npm - minutework - Versions diffs - 0.1.34 → 0.1.36 - Mend

minutework 0.1.34 → 0.1.36

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

package/assets/templates/mobile-app/src/mw/contracts.ts DELETED Viewed

@@ -1,79 +0,0 @@
-// MinuteWork substrate. Thin layer — do not put product UI/logic here.
-//
-// Zod schemas for the MinuteWork platform *native* session payloads. These match
-// the SHIPPED platform native-token slice (`/api/v1/native/session/*`) response
-// shapes exactly (DRF emits snake_case). They describe API responses, not product
-// data. Keep them aligned with the platform serializers in
-// `apps/mwv3-platform-dj/apps/gateway_api/serializers.py`:
-//   - token pair  -> IssuedNativeAppSessionTokenPairSerializer
-//   - session/me  -> TenantSessionResponseSerializer
-//
-// Schemas use `.passthrough()` so additive platform fields never break parsing;
-// the client only depends on the fields it reads.
-import { z } from "zod";
-// A tenant the authenticated user belongs to. Mirrors `_serialize_membership`
-// on the platform; only the load-bearing fields are constrained, the rest pass
-// through. `role` may be an empty string for a membership with no role.
-export const nativeMembershipSchema = z
-  .object({
-    tenant_id: z.string().min(1),
-    tenant_slug: z.string(),
-    tenant_name: z.string(),
-    role: z.string(),
-  })
-  .passthrough();
-export const nativeActiveTenantSchema = nativeMembershipSchema;
-// Mirrors `_serialize_user`. `email` is not constrained to an email shape because
-// the platform may serialize a blank/non-email value.
-export const nativeUserSchema = z
-  .object({
-    id: z.string().min(1),
-    username: z.string(),
-    email: z.string(),
-  })
-  .passthrough();
-// Response of `/api/v1/native/session/me/` (and `/context/`):
-// `TenantSessionResponseSerializer`. `active_tenant_id` / `active_tenant` are
-// null when the user has no active membership.
-export const nativeSessionSchema = z
-  .object({
-    user: nativeUserSchema,
-    active_tenant_id: z.string().nullable(),
-    active_tenant: nativeActiveTenantSchema.nullable(),
-    memberships: z.array(nativeMembershipSchema),
-    onboarding_completed_for_active_workspace: z.boolean().nullable().optional(),
-  })
-  .passthrough();
-// Platform-issued bearer token pair returned by `/token-exchange/` and
-// `/refresh/`: `IssuedNativeAppSessionTokenPairSerializer`. `*_expires_at` are
-// ISO-8601 timestamps; the client uses the access expiry to refresh proactively.
-export const nativeTokenPairSchema = z
-  .object({
-    access_token: z.string().min(1),
-    refresh_token: z.string().min(1),
-    access_token_expires_at: z.string().min(1),
-    refresh_token_expires_at: z.string().min(1),
-  })
-  .passthrough();
-// What we persist in the device keychain: the two opaque tokens plus the access
-// token's expiry (ISO-8601). This is the on-device shape, distinct from the wire
-// shape above.
-export const storedTokensSchema = z.object({
-  access: z.string().min(1),
-  refresh: z.string().min(1),
-  expiresAt: z.string().min(1),
-});
-export type NativeMembership = z.infer<typeof nativeMembershipSchema>;
-export type NativeActiveTenant = z.infer<typeof nativeActiveTenantSchema>;
-export type NativeUser = z.infer<typeof nativeUserSchema>;
-export type NativeSession = z.infer<typeof nativeSessionSchema>;
-export type NativeTokenPair = z.infer<typeof nativeTokenPairSchema>;
-export type StoredTokens = z.infer<typeof storedTokensSchema>;

package/assets/templates/mobile-app/src/mw/endpoints.ts DELETED Viewed

@@ -1,42 +0,0 @@
-// MinuteWork substrate. Thin layer — do not put product UI/logic here.
-//
-// Builds absolute URLs for the MinuteWork *platform native* session endpoints.
-//
-// These endpoints are the DIRECT platform API surface for native clients
-// (`/api/v1/native/...`). The mobile app authenticates with a platform-issued
-// bearer token obtained through a browser-assisted device flow, then calls the
-// platform directly. This is intentionally NOT the tenant-app BFF cookie path
-// (the Next.js `platform_session_bff` profile) — there is no per-app server in
-// front of the mobile client.
-//
-// These routes are SHIPPED by the platform native-token slice and are called by
-// the real device-flow client in `src/mw/client.ts`.
-import { mwEnv } from "@/mw/env";
-const platformBaseUrl = new URL(
-  mwEnv.platformBaseUrl.endsWith("/")
-    ? mwEnv.platformBaseUrl
-    : `${mwEnv.platformBaseUrl}/`,
-);
-function buildPlatformEndpoint(path: string): string {
-  return new URL(path.replace(/^\//, ""), platformBaseUrl).toString();
-}
-export const platformNativeEndpoints = {
-  // Begin the browser-assisted device authorization flow.
-  authorize: buildPlatformEndpoint("/api/v1/native/session/authorize/"),
-  // Exchange the authorization result for an access/refresh token pair.
-  tokenExchange: buildPlatformEndpoint("/api/v1/native/session/token-exchange/"),
-  // Rotate an expired access token using the refresh token.
-  refresh: buildPlatformEndpoint("/api/v1/native/session/refresh/"),
-  // Resolve the current authenticated principal (user + active tenant).
-  me: buildPlatformEndpoint("/api/v1/native/session/me/"),
-  // Resolve / switch active tenant context for the session.
-  context: buildPlatformEndpoint("/api/v1/native/session/context/"),
-  // Revoke the current token pair.
-  logout: buildPlatformEndpoint("/api/v1/native/session/logout/"),
-} as const;
-export type PlatformNativeEndpoint = keyof typeof platformNativeEndpoints;