@valentine-efagene/qshelter-common 2.0.119 → 2.0.121

package/dist/generated/client/models.d.ts

@@ -4,6 +4,8 @@ export type * from './models/Permission.js';
 export type * from './models/RolePermission.js';
 export type * from './models/UserRole.js';
 export type * from './models/TenantMembership.js';
+export type * from './models/Organization.js';
+export type * from './models/OrganizationMember.js';
 export type * from './models/Tenant.js';
 export type * from './models/ApiKey.js';
 export type * from './models/RefreshToken.js';

package/dist/src/middleware/auth-context.d.ts

@@ -71,7 +71,7 @@ export declare function getAuthContext(req: Request): AuthContext;
  *     .send({ name: 'John' });
  * ```
  *
- * @deprecated Use Authorization header directly with JWT token.
+ * @deprecated Use `mockAuthHeaders` for E2E tests or pass Authorization header directly with JWT token.
  * This helper is kept for backward compatibility.
  */
 export declare function authHeaders(userId: string, tenantId: string, extras?: {
@@ -79,6 +79,29 @@ export declare function authHeaders(userId: string, tenantId: string, extras?: {
     roles?: string[];
     token?: string;
 }): Record<string, string>;
+/**
+ * Generate mock authorization headers for E2E tests.
+ *
+ * This is the preferred helper for E2E tests that bypass JWT authentication
+ * and instead use mock headers that simulate what the Lambda authorizer would set.
+ *
+ * @param userId - The user ID to set in the mock headers
+ * @param tenantId - The tenant ID to set in the mock headers
+ * @param options - Optional additional header values
+ * @returns Headers object to pass to supertest .set()
+ *
+ * @example
+ * ```typescript
+ * const response = await api
+ *     .post('/applications')
+ *     .set(mockAuthHeaders(userId, tenantId, { roles: [ROLES.CUSTOMER] }))
+ *     .send({ ... });
+ * ```
+ */
+export declare function mockAuthHeaders(userId: string, tenantId: string, options?: {
+    email?: string;
+    roles?: string[];
+}): Record<string, string>;
 /**
  * Standard role names used across the platform.
  */
@@ -88,6 +111,12 @@ export declare const ROLES: {
     readonly LOAN_OFFICER: "LOAN_OFFICER";
     readonly CUSTOMER: "CUSTOMER";
     readonly VIEWER: "VIEWER";
+    /** Property developers who list properties and upload sales offer letters */
+    readonly DEVELOPER: "DEVELOPER";
+    /** Bank/financial institution representatives who upload preapproval and mortgage offer letters */
+    readonly LENDER: "LENDER";
+    /** Legal officers who upload final offer letters and handle legal documentation */
+    readonly LEGAL: "LEGAL";
 };
 export type RoleName = (typeof ROLES)[keyof typeof ROLES];
 /**

package/dist/src/middleware/auth-context.js

@@ -128,7 +128,7 @@ export function getAuthContext(req) {
  *     .send({ name: 'John' });
  * ```
  *
- * @deprecated Use Authorization header directly with JWT token.
+ * @deprecated Use `mockAuthHeaders` for E2E tests or pass Authorization header directly with JWT token.
  * This helper is kept for backward compatibility.
  */
 export function authHeaders(userId, tenantId, extras) {
@@ -145,6 +145,33 @@ export function authHeaders(userId, tenantId, extras) {
         ...(extras?.roles && { 'x-authorizer-roles': JSON.stringify(extras.roles) }),
     };
 }
+/**
+ * Generate mock authorization headers for E2E tests.
+ *
+ * This is the preferred helper for E2E tests that bypass JWT authentication
+ * and instead use mock headers that simulate what the Lambda authorizer would set.
+ *
+ * @param userId - The user ID to set in the mock headers
+ * @param tenantId - The tenant ID to set in the mock headers
+ * @param options - Optional additional header values
+ * @returns Headers object to pass to supertest .set()
+ *
+ * @example
+ * ```typescript
+ * const response = await api
+ *     .post('/applications')
+ *     .set(mockAuthHeaders(userId, tenantId, { roles: [ROLES.CUSTOMER] }))
+ *     .send({ ... });
+ * ```
+ */
+export function mockAuthHeaders(userId, tenantId, options) {
+    return {
+        'x-authorizer-user-id': userId,
+        'x-authorizer-tenant-id': tenantId,
+        ...(options?.email && { 'x-authorizer-email': options.email }),
+        ...(options?.roles && { 'x-authorizer-roles': JSON.stringify(options.roles) }),
+    };
+}
 /**
  * Standard role names used across the platform.
  */
@@ -154,6 +181,12 @@ export const ROLES = {
     LOAN_OFFICER: 'LOAN_OFFICER',
     CUSTOMER: 'CUSTOMER',
     VIEWER: 'VIEWER',
+    /** Property developers who list properties and upload sales offer letters */
+    DEVELOPER: 'DEVELOPER',
+    /** Bank/financial institution representatives who upload preapproval and mortgage offer letters */
+    LENDER: 'LENDER',
+    /** Legal officers who upload final offer letters and handle legal documentation */
+    LEGAL: 'LEGAL',
 };
 /**
  * Roles that have admin privileges (can manage resources).

