hazo_auth 4.3.0 → 4.4.1

package/cli-src/lib/services/password_change_service.ts

@@ -3,9 +3,9 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import argon2 from "argon2";
-import { get_password_requirements_config } from "../password_requirements_config.server";
-import { send_template_email } from "./email_service";
-import { create_app_logger } from "../app_logger";
+import { get_password_requirements_config } from "../password_requirements_config.server.js";
+import { send_template_email } from "./email_service.js";
+import { create_app_logger } from "../app_logger.js";
 
 // section: types
 export type PasswordChangeData = {

package/cli-src/lib/services/password_reset_service.ts

@@ -2,10 +2,10 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
-import { create_token } from "./token_service";
+import { create_token } from "./token_service.js";
 import argon2 from "argon2";
-import { create_app_logger } from "../app_logger";
-import { send_template_email } from "./email_service";
+import { create_app_logger } from "../app_logger.js";
+import { send_template_email } from "./email_service.js";
 
 // section: types
 export type PasswordResetRequestData = {

package/cli-src/lib/services/profile_picture_remove_service.ts

@@ -2,9 +2,9 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
-import { map_db_source_to_ui } from "./profile_picture_source_mapper";
-import { get_profile_picture_config } from "../profile_picture_config.server";
-import { create_app_logger } from "../app_logger";
+import { map_db_source_to_ui } from "./profile_picture_source_mapper.js";
+import { get_profile_picture_config } from "../profile_picture_config.server.js";
+import { create_app_logger } from "../app_logger.js";
 import fs from "fs";
 import path from "path";
 

package/cli-src/lib/services/profile_picture_service.ts

@@ -3,13 +3,13 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import gravatarUrl from "gravatar-url";
-import { get_profile_picture_config } from "../profile_picture_config.server";
-import { get_ui_sizes_config } from "../ui_sizes_config.server";
-import { get_file_types_config } from "../file_types_config.server";
-import { create_app_logger } from "../app_logger";
+import { get_profile_picture_config } from "../profile_picture_config.server.js";
+import { get_ui_sizes_config } from "../ui_sizes_config.server.js";
+import { get_file_types_config } from "../file_types_config.server.js";
+import { create_app_logger } from "../app_logger.js";
 import path from "path";
 import fs from "fs";
-import { map_ui_source_to_db, type ProfilePictureSourceUI } from "./profile_picture_source_mapper";
+import { map_ui_source_to_db, type ProfilePictureSourceUI } from "./profile_picture_source_mapper.js";
 
 // section: types
 export type ProfilePictureSource = ProfilePictureSourceUI;

package/cli-src/lib/services/registration_service.ts

@@ -4,14 +4,14 @@ import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import argon2 from "argon2";
 import { randomUUID } from "crypto";
-import { create_token } from "./token_service";
-import { get_default_profile_picture } from "./profile_picture_service";
-import { get_profile_picture_config } from "../profile_picture_config.server";
-import { map_ui_source_to_db } from "./profile_picture_source_mapper";
-import { create_app_logger } from "../app_logger";
-import { send_template_email } from "./email_service";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
-import { get_filename, get_line_number } from "../utils/api_route_helpers";
+import { create_token } from "./token_service.js";
+import { get_default_profile_picture } from "./profile_picture_service.js";
+import { get_profile_picture_config } from "../profile_picture_config.server.js";
+import { map_ui_source_to_db } from "./profile_picture_source_mapper.js";
+import { create_app_logger } from "../app_logger.js";
+import { send_template_email } from "./email_service.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
+import { get_filename, get_line_number } from "../utils/api_route_helpers.js";
 
 // section: types
 export type RegistrationData = {

package/cli-src/lib/services/scope_labels_service.ts

@@ -3,10 +3,10 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import { randomUUID } from "crypto";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
 import type { ScopeLevel } from "./scope_service";
-import { SCOPE_LEVELS } from "./scope_service";
+import { SCOPE_LEVELS } from "./scope_service.js";
 
