ui-soxo-bootstrap-core 2.6.32-dev.2 → 2.6.32-dev.6

package/.github/workflows/npm-publish.yml

@@ -1,6 +1,3 @@
-# This workflow will run tests using node and then publish a package to GitHub Packages when a release is created
-# For more information see: https://docs.github.com/en/actions/publishing-packages/publishing-nodejs-packages
-
 name: Node.js Package
 
 on:
@@ -8,26 +5,55 @@ on:
     types: [created]
 
 jobs:
-  build:
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-node@v3
-        with:
-          node-version: 16
-      - run: npm i
-#       - run: npm test
-
   publish-npm:
-    needs: build
     runs-on: ubuntu-latest
+    permissions:
+      contents: read
+      id-token: write
     steps:
-      - uses: actions/checkout@v3
-      - uses: actions/setup-node@v3
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v4
         with:
-          node-version: 16
+          node-version: 20
           registry-url: https://registry.npmjs.org/
-      - run: npm i
-      - run: npm publish
-        env:
-          NODE_AUTH_TOKEN: ${{secrets.NPM_TOKEN}}
+      - run: npm install -g npm@latest
+      - run: npm install
+
+      - name: Determine npm dist-tag
+        id: dist_tag
+        shell: bash
+        run: |
+          VERSION=$(node -p "require('./package.json').version")
+          echo "package.json version: $VERSION"
+          echo "release tag:          ${GITHUB_REF_NAME}"
+          if [[ "v${VERSION}" != "${GITHUB_REF_NAME}" ]]; then
+            echo "::error::Release tag '${GITHUB_REF_NAME}' does not match package.json version 'v${VERSION}'."
+            echo "::error::Bump the version with 'npm version' and re-create the release."
+            exit 1
+          fi
+          if [[ "$VERSION" == *-dev* ]]; then
+            echo "tag=dev" >> "$GITHUB_OUTPUT"
+            echo "Will publish with dist-tag: dev"
+          else
+            echo "tag=latest" >> "$GITHUB_OUTPUT"
+            echo "Will publish with dist-tag: latest"
+          fi
+
+      - name: Diagnose npm + OIDC environment
+        shell: bash
+        run: |
+          echo "--- versions ---"
+          node --version
+          npm --version
+          echo "--- OIDC env presence (must both be 'yes' for trusted publishing) ---"
+          echo "ACTIONS_ID_TOKEN_REQUEST_URL set:   ${ACTIONS_ID_TOKEN_REQUEST_URL:+yes}"
+          echo "ACTIONS_ID_TOKEN_REQUEST_TOKEN set: ${ACTIONS_ID_TOKEN_REQUEST_TOKEN:+yes}"
+          echo "--- effective .npmrc (user) ---"
+          cat ~/.npmrc 2>/dev/null || echo "(none)"
+          echo "--- effective .npmrc (project) ---"
+          cat .npmrc 2>/dev/null || echo "(none)"
+          echo "--- npm config (auth-related) ---"
+          npm config get registry
+          npm config get //registry.npmjs.org/:_authToken || true
+
+      - run: npm publish --provenance --access public --tag ${{ steps.dist_tag.outputs.tag }} --loglevel=verbose

package/DEVELOPER_GUIDE.md

@@ -17,6 +17,7 @@ Incorrect versioning or incorrect tags will break the publish pipeline — follo
 - Publishing via GitHub Release UI
 - How GitHub Action Detects Release Type
 - Summary Table
+- CI/CD Authentication (Trusted Publishing)
 - Common Mistakes & Fixes
 
 ---
@@ -255,17 +256,14 @@ npm publish --tag dev
 
 # ⚙️ How GitHub Action Detects Release Type
 
-If version contains `dev`:
+The workflow reads the `version` field from `package.json` at publish time:
 
-```
-npm publish --tag dev
-```
+| Condition                    | Command                                                 | Result                             |
+| ---------------------------- | ------------------------------------------------------- | ---------------------------------- |
+| Version contains `-dev`      | `npm publish --provenance --access public --tag dev`    | Publishes to the `dev` dist-tag    |
+| Version has no `-dev` suffix | `npm publish --provenance --access public --tag latest` | Publishes to the `latest` dist-tag |
 
-Otherwise:
-
-```
-npm publish
-```
+The workflow also enforces that the GitHub release tag matches `v<version>` from `package.json` and fails the run immediately if they diverge — this prevents the most common publish failure described below.
 
