@atls/nestjs-keto 0.0.5 → 0.0.7

package/dist/decorators/get-guarding-relation.helper.d.ts

@@ -0,0 +1,2 @@
+import { GetGuardingRelationTuple } from './guarded-by-keto.interfaces.js';
+export declare const getGuardingRelationTuple: GetGuardingRelationTuple;

package/dist/decorators/get-guarding-relation.helper.js

@@ -0,0 +1,2 @@
+import { GUARDED_BY_METADATA_KEY } from './guarded-by-keto.constants.js';
+export const getGuardingRelationTuple = (reflector, handler) => reflector.get(GUARDED_BY_METADATA_KEY, handler) ?? null;

package/dist/decorators/guarded-by-keto.constants.d.ts

@@ -0,0 +1 @@
+export declare const GUARDED_BY_METADATA_KEY: unique symbol;

package/dist/decorators/guarded-by-keto.constants.js

@@ -0,0 +1 @@
+export const GUARDED_BY_METADATA_KEY = Symbol('GuardedByKeto');

package/dist/decorators/guarded-by-keto.decorator.d.ts

@@ -0,0 +1,2 @@
+import { GuardedByKetoFunction } from './guarded-by-keto.interfaces.js';
+export declare const GuardedByKeto: GuardedByKetoFunction;

package/dist/decorators/guarded-by-keto.decorator.js

@@ -0,0 +1,3 @@
+import { SetMetadata } from '@nestjs/common';
+import { GUARDED_BY_METADATA_KEY } from './guarded-by-keto.constants.js';
+export const GuardedByKeto = (relationTuple) => SetMetadata(GUARDED_BY_METADATA_KEY, relationTuple);

package/dist/decorators/guarded-by-keto.interfaces.d.ts

@@ -0,0 +1,5 @@
+import { CustomDecorator } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export type GetGuardingRelationTuple = (reflector: Reflector, handler: Parameters<Reflector['get']>[1]) => string | ReplaceGenerator;
+export type ReplaceGenerator = (value: string) => string;
+export type GuardedByKetoFunction = (relationTuple: string | ReplaceGenerator) => CustomDecorator<symbol>;

package/dist/decorators/guarded-by-keto.interfaces.js

@@ -0,0 +1 @@
+export {};

package/dist/decorators/index.d.ts

@@ -1 +1,5 @@
-export * from './access-policy.decorator';
+export * from './guarded-by-keto.decorator.js';
+export { GuardedByKetoFunction } from './guarded-by-keto.interfaces.js';
+export { GetGuardingRelationTuple } from './guarded-by-keto.interfaces.js';
+export { GUARDED_BY_METADATA_KEY } from './guarded-by-keto.constants.js';
+export { getGuardingRelationTuple } from './get-guarding-relation.helper.js';

package/dist/decorators/index.js

@@ -1,17 +1,3 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./access-policy.decorator"), exports);
+export * from "./guarded-by-keto.decorator.js";
+export { GUARDED_BY_METADATA_KEY } from "./guarded-by-keto.constants.js";
+export { getGuardingRelationTuple } from "./get-guarding-relation.helper.js";

package/dist/exceptions/exception-message.constants.d.ts

@@ -0,0 +1,4 @@
+export declare enum KetoExceptionMessage {
+    GENERAL_ERROR = "General Keto error",
+    RELATION_TUPLE_INVALID = "Provided relation tuple is invalid"
+}

package/dist/exceptions/exception-message.constants.js

@@ -0,0 +1,5 @@
+export var KetoExceptionMessage;
+(function (KetoExceptionMessage) {
+    KetoExceptionMessage["GENERAL_ERROR"] = "General Keto error";
+    KetoExceptionMessage["RELATION_TUPLE_INVALID"] = "Provided relation tuple is invalid";
+})(KetoExceptionMessage || (KetoExceptionMessage = {}));

package/dist/exceptions/general.exception.d.ts

@@ -0,0 +1,5 @@
+/// <reference types="node" resolution-mode="require"/>
+import { AssertionError } from 'node:assert';
+export declare class KetoGeneralException extends AssertionError {
+    constructor(message: string);
+}

