@sudobility/entity_service 1.0.7 → 1.0.8

package/dist/middleware/hono.cjs

@@ -1,148 +0,0 @@
-"use strict";
-/**
- * @fileoverview Hono Middleware for Entity Context
- * @description Middleware to inject entity context into Hono request handlers
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createEntityContextMiddleware = createEntityContextMiddleware;
-exports.createRequirePermissionMiddleware = createRequirePermissionMiddleware;
-exports.createRequireRoleMiddleware = createRequireRoleMiddleware;
-exports.createEntityHelpers = createEntityHelpers;
-const EntityHelper_1 = require("../helpers/EntityHelper");
-const EntityMemberHelper_1 = require("../helpers/EntityMemberHelper");
-const InvitationHelper_1 = require("../helpers/InvitationHelper");
-const PermissionHelper_1 = require("../helpers/PermissionHelper");
-const types_1 = require("../types");
-/**
- * Create middleware that injects entity context into the request.
- *
- * Usage:
- * ```typescript
- * const entityContext = createEntityContextMiddleware(config, {
- *   getUserId: (c) => c.get('userId'),
- *   entitySlugParam: 'entitySlug',
- * });
- *
- * app.use('/api/v1/entities/:entitySlug/*', entityContext);
- *
- * app.get('/api/v1/entities/:entitySlug/projects', (c) => {
- *   const { entity, userRole, permissions } = c.get('entityContext');
- *   // ...
- * });
- * ```
- */
-function createEntityContextMiddleware(config, options) {
-    const entityHelper = new EntityHelper_1.EntityHelper(config);
-    const permissionHelper = new PermissionHelper_1.PermissionHelper(config);
-    const slugParam = options.entitySlugParam ?? 'entitySlug';
-    return async (c, next) => {
-        const entitySlug = c.req.param(slugParam);
-        if (!entitySlug) {
-            return c.json({ error: 'Entity slug is required' }, 400);
-        }
-        const userId = options.getUserId(c);
-        if (!userId && !options.allowUnauthenticated) {
-            return c.json({ error: 'Authentication required' }, 401);
-        }
-        // Get entity by slug
-        const entity = await entityHelper.getEntityBySlug(entitySlug);
-        if (!entity) {
-            return c.json({ error: 'Entity not found' }, 404);
-        }
-        // If unauthenticated access is allowed and no user, continue without role
-        if (!userId && options.allowUnauthenticated) {
-            c.set('entity', entity);
-            await next();
-            return;
-        }
-        // Get user's role and permissions
-        const userRole = await permissionHelper.getUserRole(entity.id, userId);
-        if (!userRole) {
-            return c.json({ error: 'Access denied' }, 403);
-        }
-        const permissions = permissionHelper.getPermissionsForRole(userRole);
-        // Set entity context
-        const entityContext = {
-            entity,
-            userRole,
-            permissions,
-        };
-        c.set('entityContext', entityContext);
-        c.set('entity', entity);
-        c.set('userRole', userRole);
-        c.set('permissions', permissions);
-        await next();
-    };
-}
-/**
- * Create middleware that requires a specific permission.
- *
- * Usage:
- * ```typescript
- * const requireAdmin = createRequirePermissionMiddleware('canManageMembers');
- *
- * app.post('/api/v1/entities/:entitySlug/members', requireAdmin, (c) => {
- *   // Only admins can reach here
- * });
- * ```
- */
-function createRequirePermissionMiddleware(permission) {
-    return async (c, next) => {
-        const permissions = c.get('permissions');
-        if (!permissions) {
-            return c.json({ error: 'Entity context not found' }, 500);
-        }
-        if (!permissions[permission]) {
-            return c.json({ error: 'Insufficient permissions' }, 403);
-        }
-        await next();
-    };
-}
-/**
- * Create middleware that requires a minimum role.
