node-type-registry 0.12.0 → 0.16.0

package/blueprint-types.generated.d.ts

@@ -401,6 +401,16 @@ export interface RelationManyToManyParams {
         [key: string]: unknown;
     };
 }
+/** Declares a spatial predicate between two existing geometry/geography columns. Inserts a metaschema_public.spatial_relation row; the sync_spatial_relation_tags trigger then projects a @spatialRelation smart tag onto the owner column so graphile-postgis' PostgisSpatialRelationsPlugin can expose it as a cross-table filter in GraphQL. Metadata-only: both source_field and target_field must already exist on their tables. Idempotent on (source_table_id, name). One direction per tag — author two RelationSpatial entries if symmetry is desired. */
+export interface RelationSpatialParams {
+    source_table_id: string;
+    source_field_id: string;
+    target_table_id: string;
+    target_field_id: string;
+    name: string;
+    operator: "st_contains" | "st_within" | "st_intersects" | "st_covers" | "st_coveredby" | "st_overlaps" | "st_touches" | "st_dwithin";
+    param_name?: string;
+}
 /** Simple column selection from a single source table. Projects all or specific fields. */
 export interface ViewTableProjectionParams {
     source_table_id: string;
@@ -559,6 +569,21 @@ export interface BlueprintTableUniqueConstraint {
     /** Optional schema name override. */
     schema_name?: string;
 }
+/** Override object for the entity table created by a BlueprintMembershipType. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, policies[] replaces the default entity-table policies entirely. */
+export interface BlueprintEntityTableProvision {
+    /** Whether to enable RLS on the entity table. Forwarded to secure_table_provision. Defaults to true. */
+    use_rls?: boolean;
+    /** Node objects applied to the entity table for field creation (e.g., DataTimestamps, DataPeoplestamps). Forwarded to secure_table_provision as-is. */
+    nodes?: BlueprintNode[];
+    /** Custom fields (columns) to add to the entity table. Forwarded to secure_table_provision as-is. */
+    fields?: BlueprintField[];
+    /** Privilege grants for the entity table as [verb, columns] tuples (e.g. [["select","*"],["insert","*"]]). Forwarded to secure_table_provision as-is. */
+    grant_privileges?: unknown[];
+    /** Database roles to grant privileges to. Forwarded to secure_table_provision as-is. Defaults to ["authenticated"]. */
+    grant_roles?: string[];
+    /** RLS policies for the entity table. When present, these policies fully replace the five default entity-table policies (is_visible becomes a no-op). */
+    policies?: BlueprintPolicy[];
+}
 /** A membership type entry for Phase 0 of construct_blueprint(). Provisions a full entity type with its own entity table, membership modules, and security policies via entity_type_provision. */
 export interface BlueprintMembershipType {
     /** Entity type name (e.g., "data_room", "channel", "department"). Must be unique per database. */
@@ -571,7 +596,7 @@ export interface BlueprintMembershipType {
     parent_entity?: string;
     /** Custom table name for the entity table. Defaults to name-derived convention. */
