npm - millas - Versions diffs - 0.2.12-beta-1 → 0.2.13 - Mend

millas 0.2.12-beta-1 → 0.2.13

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (120) hide show

package/package.json +3 -2
package/src/admin/ActivityLog.js +153 -52
package/src/admin/Admin.js +516 -199
package/src/admin/AdminAuth.js +213 -98
package/src/admin/FormGenerator.js +372 -0
package/src/admin/HookRegistry.js +256 -0
package/src/admin/QueryEngine.js +263 -0
package/src/admin/ViewContext.js +318 -0
package/src/admin/WidgetRegistry.js +406 -0
package/src/admin/index.js +17 -0
package/src/admin/resources/AdminResource.js +393 -97
package/src/admin/static/admin.css +1422 -0
package/src/admin/static/date-picker.css +157 -0
package/src/admin/static/date-picker.js +316 -0
package/src/admin/static/json-editor.css +649 -0
package/src/admin/static/json-editor.js +1429 -0
package/src/admin/static/ui.js +1044 -0
package/src/admin/views/layouts/base.njk +87 -1046
package/src/admin/views/pages/detail.njk +56 -21
package/src/admin/views/pages/error.njk +65 -0
package/src/admin/views/pages/form.njk +47 -599
package/src/admin/views/pages/list.njk +270 -62
package/src/admin/views/partials/form-field.njk +53 -0
package/src/admin/views/partials/form-footer.njk +28 -0
package/src/admin/views/partials/form-readonly.njk +114 -0
package/src/admin/views/partials/form-scripts.njk +480 -0
package/src/admin/views/partials/form-widget.njk +297 -0
package/src/admin/views/partials/icons.njk +64 -0
package/src/admin/views/partials/json-dialog.njk +80 -0
package/src/admin/views/partials/json-editor.njk +37 -0
package/src/ai/AIManager.js +954 -0
package/src/ai/AITokenBudget.js +250 -0
package/src/ai/PromptGuard.js +216 -0
package/src/ai/agents.js +218 -0
package/src/ai/conversation.js +213 -0
package/src/ai/drivers.js +734 -0
package/src/ai/files.js +249 -0
package/src/ai/media.js +303 -0
package/src/ai/pricing.js +152 -0
package/src/ai/provider_tools.js +114 -0
package/src/ai/types.js +356 -0
package/src/auth/Auth.js +18 -2
package/src/auth/AuthUser.js +65 -44
package/src/cli.js +3 -1
package/src/commands/createsuperuser.js +267 -0
package/src/commands/lang.js +589 -0
package/src/commands/migrate.js +154 -81
package/src/commands/serve.js +3 -4
package/src/container/AppInitializer.js +101 -20
package/src/container/Application.js +31 -1
package/src/container/MillasApp.js +10 -3
package/src/container/MillasConfig.js +35 -6
package/src/core/admin.js +5 -0
package/src/core/db.js +2 -1
package/src/core/foundation.js +2 -10
package/src/core/lang.js +1 -0
package/src/errors/HttpError.js +32 -16
package/src/facades/AI.js +411 -0
package/src/facades/Hash.js +67 -0
package/src/facades/Process.js +144 -0
package/src/hashing/Hash.js +262 -0
package/src/http/HtmlEscape.js +162 -0
package/src/http/MillasRequest.js +63 -7
package/src/http/MillasResponse.js +70 -4
package/src/http/ResponseDispatcher.js +21 -27
package/src/http/SafeFilePath.js +195 -0
package/src/http/SafeRedirect.js +62 -0
package/src/http/SecurityBootstrap.js +70 -0
package/src/http/helpers.js +40 -125
package/src/http/index.js +10 -1
package/src/http/middleware/CsrfMiddleware.js +258 -0
package/src/http/middleware/RateLimiter.js +314 -0
package/src/http/middleware/SecurityHeaders.js +281 -0
package/src/i18n/I18nServiceProvider.js +91 -0
package/src/i18n/Translator.js +643 -0
package/src/i18n/defaults.js +122 -0
package/src/i18n/index.js +164 -0
package/src/i18n/locales/en.js +55 -0
package/src/i18n/locales/sw.js +48 -0
package/src/logger/LogRedactor.js +247 -0
package/src/logger/Logger.js +1 -1
package/src/logger/formatters/JsonFormatter.js +11 -4
package/src/logger/formatters/PrettyFormatter.js +103 -65
package/src/logger/formatters/SimpleFormatter.js +14 -3
package/src/middleware/ThrottleMiddleware.js +27 -4
package/src/migrations/system/0001_users.js +21 -0
package/src/migrations/system/0002_admin_log.js +25 -0
package/src/migrations/system/0003_sessions.js +23 -0
package/src/orm/fields/index.js +210 -188
package/src/orm/migration/DefaultValueParser.js +325 -0
package/src/orm/migration/InteractiveResolver.js +191 -0
package/src/orm/migration/Makemigrations.js +312 -0
package/src/orm/migration/MigrationGraph.js +227 -0
package/src/orm/migration/MigrationRunner.js +202 -108
package/src/orm/migration/MigrationWriter.js +463 -0
package/src/orm/migration/ModelInspector.js +143 -74
package/src/orm/migration/ModelScanner.js +225 -0
package/src/orm/migration/ProjectState.js +213 -0
package/src/orm/migration/RenameDetector.js +175 -0
package/src/orm/migration/SchemaBuilder.js +8 -81
package/src/orm/migration/operations/base.js +57 -0
package/src/orm/migration/operations/column.js +191 -0
package/src/orm/migration/operations/fields.js +252 -0
package/src/orm/migration/operations/index.js +55 -0
package/src/orm/migration/operations/models.js +152 -0
package/src/orm/migration/operations/registry.js +131 -0
package/src/orm/migration/operations/special.js +51 -0
package/src/orm/migration/utils.js +208 -0
package/src/orm/model/Model.js +81 -13
package/src/process/Process.js +333 -0
package/src/providers/AdminServiceProvider.js +66 -9
package/src/providers/AuthServiceProvider.js +40 -5
package/src/providers/CacheStorageServiceProvider.js +2 -2
package/src/providers/DatabaseServiceProvider.js +3 -2
package/src/providers/LogServiceProvider.js +4 -1
package/src/providers/MailServiceProvider.js +1 -1
package/src/providers/QueueServiceProvider.js +1 -1
package/src/router/MiddlewareRegistry.js +27 -2
package/src/scaffold/templates.js +80 -21
package/src/validation/Validator.js +348 -607

