@arikajs/authorization 0.0.4 → 0.0.5

package/dist/tests/Authorization.test.js

@@ -0,0 +1,236 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+const node_test_1 = require("node:test");
+const assert = __importStar(require("node:assert"));
+const src_1 = require("../src/index");
+class Post {
+    constructor(id, userId, title) {
+        this.id = id;
+        this.userId = userId;
+        this.title = title;
+    }
+}
+class PostPolicy {
+    before(user, ability) {
+        if (user.isSuperAdmin)
+            return true; // Super admin bypass
+        return null; // Continue to normal check
+    }
+    view(user, post) {
+        return true;
+    }
+    update(user, post) {
+        return user.id === post.userId;
+    }
+    delete(user, post) {
+        if (user.id !== post.userId) {
+            return src_1.AuthResponse.deny('You do not own this post.', 'POST_NOT_OWNED');
+        }
+        return src_1.AuthResponse.allow();
+    }
+}
+(0, node_test_1.describe)('Arika Authorization', () => {
+    const user = { id: 1, name: 'John', isAdmin: false, isSuperAdmin: false, roles: ['editor'], permissions: ['view-posts'] };
+    const adminUser = { id: 2, name: 'Admin', isAdmin: true, isSuperAdmin: false, roles: ['admin', 'editor'], permissions: ['view-posts', 'edit-posts', 'delete-posts'] };
+    const superAdmin = { id: 3, name: 'SuperAdmin', isSuperAdmin: true, roles: ['super-admin'], permissions: [] };
+    const post = new Post(1, 1, 'Test Post');
+    const otherPost = new Post(2, 2, 'Other Post');
+    (0, node_test_1.beforeEach)(() => {
+        src_1.Gate.reset();
+    });
+    (0, node_test_1.afterEach)(() => {
+        src_1.Gate.reset();
+    });
+    // ── Basic Gate Tests ────────────────────────────────────────────
+    (0, node_test_1.it)('defines and checks gates', async () => {
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        const canEdit = await src_1.Gate.forUser(user).allows('edit-post', post);
+        assert.strictEqual(canEdit, true);
+        const cannotEdit = await src_1.Gate.forUser(user).allows('edit-post', otherPost);
+        assert.strictEqual(cannotEdit, false);
+    });
+    (0, node_test_1.it)('denies unauthorized actions', async () => {
+        src_1.Gate.define('delete-post', (user) => user.isAdmin);
+        const denied = await src_1.Gate.forUser(user).denies('delete-post', post);
+        assert.strictEqual(denied, true);
+        const allowed = await src_1.Gate.forUser(adminUser).denies('delete-post', post);
+        assert.strictEqual(allowed, false);
+    });
+    // ── Policy Tests ────────────────────────────────────────────────
+    (0, node_test_1.it)('works with policies', async () => {
+        src_1.Gate.policy(Post, PostPolicy);
+        const canView = await src_1.Gate.forUser(user).allows('view', post);
+        assert.strictEqual(canView, true);
+        const canUpdate = await src_1.Gate.forUser(user).allows('update', post);
+        assert.strictEqual(canUpdate, true);
+        const cannotUpdate = await src_1.Gate.forUser(user).allows('update', otherPost);
+        assert.strictEqual(cannotUpdate, false);
+    });
+    // ── Feature 2: before() / after() Hooks ─────────────────────────
+    (0, node_test_1.it)('runs before() hook on policy for super admin bypass', async () => {
+        src_1.Gate.policy(Post, PostPolicy);
+        // SuperAdmin can update ANY post via before() returning true
+        const canUpdate = await src_1.Gate.forUser(superAdmin).allows('update', otherPost);
+        assert.strictEqual(canUpdate, true);
+        // Regular user cannot
+        const cannotUpdate = await src_1.Gate.forUser(user).allows('update', otherPost);
+        assert.strictEqual(cannotUpdate, false);
+    });
+    (0, node_test_1.it)('runs global before() hook', async () => {
+        src_1.Gate.before((user) => {
+            if (user.isSuperAdmin)
+                return true;
+            return null;
+        });
+        src_1.Gate.define('admin-only', (user) => user.isAdmin);