     table_name?: string;
-    /** Whether this entity type is visible in the API. Defaults to true. */
+    /** Whether parent-entity members can see child entities via the default parent_member SELECT policy. Gates one of the five default policies. No-op when table_provision is supplied. Defaults to true. */
     is_visible?: boolean;
     /** Whether to provision a limits module for this entity type. Defaults to false. */
     has_limits?: boolean;
@@ -579,8 +604,10 @@ export interface BlueprintMembershipType {
     has_profiles?: boolean;
     /** Whether to provision a levels module for this entity type. Defaults to false. */
     has_levels?: boolean;
-    /** Whether to skip creating default RLS policies on the entity table. Defaults to false. */
+    /** Escape hatch: when true AND table_provision is NULL, zero policies are provisioned on the entity table. Defaults to false. */
     skip_entity_policies?: boolean;
+    /** Override for the entity table. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, its policies[] replaces the five default entity-table policies; is_visible becomes a no-op. When NULL (default), the five default policies are applied (gated by is_visible). */
+    table_provision?: BlueprintEntityTableProvision;
 }
 /** String shorthand -- just the node type name. */
 export type BlueprintNodeShorthand = "AuthzDirectOwner" | "AuthzDirectOwnerAny" | "AuthzMembership" | "AuthzEntityMembership" | "AuthzRelatedEntityMembership" | "AuthzOrgHierarchy" | "AuthzTemporal" | "AuthzPublishable" | "AuthzMemberList" | "AuthzRelatedMemberList" | "AuthzAllowAll" | "AuthzDenyAll" | "AuthzComposite" | "AuthzNotReadOnly" | "AuthzPeerOwnership" | "AuthzRelatedPeerOwnership" | "DataId" | "DataDirectOwner" | "DataEntityMembership" | "DataOwnershipInEntity" | "DataTimestamps" | "DataPeoplestamps" | "DataPublishable" | "DataSoftDelete" | "SearchVector" | "SearchFullText" | "SearchBm25" | "SearchUnified" | "SearchSpatial" | "SearchSpatialAggregate" | "DataJobTrigger" | "DataTags" | "DataStatusField" | "DataJsonb" | "SearchTrgm" | "DataSlug" | "DataInflection" | "DataOwnedFields" | "DataInheritFromParent" | "DataForceCurrentUser" | "DataImmutableFields" | "DataCompositeField" | "TableUserProfiles" | "TableOrganizationSettings" | "TableUserSettings";
@@ -748,7 +775,15 @@ export type BlueprintRelation = {
     target_table: string;
     source_schema_name?: string;
     target_schema_name?: string;
-} & Partial<RelationManyToManyParams>;
+} & Partial<RelationManyToManyParams> | {
+    $type: "RelationSpatial";
+    source_table: string;
+    target_table: string;
+    source_schema_name?: string;
+    target_schema_name?: string;
+    /** Name of the geometry/geography column on source_table that carries the @spatialRelation smart tag. */ source_field: string;
+    /** Name of the geometry/geography column on target_table that the predicate is evaluated against. */ target_field: string;
+} & Partial<RelationSpatialParams>;
 /** A table definition within a blueprint. */
 export interface BlueprintTable {
     /** The PostgreSQL table name to create. */

