@tideorg/mcp 1.4.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/GAP_REGISTER.md +117 -0
- package/README.md +38 -0
- package/adapters/AGENTS.md +241 -0
- package/adapters/CLAUDE.md +146 -0
- package/adapters/replit.md +224 -0
- package/canon/anti-patterns.md +2133 -0
- package/canon/concepts.md +816 -0
- package/canon/custom-contracts.md +533 -0
- package/canon/delegation.md +195 -0
- package/canon/feature-mapping.md +637 -0
- package/canon/framework-matrix.md +1125 -0
- package/canon/invariants.md +851 -0
- package/canon/redirect-handler.md +254 -0
- package/canon/tidecloak-bootstrap.md +287 -0
- package/canon/tidecloak-endpoints.md +294 -0
- package/canon/troubleshooting.md +1494 -0
- package/canon/version-policy.md +89 -0
- package/mcp-server/dist/index.d.ts +2 -0
- package/mcp-server/dist/index.js +605 -0
- package/package.json +45 -0
- package/playbooks/add-auth-nextjs-existing.md +799 -0
- package/playbooks/add-auth-nextjs-fresh.md +654 -0
- package/playbooks/add-rbac-nextjs.md +190 -0
- package/playbooks/bootstrap-realm-from-template.md +170 -0
- package/playbooks/configure-e2ee-roles-and-policies.md +196 -0
- package/playbooks/deploy-tidecloak-docker.md +792 -0
- package/playbooks/diagnose-broken-login.md +234 -0
- package/playbooks/diagnose-missing-roles-or-claims.md +253 -0
- package/playbooks/initialize-admin-and-link-account.md +235 -0
- package/playbooks/migrate-from-existing-auth.md +198 -0
- package/playbooks/protect-api-nextjs.md +451 -0
- package/playbooks/protect-routes-nextjs.md +544 -0
- package/playbooks/setup-forseti-e2ee.md +756 -0
- package/playbooks/setup-iga-admin-panel.md +344 -0
- package/playbooks/setup-server-delegation.md +142 -0
- package/playbooks/start-tidecloak-dev.md +130 -0
- package/playbooks/verify-jwt-server-side.md +439 -0
- package/prompts/add-admin-approval-flow.md +50 -0
- package/prompts/build-private-customer-portal.md +85 -0
- package/prompts/migrate-generic-auth-to-tide.md +67 -0
- package/prompts/secure-existing-app.md +80 -0
- package/reference-apps/INDEX.md +87 -0
- package/reference-apps/encrypted-communication/anti-patterns.md +123 -0
- package/reference-apps/encrypted-communication/bootstrap-sequence.md +152 -0
- package/reference-apps/encrypted-communication/manifest.yaml +100 -0
- package/reference-apps/encrypted-communication/role-policy-matrix.md +80 -0
- package/reference-apps/encrypted-communication/scenario.md +134 -0
- package/reference-apps/git-pr-signing-service/anti-patterns.md +61 -0
- package/reference-apps/git-pr-signing-service/bootstrap-sequence.md +157 -0
- package/reference-apps/git-pr-signing-service/manifest.yaml +80 -0
- package/reference-apps/git-pr-signing-service/role-policy-matrix.md +99 -0
- package/reference-apps/git-pr-signing-service/scenario.md +169 -0
- package/reference-apps/iga-admin-governance/anti-patterns.md +133 -0
- package/reference-apps/iga-admin-governance/bootstrap-sequence.md +153 -0
- package/reference-apps/iga-admin-governance/manifest.yaml +87 -0
- package/reference-apps/iga-admin-governance/role-policy-matrix.md +67 -0