+        // Super admin bypasses everything
+        const allowed = await src_1.Gate.forUser(superAdmin).allows('admin-only');
+        assert.strictEqual(allowed, true);
+        // Regular user denied
+        const denied = await src_1.Gate.forUser(user).allows('admin-only');
+        assert.strictEqual(denied, false);
+    });
+    (0, node_test_1.it)('runs after() hook for auditing', async () => {
+        let auditLog = [];
+        src_1.Gate.after((user, ability, result) => {
+            auditLog.push({ ability, result });
+        });
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        await src_1.Gate.forUser(user).allows('edit-post', post);
+        await src_1.Gate.forUser(user).allows('edit-post', otherPost);
+        assert.strictEqual(auditLog.length, 2);
+        assert.strictEqual(auditLog[0].result, true);
+        assert.strictEqual(auditLog[1].result, false);
+    });
+    // ── Feature 3: Bulk Checks ──────────────────────────────────────
+    (0, node_test_1.it)('Gate.any() checks if user has any of the abilities', async () => {
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        src_1.Gate.define('delete-post', (user) => user.isAdmin);
+        const hasAny = await src_1.Gate.forUser(user).any(['edit-post', 'delete-post'], post);
+        assert.strictEqual(hasAny, true); // can edit-post
+        const hasNone = await src_1.Gate.forUser({ id: 999, isAdmin: false }).any(['edit-post', 'delete-post'], post);
+        assert.strictEqual(hasNone, false);
+    });
+    (0, node_test_1.it)('Gate.every() checks if user has all abilities', async () => {
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        src_1.Gate.define('publish-post', () => true);
+        const hasAll = await src_1.Gate.forUser(user).every(['edit-post', 'publish-post'], post);
+        assert.strictEqual(hasAll, true);
+        src_1.Gate.define('admin-only', (user) => user.isAdmin);
+        const notAll = await src_1.Gate.forUser(user).every(['edit-post', 'admin-only'], post);
+        assert.strictEqual(notAll, false);
+    });
+    (0, node_test_1.it)('Gate.none() checks that user has none of the abilities', async () => {
+        src_1.Gate.define('admin-only', (user) => user.isAdmin);
+        src_1.Gate.define('super-admin-only', (user) => user.isSuperAdmin);
+        const noneForUser = await src_1.Gate.forUser(user).none(['admin-only', 'super-admin-only']);
+        assert.strictEqual(noneForUser, true);
+        const noneForAdmin = await src_1.Gate.forUser(adminUser).none(['admin-only', 'super-admin-only']);
+        assert.strictEqual(noneForAdmin, false);
+    });
+    // ── Feature 4: Response-Based Authorization ─────────────────────
+    (0, node_test_1.it)('returns custom deny message via AuthResponse', async () => {
+        src_1.Gate.policy(Post, PostPolicy);
+        const response = await src_1.Gate.forUser(user).inspect('delete', otherPost);
+        assert.strictEqual(response.denied(), true);
+        assert.strictEqual(response.message(), 'You do not own this post.');
+        assert.strictEqual(response.code(), 'POST_NOT_OWNED');
+        const allowResponse = await src_1.Gate.forUser(user).inspect('delete', post);
+        assert.strictEqual(allowResponse.allowed(), true);
+    });
+    (0, node_test_1.it)('throws exception with custom message from AuthResponse', async () => {
+        src_1.Gate.policy(Post, PostPolicy);
+        await assert.rejects(async () => await src_1.Gate.forUser(user).authorize('delete', otherPost), (err) => {
+            assert.strictEqual(err.message, 'You do not own this post.');
+            assert.strictEqual(err.code, 'POST_NOT_OWNED');
+            return true;
+        });
+    });
+    // ── Feature 5: Request-Scoped Context ───────────────────────────
+    (0, node_test_1.it)('AuthorizationContext provides isolated per-request checks', async () => {
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        const ctx1 = new src_1.AuthorizationContext(user);
+        const ctx2 = new src_1.AuthorizationContext(adminUser);
