RubyGems - authing_ruby - Versions diffs - 1.1.4 → 1.1.5 - Mend

authing_ruby 1.1.4 → 1.1.5

Files changed (462) hide show

data/lib/authing_ruby/test/js_sdk_test/node_modules/authing-js-sdk/build/module/lib/management/AclManagementClient.d.ts DELETED Viewed

@@ -1,236 +0,0 @@
-import { GraphqlClient } from './../common/GraphqlClient';
-import { ManagementTokenProvider } from './ManagementTokenProvider';
-import { IAppAccessPolicy, IAppAccessPolicyQueryFilter, IApplication, IApplicationAccessPolicies, IResourceDto, IResourceQueryFilter, IResourceResponse, IResourceUpdateDto, ManagementClientOptions, Namespace, Namespaces, ProgrammaticAccessAccount, ProgrammaticAccessAccountList } from './types';
-import { AuthorizeResourceOpt, CommonMessage, PaginatedAuthorizedResources, PolicyAssignmentTargetType, ResourceType } from '../../types/graphql.v2';
-import { HttpClient } from '../common/HttpClient';
-/**
- * @class AclManagementClient 管理权限、访问控制
- * @description Authing 基于 PBAC（Policy Based Access Control，基于策略的访问控制）构建权限模型，
- * 可以和 RBAC （Role Based Access Control，基于角色的访问控制）结合，实现非常灵活、精细化的权限控制。
- * 此模块将此模型抽象成了两个方法: allow, isAllowed。
- *
- * @example
- *
- * 请使用以下方式使用该模块，而不要直接初始化该模块：
- *
- * \`\`\`javascript
- * import { ManagementClient } from "authing-js-sdk"
- * const managementClient = new ManagementClient({
- *    userPoolId: "YOUR_USERPOOL_ID",
- *    secret: "YOUR_USERPOOL_SECRET",
- * })
- * managementClient.acl.allow // 允许某个用户对某个资源进行某个操作
- * managementClient.acl.isAllowed // 判断某个用户是否对某个资源有某个操作权限
- * \`\`\`
- *
- * @name AclManagementClient
- */
-export declare class AclManagementClient {
-    options: ManagementClientOptions;
-    graphqlClient: GraphqlClient;
-    httpClient: HttpClient;
-    tokenProvider: ManagementTokenProvider;
-    constructor(options: ManagementClientOptions, graphqlClient: GraphqlClient, httpClient: HttpClient, tokenProvider: ManagementTokenProvider);
-    /**
-     * 生成随机字符串
-     * @param randomLenth 随机长度
-     * @returns string
-     */
-    static randomString(randomLenth?: number): string;
-    /**
-     * @name allow
-     * @name_zh 允许某个用户对某个资源进行某个操作
-     *
-     * @description 允许某个用户对某个资源进行某个操作
-     *
-     * @param {string} userId 用户 ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.allow('USERID1', 'books:123', 'books:read')
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:edit') // false
-     *
-     * @example
-     * managementClient.acl.allow('USERID2', 'books:*', 'books:*')
-     * managementClient.acl.isAllowed('USERID2', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID2', 'books:124', 'books:edit') // true
-     *
-     * @returns {Promise<CommonMessage>}
-     * @memberof AclManagementClient
-     */
-    allow(userId: string, resource: string, action: string, namespace: string): Promise<CommonMessage>;
-    /**
-     * @name isAllowed
-     * @name_zh 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @description 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @param {string} userId 用户ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.isAllowed('USERID', 'books:*', 'books:edit')
-     *
-     * @returns {Promise<boolean>} 是否具备操作权限
-     * @memberof AclManagementClient
-     *
-     */
-    isAllowed(userId: string, resource: string, action: string, opts?: {
-        namespace?: string;
-    }): Promise<boolean>;
-    /**
-     * @description 获取用户被授权的所有资源
-     *
-     * @param userId
-     * @param namespace
-     */
-    listAuthorizedResources(targetType: PolicyAssignmentTargetType, targetIdentifier: string, namespace: string, options?: {
-        resourceType?: ResourceType;
-    }): Promise<PaginatedAuthorizedResources>;
-    /**
-     * @description 将一个（类）资源授权给用户、角色、分组、组织机构，且可以分别指定不同的操作权限。
-     *
-     */
-    authorizeResource(params: {
-        namespace: string;
-        resource: string;
-        opts: AuthorizeResourceOpt[];
-    }): Promise<CommonMessage>;
-    /**
-     * @description 获取具备某个（类）资源操作权限的用户、分组、角色、组织机构。
-     * @param namespace {string} 权限分组标识
-     * @param resource {string} 资源标识
-     * @param actions {string[]} 资源操作标识
-     * @param targetType {string} 筛选项，指定返回主体的类型，可选值为 'USER'、'ROLE'、'ORG'、'GROUP'
-     */
-    getAuthorizedTargets(options: {
-        namespace: string;
-        resource: string;
-        resourceType: 'BUTTON' | 'UI' | 'MENU' | 'API' | 'DATA';
-        actions?: {
-            op: 'AND' | 'OR';
-            list: string[];
-        };
-        targetType?: 'USER' | 'ROLE' | 'ORG' | 'GROUP';
-    }): Promise<{
-        totalCount?: number;
-        list?: {
-            targetType?: PolicyAssignmentTargetType;
-            targetIdentifier?: string;
-            actions?: string[];
-        }[];
-    }>;
-    listResources(options?: IResourceQueryFilter): Promise<any>;
-    /**
-     * @deprecated use listResources
-     * @param options
-     */
-    getResources(options?: IResourceQueryFilter): Promise<any>;
-    createResource(options: IResourceDto): Promise<IResourceResponse>;
-    updateResource(code: string, options: IResourceUpdateDto): Promise<IResourceResponse>;
-    deleteResource(code: string, namespace: string): Promise<boolean>;
-    getApplicationAccessPolicies(options: IAppAccessPolicyQueryFilter): Promise<IApplicationAccessPolicies>;
