npm - @studiocubics/cms - Versions diffs - 0.0.1 → 0.0.2 - Mend

@studiocubics/cms 0.0.1 → 0.0.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (244) hide show

package/src/clerk/clerk.d.ts DELETED Viewed

@@ -1,105 +0,0 @@
-import { EmailAddress, User } from "@clerk/nextjs/server";
-import { Role } from "@studiocubics/cms";
-import { WithSign } from "@/clerk/Users";
-import { useUser } from "@clerk/nextjs";
-type WithSign<T extends string> = `+${T}` | `-${T}` | T;
-export type PaginatedResponse<T> = { data: T; totalCount: number };
-type SessionStatus =
-  | "abandoned"
-  | "active"
-  | "ended"
-  | "expired"
-  | "removed"
-  | "replaced"
-  | "revoked";
-type UserListOrderBy =
-  | "created_at"
-  | "updated_at"
-  | "email_address"
-  | "web3wallet"
-  | "first_name"
-  | "last_name"
-  | "phone_number"
-  | "username"
-  | "last_active_at"
-  | "last_sign_in_at";
-declare global {
-  type ClerkClientUser = ReturnType<typeof useUser>["user"];
-  type ClerkSessionClaims = NonNullable<
-    Awaited<ReturnType<typeof auth>>["sessionClaims"]
-  >;
-  interface CustomJwtSessionClaims {
-    metadata: {
-      role?: Role;
-      onboardingComplete?: boolean;
-      // TODO add currentStatus?:"online"|"offline"
-    };
-  }
-  interface ClerkUserListParams extends Record<string, any> {
-    limit?: number;
-    offset?: number;
-    orderBy?: WithSign<UserListOrderBy>;
-    query?: string;
-  }
-  interface ClerkUserSessionListParams {
-    clientId?: string;
-    userId?: string;
-    status?: SessionStatus;
-    limit?: number;
-    offset?: number;
-  }
-  interface ClerkUserSession {
-    id: string;
-    clientId: string;
-    userId: string;
-    status: SessionStatus;
-    lastActiveAt: number;
-    expireAt: number;
-    abandonAt: number;
-    createdAt: number;
-    updatedAt: number;
-    lastActiveOrganizationId?: string;
-    latestActivity?: ClerkUserSessionActivity;
-    actor: Record<string, unknown> | null;
-  }
-  interface ClerkUserSessionActivity {
-    id: string;
-    isMobile: boolean;
-    ipAddress?: string;
-    city?: string;
-    country?: string;
-    browserVersion?: string;
-    browserName?: string;
-    deviceType?: string;
-  }
-  interface ClerkInvitation {
-    id: string;
-    emailAddress: string;
-    url: string;
-    publicMetadata: UserPublicMetadata;
-    createdAt: number;
-    updatedAt: number;
-    status: "pending" | "accepted" | "revoked";
-    revoked?: boolean;
-  }
-  interface ClerkInvitationCreateParams {
-    emailAddress: string;
-    expiresInDays?: number;
-    ignoreExisting?: boolean;
-    /**
-     * Whether an email invitation should be sent to the given email address. Defaults to true.
-     */
-    notify?: boolean;
-    publicMetadata?: UserPublicMetadata;
-    redirectUrl?: string;
-    templateSlug?: "invitation" | "waitlist_invitation";
-  }
-  interface ClerkInvitationListParams extends Record<string, any> {
-    status?: "pending" | "accepted" | "revoked";
-    limit?: number;
-    offset?: number;
-  }
-}

