npm - myio-js-library - Versions diffs - 0.1.489 → 0.1.490 - Mend

myio-js-library 0.1.489 → 0.1.490

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/index.cjs +289 -8
package/dist/index.d.cts +149 -1
package/dist/index.js +286 -8
package/dist/myio-js-library.umd.js +286 -8
package/dist/myio-js-library.umd.min.js +1 -1
package/package.json +1 -1

package/dist/index.cjs CHANGED Viewed

@@ -711,6 +711,7 @@ __export(index_exports, {
   MenuShoppingView: () => MenuShoppingView,
   MenuView: () => MenuView,
   ModalHeader: () => ModalHeader,
+  MyIOAuthContext: () => MyIOAuthContext,
   MyIOChartModal: () => MyIOChartModal,
   MyIODraggableCard: () => MyIODraggableCard,
   MyIOSelectionStore: () => MyIOSelectionStore,
@@ -739,6 +740,7 @@ __export(index_exports, {
   OperationalGeneralListController: () => OperationalGeneralListController,
   OperationalGeneralListView: () => OperationalGeneralListView,
   OperationalHeaderDevicesGridView: () => OperationalHeaderDevicesGridView,
+  PERM: () => PERM,
   POWER_LIMITS_DEVICE_TYPES: () => DEVICE_TYPES,
   POWER_LIMITS_STATUS_CONFIG: () => STATUS_CONFIG,
   POWER_LIMITS_TELEMETRY_TYPES: () => TELEMETRY_TYPES2,
@@ -1007,6 +1009,7 @@ __export(index_exports, {
   groupByDay: () => groupByDay,
   handleDeviceType: () => handleDeviceType,
   hasSelectedDays: () => hasSelectedDays,
+  initMyIOAuthContext: () => initMyIOAuthContext,
   initOnOffTimelineTooltips: () => initOnOffTimelineTooltips,
   injectActionButtonStyles: () => injectActionButtonStyles,
   injectAlarmsNotificationsPanelStyles: () => injectAlarmsNotificationsPanelStyles,
@@ -1159,7 +1162,7 @@ module.exports = __toCommonJS(index_exports);
 // package.json
 var package_default = {
   name: "myio-js-library",
-  version: "0.1.489",
+  version: "0.1.490",
   description: "A clean, standalone JS SDK for MYIO projects",
   license: "MIT",
   repository: "github:gh-myio/myio-js-library",
@@ -58602,15 +58605,24 @@ var AlarmsTab = class {
    * Falls back to prefetchedAlarms prop when ASO is not available (e.g. standalone showcase).
    */
   readAlarmsFromASO() {
-    const aso = window.AlarmServiceOrchestrator;
+    const win = window;
+    const aso = win.AlarmServiceOrchestrator;
+    const showOffline = win.MyIOOrchestrator?.showOfflineAlarms === true;
+    const _OFFLINE_TYPES = ["DEVICE OFFLINE", "DISPOSITIVO OFFLINE"];
+    const _isOffline = (a) => {
+      const t = ((a.title ?? a.alarmType) || "").toUpperCase();
+      return _OFFLINE_TYPES.some((ex) => t.startsWith(ex)) || a.alarmType === "connectivity";
+    };
+    let alarms = [];
     if (aso && this.config.gcdrDeviceId) {
-      return aso.getAlarmsForDevice(this.config.gcdrDeviceId);
-    }
-    const prefetched = this.config.prefetchedAlarms;
-    if (prefetched != null) {
-      return prefetched.filter((a) => a.deviceId === this.config.gcdrDeviceId);
+      alarms = aso.getAlarmsForDevice(this.config.gcdrDeviceId);
+    } else {
+      const prefetched = this.config.prefetchedAlarms;
+      if (prefetched != null) {
+        alarms = prefetched.filter((a) => a.deviceId === this.config.gcdrDeviceId);
+      }
     }
-    return [];
+    return showOffline ? alarms : alarms.filter((a) => !_isOffline(a));
   }
   // ============================================================================
   // Card mapping — separado (Disp. + Tipo) view: one card per individual alarm
@@ -92182,6 +92194,272 @@ function openUserManagementModal(params) {
   controller.show();
 }
+// src/components/gcdr-auth/MyIOAuthContext.ts
+var MyIOAuthContext = class _MyIOAuthContext {
+  allowedActions = /* @__PURE__ */ new Set();
+  deniedActions = /* @__PURE__ */ new Set();
+  snap;
+  constructor(snap) {
+    this.snap = snap;
+  }
+  // ── Public read-only state ────────────────────────────────────────────────
+  get ready() {
+    return this.snap.ready;
+  }
+  get gcdrUserId() {
+    return this.snap.gcdrUserId;
+  }
+  get scope() {
+    return this.snap.scope;
+  }
+  get error() {
+    return this.snap.error;
+  }
+  get allowAll() {
+    return this.snap.allowAll;
+  }
+  get assignments() {
+    return this.snap.assignments;
+  }
+  // ── Permission checks ─────────────────────────────────────────────────────
+  /**
+   * Returns `true` if the current user is allowed to perform `action`.