package/dist/src/prisma/tenant.js

@@ -20,6 +20,8 @@ const GLOBAL_MODELS = [
     // User preferences/devices (linked to user, not tenant)
     "emailPreference",
     "deviceEndpoint",
+    // Organization members (tenant access via organization.tenantId)
+    "organizationMember",
 ];
 /**
  * Models that have OPTIONAL tenant scoping (nullable tenantId).

package/dist/src/utils/condition-operators.d.ts

@@ -2,30 +2,12 @@
  * Condition operators for evaluating step conditions against questionnaire answers.
  * Used in DocumentationPlanStep.condition to conditionally require documents
  * based on prequalification answers.
+ *
+ * ConditionOperator is a Prisma enum - this file provides TypeScript interfaces
+ * for building condition objects.
  */
-/**
- * Supported condition operators for evaluating document step conditions.
- */
-export declare const CONDITION_OPERATORS: {
-    /** Value equals the specified value */
-    readonly EQUALS: "EQUALS";
-    /** Value does not equal the specified value */
-    readonly NOT_EQUALS: "NOT_EQUALS";
-    /** Value is in the specified array of values */
-    readonly IN: "IN";
-    /** Value is not in the specified array of values */
-    readonly NOT_IN: "NOT_IN";
-    /** Numeric value is greater than the specified value */
-    readonly GREATER_THAN: "GREATER_THAN";
-    /** Numeric value is less than the specified value */
-    readonly LESS_THAN: "LESS_THAN";
-    /** Value exists (is not null/undefined) */
-    readonly EXISTS: "EXISTS";
-};
-/**
- * Type representing a valid condition operator.
- */
-export type ConditionOperator = keyof typeof CONDITION_OPERATORS;
+import { ConditionOperator } from '../../generated/client/enums';
+export { ConditionOperator };
 /**
  * Interface for a simple condition that checks a single question answer.
  */

package/dist/src/utils/condition-operators.js

@@ -2,23 +2,10 @@
  * Condition operators for evaluating step conditions against questionnaire answers.
  * Used in DocumentationPlanStep.condition to conditionally require documents
  * based on prequalification answers.
+ *
+ * ConditionOperator is a Prisma enum - this file provides TypeScript interfaces
+ * for building condition objects.
  */
-/**
- * Supported condition operators for evaluating document step conditions.
- */
-export const CONDITION_OPERATORS = {
-    /** Value equals the specified value */
-    EQUALS: 'EQUALS',
-    /** Value does not equal the specified value */
-    NOT_EQUALS: 'NOT_EQUALS',
-    /** Value is in the specified array of values */
-    IN: 'IN',
-    /** Value is not in the specified array of values */
-    NOT_IN: 'NOT_IN',
-    /** Numeric value is greater than the specified value */
-    GREATER_THAN: 'GREATER_THAN',
-    /** Numeric value is less than the specified value */
-    LESS_THAN: 'LESS_THAN',
-    /** Value exists (is not null/undefined) */
-    EXISTS: 'EXISTS',
-};
+import { ConditionOperator } from '../../generated/client/enums';
+// Re-export for convenience (the Prisma enum is the source of truth)
+export { ConditionOperator };

package/dist/src/utils/documentation-enums.d.ts

@@ -10,8 +10,14 @@ export declare const UPLOADED_BY: {
     readonly CUSTOMER: "CUSTOMER";
     /** Document is uploaded by an admin/staff member */
     readonly ADMIN: "ADMIN";
+    /** Document is uploaded by a lender/bank representative */
+    readonly LENDER: "LENDER";
+    /** Document is uploaded by the developer */
+    readonly DEVELOPER: "DEVELOPER";
     /** Document is uploaded by the system (auto-generated) */
     readonly SYSTEM: "SYSTEM";
+    /** Document is uploaded by a legal officer */
+    readonly LEGAL: "LEGAL";
 };
 /**
  * Type representing a valid uploadedBy value.