package/src/admin/views/pages/detail.njk CHANGED Viewed

@@ -99,8 +99,11 @@
             <div class="detail-label">{{ field.label }}</div>
             <div class="detail-value">
               {% set val = record[field.name] %}
-              {% include "partials/detail-value.njk" ignore missing %}
-              {{ val | adminCell(field) | safe if val is not none else '<span class="cell-muted">—</span>' }}
+              {% if val is not none %}
+                {{ val | adminCell(field) | safe }}
+              {% else %}
+                <span class="cell-muted">—</span>
+              {% endif %}
             </div>
           </div>
           {% endif %}
@@ -125,7 +128,11 @@
           <div class="detail-label">{{ field.label }}</div>
           <div class="detail-value">
             {% set val = record[field.name] %}
-            {{ val | adminDetail(field) | safe }}
+            {% if val is not none %}
+              {{ val | adminDetail(field) | safe }}
+            {% else %}
+              <span class="cell-muted">—</span>
+            {% endif %}
           </div>
         </div>
         {% endif %}
@@ -161,6 +168,7 @@
     </a>
     {% elif ra.action %}
     <form method="POST" action="{{ adminPrefix }}/{{ resource.slug }}/{{ record.id }}/action/{{ ra.action }}" style="display:inline">
+      <input type="hidden" name="_csrf" value="{{ csrfToken }}">
       <button type="submit" class="btn btn-ghost btn-sm">
         <span class="icon icon-13"><svg viewBox="0 0 24 24"><use href="#ic-{{ ra.icon or 'check' }}"/></svg></span>
         {{ ra.label }}
@@ -179,6 +187,8 @@
 {% if inlines | length %}
 <div style="max-width:860px;margin-top:24px">
   {% for inline in inlines %}
+  {% set inlineIndex = loop.index0 %}
+  {% set inlineBase  = adminPrefix + '/' + resource.slug + '/' + record.id + '/inline/' + inlineIndex %}
   <div class="card mb-5">
     <div class="card-header">
       <span class="card-title">
@@ -191,14 +201,40 @@
         {% endif %}
       </span>
       {% if inline.canCreate %}
-      <a href="{{ adminPrefix }}/{{ inline.label | lower | replace(' ', '-') }}/create?{{ inline.foreignKey }}={{ record.id }}"
-         class="btn btn-ghost btn-sm">
+      <button class="btn btn-ghost btn-sm" onclick="document.getElementById('inline-form-{{ inlineIndex }}').style.display='block';this.style.display='none'">
         <span class="icon icon-13"><svg viewBox="0 0 24 24"><use href="#ic-plus"/></svg></span>
-        Add {{ inline.label | replace('s','') if inline.label | last == 's' else inline.label }}
-      </a>
+        Add
+      </button>
       {% endif %}
     </div>
+    {# ── Inline quick-add form ── #}
+    {% if inline.canCreate %}
+    <div id="inline-form-{{ inlineIndex }}" style="display:none;padding:12px 16px;border-bottom:1px solid var(--border);background:var(--surface)">
+      <form method="POST" action="{{ inlineBase }}">
+        <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+        <div style="display:flex;gap:8px;flex-wrap:wrap;align-items:flex-end">
+          {% for field in inline.fields %}
+          {% if field.name != inline.foreignKey %}
+          <div style="flex:1;min-width:140px">
+            <label class="form-label" style="font-size:11px">{{ field.label }}</label>
+            {% if field.type == 'boolean' %}