package/codegen/generate-types.js

@@ -352,13 +352,23 @@ function buildNodeTypes(dataNodes) {
 // ---------------------------------------------------------------------------
 function buildRelationTypes(relationNodes) {
     const relationMembers = relationNodes.map((nt) => {
-        const baseType = t.tsTypeLiteral([
+        const baseMembers = [
             requiredProp('$type', strLit(nt.name)),
             requiredProp('source_table', t.tsStringKeyword()),
             requiredProp('target_table', t.tsStringKeyword()),
             optionalProp('source_schema_name', t.tsStringKeyword()),
             optionalProp('target_schema_name', t.tsStringKeyword()),
-        ]);
+        ];
+        // RelationSpatial is the only relation type that references *existing*
+        // columns rather than creating FK/junction fields. Its blueprint JSON
+        // therefore needs source_field / target_field (column *names* resolved
+        // server-side by resolve_blueprint_field), which have no ID-space
+        // equivalent in parameter_schema. Surface them here so blueprint authors
+        // get autocomplete without a cast.
+        if (nt.name === 'RelationSpatial') {
+            baseMembers.push(addJSDoc(requiredProp('source_field', t.tsStringKeyword()), 'Name of the geometry/geography column on source_table that carries the @spatialRelation smart tag.'), addJSDoc(requiredProp('target_field', t.tsStringKeyword()), 'Name of the geometry/geography column on target_table that the predicate is evaluated against.'));
+        }
+        const baseType = t.tsTypeLiteral(baseMembers);
         return t.tsIntersectionType([
             baseType,
             partialOf(t.tsTypeReference(t.identifier(`${nt.name}Params`))),
@@ -384,6 +394,16 @@ function buildBlueprintTableUniqueConstraint() {
         addJSDoc(optionalProp('schema_name', t.tsStringKeyword()), 'Optional schema name override.'),
     ]), 'A unique constraint nested inside a table definition (table_name not required).');
 }
+function buildBlueprintEntityTableProvision() {
+    return addJSDoc(exportInterface('BlueprintEntityTableProvision', [
+        addJSDoc(optionalProp('use_rls', t.tsBooleanKeyword()), 'Whether to enable RLS on the entity table. Forwarded to secure_table_provision. Defaults to true.'),
+        addJSDoc(optionalProp('nodes', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintNode')))), 'Node objects applied to the entity table for field creation (e.g., DataTimestamps, DataPeoplestamps). Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('fields', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintField')))), 'Custom fields (columns) to add to the entity table. Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('grant_privileges', t.tsArrayType(t.tsUnknownKeyword())), 'Privilege grants for the entity table as [verb, columns] tuples (e.g. [["select","*"],["insert","*"]]). Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('grant_roles', t.tsArrayType(t.tsStringKeyword())), 'Database roles to grant privileges to. Forwarded to secure_table_provision as-is. Defaults to ["authenticated"].'),
+        addJSDoc(optionalProp('policies', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintPolicy')))), 'RLS policies for the entity table. When present, these policies fully replace the five default entity-table policies (is_visible becomes a no-op).'),
+    ]), 'Override object for the entity table created by a BlueprintMembershipType. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, policies[] replaces the default entity-table policies entirely.');
+}
 function buildBlueprintMembershipType() {
     return addJSDoc(exportInterface('BlueprintMembershipType', [
         addJSDoc(requiredProp('name', t.tsStringKeyword()), 'Entity type name (e.g., "data_room", "channel", "department"). Must be unique per database.'),
@@ -391,11 +411,12 @@ function buildBlueprintMembershipType() {
         addJSDoc(optionalProp('description', t.tsStringKeyword()), 'Human-readable description of this entity type.'),
         addJSDoc(optionalProp('parent_entity', t.tsStringKeyword()), 'Parent entity type name. Defaults to "org".'),
         addJSDoc(optionalProp('table_name', t.tsStringKeyword()), 'Custom table name for the entity table. Defaults to name-derived convention.'),
-        addJSDoc(optionalProp('is_visible', t.tsBooleanKeyword()), 'Whether this entity type is visible in the API. Defaults to true.'),
+        addJSDoc(optionalProp('is_visible', t.tsBooleanKeyword()), 'Whether parent-entity members can see child entities via the default parent_member SELECT policy. Gates one of the five default policies. No-op when table_provision is supplied. Defaults to true.'),
         addJSDoc(optionalProp('has_limits', t.tsBooleanKeyword()), 'Whether to provision a limits module for this entity type. Defaults to false.'),
         addJSDoc(optionalProp('has_profiles', t.tsBooleanKeyword()), 'Whether to provision a profiles module for this entity type. Defaults to false.'),
         addJSDoc(optionalProp('has_levels', t.tsBooleanKeyword()), 'Whether to provision a levels module for this entity type. Defaults to false.'),
-        addJSDoc(optionalProp('skip_entity_policies', t.tsBooleanKeyword()), 'Whether to skip creating default RLS policies on the entity table. Defaults to false.'),
+        addJSDoc(optionalProp('skip_entity_policies', t.tsBooleanKeyword()), 'Escape hatch: when true AND table_provision is NULL, zero policies are provisioned on the entity table. Defaults to false.'),
+        addJSDoc(optionalProp('table_provision', t.tsTypeReference(t.identifier('BlueprintEntityTableProvision'))), 'Override for the entity table. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, its policies[] replaces the five default entity-table policies; is_visible becomes a no-op. When NULL (default), the five default policies are applied (gated by is_visible).'),
     ]), 'A membership type entry for Phase 0 of construct_blueprint(). Provisions a full entity type with its own entity table, membership modules, and security policies via entity_type_provision.');
 }
 function buildBlueprintTable() {
@@ -474,6 +495,7 @@ function buildProgram(meta) {
     statements.push(buildBlueprintTableIndex());
     statements.push(buildBlueprintUniqueConstraint());
     statements.push(buildBlueprintTableUniqueConstraint());
+    statements.push(buildBlueprintEntityTableProvision());
     statements.push(buildBlueprintMembershipType());
     // -- Node types discriminated union --
     statements.push(sectionComment('Node types -- discriminated union for nodes[] entries'));

