qdadm 0.31.0 → 0.32.0

package/src/entity/storage/MockApiStorage.js

@@ -65,13 +65,26 @@ export class MockApiStorage extends IStorage {
     return MockApiStorage.capabilities.supportsCaching
   }
 
+  /**
+   * Instance capabilities getter.
+   * Merges static capabilities with instance-specific ones like requiresAuth.
+   * @returns {object}
+   */
+  get capabilities() {
+    return {
+      ...MockApiStorage.capabilities,
+      requiresAuth: !!this._authCheck
+    }
+  }
+
   constructor(options = {}) {
     super()
     const {
       entityName,
       idField = 'id',
       generateId = () => Date.now().toString(36) + Math.random().toString(36).substr(2),
-      initialData = null
+      initialData = null,
+      authCheck = null // Optional: () => boolean - throws 401 if returns false
     } = options
 
     if (!entityName) {
@@ -83,11 +96,24 @@ export class MockApiStorage extends IStorage {
     this.generateId = generateId
     this._storageKey = `mockapi_${entityName}_data`
     this._data = new Map()
+    this._authCheck = authCheck
 
     // Load from localStorage or seed with initialData
     this._loadFromStorage(initialData)
   }
 
+  /**
+   * Check authentication if authCheck is configured
+   * @throws {Error} 401 error if not authenticated
+   */
+  _checkAuth() {
+    if (this._authCheck && !this._authCheck()) {
+      const error = new Error(`Unauthorized: Authentication required to access ${this.entityName}`)
+      error.status = 401
+      throw error
+    }
+  }
+
   /**
    * Load data from localStorage, seed with initialData if empty
    * @param {Array|null} initialData - Data to seed if storage is empty
@@ -158,6 +184,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<{ items: Array, total: number }>}
    */
   async list(params = {}) {
+    this._checkAuth()
     const { page = 1, page_size = 20, sort_by, sort_order = 'asc', filters = {}, search } = params
 
     let items = this._getAll()
@@ -213,6 +240,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<object>}
    */
   async get(id) {
+    this._checkAuth()
     const item = this._data.get(String(id))
     if (!item) {
       const error = new Error(`Entity not found: ${id}`)
@@ -228,6 +256,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<Array<object>>}
    */
   async getMany(ids) {
+    this._checkAuth()
     if (!ids || ids.length === 0) return []
     const results = []
     for (const id of ids) {
@@ -282,6 +311,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<object>}
    */
   async create(data) {
+    this._checkAuth()
     const id = data[this.idField] || this.generateId()
     const newItem = {
       ...data,
@@ -300,6 +330,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<object>}
    */
   async update(id, data) {
+    this._checkAuth()
     if (!this._data.has(String(id))) {
       const error = new Error(`Entity not found: ${id}`)
       error.status = 404
@@ -322,6 +353,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<object>}
    */
   async patch(id, data) {
+    this._checkAuth()
     const existing = this._data.get(String(id))
     if (!existing) {
       const error = new Error(`Entity not found: ${id}`)
@@ -344,6 +376,7 @@ export class MockApiStorage extends IStorage {
    * @returns {Promise<void>}
    */
   async delete(id) {
+    this._checkAuth()
     if (!this._data.has(String(id))) {
       const error = new Error(`Entity not found: ${id}`)
       error.status = 404

package/src/kernel/Kernel.js

@@ -54,6 +54,7 @@ import { createZoneRegistry } from '../zones/ZoneRegistry.js'
 import { registerStandardZones } from '../zones/zones.js'
 import { createHookRegistry } from '../hooks/HookRegistry.js'
 import { createSecurityChecker } from '../entity/auth/SecurityChecker.js'
+import { authFactory, CompositeAuthAdapter } from '../entity/auth/index.js'
 import { createManagers } from '../entity/factory.js'
 import { defaultStorageResolver } from '../entity/storage/factory.js'
 import { createDeferredRegistry } from '../deferred/DeferredRegistry.js'
@@ -139,6 +140,33 @@ export class Kernel {
     this._pendingComponents = new Map()
   }
 
+  /**
+   * Resolve entityAuthAdapter through authFactory
+   *
+   * Enables multiple configuration styles:
+   * - Instance passthrough (backward compatible): authAdapter instance
+   * - String pattern: 'permissive', 'jwt' (if registered in authTypes)
+   * - Config object: { type: 'jwt', ... }
+   * - Composite: { default: adapter, mapping: { 'entity': adapter } }
+   *
+   * @private
+   */
+  _resolveEntityAuthAdapter() {
+    const { entityAuthAdapter, authTypes } = this.options
+
+    // No adapter configured → nothing to resolve
+    if (entityAuthAdapter == null) return
+
+    // Build factory context with CompositeAuthAdapter available
+    const context = {
+      authTypes: authTypes || {},
+      CompositeAuthAdapter
+    }
+
+    // Resolve through factory (handles all input types)
+    this.options.entityAuthAdapter = authFactory(entityAuthAdapter, context)
+  }
+
   /**
    * Create and configure the Vue app
    *
@@ -149,6 +177,8 @@ export class Kernel {
    * @returns {App} Vue app instance ready to mount
    */
   createApp() {
+    // 0. Resolve entityAuthAdapter (supports instance, string, config, composite)
+    this._resolveEntityAuthAdapter()
     // 1. Create services first (modules need them)
     this._createSignalBus()
     this._createHookRegistry()
@@ -192,6 +222,8 @@ export class Kernel {
    * @returns {Promise<App>} Vue app instance ready to mount
    */
   async createAppAsync() {
+    // 0. Resolve entityAuthAdapter (supports instance, string, config, composite)
+    this._resolveEntityAuthAdapter()
     // 1. Create services first (modules need them)
     this._createSignalBus()
     this._createHookRegistry()