@aeriajs/core 0.0.188 → 0.0.190

package/dist/collection/traverseDocument.d.ts

@@ -7,6 +7,7 @@ export type TraverseOptionsBase = {
     validateWholeness?: boolean | 'deep';
     fromProperties?: boolean;
     allowOperators?: boolean;
+    allowInsecureOperators?: boolean;
     undefinedToNull?: boolean;
     preserveHidden?: boolean;
     recurseDeep?: boolean;
@@ -46,7 +47,7 @@ export declare const traverseDocument: <TWhat>(what: TWhat, description: Descrip
     readonly result: TWhat;
 } | {
     readonly _tag: "Error";
-    readonly error: ACError.InsecureOperator | TraverseError | ValidationError;
+    readonly error: ACError.InsecureOperator | ValidationError | TraverseError;
     readonly result: undefined;
 }>;
 export {};

package/dist/functions/count.d.ts

@@ -1,10 +1,6 @@
-import type { Context, SchemaWithId, CountPayload } from '@aeriajs/types';
-import { Result } from '@aeriajs/types';
+import type { Context, SchemaWithId, CountPayload, CountReturnType } from '@aeriajs/types';
 export type CountOptions = {
     bypassSecurity?: boolean;
+    allowInsecureOperators?: boolean;
 };
-export declare const count: <TContext extends Context>(payload: CountPayload<SchemaWithId<TContext["description"]>>, context: TContext extends Context ? TContext : never, options?: CountOptions) => Promise<Result.Error<any> | {
-    readonly _tag: "Result";
-    readonly error: undefined;
-    readonly result: any;
-}>;
+export declare const count: <TContext extends Context>(payload: CountPayload<SchemaWithId<TContext["description"]>>, context: TContext extends Context ? TContext : never, options?: CountOptions) => Promise<CountReturnType>;

package/dist/functions/count.js

@@ -5,7 +5,7 @@ const security_1 = require("@aeriajs/security");
 const types_1 = require("@aeriajs/types");
 const common_1 = require("@aeriajs/common");
 const index_js_1 = require("../collection/index.js");
-const internalCount = async (payload, context) => {
+const internalCount = async (payload, context, options) => {
     const { filters = {} } = payload;
     const $text = '$text' in filters
         ? filters.$text
@@ -16,6 +16,8 @@ const internalCount = async (payload, context) => {
     const traversedFilters = (0, common_1.throwIfError)(await (0, index_js_1.traverseDocument)(filters, context.description, {
         autoCast: true,
         allowOperators: true,
+        allowInsecureOperators: options.allowInsecureOperators,
+        context,
     }));
     if ($text) {
         const pipeline = [];
@@ -39,13 +41,17 @@ const internalCount = async (payload, context) => {
 };
 const count = async (payload, context, options = {}) => {
     if (options.bypassSecurity) {
-        return internalCount(payload, context);
+        return internalCount(payload, context, options);
     }
     const security = (0, security_1.useSecurity)(context);
     const { error, result: securedPayload } = await security.secureReadPayload(payload);
     if (error) {
-        return types_1.Result.error(error);
+        return context.error(types_1.HTTPStatus.Forbidden, {
+            code: error,
+        });
     }
-    return (0, security_1.applyReadMiddlewares)(securedPayload, context, internalCount);
+    return (0, security_1.applyReadMiddlewares)(securedPayload, context, (payload, context) => {
+        return internalCount(payload, context, options);
+    });
 };
 exports.count = count;

