npm - @salesforce/ui-bundle-template-app-react-sample-b2x - Versions diffs - 1.119.0 → 1.119.2 - Mend

@salesforce/ui-bundle-template-app-react-sample-b2x 1.119.0 → 1.119.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (7) hide show

package/dist/AGENT.md +82 -23
package/dist/CHANGELOG.md +16 -0
package/dist/README.md +433 -40
package/dist/force-app/main/default/uiBundles/propertyrentalapp/package.json +3 -3
package/dist/package-lock.json +2 -2
package/dist/package.json +1 -1
package/package.json +1 -1

package/dist/AGENT.md CHANGED Viewed

@@ -45,7 +45,7 @@ Replace `<appName>` with the actual folder name found under `uiBundles/`. The so
     └── data/                            # Sample data for import (optional)
 ```
-## Web application source structure
+## UI Bundle source structure
 All application code lives inside the UI Bundle's `src/` directory:
@@ -95,9 +95,11 @@ Used for SFDX metadata tooling. Scripts here target LWC/Aura, not the React app.
 **One-time org setup:** `node scripts/org-setup.mjs --target-org <alias>` runs login, deploy, permset assignment, data import, GraphQL schema/codegen, UI Bundle build, and optionally the dev server. Use `--help` for all flags.
-### 2. Web app directory (primary workspace)
+### 2. UI Bundle directory (primary workspace)
-**Always `cd` into the UI Bundle directory for dev/build/lint/test:**
+**ALL dev, build, lint, and test commands MUST be run from inside the UI Bundle directory (`<sfdx-source>/uiBundles/<appName>/`). Never run them from the project root.**
+Resolve the correct path from `sfdx-project.json` before running any command. Do not hardcode the path.
 | Command | Purpose |
 |---------|---------|
@@ -109,13 +111,17 @@ Used for SFDX metadata tooling. Scripts here target LWC/Aura, not the React app.
 | `npm run graphql:codegen` | Generate GraphQL types from schema |
 | `npm run graphql:schema` | Fetch GraphQL schema from org |
-**Before completing any change:** run `npm run build` and `npm run lint` from the UI Bundle directory. Both must pass with zero errors.
+**After every task, without exception:**
+1. Run `npm run build` from the UI Bundle directory — must pass with zero errors.
+2. Run `npm run lint` from the UI Bundle directory — must pass with zero errors.
+3. Run `npm run dev` to start the dev server so the user can verify the result.
+Do not consider a task complete until all three steps have been run successfully.
 ## Development conventions
 ### UI
-- **Component library:** shadcn/ui primitives in `src/components/ui/`. Always use these over raw HTML equivalents.
+- **Component library:** shadcn/ui primitives in `src/components/ui/`. Always use these over raw HTML equivalents. **Before importing any component, verify both the file exists in `src/components/ui/` AND the named export exists within that file.** Never assume a component or export is available — read the file to confirm the exact exports before importing.
 - **Styling:** Tailwind CSS only. No inline `style={{}}`. Use `cn()` from `@/lib/utils` for conditional classes.
 - **Icons:** Lucide React.
 - **Path alias:** `@/*` maps to `src/*`. Use it for all imports.
@@ -140,6 +146,10 @@ Used for SFDX metadata tooling. Scripts here target LWC/Aura, not the React app.
 ### Data access (Salesforce)
+**Before writing any code that connects to Salesforce, you MUST invoke the `using-ui-bundle-salesforce-data` skill. Do not write any data access code without consulting it first.**
+This applies to: GraphQL queries/mutations, REST calls, SDK initialization, custom hooks that fetch data, or any code that imports from `@salesforce/sdk-data`.
 - **All data access uses the Data SDK** (`@salesforce/sdk-data`) via `createDataSDK()`.
 - **Never** use `fetch()` or `axios` directly for Salesforce data.
 - **GraphQL is preferred** for record operations (`sdk.graphql`). Use `sdk.fetch` only when GraphQL cannot cover the case (UI API REST, Apex REST, Connect REST, Einstein LLM).
@@ -149,25 +159,74 @@ Used for SFDX metadata tooling. Scripts here target LWC/Aura, not the React app.
 - Use `__SF_API_VERSION__` global for API version in REST calls.
 - **Blocked APIs:** Enterprise REST query endpoint (`/query` with SOQL), `@AuraEnabled` Apex, Chatter API.
+#### Permitted APIs
+| API | Method | Endpoints / Use Case |
+|-----|--------|----------------------|
+| GraphQL | `sdk.graphql` | All record queries and mutations via `uiapi { }` namespace |
+| UI API REST | `sdk.fetch` | `/services/data/v{ver}/ui-api/records/{id}` |
+| Apex REST | `sdk.fetch` | `/services/apexrest/{resource}` |
+| Connect REST | `sdk.fetch` | `/services/data/v{ver}/connect/...` |
+| Einstein LLM | `sdk.fetch` | `/services/data/v{ver}/einstein/llm/prompt/generations` |
+Any endpoint not listed above is not permitted.
+#### GraphQL non-negotiable rules
+1. **Schema is the single source of truth** — every entity and field name must be confirmed via the schema search script before use. Never guess.
+2. **`@optional` on all record fields** — FLS causes entire queries to fail if any field is inaccessible. Apply to every scalar, parent, and child relationship field.
