hazo_auth 4.4.1 → 4.5.1

package/dist/lib/user_types_config.server.js

@@ -0,0 +1,100 @@
+// file_description: server-only helper to read user types configuration from hazo_auth_config.ini
+// section: imports
+import { get_config_value, get_config_boolean, read_config_section, } from "./config/config_loader.server";
+import { DEFAULT_USER_TYPES } from "./config/default_config";
+// section: constants
+const SECTION_NAME = "hazo_auth__user_types";
+const PRESET_COLORS = new Set([
+    "blue",
+    "green",
+    "red",
+    "yellow",
+    "purple",
+    "gray",
+    "orange",
+    "pink",
+]);
+// section: helpers
+/**
+ * Parses a user type definition string
+ * Format: key:label:color (e.g., "admin:Administrator:red" or "custom:Custom Type:#4CAF50")
+ * @param value - The config value string
+ * @returns UserTypeDefinition or null if invalid
+ */
+function parse_user_type_definition(value) {
+    const parts = value.split(":").map((s) => s.trim());
+    if (parts.length < 2)
+        return null;
+    const key = parts[0];
+    const label = parts[1];
+    const badge_color = parts[2] || "gray";
+    if (!key || !label)
+        return null;
+    return {
+        key,
+        label,
+        badge_color,
+        is_preset_color: PRESET_COLORS.has(badge_color),
+    };
+}
+/**
+ * Reads user types configuration from hazo_auth_config.ini file
+ * Falls back to defaults if config file is not found or section is missing
+ * @returns User types configuration options
+ */
+export function get_user_types_config() {
+    const enable_user_types = get_config_boolean(SECTION_NAME, "enable_user_types", DEFAULT_USER_TYPES.enable_user_types);
+    const default_user_type = get_config_value(SECTION_NAME, "default_user_type", DEFAULT_USER_TYPES.default_user_type);
+    // Parse user type definitions from config
+    const user_types = new Map();
+    const section = read_config_section(SECTION_NAME);
+    if (section) {
+        // Look for user_type_1, user_type_2, etc. (up to 50 types supported)
+        for (let i = 1; i <= 50; i++) {
+            const key = `user_type_${i}`;
+            const value = section[key];
+            if (!value)
+                continue;
+            const type_def = parse_user_type_definition(value);
+            if (type_def) {
+                user_types.set(type_def.key, type_def);
+            }
+        }
+    }
+    return {
+        enable_user_types,
+        default_user_type,
+        user_types,
+    };
+}
+/**
+ * Checks if user types feature is enabled in the configuration
+ * Convenience function for quick checks
+ */
+export function is_user_types_enabled() {
+    return get_config_boolean(SECTION_NAME, "enable_user_types", DEFAULT_USER_TYPES.enable_user_types);
+}
+/**
+ * Gets the default user type from config
+ * Returns empty string if not configured
+ */
+export function get_default_user_type() {
+    return get_config_value(SECTION_NAME, "default_user_type", DEFAULT_USER_TYPES.default_user_type);
+}
+/**
+ * Gets user type definition by key
+ * @param type_key - The user type key
+ * @returns UserTypeDefinition or undefined if not found
+ */
+export function get_user_type_by_key(type_key) {
+    const config = get_user_types_config();
+    return config.user_types.get(type_key);
+}
+/**
+ * Gets all user type definitions as array (for UI dropdowns)
+ * @returns Array of UserTypeDefinition objects
+ */
+export function get_all_user_types() {
+    const config = get_user_types_config();
+    return Array.from(config.user_types.values());
+}