 ---
 
@@ -283,6 +281,37 @@ npm publish
 
 ---
 
+# 🔐 CI/CD Authentication (Trusted Publishing)
+
+As of npm's 2025 policy changes, classic automation tokens (`NPM_TOKEN`) are deprecated. This repo now authenticates to npm via **OIDC Trusted Publishing** — GitHub Actions exchanges a short-lived OIDC token for a publish token at run time, so **no secret is stored in the repository**.
+
+## What this means for developers
+
+Nothing. You still follow the same flow: `npm version` → push tag → create GitHub Release. The auth happens transparently in CI.
+
+## What this means for maintainers
+
+The first-time setup on npmjs.com must be done once per package:
+
+1. Log in to [npmjs.com](https://www.npmjs.com) → open the package (`ui-soxo-bootstrap-core`) → **Settings**.
+2. Under **Trusted Publisher**, click **Add trusted publisher** and fill in:
+   - Publisher: **GitHub Actions**
+   - Organization or user: `soxo-tech`
+   - Repository: `bootstrap-core`
+   - Workflow filename: `npm-publish.yml`
+   - Environment name: *(leave blank)*
+3. Save. Any old `NPM_TOKEN` repository secret can be removed.
+
+## Runtime requirements
+
+The workflow runs on Node 20 and upgrades npm to the latest CLI (`npm install -g npm@latest`) because OIDC trusted publishing requires **npm ≥ 11.5.1**. The `--provenance` flag attaches a verifiable build attestation to every published version, visible on the npmjs.com package page.
+
+## If publish fails with `403 Forbidden` or `ENEEDAUTH`
+
+The trusted publisher config on npmjs.com no longer matches the workflow. Check that org, repo, and workflow filename match exactly — including case.
+
+---
+
 # ⚠️ Common Mistakes & Fixes
 
 | Mistake                   | Issue              | Fix                          |

package/core/lib/components/global-header/global-header.js

@@ -239,11 +239,11 @@ function GlobalHeaderContent({ loading, appSettings, children, isConnected, hist
       {licAlert && licenseData && (
         <div
           style={{
-            // top: 0,
+            top: 0,
             marginTop: '3rem',
             right: '2%',
             position: 'absolute',
-            zIndex: 999,
+            zIndex: 1008,
           }}
         >
           <LicenseAlert data={licenseData} />

package/core/lib/elements/basic/table/table.js

@@ -58,12 +58,7 @@ const TableComponent = ({ columns, dataSource, loading, fixed, scroll, summary,
 
   return (
     <Table
-      title={() =>
-        // <div style={{ fontWeight: 'bold', fontSize: 16, padding: '8px 16px' }}>
-        title ? title : ''
-        // </div>
-      }
-      //   columns={updatedColumns}
+      title={title ? () => title : undefined}
       scroll={scroll}
       dataSource={dataSource}
       loading={loading}

package/core/models/users/components/user-add/user-add.js

@@ -32,7 +32,7 @@ const UserAdd = ({ model, callback, edit, history, formContent, match, additiona
   // for default branch
   // const [defaultBranch, setDefaultBranch] = useState(null);
   //Need to check this condition
-  const [authentication, setAuthentication] = useState(false);
+  const [authentication, setAuthentication] = useState(true);
 
   /**To store user values */
   const [users, setUsers] = useState([]);
@@ -151,8 +151,10 @@ const UserAdd = ({ model, callback, edit, history, formContent, match, additiona
 
         /**if firmmas.otherdetails - 2FA == OPT, then, 2FA option will be enabled by default and editable */
       } else if (firmDetails.FA == 'USR') {
-        setAuthentication(true);
-
+        /** If user has FA set to false , then disable authentication */
+        if (formContent?.FA !== undefined) {
+          setAuthentication(formContent?.FA);
+        }
         setDisabled(true);
 