+3. **Correct mutation syntax** — mutations wrap under `uiapi(input: { allOrNone: true/false })`, not bare `uiapi { ... }`.
+4. **Explicit `first:` in every query** — omitting it silently defaults to 10 records. Always include `pageInfo { hasNextPage endCursor }` for paginated queries.
+5. **SOQL-derived execution limits** — max 10 subqueries per request, max 5 levels of child-to-parent traversal, max 1 level parent-to-child, max 2,000 records per subquery.
+6. **HTTP 200 does not mean success** — Salesforce returns HTTP 200 even on failure. Always check the `errors` array in the response body.
+#### GraphQL inline queries
+Must use the `gql` template tag from `@salesforce/sdk-data` — plain template strings bypass `@graphql-eslint` schema validation. For complex queries, use external `.graphql` files with codegen.
+#### Current user info
+Use GraphQL (`uiapi { currentUser { Id Name { value } } }`), not Chatter (`/chatter/users/me`).
+#### Schema file (`schema.graphql`)
+The `schema.graphql` file at the SFDX project root is the source of truth for all entity and field name lookups. It is 265K+ lines — never open or parse it directly. Use the schema search script instead.
+- **Generate/refresh:** Run `npm run graphql:schema` from the UI bundle directory
+- **When to regenerate:** After any metadata deployment that changes objects, fields, or permission sets
+- **Custom objects** only appear in the schema after metadata deployment AND permission set assignment
+- **After regenerating:** Always re-run `npm run graphql:codegen` and `npm run build` (schema changes may affect generated types)
 ### CSP trusted sites
 Any external domain the app calls (APIs, CDNs, fonts) must have a `.cspTrustedSite-meta.xml` file under `<sfdx-source>/cspTrustedSites/`. Unregistered domains are blocked at runtime. Each subdomain needs its own entry. URLs must be HTTPS with no trailing slash, no path, and no wildcards.
+## Building and launching the app
+All build, dev, and test commands run from the UI Bundle directory. Before running any command, read the UI Bundle's `package.json` to confirm available scripts — do not assume script names.
+Typical scripts found in the UI Bundle:
+| Command | Purpose |
+|---------|---------|
+| `npm run build` | TypeScript check + Vite production build |
+| `npm run dev` | Start Vite dev server |
+| `npm run lint` | ESLint |
+| `npm run test` | Vitest unit tests |
+| `npm run graphql:codegen` | Generate GraphQL types |
+| `npm run graphql:schema` | Fetch GraphQL schema from org |
+If dependencies have not been installed yet, run `npm install` in the UI Bundle directory first. Alternatively, run `npm run sf-project-setup` from the project root — it resolves the UI Bundle directory automatically and runs install, build, and dev in sequence.
+**After any JavaScript or TypeScript change, run `npm run build` to validate the change.** If the build fails, read the error output, identify the cause, fix it, and run `npm run build` again. Do not move on until the build passes.
 ## Deploying
 **Deployment order matters.** Metadata (objects, permission sets) must be deployed before fetching the GraphQL schema. After any metadata deployment that changes objects, fields, or permissions, re-run schema fetch and codegen.
-**Recommended sequence:**
+**Deployment steps:**
 1. Authenticate to the target org
 2. Build the UI Bundle (`npm run build` in the UI Bundle directory)
 3. Deploy metadata (`sf project deploy start --source-dir <packageDir> --target-org <alias>`)
-4. Assign permission sets
-5. Import data (only with user confirmation)
-6. Fetch GraphQL schema + run codegen (`npm run graphql:schema && npm run graphql:codegen`)
-7. Rebuild the UI Bundle (schema changes may affect generated types)
-**Or use the one-time org setup:** `node scripts/org-setup.mjs --target-org <alias>`
 ```bash
 # Deploy UI Bundle only
@@ -177,17 +236,17 @@ sf project deploy start --source-dir <sfdx-source>/ui-bundles --target-org <alia
 sf project deploy start --source-dir <packageDir> --target-org <alias>
 ```
-## Skills
+**Do not open the app after deployment.** Do not run `sf org open`, do not guess the runtime URL, and do not construct paths like `/s/<appName>`. Deployment is complete when the `sf project deploy start` command succeeds.
-Check for available skills before implementing any of the following:
+## Post-deployment org setup
-| Area | When to consult |
-|------|----------------|
-| UI generation | Building pages, components, modifying header/footer/layout |
-| Salesforce data access | Reading/writing records, GraphQL queries, REST calls |
-| Metadata and deployment | Scaffolding apps, configuring CSP, deployment sequencing |
-| Feature installation | Before building something from scratch — check if a pre-built feature exists |
-| File upload | Adding file upload with Salesforce ContentVersion |
-| Agentforce conversation | Adding or modifying the Agentforce chat widget |
+These steps apply after a fresh deployment to configure the org. They are not part of routine deployment.
+1. Assign permission sets
+2. Import data (only with user confirmation)
+3. Fetch GraphQL schema + run codegen (`npm run graphql:schema && npm run graphql:codegen`)
+4. Rebuild the UI Bundle (`npm run build` — schema changes may affect generated types)
+## Skills
-Skills are the authoritative source for detailed patterns, constraints, and code examples in each area. This file provides project-level orientation; skills provide implementation depth.