- *
- * Usage:
- * ```typescript
- * const requireAdmin = createRequireRoleMiddleware(EntityRole.ADMIN);
- *
- * app.post('/api/v1/entities/:entitySlug/projects', requireAdmin, (c) => {
- *   // Only admins and owners can reach here
- * });
- * ```
- */
-function createRequireRoleMiddleware(minimumRole) {
-    const roleHierarchy = {
-        [types_1.EntityRole.MEMBER]: 0,
-        [types_1.EntityRole.ADMIN]: 1,
-        [types_1.EntityRole.OWNER]: 2,
-    };
-    return async (c, next) => {
-        const userRole = c.get('userRole');
-        if (!userRole) {
-            return c.json({ error: 'Entity context not found' }, 500);
-        }
-        if (roleHierarchy[userRole] < roleHierarchy[minimumRole]) {
-            return c.json({ error: 'Insufficient role' }, 403);
-        }
-        await next();
-    };
-}
-/**
- * Create all entity helpers with shared config.
- *
- * Usage:
- * ```typescript
- * const helpers = createEntityHelpers(config);
- * const entity = await helpers.entity.getEntity(entityId);
- * const members = await helpers.members.getMembers(entityId);
- * ```
- */
-function createEntityHelpers(config) {
-    return {
-        entity: new EntityHelper_1.EntityHelper(config),
-        members: new EntityMemberHelper_1.EntityMemberHelper(config),
-        invitations: new InvitationHelper_1.InvitationHelper(config),
-        permissions: new PermissionHelper_1.PermissionHelper(config),
-    };
-}
-//# sourceMappingURL=hono.js.map

package/dist/middleware/index.cjs

@@ -1,12 +0,0 @@
-"use strict";
-/**
- * @fileoverview Middleware Exports
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createEntityHelpers = exports.createRequireRoleMiddleware = exports.createRequirePermissionMiddleware = exports.createEntityContextMiddleware = void 0;
-var hono_1 = require("./hono");
-Object.defineProperty(exports, "createEntityContextMiddleware", { enumerable: true, get: function () { return hono_1.createEntityContextMiddleware; } });
-Object.defineProperty(exports, "createRequirePermissionMiddleware", { enumerable: true, get: function () { return hono_1.createRequirePermissionMiddleware; } });
-Object.defineProperty(exports, "createRequireRoleMiddleware", { enumerable: true, get: function () { return hono_1.createRequireRoleMiddleware; } });
-Object.defineProperty(exports, "createEntityHelpers", { enumerable: true, get: function () { return hono_1.createEntityHelpers; } });
-//# sourceMappingURL=index.js.map

package/dist/migrations/001_add_entities.cjs

@@ -1,330 +0,0 @@
-"use strict";
-/**
- * @fileoverview Entity Tables Migration
- * @description Creates entity tables and migrates existing data
- *
- * This migration:
- * 1. Creates entities, entity_members, entity_invitations tables
- * 2. Adds entity_id column to projects table (nullable for backward compatibility)
- * 3. Creates personal entities for existing users
- * 4. Populates entity_id for existing projects
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.runEntityMigration = runEntityMigration;
-exports.rollbackEntityMigration = rollbackEntityMigration;
-/**
- * Run the full entity migration.
- */
-async function runEntityMigration(config) {
-    const { client, schemaName, indexPrefix, migrateProjects = true } = config;
-    const prefix = `${schemaName}.`;
-    console.log(`Running entity migration for schema: ${schemaName}`);
-    // Step 1: Create entity tables
-    await createEntityTables(client, prefix, indexPrefix);
-    // Step 2: Add entity_id to projects if requested
-    if (migrateProjects) {
-        await addEntityIdToProjects(client, prefix, indexPrefix);
-    }
-    // Step 3: Migrate existing users to personal entities
-    await migrateUsersToPersonalEntities(client, prefix);
-    // Step 4: Populate entity_id for existing projects
-    if (migrateProjects) {
-        await populateProjectEntityIds(client, prefix);
-    }
-    console.log('Entity migration completed successfully');
-}
-/**
- * Create the entity tables.
- * Note: Ownership is tracked via entity_members (role = 'owner'), not entities.owner_user_id.