 // section: types
 export type ScopeLabel = {

package/cli-src/lib/services/scope_service.ts

@@ -2,8 +2,8 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
 
 // section: types
 export type ScopeLevel =

package/cli-src/lib/services/session_token_service.ts

@@ -2,8 +2,8 @@
 // Uses jose library for Edge-compatible JWT operations
 // section: imports
 import { SignJWT, jwtVerify } from "jose";
-import { create_app_logger } from "../app_logger";
-import { get_filename, get_line_number } from "../utils/api_route_helpers";
+import { create_app_logger } from "../app_logger.js";
+import { get_filename, get_line_number } from "../utils/api_route_helpers.js";
 
 // section: types
 export type SessionTokenPayload = {
@@ -175,3 +175,7 @@ export async function validate_session_token(
 
 
 
+
+
+
+

package/cli-src/lib/services/token_service.ts

@@ -4,8 +4,8 @@ import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import { randomBytes, randomUUID } from "crypto";
 import argon2 from "argon2";
-import { read_config_section } from "../config/config_loader.server";
-import { create_app_logger } from "../app_logger";
+import { read_config_section } from "../config/config_loader.server.js";
+import { create_app_logger } from "../app_logger.js";
 
 // section: types
 export type TokenType = "refresh" | "password_reset" | "email_verification";

package/cli-src/lib/services/user_profiles_service.ts

@@ -4,10 +4,10 @@
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
 import { differenceInDays } from "date-fns";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
-import { get_user_profiles_cache } from "./user_profiles_cache";
-import { get_user_profiles_cache_config } from "../user_profiles_config.server";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
+import { get_user_profiles_cache } from "./user_profiles_cache.js";
+import { get_user_profiles_cache_config } from "../user_profiles_config.server.js";
 
 // section: types
 /**

package/cli-src/lib/services/user_scope_service.ts

@@ -2,8 +2,8 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
 import {
   type ScopeLevel,
   SCOPE_LEVELS,
@@ -12,7 +12,7 @@ import {
   get_scope_by_seq,
   get_scope_ancestors,
   is_valid_scope_level,
-} from "./scope_service";
+} from "./scope_service.js";
 
 // section: types
 export type UserScope = {

package/cli-src/lib/services/user_update_service.ts

@@ -2,10 +2,10 @@
 // section: imports
 import type { HazoConnectAdapter } from "hazo_connect";
 import { createCrudService } from "hazo_connect/server";
-import { map_ui_source_to_db, type ProfilePictureSourceUI } from "./profile_picture_source_mapper";
-import { create_app_logger } from "../app_logger";
-import { sanitize_error_for_user } from "../utils/error_sanitizer";
-import { get_filename, get_line_number } from "../utils/api_route_helpers";
+import { map_ui_source_to_db, type ProfilePictureSourceUI } from "./profile_picture_source_mapper.js";
+import { create_app_logger } from "../app_logger.js";
+import { sanitize_error_for_user } from "../utils/error_sanitizer.js";
+import { get_filename, get_line_number } from "../utils/api_route_helpers.js";
 
 // section: types
 export type UserUpdateData = {

package/cli-src/lib/ui_shell_config.server.ts

@@ -1,6 +1,6 @@
 // file_description: load ui shell layout settings from hazo_auth_config.ini
 // section: imports
-import { get_config_value } from "./config/config_loader.server";
+import { get_config_value } from "./config/config_loader.server.js";
 
 // section: types
 export type UiShellLayoutMode = "test_sidebar" | "standalone";

package/cli-src/lib/ui_sizes_config.server.ts

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read UI size configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_number } from "./config/config_loader.server";
+import { get_config_number } from "./config/config_loader.server.js";
 
 // section: types
 export type UISizesConfig = {

package/cli-src/lib/user_fields_config.server.ts

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read shared user fields configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_boolean } from "./config/config_loader.server";
+import { get_config_boolean } from "./config/config_loader.server.js";
 
 // section: types
 export type UserFieldsConfig = {

package/cli-src/lib/user_management_config.server.ts

@@ -1,6 +1,6 @@
 // file_description: server-only helper to read user management configuration from hazo_auth_config.ini
 // section: imports
-import { get_config_value, get_config_array, read_config_section } from "./config/config_loader.server";
+import { get_config_value, get_config_array, read_config_section } from "./config/config_loader.server.js";
 
