node-type-registry 0.44.0 → 0.47.0

package/module-presets/b2b.js

@@ -18,11 +18,11 @@ exports.PresetB2b = {
     display_name: 'B2B SaaS (orgs + invites + permissions)',
     summary: '`auth:hardened` + orgs, invites, fine-grained permissions, levels, profiles, hierarchy.',
     description: 'Everything in `auth:hardened`, plus the full org/team/permission stack at both app and ' +
-        'org membership scopes. You get: `memberships_module:org` for org-scoped memberships, ' +
-        '`permissions_module:app/:org` for fine-grained RBAC, `limits_module:app/:org` for per-scope ' +
-        'quota enforcement, `levels_module:app/:org` for role bundles, `profiles_module:app/:org` ' +
-        'for per-scope user display info, `hierarchy_module:org` for nested org structures, and ' +
-        '`invites_module:app/:org` for invite flows at either scope. Choose this when the app has ' +
+        'org membership scopes. You get: memberships at org scope, permissions at app and org ' +
+        'scopes for fine-grained RBAC, limits at app and org scopes for per-scope quota ' +
+        'enforcement, levels at app and org scopes for role bundles, profiles at app and org ' +
+        'scopes for per-scope user display info, hierarchy at org scope for nested org structures, ' +
+        'and invites at app and org scopes for invite flows. Choose this when the app has ' +
         'the concept of a "workspace" / "team" / "tenant" that users belong to and act within.',
     good_for: [
         'B2B SaaS with multi-tenant workspaces / teams',
@@ -37,11 +37,12 @@ exports.PresetB2b = {
     modules: [
         'users_module',
         'membership_types_module',
-        'memberships_module:app',
-        'memberships_module:org',
+        ['memberships_module', { scope: 'app' }],
+        ['memberships_module', { scope: 'org' }],
         'sessions_module',
         'user_state_module',
-        'config_secrets_user_module',
+        'user_credentials_module',
+        'config_secrets_module',
         'emails_module',
         'rls_module',
         'user_auth_module',
@@ -52,37 +53,18 @@ exports.PresetB2b = {
         'webauthn_credentials_module',
         'webauthn_auth_module',
         'phone_numbers_module',
-        'permissions_module:app',
-        'permissions_module:org',
-        'limits_module:app',
-        'limits_module:org',
-        'levels_module:app',
-        'levels_module:org',
-        'profiles_module:app',
-        'profiles_module:org',
-        'hierarchy_module:org',
-        'invites_module:app',
-        'invites_module:org',
+        ['permissions_module', { scope: 'app' }],
+        ['permissions_module', { scope: 'org' }],
+        ['limits_module', { scope: 'app' }],
+        ['limits_module', { scope: 'org' }],
+        ['levels_module', { scope: 'app' }],
+        ['levels_module', { scope: 'org' }],
+        ['profiles_module', { scope: 'app' }],
+        ['profiles_module', { scope: 'org' }],
+        ['hierarchy_module', { scope: 'org' }],
+        ['invites_module', { scope: 'app' }],
+        ['invites_module', { scope: 'org' }],
         'devices_module'
     ],
-    includes_notes: {
-        'memberships_module:org': 'Org-scoped membership rows — every user in an org gets one.',
-        'permissions_module:app': 'App-wide permission grants (e.g. platform admins).',
-        'permissions_module:org': 'Org-scoped permission grants (per-workspace admins, members, viewers, ...).',
-        'limits_module:app': 'App-level quotas (e.g. max users per plan).',
-        'limits_module:org': 'Org-level quotas (e.g. per-workspace API call caps).',
-        'levels_module:app': 'Role/level bundles at the app scope.',
-        'levels_module:org': 'Role/level bundles at the org scope (admin / member / viewer, etc.).',
-        'profiles_module:app': 'App-scoped user profile (one per user).',
-        'profiles_module:org': 'Org-scoped user profile (per org a user belongs to).',
-        'hierarchy_module:org': 'Nested org structures (parent / child orgs).',
-        'invites_module:app': 'App-level invites (rare — usually platform admin adds another admin).',
-        'invites_module:org': 'Org-level invites (the common case — invite a teammate into a workspace).',
-        devices_module: 'Device tracking and trusted-device MFA bypass.'
-    },
-    omits_notes: {
-        storage_module: 'Add separately if you need file uploads tied to orgs.',
-        crypto_addresses_module: 'Not a web3 preset.'
-    },
     extends: ['auth:hardened']
 };