package/dist/functions/count.mjs

@@ -1,9 +1,9 @@
 "use strict";
 import { useSecurity, applyReadMiddlewares } from "@aeriajs/security";
-import { Result } from "@aeriajs/types";
+import { Result, HTTPStatus } from "@aeriajs/types";
 import { throwIfError } from "@aeriajs/common";
 import { traverseDocument } from "../collection/index.mjs";
-const internalCount = async (payload, context) => {
+const internalCount = async (payload, context, options) => {
   const { filters = {} } = payload;
   const $text = "$text" in filters ? filters.$text : void 0;
   if ("$text" in filters) {
@@ -11,7 +11,9 @@ const internalCount = async (payload, context) => {
   }
   const traversedFilters = throwIfError(await traverseDocument(filters, context.description, {
     autoCast: true,
-    allowOperators: true
+    allowOperators: true,
+    allowInsecureOperators: options.allowInsecureOperators,
+    context
   }));
   if ($text) {
     const pipeline = [];
@@ -33,12 +35,16 @@ const internalCount = async (payload, context) => {
 };
 export const count = async (payload, context, options = {}) => {
   if (options.bypassSecurity) {
-    return internalCount(payload, context);
+    return internalCount(payload, context, options);
   }
   const security = useSecurity(context);
   const { error, result: securedPayload } = await security.secureReadPayload(payload);
   if (error) {
-    return Result.error(error);
+    return context.error(HTTPStatus.Forbidden, {
+      code: error
+    });
   }
-  return applyReadMiddlewares(securedPayload, context, internalCount);
+  return applyReadMiddlewares(securedPayload, context, (payload2, context2) => {
+    return internalCount(payload2, context2, options);
+  });
 };

package/dist/functions/get.d.ts

@@ -1,5 +1,6 @@
 import type { Context, SchemaWithId, GetPayload, GetReturnType } from '@aeriajs/types';
 export type GetOptions = {
     bypassSecurity?: boolean;
+    allowInsecureOperators?: boolean;
 };
 export declare const get: <TContext extends Context>(payload: GetPayload<SchemaWithId<TContext["description"]>>, context: TContext, options?: GetOptions) => Promise<GetReturnType<SchemaWithId<TContext["description"]>>>;

package/dist/functions/get.js

@@ -5,7 +5,7 @@ const security_1 = require("@aeriajs/security");
 const types_1 = require("@aeriajs/types");
 const common_1 = require("@aeriajs/common");
 const index_js_1 = require("../collection/index.js");
-const internalGet = async (payload, context) => {
+const internalGet = async (payload, context, options) => {
     const { filters = {}, project, } = payload;
     if (Object.keys(filters).length === 0) {
         return context.error(types_1.HTTPStatus.BadRequest, {
@@ -19,6 +19,8 @@ const internalGet = async (payload, context) => {
     const { error: filtersError, result: traversedFilters } = await (0, index_js_1.traverseDocument)(filters, context.description, {
         autoCast: true,
         allowOperators: true,
+        allowInsecureOperators: options.allowInsecureOperators,
+        context,
     });
     if (filtersError) {
         switch (filtersError) {
@@ -62,7 +64,7 @@ const internalGet = async (payload, context) => {
 };
 const get = async (payload, context, options = {}) => {
     if (options.bypassSecurity) {
-        return internalGet(payload, context);
+        return internalGet(payload, context, options);
     }
     const security = (0, security_1.useSecurity)(context);
     const { error, result: securedPayload } = await security.secureReadPayload(payload);
@@ -74,6 +76,8 @@ const get = async (payload, context, options = {}) => {
             code: error,
         });
     }
-    return (0, security_1.applyReadMiddlewares)(securedPayload, context, internalGet);
+    return (0, security_1.applyReadMiddlewares)(securedPayload, context, (payload, context) => {
+        return internalGet(payload, context, options);
+    });
 };
 exports.get = get;