+   *
+   * Evaluation order (deny-first):
+   *   1. If allowAll (TENANT_ADMIN) → always true
+   *   2. If action (or `*`) is in the deny set → false
+   *   3. If action (or `*`) is in the allow set → true
+   *   4. Otherwise → false  (closed-by-default)
+   *
+   * Returns `false` while not yet ready.
+   */
+  can(action) {
+    if (!this.snap.ready) return false;
+    if (this.snap.allowAll) return true;
+    if (this.deniedActions.has("*") || this.deniedActions.has(action)) return false;
+    return this.allowedActions.has("*") || this.allowedActions.has(action);
+  }
+  /** True if the user can perform **at least one** of the given actions. */
+  canAny(...actions) {
+    return actions.some((a) => this.can(a));
+  }
+  /** True if the user can perform **all** of the given actions. */
+  canAll(...actions) {
+    return actions.every((a) => this.can(a));
+  }
+  // ── Factory ───────────────────────────────────────────────────────────────
+  /**
+   * Initialises the auth context.
+   * Resolves immediately when `allowAll` is set or GCDR is not configured.
+   * Always dispatches `myio:auth-ready` when done (success or error).
+   */
+  static async init(config) {
+    const scope = config.scope ?? (config.customerId ? `customer:${config.customerId}` : "*");
+    const ctx = new _MyIOAuthContext({
+      ready: false,
+      gcdrUserId: null,
+      scope,
+      allowAll: config.allowAll ?? false,
+      error: null,
+      assignments: []
+    });
+    if (config.allowAll) {
+      ctx.snap.ready = true;
+      ctx._dispatch();
+      return ctx;
+    }
+    if (!config.gcdrApiBaseUrl) {
+      ctx.snap.ready = true;
+      ctx.snap.error = "GCDR not configured";
+      ctx._dispatch();
+      return ctx;
+    }
+    try {
+      const hdrs = ctx._gcdrHeaders(config);
+      const gcdrUserId = await ctx._resolveGcdrUserId(config, hdrs);
+      if (!gcdrUserId) {
+        ctx.snap.error = "GCDR user not found";
+        ctx.snap.ready = true;
+        ctx._dispatch();
+        return ctx;
+      }
+      ctx.snap.gcdrUserId = gcdrUserId;
+      const assignRes = await fetch(
+        `${config.gcdrApiBaseUrl}/authorization/users/${gcdrUserId}/assignments`,
+        { headers: hdrs }
+      );
+      let allAssignments = [];
+      if (assignRes.ok) {
+        const json = await assignRes.json();
+        allAssignments = Array.isArray(json) ? json : json.assignments ?? [];
+      }
+      const relevant = allAssignments.filter(
+        (a) => a.status === "active" && (a.scope === "*" || a.scope === scope)
+      );
+      ctx.snap.assignments = relevant;
+      if (relevant.length === 0) {
+        ctx.snap.ready = true;
+        ctx._dispatch();
+        return ctx;
+      }
+      const roleKeys = [...new Set(relevant.map((a) => a.roleKey))];
+      const roles = await ctx._fetchRoles(config.gcdrApiBaseUrl, roleKeys, hdrs);
+      const policyKeys = [...new Set(
+        roles.flatMap((r) => [...r.policies ?? [], ...r.policyIds ?? []])
+      )];