package/src/clerk/hasPermission.ts DELETED Viewed

@@ -1,96 +0,0 @@
-"use server";
-import { auth } from "@clerk/nextjs/server";
-import {
-  type Resource,
-  type RoleActions,
-  type Role,
-  RBAC_CONFIG,
-} from "./rbacConfig";
-/**
- * Evaluates RBAC permissions using explicitly provided session claims.
- *
- * @returns `true` if the role defined in `sessionClaims.metadata.role`
- * is allowed to perform `action` on `resource` under RBAC rules.
- */
-export async function hasPermissionForClaims(args: {
-  claims: ClerkSessionClaims;
-  resource: Resource;
-  action: RoleActions;
-  record?: Record<string, any>;
-}): Promise<boolean> {
-  if (!("metadata" in args.claims)) return false;
-  const role = args.claims?.metadata.role;
-  if (!role) return false;
-  return checkPermissions({ role, ...args });
-}
-/**
- * Evaluates RBAC permissions for the currently authenticated user.
- *
- * Use this when you do NOT already have session claims.
- *
- * @returns `true` if the current user's role is allowed
- * to perform `action` on `resource` under RBAC rules.
- */
-export async function hasPermission(args: {
-  resource: Resource;
-  action: RoleActions;
-  record?: Record<string, any>;
-}): Promise<boolean> {
-  let claims;
-  const a = await auth();
-  claims = a.sessionClaims;
-  const role = claims?.metadata.role;
-  if (!role) return false;
-  return checkPermissions({
-    role,
-    claims,
-    ...args,
-  });
-}
-export type PermissionCheckInput = {
-  role: Role;
-  claims: ClerkSessionClaims;
-  resource: Resource;
-  action: RoleActions;
-  record?: Record<string, any>;
-};
-/**
- * Core RBAC policy evaluator.
- *
- * This is the authorization engine shared by all permission checks.
- * It does NOT perform authentication or session resolution.
- *
- * Rules:
- * - `isSystem` roles bypass all checks
- * - permissions are matched by `{ resource, action }`
- * - optional ownership constraints are enforced via `ownerField`
- * @param {PermissionCheckInput} args
- * @returns `true` if at least one permission grants access
- */
-function checkPermissions(args: PermissionCheckInput) {
-  const def = RBAC_CONFIG[args.role];
-  if (!def) return false;
-  // Allow system
-  if (def.isSystem) return true;
-  // Iterate over all permissions
-  for (const p of def.permissions) {
-    if (p.resource !== args.resource) continue;
-    if (!p.actions?.[args.action]) continue;
-    // Ownership conditions
-    if (p.conditions?.ownerField && args.record) {
-      const ownerField = p.conditions.ownerField;
-      if (args.record[ownerField] !== args.claims.id) continue;
-    }
-    return true;
-  }
-  return false;
-}

package/src/clerk/rbacConfig.ts DELETED Viewed

@@ -1,68 +0,0 @@
-export const roles = ["admin", "manager", "member"] as const;
-export const resources = ["systemUsers", "projects", "invitations"] as const;
-export const RBAC_CONFIG: {
-  [K in Role]: RoleDoc;
-} = {
-  admin: {
-    desc: "Full system authority with unrestricted access and management capabilities.",
-    isSystem: true,
-    permissions: [], // system role bypasses all checks
-  },
-  manager: {
-    desc: "Responsible for overseeing teams and resources; can manage existing items and invite users.",
-    inherits: ["member"],
-    permissions: [
-      {
-        resource: "systemUsers",
-        actions: { create: true, read: true, update: true },
-        conditions: { ownerField: "id" },
-      },
-      {
-        resource: "projects",
-        actions: { create: true, read: true, update: true, delete: true },
-      },
-      {
-        resource: "invitations",
-        actions: { create: true, read: true, update: true, delete: true },
-      },
-    ],
-  },
-  member: {
-    desc: "Standard user with read-level access to assigned resources; limited modification rights.",
-    permissions: [
-      { resource: "systemUsers", actions: { read: true } },
-      { resource: "projects", actions: { read: true } },
-    ],
-  },
-} as const;
-export type Role = (typeof roles)[number];
-export type Resource = (typeof resources)[number];
-export type RoleActions = "create" | "read" | "update" | "delete";
-export type ResourcePermission = {
-  resource: Resource;
-  actions: Partial<Record<RoleActions, boolean>>;
-  conditions?: {
-    ownerField?: string; // e.g. “creatorId”
-  };
-};
-export type RoleDoc = {
-  desc?: string;
-  inherits?: string[];
-  isSystem?: boolean;
-  permissions: ResourcePermission[];
-};
-export const getInvitationPublicMetadata = (role: Role) => {
-  switch (role) {
-    case "admin":
-      return { role, onboardingComplete: true };
-    case "manager":
-      return { role, onboardingComplete: true };
-    default:
-      return { role, onboardingComplete: false };
-  }
-};

package/src/clerk/schemas/invitation.ts DELETED Viewed

@@ -1,17 +0,0 @@
-import z from "zod";
-import { roles } from "../rbacConfig";
-export const createInvitationSchema = z.object({
-  emailAddress: z.string(),
-  expiresInDays: z
-    .preprocess((val) => {
-      if (typeof val === "string") {
-        return Number.parseInt(val);
-      }
-      return val;
-    }, z.number())
-    .optional(),
-  ignoreExisting: z.boolean().default(false).optional(),
-  notify: z.boolean().default(true).optional(),
-  role: z.enum(roles),
-});

