npm - @amaster.ai/client - Versions diffs - 1.1.0-beta.20 → 1.1.0-beta.22 - Mend

@amaster.ai/client 1.1.0-beta.20 → 1.1.0-beta.22

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/package.json +12 -12
package/types/auth/index.d.ts +107 -3
package/types/auth/user.d.ts +7 -1
package/types/auth/permissions.d.ts +0 -254

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@amaster.ai/client",
-  "version": "1.1.0-beta.20",
+  "version": "1.1.0-beta.22",
   "description": "Unified API client for Amaster platform - All services in one package",
   "type": "module",
   "main": "./dist/index.cjs",
@@ -72,17 +72,17 @@
     "registry": "https://registry.npmjs.org/"
   },
   "dependencies": {
-    "@amaster.ai/auth-client": "1.1.0-beta.20",
-    "@amaster.ai/asr-client": "1.1.0-beta.20",
-    "@amaster.ai/entity-client": "1.1.0-beta.20",
-    "@amaster.ai/http-client": "1.1.0-beta.20",
-    "@amaster.ai/asr-http-client": "1.1.0-beta.20",
-    "@amaster.ai/s3-client": "1.1.0-beta.20",
-    "@amaster.ai/function-client": "1.1.0-beta.20",
-    "@amaster.ai/tts-client": "1.1.0-beta.20",
-    "@amaster.ai/workflow-client": "1.1.0-beta.20",
-    "@amaster.ai/bpm-client": "1.1.0-beta.20",
-    "@amaster.ai/copilot-client": "1.1.0-beta.20"
+    "@amaster.ai/bpm-client": "1.1.0-beta.22",
+    "@amaster.ai/asr-client": "1.1.0-beta.22",
+    "@amaster.ai/copilot-client": "1.1.0-beta.22",
+    "@amaster.ai/http-client": "1.1.0-beta.22",
+    "@amaster.ai/auth-client": "1.1.0-beta.22",
+    "@amaster.ai/entity-client": "1.1.0-beta.22",
+    "@amaster.ai/s3-client": "1.1.0-beta.22",
+    "@amaster.ai/workflow-client": "1.1.0-beta.22",
+    "@amaster.ai/asr-http-client": "1.1.0-beta.22",
+    "@amaster.ai/tts-client": "1.1.0-beta.22",
+    "@amaster.ai/function-client": "1.1.0-beta.22"
   },
   "peerDependencies": {
     "axios": "^1.11.0"

package/types/auth/index.d.ts CHANGED Viewed

@@ -10,7 +10,6 @@
  * - `@amaster.ai/client/auth/password-auth` - Password login/register
  * - `@amaster.ai/client/auth/code-auth` - Verification code login
  * - `@amaster.ai/client/auth/oauth` - OAuth & social login
- * - `@amaster.ai/client/auth/permissions` - Permission checking helpers
  * - `@amaster.ai/client/auth/profile` - User profile management
  *
  * @example
@@ -23,7 +22,6 @@
  * Import specific types (recommended for AI):
  * ```typescript
  * import type { LoginParams, User } from '@amaster.ai/client/auth/password-auth';
- * import type { hasPermission } from '@amaster.ai/client/auth/permissions';
  * import type { OAuthProvider } from '@amaster.ai/client/auth/oauth';
  * ```
  *
@@ -37,7 +35,6 @@ export * from './user';
 export * from './password-auth';
 export * from './code-auth';
 export * from './oauth';
-export * from './permissions';
 export * from './profile';
 // Import for unified API
@@ -177,4 +174,111 @@ export interface AuthClientAPI
    * ```
    */
   refreshToken(): Promise<ClientResult<RefreshTokenResponse>>;
+  // ==================== Permission Checks ====================
+  /**
+   * Check if current user has a specific role (local check, fast)
+   *
+   * Works for both authenticated and anonymous users.
+   * Checks against locally cached user roles.
+   *
+   * @param roleCode - Role code to check (e.g., "admin", "user", "anonymous")
+   * @returns True if user has the role
+   *
+   * @example
+   * Check admin role:
+   * ```typescript
+   * if (client.auth.hasRole('admin')) {
+   *   showAdminPanel();
+   * }
+   * ```
+   *
+   * @example
+   * Check anonymous user:
+   * ```typescript
+   * if (client.auth.hasRole('anonymous')) {
+   *   showLoginPrompt();
+   * }
+   * ```
+   */
+  hasRole(roleCode: string): boolean;
+  /**
+   * Check if current user has a specific permission (local check, fast)
+   *
+   * Works for both authenticated and anonymous users.
+   * Checks against locally cached user permissions.
+   *
+   * @param resource - Resource name (e.g., "user", "order")
+   * @param action - Action name (e.g., "read", "write", "delete")
+   * @returns True if user has the permission
+   *
+   * @example
+   * Check permission for authenticated users:
+   * ```typescript
+   * if (client.auth.hasPermission('user', 'delete')) {
+   *   showDeleteButton();
+   * }
+   * ```
+   *
+   * @example
+   * Check permission for anonymous users:
+   * ```typescript
+   * // If backend configured anonymous role with article:read permission
+   * if (client.auth.hasPermission('article', 'read')) {
+   *   showArticleList();
+   * }
+   * ```
+   *
+   * @example
+   * Control UI elements:
+   * ```typescript
+   * const canEdit = client.auth.hasPermission('post', 'write');
+   * const canDelete = client.auth.hasPermission('post', 'delete');
+   *
+   * return (
+   *   <div>
+   *     {canEdit && <button>Edit</button>}
+   *     {canDelete && <button>Delete</button>}
+   *   </div>
+   * );
+   * ```
+   */
+  hasPermission(resource: string, action: string): boolean;
+  /**
+   * Check if current user is anonymous (not authenticated)
+   *
+   * Convenience method equivalent to `hasRole('anonymous')`.
+   * Returns true if user has the 'anonymous' role.
+   *
+   * @returns True if user is anonymous
+   *
+   * @example
+   * Show login prompt for anonymous users:
+   * ```typescript
+   * if (client.auth.isAnonymous()) {
+   *   showLoginButton();
+   *   showLimitedFeatures();
+   * } else {
+   *   showFullFeatures();
+   * }
+   * ```
+   *
+   * @example
+   * Conditional rendering:
+   * ```typescript
+   * return (
+   *   <div>
+   *     {client.auth.isAnonymous() ? (
+   *       <button onClick={handleLogin}>Login to continue</button>
+   *     ) : (
+   *       <UserDashboard />
+   *     )}
+   *   </div>
+   * );
+   * ```
+   */
+  isAnonymous(): boolean;
 }