package/dist/exceptions/general.exception.js

@@ -0,0 +1,7 @@
+import { AssertionError } from 'node:assert';
+import { KetoExceptionMessage } from './exception-message.constants.js';
+export class KetoGeneralException extends AssertionError {
+    constructor(message) {
+        super({ message: `${KetoExceptionMessage.GENERAL_ERROR}: ${message}` });
+    }
+}

package/dist/exceptions/index.d.ts

@@ -0,0 +1,2 @@
+export * from './general.exception.js';
+export * from './relation-tuple-invalid.exception.js';

package/dist/exceptions/index.js

@@ -0,0 +1,2 @@
+export * from "./general.exception.js";
+export * from "./relation-tuple-invalid.exception.js";

package/dist/exceptions/relation-tuple-invalid.exception.d.ts

@@ -0,0 +1,5 @@
+/// <reference types="node" resolution-mode="require"/>
+import { AssertionError } from 'node:assert';
+export declare class KetoRelationTupleInvalidException extends AssertionError {
+    constructor();
+}

package/dist/exceptions/relation-tuple-invalid.exception.js

@@ -0,0 +1,7 @@
+import { AssertionError } from 'node:assert';
+import { KetoExceptionMessage } from './exception-message.constants.js';
+export class KetoRelationTupleInvalidException extends AssertionError {
+    constructor() {
+        super({ message: `${KetoExceptionMessage.RELATION_TUPLE_INVALID}` });
+    }
+}

package/dist/guards/index.d.ts

@@ -1 +1 @@
-export * from './keto-access-control.guard';
+export * from './keto.guard.js';

package/dist/guards/index.js

@@ -1,17 +1 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./keto-access-control.guard"), exports);
+export * from "./keto.guard.js";

package/dist/guards/keto.guard.d.ts

@@ -0,0 +1,11 @@
+import { ExecutionContext } from '@nestjs/common';
+import { CanActivate } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { KetoReadClientService } from '../services/index.js';
+export declare class KetoGuard implements CanActivate {
+    private readonly reflector;
+    private readonly ketoReadClient;
+    constructor(reflector: Reflector, ketoReadClient: KetoReadClientService);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private getUserId;
+}

package/dist/guards/keto.guard.js

@@ -0,0 +1,64 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { GqlExecutionContext } from '@nestjs/graphql';
+import { KetoGeneralException } from '../exceptions/index.js';
+import { KETO_READ_CLIENT } from '../module/index.js';
+import { KetoReadClientService } from '../services/index.js';
+import { RelationTupleConverter } from '../utils/index.js';
+import { getGuardingRelationTuple } from '../decorators/index.js';
+let KetoGuard = class KetoGuard {
+    reflector;
+    ketoReadClient;
+    constructor(reflector, ketoReadClient) {
+        this.reflector = reflector;
+        this.ketoReadClient = ketoReadClient;
+    }
+    async canActivate(context) {
+        try {
+            const userId = this.getUserId(context);
+            if (!userId)
+                return false;
+            const relationTuple = getGuardingRelationTuple(this.reflector, context.getHandler());
+            if (relationTuple === null)
+                return false;
+            const converter = new RelationTupleConverter(relationTuple, userId);
+            const tuple = converter.run();
+            return await this.ketoReadClient.validateRelationTuple(tuple);
+        }
+        catch (err) {
+            throw new KetoGeneralException(err.toString());
+        }
+    }
+    getUserId(ctx) {
+        const contextType = ctx.getType();
+        let metadata;
+        switch (contextType) {
+            case 'graphql':
+                metadata = GqlExecutionContext.create(ctx).getContext();
+                return metadata.user;
+            default:
+                metadata = ctx.switchToHttp().getRequest();
+                return metadata.get('x_user') ?? metadata.get('x-user');
+        }
+    }
+};
+KetoGuard = __decorate([
+    Injectable(),
+    __param(1, Inject(KETO_READ_CLIENT)),
+    __metadata("design:paramtypes", [Reflector,
+        KetoReadClientService])
+], KetoGuard);
+export { KetoGuard };

package/dist/index.d.ts

@@ -1,5 +1,5 @@
-export * from './keto.module';
-export * from './constants';
-export * from './decorators';
-export * from './services';
-export * from './guards';
+export * from './module/index.js';
+export * from '@ory/keto-client';
+export * from './guards/index.js';
+export * from './decorators/index.js';
+export * from './utils/index.js';