- package/reference-apps/iga-admin-governance/scenario.md +126 -0
- package/reference-apps/organisation-password-manager/anti-patterns.md +71 -0
- package/reference-apps/organisation-password-manager/bootstrap-sequence.md +127 -0
- package/reference-apps/organisation-password-manager/manifest.yaml +86 -0
- package/reference-apps/organisation-password-manager/role-policy-matrix.md +59 -0
- package/reference-apps/organisation-password-manager/scenario.md +107 -0
- package/reference-apps/policy-governed-signing/anti-patterns.md +67 -0
- package/reference-apps/policy-governed-signing/bootstrap-sequence.md +128 -0
- package/reference-apps/policy-governed-signing/manifest.yaml +78 -0
- package/reference-apps/policy-governed-signing/role-policy-matrix.md +62 -0
- package/reference-apps/policy-governed-signing/scenario.md +113 -0
- package/skills/tide-diagnostics/SKILL.md +99 -0
- package/skills/tide-integration/SKILL.md +136 -0
- package/skills/tide-learning-capture/SKILL.md +174 -0
- package/skills/tide-rbac-and-e2ee/SKILL.md +214 -0
- package/skills/tide-reviewer/SKILL.md +133 -0
- package/skills/tide-route-and-api-protection/SKILL.md +201 -0
- package/skills/tide-scenario-resolver/SKILL.md +81 -0
- package/skills/tide-setup/SKILL.md +218 -0
- package/skills/tide-solutions-architect/SKILL.md +130 -0
|
@@ -0,0 +1,89 @@
|
|
|
1
|
+
# Tide Pack Version Policy
|
|
2
|
+
|
|
3
|
+
Central version reference for all templates, install snippets, and setup guidance.
|
|
4
|
+
|
|
5
|
+
All other pack files point here. Do not duplicate version numbers in playbooks or templates. If a version changes, update this file and re-align dependents.
|
|
6
|
+
|
|
7
|
+
---
|
|
8
|
+
|
|
9
|
+
## Tide SDK Packages
|
|
10
|
+
|
|
11
|
+
Resolved from npm registry on 2026-03-30. No 0.99.x versions are used.
|
|
12
|
+
|
|
13
|
+
| Package | Stable version | Range for templates | Purpose |
|
|
14
|
+
|---------|---------------|--------------------| --------|
|
|
15
|
+
| `@tidecloak/js` | 0.13.26 | `0.13.26` | Core SDK (vanilla JS, IAMService) |
|
|
16
|
+
| `@tidecloak/react` | 0.13.26 | `0.13.26` | React hooks and guard components |
|
|
17
|
+
| `@tidecloak/nextjs` | 0.13.26 | `0.13.26` | Next.js provider and hooks |
|
|
18
|
+
| `@tidecloak/verify` | 0.13.26 | `0.13.26` | Server-side JWT verification (CJS) |
|
|
19
|
+
| `heimdall-tide` | 0.13.26 | `0.13.26` | Policy signing, BasicCustomRequest |
|
|
20
|
+
| `@tideorg/js` | 0.13.26 | `0.13.26` | Models, Contracts (Forseti) |
|
|
21
|
+
| `asgard-tide` | 0.13.26 | `0.13.26` | Signing request builders (`BasicCustomRequest`, `DynamicPayloadCustomRequest`) |
|
|
22
|
+
|
|
23
|
+
**Pin to exact version in templates.** Tide packages are pre-1.0. Minor bumps can break. Run `npm view <package> version` before installing to confirm the latest stable.
|
|
24
|
+
|
|
25
|
+
**Exclude all 0.99.x versions.** If any `@tidecloak/*` package publishes a 0.99.x release, do not adopt it in pack guidance until it is confirmed stable.
|
|
26
|
+
|
|
27
|
+
---
|
|
28
|
+
|
|
29
|
+
## Framework Packages
|
|
30
|
+
|
|
31
|
+
Resolved from npm registry on 2026-03-25.