+Before starting any task, check whether a relevant skill exists. If one does, invoke it before writing any code or making any implementation decision. Skills are the authoritative source for patterns, constraints, and code examples.

package/dist/CHANGELOG.md CHANGED Viewed

@@ -3,6 +3,22 @@
 All notable changes to this project will be documented in this file.
 See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
+## [1.119.2](https://github.com/salesforce-experience-platform-emu/webapps/compare/v1.119.1...v1.119.2) (2026-03-31)
+**Note:** Version bump only for package @salesforce/ui-bundle-template-base-sfdx-project
+## [1.119.1](https://github.com/salesforce-experience-platform-emu/webapps/compare/v1.119.0...v1.119.1) (2026-03-31)
+**Note:** Version bump only for package @salesforce/ui-bundle-template-base-sfdx-project
 # [1.119.0](https://github.com/salesforce-experience-platform-emu/webapps/compare/v1.118.4...v1.119.0) (2026-03-31)
 **Note:** Version bump only for package @salesforce/ui-bundle-template-base-sfdx-project

package/dist/README.md CHANGED Viewed

@@ -2,51 +2,180 @@
 A property rental sample React UI Bundle for Salesforce Experience Cloud. Demonstrates property listings, maintenance requests, and a dashboard with an app shell designed for external-facing deployment. Built with React, Vite, TypeScript, and Tailwind/shadcn.
-## What's included
+## Table of Contents
+1. [What's Included](#whats-included)
+2. [Prerequisites](#prerequisites)
+3. [Quick Start (Automated)](#quick-start-automated)
+4. [Step-by-Step Setup](#step-by-step-setup)
+   - [1. Install Dependencies](#1-install-dependencies)
+   - [2. Authenticate Your Org](#2-authenticate-your-org)
+   - [3. Deploy Metadata](#3-deploy-metadata)
+   - [4. Assign Permission Sets](#4-assign-permission-sets)
+   - [5. Import Sample Data](#5-import-sample-data)
+   - [6. Generate GraphQL Types](#6-generate-graphql-types)
+   - [7. Rebuild the UI Bundle](#7-rebuild-the-ui-bundle)
+   - [8. Deploy the UI Bundle](#8-deploy-the-ui-bundle)
+5. [Org Configuration](#org-configuration)
+   - [Step 1: Assign a Role to Your Admin User](#step-1-assign-a-role-to-your-admin-user)
+   - [Step 2: Create and Configure the Community Profile](#step-2-create-and-configure-the-community-profile)
+   - [Step 3: Configure the Experience Cloud Site](#step-3-configure-the-experience-cloud-site)
+   - [Step 4: Configure the Guest User Profile](#step-4-configure-the-guest-user-profile)
+   - [Step 5: Create Criteria-Based Sharing Rules for Guest Access](#step-5-create-criteria-based-sharing-rules-for-guest-access)
+6. [Local Development](#local-development)
+7. [Resources](#resources)
+---
+## What's Included
 | Path                                                  | Description                                                                                                                                                                                                                                                                                                                                                       |
 | ----------------------------------------------------- | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
 | `force-app/main/default/uiBundles/propertyrentalapp/` | React UI Bundle (source, config, tests)                                                                                                                                                                                                                                                                                                                           |
-| `force-app/main/default/objects/`                     | 17 custom objects — Agent\_\_c, Application\_\_c, KPI_Snapshot\_\_c, Lease\_\_c, Maintenance_Request\_\_c, Maintenance_Worker\_\_c, Notification\_\_c, Payment\_\_c, Property\_\_c, Property_Cost\_\_c, Property_Feature\_\_c, Property_Image\_\_c, Property_Listing\_\_c, Property_Management_Company\_\_c, Property_Owner\_\_c, Property_Sale\_\_c, Tenant\_\_c |
+| `force-app/main/default/objects/`                     | 17 custom objects — `Agent__c`, `Application__c`, `KPI_Snapshot__c`, `Lease__c`, `Maintenance_Request__c`, `Maintenance_Worker__c`, `Notification__c`, `Payment__c`, `Property__c`, `Property_Cost__c`, `Property_Feature__c`, `Property_Image__c`, `Property_Listing__c`, `Property_Management_Company__c`, `Property_Owner__c`, `Property_Sale__c`, `Tenant__c` |
 | `force-app/main/default/layouts/`                     | Page layouts for each custom object                                                                                                                                                                                                                                                                                                                               |
-| `force-app/main/default/permissionsets/`              | `Property_Management_Access` permission set                                                                                                                                                                                                                                                                                                                       |
-| `force-app/main/default/classes/`                     | Apex classes — `MaintenanceRequestListAction`, `MaintenanceRequestUpdatePriorityAction`                                                                                                                                                                                                                                                                           |
-| `force-app/main/default/cspTrustedSites/`             | CSP trusted sites for external resources (Google Fonts, Pexels, Unsplash, GitHub Avatars)                                                                                                                                                                                                                                                                         |
+| `force-app/main/default/permissionsets/`              | `Property_Management_Access` (full admin access) and `Tenant_Maintenance_Access` (scoped tenant access)                                                                                                                                                                                                                                                           |
+| `force-app/main/default/classes/`                     | Apex classes — `MaintenanceRequestTriggerHandler`, `TenantTriggerHandler`, `UIBundleAuthUtils`, `UIBundleChangePassword`, `UIBundleForgotPassword`, `UIBundleLogin`, `UIBundleAppRegistration`                                                                                                                                                                    |
+| `force-app/main/default/triggers/`                    | Apex triggers — `MaintenanceRequestTrigger`, `TenantTrigger`                                                                                                                                                                                                                                                                                                      |
+| `force-app/main/default/cspTrustedSites/`             | CSP trusted sites for external resources (Google Fonts, Pexels, Unsplash, GitHub Avatars, OpenStreetMap, Open-Meteo)                                                                                                                                                                                                                                              |
