Complete the documentation on the data (or storage) service.

Ensure that etags are supported on storage entities, supporting both the response of the version with the etag header and the use of if-match headers on:

• GET
• POST
• PUT
• PATCH
• DELETE

On modification operations this is to deal with modification conflicts and should return a 409 Conflict status code.

On fetching a single resource, the if-match header can be used to determine if the resource has changed - if it has not then a 304 Not Modified is to be returned.

The use of * as the if-match header value means either "ignore the version identifier" or "fetch the latest" - depending upon the incoming HTTP request method.

If the if-match header is omitted then it is to be as though the client sent the value * within it.

Allow the system to build a container image (docker etc). This needs to run from the command line so it can be run as part of a CI process to generate container images for further deployments.

The websites service has a hardcoded client id & secret - this is just work in progress.

Complete the websites service so that it can read its relevant auth client config and can configure itself for user & client auth.

Allow developers to define reader/writer/deletion roles for each collection instead of them being defined automatically for the user.

If no roles are defined by the user, then the defaults (as is) should be defined. The user must be able to define more than 1 role for each.

Allow developers to define 1 or more execution roles on a ruleset. If no roles are defined then the standard system roles are automatically included.

Extend the shared services so that they can use a users token (if present) or can use a client token if one is not present - automatically.

Provide a datetime property on the editor properties sidebar.

Complete the page for rulesets that shows the automatically generated documentation for a given ruleset.

Ensure that the documentation that ships with the system can be read on the website for the project.

Right now, the only system with an IoC container is the API system.

When the messaging & scheduling systems are completed, these will require injectable services aswell.

These should be shared between all three of these systems, instead of being defined in each one.

Abstract these out into a new services registry and ensure that the same IoC container can be used in each place. Ensure there is a simple lifecycle - like the current API IoC container.

Complete basic tutorials that cover how to build:

• A todo list app
• A blogging website
• A ticketing system

When adding a conditional, it needs to fill the object with the logical operator and statement props otherwise the model does not bind.

Allow the user to commit their application changes to a git repository.

The admin will need to be connected to a git repo and/or the admin can be pointed at a specific directory which the kernel will load the sources from. Said directory, if under git version control, should be detected and committing of modifications should be made available via kernel API endpoints to the admin interface.

Allow enum values to be overridden with a custom text value.

Ensure that all deletion operations on the admin have a confirmation dialog that confirms the action before it is carried out - right now you don't get a second chance.

Setting up an initial administrative account on the system is currently part of the IdP - every newly registered user right now is a system admin!

This needs to be removed and replaced with a command line helper that sets this up as a one time task.

Add a basic async messaging system that fronts a pubsub style API for each message queue - where tasks can be submitted and results are tracked within a result object.

Create a runtime where each message type has a single controller that can be used to action an incoming message.

Ensure that any design choices do not preclude the ability to include a basic IoC container with injectable services.

Complete the homepage information screen so it gives a system overview and relevant information to the developer.

A placeholder exists at the moment, complete it so it shows real information and add any other relevant information.

Enable the automatic conversion of XML & CSV responses from outgoing request responses.

Allow users to configure the integration to return the raw response buffer into the transformation mechanism so other data formats can be handled by the users directly.

Allow outbound integrations requests to support the HTTP authentication types within the subtasks.

Each subtask covers how each authentication mechanism should work.

Every solution must require minimal configuration from the user.

All configuration must be held within the {{request}} configuration within the integration config document, and should follow this structure:

{
  "request": {
    "uri": "https://jsonplaceholder.typicode.com/posts/$.body.id",
    "method": "get",
    "authentication" : {
      "mechanism" : "http_basic",
      "config" : {
        "username" : "my-username",
        "password" : "$.secret.name"
      }
    }
  }
}

Secrets can be used for resolving values the user may not want to disclose within their integration configuration.

Allow files to be uploaded and handled within form postback events on the websites service.

Create an administration that allows for the development of APIs using the API service.

When outputting a variable, you should be able to use a standard set of formatters to do things such as:

• date & time formatting
• number formatting

Add support for the following incoming HTTP request methods:

• POST
• PUT
• PATCH
• DELETE

For the methods that require a body to be defined, update the integration definition so that it supports an incoming body definition in the form of a JSON schema definition.