- */
-async function createEntityTables(client, prefix, indexPrefix) {
-    console.log('Creating entity tables...');
-    // Create entities table (ownership tracked via entity_members)
-    await client.unsafe(`
-    CREATE TABLE IF NOT EXISTS ${prefix}entities (
-      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-      entity_slug VARCHAR(12) NOT NULL UNIQUE,
-      entity_type VARCHAR(20) NOT NULL CHECK (entity_type IN ('personal', 'organization')),
-      display_name VARCHAR(255) NOT NULL,
-      description TEXT,
-      avatar_url TEXT,
-      created_at TIMESTAMPTZ DEFAULT NOW(),
-      updated_at TIMESTAMPTZ DEFAULT NOW()
-    )
-  `);
-    await client.unsafe(`
-    CREATE UNIQUE INDEX IF NOT EXISTS ${indexPrefix}_entities_slug_idx
-    ON ${prefix}entities (entity_slug)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entities_type_idx
-    ON ${prefix}entities (entity_type)
-  `);
-    // Create entity_members table (tracks all user-entity relationships including ownership)
-    await client.unsafe(`
-    CREATE TABLE IF NOT EXISTS ${prefix}entity_members (
-      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-      entity_id UUID NOT NULL REFERENCES ${prefix}entities(id) ON DELETE CASCADE,
-      user_id VARCHAR(128) NOT NULL,
-      role VARCHAR(20) NOT NULL CHECK (role IN ('owner', 'admin', 'member')),
-      is_active BOOLEAN NOT NULL DEFAULT true,
-      joined_at TIMESTAMPTZ DEFAULT NOW(),
-      created_at TIMESTAMPTZ DEFAULT NOW(),
-      updated_at TIMESTAMPTZ DEFAULT NOW(),
-      UNIQUE(entity_id, user_id)
-    )
-  `);
-    // Add is_active column if it doesn't exist (for upgrading existing tables)
-    await client.unsafe(`
-    DO $$
-    BEGIN
-      IF NOT EXISTS (
-        SELECT 1 FROM information_schema.columns
-        WHERE table_schema = '${prefix.replace('.', '')}'
-        AND table_name = 'entity_members'
-        AND column_name = 'is_active'
-      ) THEN
-        ALTER TABLE ${prefix}entity_members
-        ADD COLUMN is_active BOOLEAN NOT NULL DEFAULT true;
-      END IF;
-    END $$;
-  `);
-    await client.unsafe(`
-    CREATE UNIQUE INDEX IF NOT EXISTS ${indexPrefix}_entity_members_entity_user_idx
-    ON ${prefix}entity_members (entity_id, user_id)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_members_entity_idx
-    ON ${prefix}entity_members (entity_id)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_members_user_idx
-    ON ${prefix}entity_members (user_id)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_members_active_idx
-    ON ${prefix}entity_members (is_active)
-  `);
-    // Create entity_invitations table
-    await client.unsafe(`
-    CREATE TABLE IF NOT EXISTS ${prefix}entity_invitations (
-      id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
-      entity_id UUID NOT NULL REFERENCES ${prefix}entities(id) ON DELETE CASCADE,
-      email VARCHAR(255) NOT NULL,
-      role VARCHAR(20) NOT NULL CHECK (role IN ('admin', 'member')),
-      status VARCHAR(20) NOT NULL DEFAULT 'pending' CHECK (status IN ('pending', 'accepted', 'declined', 'expired')),
-      invited_by_user_id VARCHAR(128) NOT NULL,
-      token VARCHAR(64) NOT NULL UNIQUE,
-      expires_at TIMESTAMPTZ NOT NULL,
-      accepted_at TIMESTAMPTZ,
-      created_at TIMESTAMPTZ DEFAULT NOW(),
-      updated_at TIMESTAMPTZ DEFAULT NOW()
-    )
-  `);
-    await client.unsafe(`
-    CREATE UNIQUE INDEX IF NOT EXISTS ${indexPrefix}_entity_invitations_token_idx
-    ON ${prefix}entity_invitations (token)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_invitations_entity_idx
-    ON ${prefix}entity_invitations (entity_id)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_invitations_email_idx
-    ON ${prefix}entity_invitations (email)
-  `);
-    await client.unsafe(`
-    CREATE INDEX IF NOT EXISTS ${indexPrefix}_entity_invitations_status_idx
-    ON ${prefix}entity_invitations (status)
-  `);
-    console.log('Entity tables created');
-}
-/**
- * Add entity_id column to projects table.
