feat(permissions): add yacht, company, membership, reservation keys

src/lib/db/seed.ts

@@ -19,82 +19,332 @@ import type { RolePermissions } from './schema/users';
 
 const ALL_PERMISSIONS: RolePermissions = {
   clients: { view: true, create: true, edit: true, delete: true, merge: true, export: true },
-  interests: { view: true, create: true, edit: true, delete: true, change_stage: true, generate_eoi: true, export: true },
+  interests: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    change_stage: true,
+    generate_eoi: true,
+    export: true,
+  },
   berths: { view: true, edit: true, import: true, manage_waiting_list: true },
-  documents: { view: true, create: true, send_for_signing: true, upload_signed: true, delete: true },
-  expenses: { view: true, create: true, edit: true, delete: true, export: true, scan_receipt: true },
-  invoices: { view: true, create: true, edit: true, delete: true, send: true, record_payment: true, export: true },
+  documents: {
+    view: true,
+    create: true,
+    send_for_signing: true,
+    upload_signed: true,
+    delete: true,
+  },
+  expenses: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    export: true,
+    scan_receipt: true,
+  },
+  invoices: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    send: true,
+    record_payment: true,
+    export: true,
+  },
   files: { view: true, upload: true, delete: true, manage_folders: true },
   email: { view: true, send: true, configure_account: true },
-  reminders: { view_own: true, view_all: true, create: true, edit_own: true, edit_all: true, assign_others: true },
+  reminders: {
+    view_own: true,
+    view_all: true,
+    create: true,
+    edit_own: true,
+    edit_all: true,
+    assign_others: true,
+  },
   calendar: { connect: true, view_events: true },
   reports: { view_dashboard: true, view_analytics: true, export: true },
   document_templates: { view: true, generate: true, manage: true },
-  admin: { manage_users: true, view_audit_log: true, manage_settings: true, manage_webhooks: true, manage_reports: true, manage_custom_fields: true, manage_forms: true, manage_tags: true, system_backup: true },
+  yachts: { view: true, create: true, edit: true, delete: true, transfer: true },
+  companies: { view: true, create: true, edit: true, delete: true },
+  memberships: { view: true, manage: true },
+  reservations: { view: true, create: true, activate: true, cancel: true },
+  admin: {
+    manage_users: true,
+    view_audit_log: true,
+    manage_settings: true,
+    manage_webhooks: true,
+    manage_reports: true,
+    manage_custom_fields: true,
+    manage_forms: true,
+    manage_tags: true,
+    system_backup: true,
+  },
 };
 
 const DIRECTOR_PERMISSIONS: RolePermissions = {
   clients: { view: true, create: true, edit: true, delete: true, merge: true, export: true },
-  interests: { view: true, create: true, edit: true, delete: true, change_stage: true, generate_eoi: true, export: true },
+  interests: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    change_stage: true,
+    generate_eoi: true,
+    export: true,
+  },
   berths: { view: true, edit: true, import: true, manage_waiting_list: true },
-  documents: { view: true, create: true, send_for_signing: true, upload_signed: true, delete: true },
-  expenses: { view: true, create: true, edit: true, delete: true, export: true, scan_receipt: true },
-  invoices: { view: true, create: true, edit: true, delete: true, send: true, record_payment: true, export: true },
+  documents: {
+    view: true,
+    create: true,
+    send_for_signing: true,
+    upload_signed: true,
+    delete: true,
+  },
+  expenses: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    export: true,
+    scan_receipt: true,
+  },
+  invoices: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: true,
+    send: true,
+    record_payment: true,
+    export: true,
+  },
   files: { view: true, upload: true, delete: true, manage_folders: true },
   email: { view: true, send: true, configure_account: true },
-  reminders: { view_own: true, view_all: true, create: true, edit_own: true, edit_all: true, assign_others: true },
+  reminders: {
+    view_own: true,
+    view_all: true,
+    create: true,
+    edit_own: true,
+    edit_all: true,
+    assign_others: true,
+  },
   calendar: { connect: true, view_events: true },
   reports: { view_dashboard: true, view_analytics: true, export: true },
   document_templates: { view: true, generate: true, manage: true },
-  admin: { manage_users: true, view_audit_log: true, manage_settings: true, manage_webhooks: true, manage_reports: true, manage_custom_fields: true, manage_forms: true, manage_tags: true, system_backup: false },
+  yachts: { view: true, create: true, edit: true, delete: true, transfer: true },
+  companies: { view: true, create: true, edit: true, delete: true },
+  memberships: { view: true, manage: true },
+  reservations: { view: true, create: true, activate: true, cancel: true },
+  admin: {
+    manage_users: true,
+    view_audit_log: true,
+    manage_settings: true,
+    manage_webhooks: true,
+    manage_reports: true,
+    manage_custom_fields: true,
+    manage_forms: true,
+    manage_tags: true,
+    system_backup: false,
+  },
 };
 