package/dist/server/routes/index.d.ts

@@ -20,4 +20,5 @@ export { GET as userManagementUsersGET, PATCH as userManagementUsersPATCH, POST
 export { GET as userManagementPermissionsGET, POST as userManagementPermissionsPOST, PUT as userManagementPermissionsPUT, DELETE as userManagementPermissionsDELETE } from "./user_management_permissions.js";
 export { GET as userManagementRolesGET, POST as userManagementRolesPOST, PUT as userManagementRolesPUT } from "./user_management_roles.js";
 export { GET as userManagementUsersRolesGET, POST as userManagementUsersRolesPOST, PUT as userManagementUsersRolesPUT } from "./user_management_users_roles.js";
+export { GET as orgManagementOrgsGET, POST as orgManagementOrgsPOST, PATCH as orgManagementOrgsPATCH, DELETE as orgManagementOrgsDELETE } from "./org_management_orgs.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/server/routes/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/server/routes/index.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,IAAI,IAAI,YAAY,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,IAAI,IAAI,UAAU,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,SAAS,CAAC;AAGvC,OAAO,EAAE,IAAI,IAAI,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,IAAI,IAAI,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAChE,OAAO,EAAE,IAAI,IAAI,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,GAAG,IAAI,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AAGzE,OAAO,EAAE,GAAG,IAAI,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,IAAI,IAAI,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAG1E,OAAO,EAAE,KAAK,IAAI,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAC5D,OAAO,EAAE,IAAI,IAAI,wBAAwB,EAAE,MAAM,6BAA6B,CAAC;AAC/E,OAAO,EAAE,MAAM,IAAI,0BAA0B,EAAE,MAAM,6BAA6B,CAAC;AACnF,OAAO,EAAE,GAAG,IAAI,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,EAAE,GAAG,IAAI,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAC5D,OAAO,EAAE,GAAG,IAAI,yBAAyB,EAAE,MAAM,+BAA+B,CAAC;AAGjF,OAAO,EAAE,IAAI,IAAI,WAAW,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,IAAI,IAAI,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AAGpE,OAAO,EAAE,GAAG,IAAI,sBAAsB,EAAE,KAAK,IAAI,wBAAwB,EAAE,IAAI,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AAC/I,OAAO,EAAE,GAAG,IAAI,4BAA4B,EAAE,IAAI,IAAI,6BAA6B,EAAE,GAAG,IAAI,4BAA4B,EAAE,MAAM,IAAI,+BAA+B,EAAE,MAAM,kCAAkC,CAAC;AAC9M,OAAO,EAAE,GAAG,IAAI,sBAAsB,EAAE,IAAI,IAAI,uBAAuB,EAAE,GAAG,IAAI,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AAC3I,OAAO,EAAE,GAAG,IAAI,2BAA2B,EAAE,IAAI,IAAI,4BAA4B,EAAE,GAAG,IAAI,2BAA2B,EAAE,MAAM,kCAAkC,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/server/routes/index.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,IAAI,IAAI,SAAS,EAAE,MAAM,YAAY,CAAC;AAC/C,OAAO,EAAE,IAAI,IAAI,YAAY,EAAE,MAAM,eAAe,CAAC;AACrD,OAAO,EAAE,IAAI,IAAI,UAAU,EAAE,MAAM,aAAa,CAAC;AACjD,OAAO,EAAE,GAAG,IAAI,KAAK,EAAE,MAAM,SAAS,CAAC;AAGvC,OAAO,EAAE,IAAI,IAAI,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,IAAI,IAAI,iBAAiB,EAAE,MAAM,qBAAqB,CAAC;AAChE,OAAO,EAAE,IAAI,IAAI,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAClE,OAAO,EAAE,GAAG,IAAI,qBAAqB,EAAE,MAAM,2BAA2B,CAAC;AAGzE,OAAO,EAAE,GAAG,IAAI,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAC1D,OAAO,EAAE,IAAI,IAAI,sBAAsB,EAAE,MAAM,0BAA0B,CAAC;AAG1E,OAAO,EAAE,KAAK,IAAI,eAAe,EAAE,MAAM,kBAAkB,CAAC;AAC5D,OAAO,EAAE,IAAI,IAAI,wBAAwB,EAAE,MAAM,6BAA6B,CAAC;AAC/E,OAAO,EAAE,MAAM,IAAI,0BAA0B,EAAE,MAAM,6BAA6B,CAAC;AACnF,OAAO,EAAE,GAAG,IAAI,gBAAgB,EAAE,MAAM,qBAAqB,CAAC;AAC9D,OAAO,EAAE,GAAG,IAAI,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAC5D,OAAO,EAAE,GAAG,IAAI,yBAAyB,EAAE,MAAM,+BAA+B,CAAC;AAGjF,OAAO,EAAE,IAAI,IAAI,WAAW,EAAE,MAAM,eAAe,CAAC;AACpD,OAAO,EAAE,IAAI,IAAI,mBAAmB,EAAE,MAAM,uBAAuB,CAAC;AAGpE,OAAO,EAAE,GAAG,IAAI,sBAAsB,EAAE,KAAK,IAAI,wBAAwB,EAAE,IAAI,IAAI,uBAAuB,EAAE,MAAM,4BAA4B,CAAC;AAC/I,OAAO,EAAE,GAAG,IAAI,4BAA4B,EAAE,IAAI,IAAI,6BAA6B,EAAE,GAAG,IAAI,4BAA4B,EAAE,MAAM,IAAI,+BAA+B,EAAE,MAAM,kCAAkC,CAAC;AAC9M,OAAO,EAAE,GAAG,IAAI,sBAAsB,EAAE,IAAI,IAAI,uBAAuB,EAAE,GAAG,IAAI,sBAAsB,EAAE,MAAM,4BAA4B,CAAC;AAC3I,OAAO,EAAE,GAAG,IAAI,2BAA2B,EAAE,IAAI,IAAI,4BAA4B,EAAE,GAAG,IAAI,2BAA2B,EAAE,MAAM,kCAAkC,CAAC;AAGhK,OAAO,EAAE,GAAG,IAAI,oBAAoB,EAAE,IAAI,IAAI,qBAAqB,EAAE,KAAK,IAAI,sBAAsB,EAAE,MAAM,IAAI,uBAAuB,EAAE,MAAM,0BAA0B,CAAC"}

