start-vibing 4.3.4 → 4.4.0

package/template/.claude/skills/e2e-audit/e2e/fixtures/auth.setup.ts

@@ -0,0 +1,70 @@
+import fs from 'fs'
+import { test as setup } from '@playwright/test'
+import { STORAGE_STATE } from './auth'
+
+/**
+ * Auth setup — captures storage state for each role.
+ *
+ * If a storage state file already contains a session-token cookie,
+ * the setup SKIPS that role to avoid overwriting a valid session.
+ *
+ * To refresh sessions:
+ *   1. Delete the storage files in tests/e2e/fixtures/storage/
+ *   2. Log in manually at http://localhost:3000
+ *   3. Run `bunx playwright test --project=setup`
+ */
+
+function hasValidSession(filePath: string): boolean {
+	try {
+		const data = JSON.parse(fs.readFileSync(filePath, 'utf-8'))
+		return data.cookies?.some(
+			(c: { name: string }) => c.name === 'session-token'
+		)
+	} catch {
+		return false
+	}
+}
+
+setup('authenticate as owner', async ({ page }) => {
+	if (hasValidSession(STORAGE_STATE.owner)) {
+		// eslint-disable-next-line no-console
+		console.log('Owner session already valid, skipping setup')
+		return
+	}
+	await page.goto('/dashboard/home')
+	await page.waitForURL(/dashboard/, { timeout: 15000 }).catch(() => {})
+	await page.context().storageState({ path: STORAGE_STATE.owner })
+})
+
+setup('authenticate as admin', async ({ page }) => {
+	if (hasValidSession(STORAGE_STATE.admin)) {
+		// eslint-disable-next-line no-console
+		console.log('Admin session already valid, skipping setup')
+		return
+	}
+	await page.goto('/dashboard/home')
+	await page.waitForURL(/dashboard/, { timeout: 15000 }).catch(() => {})
+	await page.context().storageState({ path: STORAGE_STATE.admin })
+})
+
+setup('authenticate as manager', async ({ page }) => {
+	if (hasValidSession(STORAGE_STATE.manager)) {
+		// eslint-disable-next-line no-console
+		console.log('Manager session already valid, skipping setup')
+		return
+	}
+	await page.goto('/dashboard/home')
+	await page.waitForURL(/dashboard/, { timeout: 15000 }).catch(() => {})
+	await page.context().storageState({ path: STORAGE_STATE.manager })
+})
+
+setup('authenticate as member', async ({ page }) => {
+	if (hasValidSession(STORAGE_STATE.member)) {
+		// eslint-disable-next-line no-console
+		console.log('Member session already valid, skipping setup')
+		return
+	}
+	await page.goto('/dashboard/home')
+	await page.waitForURL(/dashboard/, { timeout: 15000 }).catch(() => {})
+	await page.context().storageState({ path: STORAGE_STATE.member })
+})

package/template/.claude/skills/e2e-audit/e2e/fixtures/auth.ts

@@ -0,0 +1,21 @@
+import path from 'path'
+import { fileURLToPath } from 'url'
+
+const __filename = fileURLToPath(import.meta.url)
+const __dirname = path.dirname(__filename)
+const STORAGE_DIR = path.join(__dirname, 'storage')
+
+/**
+ * Auth storage state paths per role.
+ *
+ * The actual auth setup tests live in auth.setup.ts.
+ * This file only exports the storage state paths and role type.
+ */
+export const STORAGE_STATE = {
+	owner: path.join(STORAGE_DIR, 'owner.json'),
+	admin: path.join(STORAGE_DIR, 'admin.json'),
+	manager: path.join(STORAGE_DIR, 'manager.json'),
+	member: path.join(STORAGE_DIR, 'member.json'),
+}
+
+export type UserRole = keyof typeof STORAGE_STATE