+        const can1 = await ctx1.can('edit-post', post);
+        assert.strictEqual(can1, true);
+        const can2 = await ctx2.can('edit-post', post);
+        assert.strictEqual(can2, false); // adminUser.id !== post.userId
+    });
+    (0, node_test_1.it)('AuthorizationContext caches results within a request', async () => {
+        let callCount = 0;
+        src_1.Gate.define('counted-gate', (user) => {
+            callCount++;
+            return true;
+        });
+        const ctx = new src_1.AuthorizationContext(user);
+        await ctx.can('counted-gate');
+        await ctx.can('counted-gate'); // should be cached
+        assert.strictEqual(callCount, 1); // Only called once
+    });
+    // ── Feature 1: Role & Permission ────────────────────────────────
+    (0, node_test_1.it)('checks roles via RolePermissionMixin', () => {
+        assert.strictEqual(src_1.RolePermissionMixin.hasRole(user, 'editor'), true);
+        assert.strictEqual(src_1.RolePermissionMixin.hasRole(user, 'admin'), false);
+        assert.strictEqual(src_1.RolePermissionMixin.hasAnyRole(adminUser, ['admin', 'super-admin']), true);
+        assert.strictEqual(src_1.RolePermissionMixin.hasAllRoles(adminUser, ['admin', 'editor']), true);
+        assert.strictEqual(src_1.RolePermissionMixin.hasAllRoles(adminUser, ['admin', 'super-admin']), false);
+    });
+    (0, node_test_1.it)('checks permissions via RolePermissionMixin', () => {
+        assert.strictEqual(src_1.RolePermissionMixin.hasPermission(user, 'view-posts'), true);
+        assert.strictEqual(src_1.RolePermissionMixin.hasPermission(user, 'delete-posts'), false);
+        assert.strictEqual(src_1.RolePermissionMixin.hasAnyPermission(adminUser, ['edit-posts', 'nuke-server']), true);
+        assert.strictEqual(src_1.RolePermissionMixin.hasAllPermissions(adminUser, ['view-posts', 'edit-posts', 'delete-posts']), true);
+    });
+    (0, node_test_1.it)('checks roles/permissions via AuthorizationContext', () => {
+        const ctx = new src_1.AuthorizationContext(adminUser);
+        assert.strictEqual(ctx.hasRole('admin'), true);
+        assert.strictEqual(ctx.hasAnyRole(['admin', 'super-admin']), true);
+        assert.strictEqual(ctx.hasPermission('edit-posts'), true);
+        assert.strictEqual(ctx.hasAllPermissions(['view-posts', 'edit-posts']), true);
+    });
+    // ── AuthorizationManager ────────────────────────────────────────
+    (0, node_test_1.it)('AuthorizationManager delegates to context', async () => {
+        src_1.Gate.define('edit-post', (user, post) => user.id === post.userId);
+        const authz = new src_1.AuthorizationManager(user);
+        const can = await authz.can('edit-post', post);
+        assert.strictEqual(can, true);
+        const cannot = await authz.cannot('edit-post', otherPost);
+        assert.strictEqual(cannot, true);
+        assert.strictEqual(authz.hasRole('editor'), true);
+        assert.strictEqual(authz.hasPermission('view-posts'), true);
+    });
+});
+//# sourceMappingURL=Authorization.test.js.map

package/dist/tests/Authorization.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"Authorization.test.js","sourceRoot":"","sources":["../../tests/Authorization.test.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,yCAAgE;AAChE,oDAAsC;AACtC,gCAQgB;AAEhB,MAAM,IAAI;IACN,YAAmB,EAAU,EAAS,MAAc,EAAS,KAAa;QAAvD,OAAE,GAAF,EAAE,CAAQ;QAAS,WAAM,GAAN,MAAM,CAAQ;QAAS,UAAK,GAAL,KAAK,CAAQ;IAAI,CAAC;CAClF;AAED,MAAM,UAAU;IACZ,MAAM,CAAC,IAAS,EAAE,OAAe;QAC7B,IAAI,IAAI,CAAC,YAAY;YAAE,OAAO,IAAI,CAAC,CAAE,qBAAqB;QAC1D,OAAO,IAAI,CAAC,CAAC,2BAA2B;IAC5C,CAAC;IAED,IAAI,CAAC,IAAS,EAAE,IAAU;QACtB,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,MAAM,CAAC,IAAS,EAAE,IAAU;QACxB,OAAO,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC;IACnC,CAAC;IAED,MAAM,CAAC,IAAS,EAAE,IAAU;QACxB,IAAI,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,EAAE,CAAC;YAC1B,OAAO,kBAAY,CAAC,IAAI,CAAC,2BAA2B,EAAE,gBAAgB,CAAC,CAAC;QAC5E,CAAC;QACD,OAAO,kBAAY,CAAC,KAAK,EAAE,CAAC;IAChC,CAAC;CACJ;AAED,IAAA,oBAAQ,EAAC,qBAAqB,EAAE,GAAG,EAAE;IACjC,MAAM,IAAI,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,QAAQ,CAAC,EAAE,WAAW,EAAE,CAAC,YAAY,CAAC,EAAE,CAAC;IAC1H,MAAM,SAAS,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,WAAW,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,cAAc,CAAC,EAAE,CAAC;IACtK,MAAM,UAAU,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,YAAY,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,aAAa,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC;IAC9G,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC,CAAC,EAAE,CAAC,EAAE,WAAW,CAAC,CAAC;IACzC,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,CAAC,EAAE,CAAC,EAAE,YAAY,CAAC,CAAC;IAE/C,IAAA,sBAAU,EAAC,GAAG,EAAE;QACZ,UAAI,CAAC,KAAK,EAAE,CAAC;IACjB,CAAC,CAAC,CAAC;IAEH,IAAA,qBAAS,EAAC,GAAG,EAAE;QACX,UAAI,CAAC,KAAK,EAAE,CAAC;IACjB,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,0BAA0B,EAAE,KAAK,IAAI,EAAE;QACtC,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAElE,MAAM,OAAO,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAElC,MAAM,UAAU,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QAC3E,MAAM,CAAC,WAAW,CAAC,UAAU,EAAE,KAAK,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,6BAA6B,EAAE,KAAK,IAAI,EAAE;QACzC,UAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEnD,MAAM,MAAM,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;QACpE,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAEjC,MAAM,OAAO,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC;QAC1E,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,qBAAqB,EAAE,KAAK,IAAI,EAAE;QACjC,UAAI,CAAC,MAAM,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAE9B,MAAM,OAAO,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC9D,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAElC,MAAM,SAAS,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAClE,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;QAEpC,MAAM,YAAY,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAC1E,MAAM,CAAC,WAAW,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,qDAAqD,EAAE,KAAK,IAAI,EAAE;QACjE,UAAI,CAAC,MAAM,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAE9B,6DAA6D;QAC7D,MAAM,SAAS,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAC7E,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;QAEpC,sBAAsB;QACtB,MAAM,YAAY,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAC1E,MAAM,CAAC,WAAW,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,2BAA2B,EAAE,KAAK,IAAI,EAAE;QACvC,UAAI,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE;YACjB,IAAI,IAAI,CAAC,YAAY;gBAAE,OAAO,IAAI,CAAC;YACnC,OAAO,IAAI,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,UAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAElD,kCAAkC;QAClC,MAAM,OAAO,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QACpE,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QAElC,sBAAsB;QACtB,MAAM,MAAM,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAC7D,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,gCAAgC,EAAE,KAAK,IAAI,EAAE;QAC5C,IAAI,QAAQ,GAA2C,EAAE,CAAC;QAE1D,UAAI,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,EAAE;YACjC,QAAQ,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAElE,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QACnD,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QAExD,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QACvC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAC7C,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,oDAAoD,EAAE,KAAK,IAAI,EAAE;QAChE,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAClE,UAAI,CAAC,MAAM,CAAC,aAAa,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEnD,MAAM,MAAM,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,aAAa,CAAC,EAAE,IAAI,CAAC,CAAC;QAChF,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,CAAC,gBAAgB;QAElD,MAAM,OAAO,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,EAAE,EAAE,EAAE,GAAG,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,aAAa,CAAC,EAAE,IAAI,CAAC,CAAC;QACxG,MAAM,CAAC,WAAW,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IACvC,