package/esm/blueprint-types.generated.d.ts

@@ -401,6 +401,16 @@ export interface RelationManyToManyParams {
         [key: string]: unknown;
     };
 }
+/** Declares a spatial predicate between two existing geometry/geography columns. Inserts a metaschema_public.spatial_relation row; the sync_spatial_relation_tags trigger then projects a @spatialRelation smart tag onto the owner column so graphile-postgis' PostgisSpatialRelationsPlugin can expose it as a cross-table filter in GraphQL. Metadata-only: both source_field and target_field must already exist on their tables. Idempotent on (source_table_id, name). One direction per tag — author two RelationSpatial entries if symmetry is desired. */
+export interface RelationSpatialParams {
+    source_table_id: string;
+    source_field_id: string;
+    target_table_id: string;
+    target_field_id: string;
+    name: string;
+    operator: "st_contains" | "st_within" | "st_intersects" | "st_covers" | "st_coveredby" | "st_overlaps" | "st_touches" | "st_dwithin";
+    param_name?: string;
+}
 /** Simple column selection from a single source table. Projects all or specific fields. */
 export interface ViewTableProjectionParams {
     source_table_id: string;
@@ -559,6 +569,21 @@ export interface BlueprintTableUniqueConstraint {
     /** Optional schema name override. */
     schema_name?: string;
 }
+/** Override object for the entity table created by a BlueprintMembershipType. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, policies[] replaces the default entity-table policies entirely. */
+export interface BlueprintEntityTableProvision {
+    /** Whether to enable RLS on the entity table. Forwarded to secure_table_provision. Defaults to true. */
+    use_rls?: boolean;
+    /** Node objects applied to the entity table for field creation (e.g., DataTimestamps, DataPeoplestamps). Forwarded to secure_table_provision as-is. */
+    nodes?: BlueprintNode[];
+    /** Custom fields (columns) to add to the entity table. Forwarded to secure_table_provision as-is. */
+    fields?: BlueprintField[];
+    /** Privilege grants for the entity table as [verb, columns] tuples (e.g. [["select","*"],["insert","*"]]). Forwarded to secure_table_provision as-is. */
+    grant_privileges?: unknown[];
+    /** Database roles to grant privileges to. Forwarded to secure_table_provision as-is. Defaults to ["authenticated"]. */
+    grant_roles?: string[];
+    /** RLS policies for the entity table. When present, these policies fully replace the five default entity-table policies (is_visible becomes a no-op). */
+    policies?: BlueprintPolicy[];
+}
 /** A membership type entry for Phase 0 of construct_blueprint(). Provisions a full entity type with its own entity table, membership modules, and security policies via entity_type_provision. */
 export interface BlueprintMembershipType {
     /** Entity type name (e.g., "data_room", "channel", "department"). Must be unique per database. */
@@ -571,7 +596,7 @@ export interface BlueprintMembershipType {
     parent_entity?: string;
     /** Custom table name for the entity table. Defaults to name-derived convention. */
     table_name?: string;
-    /** Whether this entity type is visible in the API. Defaults to true. */
+    /** Whether parent-entity members can see child entities via the default parent_member SELECT policy. Gates one of the five default policies. No-op when table_provision is supplied. Defaults to true. */
     is_visible?: boolean;
     /** Whether to provision a limits module for this entity type. Defaults to false. */
     has_limits?: boolean;
@@ -579,8 +604,10 @@ export interface BlueprintMembershipType {
     has_profiles?: boolean;
     /** Whether to provision a levels module for this entity type. Defaults to false. */
     has_levels?: boolean;
-    /** Whether to skip creating default RLS policies on the entity table. Defaults to false. */
+    /** Escape hatch: when true AND table_provision is NULL, zero policies are provisioned on the entity table. Defaults to false. */
     skip_entity_policies?: boolean;
+    /** Override for the entity table. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, its policies[] replaces the five default entity-table policies; is_visible becomes a no-op. When NULL (default), the five default policies are applied (gated by is_visible). */
+    table_provision?: BlueprintEntityTableProvision;
 }
 /** String shorthand -- just the node type name. */
 export type BlueprintNodeShorthand = "AuthzDirectOwner" | "AuthzDirectOwnerAny" | "AuthzMembership" | "AuthzEntityMembership" | "AuthzRelatedEntityMembership" | "AuthzOrgHierarchy" | "AuthzTemporal" | "AuthzPublishable" | "AuthzMemberList" | "AuthzRelatedMemberList" | "AuthzAllowAll" | "AuthzDenyAll" | "AuthzComposite" | "AuthzNotReadOnly" | "AuthzPeerOwnership" | "AuthzRelatedPeerOwnership" | "DataId" | "DataDirectOwner" | "DataEntityMembership" | "DataOwnershipInEntity" | "DataTimestamps" | "DataPeoplestamps" | "DataPublishable" | "DataSoftDelete" | "SearchVector" | "SearchFullText" | "SearchBm25" | "SearchUnified" | "SearchSpatial" | "SearchSpatialAggregate" | "DataJobTrigger" | "DataTags" | "DataStatusField" | "DataJsonb" | "SearchTrgm" | "DataSlug" | "DataInflection" | "DataOwnedFields" | "DataInheritFromParent" | "DataForceCurrentUser" | "DataImmutableFields" | "DataCompositeField" | "TableUserProfiles" | "TableOrganizationSettings" | "TableUserSettings";
@@ -748,7 +775,15 @@ export type BlueprintRelation = {
     target_table: string;
     source_schema_name?: string;
     target_schema_name?: string;
-} & Partial<RelationManyToManyParams>;
+} & Partial<RelationManyToManyParams> | {
+    $type: "RelationSpatial";
+    source_table: string;
+    target_table: string;
+    source_schema_name?: string;
+    target_schema_name?: string;
+    /** Name of the geometry/geography column on source_table that carries the @spatialRelation smart tag. */ source_field: string;
+    /** Name of the geometry/geography column on target_table that the predicate is evaluated against. */ target_field: string;
+} & Partial<RelationSpatialParams>;
 /** A table definition within a blueprint. */
 export interface BlueprintTable {
     /** The PostgreSQL table name to create. */