package/dist/src/utils/documentation-enums.js

@@ -10,6 +10,12 @@ export const UPLOADED_BY = {
     CUSTOMER: 'CUSTOMER',
     /** Document is uploaded by an admin/staff member */
     ADMIN: 'ADMIN',
+    /** Document is uploaded by a lender/bank representative */
+    LENDER: 'LENDER',
+    /** Document is uploaded by the developer */
+    DEVELOPER: 'DEVELOPER',
     /** Document is uploaded by the system (auto-generated) */
     SYSTEM: 'SYSTEM',
+    /** Document is uploaded by a legal officer */
+    LEGAL: 'LEGAL',
 };

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@valentine-efagene/qshelter-common",
-  "version": "2.0.119",
+  "version": "2.0.121",
   "description": "Shared database schemas and utilities for QShelter services",
   "main": "dist/src/index.js",
   "types": "dist/src/index.d.ts",

package/prisma/migrations/20260115123703_add_organizations/migration.sql

@@ -0,0 +1,69 @@
+-- CreateTable
+CREATE TABLE `organizations` (
+    `id` VARCHAR(191) NOT NULL,
+    `tenantId` VARCHAR(191) NOT NULL,
+    `name` VARCHAR(191) NOT NULL,
+    `type` ENUM('BANK', 'DEVELOPER') NOT NULL,
+    `status` ENUM('PENDING', 'ACTIVE', 'SUSPENDED', 'INACTIVE') NOT NULL DEFAULT 'PENDING',
+    `email` VARCHAR(191) NULL,
+    `phone` VARCHAR(191) NULL,
+    `address` VARCHAR(191) NULL,
+    `city` VARCHAR(191) NULL,
+    `state` VARCHAR(191) NULL,
+    `country` VARCHAR(191) NULL DEFAULT 'Nigeria',
+    `website` VARCHAR(191) NULL,
+    `logoUrl` VARCHAR(191) NULL,
+    `description` TEXT NULL,
+    `bankCode` VARCHAR(191) NULL,
+    `bankLicenseNo` VARCHAR(191) NULL,
+    `swiftCode` VARCHAR(191) NULL,
+    `sortCode` VARCHAR(191) NULL,
+    `cacNumber` VARCHAR(191) NULL,
+    `cacCertificateUrl` VARCHAR(191) NULL,
+    `taxId` VARCHAR(191) NULL,
+    `approvedAt` DATETIME(3) NULL,
+    `approvedById` VARCHAR(191) NULL,
+    `createdAt` DATETIME(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3),
+    `updatedAt` DATETIME(3) NOT NULL,
+
+    INDEX `organizations_tenantId_idx`(`tenantId`),
+    INDEX `organizations_type_idx`(`type`),
+    INDEX `organizations_status_idx`(`status`),
+    UNIQUE INDEX `organizations_tenantId_bankCode_key`(`tenantId`, `bankCode`),
+    UNIQUE INDEX `organizations_tenantId_cacNumber_key`(`tenantId`, `cacNumber`),
+    PRIMARY KEY (`id`)
+) DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;
+
+-- CreateTable
+CREATE TABLE `organization_members` (
+    `id` VARCHAR(191) NOT NULL,
+    `organizationId` VARCHAR(191) NOT NULL,
+    `userId` VARCHAR(191) NOT NULL,
+    `role` ENUM('ADMIN', 'MANAGER', 'OFFICER', 'VIEWER') NOT NULL DEFAULT 'OFFICER',
+    `title` VARCHAR(191) NULL,
+    `department` VARCHAR(191) NULL,
+    `employeeId` VARCHAR(191) NULL,
+    `isActive` BOOLEAN NOT NULL DEFAULT true,
+    `canApprove` BOOLEAN NOT NULL DEFAULT false,
+    `approvalLimit` DECIMAL(65, 30) NULL,
+    `invitedAt` DATETIME(3) NULL,
+    `acceptedAt` DATETIME(3) NULL,
+    `invitedBy` VARCHAR(191) NULL,
+    `createdAt` DATETIME(3) NOT NULL DEFAULT CURRENT_TIMESTAMP(3),
+    `updatedAt` DATETIME(3) NOT NULL,
+
+    INDEX `organization_members_userId_idx`(`userId`),
+    INDEX `organization_members_organizationId_idx`(`organizationId`),
+    INDEX `organization_members_role_idx`(`role`),
+    UNIQUE INDEX `organization_members_organizationId_userId_key`(`organizationId`, `userId`),
+    PRIMARY KEY (`id`)
+) DEFAULT CHARACTER SET utf8mb4 COLLATE utf8mb4_unicode_ci;
+
+-- AddForeignKey
+ALTER TABLE `organizations` ADD CONSTRAINT `organizations_tenantId_fkey` FOREIGN KEY (`tenantId`) REFERENCES `tenants`(`id`) ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE `organization_members` ADD CONSTRAINT `organization_members_organizationId_fkey` FOREIGN KEY (`organizationId`) REFERENCES `organizations`(`id`) ON DELETE CASCADE ON UPDATE CASCADE;
+
+-- AddForeignKey
+ALTER TABLE `organization_members` ADD CONSTRAINT `organization_members_userId_fkey` FOREIGN KEY (`userId`) REFERENCES `users`(`id`) ON DELETE CASCADE ON UPDATE CASCADE;