 const SALES_MANAGER_PERMISSIONS: RolePermissions = {
   clients: { view: true, create: true, edit: true, delete: false, merge: true, export: true },
-  interests: { view: true, create: true, edit: true, delete: false, change_stage: true, generate_eoi: true, export: true },
+  interests: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    change_stage: true,
+    generate_eoi: true,
+    export: true,
+  },
   berths: { view: true, edit: false, import: false, manage_waiting_list: true },
-  documents: { view: true, create: true, send_for_signing: true, upload_signed: true, delete: false },
-  expenses: { view: true, create: true, edit: true, delete: false, export: true, scan_receipt: true },
-  invoices: { view: true, create: true, edit: true, delete: false, send: true, record_payment: true, export: true },
+  documents: {
+    view: true,
+    create: true,
+    send_for_signing: true,
+    upload_signed: true,
+    delete: false,
+  },
+  expenses: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    export: true,
+    scan_receipt: true,
+  },
+  invoices: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    send: true,
+    record_payment: true,
+    export: true,
+  },
   files: { view: true, upload: true, delete: false, manage_folders: true },
   email: { view: true, send: true, configure_account: true },
-  reminders: { view_own: true, view_all: true, create: true, edit_own: true, edit_all: true, assign_others: true },
+  reminders: {
+    view_own: true,
+    view_all: true,
+    create: true,
+    edit_own: true,
+    edit_all: true,
+    assign_others: true,
+  },
   calendar: { connect: true, view_events: true },
   reports: { view_dashboard: true, view_analytics: true, export: true },
   document_templates: { view: true, generate: true, manage: false },
-  admin: { manage_users: false, view_audit_log: false, manage_settings: false, manage_webhooks: false, manage_reports: false, manage_custom_fields: false, manage_forms: false, manage_tags: true, system_backup: false },
+  yachts: { view: true, create: true, edit: true, delete: false, transfer: true },
+  companies: { view: true, create: true, edit: true, delete: false },
+  memberships: { view: true, manage: true },
+  reservations: { view: true, create: true, activate: true, cancel: true },
+  admin: {
+    manage_users: false,
+    view_audit_log: false,
+    manage_settings: false,
+    manage_webhooks: false,
+    manage_reports: false,
+    manage_custom_fields: false,
+    manage_forms: false,
+    manage_tags: true,
+    system_backup: false,
+  },
 };
 
 const SALES_AGENT_PERMISSIONS: RolePermissions = {
   clients: { view: true, create: true, edit: true, delete: false, merge: false, export: true },
-  interests: { view: true, create: true, edit: true, delete: false, change_stage: true, generate_eoi: true, export: true },
+  interests: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    change_stage: true,
+    generate_eoi: true,
+    export: true,
+  },
   berths: { view: true, edit: false, import: false, manage_waiting_list: true },
-  documents: { view: true, create: true, send_for_signing: true, upload_signed: true, delete: false },
-  expenses: { view: true, create: true, edit: true, delete: false, export: true, scan_receipt: true },
-  invoices: { view: true, create: true, edit: true, delete: false, send: true, record_payment: true, export: true },
+  documents: {
+    view: true,
+    create: true,
+    send_for_signing: true,
+    upload_signed: true,
+    delete: false,
+  },
+  expenses: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    export: true,
+    scan_receipt: true,
+  },
+  invoices: {
+    view: true,
+    create: true,
+    edit: true,
+    delete: false,
+    send: true,
+    record_payment: true,
+    export: true,
+  },
   files: { view: true, upload: true, delete: false, manage_folders: false },
   email: { view: true, send: true, configure_account: true },
-  reminders: { view_own: true, view_all: false, create: true, edit_own: true, edit_all: false, assign_others: false },
+  reminders: {
+    view_own: true,
+    view_all: false,
+    create: true,
+    edit_own: true,
+    edit_all: false,
+    assign_others: false,
+  },
   calendar: { connect: true, view_events: true },
   reports: { view_dashboard: true, view_analytics: true, export: true },
   document_templates: { view: true, generate: true, manage: false },
-  admin: { manage_users: false, view_audit_log: false, manage_settings: false, manage_webhooks: false, manage_reports: false, manage_custom_fields: false, manage_forms: false, manage_tags: true, system_backup: false },
+  yachts: { view: true, create: true, edit: true, delete: false, transfer: false },
+  companies: { view: true, create: true, edit: false, delete: false },
+  memberships: { view: true, manage: false },
+  reservations: { view: true, create: true, activate: true, cancel: false },
+  admin: {
+    manage_users: false,
+    view_audit_log: false,
+    manage_settings: false,
+    manage_webhooks: false,
+    manage_reports: false,
+    manage_custom_fields: false,
+    manage_forms: false,
+    manage_tags: true,
+    system_backup: false,
+  },
 };
 