package/module-presets/full.d.ts

@@ -3,7 +3,7 @@ import type { ModulePreset } from './types';
  * `full` — install every standard module.
  *
  * This is the maximalist preset: every module Constructive ships, including
- * `storage_module:full` for file uploads with all feature flags and
+ * `storage_module` with all feature flags enabled and
  * `crypto_addresses_module` for wallet-based sign-in.
  *
  * Usage logging modules (compute_log, inference_log, transfer_log,

package/module-presets/full.js

@@ -5,7 +5,7 @@ exports.PresetFull = void 0;
  * `full` — install every standard module.
  *
  * This is the maximalist preset: every module Constructive ships, including
- * `storage_module:full` for file uploads with all feature flags and
+ * `storage_module` with all feature flags enabled and
  * `crypto_addresses_module` for wallet-based sign-in.
  *
  * Usage logging modules (compute_log, inference_log, transfer_log,
@@ -19,7 +19,7 @@ exports.PresetFull = {
     display_name: 'Full (every module)',
     summary: 'Install every standard Constructive module with explicit module list.',
     description: 'Installs every standard module in the catalog: everything in `b2b` plus ' +
-        '`storage_module:full` for file uploads (versioning, content hash, custom keys, audit log), ' +
+        '`storage_module` with all feature flags (versioning, content hash, custom keys, audit log), ' +
         '`crypto_addresses_module` for wallet-based sign-in, `plans_module` and `billing_module` ' +
         'for subscription management, `notifications_module` for in-app notifications, and ' +
         '`events_module` at both app and org scopes. Usage logging modules are opt-in only — ' +
@@ -38,19 +38,19 @@ exports.PresetFull = {
         'users_module',
         'membership_types_module',
         // App-level (membership_type = 1)
-        'permissions_module:app',
-        'limits_module:app',
-        'memberships_module:app',
-        'events_module:app',
-        'profiles_module:app',
+        ['permissions_module', { scope: 'app' }],
+        ['limits_module', { scope: 'app' }],
+        ['memberships_module', { scope: 'app' }],
+        ['events_module', { scope: 'app' }],
+        ['profiles_module', { scope: 'app' }],
         // Org-level (membership_type = 2)
-        'permissions_module:org',
-        'limits_module:org',
-        'memberships_module:org',
-        'events_module:org',
-        'profiles_module:org',
+        ['permissions_module', { scope: 'org' }],
+        ['limits_module', { scope: 'org' }],
+        ['memberships_module', { scope: 'org' }],
+        ['events_module', { scope: 'org' }],
+        ['profiles_module', { scope: 'org' }],
         // Hierarchy
-        'hierarchy_module:org',
+        ['hierarchy_module', { scope: 'org' }],
         // Billing & Plans
         'plans_module',
         'billing_module',
@@ -62,35 +62,32 @@ exports.PresetFull = {
         'session_secrets_module',
         'rate_limits_module',
         'devices_module',
-        'config_secrets_user_module',
+        'user_credentials_module',
+        'config_secrets_module',
         'rls_module',
         // Contact modules
         'emails_module',
         'phone_numbers_module',
         'crypto_addresses_module',
         'webauthn_credentials_module',
+        // User settings + notifications (user_settings_module must precede notifications_module)
+        'user_settings_module',
         'notifications_module',
         // Connected accounts
         'connected_accounts_module',
         'identity_providers_module',
         // Invites & Auth
-        'invites_module:app',
-        'invites_module:org',
+        ['invites_module', { scope: 'app' }],
+        ['invites_module', { scope: 'org' }],
         'user_auth_module',
         'webauthn_auth_module',
+        // Internationalization
+        'i18n_module',
         // Storage (full features)
-        'storage_module:full'
+        ['storage_module', { has_versioning: true, has_content_hash: true, has_custom_keys: true, has_audit_log: true }],
+        // Infrastructure (functions, namespaces)
+        'namespace_module',
+        'function_module',
     ],
-    includes_notes: {
-        'storage_module:full': 'All storage feature flags enabled: versioning, content hash, custom keys, audit log.',
-        billing_module: 'Metered billing with credits waterfall and period reset.',
-        plans_module: 'Subscription plan management with plan-governed caps.',
-        notifications_module: 'In-app notification system with read/unread tracking.'
-    },
-    omits_notes: {
-        compute_log_module: 'Usage logging is opt-in. Add explicitly if needed.',
-        inference_log_module: 'Usage logging is opt-in. Add explicitly if needed.',
-        agent_module: 'Agent infrastructure is opt-in.'
-    },
     extends: ['b2b']
 };