+      if (policyKeys.length > 0) {
+        const policies = await ctx._fetchPolicies(config.gcdrApiBaseUrl, policyKeys, hdrs);
+        ctx._applyPolicies(policies);
+      }
+    } catch (err) {
+      ctx.snap.error = err?.message ?? "Auth init failed";
+    }
+    ctx.snap.ready = true;
+    ctx._dispatch();
+    return ctx;
+  }
+  // ── Private helpers ───────────────────────────────────────────────────────
+  _gcdrHeaders(config) {
+    return {
+      "Content-Type": "application/json",
+      "X-API-Key": config.gcdrApiKey || "",
+      "X-Tenant-ID": config.gcdrTenantId || ""
+    };
+  }
+  /**
+   * Two-step GCDR user lookup:
+   * 1. Read `gcdrUserConfigs` from TB SERVER_SCOPE attribute (fast path if previously synced)
+   * 2. Email search via GCDR API
+   */
+  async _resolveGcdrUserId(config, gcdrHeaders) {
+    if (config.currentUserTbId && config.tbBaseUrl && config.jwtToken) {
+      try {
+        const res = await fetch(
+          `${config.tbBaseUrl}/api/plugins/telemetry/USER/${config.currentUserTbId}/values/attributes/SERVER_SCOPE?keys=gcdrUserConfigs`,
+          { headers: { "X-Authorization": `Bearer ${config.jwtToken}` } }
+        );
+        if (res.ok) {
+          const attrs = await res.json();
+          const gcdrId = attrs.find((a) => a.key === "gcdrUserConfigs")?.value?.gcdrUserId;
+          if (gcdrId) return gcdrId;
+        }
+      } catch {
+      }
+    }
+    if (!config.currentUserEmail) return null;
+    try {
+      const q = encodeURIComponent(config.currentUserEmail);
+      const cid = config.customerId ? `&customerId=${encodeURIComponent(config.customerId)}` : "";
+      const res = await fetch(
+        `${config.gcdrApiBaseUrl}/api/v1/users?search=${q}${cid}&limit=10`,
+        { headers: gcdrHeaders }
+      );
+      if (res.ok) {
+        const data = await res.json();
+        const items = Array.isArray(data) ? data : data?.data?.items ?? data?.items ?? [];
+        const found = items.find(
+          (u) => u.email?.toLowerCase() === config.currentUserEmail.toLowerCase()
+        );
+        if (found) return found.id;
+      }
+    } catch {
+    }
+    return null;
+  }
+  /**
+   * Fetches roles — tries GET /roles bulk endpoint first, falls back to per-key.
+   */
+  async _fetchRoles(base, roleKeys, headers) {
+    try {
+      const res = await fetch(`${base}/roles`, { headers });
+      if (res.ok) {
+        const json = await res.json();
+        const all = Array.isArray(json) ? json : json?.data?.items ?? json?.items ?? json?.data ?? [];
+        return all.filter((r) => roleKeys.includes(r.key ?? r.id));
+      }
+    } catch {
+    }
+    const settled = await Promise.allSettled(
+      roleKeys.map(
+        (key) => fetch(`${base}/roles/${key}`, { headers }).then((r) => r.ok ? r.json() : null)
+      )
+    );
+    return settled.filter((r) => r.status === "fulfilled" && r.value != null).map((r) => r.value);
+  }
+  /**
+   * Fetches policies — tries GET /policies bulk endpoint first, falls back to per-key.