package/types/auth/user.d.ts CHANGED Viewed

@@ -77,8 +77,14 @@ export interface User {
   phoneVerifiedAt: string | null;
   /**
-   * Role codes assigned to user
+   * Role codes assigned to user
+   *
+   * Includes system roles and custom roles:
+   * - System roles: "anonymous" (unauthenticated), "member" (default), "admin"
+   * - Custom roles: defined in app.settings.yml
+   *
    * @example ["admin", "user", "manager"]
+   * @example ["anonymous"] // For unauthenticated users
    */
   roles: string[];

package/types/auth/permissions.d.ts DELETED Viewed

@@ -1,254 +0,0 @@
-/**
- * ============================================================================
- * Permission Checking - Type Definitions & Helpers
- * ============================================================================
- *
- * Permission and role checking utilities:
- * - Type-safe permission checking
- * - Role validation
- * - Permission helpers
- *
- * @module auth/permissions
- */
-import type { User } from './user';
-/**
- * Permission check result
- */
-export interface PermissionCheckResult {
-  /** Whether the permission check passed */
-  granted: boolean;
-  /** Optional reason if denied */
-  reason?: string;
-}
-/**
- * Permission checking helpers
- *
- * @example
- * Check single permission:
- * ```typescript
- * import { hasPermission } from '@amaster.ai/client/auth/permissions';
- *
- * const user = await client.auth.getMe().then(r => r.data);
- *
- * if (hasPermission(user, 'user:delete')) {
- *   showDeleteButton();
- * }
- * ```
- *
- * @example
- * Check role:
- * ```typescript
- * import { hasRole } from '@amaster.ai/client/auth/permissions';
- *
- * if (hasRole(user, 'admin')) {
- *   showAdminPanel();
- * }
- * ```
- *
- * @example
- * Check any of multiple permissions:
- * ```typescript
- * import { hasAnyPermission } from '@amaster.ai/client/auth/permissions';
- *
- * if (hasAnyPermission(user, ['user:read', 'user:write', 'user:delete'])) {
- *   showUserManagement();
- * }
- * ```
- */
-export namespace PermissionHelpers {
-  /**
-   * Check if user has a specific permission
-   *
-   * @param user - User object with permissions
-   * @param permission - Permission to check (format: "resource:action")
-   * @returns True if user has the permission
-   *
-   * @example
-   * ```typescript
-   * const canDelete = hasPermission(user, 'user:delete');
-   * const canRead = hasPermission(user, 'order:read');
-   * ```
-   */
-  export function hasPermission(user: User | null | undefined, permission: string): boolean;
-  /**
-   * Check if user has a specific role
-   *
-   * @param user - User object with roles
-   * @param role - Role code to check
-   * @returns True if user has the role
-   *
-   * @example
-   * ```typescript
-   * const isAdmin = hasRole(user, 'admin');
-   * const isManager = hasRole(user, 'manager');
-   * ```
-   */
-  export function hasRole(user: User | null | undefined, role: string): boolean;
-  /**
-   * Check if user has ANY of the specified permissions
-   *
-   * @param user - User object with permissions
-   * @param permissions - Array of permissions to check
-   * @returns True if user has at least one permission
-   *
-   * @example
-   * ```typescript
-   * // User can access if they have ANY of these permissions
-   * const canAccessUsers = hasAnyPermission(user, [
-   *   'user:read',
-   *   'user:write',
-   *   'user:delete'
-   * ]);
-   * ```
-   */
-  export function hasAnyPermission(user: User | null | undefined, permissions: string[]): boolean;
-  /**
-   * Check if user has ALL of the specified permissions
-   *
-   * @param user - User object with permissions
-   * @param permissions - Array of permissions to check
-   * @returns True if user has all permissions
-   *
-   * @example
-   * ```typescript
-   * // User needs ALL of these permissions