+            <input type="checkbox" name="{{ field.name }}" value="1">
+            {% else %}
+            <input type="{{ field.type or 'text' }}" name="{{ field.name }}" class="form-control form-control-sm" placeholder="{{ field.label }}">
+            {% endif %}
+          </div>
+          {% endif %}
+          {% endfor %}
+          <div style="display:flex;gap:6px">
+            <button type="submit" class="btn btn-primary btn-sm">Save</button>
+            <button type="button" class="btn btn-ghost btn-sm" onclick="document.getElementById('inline-form-{{ inlineIndex }}').style.display='none';this.closest('.card').querySelector('.btn-ghost').style.display=''">Cancel</button>
+          </div>
+        </div>
+      </form>
+    </div>
+    {% endif %}
     {% if inline.rows | length %}
     <div class="table-wrap">
       <table>
@@ -217,16 +253,22 @@
           <tr>
             {% for field in inline.fields %}
             <td {% if loop.first %}class="td-primary"{% endif %}>
-              {{ row[field.name] | adminCell(field) | safe if row[field.name] is not none else '<span class="cell-muted">—</span>' }}
+              {% if row[field.name] is not none %}
+                {{ row[field.name] | adminCell(field) | safe }}
+              {% else %}
+                <span class="cell-muted">—</span>
+              {% endif %}
             </td>
             {% endfor %}
             {% if inline.canDelete %}
             <td class="col-actions" style="text-align:right">
-              <button
-                onclick="confirmDelete('{{ adminPrefix }}/{{ inline.label | lower | replace(' ','-') }}/{{ row.id }}/delete','{{ inline.label | replace('s','') if inline.label | last == 's' else inline.label }} #{{ row.id }}')"
-                class="btn btn-danger btn-xs">
-                <span class="icon icon-12"><svg viewBox="0 0 24 24"><use href="#ic-trash"/></svg></span>
-              </button>
+              <form method="POST" action="{{ inlineBase }}/{{ row.id }}/delete" style="display:inline">
+                <input type="hidden" name="_csrf" value="{{ csrfToken }}">
+                <button type="submit" class="btn btn-danger btn-xs"
+                  onclick="return confirm('Delete this record?')">
+                  <span class="icon icon-12"><svg viewBox="0 0 24 24"><use href="#ic-trash"/></svg></span>
+                </button>
+              </form>
             </td>
             {% endif %}
           </tr>
@@ -240,13 +282,6 @@
         <span class="icon icon-16"><svg viewBox="0 0 24 24"><use href="#ic-table"/></svg></span>
       </div>
       <div class="empty-title" style="font-size:13px">No {{ inline.label | lower }} yet</div>
-      {% if inline.canCreate %}
-      <a href="{{ adminPrefix }}/{{ inline.label | lower | replace(' ', '-') }}/create?{{ inline.foreignKey }}={{ record.id }}"
-         class="btn btn-ghost btn-sm" style="margin-top:10px">
-        <span class="icon icon-13"><svg viewBox="0 0 24 24"><use href="#ic-plus"/></svg></span>
-        Add first
-      </a>
-      {% endif %}
     </div>
     {% endif %}
   </div>
@@ -319,4 +354,4 @@
     document.querySelectorAll('.tab-panel').forEach((p, i) => p.classList.toggle('active', i === idx));
   }
 </script>
-{% endblock %}
+{% endblock %}