 | `force-app/main/default/data/`                        | Sample data (JSON) for all objects, importable via `sf data import tree`                                                                                                                                                                                                                                                                                          |
 | `force-app/main/default/digitalExperienceConfigs/`    | Experience Cloud site configuration                                                                                                                                                                                                                                                                                                                               |
 | `force-app/main/default/digitalExperiences/`          | Experience Cloud site definition                                                                                                                                                                                                                                                                                                                                  |
-| `force-app/main/default/networks/`                    | Experience Cloud network                                                                                                                                                                                                                                                                                                                                          |
-| `force-app/main/default/sites/`                       | Salesforce site                                                                                                                                                                                                                                                                                                                                                   |
+| `force-app/main/default/networks/`                    | Experience Cloud network metadata                                                                                                                                                                                                                                                                                                                                 |
+| `force-app/main/default/sites/`                       | Salesforce Sites configuration                                                                                                                                                                                                                                                                                                                                    |
+---
+## Prerequisites
+Before you begin, ensure the following are in place.
+### Tools
+| Tool                                                                          | Minimum Version    | Install                             |
+| ----------------------------------------------------------------------------- | ------------------ | ----------------------------------- |
+| [Salesforce CLI (`sf`)](https://developer.salesforce.com/tools/salesforcecli) | v2+                | `npm install -g @salesforce/cli`    |
+| [Node.js](https://nodejs.org/)                                                | v22+               | [nodejs.org](https://nodejs.org/)   |
+| [Git](https://git-scm.com/)                                                   | Any recent version | [git-scm.com](https://git-scm.com/) |
+Verify your Salesforce CLI version with:
+```bash
+sf --version
+```
+### Salesforce Org Requirements
+This project requires a Salesforce org with the following features and licenses. **Developer Edition orgs do not include these by default.** Use a sandbox, an org configured with add-ons, or request a pre-configured org from your Salesforce account team.
+- **Digital Experiences (Experience Cloud) enabled** — required to deploy and run the Experience Cloud site. To verify, go to **Setup > Digital Experiences > Settings** and confirm "Enable Digital Experiences" is checked.
+- **Customer Community** or **Customer Community Plus** user licenses — required to create community (portal) users. Customer Community Plus is recommended if you need record-level sharing via sharing rules.
+- **Salesforce Sites enabled** — required for guest user access.
-## Getting started
+> **Note:** If Digital Experiences is not yet enabled in your org, go to **Setup > Digital Experiences > Settings**, check "Enable Digital Experiences", set a domain name, and save. This action cannot be undone.
-Navigate to the UI Bundle and install dependencies:
+---
+## Quick Start (Automated)
+Two npm scripts at the project root streamline getting started and deployment.
+**`npm run sf-project-setup`** — installs the UI Bundle dependencies, builds the app, and starts the dev server (see [Local Development](#local-development)).
+**`npm run setup`** — automates the full setup: login, deploy metadata, assign permission sets, import sample data, fetch the GraphQL schema, run codegen, build the UI Bundle, and optionally launch the dev server:
+```bash
+npm run setup -- --target-org <alias>
+```
+Replace `<alias>` with your target org alias or username. Running without flags presents an interactive step picker. Pass `--yes` to skip it and run all steps immediately:
+```bash
+npm run setup -- --target-org <alias> --yes
+```
+### Common Options
+| Option                    | Description                                                                          |
+| ------------------------- | ------------------------------------------------------------------------------------ |
+| `--skip-login`            | Skip browser login (auto-skipped if org is already connected)                        |
+| `--skip-deploy`           | Skip the metadata deploy step                                                        |
+| `--skip-permset`          | Skip permission set assignment                                                       |
+| `--skip-data`             | Skip data preparation and import                                                     |
+| `--skip-graphql`          | Skip GraphQL schema fetch and codegen                                                |
+| `--skip-ui-bundle-build`  | Skip `npm install` and UI Bundle build                                               |
+| `--skip-dev`              | Do not launch the dev server at the end                                              |
+| `--permset-name <name>`   | Assign only a specific permission set (repeatable). Default: all sets in the project |
+| `--ui-bundle-name <name>` | UI Bundle folder name under `uiBundles/` (default: auto-detected)                    |
+| `-y, --yes`               | Skip interactive step picker and run all enabled steps immediately                   |
+For a full list of options:
+```bash
+npm run setup -- --help
+```
+> **After the automated setup completes**, proceed to [Org Configuration](#org-configuration) for the manual steps that cannot be automated via CLI (profile cloning, site member configuration, guest user setup, and publishing the Experience Cloud site).