-    enableApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    disableApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    deleteApplicationAccessPolicy(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    allowAccessApplication(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    denyAccessApplication(options: IAppAccessPolicy): Promise<{
-        code: number;
-        message: string;
-    }>;
-    updateDefaultApplicationAccessPolicy(options: {
-        defaultStrategy: 'ALLOW_ALL' | 'DENY_ALL';
-        appId: string;
-    }): Promise<IApplication>;
-    /**
-     * 编程访问账号列表
-     * @param appId 应用 ID
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<ProgrammaticAccessAccountList>
-     */
-    programmaticAccessAccountList(appId: string, page?: number, limit?: number): Promise<ProgrammaticAccessAccountList>;
-    /**
-     * 添加编程访问账号
-     * @param appId 应用 ID
-     * @param options.tokenLifetime AccessToken 过期时间（秒）
-     * @param options.remarks 备注
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    createProgrammaticAccessAccount(appId: string, options?: {
-        tokenLifetime: number;
-        remarks?: string;
-    }): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 添加编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<boolean>
-     */
-    deleteProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<boolean>;
-    /**
-     * 刷新编程访问账号密钥
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @param programmaticAccessAccountSecret 编程访问账号 Secret
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    refreshProgrammaticAccessAccountSecret(programmaticAccessAccountId: string, programmaticAccessAccountSecret?: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 启用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    enableProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 禁用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    disableProgrammaticAccessAccount(programmaticAccessAccountId: string): Promise<ProgrammaticAccessAccount>;
-    /**
-     * 权限分组列表
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<Resources>
-     */
-    listNamespaces(page?: number, limit?: number): Promise<Namespaces>;
-    /**
-     * 删除权限分组
-     * @param code 权限分组 Code
-     * @returns Promise<boolean>
-     */
-    deleteNamespace(code: string): Promise<boolean>;
-    /**
-     * 创建权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    createNamespace(code: string, name: string, description?: string): Promise<Namespace>;
-    /**
-     * 修改权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param code 权限分组 Code
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    updateNamespace(code: string, updates: {
-        name?: string;
-        code?: string;
-        description?: string;
-    }): Promise<Namespace>;
-}

data/lib/authing_ruby/test/js_sdk_test/node_modules/authing-js-sdk/build/module/lib/management/AclManagementClient.js DELETED Viewed

@@ -1,860 +0,0 @@
-var __assign = (this && this.__assign) || function () {
-    __assign = Object.assign || function(t) {
-        for (var s, i = 1, n = arguments.length; i < n; i++) {
-            s = arguments[i];
-            for (var p in s) if (Object.prototype.hasOwnProperty.call(s, p))
-                t[p] = s[p];
-        }
-        return t;
-    };
-    return __assign.apply(this, arguments);
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __generator = (this && this.__generator) || function (thisArg, body) {
-    var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
-    return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
-    function verb(n) { return function (v) { return step([n, v]); }; }
-    function step(op) {
-        if (f) throw new TypeError("Generator is already executing.");
-        while (_) try {
-            if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
-            if (y = 0, t) op = [op[0] & 2, t.value];
-            switch (op[0]) {
-                case 0: case 1: t = op; break;
-                case 4: _.label++; return { value: op[1], done: false };
-                case 5: _.label++; y = op[1]; op = [0]; continue;
-                case 7: op = _.ops.pop(); _.trys.pop(); continue;
-                default:
-                    if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
-                    if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
-                    if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
-                    if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
-                    if (t[2]) _.ops.pop();
-                    _.trys.pop(); continue;
-            }
-            op = body.call(thisArg, _);
-        } catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
-        if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
-    }
-};
-import { allow, authorizeResource, isAllowed, listAuthorizedResources, authorizedTargets } from '../graphqlapi';
-import { formatAuthorizedResources, objectToQueryString } from '../utils';
-/**
- * @class AclManagementClient 管理权限、访问控制
- * @description Authing 基于 PBAC（Policy Based Access Control，基于策略的访问控制）构建权限模型，
- * 可以和 RBAC （Role Based Access Control，基于角色的访问控制）结合，实现非常灵活、精细化的权限控制。