 // section: types
 export type UserManagementConfig = {

package/cli-src/lib/user_profiles_config.server.ts

@@ -2,7 +2,7 @@
 // section: imports
 import {
   get_config_number,
-} from "./config/config_loader.server";
+} from "./config/config_loader.server.js";
 
 // section: types
 

package/cli-src/lib/utils/error_sanitizer.ts

@@ -1,6 +1,6 @@
 // file_description: utility functions for sanitizing error messages for user display
 // section: imports
-import { create_app_logger } from "../app_logger";
+import { create_app_logger } from "../app_logger.js";
 
 // section: constants
 const USER_FRIENDLY_ERROR_MESSAGE = "We are facing some issues in our system, please try again later.";

package/cli-src/server/types/app_types.ts

@@ -0,0 +1,72 @@
+// file_description: define shared application level types for the hazo_auth server
+// section: request_context_types
+import type { Request } from "express";
+import type { Logger, LogData } from "hazo_logs";
+
+// section: logger_interface_definition
+// Re-export hazo_logs types for backward compatibility
+export type logger_method = (
+  message: string,
+  data?: LogData
+) => void;
+
+// Use hazo_logs Logger type as logger_service for backward compatibility
+export type logger_service = Logger;
+
+// section: configuration_types
+export type emailer_client = {
+  send_message: (
+    payload: Record<string, unknown>
+  ) => Promise<{ success: boolean }>;
+};
+
+export type handlebars_templates = Record<string, string>;
+
+export type password_policy = {
+  min_length: number;
+  requires_uppercase: boolean;
+  requires_lowercase: boolean;
+  requires_number: boolean;
+  requires_symbol: boolean;
+};
+
+export type token_settings = {
+  access_token_ttl_seconds: number;
+  refresh_token_ttl_seconds: number;
+};
+
+export type rate_limit_settings = {
+  max_attempts: number;
+  window_minutes: number;
+};
+
+export type captcha_settings =
+  | {
+      provider: "recaptcha_v2" | "recaptcha_v3" | "hcaptcha";
+      secret_key: string;
+    }
+  | undefined;
+
+export type runtime_configuration = {
+  permission_names: string[];
+  logger: logger_service;
+  emailer: emailer_client;
+  templates: handlebars_templates;
+  labels: Record<string, string>;
+  styles: Record<string, string>;
+  password_policy: password_policy;
+  token_settings: token_settings;
+  rate_limit: rate_limit_settings;
+  captcha: captcha_settings;
+};
+
+export type app_context = {
+  config: runtime_configuration;
+};
+
+// section: typed_request_wrapper
+export type context_request<T = unknown> = Request & {
+  body: T;
+  context: app_context;
+};
+

package/cli-src/server/types/express.d.ts

@@ -0,0 +1,16 @@
+// file_description: augment express request with hazo_auth context
+import type { app_context } from "./app_types";
+
+declare global {
+  namespace Express {
+    interface Request {
+      context: app_context;
+    }
+  }
+}
+
+export {};
+
+
+
+

package/dist/components/layouts/dev_lock/index.d.ts

@@ -0,0 +1,29 @@
+export type DevLockLayoutProps = {
+    /** Background color (default: #000000 - black) */
+    background_color?: string;
+    /** Logo image path (default: /logo.png) */
+    logo_path?: string;
+    /** Logo width in pixels (default: 120) */
+    logo_width?: number;
+    /** Logo height in pixels (default: 120) */
+    logo_height?: number;
+    /** Application name displayed below logo */
+    application_name?: string;
+    /** Limited access text displayed with lock icon (default: "Limited Access") */
+    limited_access_text?: string;
+    /** Password input placeholder (default: "Enter access password") */
+    password_placeholder?: string;
+    /** Submit button text (default: "Unlock") */
+    submit_button_text?: string;
+    /** Error message for incorrect password (default: "Incorrect password") */
+    error_message?: string;
+    /** Text color for labels (default: #ffffff - white) */
+    text_color?: string;
+    /** Accent color for button (default: #3b82f6 - blue) */
+    accent_color?: string;
+    /** Callback when unlock is successful */
+    onUnlock?: () => void;
+};
+export default function DevLockLayout({ background_color, logo_path, logo_width, logo_height, application_name, limited_access_text, password_placeholder, submit_button_text, error_message, text_color, accent_color, onUnlock, }: DevLockLayoutProps): import("react/jsx-runtime").JSX.Element;
+export { DevLockLayout };
+//# sourceMappingURL=index.d.ts.map