package/template/.claude/skills/e2e-audit/e2e/fixtures/base.ts

@@ -0,0 +1,90 @@
+import { test as base, expect, type Page } from '@playwright/test'
+import { STORAGE_STATE, type UserRole } from './auth'
+
+type ApiError = {
+	url: string
+	status: number
+	method: string
+	statusText: string
+}
+
+type Fixtures = {
+	authenticatedPage: Page
+	role: UserRole
+	apiErrors: ApiError[]
+}
+
+/**
+ * Endpoints that return errors due to missing env vars (e.g., Stripe),
+ * not actual application bugs. These are excluded from automatic failure reporting.
+ */
+const IGNORED_API_PATTERNS = [
+	/\/api\/billing\//,
+	/ontology\.getGraph/,
+	/ontology\.getEntityTypes/,
+]
+
+/**
+ * Extended test fixture with pre-authenticated page and API error tracking.
+ *
+ * Usage:
+ *   import { test, expect } from '../fixtures/base'
+ *   test('my test', async ({ authenticatedPage }) => { ... })
+ *
+ * Default role is 'owner'. Override per-describe:
+ *   test.use({ role: 'member' })
+ *
+ * API errors (4xx, 5xx) are automatically tracked and reported in test failures.
+ * Env-dependent endpoints (billing, etc.) are excluded — see IGNORED_API_PATTERNS.
+ * Access via `apiErrors` fixture for explicit assertions.
+ */
+export const test = base.extend<Fixtures>({
+	role: ['owner', { option: true }],
+
+	authenticatedPage: async ({ browser, role }, use) => {
+		const context = await browser.newContext({
+			storageState: STORAGE_STATE[role],
+			viewport: { width: 1280, height: 720 },
+		})
+		const page = await context.newPage()
+		await use(page)
+		await context.close()
+	},
+
+	apiErrors: async ({ authenticatedPage }, use) => {
+		const errors: ApiError[] = []
+
+		authenticatedPage.on('response', (response) => {
+			const status = response.status()
+			if (status >= 400) {
+				const url = response.url()
+				if (url.includes('/api/') || url.includes('/v1/')) {
+					const path = url.replace(/^https?:\/\/[^/]+/, '')
+					const isIgnored = IGNORED_API_PATTERNS.some((p) => p.test(path))
+					if (!isIgnored) {
+						errors.push({
+							url: path,
+							status,
+							method: response.request().method(),
+							statusText: response.statusText(),
+						})
+					}
+				}
+			}
+		})
+
+		await use(errors)
+
+		if (errors.length > 0) {
+			const report = errors
+				.map((e) => `  ${e.method} ${e.url} → ${e.status} ${e.statusText}`)
+				.join('\n')
+			expect(
+				errors,
+				`API errors detected during test:\n${report}`,
+			).toHaveLength(0)
+		}
+	},
+})
+
+export { expect }

package/template/.claude/skills/e2e-audit/e2e/fixtures/storage/admin.json

@@ -0,0 +1,50 @@
+{
+  "cookies": [
+    {
+      "name": "session-token",
+      "value": "594120f0-6282-43d8-ba54-aeb6f65f9098",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776952153.911341,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "csrf-token",
+      "value": "398b6e02b0b7171f76c0733b02ebf0dbd1c92b52c544d53cfc644b2ef3acbc90%7C2ea44d71177afdfd46dc06f295164ae67743b12c8164a058f786ae3fdf12d330",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776918372.994304,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "NEXT_LOCALE",
+      "value": "pt-BR",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1807043134.189633,
+      "httpOnly": false,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "callback-url",
+      "value": "http%3A%2F%2Flocalhost%3A3000",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776348335.004668,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    }
+  ],
+  "origins": [
+    {
+      "origin": "http://localhost:3000",
+      "localStorage": []
+    }
+  ]
+}