- * 此模块将此模型抽象成了两个方法: allow, isAllowed。
- *
- * @example
- *
- * 请使用以下方式使用该模块，而不要直接初始化该模块：
- *
- * \`\`\`javascript
- * import { ManagementClient } from "authing-js-sdk"
- * const managementClient = new ManagementClient({
- *    userPoolId: "YOUR_USERPOOL_ID",
- *    secret: "YOUR_USERPOOL_SECRET",
- * })
- * managementClient.acl.allow // 允许某个用户对某个资源进行某个操作
- * managementClient.acl.isAllowed // 判断某个用户是否对某个资源有某个操作权限
- * \`\`\`
- *
- * @name AclManagementClient
- */
-var AclManagementClient = /** @class */ (function () {
-    function AclManagementClient(options, graphqlClient, httpClient, tokenProvider) {
-        this.options = options;
-        this.graphqlClient = graphqlClient;
-        this.httpClient = httpClient;
-        this.tokenProvider = tokenProvider;
-    }
-    /**
-     * 生成随机字符串
-     * @param randomLenth 随机长度
-     * @returns string
-     */
-    AclManagementClient.randomString = function (randomLenth) {
-        if (randomLenth === void 0) { randomLenth = 32; }
-        randomLenth = randomLenth || 32;
-        var t = 'abcdefhijkmnprstwxyz2345678';
-        var a = t.length;
-        var n = '';
-        for (var i = 0; i < randomLenth; i++) {
-            n += t.charAt(Math.floor(Math.random() * a));
-        }
-        return n;
-    };
-    /**
-     * @name allow
-     * @name_zh 允许某个用户对某个资源进行某个操作
-     *
-     * @description 允许某个用户对某个资源进行某个操作
-     *
-     * @param {string} userId 用户 ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.allow('USERID1', 'books:123', 'books:read')
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID1', 'books:123', 'books:edit') // false
-     *
-     * @example
-     * managementClient.acl.allow('USERID2', 'books:*', 'books:*')
-     * managementClient.acl.isAllowed('USERID2', 'books:123', 'books:read') // true
-     * managementClient.acl.isAllowed('USERID2', 'books:124', 'books:edit') // true
-     *
-     * @returns {Promise<CommonMessage>}
-     * @memberof AclManagementClient
-     */
-    AclManagementClient.prototype.allow = function (userId, resource, action, namespace) {
-        return __awaiter(this, void 0, void 0, function () {
-            var data;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, allow(this.graphqlClient, this.tokenProvider, {
-                            resource: resource,
-                            action: action,
-                            userId: userId,
-                            namespace: namespace
-                        })];
-                    case 1:
-                        data = (_a.sent()).allow;
-                        return [2 /*return*/, data];
-                }
-            });
-        });
-    };
-    /**
-     * @name isAllowed
-     * @name_zh 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @description 判断某个用户是否对某个资源有某个操作权限
-     *
-     * @param {string} userId 用户ID
-     * @param {string} action 操作名称，推荐使用 \<resourceType\>:\<actionName\> 的格式，如 `books:edit`, `books:list`
-     * @param {string} resource 资源名称, 必须为 \<resourceType\>:\<resourceId\> 格式或者为 *, 如 `*`, `books:123`, `books:*`
-     * @example
-     * managementClient.acl.isAllowed('USERID', 'books:*', 'books:edit')
-     *
-     * @returns {Promise<boolean>} 是否具备操作权限
-     * @memberof AclManagementClient
-     *
-     */
-    AclManagementClient.prototype.isAllowed = function (userId, resource, action, opts) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, isActionAllowed;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        namespace = (opts || {}).namespace;
-                        return [4 /*yield*/, isAllowed(this.graphqlClient, this.tokenProvider, {
-                                resource: resource,
-                                action: action,
-                                userId: userId,
-                                namespace: namespace
-                            })];
-                    case 1:
-                        isActionAllowed = (_a.sent()).isActionAllowed;
-                        return [2 /*return*/, isActionAllowed];
-                }
-            });
-        });
-    };
-    /**
-     * @description 获取用户被授权的所有资源
-     *
-     * @param userId
-     * @param namespace
-     */
-    AclManagementClient.prototype.listAuthorizedResources = function (targetType, targetIdentifier, namespace, options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var resourceType, _a, list, totalCount;
-            return __generator(this, function (_b) {
-                switch (_b.label) {
-                    case 0:
-                        resourceType = (options || {}).resourceType;
-                        return [4 /*yield*/, listAuthorizedResources(this.graphqlClient, this.tokenProvider, {
-                                targetType: targetType,
-                                targetIdentifier: targetIdentifier,
-                                namespace: namespace,
-                                resourceType: resourceType
-                            })];
-                    case 1:
-                        _a = (_b.sent()).authorizedResources, list = _a.list, totalCount = _a.totalCount;
-                        list = formatAuthorizedResources(list);