package/dist/functions/get.mjs

@@ -8,7 +8,7 @@ import {
   getReferences,
   buildLookupPipeline
 } from "../collection/index.mjs";
-const internalGet = async (payload, context) => {
+const internalGet = async (payload, context, options) => {
   const {
     filters = {},
     project
@@ -24,7 +24,9 @@ const internalGet = async (payload, context) => {
   });
   const { error: filtersError, result: traversedFilters } = await traverseDocument(filters, context.description, {
     autoCast: true,
-    allowOperators: true
+    allowOperators: true,
+    allowInsecureOperators: options.allowInsecureOperators,
+    context
   });
   if (filtersError) {
     switch (filtersError) {
@@ -68,7 +70,7 @@ const internalGet = async (payload, context) => {
 };
 export const get = async (payload, context, options = {}) => {
   if (options.bypassSecurity) {
-    return internalGet(payload, context);
+    return internalGet(payload, context, options);
   }
   const security = useSecurity(context);
   const { error, result: securedPayload } = await security.secureReadPayload(payload);
@@ -81,5 +83,7 @@ export const get = async (payload, context, options = {}) => {
       code: error
     });
   }
-  return applyReadMiddlewares(securedPayload, context, internalGet);
+  return applyReadMiddlewares(securedPayload, context, (payload2, context2) => {
+    return internalGet(payload2, context2, options);
+  });
 };

package/dist/functions/getAll.d.ts

@@ -2,5 +2,6 @@ import type { Context, SchemaWithId, GetAllPayload, GetAllReturnType } from '@ae
 export type GetAllOptions = {
     bypassSecurity?: boolean;
     noDefaultLimit?: boolean;
+    allowInsecureOperators?: boolean;
 };
 export declare const getAll: <TContext extends Context>(payload: GetAllPayload<SchemaWithId<TContext["description"]>> | undefined, context: TContext, options?: GetAllOptions) => Promise<GetAllReturnType<SchemaWithId<TContext["description"]>>>;

package/dist/functions/getAll.js

@@ -5,7 +5,7 @@ const security_1 = require("@aeriajs/security");
 const types_1 = require("@aeriajs/types");
 const common_1 = require("@aeriajs/common");
 const index_js_1 = require("../collection/index.js");
-const internalGetAll = async (payload, context) => {
+const internalGetAll = async (payload, context, options) => {
     const { limit, sort, project, offset = 0, } = payload;
     const filters = payload.filters
         ? Object.assign({}, payload.filters)
@@ -42,6 +42,8 @@ const internalGetAll = async (payload, context) => {
     const { error: filtersError, result: traversedFilters } = await (0, index_js_1.traverseDocument)(filters, context.description, {
         autoCast: true,
         allowOperators: true,
+        allowInsecureOperators: options.allowInsecureOperators,
+        context,
     });
     if (filtersError) {
         switch (filtersError) {
@@ -100,10 +102,10 @@ const internalGetAll = async (payload, context) => {
 };
 const getAll = async (payload, context, options = {}) => {
     if (!payload) {
-        return internalGetAll({}, context);
+        return internalGetAll({}, context, options);
     }
     if (options.bypassSecurity) {
-        return internalGetAll(payload, context);
+        return internalGetAll(payload, context, options);
     }
     const security = (0, security_1.useSecurity)(context);
     const { error, result: securedPayload } = await security.secureReadPayload(payload);
@@ -115,6 +117,8 @@ const getAll = async (payload, context, options = {}) => {
     if (!options.noDefaultLimit) {
         securedPayload.limit ||= context.config.defaultPaginationLimit;
     }
-    return (0, security_1.applyReadMiddlewares)(securedPayload, context, internalGetAll);
+    return (0, security_1.applyReadMiddlewares)(securedPayload, context, (payload, context) => {
+        return internalGetAll(payload, context, options);
+    });
 };
 exports.getAll = getAll;