package/dist/server/routes/index.js

@@ -28,3 +28,5 @@ export { GET as userManagementUsersGET, PATCH as userManagementUsersPATCH, POST
 export { GET as userManagementPermissionsGET, POST as userManagementPermissionsPOST, PUT as userManagementPermissionsPUT, DELETE as userManagementPermissionsDELETE } from "./user_management_permissions.js";
 export { GET as userManagementRolesGET, POST as userManagementRolesPOST, PUT as userManagementRolesPUT } from "./user_management_roles.js";
 export { GET as userManagementUsersRolesGET, POST as userManagementUsersRolesPOST, PUT as userManagementUsersRolesPUT } from "./user_management_users_roles.js";
+// Organization management routes
+export { GET as orgManagementOrgsGET, POST as orgManagementOrgsPOST, PATCH as orgManagementOrgsPATCH, DELETE as orgManagementOrgsDELETE } from "./org_management_orgs.js";

package/dist/server/routes/org_management_orgs.d.ts

@@ -0,0 +1,2 @@
+export { GET, POST, PATCH, DELETE } from "../../app/api/hazo_auth/org_management/orgs/route";
+//# sourceMappingURL=org_management_orgs.d.ts.map

package/dist/server/routes/org_management_orgs.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"org_management_orgs.d.ts","sourceRoot":"","sources":["../../../src/server/routes/org_management_orgs.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,GAAG,EAAE,IAAI,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,mDAAmD,CAAC"}

package/dist/server/routes/org_management_orgs.js

@@ -0,0 +1,2 @@
+// file_description: re-export org management orgs route handlers for use by consuming projects
+export { GET, POST, PATCH, DELETE } from "../../app/api/hazo_auth/org_management/orgs/route";

package/hazo_auth_config.example.ini

@@ -561,6 +561,15 @@ application_permission_list_defaults = admin_user_management,admin_role_manageme
 # When enabled, users can be assigned to organizations and hazo_get_auth returns org info
 # enable_multi_tenancy = false
 
+# NOTE: When multi-tenancy is enabled, org_id is OPTIONAL by default.
+# Users without org_id will have null org fields in hazo_get_auth result.
+#
+# To REQUIRE org assignment for specific API routes, use:
+#   hazo_get_auth(request, { require_org: true })
+#
+# This will throw OrgRequiredError if the user has no org_id assigned.
+# Consuming apps should catch this error and return an appropriate response.
+
 # Organization cache TTL in minutes (default: 15)
 # Cached org data will be refreshed after this time
 # org_cache_ttl_minutes = 15

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "hazo_auth",
-  "version": "4.4.1",
+  "version": "4.5.1",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "type": "module",

package/cli-src/server/logging/logger_service.ts

@@ -1,56 +0,0 @@
-// file_description: expose the logging facade used across the hazo_auth backend
-// section: imports
-import type { logger_method, logger_service } from "../types/app_types";
-
-// section: helper_functions
-const create_console_logger = (namespace: string): logger_service => {
-  const write = (level: string, message: string, data?: Record<string, unknown>) => {
-    const timestamp = new Date().toISOString();
-    // eslint-disable-next-line no-console
-    console.log(
-      JSON.stringify({
-        namespace,
-        level,
-        message,
-        data,
-        timestamp,
-      })
-    );
-  };
-
-  return {
-    debug: (message, data) => write("debug", message, data),
-    info: (message, data) => write("info", message, data),
-    warn: (message, data) => write("warn", message, data),
-    error: (message, data) => write("error", message, data),
-  };
-};
-
-// section: factory
-export const create_logger_service = (
-  namespace: string,
-  external_logger?: Partial<logger_service>
-): logger_service => {
-  const console_logger = create_console_logger(namespace);
-
-  const safe_bind = (
-    level: keyof logger_service,
-    fallback: logger_method
-  ): logger_method => {
-    const candidate = external_logger?.[level];
-    if (typeof candidate === "function") {
-      return (message, data) => candidate(message, data);
-    }
-    return fallback;
-  };
-
-  type logger_method = (message: string, data?: Record<string, unknown>) => void;
-
-  return {
-    debug: safe_bind("debug", console_logger.debug),
-    info: safe_bind("info", console_logger.info),
-    warn: safe_bind("warn", console_logger.warn),
-    error: safe_bind("error", console_logger.error),
-  };
-};
-