-   * const canManageUsers = hasAllPermissions(user, [
-   *   'user:read',
-   *   'user:write',
-   *   'user:delete'
-   * ]);
-   * ```
-   */
-  export function hasAllPermissions(user: User | null | undefined, permissions: string[]): boolean;
-  /**
-   * Check if user has ANY of the specified roles
-   *
-   * @param user - User object with roles
-   * @param roles - Array of role codes to check
-   * @returns True if user has at least one role
-   *
-   * @example
-   * ```typescript
-   * const isStaff = hasAnyRole(user, ['admin', 'moderator', 'support']);
-   * ```
-   */
-  export function hasAnyRole(user: User | null | undefined, roles: string[]): boolean;
-  /**
-   * Check if user has ALL of the specified roles
-   *
-   * @param user - User object with roles
-   * @param roles - Array of role codes to check
-   * @returns True if user has all roles
-   *
-   * @example
-   * ```typescript
-   * const isSuperAdmin = hasAllRoles(user, ['admin', 'superuser']);
-   * ```
-   */
-  export function hasAllRoles(user: User | null | undefined, roles: string[]): boolean;
-}
-/**
- * Re-export helpers as individual functions for convenience
- *
- * @example
- * ```typescript
- * import { hasPermission, hasRole } from '@amaster.ai/client/auth/permissions';
- *
- * const canDelete = hasPermission(user, 'user:delete');
- * const isAdmin = hasRole(user, 'admin');
- * ```
- */
-/**
- * Check if user has a specific permission
- *
- * @param user - User object with permissions
- * @param permission - Permission to check (format: "resource:action")
- * @returns True if user has the permission
- *
- * @example
- * ```typescript
- * const canDelete = hasPermission(user, 'user:delete');
- * ```
- */
-export declare function hasPermission(user: User | null | undefined, permission: string): boolean;
-/**
- * Check if user has a specific role
- *
- * @param user - User object with roles
- * @param role - Role code to check
- * @returns True if user has the role
- *
- * @example
- * ```typescript
- * const isAdmin = hasRole(user, 'admin');
- * ```
- */
-export declare function hasRole(user: User | null | undefined, role: string): boolean;
-/**
- * Check if user has ANY of the specified permissions
- *
- * @param user - User object with permissions
- * @param permissions - Array of permissions to check
- * @returns True if user has at least one permission
- *
- * @example
- * ```typescript
- * const canAccessUsers = hasAnyPermission(user, ['user:read', 'user:write']);
- * ```
- */
-export declare function hasAnyPermission(user: User | null | undefined, permissions: string[]): boolean;
-/**
- * Check if user has ALL of the specified permissions
- *
- * @param user - User object with permissions
- * @param permissions - Array of permissions to check
- * @returns True if user has all permissions
- *
- * @example
- * ```typescript
- * const canManageUsers = hasAllPermissions(user, ['user:read', 'user:write', 'user:delete']);
- * ```
- */
-export declare function hasAllPermissions(user: User | null | undefined, permissions: string[]): boolean;
-/**
- * Check if user has ANY of the specified roles
- *
- * @param user - User object with roles
- * @param roles - Array of role codes to check
- * @returns True if user has at least one role
- *
- * @example
- * ```typescript
- * const isStaff = hasAnyRole(user, ['admin', 'moderator']);
- * ```
- */
-export declare function hasAnyRole(user: User | null | undefined, roles: string[]): boolean;
-/**
- * Check if user has ALL of the specified roles
- *
- * @param user - User object with roles
- * @param roles - Array of role codes to check
- * @returns True if user has all roles
- *
- * @example
- * ```typescript
- * const isSuperAdmin = hasAllRoles(user, ['admin', 'superuser']);
- * ```
- */
-export declare function hasAllRoles(user: User | null | undefined, roles: string[]): boolean;