package/dist/index.js

@@ -1,21 +1,5 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./keto.module"), exports);
-__exportStar(require("./constants"), exports);
-__exportStar(require("./decorators"), exports);
-__exportStar(require("./services"), exports);
-__exportStar(require("./guards"), exports);
+export * from "./module/index.js";
+export * from "@ory/keto-client";
+export * from "./guards/index.js";
+export * from "./decorators/index.js";
+export * from "./utils/index.js";

package/dist/module/index.d.ts

@@ -0,0 +1,3 @@
+export * from './keto.module.js';
+export * from './keto.constants.js';
+export * from './keto-module.interfaces.js';

package/dist/module/index.js

@@ -0,0 +1,3 @@
+export * from "./keto.module.js";
+export * from "./keto.constants.js";
+export * from "./keto-module.interfaces.js";

package/dist/module/keto-module.interfaces.d.ts

@@ -0,0 +1,30 @@
+import { Type } from '@nestjs/common/interfaces';
+import { ModuleMetadata } from '@nestjs/common/interfaces';
+import { ConfigurationParameters } from '@ory/keto-client';
+import { SubjectSet } from '@ory/keto-client';
+export interface KetoModuleOptions extends ConfigurationParameters {
+    global?: boolean;
+}
+export interface KetoOptionsFactory {
+    createKetoOptions(): Promise<KetoModuleOptions> | KetoModuleOptions;
+}
+export interface KetoModuleAsyncOptions extends Pick<ModuleMetadata, 'imports'> {
+    useExisting?: Type<KetoOptionsFactory>;
+    useClass?: Type<KetoOptionsFactory>;
+    useFactory?: (...args: any[]) => Promise<KetoModuleOptions> | KetoModuleOptions;
+    inject?: any[];
+    global?: boolean;
+}
+export type RelationShipTuple = RelationShipTupleWithId | RelationShipTupleWithSet;
+export type RelationShipTupleWithId = {
+    namespace: string;
+    object: string;
+    relation: string;
+    subject_id: string;
+};
+export type RelationShipTupleWithSet = {
+    namespace: string;
+    object: string;
+    relation: string;
+    subject_set: SubjectSet;
+};

package/dist/module/keto-module.interfaces.js

@@ -0,0 +1 @@
+export {};

package/dist/module/keto.constants.d.ts

@@ -0,0 +1,5 @@
+export declare const KETO_MODULE_CONFIGURATION = "KETO_MODULE_CONFIGURATION";
+export declare const KETO_READ_CLIENT = "KETO_READ_CLIENT";
+export declare const KETO_PERMISSIONS = "KETO_PERMISSIONS";
+export declare const KETO_WRITE_CLIENT = "KETO_WRITE_CLIENT";
+export declare const KETO_RELATIONS = "KETO_RELATIONS";

package/dist/module/keto.constants.js

@@ -0,0 +1,5 @@
+export const KETO_MODULE_CONFIGURATION = 'KETO_MODULE_CONFIGURATION';
+export const KETO_READ_CLIENT = 'KETO_READ_CLIENT';
+export const KETO_PERMISSIONS = 'KETO_PERMISSIONS';
+export const KETO_WRITE_CLIENT = 'KETO_WRITE_CLIENT';
+export const KETO_RELATIONS = 'KETO_RELATIONS';

package/dist/module/keto.module.d.ts

@@ -0,0 +1,9 @@
+import { DynamicModule } from '@nestjs/common';
+import { KetoModuleAsyncOptions } from './keto-module.interfaces.js';
+import { KetoModuleOptions } from './keto-module.interfaces.js';
+export declare class KetoModule {
+    static register(options: KetoModuleOptions): DynamicModule;
+    static registerAsync(options: KetoModuleAsyncOptions): DynamicModule;
+    private static createAsyncProviders;
+    private static createAsyncOptionsProvider;
+}