This should be used for verifying the body sent to the integration endpoint.

Here is an example integration configuration showing how this should look:

{
  "name": "examplePostRequest",
  "description": "Get a single post from our example third party system.",
  "method": "post",
  "body": {
    "type": "object",
    "properties": {
      "id" : {
        "type" : "integer"
      }      
    }
  },  
  "request": {
    "uri": "https://jsonplaceholder.typicode.com/posts/$.body.id",
    "method": "get",
    "schema": {
      "type": "JSON",
      "value": {
        "type": "object",
        "properties": {
          "userId": {
            "type": "integer"
          },
          "id": {
            "type": "integer"
          },
          "title": {
            "type": "string"
          },
          "body": {
            "type": "string"
          }
        },
        "required": [
          "userId",
          "id",
          "title",
          "body"
        ]
      }
    }
  },
  "transformer": "(input) => { return input; }"
}

Need to be able to filter records in the storage service by any value held within the document in the type.

This should be done by supporting query parameters in the form:

filter_$.path.to.variable=value to find

; which would become:

filter_%24.path.to.variable=value%20to%find

; when URI encoded. This allows for JSON path identification of the values to filter by the value(s) given - note! This should support multiple values aswell.

Ensure that only correct children can be added to an element - automatically filter the tags on the left to remove invalid tag types based upon the currently selected object.

Add a new [+] button in the children area that opens a dialog and allows the user to select from one of the supported child elements.

Create a new system that allows for scheduled processes to be run every x number of seconds, minutes, hours, days, weeks, months, years etc.

Each of these processes should have a simple function behind it.

Ensure that any design taken allows for an IoC container with injectable services.

Once a role has been defined for a route, it does not reload and causes the defined role to be removed if the website is saved again.

Allow for reusable tag packs to be constructed for websites.

These provide reusable tags across website instances.

Ensure that there are a set of default custom tags included in the system, including:

• Bootstrap default components
• GDS default components

Add a system into the administration that allows the import and export of tarballs containing application configuration.

Complete the documentation on the integrations service.

Allow developers to define access roles within an integration. If the developer specifies no roles then the system generated ones are used automatically.

Allow the user to search the available tags on the editor.

Carry out the relevant changes that allow the system to run behind a collection of different domains and a load balancer, or web server doing reverse proxying.

Complete the documentation on the website rulesets service.

Editor requires collapsible sections on left/right hand panes - quite unwieldy atm.

Allow pollers to be defined on a routes controller.

Right now a website path can be assigned a role that is required to access a path.

This doesn't support paths where we want them to be secure, but we do not require any particular role to access - the user simple needs to be authenticated.

Add a new boolean flag onto each path that marks it as secure.

Change the admin to include this flag, and to only show the security (or role name entry) field when it is checked.

Ensure that the website instance knows how to enforce this security on the paths.

Allow roles to be configured for every API endpoint. If the developer does not define a role then the system defaults are applied automatically.

Allow websites to contain static resources within them.

They should be stored within a special folder for the website and hosted upon the url:

http://host/websitename/static

; using the static hosting provider within express.

The administration needs to allow these to be uploaded and saved to disk - it should also allow the user to copy the absolute path to the resource so they can be referenced easily within views, and allow the user to click a link to view the resource on the website.

Allow statements to be provided to replace property values, using variables etc.

For example:

text : "$.bag.itemText"

At the moment the only way to do this is in source mode.

Complete the documentation on the websites integrations service, including all methods etc.

Allow processes to be configured & modelled - needs in depth design of how this should work.

Automatically provision an auth client within the admin for each website created.

Add documentation for the API system.

Automatically progressively enhance pages so that they can behave like a SPA, with partial re-renders based upon new routes being accessed and events being triggered.

Allow the sources folder to be controlled with a command line argument when starting the kernel.

Add in a setup phase that ensures that all services source directories are created on boot.

1. Should execute via npm run test within each project
2. Should be jasmine based
3. Should report coverage on a per service basis
4. Needs a script at the root level to run all tests

Complete the documentation on the websites session state service.