package/dist/components/layouts/dev_lock/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/dev_lock/index.tsx"],"names":[],"mappings":"AAaA,MAAM,MAAM,kBAAkB,GAAG;IAC/B,kDAAkD;IAClD,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,2CAA2C;IAC3C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0CAA0C;IAC1C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,2CAA2C;IAC3C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,4CAA4C;IAC5C,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,+EAA+E;IAC/E,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,oEAAoE;IACpE,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,6CAA6C;IAC7C,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,2EAA2E;IAC3E,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,uDAAuD;IACvD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,wDAAwD;IACxD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,yCAAyC;IACzC,QAAQ,CAAC,EAAE,MAAM,IAAI,CAAC;CACvB,CAAC;AAGF,MAAM,CAAC,OAAO,UAAU,aAAa,CAAC,EACpC,gBAA4B,EAC5B,SAAuB,EACvB,UAAgB,EAChB,WAAiB,EACjB,gBAAqB,EACrB,mBAAsC,EACtC,oBAA8C,EAC9C,kBAA6B,EAC7B,aAAoC,EACpC,UAAsB,EACtB,YAAwB,EACxB,QAAQ,GACT,EAAE,kBAAkB,2CA4IpB;AAED,OAAO,EAAE,aAAa,EAAE,CAAC"}