package/dist/functions/getAll.mjs

@@ -8,7 +8,7 @@ import {
   getReferences,
   buildLookupPipeline
 } from "../collection/index.mjs";
-const internalGetAll = async (payload, context) => {
+const internalGetAll = async (payload, context, options) => {
   const {
     limit,
     sort,
@@ -41,7 +41,9 @@ const internalGetAll = async (payload, context) => {
   }
   const { error: filtersError, result: traversedFilters } = await traverseDocument(filters, context.description, {
     autoCast: true,
-    allowOperators: true
+    allowOperators: true,
+    allowInsecureOperators: options.allowInsecureOperators,
+    context
   });
   if (filtersError) {
     switch (filtersError) {
@@ -100,10 +102,10 @@ const internalGetAll = async (payload, context) => {
 };
 export const getAll = async (payload, context, options = {}) => {
   if (!payload) {
-    return internalGetAll({}, context);
+    return internalGetAll({}, context, options);
   }
   if (options.bypassSecurity) {
-    return internalGetAll(payload, context);
+    return internalGetAll(payload, context, options);
   }
   const security = useSecurity(context);
   const { error, result: securedPayload } = await security.secureReadPayload(payload);
@@ -115,5 +117,7 @@ export const getAll = async (payload, context, options = {}) => {
   if (!options.noDefaultLimit) {
     securedPayload.limit ||= context.config.defaultPaginationLimit;
   }
-  return applyReadMiddlewares(securedPayload, context, internalGetAll);
+  return applyReadMiddlewares(securedPayload, context, (payload2, context2) => {
+    return internalGetAll(payload2, context2, options);
+  });
 };

package/dist/functions/insert.d.ts

@@ -1,36 +1,5 @@
 import type { Context, SchemaWithId, InsertPayload, InsertReturnType } from '@aeriajs/types';
-import { HTTPStatus, ACError, ValidationErrorCode, TraverseError } from '@aeriajs/types';
 export type InsertOptions = {
     bypassSecurity?: boolean;
 };
-export declare const insertErrorSchema: () => {
-    readonly type: "object";
-    readonly properties: {
-        readonly _tag: {
-            readonly const: "Error";
-        };
-        readonly result: {
-            readonly const: undefined;
-        };
-        readonly error: {
-            readonly type: "object";
-            readonly required: readonly ["httpStatus", "code"];
-            readonly properties: {
-                readonly httpStatus: {
-                    readonly enum: [HTTPStatus.Forbidden, HTTPStatus.NotFound, HTTPStatus.UnprocessableContent, HTTPStatus.BadRequest];
-                };
-                readonly code: {
-                    readonly enum: [ACError.InsecureOperator, ACError.OwnershipError, ACError.ResourceNotFound, ACError.TargetImmutable, ACError.MalformedInput, ValidationErrorCode.EmptyTarget, ValidationErrorCode.InvalidProperties, ValidationErrorCode.MissingProperties, TraverseError.InvalidDocumentId, TraverseError.InvalidTempfile];
-                };
-                readonly message: {
-                    readonly type: "string";
-                };
-                readonly details: {
-                    readonly type: "object";
-                    readonly variable: true;
-                };
-            };
-        };
-    };
-};
 export declare const insert: <TContext extends Context>(payload: InsertPayload<SchemaWithId<TContext["description"]>>, context: TContext, options?: InsertOptions) => Promise<InsertReturnType<SchemaWithId<TContext["description"]>>>;

package/dist/functions/insert.js

@@ -1,33 +1,11 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.insert = exports.insertErrorSchema = void 0;
+exports.insert = void 0;
 const mongodb_1 = require("mongodb");
 const types_1 = require("@aeriajs/types");
 const security_1 = require("@aeriajs/security");
-const common_1 = require("@aeriajs/common");
 const index_js_1 = require("../collection/index.js");
 const get_js_1 = require("./get.js");
-const insertErrorSchema = () => (0, common_1.endpointErrorSchema)({
-    httpStatus: [
-        types_1.HTTPStatus.Forbidden,
-        types_1.HTTPStatus.NotFound,
-        types_1.HTTPStatus.UnprocessableContent,
-        types_1.HTTPStatus.BadRequest,
-    ],
-    code: [
-        types_1.ACError.InsecureOperator,
-        types_1.ACError.OwnershipError,
-        types_1.ACError.ResourceNotFound,
-        types_1.ACError.TargetImmutable,
-        types_1.ACError.MalformedInput,
-        types_1.ValidationErrorCode.EmptyTarget,
-        types_1.ValidationErrorCode.InvalidProperties,
-        types_1.ValidationErrorCode.MissingProperties,
-        types_1.TraverseError.InvalidDocumentId,
-        types_1.TraverseError.InvalidTempfile,
-    ],
-});
-exports.insertErrorSchema = insertErrorSchema;
 const prepareCreate = (doc, description) => {
     const result = {};
     if (description.defaults) {