|
|
32
|
+
|
|
33
|
+
| Package | Stable version | Range for templates | Notes |
|
|
34
|
+
|---------|---------------|--------------------| ------|
|
|
35
|
+
| `next` | 16.2.1 | `^16.0.0` | Default for generated apps. App Router and Pages Router. Uses `proxy.ts` for request interception (not `middleware.ts`). |
|
|
36
|
+
| `react` | 19.0.0 | `^19.0.0` | Required by Next.js 15+. |
|
|
37
|
+
| `react-dom` | 19.0.0 | `^19.0.0` | Matches React. |
|
|
38
|
+
| `vite` | 6.0.0 | `^6.0.0` | Stable for React SPA templates. |
|
|
39
|
+
| `jose` | 6.0.0 | `^6.0.0` | JWT verification library. |
|
|
40
|
+
| `typescript` | 5.7.0 | `^5.0.0` | Wide range acceptable. |
|
|
41
|
+
| `@vitejs/plugin-react` | 4.3.0 | `^4.0.0` | Vite React plugin. |
|
|
42
|
+
| `@types/node` | 22.0.0 | `^22.0.0` | Node.js type definitions. |
|
|
43
|
+
| `@types/react` | 19.0.0 | `^19.0.0` | React type definitions. Matches React major. |
|
|
44
|
+
| `@types/react-dom` | 19.0.0 | `^19.0.0` | React DOM type definitions. |
|
|
45
|
+
|
|
46
|
+
**Use caret ranges for framework packages.** Framework packages follow semver. Caret ranges allow safe patch/minor updates.
|
|
47
|
+
|
|
48
|
+
**Generated apps target latest stable Next.js.** The default generated-app path uses the current stable Next.js version (^16.0.0). Existing app retrofit paths must respect the project's current Next.js version — do not force-upgrade. See `canon/framework-matrix.md` for version-specific conventions (`proxy.ts` for Next.js 16+, `middleware.ts` for Next.js 15).
|
|
49
|
+
|
|
50
|
+
---
|
|
51
|
+
|
|
52
|
+
## Version Verification Commands
|
|
53
|
+
|
|
54
|
+
Before installing, verify current stable versions:
|
|
55
|
+
|
|
56
|
+
```bash
|
|
57
|
+
# Tide packages
|
|
58
|
+
npm view @tidecloak/nextjs version
|
|
59
|
+
npm view @tidecloak/react version
|
|
60
|
+
npm view @tidecloak/js version
|
|
61
|
+
npm view @tidecloak/verify version
|
|
62
|
+
npm view heimdall-tide version
|
|
63
|
+
npm view @tideorg/js version
|
|
64
|
+
|
|
65
|
+
# Framework packages
|
|
66
|
+
npm view next version
|
|
67
|
+
npm view react version
|
|
68
|
+
npm view vite version
|
|
69
|
+
npm view jose version
|
|
70
|
+
```
|
|
71
|
+
|
|
72
|
+
---
|
|
73
|
+
|
|
74
|
+
## Anti-Patterns
|
|
75
|
+
|
|
76
|
+
- **Do not use `latest` tag in package.json.** Pin Tide packages to exact versions. Use caret ranges only for framework packages. This applies to all Tide packages: `@tidecloak/*`, `@tideorg/js`, `heimdall-tide`, `asgard-tide`.
|
|
77
|
+
- **Do not use `-staging` npm tags.** Tags like `0.13.24-staging` are pre-release builds. Always use the stable version listed above. "Use staging" refers to the Docker image (`tideorg/tidecloak-stg-dev`), never to npm package tags. VERIFIED (LEARNINGS-batch-005 L-01, L-02).
|
|
78
|
+
- **Do not use 0.99.x versions** of any `@tidecloak/*` package in templates or guidance.
|
|
79
|
+
- **Do not assume 1.0.0.** All Tide packages are pre-1.0. Do not write `"@tidecloak/nextjs": "^1.0.0"`.
|
|
80
|
+
- **Do not hardcode versions in playbook install snippets.** Playbooks should say `npm install @tidecloak/nextjs` (installs latest) and then instruct the builder to verify with `npm view`. Templates pin the version explicitly.
|
|
81
|
+
- **Docker image and npm versions are independent.** Switching to the staging Docker image (`tidecloak-stg-dev`) does NOT mean switching to staging npm packages. npm packages stay at stable versions.
|
|
82
|
+
|
|
83
|
+
---
|
|
84
|
+
|
|
85
|
+
## When to Update This File
|
|
86
|
+
|
|
87
|
+
- When a new stable Tide SDK release is published.
|
|
88
|
+
- When a framework major version ships that affects template compatibility.
|
|
89
|
+
- When a 0.99.x Tide package appears and a decision is needed.
|