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;QAC3D,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAClE,UAAI,CAAC,MAAM,CAAC,cAAc,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;QAExC,MAAM,MAAM,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,cAAc,CAAC,EAAE,IAAI,CAAC,CAAC;QACnF,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAEjC,UAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,MAAM,MAAM,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;QACjF,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;QACpE,UAAI,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAClD,UAAI,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QAE7D,MAAM,WAAW,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,kBAAkB,CAAC,CAAC,CAAC;QACtF,MAAM,CAAC,WAAW,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QAEtC,MAAM,YAAY,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,kBAAkB,CAAC,CAAC,CAAC;QAC5F,MAAM,CAAC,WAAW,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,8CAA8C,EAAE,KAAK,IAAI,EAAE;QAC1D,UAAI,CAAC,MAAM,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAE9B,MAAM,QAAQ,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QACvE,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,IAAI,CAAC,CAAC;QAC5C,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,OAAO,EAAE,EAAE,2BAA2B,CAAC,CAAC;QACpE,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,IAAI,EAAE,EAAE,gBAAgB,CAAC,CAAC;QAEtD,MAAM,aAAa,GAAG,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QACvE,MAAM,CAAC,WAAW,CAAC,aAAa,CAAC,OAAO,EAAE,EAAE,IAAI,CAAC,CAAC;IACtD,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;QACpE,UAAI,CAAC,MAAM,CAAC,IAAI,EAAE,UAAU,CAAC,CAAC;QAE9B,MAAM,MAAM,CAAC,OAAO,CAChB,KAAK,IAAI,EAAE,CAAC,MAAM,UAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,QAAQ,EAAE,SAAS,CAAC,EACnE,CAAC,GAAQ,EAAE,EAAE;YACT,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,2BAA2B,CAAC,CAAC;YAC7D,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,IAAI,EAAE,gBAAgB,CAAC,CAAC;YAC/C,OAAO,IAAI,CAAC;QAChB,CAAC,CACJ,CAAC;IACN,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;QACvE,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAElE,MAAM,IAAI,GAAG,IAAI,0BAAoB,CAAC,IAAI,CAAC,CAAC;QAC5C,MAAM,IAAI,GAAG,IAAI,0BAAoB,CAAC,SAAS,CAAC,CAAC;QAEjD,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QAC/C,MAAM,CAAC,WAAW,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QAE/B,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QAC/C,MAAM,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC,CAAC,+BAA+B;IACpE,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QAClE,IAAI,SAAS,GAAG,CAAC,CAAC;QAClB,UAAI,CAAC,MAAM,CAAC,cAAc,EAAE,CAAC,IAAI,EAAE,EAAE;YACjC,SAAS,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC;QAChB,CAAC,CAAC,CAAC;QAEH,MAAM,GAAG,GAAG,IAAI,0BAAoB,CAAC,IAAI,CAAC,CAAC;QAE3C,MAAM,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;QAC9B,MAAM,GAAG,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,mBAAmB;QAElD,MAAM,CAAC,WAAW,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,CAAC,mBAAmB;IACzD,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,sCAAsC,EAAE,GAAG,EAAE;QAC5C,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,EAAE,IAAI,CAAC,CAAC;QACtE,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,OAAO,CAAC,IAAI,EAAE,OAAO,CAAC,EAAE,KAAK,CAAC,CAAC;QAEtE,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;QAC9F,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,WAAW,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;QAC1F,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,WAAW,CAAC,SAAS,EAAE,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;IACpG,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,4CAA4C,EAAE,GAAG,EAAE;QAClD,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,aAAa,CAAC,IAAI,EAAE,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;QAChF,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,aAAa,CAAC,IAAI,EAAE,cAAc,CAAC,EAAE,KAAK,CAAC,CAAC;QAEnF,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,gBAAgB,CAAC,SAAS,EAAE,CAAC,YAAY,EAAE,aAAa