npm - domma-cms - Versions diffs - 0.3.0 → 0.5.0 - Mend

domma-cms 0.3.0 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (145) hide show

package/README.md +3 -3
package/admin/css/admin.css +1 -1
package/admin/dist/domma/domma-tools.css +2313 -0
package/admin/dist/domma/domma-tools.min.js +10 -0
package/admin/index.html +4 -0
package/admin/js/api.js +1 -1
package/admin/js/app.js +8 -4
package/admin/js/config/sidebar-config.js +1 -1
package/admin/js/lib/markdown-toolbar.js +18 -10
package/admin/js/templates/action-editor.html +171 -0
package/admin/js/templates/actions-list.html +19 -0
package/admin/js/templates/api-reference.html +1411 -0
package/admin/js/templates/block-editor.html +158 -0
package/admin/js/templates/blocks.html +8 -0
package/admin/js/templates/collection-editor.html +47 -0
package/admin/js/templates/collection-entries.html +3 -0
package/admin/js/templates/collections.html +51 -4
package/admin/js/templates/documentation.html +258 -0
package/{plugins/form-builder/admin → admin/js}/templates/form-editor.html +238 -199
package/{plugins/form-builder/admin → admin/js}/templates/form-submissions.html +30 -30
package/{plugins/form-builder/admin/templates/forms-list.html → admin/js/templates/forms.html} +17 -17
package/admin/js/templates/login.html +29 -4
package/admin/js/templates/my-profile.html +17 -0
package/admin/js/templates/page-editor.html +39 -0
package/admin/js/templates/pages.html +6 -1
package/admin/js/templates/pro-docs.html +259 -0
package/admin/js/templates/role-editor.html +59 -0
package/admin/js/templates/roles.html +10 -0
package/admin/js/templates/settings.html +123 -21
package/admin/js/templates/tutorials.html +81 -0
package/admin/js/templates/user-editor.html +7 -0
package/admin/js/templates/users.html +3 -26
package/admin/js/templates/view-editor.html +201 -0
package/admin/js/templates/view-preview.html +51 -0
package/admin/js/templates/views-list.html +19 -0
package/admin/js/views/action-editor.js +1 -0
package/admin/js/views/actions-list.js +1 -0
package/admin/js/views/api-reference.js +1 -0
package/admin/js/views/block-editor.js +8 -0
package/admin/js/views/blocks.js +4 -0
package/admin/js/views/collection-editor.js +3 -3
package/admin/js/views/collection-entries.js +1 -1
package/admin/js/views/collections.js +1 -1
package/admin/js/views/dashboard.js +1 -1
package/admin/js/views/form-editor.js +8 -0
package/admin/js/views/form-submissions.js +1 -0
package/admin/js/views/forms.js +1 -0
package/admin/js/views/index.js +1 -1
package/admin/js/views/login.js +2 -2
package/admin/js/views/media.js +1 -1
package/admin/js/views/my-profile.js +1 -0
package/admin/js/views/page-editor.js +34 -15
package/admin/js/views/pages.js +5 -5
package/admin/js/views/plugins.js +10 -10
package/admin/js/views/pro-docs.js +1 -0
package/admin/js/views/role-editor.js +1 -0
package/admin/js/views/roles.js +4 -0
package/admin/js/views/settings.js +3 -1
package/admin/js/views/user-editor.js +1 -1
package/admin/js/views/users.js +4 -7
package/admin/js/views/view-editor.js +1 -0
package/admin/js/views/view-preview.js +1 -0
package/admin/js/views/views-list.js +1 -0
package/bin/cli.js +1 -1
package/config/auth.json +1 -0
package/config/connections.json.bak +9 -0
package/config/connections.json.example +9 -0
package/config/plugins.json +19 -29
package/config/server.json +6 -6
package/config/site.json +12 -2
package/package.json +24 -10
package/plugins/example-analytics/stats.json +17 -12
package/plugins/theme-roller/admin/templates/theme-roller.html +71 -0
package/plugins/theme-roller/admin/views/theme-roller-view.js +403 -0
package/plugins/theme-roller/config.js +1 -0
package/plugins/theme-roller/plugin.js +233 -0
package/plugins/theme-roller/plugin.json +31 -0
package/plugins/theme-roller/public/active-theme.css +0 -0
package/plugins/theme-roller/public/inject-head-late.html +1 -0
package/public/css/forms.css +1 -0
package/public/css/site.css +1 -1
package/public/js/forms.js +1 -0
package/public/js/site.js +1 -1
package/scripts/build.js +194 -129
package/scripts/pro.js +254 -0
package/scripts/reset.js +33 -8
package/scripts/seed.js +343 -78
package/scripts/setup.js +1 -0
package/server/middleware/auth.js +136 -120
package/server/routes/api/actions.js +200 -0