package/prisma/migrations/20260115125519_add_requires_manual_review_to_step/migration.sql

@@ -0,0 +1,2 @@
+-- AlterTable
+ALTER TABLE `documentation_steps` ADD COLUMN `requiresManualReview` BOOLEAN NOT NULL DEFAULT false;

package/prisma/migrations/20260115134106_add_conditional_step_support/migration.sql

@@ -0,0 +1,11 @@
+-- AlterTable
+ALTER TABLE `documentation_phases` ADD COLUMN `sourceQuestionnairePhaseId` VARCHAR(191) NULL;
+
+-- AlterTable
+ALTER TABLE `documentation_steps` ADD COLUMN `condition` JSON NULL;
+
+-- CreateIndex
+CREATE INDEX `documentation_phases_sourceQuestionnairePhaseId_idx` ON `documentation_phases`(`sourceQuestionnairePhaseId`);
+
+-- AddForeignKey
+ALTER TABLE `documentation_phases` ADD CONSTRAINT `documentation_phases_sourceQuestionnairePhaseId_fkey` FOREIGN KEY (`sourceQuestionnairePhaseId`) REFERENCES `questionnaire_phases`(`id`) ON DELETE SET NULL ON UPDATE CASCADE;

package/prisma/schema.prisma

@@ -62,6 +62,18 @@ enum ApplicationStatus {
   SUPERSEDED // Another buyer locked the unit - this application was outbid
 }
 
+/// Triggers that cause application state transitions
+enum ApplicationTrigger {
+  SUBMIT // Submit application for review (DRAFT -> PENDING)
+  APPROVE // Approve pending application (PENDING -> ACTIVE)
+  REJECT // Reject pending application (PENDING -> CANCELLED)
+  CANCEL // Cancel application
+  COMPLETE // Complete application (all phases done)
+  TERMINATE // Terminate active application
+  TRANSFER // Transfer to different unit
+  SUPERSEDE // Another buyer locked the unit
+}
+
 enum TransferRequestStatus {
   PENDING
   APPROVED
@@ -129,6 +141,20 @@ enum StepStatus {
   AWAITING_REVIEW // Submitted, waiting for admin/system review
 }
 
+/// Operators for conditional step evaluation
+enum ConditionOperator {
+  EQUALS // Field value equals expected value
+  NOT_EQUALS // Field value does not equal expected value
+  IN // Field value is in a list of values
+  NOT_IN // Field value is not in a list of values
+  GREATER_THAN // Numeric comparison
+  LESS_THAN // Numeric comparison
+  GREATER_THAN_OR_EQUAL
+  LESS_THAN_OR_EQUAL
+  EXISTS // Field has any value (not null/undefined)
+  NOT_EXISTS // Field is null/undefined
+}
+
 /// When a step event attachment should trigger
 enum StepTrigger {
   ON_COMPLETE // When step is approved/completed
@@ -169,6 +195,32 @@ enum ApprovalDecision {
   REQUEST_CHANGES
 }
 