package/esm/codegen/generate-types.js

@@ -317,13 +317,23 @@ function buildNodeTypes(dataNodes) {
 // ---------------------------------------------------------------------------
 function buildRelationTypes(relationNodes) {
     const relationMembers = relationNodes.map((nt) => {
-        const baseType = t.tsTypeLiteral([
+        const baseMembers = [
             requiredProp('$type', strLit(nt.name)),
             requiredProp('source_table', t.tsStringKeyword()),
             requiredProp('target_table', t.tsStringKeyword()),
             optionalProp('source_schema_name', t.tsStringKeyword()),
             optionalProp('target_schema_name', t.tsStringKeyword()),
-        ]);
+        ];
+        // RelationSpatial is the only relation type that references *existing*
+        // columns rather than creating FK/junction fields. Its blueprint JSON
+        // therefore needs source_field / target_field (column *names* resolved
+        // server-side by resolve_blueprint_field), which have no ID-space
+        // equivalent in parameter_schema. Surface them here so blueprint authors
+        // get autocomplete without a cast.
+        if (nt.name === 'RelationSpatial') {
+            baseMembers.push(addJSDoc(requiredProp('source_field', t.tsStringKeyword()), 'Name of the geometry/geography column on source_table that carries the @spatialRelation smart tag.'), addJSDoc(requiredProp('target_field', t.tsStringKeyword()), 'Name of the geometry/geography column on target_table that the predicate is evaluated against.'));
+        }
+        const baseType = t.tsTypeLiteral(baseMembers);
         return t.tsIntersectionType([
             baseType,
             partialOf(t.tsTypeReference(t.identifier(`${nt.name}Params`))),
@@ -349,6 +359,16 @@ function buildBlueprintTableUniqueConstraint() {
         addJSDoc(optionalProp('schema_name', t.tsStringKeyword()), 'Optional schema name override.'),
     ]), 'A unique constraint nested inside a table definition (table_name not required).');
 }
+function buildBlueprintEntityTableProvision() {
+    return addJSDoc(exportInterface('BlueprintEntityTableProvision', [
+        addJSDoc(optionalProp('use_rls', t.tsBooleanKeyword()), 'Whether to enable RLS on the entity table. Forwarded to secure_table_provision. Defaults to true.'),
+        addJSDoc(optionalProp('nodes', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintNode')))), 'Node objects applied to the entity table for field creation (e.g., DataTimestamps, DataPeoplestamps). Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('fields', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintField')))), 'Custom fields (columns) to add to the entity table. Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('grant_privileges', t.tsArrayType(t.tsUnknownKeyword())), 'Privilege grants for the entity table as [verb, columns] tuples (e.g. [["select","*"],["insert","*"]]). Forwarded to secure_table_provision as-is.'),
+        addJSDoc(optionalProp('grant_roles', t.tsArrayType(t.tsStringKeyword())), 'Database roles to grant privileges to. Forwarded to secure_table_provision as-is. Defaults to ["authenticated"].'),
+        addJSDoc(optionalProp('policies', t.tsArrayType(t.tsTypeReference(t.identifier('BlueprintPolicy')))), 'RLS policies for the entity table. When present, these policies fully replace the five default entity-table policies (is_visible becomes a no-op).'),