package/server/routes/api/auth.js +292 -146
package/server/routes/api/blocks.js +84 -0
package/server/routes/api/collections.js +79 -27
package/{plugins/form-builder/plugin.js → server/routes/api/forms.js} +483 -505
package/server/routes/api/layouts.js +49 -39
package/server/routes/api/media.js +118 -92
package/server/routes/api/navigation.js +40 -36
package/server/routes/api/pages.js +132 -118
package/server/routes/api/plugins.js +6 -3
package/server/routes/api/settings.js +104 -88
package/server/routes/api/users.js +27 -19
package/server/routes/api/views.js +148 -0
package/server/routes/public.js +124 -108
package/server/server.js +269 -181
package/server/services/actions.js +387 -0
package/server/services/adapterRegistry.js +98 -0
package/server/services/adapters/FileAdapter.js +192 -0
package/server/services/adapters/MongoAdapter.js +220 -0
package/server/services/blocks.js +162 -0
package/server/services/collections.js +74 -86
package/server/services/connectionManager.js +102 -0
package/server/services/content.js +312 -307
package/server/services/email.js +126 -0
package/server/services/forms.js +173 -0
package/server/services/markdown.js +1378 -747
package/server/services/permissionRegistry.js +173 -0
package/server/services/presetCollections.js +251 -0
package/server/services/renderer.js +75 -1
package/server/services/roles.js +227 -0
package/server/services/rowAccess.js +104 -0
package/server/services/userProfiles.js +199 -0
package/server/services/users.js +281 -212
package/server/services/views.js +280 -0
package/server/templates/page.html +119 -113
package/plugins/form-builder/admin/templates/form-settings.html +0 -29
package/plugins/form-builder/admin/views/form-editor.js +0 -1444
package/plugins/form-builder/admin/views/form-settings.js +0 -38
package/plugins/form-builder/admin/views/form-submissions.js +0 -295
package/plugins/form-builder/admin/views/forms-list.js +0 -164
package/plugins/form-builder/config.js +0 -9
package/plugins/form-builder/data/forms/consent.json +0 -104
package/plugins/form-builder/data/forms/contact-details.json +0 -99
package/plugins/form-builder/data/forms/contacts.json +0 -66
package/plugins/form-builder/data/forms/feedback.json +0 -130
package/plugins/form-builder/data/submissions/consent.json +0 -13
package/plugins/form-builder/data/submissions/contact-details.json +0 -1
package/plugins/form-builder/data/submissions/contacts.json +0 -26
package/plugins/form-builder/data/submissions/feedback.json +0 -1
package/plugins/form-builder/plugin.json +0 -52
package/plugins/form-builder/public/inject-body.html +0 -352
package/plugins/form-builder/public/inject-head.html +0 -58
package/plugins/form-builder/public/package.json +0 -1
package/scripts/copy-domma.js +0 -48
package/server/services/userTypes.js +0 -167
/package/{plugins/form-builder/public → public/js}/form-logic-engine.js +0 -0

package/server/routes/api/collections.js CHANGED Viewed

@@ -24,12 +24,27 @@
  * DELETE /collections/:slug/public/:id   - Delete entry (if api.delete enabled)
  */
 import {
-    listCollections, getCollection, createCollection, updateCollection, deleteCollection,
-    listEntries, getEntry, createEntry, updateEntry, deleteEntry, clearEntries,
-    exportEntries, importEntries
+    clearEntries,
+    createCollection,
+    createEntry,
+    deleteCollection,
+    deleteEntry,
+    exportEntries,
+    getCollection,
+    getEntry,
+    importEntries,
+    listCollections,
+    listEntries,
+    updateCollection,
+    updateEntry
 } from '../../services/collections.js';
-import { authenticate, requirePermission } from '../../middleware/auth.js';
-import { getRoleLevel, invalidate as invalidateUserTypes } from '../../services/userTypes.js';
+import {authenticate, requireAdmin, requirePermission} from '../../middleware/auth.js';
+import {getRoleLevel, invalidate as invalidateRoles} from '../../services/roles.js';
+import {getConfig, saveConfig} from '../../config.js';
+import {PRESET_COLLECTION_SLUGS} from '../../services/presetCollections.js';
+import {ensureFormForCollection} from '../../services/forms.js';
+const ALL_PRESET_SLUGS = new Set(['roles', 'user-profiles', ...PRESET_COLLECTION_SLUGS]);
 /**
  * Resolve the role level number for a named role.