+// =============================================================================
+// ORGANIZATION ENUMS (Banks, Developers, etc.)
+// =============================================================================
+
+/// Type of organization on the platform
+enum OrganizationType {
+  BANK // Financial institution providing mortgages (e.g., Access Bank, GTBank)
+  DEVELOPER // Property developer building and selling properties
+}
+
+/// Status of an organization
+enum OrganizationStatus {
+  PENDING // Awaiting approval to operate on platform
+  ACTIVE // Fully operational
+  SUSPENDED // Temporarily suspended
+  INACTIVE // No longer active
+}
+
+/// Role of a member within an organization
+enum OrganizationRole {
+  ADMIN // Can manage org settings, members, and full operations
+  MANAGER // Can approve transactions within limits (checker)
+  OFFICER // Regular employee, can initiate actions (maker)
+  VIEWER // Read-only access to organization data
+}
+
 // =============================================================================
 // CONTRACT TERMINATION / CANCELLATION ENUMS
 // =============================================================================
@@ -408,6 +460,9 @@ model User {
   approvedRefunds  ApplicationRefund[] @relation("RefundApprover")
   processedRefunds ApplicationRefund[] @relation("RefundProcessor")
 
+  // Organization memberships (user can be employee of banks/developers)
+  organizationMemberships OrganizationMember[]
+
   @@index([email])
   @@index([tenantId])
   @@map("users")
@@ -510,6 +565,103 @@ model TenantMembership {
   @@map("tenant_memberships")
 }
 
+// =============================================================================
+// ORGANIZATIONS (Banks, Developers, etc.)
+// =============================================================================
+// Organizations represent external entities that participate in the platform.
+// Banks provide mortgage financing; Developers build and sell properties.
+// Users can be employees (members) of organizations with specific roles.
+// =============================================================================
+
+/// Organization: Banks, Developers, and other partner entities
+model Organization {
+  id       String             @id @default(cuid())
+  tenantId String
+  name     String // e.g., "Access Bank PLC", "Lekki Gardens Ltd"
+  type     OrganizationType // BANK or DEVELOPER
+  status   OrganizationStatus @default(PENDING)
+
+  // Common fields
+  email       String? // Primary contact email
+  phone       String? // Primary contact phone
+  address     String?
+  city        String?
+  state       String?
+  country     String? @default("Nigeria")
+  website     String?
+  logoUrl     String?
+  description String? @db.Text
+
+  // Bank-specific fields
+  bankCode      String? // CBN bank code (e.g., "044" for Access Bank)
+  bankLicenseNo String? // Banking license number
+  swiftCode     String? // SWIFT/BIC code for international transfers
+  sortCode      String? // Sort code for local transfers
+
+  // Developer-specific fields
+  cacNumber         String? // CAC registration number
+  cacCertificateUrl String? // URL to CAC certificate document
+  taxId             String? // Tax Identification Number
+
+  // Approval workflow
+  approvedAt   DateTime?
+  approvedById String?
+
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  tenant  Tenant               @relation(fields: [tenantId], references: [id], onDelete: Cascade)
+  members OrganizationMember[]
+
+  // Properties developed by this organization (for DEVELOPERs)
+  // developedProperties Property[] @relation("PropertyDeveloper")
+
+  @@unique([tenantId, bankCode]) // Bank codes unique within tenant
+  @@unique([tenantId, cacNumber]) // CAC numbers unique within tenant
+  @@index([tenantId])
+  @@index([type])
+  @@index([status])
+  @@map("organizations")
+}
+
+/// OrganizationMember: Links users to organizations with roles and permissions
+/// Supports maker-checker workflows via canApprove and approvalLimit
+model OrganizationMember {
+  id             String           @id @default(cuid())
+  organizationId String
+  userId         String
+  role           OrganizationRole @default(OFFICER)
+
+  // Employee details
+  title      String? // Job title (e.g., "Loan Officer", "Project Manager")
+  department String? // Department within organization
+  employeeId String? // Internal employee ID
+
+  // Status
+  isActive Boolean @default(true)
+
+  // Maker-Checker workflow permissions
+  canApprove    Boolean  @default(false) // Can this member approve transactions?
+  approvalLimit Decimal? // Maximum amount this member can approve (null = unlimited)
+
+  // Invitation/onboarding tracking
+  invitedAt  DateTime?
+  acceptedAt DateTime?
+  invitedBy  String? // User ID who invited this member
+
+  createdAt DateTime @default(now())
+  updatedAt DateTime @updatedAt
+
+  organization Organization @relation(fields: [organizationId], references: [id], onDelete: Cascade)
+  user         User         @relation(fields: [userId], references: [id], onDelete: Cascade)
+
+  @@unique([organizationId, userId]) // User can only be member once per org
+  @@index([userId])
+  @@index([organizationId])
+  @@index([role])
+  @@map("organization_members")
+}
+
 model Tenant {
   id        String   @id @default(cuid())
   name      String
@@ -596,6 +748,9 @@ model Tenant {
   workflowBlockers            WorkflowBlocker[]
   questionnairePlans          QuestionnairePlan[]
 