package/dist/components/layouts/dev_lock/index.js

@@ -0,0 +1,60 @@
+// file_description: Development lock screen layout component
+// A simple centered layout for entering the dev lock password
+// section: client_directive
+"use client";
+import { jsx as _jsx, jsxs as _jsxs, Fragment as _Fragment } from "react/jsx-runtime";
+// section: imports
+import { useState, useCallback } from "react";
+import Image from "next/image";
+import { Input } from "../../ui/input";
+import { Button } from "../../ui/button";
+import { Lock, AlertCircle, Loader2 } from "lucide-react";
+// section: component
+export default function DevLockLayout({ background_color = "#000000", logo_path = "/logo.png", logo_width = 120, logo_height = 120, application_name = "", limited_access_text = "Limited Access", password_placeholder = "Enter access password", submit_button_text = "Unlock", error_message = "Incorrect password", text_color = "#ffffff", accent_color = "#3b82f6", onUnlock, }) {
+    const [password, setPassword] = useState("");
+    const [error, setError] = useState(null);
+    const [isLoading, setIsLoading] = useState(false);
+    const handleSubmit = useCallback(async (e) => {
+        e.preventDefault();
+        setError(null);
+        setIsLoading(true);
+        try {
+            const response = await fetch("/api/hazo_auth/dev_lock", {
+                method: "POST",
+                headers: { "Content-Type": "application/json" },
+                body: JSON.stringify({ password }),
+            });
+            if (response.ok) {
+                // Success - redirect to home or call onUnlock
+                if (onUnlock) {
+                    onUnlock();
+                }
+                else {
+                    window.location.href = "/";
+                }
+            }
+            else {
+                setError(error_message);
+                setPassword("");
+            }
+        }
+        catch (_a) {
+            setError("An error occurred. Please try again.");
+        }
+        finally {
+            setIsLoading(false);
+        }
+    }, [password, error_message, onUnlock]);
+    const handlePasswordChange = useCallback((e) => {
+        setPassword(e.target.value);
+        // Clear error when user starts typing
+        if (error) {
+            setError(null);
+        }
+    }, [error]);
+    return (_jsx("div", { className: "cls_dev_lock_layout min-h-screen flex flex-col items-center justify-center p-4", style: { backgroundColor: background_color }, children: _jsxs("div", { className: "cls_dev_lock_container flex flex-col items-center gap-6 max-w-sm w-full", children: [_jsx("div", { className: "cls_dev_lock_logo", children: _jsx(Image, { src: logo_path, alt: "Application logo", width: logo_width, height: logo_height, className: "object-contain", priority: true }) }), application_name && (_jsx("h1", { className: "cls_dev_lock_app_name text-2xl font-bold text-center", style: { color: text_color }, children: application_name })), _jsxs("div", { className: "cls_dev_lock_header flex items-center gap-2", children: [_jsx(Lock, { className: "w-5 h-5", style: { color: text_color } }), _jsx("span", { className: "cls_dev_lock_text text-sm font-medium uppercase tracking-wider", style: { color: text_color, opacity: 0.8 }, children: limited_access_text })] }), _jsxs("form", { onSubmit: handleSubmit, className: "cls_dev_lock_form flex flex-col gap-4 w-full", children: [_jsx("div", { className: "cls_dev_lock_input_wrapper relative", children: _jsx(Input, { type: "password", value: password, onChange: handlePasswordChange, placeholder: password_placeholder, className: "cls_dev_lock_input h-12 bg-white/10 border-white/20 text-white placeholder:text-white/50 focus:border-white/40 focus:ring-white/20", disabled: isLoading, autoFocus: true, autoComplete: "current-password" }) }), error && (_jsxs("div", { className: "cls_dev_lock_error flex items-center gap-2 text-sm", style: { color: "#ef4444" }, children: [_jsx(AlertCircle, { className: "w-4 h-4 flex-shrink-0" }), _jsx("span", { children: error })] })), _jsx(Button, { type: "submit", className: "cls_dev_lock_button h-12 font-medium transition-colors", style: {
+                                backgroundColor: accent_color,
+                                color: "#ffffff",
+                            }, disabled: isLoading || !password, children: isLoading ? (_jsxs(_Fragment, { children: [_jsx(Loader2, { className: "w-4 h-4 animate-spin mr-2" }), "Verifying..."] })) : (submit_button_text) })] })] }) }));
+}
+export { DevLockLayout };

package/dist/components/layouts/index.d.ts

@@ -12,5 +12,7 @@ export { default as MySettingsLayout } from "./my_settings/index";
 export type { MySettingsLayoutProps } from "./my_settings/index";
 export { UserManagementLayout } from "./user_management/index";
 export type { UserManagementLayoutProps } from "./user_management/index";
+export { default as DevLockLayout } from "./dev_lock/index";
+export type { DevLockLayoutProps } from "./dev_lock/index";
 export * from "./shared/index";
 //# sourceMappingURL=index.d.ts.map

package/dist/components/layouts/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/components/layouts/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,IAAI,WAAW,EAAE,MAAM,eAAe,CAAC;AACvD,YAAY,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAEtD,OAAO,EAAE,OAAO,IAAI,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAC7D,YAAY,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAE5D,OAAO,EAAE,OAAO,IAAI,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAC1E,YAAY,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAEzE,OAAO,EAAE,OAAO,IAAI,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AACxE,YAAY,EAAE,wBAAwB,EAAE,MAAM,wBAAwB,CAAC;AAEvE,OAAO,EAAE,OAAO,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AAChF,YAAY,EAAE,4BAA4B,EAAE,MAAM,4BAA4B,CAAC;AAE/E,OAAO,EAAE,OAAO,IAAI,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAClE,YAAY,EAAE,qBAAqB,EAAE,MAAM,qBAAqB,CAAC;AAEjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAC/D,YAAY,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAGzE,cAAc,gBAAgB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/components/layouts/index.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,OAAO,IAAI,WAAW,EAAE,MAAM,eAAe,CAAC;AACvD,YAAY,EAAE,gBAAgB,EAAE,MAAM,eAAe,CAAC;AAEtD,OAAO,EAAE,OAAO,IAAI,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAC7D,YAAY,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAE5D,OAAO,EAAE,OAAO,IAAI,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAC1E,YAAY,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAEzE,OAAO,EAAE,OAAO,IAAI,mBAAmB,EAAE,MAAM,wBAAwB,CAAC;AACxE,YAAY,EAAE,wBAAwB,EAAE,MAAM,wBAAwB,CAAC;AAEvE,OAAO,EAAE,OAAO,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AAChF,YAAY,EAAE,4BAA4B,EAAE,MAAM,4BAA4B,CAAC;AAE/E,OAAO,EAAE,OAAO,IAAI,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAClE,YAAY,EAAE,qBAAqB,EAAE,MAAM,qBAAqB,CAAC;AAEjE,OAAO,EAAE,oBAAoB,EAAE,MAAM,yBAAyB,CAAC;AAC/D,YAAY,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAEzE,OAAO,EAAE,OAAO,IAAI,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAC5D,YAAY,EAAE,kBAAkB,EAAE,MAAM,kBAAkB,CAAC;AAG3D,cAAc,gBAAgB,CAAC"}