- */
-async function addEntityIdToProjects(client, prefix, indexPrefix) {
-    console.log('Adding entity_id to projects table...');
-    // Check if column already exists
-    const columnExists = await client.unsafe(`
-    SELECT EXISTS (
-      SELECT 1 FROM information_schema.columns
-      WHERE table_schema = '${prefix.replace('.', '')}'
-      AND table_name = 'projects'
-      AND column_name = 'entity_id'
-    )
-  `);
-    if (!columnExists[0]?.exists) {
-        // Add nullable entity_id column
-        await client.unsafe(`
-      ALTER TABLE ${prefix}projects
-      ADD COLUMN entity_id UUID REFERENCES ${prefix}entities(id) ON DELETE CASCADE
-    `);
-        // Create index on entity_id
-        await client.unsafe(`
-      CREATE INDEX IF NOT EXISTS ${indexPrefix}_projects_entity_idx
-      ON ${prefix}projects (entity_id)
-    `);
-        console.log('entity_id column added to projects');
-    }
-    else {
-        console.log('entity_id column already exists in projects');
-    }
-}
-/**
- * Create personal entities for existing users.
- * Uses firebase_uid as the user identifier.
- * Personal entities use role = 'admin' (not 'owner' - owner role is for organizations).
- */
-async function migrateUsersToPersonalEntities(client, prefix) {
-    console.log('Migrating users to personal entities...');
-    // Check if user_settings table exists and has firebase_uid column
-    const schemaName = prefix.replace('.', '');
-    const settingsColumnCheck = await client.unsafe(`
-    SELECT column_name FROM information_schema.columns
-    WHERE table_schema = '${schemaName}'
-    AND table_name = 'user_settings'
-    AND column_name IN ('firebase_uid', 'user_id')
-  `);
-    const settingsHasFirebaseUid = settingsColumnCheck.some((c) => c.column_name === 'firebase_uid');
-    const settingsHasUserId = settingsColumnCheck.some((c) => c.column_name === 'user_id');
-    const settingsJoinColumn = settingsHasFirebaseUid ? 'firebase_uid' : (settingsHasUserId ? 'user_id' : null);
-    // Build query based on whether user_settings exists and which column it has
-    let usersQuery;
-    if (settingsJoinColumn) {
-        usersQuery = `
-      SELECT u.firebase_uid, u.email, u.display_name,
-             COALESCE(s.organization_path, SUBSTRING(MD5(RANDOM()::TEXT) FROM 1 FOR 8)) as slug_source
-      FROM ${prefix}users u
-      LEFT JOIN ${prefix}user_settings s ON u.firebase_uid = s.${settingsJoinColumn}
-      WHERE u.firebase_uid IS NOT NULL
-      AND NOT EXISTS (
-        SELECT 1 FROM ${prefix}entity_members em
-        INNER JOIN ${prefix}entities e ON em.entity_id = e.id
-        WHERE em.user_id = u.firebase_uid
-          AND em.role = 'admin'
-          AND em.is_active = true
-          AND e.entity_type = 'personal'
-      )
-    `;
-    }
-    else {
-        // No user_settings table or no matching column - just use users table
-        usersQuery = `
-      SELECT u.firebase_uid, u.email, u.display_name,
-             SUBSTRING(MD5(RANDOM()::TEXT) FROM 1 FOR 8) as slug_source
-      FROM ${prefix}users u
-      WHERE u.firebase_uid IS NOT NULL
-      AND NOT EXISTS (
-        SELECT 1 FROM ${prefix}entity_members em
-        INNER JOIN ${prefix}entities e ON em.entity_id = e.id
-        WHERE em.user_id = u.firebase_uid
-          AND em.role = 'admin'
-          AND em.is_active = true
-          AND e.entity_type = 'personal'
-      )
-    `;
-    }
-    // Get users without personal entities (check via entity_members with role = 'admin')
-    const usersWithoutEntities = await client.unsafe(usersQuery);
-    let migratedCount = 0;
-    for (const user of usersWithoutEntities) {
-        // Generate a unique slug (8 chars, lowercase alphanumeric)
-        const slug = generateSlug(user.slug_source);
-        const displayName = user.display_name || user.email?.split('@')[0] || 'Personal';
-        const firebaseUid = user.firebase_uid;
-        try {
-            // Create personal entity
-            const [entity] = await client.unsafe(`
-        INSERT INTO ${prefix}entities (entity_slug, entity_type, display_name)
-        VALUES ('${slug}', 'personal', '${displayName.replace(/'/g, "''")}')
-        RETURNING id
-      `);
-            // Add user as admin (personal entities use 'admin' role, not 'owner')
-            await client.unsafe(`
-        INSERT INTO ${prefix}entity_members (entity_id, user_id, role, is_active)
-        VALUES ('${entity.id}', '${firebaseUid}', 'admin', true)
-      `);
-            migratedCount++;
-        }
-        catch (error) {
-            // If slug collision, generate a new one and retry
-            if (error.code === '23505') {
-                const newSlug = generateSlug();
-                const [entity] = await client.unsafe(`
-          INSERT INTO ${prefix}entities (entity_slug, entity_type, display_name)
-          VALUES ('${newSlug}', 'personal', '${displayName.replace(/'/g, "''")}')
-          RETURNING id
-        `);
-                await client.unsafe(`
-          INSERT INTO ${prefix}entity_members (entity_id, user_id, role, is_active)
-          VALUES ('${entity.id}', '${firebaseUid}', 'admin', true)
-        `);
-                migratedCount++;
-            }
-            else {
-                throw error;
-            }
-        }
-    }
-    console.log(`Migrated ${migratedCount} users to personal entities`);
-}
-/**
- * Populate entity_id for existing projects.
