@striae-org/striae 4.0.3 → 4.2.0

package/app/types/case.ts

@@ -1,14 +1,30 @@
 import { type FileData } from './file';
 import { type AnnotationData, type ConfirmationData } from './annotations';
+import { type ValidationAuditEntry } from './audit';
 
 // Case-related types and interfaces
 
 export type CaseActionType = 'loaded' | 'created' | 'deleted' | null;
 
+export interface BundledAuditTrailData {
+  source: 'archive-bundle';
+  importedAt: string;
+  exportTimestamp?: string;
+  totalEntries?: number;
+  entries: ValidationAuditEntry[];
+}
+
 export interface CaseData {
   createdAt: string;
   caseNumber: string;
   files: FileData[];
+  isReadOnly?: boolean;
+  archived?: boolean;
+  archivedAt?: string;
+  archivedBy?: string;
+  archivedByDisplay?: string;
+  archiveReason?: string;
+  bundledAuditTrail?: BundledAuditTrailData;
 }
 
 export interface ReadOnlyCaseData extends CaseData {
@@ -23,11 +39,17 @@ export interface CaseExportData {
   metadata: {
     caseNumber: string;
     caseCreatedDate: string;
+    archived?: boolean;
+    archivedAt?: string;
+    archivedBy?: string;
+    archivedByDisplay?: string;
+    archiveReason?: string;
     exportDate: string;
     exportedBy: string | null;
     exportedByUid: string;
     exportedByName: string;
     exportedByCompany: string;
+    exportedByBadgeId?: string;
     striaeExportSchemaVersion: string;
     totalFiles: number;
   };
@@ -56,6 +78,7 @@ export interface AllCasesExportData {
     exportedByUid: string;
     exportedByName: string;
     exportedByCompany: string;
+    exportedByBadgeId?: string;
     striaeExportSchemaVersion: string;
     totalCases: number;
     totalFiles: number;
@@ -84,7 +107,13 @@ export interface CaseDataWithConfirmations {
   caseNumber: string;
   files: FileData[];
   isReadOnly?: boolean;
+  archived?: boolean;
+  archivedAt?: string;
+  archivedBy?: string;
+  archivedByDisplay?: string;
+  archiveReason?: string;
   importedAt?: string;
   originalImageIds?: { [originalId: string]: string };
   confirmations?: CaseConfirmations;
+  bundledAuditTrail?: BundledAuditTrailData;
 }

package/app/types/import.ts

@@ -51,6 +51,7 @@ export interface ConfirmationImportData {
     exportedByUid: string;
     exportedByName: string;
     exportedByCompany: string;
+    exportedByBadgeId?: string;
     totalConfirmations: number;
     version: string;
     hash: string;
@@ -79,9 +80,11 @@ export interface ConfirmationImportData {
 
 export interface CaseImportPreview {
   caseNumber: string;
+  archived?: boolean;
   exportedBy: string | null;
   exportedByName: string | null;
   exportedByCompany: string | null;
+  exportedByBadgeId?: string | null;
   exportDate: string;
   totalFiles: number;
   caseCreatedDate?: string;

package/app/types/user.ts

@@ -8,6 +8,7 @@ export interface UserData {
   firstName: string;
   lastName: string;
   company: string;
+  badgeId?: string;
   permitted: boolean;
   cases: Array<{
     caseNumber: string;

package/app/utils/data/permissions.ts

@@ -1,7 +1,7 @@
 import type { User } from 'firebase/auth';
 import type { UserData, ExtendedUserData, UserLimits, ReadOnlyCaseMetadata } from '~/types';
 import paths from '~/config/config.json';
-import { fetchUserApi } from '../api';
+import { fetchDataApi, fetchUserApi } from '../api';
 
 const MAX_CASES_REVIEW = paths.max_cases_review;
 const MAX_FILES_PER_CASE_REVIEW = paths.max_files_per_case_review;
@@ -110,6 +110,7 @@ export const createUser = async (
       firstName,
       lastName,
       company,
+      badgeId: '',
       permitted,
       cases: [],
       readOnlyCases: [],
@@ -402,6 +403,21 @@ export const canModifyCase = async (user: User, caseNumber: string): Promise<Per
       return { allowed: false, reason: 'User data not found' };
     }
 
+    const archiveCheckResponse = await fetchDataApi(
+      user,
+      `/${encodeURIComponent(user.uid)}/${encodeURIComponent(caseNumber)}/data.json`,
+      {
+        method: 'GET'
+      }
+    );
+
+    if (archiveCheckResponse.ok) {
+      const caseData = await archiveCheckResponse.json() as { archived?: boolean };
+      if (caseData.archived) {
+        return { allowed: false, reason: 'Archived cases are immutable and read-only' };
+      }
+    }
+
     // Check if user owns the case (regular cases)
     if (userData.cases && userData.cases.some(c => c.caseNumber === caseNumber)) {
       // For owned cases, user must be permitted

package/app/utils/forensics/audit-export-signature.ts

@@ -83,7 +83,8 @@ export function createAuditExportSigningPayload(payload: AuditExportSigningPaylo
 
 export async function verifyAuditExportSignature(
   payload: Partial<AuditExportSigningPayload>,
-  signature?: ForensicManifestSignature
+  signature?: ForensicManifestSignature,
+  verificationPublicKeyPem?: string
 ): Promise<ManifestSignatureVerificationResult> {
   if (!signature) {
     return {
@@ -112,6 +113,9 @@ export async function verifyAuditExportSignature(
       noVerificationKeyPrefix: 'No verification key configured for key ID',
       invalidPublicKeyError: 'Audit export signature verification failed: invalid public key',
       verificationFailedError: 'Audit export signature verification failed'
+    },
+    {
+      verificationPublicKeyPem
     }
   );
 }

package/app/utils/forensics/confirmation-signature.ts

@@ -134,6 +134,9 @@ export function createConfirmationSigningPayload(
       exportedByUid: confirmationData.metadata.exportedByUid,
       exportedByName: confirmationData.metadata.exportedByName,
       exportedByCompany: confirmationData.metadata.exportedByCompany,
+      ...(confirmationData.metadata.exportedByBadgeId
+        ? { exportedByBadgeId: confirmationData.metadata.exportedByBadgeId }
+        : {}),
       totalConfirmations: confirmationData.metadata.totalConfirmations,
       version: confirmationData.metadata.version,
       hash: confirmationData.metadata.hash.toUpperCase(),