package/template/.claude/skills/e2e-audit/e2e/fixtures/storage/manager.json

@@ -0,0 +1,50 @@
+{
+  "cookies": [
+    {
+      "name": "session-token",
+      "value": "594120f0-6282-43d8-ba54-aeb6f65f9098",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776952153.911341,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "csrf-token",
+      "value": "398b6e02b0b7171f76c0733b02ebf0dbd1c92b52c544d53cfc644b2ef3acbc90%7C2ea44d71177afdfd46dc06f295164ae67743b12c8164a058f786ae3fdf12d330",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776918372.994304,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "NEXT_LOCALE",
+      "value": "pt-BR",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1807043134.189633,
+      "httpOnly": false,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "callback-url",
+      "value": "http%3A%2F%2Flocalhost%3A3000",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776348335.004668,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    }
+  ],
+  "origins": [
+    {
+      "origin": "http://localhost:3000",
+      "localStorage": []
+    }
+  ]
+}

package/template/.claude/skills/e2e-audit/e2e/fixtures/storage/member.json

@@ -0,0 +1,50 @@
+{
+  "cookies": [
+    {
+      "name": "session-token",
+      "value": "594120f0-6282-43d8-ba54-aeb6f65f9098",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776952153.911341,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "csrf-token",
+      "value": "398b6e02b0b7171f76c0733b02ebf0dbd1c92b52c544d53cfc644b2ef3acbc90%7C2ea44d71177afdfd46dc06f295164ae67743b12c8164a058f786ae3fdf12d330",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776918372.994304,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "NEXT_LOCALE",
+      "value": "pt-BR",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1807043134.189633,
+      "httpOnly": false,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "callback-url",
+      "value": "http%3A%2F%2Flocalhost%3A3000",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776348335.004668,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    }
+  ],
+  "origins": [
+    {
+      "origin": "http://localhost:3000",
+      "localStorage": []
+    }
+  ]
+}

package/template/.claude/skills/e2e-audit/e2e/fixtures/storage/owner.json

@@ -0,0 +1,50 @@
+{
+  "cookies": [
+    {
+      "name": "session-token",
+      "value": "594120f0-6282-43d8-ba54-aeb6f65f9098",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776952153.911341,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "csrf-token",
+      "value": "398b6e02b0b7171f76c0733b02ebf0dbd1c92b52c544d53cfc644b2ef3acbc90%7C2ea44d71177afdfd46dc06f295164ae67743b12c8164a058f786ae3fdf12d330",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776918372.994304,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "NEXT_LOCALE",
+      "value": "pt-BR",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1807043134.189633,
+      "httpOnly": false,
+      "secure": false,
+      "sameSite": "Lax"
+    },
+    {
+      "name": "callback-url",
+      "value": "http%3A%2F%2Flocalhost%3A3000",
+      "domain": "localhost",
+      "path": "/",
+      "expires": 1776348335.004668,
+      "httpOnly": true,
+      "secure": false,
+      "sameSite": "Lax"
+    }
+  ],
+  "origins": [
+    {
+      "origin": "http://localhost:3000",
+      "localStorage": []
+    }
+  ]
+}