+---
+## Step-by-Step Setup
+Use this section if you prefer to run each step manually, or if the automated script is not available.
+### 1. Install Dependencies
+Install root-level project dependencies:
+```bash
+npm install
+```
+Install the UI Bundle dependencies and build it:
 ```bash
 cd force-app/main/default/uiBundles/propertyrentalapp
 npm install
-npm run dev
+npm run build
+cd -
 ```
-Opens at http://localhost:5173 by default. For build and test instructions, see the [UI Bundle README](force-app/main/default/uiBundles/propertyrentalapp/README.md).
+This produces the static bundle artifacts that are packaged into the Salesforce metadata. Having them built now means any deploy option in [Step 3](#3-deploy-metadata) is ready to run without an additional build step.
-## Deploy
+### 2. Authenticate Your Org
-### Deploy everything (metadata + Experience Cloud site + UI Bundle)
+Log in to your target org using the Salesforce CLI. This opens a browser window for OAuth authentication:
 ```bash
-cd force-app/main/default/uiBundles/propertyrentalapp && npm install && npm run build && cd -
-sf project deploy start --source-dir force-app --target-org <alias>
+sf org login web --alias <alias>
 ```
-### Deploy the UI Bundle only
+To verify the login was successful:
 ```bash
-cd force-app/main/default/uiBundles/propertyrentalapp && npm install && npm run build && cd -
-sf project deploy start --source-dir force-app/main/default/ui-bundles --target-org <alias>
+sf org display --target-org <alias>
 ```
-### Deploy metadata only (objects, layouts, permission sets, Apex classes)
+If you are working with a sandbox, use:
+```bash
+sf org login web --alias <alias> --instance-url https://test.salesforce.com
+```
+### 3. Deploy Metadata
+#### Option A: Deploy Everything (metadata + Experience Cloud site + UI Bundle)
+Build the UI Bundle first, then deploy all source directories in a single command:
+```bash
+cd force-app/main/default/uiBundles/propertyrentalapp && npm run build && cd -
+sf project deploy start --source-dir force-app --target-org <alias>
+```
+#### Option B: Deploy Metadata Only (objects, layouts, permission sets, Apex)
+Use this approach for an initial deploy to verify metadata before deploying the Experience Cloud site:
 ```bash
 sf project deploy start \
@@ -54,10 +183,12 @@ sf project deploy start \
   --source-dir force-app/main/default/layouts \
   --source-dir force-app/main/default/permissionsets \
   --source-dir force-app/main/default/classes \
+  --source-dir force-app/main/default/triggers \
+  --source-dir force-app/main/default/cspTrustedSites \
   --target-org <alias>
 ```
-### Deploy Experience Cloud site only
+#### Option C: Deploy Experience Cloud Site Only
 ```bash
 sf project deploy start \
@@ -68,45 +199,307 @@ sf project deploy start \
   --target-org <alias>
 ```
-Replace `<alias>` with your target org alias.
+#### Option D: Deploy the UI Bundle Only
+```bash
+cd force-app/main/default/uiBundles/propertyrentalapp && npm run build && cd -
+sf project deploy start --source-dir force-app/main/default/uiBundles --target-org <alias>
+```
+> **Deployment order matters.** Deploy metadata (Option B) before deploying the Experience Cloud site (Option C). The site configuration depends on the custom objects and classes being present in the org.
+### 4. Assign Permission Sets
+Two permission sets are included in this project:
+| Permission Set               | Purpose                                                                                                 | Assign To                       |
+| ---------------------------- | ------------------------------------------------------------------------------------------------------- | ------------------------------- |
+| `Property_Management_Access` | Full CRUD access to all custom objects. Intended for property managers and admin users.                 | Internal users managing the app |
+| `Tenant_Maintenance_Access`  | Scoped read/write access for tenants. Allows creating and updating their own maintenance requests only. | Tenant community users          |
-## Import sample data
+Assign permission sets using the CLI:
+```bash
+# Assign Property_Management_Access to a specific user
+sf org assign permset --name Property_Management_Access --on-behalf-of <username> --target-org <alias>
+# Assign Tenant_Maintenance_Access to a tenant user
+sf org assign permset --name Tenant_Maintenance_Access --on-behalf-of <username> --target-org <alias>
+```
+To assign to multiple users, repeat the command for each user, or use the automated script which assigns all permission sets to the running user by default.
+### 5. Import Sample Data
+Once the metadata has been successfully deployed:
 ```bash
 sf data import tree --plan force-app/main/default/data/data-plan.json --target-org <alias>
 ```
-## Using org-setup.mjs
+The data plan imports records in dependency order: Contacts, Agents, Maintenance Workers, Properties, Tenants, Applications, Maintenance Requests, Notifications, Property Management Companies, Property Owners, Leases, Property Sales, Property Costs, Payments, KPI Snapshots, Property Listings, Property Images, and Property Features.
+> **Note:** If you re-run the import, duplicate records will be created. Wipe existing records first or use the `--upsert` flag if your plan supports it.
+### 6. Generate GraphQL Types
+After metadata is deployed, generate the GraphQL schema and TypeScript types for the UI Bundle. These are used to provide type-safe queries against the Salesforce GraphQL API.