,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;QACzG,MAAM,CAAC,WAAW,CAAC,yBAAmB,CAAC,iBAAiB,CAAC,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,cAAc,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAC7H,CAAC,CAAC,CAAC;IAEH,IAAA,cAAE,EAAC,mDAAmD,EAAE,GAAG,EAAE;QACzD,MAAM,GAAG,GAAG,IAAI,0BAAoB,CAAC,SAAS,CAAC,CAAC;QAEhD,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,CAAC;QAC/C,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;QACnE,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,aAAa,CAAC,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;QAC1D,MAAM,CAAC,WAAW,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC;IAClF,CAAC,CAAC,CAAC;IAEH,mEAAmE;IAEnE,IAAA,cAAE,EAAC,2CAA2C,EAAE,KAAK,IAAI,EAAE;QACvD,UAAI,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,EAAE,KAAK,IAAI,CAAC,MAAM,CAAC,CAAC;QAElE,MAAM,KAAK,GAAG,IAAI,0BAAoB,CAAC,IAAI,CAAC,CAAC;QAE7C,MAAM,GAAG,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QAC/C,MAAM,CAAC,WAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE9B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,WAAW,EAAE,SAAS,CAAC,CAAC;QAC1D,MAAM,CAAC,WAAW,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;QAEjC,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,IAAI,CAAC,CAAC;QAClD,MAAM,CAAC,WAAW,CAAC,KAAK,CAAC,aAAa,CAAC,YAAY,CAAC,EAAE,IAAI,CAAC,CAAC;IAChE,CAAC,CAAC,CAAC;AACP,CAAC,CAAC,CAAC"}

package/package.json

@@ -1,44 +1,46 @@
 {
-    "name": "@arikajs/authorization",
-    "version": "0.0.4",
-    "description": "Authorization (access control) for the ArikaJS framework.",
-    "license": "MIT",
-    "main": "dist/index.js",
-    "types": "dist/index.d.ts",
-    "scripts": {
-        "build": "tsc -p tsconfig.json",
-        "build:tests": "tsc -p tsconfig.test.json",
-        "clean": "rm -rf dist",
-        "prepare": "echo skip",
-        "test": "npm run build && npm run build:tests && node scripts/fix-test-imports.js && node --test 'dist/tests/**/*.test.js'",
-        "test:watch": "npm run build && npm run build:tests && node --test --watch 'dist/tests/**/*.test.js'"
-    },
-    "files": [
-        "dist"
-    ],
-    "keywords": [
-        "arika",
-        "arika-js",
-        "framework",
-        "authorization",
-        "access-control",
-        "policy",
-        "gate"
-    ],
-    "engines": {
-        "node": ">=20.0.0"
-    },
-    "repository": {
-        "type": "git",
-        "url": "git+https://github.com/arikajs/authorization.git"
-    },
-    "bugs": {
-        "url": "https://github.com/arikajs/authorization/issues"
-    },
-    "homepage": "https://github.com/arikajs/authorization#readme",
-    "devDependencies": {
-        "@types/node": "^20.11.24",
-        "typescript": "^5.3.3"
-    },
-    "author": "Prakash Tank"
+  "name": "@arikajs/authorization",
+  "version": "0.0.5",
+  "description": "Authorization (access control) for the ArikaJS framework.",
+  "license": "MIT",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "scripts": {
+    "build": "tsc -p tsconfig.json",
+    "build:tests": "tsc -p tsconfig.test.json",
+    "clean": "rm -rf dist",
+    "prepare": "echo skip",
+    "test": "npm run build && npm run build:tests && node scripts/fix-test-imports.js && node --test 'dist/tests/**/*.test.js'",
+    "test:watch": "npm run build && npm run build:tests && node --test --watch 'dist/tests/**/*.test.js'",
+    "dev": "tsc -p tsconfig.json --watch"
+  },
+  "files": [
+    "dist"
+  ],
+  "keywords": [
+    "arika",
+    "arika-js",
+    "framework",
+    "authorization",
+    "access-control",
+    "policy",
+    "gate"
+  ],
+  "engines": {
+    "node": ">=20.0.0"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/ArikaJs/arikajs.git",
+    "directory": "packages/authorization"
+  },
+  "bugs": {
+    "url": "https://github.com/ArikaJs/arikajs/issues"
+  },
+  "homepage": "https://github.com/ArikaJs/arikajs/tree/main/packages/authorization#readme",
+  "devDependencies": {
+    "@types/node": "^20.11.24",
+    "typescript": "^5.3.3"
+  },
+  "author": "Prakash Tank"
 }