package/template/.claude/skills/e2e-audit/e2e/pages/dashboard-admin.page.ts

@@ -0,0 +1,141 @@
+import type { Page, Locator } from '@playwright/test'
+
+export class DashboardAdminPage {
+	readonly page: Page
+
+	// Page header
+	readonly heading: Locator
+	readonly adminBadge: Locator
+	readonly welcomeText: Locator
+
+	// Tabs
+	readonly organizationsTab: Locator
+	readonly usersTab: Locator
+	readonly systemOverviewTab: Locator
+
+	// --- Organizations Tab ---
+	readonly orgHeading: Locator
+	readonly orgRefreshButton: Locator
+	readonly orgSearchInput: Locator
+	readonly orgTable: Locator
+	readonly newOrgButton: Locator
+
+	// --- Users Tab ---
+	readonly usersHeading: Locator
+	readonly usersRefreshButton: Locator
+	readonly usersSearchInput: Locator
+	readonly usersTable: Locator
+
+	// --- System Overview Tab ---
+	readonly systemHeading: Locator
+	readonly systemErrorHeading: Locator
+	readonly systemRetryButton: Locator
+
+	// --- Organization Detail Dialog ---
+	readonly orgDetailDialog: Locator
+	readonly orgDetailOverviewTab: Locator
+	readonly orgDetailMembersTab: Locator
+	readonly orgDetailSettingsTab: Locator
+	readonly orgDetailEditButton: Locator
+	readonly orgDetailDeleteButton: Locator
+
+	// --- New Organization Dialog ---
+	readonly newOrgNameInput: Locator
+	readonly newOrgSubdomainInput: Locator
+	readonly newOrgPrevButton: Locator
+	readonly newOrgNextButton: Locator
+
+	// --- User Edit Dialog ---
+	readonly userEditNameInput: Locator
+	readonly userEditStatusCombobox: Locator
+	readonly userEditSaveButton: Locator
+
+	constructor(page: Page) {
+		this.page = page
+
+		// Page header
+		this.heading = page.getByRole('heading', { level: 1 })
+		this.adminBadge = page.getByText('Administrador').first()
+		this.welcomeText = page.getByText(/Bem-vindo/i)
+
+		// Tabs
+		this.organizationsTab = page.getByRole('tab', { name: /Organiza/i })
+		this.usersTab = page.getByRole('tab', { name: /Usu/i })
+		this.systemOverviewTab = page.getByRole('tab', { name: /Vis.*Sistema/i })
+
+		// --- Organizations Tab ---
+		this.orgHeading = page.getByRole('heading', { name: /Gerenciamento de Organiza/i })
+		this.orgRefreshButton = page.getByRole('button', { name: /Atualizar/i })
+		this.orgSearchInput = page.getByRole('textbox', { name: /buscar.*nome.*subdom/i })
+		this.orgTable = page.getByRole('table')
+		this.newOrgButton = page.getByRole('button', { name: /Nova Organiza/i })
+
+		// --- Users Tab ---
+		this.usersHeading = page.getByRole('heading', { name: /Gerenciamento de Usu/i })
+		this.usersRefreshButton = page.getByRole('button', { name: /Atualizar/i })
+		this.usersSearchInput = page.getByRole('textbox', { name: /buscar.*nome.*e-mail/i })
+		this.usersTable = page.getByRole('table')
+
+		// --- System Overview Tab ---
+		this.systemHeading = page.getByRole('heading', { name: /Vis.*Geral.*Sistema/i, level: 2 })
+		this.systemErrorHeading = page.getByRole('heading', { name: /Falha ao carregar/i })
+		this.systemRetryButton = page.getByRole('button', { name: /Tentar Novamente/i })
+
+		// --- Organization Detail Dialog ---
+		this.orgDetailDialog = page.getByRole('dialog')
+		this.orgDetailOverviewTab = page.getByRole('dialog').getByRole('tab', { name: /Vis.*Geral/i })
+		this.orgDetailMembersTab = page.getByRole('dialog').getByRole('tab', { name: /Membros/i })
+		this.orgDetailSettingsTab = page.getByRole('dialog').getByRole('tab', { name: /Configura/i })
+		this.orgDetailEditButton = page.getByRole('dialog').getByRole('button', { name: /Editar Organiza/i })
+		this.orgDetailDeleteButton = page.getByRole('dialog').getByRole('button', { name: /Excluir Organiza/i })
+
+		// --- New Organization Dialog ---
+		this.newOrgNameInput = page.getByRole('dialog').getByRole('textbox', { name: /Nome da Organiza/i })
+		this.newOrgSubdomainInput = page.getByRole('dialog').getByRole('textbox', { name: /Subdom/i })
+		this.newOrgPrevButton = page.getByRole('dialog').getByRole('button', { name: /Anterior/i })
+		this.newOrgNextButton = page.getByRole('dialog').getByRole('button', { name: /Próximo/i })
+
+		// --- User Edit Dialog ---
+		this.userEditNameInput = page.getByRole('dialog').getByRole('textbox', { name: /Nome/i })
+		this.userEditStatusCombobox = page.getByRole('dialog').getByRole('combobox').first()
+		this.userEditSaveButton = page.getByRole('dialog').getByRole('button', { name: /Salvar/i })
+	}
+
+	async goto(tab?: 'organizations' | 'users' | 'system') {
+		const url = tab ? `/dashboard/admin?tab=${tab}` : '/dashboard/admin'
+		await this.page.goto(url)
+	}
+
+	async waitForLoad() {
+		await this.heading.waitFor({ timeout: 15000 })
+	}
+
+	async switchTab(tab: 'organizations' | 'users' | 'system') {
+		const tabLocator = {
+			organizations: this.organizationsTab,
+			users: this.usersTab,
+			system: this.systemOverviewTab,
+		}[tab]
+		await tabLocator.click()
+	}
+
+	async clickOrgRow(orgName: string) {
+		await this.page.getByRole('row').filter({ hasText: orgName }).click()
+	}
+
+	async clickUserRow(userName: string) {
+		await this.page.getByRole('row').filter({ hasText: userName }).click()
+	}
+
+	async getOrgRowCount() {
+		return this.orgTable.getByRole('row').filter({ hasText: /Linha \d+/ }).count()
+	}
+
+	async getUserRowCount() {
+		return this.usersTable.getByRole('row').filter({ hasText: /Linha \d+/ }).count()
+	}
+
+	async closeDialog() {
+		await this.page.getByRole('dialog').getByRole('button', { name: /Close/i }).click()
+	}
+}