@@ -76,34 +91,71 @@ async function checkPublicAccess(schema, operation, request, reply) {
 }
 export async function collectionsRoutes(fastify) {
-    const guard = { preHandler: [authenticate, requirePermission('collections')] };
+    const canRead = {preHandler: [authenticate, requirePermission('collections', 'read')]};
+    const canCreate = {preHandler: [authenticate, requirePermission('collections', 'create')]};
+    const canUpdate = {preHandler: [authenticate, requirePermission('collections', 'update')]};
+    const canDelete = {preHandler: [authenticate, requirePermission('collections', 'delete')]};
     // -------------------------------------------------------------------------
     // Collection CRUD (schema management)
     // -------------------------------------------------------------------------
-    fastify.get('/collections', guard, async () => {
+    fastify.get('/collections', canRead, async () => {
         return listCollections();
     });
-    fastify.post('/collections', guard, async (request, reply) => {
-        const { title, slug, description, fields, api } = request.body || {};
+    fastify.get('/collections/pro-status', canRead, async () => {
+    try {
+      const connections = getConfig('connections');
+      const names = Object.keys(connections).filter(k => k !== '_comment');
+      return {pro: names.length > 0, connections: names};
+    } catch {
+      return {pro: false, connections: []};
+    }
+  });
+  fastify.get('/collections/connections', {preHandler: [authenticate, requireAdmin]}, async () => {
+    try {
+      const {_comment, ...rest} = getConfig('connections');
+      return rest;
+    } catch {
+      return {};
+    }
+  });
+  fastify.put('/collections/connections', {preHandler: [authenticate, requireAdmin]}, async (request, reply) => {
+    const data = request.body;
+    if (!data || typeof data !== 'object' || Array.isArray(data)) {
+      return reply.status(400).send({error: 'Invalid connections data'});
+    }
+    for (const [name, conn] of Object.entries(data)) {
+      if (!conn.type || !conn.uri || !conn.database) {
+        return reply.status(400).send({error: `Connection "${name}" requires type, uri, and database`});
+      }
+    }
+    saveConfig('connections', data);
+    return {success: true};
+  });
+    fastify.post('/collections', canCreate, async (request, reply) => {
+      const {title, slug, description, fields, api, storage} = request.body || {};
         if (!title) return reply.status(400).send({ error: 'title is required' });
         try {
-            const schema = await createCollection({ title, slug, description, fields, api });
+          const schema = await createCollection({title, slug, description, fields, api, storage});
+            await ensureFormForCollection(schema);
             return reply.status(201).send(schema);
         } catch (err) {
             return reply.status(409).send({ error: err.message });
         }
     });
-    fastify.get('/collections/:slug', guard, async (request, reply) => {
+    fastify.get('/collections/:slug', canRead, async (request, reply) => {
         const schema = await getCollection(request.params.slug);
         if (!schema) return reply.status(404).send({ error: 'Collection not found' });
         return schema;
     });
-    fastify.put('/collections/:slug', guard, async (request, reply) => {
+    fastify.put('/collections/:slug', canUpdate, async (request, reply) => {
         try {
             return await updateCollection(request.params.slug, request.body || {});
         } catch (err) {
@@ -111,8 +163,8 @@ export async function collectionsRoutes(fastify) {
         }
     });
-    fastify.delete('/collections/:slug', guard, async (request, reply) => {
-        if (request.params.slug === 'user-types') {
+    fastify.delete('/collections/:slug', canDelete, async (request, reply) => {
+        if (ALL_PRESET_SLUGS.has(request.params.slug)) {
             return reply.status(403).send({ error: 'Cannot delete a preset collection' });
         }
         try {
@@ -127,7 +179,7 @@ export async function collectionsRoutes(fastify) {
     // Entry CRUD
     // -------------------------------------------------------------------------
-    fastify.get('/collections/:slug/entries', guard, async (request, reply) => {
+    fastify.get('/collections/:slug/entries', canRead, async (request, reply) => {