+```bash
+cd force-app/main/default/uiBundles/propertyrentalapp
+npm run graphql:schema   # Fetches schema from org → outputs schema.graphql
+npm run graphql:codegen  # Generates TypeScript types → updates src/api/graphql-operations-types.ts
+cd -
+```
+> **Prerequisite:** The org must be authenticated and metadata must already be deployed before running these commands, as the schema is generated from the org's live metadata.
+### 7. Rebuild the UI Bundle
+Step 6 updates the generated GraphQL types in the UI Bundle source. Rebuild the app to compile those changes into the bundle before deploying:
+```bash
+cd force-app/main/default/uiBundles/propertyrentalapp
+npm run build
+cd -
+```
-When this app is built (e.g. from the monorepo or from a published package), an `org-setup.mjs` script is included at the project root. It runs the full setup in one go: login (if needed), deploy metadata, assign the `Property_Management_Access` permission set, prepare and import sample data, fetch GraphQL schema and run codegen, build the UI Bundle, and optionally start the dev server.
+### 8. Deploy the UI Bundle
-Run from the **project root** (the directory that contains `force-app/`, `sfdx-project.json`, and `org-setup.mjs`):
+Once the build is complete, deploy the UI Bundle to your org:
 ```bash
-node org-setup.mjs --target-org <alias>
+sf project deploy start --source-dir force-app/main/default/uiBundles --target-org <alias>
 ```
-Common options:
+---
+## Org Configuration
+The following steps must be completed manually in the Salesforce Setup UI. They configure Experience Cloud, user profiles, and data sharing for guest and community users. Complete these steps **after** the metadata and UI Bundle have been deployed.
+> **License requirement:** Your org must have **Customer Community** or **Customer Community Plus** user licenses available before you can complete these steps. Customer Community Plus licenses are required if you need ownership-based record sharing (Private OWD with sharing rules). Verify available licenses at **Setup > Company Settings > Company Information**, in the "User Licenses" section.
+---
+### Step 1: Assign a Role to Your Admin User
+Salesforce requires that the org's admin user has a role assigned before Experience Cloud sites can be created or managed. If your admin user already has a role, skip this step.
+1. Go to **Setup > Users > Roles**.
+2. Click **Set Up Roles**.
+3. Click **Add Role**. Provide a label (e.g., `CEO`) and save.
+4. From the role hierarchy, click the role you just created, then click **Assign Users to Role**.
+5. Add your system administrator user and click **Save**.
+> **Why this matters:** Salesforce prevents users without a role in the hierarchy from owning Experience Cloud sites. This is a platform-level requirement, not specific to this app.
+---
+### Step 2: Create and Configure the Community Profile
+Community users require a profile that is based on one of the standard community profile templates. You will clone one of these templates and configure its permissions for this app.
+#### 2a. Clone the Base Profile
+1. Go to **Setup > Users > Profiles**.
+2. Locate either **Customer Community User** or **Customer Community Plus User**.
+   - Choose **Customer Community Plus User** if you need ownership-based record-level sharing (recommended).
+3. Click **Clone** next to the profile. Give it a descriptive name such as `Property Rental Tenant`.
+4. Click **Save**.
+#### 2b. Edit the Cloned Profile
+Open the newly cloned profile and configure the following settings.
+**Administrative Permissions:**
+| Permission  | Setting |
+| ----------- | ------- |
+| API Enabled | Checked |
+**Custom Object Permissions:**
+Set the following object-level access. After saving, also review field-level security for each object to ensure all relevant fields are readable.
+| Object                                                           | Read | Create | Edit | Delete |
+| :--------------------------------------------------------------- | :--: | :----: | :--: | :----: |
+| Agents (`Agent__c`)                                              |  ✓   |        |      |        |
+| Applications (`Application__c`)                                  |  ✓   |   ✓    |  ✓   |   ✓    |
+| KPI Snapshots (`KPI_Snapshot__c`)                                |  ✓   |        |      |        |
+| Leases (`Lease__c`)                                              |  ✓   |        |      |        |
+| Maintenance Requests (`Maintenance_Request__c`)                  |  ✓   |   ✓    |  ✓   |   ✓    |
+| Maintenance Workers (`Maintenance_Worker__c`)                    |  ✓   |        |  ✓   |        |
+| Notifications (`Notification__c`)                                |  ✓   |        |      |        |
+| Payments (`Payment__c`)                                          |  ✓   |        |      |        |
+| Properties (`Property__c`)                                       |  ✓   |        |      |        |
+| Property Costs (`Property_Cost__c`)                              |  ✓   |        |      |        |
+| Property Features (`Property_Feature__c`)                        |  ✓   |        |      |        |
+| Property Images (`Property_Image__c`)                            |  ✓   |        |      |        |
+| Property Listings (`Property_Listing__c`)                        |  ✓   |        |      |        |
+| Property Management Companies (`Property_Management_Company__c`) |  ✓   |        |      |        |
+| Property Owners (`Property_Owner__c`)                            |  ✓   |        |      |        |
+| Property Sales (`Property_Sale__c`)                              |  ✓   |        |      |        |
+| Tenants (`Tenant__c`)                                            |  ✓   |        |      |        |
+**Apex Class Access:**
+Scroll to the **Enabled Apex Class Access** section and add the following classes. These classes handle authentication flows called by the UI Bundle:
+- `UIBundleAuthUtils`
+- `UIBundleChangePassword`
+- `UIBundleForgotPassword`
+> **Note:** `MaintenanceRequestTriggerHandler` and `TenantTriggerHandler` are trigger handler classes that run in system context when DML operations are performed. They do not need to be explicitly enabled in community profiles.