package/template/.claude/skills/e2e-audit/e2e/pages/dashboard-billing.page.ts

@@ -0,0 +1,47 @@
+import type { Page, Locator } from '@playwright/test'
+
+export class DashboardBillingPage {
+	readonly page: Page
+
+	// Page header
+	readonly heading: Locator
+	readonly description: Locator
+
+	// Subscription card
+	readonly planLogo: Locator
+	readonly planName: Locator
+	readonly planLabel: Locator
+	readonly activeUsersLabel: Locator
+	readonly statusLabel: Locator
+	readonly subscribeButton: Locator
+
+	// Footer
+	readonly stripeSecurityText: Locator
+
+	constructor(page: Page) {
+		this.page = page
+
+		// Page header
+		this.heading = page.getByRole('heading', { level: 1 })
+		this.description = page.getByText(/Gerencie sua assinatura/i)
+
+		// Subscription card
+		this.planLogo = page.locator('main img').first()
+		this.planName = page.getByText('Hakutaku Standard').first()
+		this.planLabel = page.getByText(/Plano/i).first()
+		this.activeUsersLabel = page.getByText(/Usuários ativos/i)
+		this.statusLabel = page.getByText(/Status/i).first()
+		this.subscribeButton = page.getByRole('button', { name: /Assinar agora/i })
+
+		// Footer
+		this.stripeSecurityText = page.getByText(/Pagamentos processados com segurança/i)
+	}
+
+	async goto() {
+		await this.page.goto('/dashboard/billing')
+	}
+
+	async waitForLoad() {
+		await this.heading.waitFor({ timeout: 15000 })
+	}
+}

package/template/.claude/skills/e2e-audit/e2e/pages/dashboard-chat.page.ts

@@ -0,0 +1,35 @@
+import type { Page, Locator } from '@playwright/test'
+
+export class DashboardChatPage {
+	readonly page: Page
+
+	readonly heading: Locator
+	readonly messageInput: Locator
+	readonly sendButton: Locator
+	readonly messageList: Locator
+	readonly newChatButton: Locator
+	readonly sessionList: Locator
+
+	constructor(page: Page) {
+		this.page = page
+		this.heading = page.getByRole('heading').first()
+		this.messageInput = page.getByRole('textbox').first()
+		this.sendButton = page.getByRole('button', { name: /send/i })
+		this.messageList = page.locator('[data-testid="message-list"]')
+		this.newChatButton = page.getByRole('button', { name: /new.*chat/i })
+		this.sessionList = page.locator('[data-testid="session-list"]')
+	}
+
+	async goto() {
+		await this.page.goto('/dashboard/chat')
+	}
+
+	async waitForLoad() {
+		await this.page.waitForLoadState('networkidle')
+	}
+
+	async sendMessage(text: string) {
+		await this.messageInput.fill(text)
+		await this.sendButton.click()
+	}
+}