- * Uses entity_members with role = 'admin' to find personal entity membership.
- */
-async function populateProjectEntityIds(client, prefix) {
-    console.log('Populating entity_id for existing projects...');
-    // Update projects to use user's personal entity (via entity_members with admin role)
-    const result = await client.unsafe(`
-    UPDATE ${prefix}projects p
-    SET entity_id = e.id
-    FROM ${prefix}entities e
-    INNER JOIN ${prefix}entity_members em ON em.entity_id = e.id
-    WHERE p.user_id = em.user_id
-    AND em.role = 'admin'
-    AND em.is_active = true
-    AND e.entity_type = 'personal'
-    AND p.entity_id IS NULL
-  `);
-    console.log(`Updated entity_id for ${result.count || 0} projects`);
-}
-/**
- * Generate a slug from a source string or random.
- */
-function generateSlug(source) {
-    if (source) {
-        // Normalize: lowercase, remove non-alphanumeric, take first 8 chars
-        return source
-            .toLowerCase()
-            .replace(/[^a-z0-9]/g, '')
-            .substring(0, 8)
-            .padEnd(8, '0');
-    }
-    // Generate random slug
-    const chars = 'abcdefghijklmnopqrstuvwxyz0123456789';
-    let slug = '';
-    for (let i = 0; i < 8; i++) {
-        slug += chars.charAt(Math.floor(Math.random() * chars.length));
-    }
-    return slug;
-}
-/**
- * Rollback the entity migration.
- */
-async function rollbackEntityMigration(config) {
-    const { client, schemaName, migrateProjects = true } = config;
-    const prefix = `${schemaName}.`;
-    console.log(`Rolling back entity migration for schema: ${schemaName}`);
-    // Remove entity_id from projects first
-    if (migrateProjects) {
-        await client.unsafe(`
-      ALTER TABLE ${prefix}projects DROP COLUMN IF EXISTS entity_id
-    `);
-    }
-    // Drop tables in reverse order
-    await client.unsafe(`DROP TABLE IF EXISTS ${prefix}entity_invitations`);
-    await client.unsafe(`DROP TABLE IF EXISTS ${prefix}entity_members`);
-    await client.unsafe(`DROP TABLE IF EXISTS ${prefix}entities`);
-    console.log('Entity migration rolled back');
-}
-//# sourceMappingURL=001_add_entities.js.map

package/dist/migrations/index.cjs

@@ -1,10 +0,0 @@
-"use strict";
-/**
- * @fileoverview Migration Exports
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.rollbackEntityMigration = exports.runEntityMigration = void 0;
-var _001_add_entities_1 = require("./001_add_entities");
-Object.defineProperty(exports, "runEntityMigration", { enumerable: true, get: function () { return _001_add_entities_1.runEntityMigration; } });
-Object.defineProperty(exports, "rollbackEntityMigration", { enumerable: true, get: function () { return _001_add_entities_1.rollbackEntityMigration; } });
-//# sourceMappingURL=index.js.map