package/dist/functions/insert.mjs

@@ -1,30 +1,9 @@
 "use strict";
 import { ObjectId } from "mongodb";
-import { Result, HTTPStatus, ACError, ValidationErrorCode, TraverseError } from "@aeriajs/types";
+import { Result, HTTPStatus } from "@aeriajs/types";
 import { useSecurity, applyWriteMiddlewares } from "@aeriajs/security";
-import { endpointErrorSchema } from "@aeriajs/common";
 import { traverseDocument } from "../collection/index.mjs";
 import { get } from "./get.mjs";
-export const insertErrorSchema = () => endpointErrorSchema({
-  httpStatus: [
-    HTTPStatus.Forbidden,
-    HTTPStatus.NotFound,
-    HTTPStatus.UnprocessableContent,
-    HTTPStatus.BadRequest
-  ],
-  code: [
-    ACError.InsecureOperator,
-    ACError.OwnershipError,
-    ACError.ResourceNotFound,
-    ACError.TargetImmutable,
-    ACError.MalformedInput,
-    ValidationErrorCode.EmptyTarget,
-    ValidationErrorCode.InvalidProperties,
-    ValidationErrorCode.MissingProperties,
-    TraverseError.InvalidDocumentId,
-    TraverseError.InvalidTempfile
-  ]
-});
 const prepareCreate = (doc, description) => {
   const result = {};
   if (description.defaults) {

package/dist/functions/remove.js

@@ -13,6 +13,7 @@ const internalRemove = async (payload, context) => {
     }
     const filters = (0, common_1.throwIfError)(await (0, index_js_1.traverseDocument)(payload.filters, context.description, {
         autoCast: true,
+        context,
     }));
     const target = await context.collection.model.findOne(filters);
     if (!target) {

package/dist/functions/remove.mjs

@@ -10,7 +10,8 @@ const internalRemove = async (payload, context) => {
     });
   }
   const filters = throwIfError(await traverseDocument(payload.filters, context.description, {
-    autoCast: true
+    autoCast: true,
+    context
   }));
   const target = await context.collection.model.findOne(filters);
   if (!target) {

package/dist/functions/removeAll.js

@@ -12,6 +12,7 @@ const internalRemoveAll = async (payload, context) => {
         },
     }, context.description, {
         autoCast: true,
+        context,
     }));
     const it = context.collection.model.find(filters);
     let doc;

package/dist/functions/removeAll.mjs

@@ -9,7 +9,8 @@ const internalRemoveAll = async (payload, context) => {
       $in: payload.filters
     }
   }, context.description, {
-    autoCast: true
+    autoCast: true,
+    context
   }));
   const it = context.collection.model.find(filters);
   let doc;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@aeriajs/core",
-  "version": "0.0.188",
+  "version": "0.0.190",
   "description": "",
   "main": "dist/index.js",
   "aeriaMain": "tests/fixtures/aeriaMain.js",
@@ -42,13 +42,13 @@
     "mongodb-memory-server": "^9.2.0"
   },
   "peerDependencies": {
-    "@aeriajs/builtins": "^0.0.188",
-    "@aeriajs/common": "^0.0.115",
-    "@aeriajs/entrypoint": "^0.0.118",
-    "@aeriajs/http": "^0.0.129",
-    "@aeriajs/security": "^0.0.188",
-    "@aeriajs/types": "^0.0.98",
-    "@aeriajs/validation": "^0.0.118"
+    "@aeriajs/builtins": "^0.0.190",
+    "@aeriajs/common": "^0.0.116",
+    "@aeriajs/entrypoint": "^0.0.119",
+    "@aeriajs/http": "^0.0.130",
+    "@aeriajs/security": "^0.0.190",
+    "@aeriajs/types": "^0.0.99",
+    "@aeriajs/validation": "^0.0.119"
   },
   "dependencies": {
     "mongodb": "^6.5.0",