package/dist/components/layouts/index.js

@@ -7,5 +7,6 @@ export { default as ResetPasswordLayout } from "./reset_password/index";
 export { default as EmailVerificationLayout } from "./email_verification/index";
 export { default as MySettingsLayout } from "./my_settings/index";
 export { UserManagementLayout } from "./user_management/index";
+export { default as DevLockLayout } from "./dev_lock/index";
 // section: shared_exports
 export * from "./shared/index";

package/dist/components/layouts/login/hooks/use_login_form.js

@@ -97,10 +97,10 @@ export const use_login_form = ({ dataClient, logger, redirectRoute, successMessa
         const logData = Object.assign({ filename: get_filename(), line_number: get_line_number(), email: values[LOGIN_FIELD_IDS.EMAIL], ip_address: clientIp, timestamp,
             success }, (errorMessage ? { error_message: errorMessage } : {}));
         if (success) {
-            logger.info("login_attempt_successful", logData);
+            logger === null || logger === void 0 ? void 0 : logger.info("login_attempt_successful", logData);
         }
         else {
-            logger.error("login_attempt_failed", logData);
+            logger === null || logger === void 0 ? void 0 : logger.error("login_attempt_failed", logData);
         }
     }, [logger, values, clientIp]);
     const handleSubmit = useCallback(async (event) => {

package/dist/components/layouts/org_management/index.d.ts

@@ -0,0 +1,26 @@
+export type OrgManagementLayoutProps = {
+    className?: string;
+    /** Title displayed at the top */
+    title?: string;
+    /** Description displayed below the title */
+    description?: string;
+    /** Required permission for org management (default: hazo_perm_org_management) */
+    requiredPermission?: string;
+    /** Permission for global admin access (default: hazo_org_global_admin) */
+    globalAdminPermission?: string;
+    /** Message shown when authentication is required */
+    authRequiredMessage?: string;
+    /** Message shown when permission is denied */
+    permissionDeniedMessage?: string;
+    /** Message shown when multi-tenancy is disabled */
+    multiTenancyDisabledMessage?: string;
+};
+/**
+ * Standalone Organization Management layout component
+ * Provides organization hierarchy management with CRUD operations
+ * @param props - Component props
+ * @returns Organization Management layout component
+ */
+export declare function OrgManagementLayout({ className, title, description, requiredPermission, globalAdminPermission, authRequiredMessage, permissionDeniedMessage, multiTenancyDisabledMessage, }: OrgManagementLayoutProps): import("react/jsx-runtime").JSX.Element;
+export default OrgManagementLayout;
+//# sourceMappingURL=index.d.ts.map

package/dist/components/layouts/org_management/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/components/layouts/org_management/index.tsx"],"names":[],"mappings":"AAwBA,MAAM,MAAM,wBAAwB,GAAG;IACrC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,iCAAiC;IACjC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,4CAA4C;IAC5C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,iFAAiF;IACjF,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,0EAA0E;IAC1E,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,oDAAoD;IACpD,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,8CAA8C;IAC9C,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,mDAAmD;IACnD,2BAA2B,CAAC,EAAE,MAAM,CAAC;CACtC,CAAC;AAGF;;;;;GAKG;AACH,wBAAgB,mBAAmB,CAAC,EAClC,SAAS,EACT,KAAiC,EACjC,WAAiE,EACjE,kBAA+C,EAC/C,qBAA+C,EAC/C,mBAAwE,EACxE,uBAA4F,EAC5F,2BAAkF,GACnF,EAAE,wBAAwB,2CAuH1B;AAED,eAAe,mBAAmB,CAAC"}