+#### 2c. Configure View All for Property, Property Listing, Maintenance Worker
+Tenants need to see all available properties and listings, not just records they own. Enable **View All** on these three objects for the community profile:
+1. Go to **Setup > Object Manager**.
+2. Search for and open **Property**.
+3. Click **Object Access** in the left navigation.
+4. Set the profile's access to allow viewing all records.
+5. Repeat for **Property Listing** and **Maintenance Worker**.
+- **Note**: the access for the **Maintenance Worker** is required for the `MaintenanceRequestTriggerHandler` to auto assign a worker on submission
+#### 2d. Configure Field Level Security for the Application
+1. Go to **Setup > Object Manager**.
+2. Search for and open **Application**.
+3. Click **Fields and Relationships** in the left navigation.
+4. Select the `References__c` field, then click **Set Field-Level Security**.
+5. Enable the field to be "Visible" to the community profile.
+6. Click **Save**.
+7. Repeat for the following fields:
+- `Property__c`
+- `Employment__c`
+- `User__c`
+- `Status__c`
+- `Start_Date__c`
+---
-| Option                   | Description                                                      |
-| ------------------------ | ---------------------------------------------------------------- |
-| `--skip-login`           | Skip browser login (org already authenticated)                   |
-| `--skip-data`            | Skip data preparation and import                                 |
-| `--skip-graphql`         | Skip GraphQL schema fetch and codegen                            |
-| `--skip-ui-bundle-build` | Skip `npm install` and UI Bundle build                           |
-| `--skip-dev`             | Do not start the dev server at the end                           |
-| `--permset <name>`       | Permission set to assign (default: `Property_Management_Access`) |
-| `--app <name>`           | Web app folder name when multiple exist                          |
+### Step 3: Configure the Experience Cloud Site
-For all options: `node org-setup.mjs --help`.
+After deploying the Experience Cloud site metadata, configure its membership and self-registration settings.
+1. In the App Launcher, open the **Digital Experiences** app (search for it if needed).
+2. Find the **Property Rental App** site and click **Workspaces**.
+3. Click the **Administration** tile.
+#### Members
+1. In the left navigation, click **Members**.
+2. Under **Select Profiles**, add the cloned community profile (`Property Rental Tenant`) to the **Selected Profiles** list.
+3. Click **Save**.
+#### Login & Registration
+1. In the left navigation, click **Login & Registration**.
+2. Check **Allow customers and partners to self-register**.
+3. Under **Registration**, set:
+   - **Profile**: Select your cloned community profile (`Property Rental Tenant`).
+   - **Account**: Select or create an account record to associate self-registered users with (e.g., a generic "Portal Account").
+4. Click **Save**.
+#### Guest User Profile
+The site's guest user profile controls what unauthenticated visitors can see. You will configure this profile in [Step 4](#step-4-configure-the-guest-user-profile). To navigate to it:
+1. In the **Administration** area, click **Preferences** in the left navigation.
+2. Click the link next to **Guest user profile** to open it directly.
+---
+### Step 4: Configure the Guest User Profile
+The guest user profile is auto-generated by Salesforce when an Experience Cloud site is created. It controls what unauthenticated visitors can access. Configure it to allow browsing of available properties only.
+Open the guest user profile (linked from the site's Preferences page, as described above) and apply the following settings.
+**Administrative Permissions:**
+| Permission  | Setting |
+| ----------- | ------- |
+| API Enabled | Checked |
+> **Security note:** Enabling API access for the guest profile is required for the UI Bundle to make GraphQL API calls on behalf of unauthenticated users. Ensure that object-level and field-level permissions are restrictive (as listed below) to avoid exposing sensitive data.
+**Custom Object Permissions:**
+Guest users can only browse available properties and listings. All other objects are restricted.
+| Object                                    | Read | Create | Edit | Delete |
+| :---------------------------------------- | :--: | :----: | :--: | :----: |
+| Properties (`Property__c`)                |  ✓   |        |      |        |
+| Property Costs (`Property_Cost__c`)       |  ✓   |        |      |        |
+| Property Features (`Property_Feature__c`) |  ✓   |        |      |        |
+| Property Images (`Property_Image__c`)     |  ✓   |        |      |        |
+| Property Listings (`Property_Listing__c`) |  ✓   |        |      |        |
+| All other objects                         |  —   |   —    |  —   |   —    |
+**Apex Class Access:**
+Add the following classes. These are required for the self-registration and login flows available to unauthenticated users:
+- `UIBundleLogin`
+- `UIBundleRegistration`
+---
+### Step 5: Create Criteria-Based Sharing Rules for Guest Access
+By default, Salesforce does not expose any records to guest users. You must create **criteria-based sharing rules** to make available properties and listings visible to unauthenticated site visitors.
+> **Organization-Wide Defaults (OWD):** Criteria-based sharing rules for guest users only work correctly when the object's OWD is set to **Public Read Only** or **Private**. Verify your OWD settings at **Setup > Sharing Settings** before proceeding.