 const VIEWER_PERMISSIONS: RolePermissions = {
   clients: { view: true, create: false, edit: false, delete: false, merge: false, export: false },
-  interests: { view: true, create: false, edit: false, delete: false, change_stage: false, generate_eoi: false, export: false },
+  interests: {
+    view: true,
+    create: false,
+    edit: false,
+    delete: false,
+    change_stage: false,
+    generate_eoi: false,
+    export: false,
+  },
   berths: { view: true, edit: false, import: false, manage_waiting_list: false },
-  documents: { view: true, create: false, send_for_signing: false, upload_signed: false, delete: false },
-  expenses: { view: true, create: false, edit: false, delete: false, export: false, scan_receipt: false },
-  invoices: { view: true, create: false, edit: false, delete: false, send: false, record_payment: false, export: false },
+  documents: {
+    view: true,
+    create: false,
+    send_for_signing: false,
+    upload_signed: false,
+    delete: false,
+  },
+  expenses: {
+    view: true,
+    create: false,
+    edit: false,
+    delete: false,
+    export: false,
+    scan_receipt: false,
+  },
+  invoices: {
+    view: true,
+    create: false,
+    edit: false,
+    delete: false,
+    send: false,
+    record_payment: false,
+    export: false,
+  },
   files: { view: true, upload: false, delete: false, manage_folders: false },
   email: { view: true, send: false, configure_account: false },
-  reminders: { view_own: true, view_all: false, create: false, edit_own: false, edit_all: false, assign_others: false },
+  reminders: {
+    view_own: true,
+    view_all: false,
+    create: false,
+    edit_own: false,
+    edit_all: false,
+    assign_others: false,
+  },
   calendar: { connect: false, view_events: true },
   reports: { view_dashboard: true, view_analytics: false, export: false },
   document_templates: { view: true, generate: false, manage: false },
-  admin: { manage_users: false, view_audit_log: false, manage_settings: false, manage_webhooks: false, manage_reports: false, manage_custom_fields: false, manage_forms: false, manage_tags: false, system_backup: false },
+  yachts: { view: true, create: false, edit: false, delete: false, transfer: false },
+  companies: { view: true, create: false, edit: false, delete: false },
+  memberships: { view: true, manage: false },
+  reservations: { view: true, create: false, activate: false, cancel: false },
+  admin: {
+    manage_users: false,
+    view_audit_log: false,
+    manage_settings: false,
+    manage_webhooks: false,
+    manage_reports: false,
+    manage_custom_fields: false,
+    manage_forms: false,
+    manage_tags: false,
+    system_backup: false,
+  },
 };
 
 // ─── Seed Function ────────────────────────────────────────────────────────────
@@ -158,7 +408,8 @@ async function seed() {
     {
       id: crypto.randomUUID(),
       name: 'sales_agent',
-      description: 'Standard sales role. View/create/edit clients and interests, manage own reminders.',
+      description:
+        'Standard sales role. View/create/edit clients and interests, manage own reminders.',
       permissions: SALES_AGENT_PERMISSIONS,
       isGlobal: true,
       isSystem: true,