-                        return [2 /*return*/, {
-                                list: list,
-                                totalCount: totalCount
-                            }];
-                }
-            });
-        });
-    };
-    /**
-     * @description 将一个（类）资源授权给用户、角色、分组、组织机构，且可以分别指定不同的操作权限。
-     *
-     */
-    AclManagementClient.prototype.authorizeResource = function (params) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, resource, opts, data;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        namespace = params.namespace, resource = params.resource, opts = params.opts;
-                        return [4 /*yield*/, authorizeResource(this.graphqlClient, this.tokenProvider, {
-                                namespace: namespace,
-                                resource: resource,
-                                opts: opts
-                            })];
-                    case 1:
-                        data = (_a.sent()).authorizeResource;
-                        return [2 /*return*/, data];
-                }
-            });
-        });
-    };
-    /**
-     * @description 获取具备某个（类）资源操作权限的用户、分组、角色、组织机构。
-     * @param namespace {string} 权限分组标识
-     * @param resource {string} 资源标识
-     * @param actions {string[]} 资源操作标识
-     * @param targetType {string} 筛选项，指定返回主体的类型，可选值为 'USER'、'ROLE'、'ORG'、'GROUP'
-     */
-    AclManagementClient.prototype.getAuthorizedTargets = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var data;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!options) {
-                            throw new Error('请传入 options.namespace、options.resource、options.actions，含义为权限分组标识、资源标识、资源操作标识');
-                        }
-                        if (!options.namespace) {
-                            throw new Error('请传入 options.namespace，含义为权限分组标识');
-                        }
-                        if (!options.resource) {
-                            throw new Error('请传入 options.resource，含义为资源标识');
-                        }
-                        if (!options.resourceType) {
-                            throw new Error('请传入 options.resourceType，含义为资源类型');
-                        }
-                        return [4 /*yield*/, authorizedTargets(this.graphqlClient, this.tokenProvider, {
-                                namespace: options.namespace,
-                                resourceType: options.resourceType,
-                                resource: options.resource,
-                                targetType: options.targetType,
-                                actions: options.actions
-                            })];
-                    case 1:
-                        data = (_a.sent()).authorizedTargets;
-                        return [2 /*return*/, data];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.listResources = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'GET',
-                            url: this.options.host + "/api/v2/resources",
-                            params: {
-                                namespace: (options === null || options === void 0 ? void 0 : options.namespace) || (options === null || options === void 0 ? void 0 : options.namespaceCode),
-                                type: options === null || options === void 0 ? void 0 : options.type,
-                                limit: (options === null || options === void 0 ? void 0 : options.limit) || 10,
-                                page: (options === null || options === void 0 ? void 0 : options.page) || 1
-                            }
-                        })];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    /**
-     * @deprecated use listResources
-     * @param options
-     */
-    AclManagementClient.prototype.getResources = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.listResources(options)];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.createResource = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!options) {
-                            throw new Error('请传入资源数据');
-                        }
-                        if (!options.code) {
-                            throw new Error('请为资源设定一个资源标识符');
-                        }
-                        if (!options.actions || (options === null || options === void 0 ? void 0 : options.actions.length) === 0) {
-                            throw new Error('请至少定义一个资源操作');
-                        }
-                        if (!options.namespace) {
-                            throw new Error('请传入权限分组标识符');
-                        }
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/resources",
-                                data: options
-                            })];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.updateResource = function (code, options) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!code) {
-                            throw new Error('请传入资源标识符');
-                        }
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/resources/" + code,
-                                data: options
-                            })];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.deleteResource = function (code, namespace) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!code) {