package/src/admin/views/pages/error.njk ADDED Viewed

@@ -0,0 +1,65 @@
+{% extends "layouts/base.njk" %}
+{% block title %}{{ errorTitle }}{% endblock %}
+{% block topbar_title %}
+  <span style="color:var(--danger)">{{ errorTitle }}</span>
+{% endblock %}
+{% block sidebar %}
+{% endblock %}
+{% block content %}
+<div style="max-width:640px;margin:40px auto;padding:0 8px">
+  {# ── Icon + heading ── #}
+  <div style="display:flex;align-items:center;gap:14px;margin-bottom:28px">
+    <div style="flex-shrink:0;width:48px;height:48px;background:var(--danger-bg);border:1px solid var(--danger-border);border-radius:var(--radius-lg);display:flex;align-items:center;justify-content:center">
+      {% if errorStatus == 404 %}
+      <svg width="22" height="22" viewBox="0 0 24 24" fill="none" stroke="var(--danger)" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+        <circle cx="11" cy="11" r="8"/><line x1="21" y1="21" x2="16.65" y2="16.65"/>
+        <line x1="11" y1="8" x2="11" y2="11"/><line x1="11" y1="14" x2="11.01" y2="14"/>
+      </svg>
+      {% else %}
+      <svg width="22" height="22" viewBox="0 0 24 24" fill="none" stroke="var(--danger)" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+        <circle cx="12" cy="12" r="10"/><line x1="12" y1="8" x2="12" y2="12"/><line x1="12" y1="16" x2="12.01" y2="16"/>
+      </svg>
+      {% endif %}
+    </div>
+    <div>
+      <div style="font-size:22px;font-weight:700;color:var(--danger);line-height:1.2">{{ errorStatus }}</div>
+      <div style="font-size:14px;color:var(--text-soft);margin-top:2px">{{ errorTitle }}</div>
+    </div>
+  </div>
+  {# ── Message card ── #}
+  <div class="card" style="margin-bottom:20px">
+    <div style="padding:20px 22px;display:flex;align-items:flex-start;gap:12px">
+      <svg style="flex-shrink:0;margin-top:1px;color:var(--text-muted)" width="15" height="15" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round">
+        <circle cx="12" cy="12" r="10"/><line x1="12" y1="8" x2="12" y2="12"/><line x1="12" y1="16" x2="12.01" y2="16"/>
+      </svg>
+      <span style="font-size:14px;color:var(--text);line-height:1.6">{{ errorMsg }}</span>
+    </div>
+  </div>
+  {# ── Stack trace (dev only) ── #}
+  {% if errorStack %}
+  <details style="margin-bottom:20px">
+    <summary style="font-size:12.5px;color:var(--text-muted);cursor:pointer;user-select:none;margin-bottom:8px">Stack trace</summary>
+    <pre style="background:var(--surface2);border:1px solid var(--border);border-radius:var(--radius);padding:16px 18px;font-size:11.5px;color:var(--text-soft);overflow-x:auto;line-height:1.65;margin:0;white-space:pre-wrap;word-break:break-word">{{ errorStack }}</pre>
+  </details>
+  {% endif %}
+  {# ── Actions ── #}
+  <div style="display:flex;align-items:center;gap:10px">
+    <a href="javascript:history.back()" class="btn btn-ghost btn-sm">
+      <svg width="13" height="13" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><line x1="19" y1="12" x2="5" y2="12"/><polyline points="12 19 5 12 12 5"/></svg>
+      Go back
+    </a>
+    <a href="{{ adminPrefix }}/" class="btn btn-ghost btn-sm">
+      <svg width="13" height="13" viewBox="0 0 24 24" fill="none" stroke="currentColor" stroke-width="2" stroke-linecap="round" stroke-linejoin="round"><path d="M3 9l9-7 9 7v11a2 2 0 01-2 2H5a2 2 0 01-2-2z"/><polyline points="9 22 9 12 15 12 15 22"/></svg>
+      Dashboard
+    </a>
+  </div>
+</div>
+{% endblock %}