package/src/clerk/schemas/systemUser.ts DELETED Viewed

@@ -1,16 +0,0 @@
-import z from "zod";
-const MAX_UPLOAD_SIZE = 1024 * 1024 * 5; // 10MB
-const ACCEPTED_IMAGE_TYPES = ["image/jpeg", "image/png"];
-export const systemUserUpdateSchema = z.object({
-  firstName: z.string().max(25).min(2),
-  lastName: z.string().max(25).min(2),
-  imageFile: z
-    .file()
-    .refine((f) => f.size <= MAX_UPLOAD_SIZE, {
-      error: "Image size is larger than >10MB",
-    })
-    .refine(
-      (f) => ACCEPTED_IMAGE_TYPES.includes(f.type),
-      "Only .jpg and .png formats are supported.",
-    ),
-});

package/src/clerk/toClientSafeUser.ts DELETED Viewed

@@ -1,77 +0,0 @@
-import type { User } from "@clerk/nextjs/server";
-/**
- * Client-safe representation of a Clerk User.
- *
- * This intentionally excludes any sensitive or server-only fields
- * (e.g. privateMetadata, externalAccounts with tokens, etc.)
- * and contains only JSON-serializable data that is safe to pass
- * from Server Components to Client Components.
- */
-export type ClientSafeUser = {
-  id: string;
-  username: string | null;
-  firstName: string | null;
-  lastName: string | null;
-  fullName: string | null;
-  imageUrl: string;
-  primaryEmailAddress: {
-    id: string;
-    emailAddress: string;
-    verified: boolean;
-  };
-  emailAddresses: Array<{
-    id: string;
-    emailAddress: string;
-    verified: boolean;
-  }>;
-  publicMetadata: CustomJwtSessionClaims["metadata"];
-  createdAt: Date | null;
-  updatedAt: Date | null;
-  lastSignInAt: Date | null;
-};
-/**
- * Converts a Clerk `User` (server-side) into a client-safe, serializable object.
- *
- * Why this exists:
- * - The Clerk `User` class contains methods and non-serializable fields.
- * - Passing it directly to a Client Component will break React Server Components.
- * - This function strips the object down to stable, safe primitives only.
- *
- * Rules enforced here:
- * - No functions
- * - No circular references
- * - No private or sensitive data
- *
- * @param user Clerk User instance from `@clerk/nextjs/server`
- * @returns ClientSafeUser plain object
- */
-export function toClientSafeUser(user: User): ClientSafeUser {
-  const pea = user.emailAddresses.find(
-    (ea) => ea.id == user.primaryEmailAddressId
-  );
-  if (!pea) throw new Error("Missing primaryEmailAddress");
-  return {
-    id: user.id,
-    username: user.username,
-    firstName: user.firstName,
-    lastName: user.lastName,
-    fullName: user.fullName,
-    imageUrl: user.imageUrl,
-    primaryEmailAddress: {
-      id: pea.id,
-      emailAddress: pea.emailAddress,
-      verified: pea.verification?.status === "verified",
-    },
-    emailAddresses: user.emailAddresses.map((email) => ({
-      id: email.id,
-      emailAddress: email.emailAddress,
-      verified: email.verification?.status === "verified",
-    })),
-    publicMetadata: user.publicMetadata ?? {},
-    createdAt: new Date(user.createdAt),
-    updatedAt: new Date(user.updatedAt),
-    lastSignInAt: user.lastSignInAt ? new Date(user.lastSignInAt) : null,
-  };
-}