-                            throw new Error('请传入资源标识符');
-                        }
-                        if (!namespace) {
-                            throw new Error('请传入权限分组标识符');
-                        }
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'DELETE',
-                                url: this.options.host + "/api/v2/resources/" + code,
-                                params: {
-                                    namespace: namespace
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, true];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.getApplicationAccessPolicies = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var appId, page, limit;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        appId = options.appId, page = options.page, limit = options.limit;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'GET',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/records",
-                                params: {
-                                    page: page,
-                                    limit: limit
-                                }
-                            })];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.enableApplicationAccessPolicy = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                            throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                            throw new Error('请传入主体 id');
-                        }
-                        namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/enable-effect",
-                                data: {
-                                    targetType: targetType,
-                                    namespace: namespace,
-                                    targetIdentifiers: targetIdentifiers,
-                                    inheritByChildren: inheritByChildren
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, { code: 200, message: '启用应用访问控制策略成功' }];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.disableApplicationAccessPolicy = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                            throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                            throw new Error('请传入主体 id');
-                        }
-                        namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/disable-effect",
-                                data: {
-                                    targetType: targetType,
-                                    namespace: namespace,
-                                    targetIdentifiers: targetIdentifiers,
-                                    inheritByChildren: inheritByChildren
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, { code: 200, message: '停用应用访问控制策略成功' }];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.deleteApplicationAccessPolicy = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                            throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                            throw new Error('请传入主体 id');
-                        }
-                        namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/revoke",
-                                data: {
-                                    targetType: targetType,
-                                    namespace: namespace,
-                                    targetIdentifiers: targetIdentifiers,
-                                    inheritByChildren: inheritByChildren
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, { code: 200, message: '删除应用访问控制策略成功' }];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.allowAccessApplication = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                            throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                            throw new Error('请传入主体 id');
-                        }
-                        namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/allow",
-                                data: {
-                                    targetType: targetType,
-                                    namespace: namespace,
-                                    targetIdentifiers: targetIdentifiers,
-                                    inheritByChildren: inheritByChildren
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, { code: 200, message: '允许主体访问应用的策略配置已生效' }];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.denyAccessApplication = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            var namespace, targetIdentifiers, targetType, appId, inheritByChildren;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入 appId');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetType)) {
-                            throw new Error('请传入主体类型，可选值为 USER、ROLE、ORG、GROUP，含义为用户、角色、组织机构节点、用户分组');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.targetIdentifiers)) {
-                            throw new Error('请传入主体 id');
-                        }
-                        namespace = options.namespace, targetIdentifiers = options.targetIdentifiers, targetType = options.targetType, appId = options.appId, inheritByChildren = options.inheritByChildren;