         const schema = await getCollection(request.params.slug);
         if (!schema) return reply.status(404).send({ error: 'Collection not found' });
         const { page, limit, sort, order, search } = request.query;
@@ -140,30 +192,30 @@ export async function collectionsRoutes(fastify) {
         });
     });
-    fastify.get('/collections/:slug/entries/:id', guard, async (request, reply) => {
+    fastify.get('/collections/:slug/entries/:id', canRead, async (request, reply) => {
         const entry = await getEntry(request.params.slug, request.params.id);
         if (!entry) return reply.status(404).send({ error: 'Entry not found' });
         return entry;
     });
-    fastify.post('/collections/:slug/entries', guard, async (request, reply) => {
+    fastify.post('/collections/:slug/entries', canCreate, async (request, reply) => {
         const user = request.user;
         try {
             const entry = await createEntry(request.params.slug, request.body?.data || {}, {
                 createdBy: user?.id || null,
                 source:    'admin'
             });
-            if (request.params.slug === 'user-types') await invalidateUserTypes();
+            if (request.params.slug === 'roles') await invalidateRoles();
             return reply.status(201).send(entry);
         } catch (err) {
             return reply.status(400).send({ error: err.message });
         }
     });
-    fastify.put('/collections/:slug/entries/:id', guard, async (request, reply) => {
+    fastify.put('/collections/:slug/entries/:id', canUpdate, async (request, reply) => {
         try {
             const entry = await updateEntry(request.params.slug, request.params.id, request.body?.data || {});
-            if (request.params.slug === 'user-types') await invalidateUserTypes();
+            if (request.params.slug === 'roles') await invalidateRoles();
             return entry;
         } catch (err) {
             const status = err.message === 'Entry not found' ? 404 : 400;
@@ -171,16 +223,16 @@ export async function collectionsRoutes(fastify) {
         }
     });
-    fastify.delete('/collections/:slug/entries/:id', guard, async (request, reply) => {
-        if (request.params.slug === 'user-types') {
-            const entry = await getEntry('user-types', request.params.id);
+    fastify.delete('/collections/:slug/entries/:id', canDelete, async (request, reply) => {
+        if (request.params.slug === 'roles') {
+            const entry = await getEntry('roles', request.params.id);
             if (entry?.data?.level === 0) {
                 return reply.status(403).send({ error: 'Cannot delete the root admin role' });
             }
         }
         try {
             await deleteEntry(request.params.slug, request.params.id);
-            if (request.params.slug === 'user-types') await invalidateUserTypes();
+            if (request.params.slug === 'roles') await invalidateRoles();
             return { success: true };
         } catch (err) {
             return reply.status(404).send({ error: err.message });
@@ -188,7 +240,7 @@ export async function collectionsRoutes(fastify) {
     });
     // Clear all entries — DELETE /collections/:slug/entries (no :id)
-    fastify.delete('/collections/:slug/entries', guard, async (request, reply) => {
+    fastify.delete('/collections/:slug/entries', canDelete, async (request, reply) => {
         try {
             await clearEntries(request.params.slug);
             return { success: true };
@@ -201,7 +253,7 @@ export async function collectionsRoutes(fastify) {
     // Export / Import
     // -------------------------------------------------------------------------
-    fastify.get('/collections/:slug/export', guard, async (request, reply) => {
+    fastify.get('/collections/:slug/export', canRead, async (request, reply) => {
         const format = request.query.format === 'csv' ? 'csv' : 'json';
         try {
             const output = await exportEntries(request.params.slug, format);
@@ -218,7 +270,7 @@ export async function collectionsRoutes(fastify) {
         }
     });
-    fastify.post('/collections/:slug/import', guard, async (request, reply) => {
+    fastify.post('/collections/:slug/import', canCreate, async (request, reply) => {
         const user    = request.user;
         const entries = request.body?.entries;
         if (!Array.isArray(entries)) return reply.status(400).send({ error: 'entries must be an array' });