package/src/constants/defaults.tsx DELETED Viewed

@@ -1,62 +0,0 @@
-import type { ListItemProps, TabProps } from "@studiocubics/ui";
-import { Titillium_Web, Outfit } from "next/font/google";
-import {
-  Newspaper,
-  Settings,
-  ShieldUser,
-  SquareUser,
-  DoorClosedLocked,
-  Users,
-  Send,
-} from "lucide-react";
-export const defaultNavLinks: ListItemProps[] = [
-  {
-    startIcon: <Newspaper />,
-    children: "Content",
-    href: "/dashboard/content",
-  },
-  {
-    startIcon: <ShieldUser />,
-    href: "/dashboard/security",
-    children: "Security",
-  },
-  {
-    startIcon: <Settings />,
-    href: "/dashboard/settings",
-    children: "Settings",
-  },
-];
-export const defaultSecurityLinks: TabProps[] = [
-  {
-    children: "Your Account",
-    startIcon: <SquareUser />,
-    href: "/dashboard/security/account",
-  },
-  {
-    children: "Roles & Permissions",
-    startIcon: <DoorClosedLocked />,
-    href: "/dashboard/security/permissions",
-  },
-  {
-    children: "System Users",
-    startIcon: <Users />,
-    href: "/dashboard/security/systemUsers",
-  },
-  {
-    children: "Invitations",
-    startIcon: <Send />,
-    href: "/dashboard/security/invitations",
-  },
-];
-export const fontH = Outfit({
-  variable: "--font-h",
-  subsets: ["latin"],
-});
-export const fontP = Titillium_Web({
-  variable: "--font-p",
-  weight: ["200", "400", "600", "700", "900"],
-  subsets: ["latin"],
-});
-export const defaultBodyClassName = `${fontH.variable} ${fontP.variable}`;

package/src/constants/pageLimits.ts DELETED Viewed

	@@ -1,2 +0,0 @@
1	- export const SYSTEM_USERS_PAGE_LIMIT = 10;
2	- export const INVITATIONS_PAGE_LIMIT = 10;

package/src/declaration.d.ts DELETED Viewed

@@ -1,5 +0,0 @@
-declare module "*.module.css" {
-  const classes: { [key: string]: string };
-  export default classes;
-}
-declare module "*.css";

package/src/providers/CMSRootProviders.tsx DELETED Viewed

@@ -1,13 +0,0 @@
-"use client";
-import { ThemeProvider } from "next-themes";
-import type { ReactNode } from "react";
-import { ClerkProvider } from "@clerk/nextjs";
-export function CMSRootProviders({ children }: { children: ReactNode }) {
-  return (
-    <ThemeProvider enableSystem>
-      <ClerkProvider>{children}</ClerkProvider>
-    </ThemeProvider>
-  );
-}

package/src/routes.d.ts DELETED Viewed

@@ -1,96 +0,0 @@
-type AppRoutes =
-  | "/"
-  | "/auth/requestAccount"
-  | "/auth/signIn/[[...signIn]]"
-  | "/auth/signUp/[[...signUp]]"
-  | "/dashboard"
-  | "/dashboard/content"
-  | "/dashboard/content/projects"
-  | "/dashboard/security"
-  | "/dashboard/security/account"
-  | "/dashboard/security/invitations"
-  | "/dashboard/security/permissions"
-  | "/dashboard/security/systemUsers"
-  | "/dashboard/security/systemUsers/[userId]"
-  | "/dashboard/security/systemUsers/[userId]/sessions"
-  | "/dashboard/settings";
-type PageRoutes = never;
-type LayoutRoutes = "/" | "/auth" | "/dashboard" | "/dashboard/security";
-type RedirectRoutes = never;
-type RewriteRoutes = never;
-type Routes =
-  | AppRoutes
-  | PageRoutes
-  | LayoutRoutes
-  | RedirectRoutes
-  | RewriteRoutes;
-interface ParamMap {
-  "/": {};
-  "/auth": {};
-  "/auth/requestAccount": {};
-  "/auth/signIn/[[...signIn]]": { signIn?: string[] };
-  "/auth/signUp/[[...signUp]]": { signUp?: string[] };
-  "/dashboard": {};
-  "/dashboard/content": {};
-  "/dashboard/content/projects": {};
-  "/dashboard/security": {};
-  "/dashboard/security/account": {};
-  "/dashboard/security/invitations": {};
-  "/dashboard/security/permissions": {};
-  "/dashboard/security/systemUsers": {};
-  "/dashboard/security/systemUsers/[userId]": { userId: string };
-  "/dashboard/security/systemUsers/[userId]/sessions": { userId: string };
-  "/dashboard/settings": {};
-}
-export type ParamsOf<Route extends Routes> = ParamMap[Route];
-interface LayoutSlotMap {
-  "/": never;
-  "/auth": never;
-  "/dashboard": never;
-  "/dashboard/security": never;
-}
-export type {
-  AppRoutes,
-  PageRoutes,
-  LayoutRoutes,
-  RedirectRoutes,
-  RewriteRoutes,
-  ParamMap,
-};
-declare global {
-  /**
-   * Props for Next.js App Router page components
-   * @example
-   * ```tsx
-   * export default function Page(props: PageProps<'/blog/[slug]'>) {
-   *   const { slug } = await props.params
-   *   return <div>Blog post: {slug}</div>
-   * }
-   * ```
-   */
-  interface PageProps<AppRoute extends AppRoutes> {
-    params: Promise<ParamMap[AppRoute]>;
-    searchParams: Promise<Record<string, string | string[] | undefined>>;
-  }
-  /**
-   * Props for Next.js App Router layout components
-   * @example
-   * ```tsx
-   * export default function Layout(props: LayoutProps<'/dashboard'>) {
-   *   return <div>{props.children}</div>
-   * }
-   * ```
-   */
-  type LayoutProps<LayoutRoute extends LayoutRoutes> = {
-    params: Promise<ParamMap[LayoutRoute]>;
-    children: React.ReactNode;
-  } & {
-    [K in LayoutSlotMap[LayoutRoute]]: React.ReactNode;
-  };
-}