+    ]), 'Override object for the entity table created by a BlueprintMembershipType. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, policies[] replaces the default entity-table policies entirely.');
+}
 function buildBlueprintMembershipType() {
     return addJSDoc(exportInterface('BlueprintMembershipType', [
         addJSDoc(requiredProp('name', t.tsStringKeyword()), 'Entity type name (e.g., "data_room", "channel", "department"). Must be unique per database.'),
@@ -356,11 +376,12 @@ function buildBlueprintMembershipType() {
         addJSDoc(optionalProp('description', t.tsStringKeyword()), 'Human-readable description of this entity type.'),
         addJSDoc(optionalProp('parent_entity', t.tsStringKeyword()), 'Parent entity type name. Defaults to "org".'),
         addJSDoc(optionalProp('table_name', t.tsStringKeyword()), 'Custom table name for the entity table. Defaults to name-derived convention.'),
-        addJSDoc(optionalProp('is_visible', t.tsBooleanKeyword()), 'Whether this entity type is visible in the API. Defaults to true.'),
+        addJSDoc(optionalProp('is_visible', t.tsBooleanKeyword()), 'Whether parent-entity members can see child entities via the default parent_member SELECT policy. Gates one of the five default policies. No-op when table_provision is supplied. Defaults to true.'),
         addJSDoc(optionalProp('has_limits', t.tsBooleanKeyword()), 'Whether to provision a limits module for this entity type. Defaults to false.'),
         addJSDoc(optionalProp('has_profiles', t.tsBooleanKeyword()), 'Whether to provision a profiles module for this entity type. Defaults to false.'),
         addJSDoc(optionalProp('has_levels', t.tsBooleanKeyword()), 'Whether to provision a levels module for this entity type. Defaults to false.'),
-        addJSDoc(optionalProp('skip_entity_policies', t.tsBooleanKeyword()), 'Whether to skip creating default RLS policies on the entity table. Defaults to false.'),
+        addJSDoc(optionalProp('skip_entity_policies', t.tsBooleanKeyword()), 'Escape hatch: when true AND table_provision is NULL, zero policies are provisioned on the entity table. Defaults to false.'),
+        addJSDoc(optionalProp('table_provision', t.tsTypeReference(t.identifier('BlueprintEntityTableProvision'))), 'Override for the entity table. Shape mirrors BlueprintTable / secure_table_provision vocabulary. When supplied, its policies[] replaces the five default entity-table policies; is_visible becomes a no-op. When NULL (default), the five default policies are applied (gated by is_visible).'),
     ]), 'A membership type entry for Phase 0 of construct_blueprint(). Provisions a full entity type with its own entity table, membership modules, and security policies via entity_type_provision.');
 }
 function buildBlueprintTable() {
@@ -439,6 +460,7 @@ function buildProgram(meta) {
     statements.push(buildBlueprintTableIndex());
     statements.push(buildBlueprintUniqueConstraint());
     statements.push(buildBlueprintTableUniqueConstraint());
+    statements.push(buildBlueprintEntityTableProvision());
     statements.push(buildBlueprintMembershipType());
     // -- Node types discriminated union --
     statements.push(sectionComment('Node types -- discriminated union for nodes[] entries'));