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + appId + "/authorization/deny",
-                                data: {
-                                    targetType: targetType,
-                                    namespace: namespace,
-                                    targetIdentifiers: targetIdentifiers,
-                                    inheritByChildren: inheritByChildren
-                                }
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, { code: 200, message: '拒绝主体访问应用的策略配置已生效' }];
-                }
-            });
-        });
-    };
-    AclManagementClient.prototype.updateDefaultApplicationAccessPolicy = function (options) {
-        return __awaiter(this, void 0, void 0, function () {
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        if (!(options === null || options === void 0 ? void 0 : options.appId)) {
-                            throw new Error('请传入应用 id');
-                        }
-                        if (!(options === null || options === void 0 ? void 0 : options.defaultStrategy)) {
-                            throw new Error('请传入默认策略，可选值为 ALLOW_ALL、DENY_ALL，含义为默认允许所有用户登录应用、默认拒绝所有用户登录应用');
-                        }
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/applications/" + options.appId,
-                                data: {
-                                    permissionStrategy: { defaultStrategy: options.defaultStrategy }
-                                }
-                            })];
-                    case 1: return [2 /*return*/, _a.sent()];
-                }
-            });
-        });
-    };
-    /**
-     * 编程访问账号列表
-     * @param appId 应用 ID
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<ProgrammaticAccessAccountList>
-     */
-    AclManagementClient.prototype.programmaticAccessAccountList = function (appId, page, limit) {
-        if (page === void 0) { page = 1; }
-        if (limit === void 0) { limit = 10; }
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'GET',
-                            url: this.options.host + "/api/v2/applications/" + appId + "/programmatic-access-accounts?limit=" + limit + "&page=" + page
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 添加编程访问账号
-     * @param appId 应用 ID
-     * @param options.tokenLifetime AccessToken 过期时间（秒）
-     * @param options.remarks 备注
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    AclManagementClient.prototype.createProgrammaticAccessAccount = function (appId, options) {
-        if (options === void 0) { options = {
-            tokenLifetime: 600
-        }; }
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'POST',
-                            url: this.options.host + "/api/v2/applications/" + appId + "/programmatic-access-accounts",
-                            data: __assign({}, options)
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 添加编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<boolean>
-     */
-    AclManagementClient.prototype.deleteProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-        return __awaiter(this, void 0, void 0, function () {
-            var error_1;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        _a.trys.push([0, 2, , 3]);
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'DELETE',
-                                url: this.options.host + "/api/v2/applications/programmatic-access-accounts?id=" + programmaticAccessAccountId
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, true];
-                    case 2:
-                        error_1 = _a.sent();
-                        throw error_1;
-                    case 3: return [2 /*return*/];
-                }
-            });
-        });
-    };
-    /**
-     * 刷新编程访问账号密钥
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @param programmaticAccessAccountSecret 编程访问账号 Secret
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    AclManagementClient.prototype.refreshProgrammaticAccessAccountSecret = function (programmaticAccessAccountId, programmaticAccessAccountSecret) {
-        if (programmaticAccessAccountSecret === void 0) { programmaticAccessAccountSecret = AclManagementClient.randomString(32); }
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'PATCH',
-                            url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                            data: {
-                                id: programmaticAccessAccountId,
-                                secret: programmaticAccessAccountSecret
-                            }
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 启用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    AclManagementClient.prototype.enableProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'PATCH',
-                            url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                            data: {
-                                id: programmaticAccessAccountId,
-                                enabled: true
-                            }
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 禁用编程访问账号
-     * @param programmaticAccessAccountId 编程访问账号 ID
-     * @returns Promise<ProgrammaticAccessAccount>
-     */
