = await fetch(`${REGISTRY_URL}/${OCSM_PACKAGE_NAME}`, {
+      headers: { accept: "application/vnd.npm.install-v1+json" },
+      // Cache for an hour to avoid hammering the registry on every render.
+      next: { revalidate: 3600 },
+    } as RequestInit);
+
+    if (!response.ok) return noUpdate();
+
+    const data = (await response.json()) as {
+      "dist-tags"?: Record<string, string>;
+    };
+    const latest =
+      data["dist-tags"]?.[distTag] ?? data["dist-tags"]?.latest ?? null;
+
+    return {
+      current: OCSM_VERSION,
+      latest,
+      updateAvailable: latest !== null && latest !== OCSM_VERSION,
+    };
+  } catch {
+    return noUpdate();
+  }
+}
+
+function noUpdate(): UpdateStatus {
+  return { current: OCSM_VERSION, latest: null, updateAvailable: false };
+}

package/src/update/index.ts

@@ -0,0 +1 @@
+export { checkForUpdates, type UpdateStatus } from "./check-for-updates";

package/src/users/index.ts

@@ -0,0 +1,6 @@
+export type { OcsmUser, PublicUser, UsersFile } from "./user.types";
+export {
+  type CreateUserInput,
+  type UpdateUserInput,
+  UserStore,
+} from "./user-store";

package/src/users/user-store.ts

@@ -0,0 +1,120 @@
+import { randomUUID } from "node:crypto";
+import { hashPassword } from "../auth/password";
+import { SYSTEM_ADMIN_ROLE_ID } from "../roles/role.types";
+import type { JsonStore } from "../storage/json-store";
+import type { OcsmUser, PublicUser, UsersFile } from "./user.types";
+
+const USERS_PATH = "ocsm/users.json";
+
+export interface CreateUserInput {
+  username: string;
+  name: string;
+  role: string;
+  password: string;
+}
+
+export interface UpdateUserInput {
+  name: string;
+  role: string;
+  /** When provided and non-empty, the password is changed. */
+  password?: string;
+}
+
+/** Manages users persisted to `ocsm/users.json`. */
+export class UserStore {
+  constructor(private readonly json: JsonStore) {}
+
+  async count(): Promise<number> {
+    return (await this.all()).length;
+  }
+
+  /** Lists users without password hashes. */
+  async list(): Promise<PublicUser[]> {
+    return (await this.all()).map(toPublicUser);
+  }
+
+  /** Distinct role ids currently assigned to users. */
+  async assignedRoleIds(): Promise<string[]> {
+    return [...new Set((await this.all()).map((u) => u.role))];
+  }
+
+  async findByUsername(username: string): Promise<OcsmUser | null> {
+    const normalized = username.trim().toLowerCase();
+    return (
+      (await this.all()).find((u) => u.username.toLowerCase() === normalized) ??
+      null
+    );
+  }
+
+  async findById(id: string): Promise<OcsmUser | null> {
+    return (await this.all()).find((u) => u.id === id) ?? null;
+  }
+
+  async create(input: CreateUserInput): Promise<PublicUser> {
+    const users = await this.all();
+    const username = input.username.trim();
+    if (!username) throw new Error("OCSM: kullanıcı adı boş olamaz");
+    if (users.some((u) => u.username.toLowerCase() === username.toLowerCase())) {
+      throw new Error(`OCSM: "${username}" kullanıcı adı zaten kayıtlı`);
+    }
+
+    const user: OcsmUser = {
+      id: randomUUID(),
+      username,
+      name: input.name.trim() || username,
+      role: input.role,
+      passwordHash: hashPassword(input.password),
+      createdAt: new Date().toISOString(),
+    };
+    await this.save([...users, user]);
+    return toPublicUser(user);
+  }
+
+  async update(id: string, input: UpdateUserInput): Promise<void> {
+    const users = await this.all();
+    const target = users.find((u) => u.id === id);
+    if (!target) throw new Error("OCSM: kullanıcı bulunamadı");
+
+    if (
+      target.role === SYSTEM_ADMIN_ROLE_ID &&
+      input.role !== SYSTEM_ADMIN_ROLE_ID &&
+      countAdmins(users) <= 1
+    ) {
+      throw new Error("OCSM: son yöneticinin rolü değiştirilemez");
+    }
+
+    target.name = input.name.trim() || target.name;
+    target.role = input.role;
+    if (input.password && input.password.length > 0) {
+      target.passwordHash = hashPassword(input.password);
+    }
+    await this.save(users);
+  }
+
+  async remove(id: string): Promise<void> {
+    const users = await this.all();
+    const target = users.find((u) => u.id === id);
+    if (!target) return;
+    if (target.role === SYSTEM_ADMIN_ROLE_ID && countAdmins(users) <= 1) {
+      throw new Error("OCSM: son yönetici silinemez");
+    }
+    await this.save(users.filter((u) => u.id !== id));
+  }
+
+  private async all(): Promise<OcsmUser[]> {
+    return (await this.json.readOr<UsersFile>(USERS_PATH, { users: [] })).users;
+  }
+
+  private async save(users: OcsmUser[]): Promise<void> {
+    await this.json.write<UsersFile>(USERS_PATH, { users }, "ocsm: update users");
+  }
+}
+
+function toPublicUser(user: OcsmUser): PublicUser {
+  const { passwordHash: _passwordHash, ...rest } = user;
+  return rest;
+}
+
+function countAdmins(users: OcsmUser[]): number {
+  return users.filter((u) => u.role === SYSTEM_ADMIN_ROLE_ID).length;
+}

package/src/users/user.types.ts

@@ -0,0 +1,18 @@
+/** A stored user (includes the password hash — never expose to the client). */
+export interface OcsmUser {
+  id: string;
+  username: string;
+  name: string;
+  /** References a role id from the role store. */
+  role: string;
+  passwordHash: string;
+  createdAt: string;
+}
+
+/** A user without sensitive fields, safe to render. */
+export type PublicUser = Omit<OcsmUser, "passwordHash">;
+
+/** On-disk shape of `ocsm/users.json`. */
+export interface UsersFile {
+  users: OcsmUser[];
+}

package/src/version.ts

@@ -0,0 +1,11 @@
+/**
+ * The installed OCS Management core version.
+ *
+ * Kept in sync with this package's `package.json` `version` field. Consumed by the
+ * update checker ({@link ./update/check-for-updates}) and the admin "update available"
+ * notice.
+ */
+export const OCSM_VERSION = "0.1.0-alpha.1";
+
+/** The published npm package name for the OCS Management core. */
+export const OCSM_PACKAGE_NAME = "@orhancodestudio/ocsm-core";