package/esm/relation/index.d.ts

@@ -2,3 +2,4 @@ export { RelationBelongsTo } from './relation-belongs-to';
 export { RelationHasOne } from './relation-has-one';
 export { RelationHasMany } from './relation-has-many';
 export { RelationManyToMany } from './relation-many-to-many';
+export { RelationSpatial } from './relation-spatial';

package/esm/relation/index.js

@@ -2,3 +2,4 @@ export { RelationBelongsTo } from './relation-belongs-to';
 export { RelationHasOne } from './relation-has-one';
 export { RelationHasMany } from './relation-has-many';
 export { RelationManyToMany } from './relation-many-to-many';
+export { RelationSpatial } from './relation-spatial';

package/esm/relation/relation-spatial.d.ts

@@ -0,0 +1,2 @@
+import type { NodeTypeDefinition } from '../types';
+export declare const RelationSpatial: NodeTypeDefinition;

package/esm/relation/relation-spatial.js

@@ -0,0 +1,68 @@
+export const RelationSpatial = {
+    "name": "RelationSpatial",
+    "slug": "relation_spatial",
+    "category": "relation",
+    "display_name": "Spatial Relation",
+    "description": "Declares a spatial predicate between two existing geometry/geography columns. Inserts a metaschema_public.spatial_relation row; the sync_spatial_relation_tags trigger then projects a @spatialRelation smart tag onto the owner column so graphile-postgis' PostgisSpatialRelationsPlugin can expose it as a cross-table filter in GraphQL. Metadata-only: both source_field and target_field must already exist on their tables. Idempotent on (source_table_id, name). One direction per tag — author two RelationSpatial entries if symmetry is desired.",
+    "parameter_schema": {
+        "type": "object",
+        "properties": {
+            "source_table_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Table that owns the relation (the @spatialRelation tag is emitted on the owner column of this table)"
+            },
+            "source_field_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Geometry/geography column on source_table that carries the @spatialRelation smart tag"
+            },
+            "target_table_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Table being referenced by the spatial predicate"
+            },
+            "target_field_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Geometry/geography column on target_table that the predicate is evaluated against"
+            },
+            "name": {
+                "type": "string",
+                "description": "Relation name (stable, snake_case). Becomes the generated filter field name in GraphQL (e.g. nearby_clinic). Unique per (source_table_id, name) — idempotency key."
+            },
+            "operator": {
+                "type": "string",
+                "enum": [
+                    "st_contains",
+                    "st_within",
+                    "st_intersects",
+                    "st_covers",
+                    "st_coveredby",
+                    "st_overlaps",
+                    "st_touches",
+                    "st_dwithin"
+                ],
+                "description": "PostGIS spatial predicate. One of the 8 whitelisted operators. st_dwithin requires param_name."
+            },
+            "param_name": {
+                "type": "string",
+                "description": "Parameter name for parametric operators (currently only st_dwithin, which needs a distance argument). Must be NULL for all other operators. Enforced by table CHECK."
+            }
+        },
+        "required": [
+            "source_table_id",
+            "source_field_id",
+            "target_table_id",
+            "target_field_id",
+            "name",
+            "operator"
+        ]
+    },
+    "tags": [
+        "relation",
+        "spatial",
+        "postgis",
+        "schema"
+    ]
+};

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "node-type-registry",
-  "version": "0.12.0",
+  "version": "0.16.0",
   "description": "Node type definitions for the Constructive blueprint system. Single source of truth for all Authz*, Data*, Relation*, and View* node types.",
   "author": "Constructive <developers@constructive.io>",
   "main": "index.js",
@@ -47,5 +47,5 @@
     "registry",
     "graphile"
   ],
-  "gitHead": "0e97757923bc862adb144cfe8a34ec7ecf7aec8a"
+  "gitHead": "5094bbe92916be47234fe80c583c6957f51226e1"
 }