+#### Create a Sharing Rule for Properties
+1. Go to **Setup > Sharing Settings**.
+2. Scroll to the **Property Sharing Rules** section and click **New**.
+3. Configure the rule:
+   - **Label**: `Available Properties for Guest Users`
+   - **Rule Type**: Select **Based on criteria**
+   - **Criteria**: `Status Equals Available` (adjust the field and value to match your data model)
+   - **Share with**: Select **Guests of the Property Rental App site** (the guest user group for your Experience Cloud site)
+   - **Access Level**: `Read Only`
+4. Click **Save**.
+#### Create a Sharing Rule for Property Listings
+Repeat the same steps in the **Property Listing Sharing Rules** section:
+- **Label**: `Available Property Listings for Guest Users`
+- **Rule Type**: `Based on criteria`
+- **Criteria**: Match listings you want to expose (e.g., `Status Equals Active`)
+- **Share with**: `Guests of the Property Rental App site`
+- **Access Level**: `Read Only`
+> **Note:** The "Guests of [site name]" option only appears in the sharing rule target list after the Experience Cloud site has been created and saved. If you do not see it, confirm the site metadata has been deployed and the site exists in the org.
+---
+## Local Development
+Install project dependencies and start the dev server:
+```bash
+npm install
+npm run sf-project-setup
+```
-## Configure Your Salesforce DX Project
+This installs the UI Bundle dependencies, builds the app, and opens the dev server at `http://localhost:5173`. For manual build and test instructions, see the [UI Bundle README](force-app/main/default/uiBundles/propertyrentalapp/README.md).
-The `sfdx-project.json` file contains useful configuration information for your project. See [Salesforce DX Project Configuration](https://developer.salesforce.com/docs/atlas.en-us.sfdx_dev.meta/sfdx_dev/sfdx_dev_ws_config.htm) in the _Salesforce DX Developer Guide_ for details about this file.
+---
-## Read All About It
+## Resources
 - [Salesforce Extensions Documentation](https://developer.salesforce.com/tools/vscode/)
 - [Salesforce CLI Setup Guide](https://developer.salesforce.com/docs/atlas.en-us.sfdx_setup.meta/sfdx_setup/sfdx_setup_intro.htm)
 - [Salesforce DX Developer Guide](https://developer.salesforce.com/docs/atlas.en-us.sfdx_dev.meta/sfdx_dev/sfdx_dev_intro.htm)
 - [Salesforce CLI Command Reference](https://developer.salesforce.com/docs/atlas.en-us.sfdx_cli_reference.meta/sfdx_cli_reference/cli_reference.htm)
+- [Experience Cloud Developer Guide](https://developer.salesforce.com/docs/atlas.en-us.communities_dev.meta/communities_dev/communities_dev_intro.htm)
+- [Salesforce DX Project Configuration](https://developer.salesforce.com/docs/atlas.en-us.sfdx_dev.meta/sfdx_dev/sfdx_dev_ws_config.htm)

package/dist/force-app/main/default/uiBundles/propertyrentalapp/package.json CHANGED Viewed

@@ -15,8 +15,8 @@
     "graphql:schema": "node scripts/get-graphql-schema.mjs"
   },
   "dependencies": {
-    "@salesforce/sdk-data": "^1.119.0",
-    "@salesforce/ui-bundle": "^1.119.0",
+    "@salesforce/sdk-data": "^1.119.2",
+    "@salesforce/ui-bundle": "^1.119.2",
     "@tailwindcss/vite": "^4.1.17",
     "class-variance-authority": "^0.7.1",
     "clsx": "^2.1.1",
@@ -47,7 +47,7 @@
     "@graphql-eslint/eslint-plugin": "^4.1.0",
     "@graphql-tools/utils": "^11.0.0",
     "@playwright/test": "^1.49.0",
-    "@salesforce/vite-plugin-ui-bundle": "^1.119.0",
+    "@salesforce/vite-plugin-ui-bundle": "^1.119.2",
     "@testing-library/jest-dom": "^6.6.3",
     "@testing-library/react": "^16.1.0",
     "@testing-library/user-event": "^14.5.2",

package/dist/package-lock.json CHANGED Viewed

@@ -1,12 +1,12 @@
 {
   "name": "@salesforce/webapp-template-base-sfdx-project-experimental",
-  "version": "1.119.0",
+  "version": "1.119.2",
   "lockfileVersion": 3,
   "requires": true,
   "packages": {
     "": {
       "name": "@salesforce/webapp-template-base-sfdx-project-experimental",
-      "version": "1.119.0",
+      "version": "1.119.2",
       "license": "SEE LICENSE IN LICENSE.txt",
       "devDependencies": {
         "@lwc/eslint-plugin-lwc": "^3.3.0",

package/dist/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@salesforce/ui-bundle-template-base-sfdx-project",
-  "version": "1.119.0",
+  "version": "1.119.2",
   "description": "Base SFDX project template",
   "license": "SEE LICENSE IN LICENSE.txt",
   "publishConfig": {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@salesforce/ui-bundle-template-app-react-sample-b2x",
-  "version": "1.119.0",
+  "version": "1.119.2",
   "description": "Salesforce sample property rental React app",
   "license": "SEE LICENSE IN LICENSE.txt",
   "author": "",