package/dist/components/layouts/org_management/index.js

@@ -0,0 +1,75 @@
+// file_description: Standalone Organization Management layout component for managing multi-tenancy organizations
+// section: client_directive
+"use client";
+import { jsx as _jsx, jsxs as _jsxs } from "react/jsx-runtime";
+// section: imports
+import { useState, useEffect } from "react";
+import { OrgHierarchyTab } from "../user_management/components/org_hierarchy_tab";
+import { useHazoAuthConfig } from "../../../contexts/hazo_auth_provider";
+import { use_hazo_auth } from "../shared/hooks/use_hazo_auth";
+import { Card, CardContent, CardDescription, CardHeader, CardTitle, } from "../../ui/card";
+import { Loader2, AlertCircle, Shield, Building2, } from "lucide-react";
+// section: component
+/**
+ * Standalone Organization Management layout component
+ * Provides organization hierarchy management with CRUD operations
+ * @param props - Component props
+ * @returns Organization Management layout component
+ */
+export function OrgManagementLayout({ className, title = "Organization Management", description = "Manage your organization hierarchy and structure.", requiredPermission = "hazo_perm_org_management", globalAdminPermission = "hazo_org_global_admin", authRequiredMessage = "Please log in to access organization management.", permissionDeniedMessage = "You need organization management permission to access this page.", multiTenancyDisabledMessage = "Multi-tenancy is not enabled in the configuration.", }) {
+    const { apiBasePath } = useHazoAuthConfig();
+    const authResult = use_hazo_auth();
+    const [multiTenancyEnabled, setMultiTenancyEnabled] = useState(null);
+    const [checkingMultiTenancy, setCheckingMultiTenancy] = useState(true);
+    // Check if multi-tenancy is enabled
+    useEffect(() => {
+        const checkMultiTenancy = async () => {
+            try {
+                const response = await fetch(`${apiBasePath}/org_management/orgs?action=list`);
+                const data = await response.json();
+                if (data.code === "MULTI_TENANCY_DISABLED") {
+                    setMultiTenancyEnabled(false);
+                }
+                else {
+                    setMultiTenancyEnabled(true);
+                }
+            }
+            catch (error) {
+                // If we can't check, assume enabled and let the component handle it
+                setMultiTenancyEnabled(true);
+            }
+            finally {
+                setCheckingMultiTenancy(false);
+            }
+        };
+        if (authResult.authenticated && authResult.permissions.includes(requiredPermission)) {
+            void checkMultiTenancy();
+        }
+        else {
+            setCheckingMultiTenancy(false);
+        }
+    }, [apiBasePath, authResult.authenticated, authResult.permissions, requiredPermission]);
+    // Loading state
+    if (authResult.loading || checkingMultiTenancy) {
+        return (_jsx("div", { className: `cls_org_management_layout flex items-center justify-center p-8 ${className || ""}`, children: _jsx(Loader2, { className: "h-6 w-6 animate-spin text-slate-400" }) }));
+    }
+    // Not authenticated
+    if (!authResult.authenticated) {
+        return (_jsxs("div", { className: `cls_org_management_layout flex flex-col items-center justify-center p-8 gap-4 ${className || ""}`, children: [_jsx(AlertCircle, { className: "h-12 w-12 text-red-500" }), _jsx("h1", { className: "text-xl font-semibold", children: "Authentication Required" }), _jsx("p", { className: "text-muted-foreground text-center", children: authRequiredMessage })] }));
+    }
+    // Check required permission
+    const hasOrgManagementPermission = authResult.permissions.includes(requiredPermission);
+    if (!hasOrgManagementPermission) {
+        return (_jsxs("div", { className: `cls_org_management_layout flex flex-col items-center justify-center p-8 gap-4 ${className || ""}`, children: [_jsx(Shield, { className: "h-12 w-12 text-amber-500" }), _jsx("h1", { className: "text-xl font-semibold", children: "Access Denied" }), _jsx("p", { className: "text-muted-foreground text-center", children: permissionDeniedMessage }), _jsxs("p", { className: "text-xs text-muted-foreground", children: ["Required permission: ", _jsx("code", { className: "bg-muted px-1 py-0.5 rounded", children: requiredPermission })] })] }));
+    }
+    // Multi-tenancy disabled
+    if (multiTenancyEnabled === false) {
+        return (_jsxs("div", { className: `cls_org_management_layout flex flex-col items-center justify-center p-8 gap-4 ${className || ""}`, children: [_jsx(Building2, { className: "h-12 w-12 text-amber-500" }), _jsx("h1", { className: "text-xl font-semibold", children: "Multi-Tenancy Disabled" }), _jsx("p", { className: "text-muted-foreground text-center max-w-md", children: multiTenancyDisabledMessage }), _jsxs("p", { className: "text-xs text-muted-foreground text-center", children: ["Enable multi-tenancy by setting", " ", _jsx("code", { className: "bg-muted px-1 py-0.5 rounded", children: "enable_multi_tenancy = true" }), " in the", " ", _jsx("code", { className: "bg-muted px-1 py-0.5 rounded", children: "[hazo_auth__multi_tenancy]" }), " section."] })] }));
+    }
+    // Check global admin permission
+    const isGlobalAdmin = authResult.permissions.includes(globalAdminPermission);
+    return (_jsxs("div", { className: `cls_org_management_layout flex flex-col gap-6 p-4 w-full max-w-5xl mx-auto ${className || ""}`, children: [_jsxs("div", { className: "cls_org_management_header", children: [_jsxs("h1", { className: "text-2xl font-bold flex items-center gap-2", children: [_jsx(Building2, { className: "h-6 w-6" }), title] }), _jsx("p", { className: "text-muted-foreground", children: description })] }), _jsxs(Card, { children: [_jsxs(CardHeader, { children: [_jsx(CardTitle, { className: "text-lg", children: "Organization Hierarchy" }), _jsxs(CardDescription, { children: ["View and manage the organization structure.", isGlobalAdmin
+                                        ? " As a global admin, you can see and manage all organizations."
+                                        : " You can manage organizations within your access scope."] })] }), _jsx(CardContent, { children: _jsx(OrgHierarchyTab, { isGlobalAdmin: isGlobalAdmin }) })] })] }));
+}
+export default OrgManagementLayout;