-    AclManagementClient.prototype.disableProgrammaticAccessAccount = function (programmaticAccessAccountId) {
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'PATCH',
-                            url: this.options.host + "/api/v2/applications/programmatic-access-accounts",
-                            data: {
-                                id: programmaticAccessAccountId,
-                                enabled: false
-                            }
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 权限分组列表
-     * @param page 当前页数
-     * @param limit 每页显示条数
-     * @returns Promise<Resources>
-     */
-    AclManagementClient.prototype.listNamespaces = function (page, limit) {
-        if (page === void 0) { page = 1; }
-        if (limit === void 0) { limit = 10; }
-        return __awaiter(this, void 0, void 0, function () {
-            var result;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0: return [4 /*yield*/, this.httpClient.request({
-                            method: 'GET',
-                            url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId +
-                                objectToQueryString({
-                                    page: page === null || page === void 0 ? void 0 : page.toString(),
-                                    limit: limit === null || limit === void 0 ? void 0 : limit.toString()
-                                })
-                        })];
-                    case 1:
-                        result = _a.sent();
-                        return [2 /*return*/, result];
-                }
-            });
-        });
-    };
-    /**
-     * 删除权限分组
-     * @param code 权限分组 Code
-     * @returns Promise<boolean>
-     */
-    AclManagementClient.prototype.deleteNamespace = function (code) {
-        return __awaiter(this, void 0, void 0, function () {
-            var error_2;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        _a.trys.push([0, 2, , 3]);
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'DELETE',
-                                url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId + "/code/" + code
-                            })];
-                    case 1:
-                        _a.sent();
-                        return [2 /*return*/, true];
-                    case 2:
-                        error_2 = _a.sent();
-                        throw error_2;
-                    case 3: return [2 /*return*/];
-                }
-            });
-        });
-    };
-    /**
-     * 创建权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    AclManagementClient.prototype.createNamespace = function (code, name, description) {
-        return __awaiter(this, void 0, void 0, function () {
-            var data, error_3;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        _a.trys.push([0, 2, , 3]);
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'POST',
-                                url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId,
-                                data: {
-                                    name: name,
-                                    code: code,
-                                    description: description
-                                }
-                            })];
-                    case 1:
-                        data = _a.sent();
-                        return [2 /*return*/, data];
-                    case 2:
-                        error_3 = _a.sent();
-                        throw error_3;
-                    case 3: return [2 /*return*/];
-                }
-            });
-        });
-    };
-    /**
-     * 修改权限分组
-     * @param code 权限分组 Code
-     * @param name 权限分组名称
-     * @param code 权限分组 Code
-     * @param description 权限分组描述
-     * @returns Promise<boolean>
-     */
-    AclManagementClient.prototype.updateNamespace = function (code, updates) {
-        return __awaiter(this, void 0, void 0, function () {
-            var data, error_4;
-            return __generator(this, function (_a) {
-                switch (_a.label) {
-                    case 0:
-                        _a.trys.push([0, 2, , 3]);
-                        return [4 /*yield*/, this.httpClient.request({
-                                method: 'PUT',
-                                url: this.options.host + "/api/v2/resource-namespace/" + this.options.userPoolId + "/code/" + code,
-                                data: {
-                                    name: updates.name,
-                                    code: updates.code,
-                                    description: updates.description
-                                }
-                            })];
-                    case 1:
-                        data = _a.sent();
-                        return [2 /*return*/, data];
-                    case 2:
-                        error_4 = _a.sent();
-                        throw error_4;
-                    case 3: return [2 /*return*/];
-                }
-            });
-        });
-    };
-    return AclManagementClient;
-}());
-export { AclManagementClient };
-//# sourceMappingURL=data:application/json;base64,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