         /**if firmmas.otherdetails - 2FA == NAP, then, 2FA option will be disabled by default and read-only*/
@@ -383,7 +385,8 @@ const UserAdd = ({ model, callback, edit, history, formContent, match, additiona
       ...values,
       auth_type: 'LDAP',
       mobile: mobileWithCountryCode,
-      FA: authentication,
+      FA: formContent?.FA === false ? false : authentication,
+
     };
 
     setLoading(true);
@@ -396,7 +399,7 @@ const UserAdd = ({ model, callback, edit, history, formContent, match, additiona
         addAllBranches: props.ldap.addAllBranches,
         auth_user: selectedOption.value,
         auth_type: 'LDAP',
-        FA: authentication,
+        FA: formContent?.FA === false ? false : authentication,
       };
     }
 

package/core/models/users/components/user-add/user-edit.js

@@ -68,7 +68,7 @@ export default function UserEdit(record) {
             doctor_code: apiData.doctor_code,
             staff_code: apiData.staff_id,
             auth_type: apiData.auth_type,
-            FA: apiData.FA,
+            FA: otherDetails.FA,
             active: apiData.active ? true : false,
           };
           // Set form data state

package/core/modules/steps/steps.js

@@ -292,6 +292,7 @@ export default function ProcessStepsPage({ match, CustomComponents = {}, ...prop
   const [steps, setSteps] = useState([]);
   const [processName, setProcessName] = useState(null);
   const [activeStep, setActiveStep] = useState(0);
+  const [resumableStep, setResumableStep] = useState(null);
   const [isStepCompleted, setIsStepCompleted] = useState(false);
 
   const [nextProcessId, setNextProcessId] = useState(null);
@@ -353,11 +354,46 @@ export default function ProcessStepsPage({ match, CustomComponents = {}, ...prop
 
     setProcessTimings(savedTimings);
 
+    let savedActiveStep = 0;
+    try {
+      const rawStep = localStorage.getItem(`processActiveStep_${currentProcessId}`);
+      const parsedStep = rawStep == null ? NaN : parseInt(rawStep, 10);
+      if (Number.isFinite(parsedStep) && parsedStep > 0) {
+        savedActiveStep = parsedStep;
+      }
+    } catch (error) {
+      console.warn('Unable to restore active step from local storage.', error);
+    }
+    setResumableStep(savedActiveStep > 0 ? savedActiveStep : null);
+
     setProcessStartTime(Date.now());
     setStepStartTime(Date.now());
     setShowNextProcessAction(false);
   }, [currentProcessId]);
 
+  /**
+   * Persist the active step so an unexpected exit (refresh, tab close, crash)
+   * can offer a Resume action on the next mount. Only steps beyond the first
+   * are persisted — step 0 is the natural entry point and does not need a
+   * resume marker. The marker is cleared on successful process submission and
+   * when the user explicitly dismisses the resume banner.
+   */
+  useEffect(() => {
+    if (typeof window === 'undefined' || !window.localStorage || !currentProcessId) {
+      return;
+    }
+
+    if (activeStep <= 0) {
+      return;
+    }
+
+    try {
+      localStorage.setItem(`processActiveStep_${currentProcessId}`, String(activeStep));
+    } catch (error) {
+      console.warn('Unable to persist active step to local storage.', error);
+    }
+  }, [activeStep, currentProcessId]);
+
   /**
    * Sync the loaded process name into the address bar.
    * - Mirrors `processName` into a `process` query parameter so deep-links and
@@ -599,10 +635,12 @@ export default function ProcessStepsPage({ match, CustomComponents = {}, ...prop
       if (response.success) {
         try {
           localStorage.removeItem(`processTimings_${currentProcessId}`);
+          localStorage.removeItem(`processActiveStep_${currentProcessId}`);
         } catch (error) {
           console.warn('Unable to clear process timings from local storage.', error);
         }
         setProcessTimings([]);
+        setResumableStep(null);
         return true;
       }
     } catch (e) {
@@ -659,6 +697,33 @@ export default function ProcessStepsPage({ match, CustomComponents = {}, ...prop
    * - Records timing data for the current step.
    */
   const handleTimelineClick = (i) => gotoStep(i);
+  /**
+   * Resume Handlers
+   * - `handleResume` jumps to the persisted step (clamped to current step
+   *   range) so a returning user picks up where they left off.
+   * - `dismissResume` discards the saved marker so the banner does not appear
+   *   again for this process.
+   */
+  const handleResume = () => {
+    if (resumableStep == null || !steps.length) {
+      return;
+    }
+    const target = Math.max(0, Math.min(resumableStep, steps.length - 1));
+    setResumableStep(null);
+    if (target !== activeStep) {
+      gotoStep(target);
+    }
+  };
+  const dismissResume = () => {
+    setResumableStep(null);
+    try {
+      if (typeof window !== 'undefined' && window.localStorage && currentProcessId) {
+        localStorage.removeItem(`processActiveStep_${currentProcessId}`);
+      }
+    } catch (error) {
+      console.warn('Unable to clear resume marker from local storage.', error);
+    }
+  };
   /**
    * Process Completion
    * - Records final step timing.
@@ -1425,6 +1490,33 @@ export default function ProcessStepsPage({ match, CustomComponents = {}, ...prop
               </div>
             </div>
 