package/dist/components/layouts/user_management/components/org_hierarchy_tab.d.ts

@@ -0,0 +1,13 @@
+export type OrgHierarchyTabProps = {
+    className?: string;
+    /** Whether the user has global admin permission (can see all orgs) */
+    isGlobalAdmin?: boolean;
+};
+/**
+ * Organization Hierarchy tab component for managing multi-tenancy organizations
+ * Displays organizations in a tree view for intuitive hierarchy configuration
+ * @param props - Component props
+ * @returns Organization Hierarchy tab component
+ */
+export declare function OrgHierarchyTab({ className, isGlobalAdmin, }: OrgHierarchyTabProps): import("react/jsx-runtime").JSX.Element;
+//# sourceMappingURL=org_hierarchy_tab.d.ts.map

package/dist/components/layouts/user_management/components/org_hierarchy_tab.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"org_hierarchy_tab.d.ts","sourceRoot":"","sources":["../../../../../src/components/layouts/user_management/components/org_hierarchy_tab.tsx"],"names":[],"mappings":"AA6CA,MAAM,MAAM,oBAAoB,GAAG;IACjC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,sEAAsE;IACtE,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB,CAAC;AA6GF;;;;;GAKG;AACH,wBAAgB,eAAe,CAAC,EAC9B,SAAS,EACT,aAAqB,GACtB,EAAE,oBAAoB,2CA0ftB"}