+   */
+  async _fetchPolicies(base, policyKeys, headers) {
+    try {
+      const res = await fetch(`${base}/policies`, { headers });
+      if (res.ok) {
+        const json = await res.json();
+        const all = Array.isArray(json) ? json : json?.data?.items ?? json?.items ?? json?.data ?? [];
+        return all.filter((p) => policyKeys.includes(p.key ?? p.id));
+      }
+    } catch {
+    }
+    const settled = await Promise.allSettled(
+      policyKeys.map(
+        (key) => fetch(`${base}/policies/${key}`, { headers }).then((r) => r.ok ? r.json() : null)
+      )
+    );
+    return settled.filter((r) => r.status === "fulfilled" && r.value != null).map((r) => r.value);
+  }
+  /**
+   * Merges all policy allow/deny lists into the context's permission sets.
+   * Deny always wins over allow (deny-first strategy).
+   */
+  _applyPolicies(policies) {
+    for (const policy of policies) {
+      for (const action of policy.allow ?? []) this.allowedActions.add(action);
+      for (const action of policy.deny ?? []) this.deniedActions.add(action);
+    }
+  }
+  /** Dispatches `myio:auth-ready` so widgets can react without polling. */
+  _dispatch() {
+    window.dispatchEvent(
+      new CustomEvent("myio:auth-ready", {
+        detail: {
+          ready: this.snap.ready,
+          scope: this.snap.scope,
+          allowAll: this.snap.allowAll,
+          error: this.snap.error
+        }
+      })
+    );
+  }
+};
+async function initMyIOAuthContext(config) {
+  return MyIOAuthContext.init(config);
+}
+// src/components/gcdr-auth/permissions.ts
+var PERM = {
+  // ── Alarm actions ────────────────────────────────────────────────────────
+  ALARM_VIEW: "alarm:view",
+  ALARM_ACK: "alarm:ack",
+  ALARM_ESCALATE: "alarm:escalate",
+  ALARM_SNOOZE: "alarm:snooze",
+  ALARM_CLOSE: "alarm:close",
+  // ── Reports ──────────────────────────────────────────────────────────────
+  REPORT_VIEW: "report:view",
+  REPORT_EXPORT: "report:export",
+  // ── Settings modal ───────────────────────────────────────────────────────
+  SETTINGS_VIEW: "settings:view",
+  SETTINGS_EDIT: "settings:edit",
+  // ── User management (GCDR) ───────────────────────────────────────────────
+  USER_VIEW: "user:view",
+  USER_MANAGE: "user:manage",
+  // ── Integration config ───────────────────────────────────────────────────
+  INTEGRATION_VIEW: "integration:view",
+  INTEGRATION_EDIT: "integration:edit",
+  // ── Dashboard config ─────────────────────────────────────────────────────
+  DASHBOARD_CONFIG: "dashboard:configure",
+  // ── Shopping / customer selector ─────────────────────────────────────────
+  SHOPPING_SELECT: "shopping:select"
+};
 // src/components/menu/types.ts
 var DEFAULT_LIGHT_THEME3 = {
   // Tabs
@@ -139604,6 +139882,7 @@ var version = package_default.version || "0.0.0";
   MenuShoppingView,
   MenuView,
   ModalHeader,
+  MyIOAuthContext,
   MyIOChartModal,
   MyIODraggableCard,
   MyIOSelectionStore,
@@ -139632,6 +139911,7 @@ var version = package_default.version || "0.0.0";
   OperationalGeneralListController,
   OperationalGeneralListView,
   OperationalHeaderDevicesGridView,
+  PERM,
   POWER_LIMITS_DEVICE_TYPES,
   POWER_LIMITS_STATUS_CONFIG,
   POWER_LIMITS_TELEMETRY_TYPES,
@@ -139900,6 +140180,7 @@ var version = package_default.version || "0.0.0";
   groupByDay,
   handleDeviceType,
   hasSelectedDays,
+  initMyIOAuthContext,
   initOnOffTimelineTooltips,
   injectActionButtonStyles,
   injectAlarmsNotificationsPanelStyles,