package/src/ui/Inputs/ThemedMonacoEditor/ThemedMonacoEditor.module.css DELETED Viewed

@@ -1,4 +0,0 @@
-.root {
-  border-radius: var(--shape-br-sm);
-  overflow: hidden;
-}

package/src/ui/Inputs/ThemedMonacoEditor/ThemedMonacoEditor.tsx DELETED Viewed

@@ -1,16 +0,0 @@
-"use client";
-import { Editor, type EditorProps } from "@monaco-editor/react";
-import { useTheme } from "next-themes";
-import styles from "./ThemedMonacoEditor.module.css";
-export function ThemedMonacoEditor(props: EditorProps) {
-  const theme = useTheme();
-  return (
-    <Editor
-      className={styles.root}
-      theme={theme.resolvedTheme == "dark" ? "vs-dark" : "vs-light"}
-      {...props}
-    />
-  );
-}

package/src/ui/Layout/CMSSecurityLayout.tsx DELETED Viewed

@@ -1,27 +0,0 @@
-"use client";
-import { PageLayoutTabs, type PageLayoutTabsProps } from "@studiocubics/ui";
-import Link from "next/link";
-import { usePathname } from "next/navigation";
-export function CMSSecurityLayout(
-  props: Omit<PageLayoutTabsProps, "title" | "subtitle" | "selectedIndex">,
-) {
-  const { menuItems } = props;
-  const pathname = usePathname();
-  const selectedItem = menuItems?.find(
-    (mi) => mi.href && pathname.startsWith(mi.href),
-  );
-  const selectedIndex = selectedItem
-    ? menuItems?.indexOf(selectedItem)
-    : undefined;
-  return (
-    <PageLayoutTabs
-      {...props}
-      subtitle={"Manage your account and other System security options"}
-      title={"Security"}
-      selectedIndex={selectedIndex}
-      LinkComponent={Link}
-    />
-  );
-}

package/src/ui/Layout/CMSSidebar/CMSSidebar.tsx DELETED Viewed

@@ -1,39 +0,0 @@
-import {
-  Sidebar,
-  SidebarViewport,
-  SidebarDrawer,
-  type ListItemProps,
-} from "@studiocubics/ui";
-import type { ReactNode } from "react";
-import { CMSSidebarHeader } from "./CMSSidebarHeader/CMSSidebarHeader";
-import { CMSSidebarFooter } from "./CMSSidebarFooter/CMSSidebarFooter";
-import { CMSSidebarBody } from "./CMSSidebarBody";
-import { cookies } from "next/headers";
-export async function CMSSidebar({
-  children,
-  sidebarLinks,
-}: {
-  children: ReactNode;
-  sidebarLinks: ListItemProps[];
-}) {
-  const cookieStore = await cookies();
-  const defaultOpen = cookieStore.get("sidebarOpen")?.value === "true";
-  return (
-    <div style={{ height: "100dvh" }}>
-      <Sidebar defaultOpen={defaultOpen}>
-        <SidebarDrawer>
-          <CMSSidebarHeader />
-          <CMSSidebarBody sidebarLinks={sidebarLinks} />
-          <CMSSidebarFooter />
-        </SidebarDrawer>
-        <SidebarViewport
-          style={{ backgroundColor: "var(--color-surface-alpha)" }}
-        >
-          {children}
-        </SidebarViewport>
-      </Sidebar>
-    </div>
-  );
-}