package/module-presets/minimal.js

@@ -36,16 +36,5 @@ exports.PresetMinimal = {
         'sessions_module',
         'rls_module',
         'user_state_module'
-    ],
-    includes_notes: {
-        users_module: 'The canonical users table. Required by every preset.',
-        sessions_module: 'Session/token storage; needed so whatever upstream auth can mint a session row.',
-        rls_module: 'RLS policy infrastructure. Without it, row-level security is not enforced.',
-        user_state_module: 'API-key storage. Optional for this preset but almost always wanted alongside upstream auth.'
-    },
-    omits_notes: {
-        user_auth_module: 'No server-side sign_up/sign_in procedures in this preset.',
-        emails_module: 'Not needed without password/magic-link flows; upstream auth handles identity.',
-        memberships_module: 'No memberships without a user_auth_module wiring them up.'
-    }
+    ]
 };

package/module-presets/types.d.ts

@@ -34,24 +34,18 @@ export interface ModulePreset {
     /** Scenarios where this preset is the wrong choice — point at alternatives. */
     not_for: string[];
     /**
-     * Flat list of module names to install. Module names must match the
-     * canonical list accepted by
+     * List of modules to install. Each entry is either a plain module name
+     * (string) or a Babel-style tuple [name, options] for modules that need
+     * configuration. Module names must match the canonical list accepted by
      * `metaschema_generators.provision_database_modules` in constructive-db.
      * Order doesn't matter — provisioning resolves dependencies.
+     *
+     * Examples:
+     *   'users_module'                              — simple module
+     *   ['permissions_module', { scope: 'app' }]    — scoped module
+     *   ['agent_module', { has_plans: true }]        — feature-flagged module
      */
-    modules: string[];
-    /**
-     * Optional per-module justifications. Map from module name to a short
-     * "why this module is in this preset" note. Rendered in docs and CLI
-     * `--explain` output.
-     */
-    includes_notes?: Record<string, string>;
-    /**
-     * Optional per-module "why we deliberately leave this out" notes. Only
-     * list modules that a user might reasonably expect to be here; don't
-     * enumerate every omitted module.
-     */
-    omits_notes?: Record<string, string>;
+    modules: (string | [string, Record<string, unknown>])[];
     /**
      * Optional: name(s) of presets this one builds on. Purely documentary —
      * not enforced at runtime, `modules` must still be the full flat list.

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "node-type-registry",
-  "version": "0.44.0",
+  "version": "0.47.0",
   "description": "Node type definitions for the Constructive blueprint system. Single source of truth for all Authz*, Data*, Relation*, and View* node types.",
   "author": "Constructive <developers@constructive.io>",
   "main": "index.js",
@@ -47,5 +47,5 @@
     "registry",
     "graphile"
   ],
-  "gitHead": "0503916f414a3b8a6f6cbe46e03a59988b2f3cb5"
+  "gitHead": "c9ff6a6cec5d8cb455010b190b78c3d055097981"
 }