+            {/*
+              Resume banner.
+              - Renders only when a saved active step is ahead of the current
+                position, so it stays out of the way during normal navigation
+                and only surfaces when the user returns after an unexpected
+                exit (refresh, tab close, navigation away).
+              - Resuming clamps to the current step range; dismissing clears
+                the persisted marker so the banner does not return for this
+                process.
+            */}
+            {resumableStep != null && resumableStep > activeStep && resumableStep < steps.length ? (
+              <div className="steps-resume-banner" role="status">
+                <span className="steps-resume-banner-text">
+                  You left at Step {resumableStep + 1}
+                  {steps[resumableStep]?.step_name ? ` — ${steps[resumableStep].step_name}` : ''}.
+                </span>
+                <div className="steps-resume-banner-actions">
+                  <Button type="primary" size="small" onClick={handleResume}>
+                    Resume
+                  </Button>
+                  <Button type="text" size="small" onClick={dismissResume}>
+                    Dismiss
+                  </Button>
+                </div>
+              </div>
+            ) : null}
+
             <div className={`steps-content-panel${isStepFullscreen ? ' is-fullscreen' : ''}`}>
               {/*
                 Stage body:

package/core/modules/steps/steps.scss

@@ -212,6 +212,37 @@
   height: 3px;
 }
 
+/* ── Resume banner ──────────────────────────────────────── */
+
+.steps-resume-banner {
+  flex: 0 0 auto;
+  display: flex;
+  align-items: center;
+  justify-content: space-between;
+  gap: 12px;
+  padding: 8px 14px;
+  background: #fff8e1;
+  border-bottom: 1px solid #f5e3a3;
+  color: #5b4400;
+  font-size: 13px;
+  font-weight: 500;
+}
+
+.steps-resume-banner-text {
+  flex: 1 1 auto;
+  min-width: 0;
+  overflow: hidden;
+  text-overflow: ellipsis;
+  white-space: nowrap;
+}
+
+.steps-resume-banner-actions {
+  flex: 0 0 auto;
+  display: flex;
+  align-items: center;
+  gap: 6px;
+}
+
 .steps-breadcrumb-strip::-webkit-scrollbar-track {
   background: transparent;
 }
@@ -474,13 +505,17 @@
 
 @media (prefers-reduced-motion: reduce) {
   .steps-touch-nav {
-    transition: opacity 120ms linear, visibility 0s linear 120ms;
+    transition:
+      opacity 120ms linear,
+      visibility 0s linear 120ms;
     transform: translateY(-50%);
   }
 
   .steps-touch-nav.is-visible {
     transform: translateY(-50%);
-    transition: opacity 120ms linear, visibility 0s linear 0s;
+    transition:
+      opacity 120ms linear,
+      visibility 0s linear 0s;
   }
 
   .steps-touch-nav.is-visible:not(:disabled)::before {
@@ -635,7 +670,7 @@
 }
 
 .steps-chat-step-component {
-  margin-top: 10px;
+  // margin-top: 10px;
   display: flex;
   flex: 1 1 auto;
   flex-direction: column;
@@ -730,14 +765,14 @@
 
 .steps-viewport:fullscreen .steps-stage-body,
 .steps-viewport:-webkit-full-screen .steps-stage-body {
-  padding: 6px;
+  padding: 3px;
 }
 
 /* ── Small laptops (13" / 1366px and below) ─────────────── */
 
 @media (max-width: 1366px) {
   .steps-top-bar {
-    padding: 6px 10px;
+    // padding: 6px 10px;
     gap: 6px;
   }
 
@@ -768,7 +803,7 @@
   }
 
   .steps-chat-step-card {
-    padding: 12px 14px;
+    padding: 9px;
   }
 
   .steps-title {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ui-soxo-bootstrap-core",
-  "version": "2.6.32-dev.2",
+  "version": "2.6.32-dev.6",
   "description": "All the Core Components for you to start",
   "keywords": [
     "all in one"