package/relation/index.d.ts

@@ -2,3 +2,4 @@ export { RelationBelongsTo } from './relation-belongs-to';
 export { RelationHasOne } from './relation-has-one';
 export { RelationHasMany } from './relation-has-many';
 export { RelationManyToMany } from './relation-many-to-many';
+export { RelationSpatial } from './relation-spatial';

package/relation/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.RelationManyToMany = exports.RelationHasMany = exports.RelationHasOne = exports.RelationBelongsTo = void 0;
+exports.RelationSpatial = exports.RelationManyToMany = exports.RelationHasMany = exports.RelationHasOne = exports.RelationBelongsTo = void 0;
 var relation_belongs_to_1 = require("./relation-belongs-to");
 Object.defineProperty(exports, "RelationBelongsTo", { enumerable: true, get: function () { return relation_belongs_to_1.RelationBelongsTo; } });
 var relation_has_one_1 = require("./relation-has-one");
@@ -9,3 +9,5 @@ var relation_has_many_1 = require("./relation-has-many");
 Object.defineProperty(exports, "RelationHasMany", { enumerable: true, get: function () { return relation_has_many_1.RelationHasMany; } });
 var relation_many_to_many_1 = require("./relation-many-to-many");
 Object.defineProperty(exports, "RelationManyToMany", { enumerable: true, get: function () { return relation_many_to_many_1.RelationManyToMany; } });
+var relation_spatial_1 = require("./relation-spatial");
+Object.defineProperty(exports, "RelationSpatial", { enumerable: true, get: function () { return relation_spatial_1.RelationSpatial; } });

package/relation/relation-spatial.d.ts

@@ -0,0 +1,2 @@
+import type { NodeTypeDefinition } from '../types';
+export declare const RelationSpatial: NodeTypeDefinition;

package/relation/relation-spatial.js

@@ -0,0 +1,71 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RelationSpatial = void 0;
+exports.RelationSpatial = {
+    "name": "RelationSpatial",
+    "slug": "relation_spatial",
+    "category": "relation",
+    "display_name": "Spatial Relation",
+    "description": "Declares a spatial predicate between two existing geometry/geography columns. Inserts a metaschema_public.spatial_relation row; the sync_spatial_relation_tags trigger then projects a @spatialRelation smart tag onto the owner column so graphile-postgis' PostgisSpatialRelationsPlugin can expose it as a cross-table filter in GraphQL. Metadata-only: both source_field and target_field must already exist on their tables. Idempotent on (source_table_id, name). One direction per tag — author two RelationSpatial entries if symmetry is desired.",
+    "parameter_schema": {
+        "type": "object",
+        "properties": {
+            "source_table_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Table that owns the relation (the @spatialRelation tag is emitted on the owner column of this table)"
+            },
+            "source_field_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Geometry/geography column on source_table that carries the @spatialRelation smart tag"
+            },
+            "target_table_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Table being referenced by the spatial predicate"
+            },
+            "target_field_id": {
+                "type": "string",
+                "format": "uuid",
+                "description": "Geometry/geography column on target_table that the predicate is evaluated against"
+            },
+            "name": {
+                "type": "string",
+                "description": "Relation name (stable, snake_case). Becomes the generated filter field name in GraphQL (e.g. nearby_clinic). Unique per (source_table_id, name) — idempotency key."
+            },
+            "operator": {
+                "type": "string",
+                "enum": [
+                    "st_contains",
+                    "st_within",
+                    "st_intersects",
+                    "st_covers",
+                    "st_coveredby",
+                    "st_overlaps",
+                    "st_touches",
+                    "st_dwithin"
+                ],
+                "description": "PostGIS spatial predicate. One of the 8 whitelisted operators. st_dwithin requires param_name."
+            },
+            "param_name": {
+                "type": "string",
+                "description": "Parameter name for parametric operators (currently only st_dwithin, which needs a distance argument). Must be NULL for all other operators. Enforced by table CHECK."
+            }
+        },
+        "required": [
+            "source_table_id",
+            "source_field_id",
+            "target_table_id",
+            "target_field_id",
+            "name",
+            "operator"
+        ]
+    },
+    "tags": [
+        "relation",
+        "spatial",
+        "postgis",
+        "schema"
+    ]
+};