+  // Organizations (Banks, Developers) operating on this tenant
+  organizations Organization[]
+
   @@index([subdomain])
   @@map("tenants")
 }
@@ -1209,7 +1364,7 @@ model QuestionnairePlanQuestion {
   showIf Json?
 
   // Metadata for grouping
-  category String? // Group questions (e.g., "income", "employment", "property")
+  category QuestionCategory? // Group questions by topic
 
   createdAt DateTime @default(now())
   updatedAt DateTime @updatedAt
@@ -1568,6 +1723,23 @@ enum QuestionnaireCategory {
   CUSTOM
 }
 
+/// Category for individual questions within a questionnaire
+/// Used to group questions by topic for UI/UX and scoring
+enum QuestionCategory {
+  ELIGIBILITY // Age, citizenship, legal status
+  EMPLOYMENT // Employment status, employer details
+  INCOME // Salary, bonuses, other income
+  AFFORDABILITY // Income vs expenses, debt-to-income
+  EXPENSES // Monthly expenses, existing debts
+  APPLICATION_TYPE // Type of mortgage/purchase (single, joint)
+  PERSONAL // Marital status, dependents, contact info
+  PREFERENCES // Preferred terms, property type preferences
+  PROPERTY // Property-related questions
+  CREDIT // Credit history, existing loans
+  ASSETS // Savings, investments, other assets
+  CUSTOM // Custom/uncategorized questions
+}
+
 // Questionnaire field template within a QUESTIONNAIRE phase
 model PaymentMethodPhaseField {
   id       String                     @id @default(cuid())
@@ -1867,6 +2039,9 @@ model QuestionnairePhase {
   // Child records
   fields QuestionnaireField[]
 
+  // Back-relation: Documentation phases that use this questionnaire's answers for conditions
+  dependentDocumentationPhases DocumentationPhase[] @relation("SourceQuestionnaire")
+
   @@index([tenantId])
   @@index([phaseId])
   @@index([questionnairePlanId])
@@ -1890,6 +2065,11 @@ model DocumentationPhase {
   documentationPlanId String?
   documentationPlan   DocumentationPlan? @relation(fields: [documentationPlanId], references: [id])
 
+  // Source questionnaire for conditional step evaluation
+  // Links to the questionnaire phase whose answers determine which steps apply
+  sourceQuestionnairePhaseId String?
+  sourceQuestionnairePhase   QuestionnairePhase? @relation("SourceQuestionnaire", fields: [sourceQuestionnairePhaseId], references: [id])
+
   // Current step pointer for UX and orchestration
   currentStepId String?
   currentStep   DocumentationStep? @relation("CurrentStep", fields: [currentStepId], references: [id])
@@ -1917,6 +2097,7 @@ model DocumentationPhase {
   @@index([tenantId])
   @@index([phaseId])
   @@index([currentStepId])
+  @@index([sourceQuestionnairePhaseId])
   @@map("documentation_phases")
 }
 
@@ -2096,6 +2277,15 @@ model DocumentationStep {
   // Configuration metadata (for GENERATE_DOCUMENT steps, etc.)
   metadata Json?
 
+  // Document validation rules (copied from plan for UPLOAD steps)
+  requiresManualReview Boolean @default(false)
+
+  // Conditional step logic (copied from plan)
+  // When set, this step is only applicable if the condition evaluates to true
+  // Format: { "questionKey": "mortgage_type", "operator": "EQUALS", "value": "JOINT" }
+  // Or: { "questionKey": "employment_status", "operator": "IN", "values": ["SELF_EMPLOYED", "BUSINESS_OWNER"] }
+  condition Json?
+
   // Assignment
   assigneeId String?
   assignee   User?   @relation("DocumentationStepAssignee", fields: [assigneeId], references: [id])