package/dist/module/keto.module.js

@@ -0,0 +1,63 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var KetoModule_1;
+import { Module } from '@nestjs/common';
+import { KETO_MODULE_CONFIGURATION } from './keto.constants.js';
+import { createKetoExportsProvider } from './keto.providers.js';
+import { createKetoConfigurationProvider } from './keto.providers.js';
+let KetoModule = KetoModule_1 = class KetoModule {
+    static register(options) {
+        const optionsProvider = createKetoConfigurationProvider(options);
+        const exportsProvider = createKetoExportsProvider();
+        return {
+            global: options?.global ?? true,
+            module: KetoModule_1,
+            providers: [...optionsProvider, ...exportsProvider],
+            exports: exportsProvider,
+        };
+    }
+    static registerAsync(options) {
+        const exportsProvider = createKetoExportsProvider();
+        return {
+            global: options?.global ?? true,
+            module: KetoModule_1,
+            imports: options.imports || [],
+            providers: [...this.createAsyncProviders(options), ...exportsProvider],
+            exports: exportsProvider,
+        };
+    }
+    static createAsyncProviders(options) {
+        if (options.useExisting || options.useFactory) {
+            return [this.createAsyncOptionsProvider(options)];
+        }
+        return [
+            this.createAsyncOptionsProvider(options),
+            {
+                provide: options.useClass,
+                useClass: options.useClass,
+            },
+        ];
+    }
+    static createAsyncOptionsProvider(options) {
+        if (options.useFactory) {
+            return {
+                provide: KETO_MODULE_CONFIGURATION,
+                useFactory: options.useFactory,
+                inject: options.inject || [],
+            };
+        }
+        return {
+            provide: KETO_MODULE_CONFIGURATION,
+            useFactory: (optionsFactory) => optionsFactory.createKetoOptions(),
+            inject: [options.useExisting || options.useClass],
+        };
+    }
+};
+KetoModule = KetoModule_1 = __decorate([
+    Module({})
+], KetoModule);
+export { KetoModule };

package/dist/module/keto.providers.d.ts

@@ -0,0 +1,4 @@
+import { Provider } from '@nestjs/common';
+import { KetoModuleOptions } from './keto-module.interfaces.js';
+export declare const createKetoConfigurationProvider: (options: KetoModuleOptions) => Provider[];
+export declare const createKetoExportsProvider: () => Provider[];

package/dist/module/keto.providers.js

@@ -0,0 +1,38 @@
+import { KetoConfigurationService } from '../services/index.js';
+import { KetoPermissionsService } from '../services/index.js';
+import { KetoWriteClientService } from '../services/index.js';
+import { KetoReadClientService } from '../services/index.js';
+import { KetoRelationsService } from '../services/index.js';
+import { KETO_RELATIONS } from './keto.constants.js';
+import { KETO_PERMISSIONS } from './keto.constants.js';
+import { KETO_WRITE_CLIENT } from './keto.constants.js';
+import { KETO_READ_CLIENT } from './keto.constants.js';
+import { KETO_MODULE_CONFIGURATION } from './keto.constants.js';
+export const createKetoConfigurationProvider = (options) => [
+    {
+        provide: KETO_MODULE_CONFIGURATION,
+        useFactory: () => new KetoConfigurationService(options),
+    },
+];
+export const createKetoExportsProvider = () => [
+    {
+        provide: KETO_PERMISSIONS,
+        useFactory: (options) => new KetoPermissionsService(options),
+        inject: [KETO_MODULE_CONFIGURATION],
+    },
+    {
+        provide: KETO_RELATIONS,
+        useFactory: (options) => new KetoRelationsService(options),
+        inject: [KETO_MODULE_CONFIGURATION],
+    },
+    {
+        provide: KETO_READ_CLIENT,
+        useFactory: (permissionsService) => new KetoReadClientService(permissionsService),
+        inject: [KETO_PERMISSIONS],
+    },
+    {
+        provide: KETO_WRITE_CLIENT,
+        useFactory: (relationshipsService) => new KetoWriteClientService(relationshipsService),
+        inject: [KETO_RELATIONS],
+    },
+];

package/dist/services/index.d.ts

@@ -1 +1,5 @@
-export * from './resource.service';
+export * from './keto-read-client.service.js';
+export * from './keto-write-client.service.js';
+export * from './keto-configuration.service.js';
+export * from './keto-permissions.service.js';
+export * from './keto-relations.service.js';

package/dist/services/index.js

@@ -1,17 +1,5 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-__exportStar(require("./resource.service"), exports);
+export * from "./keto-read-client.service.js";
+export * from "./keto-write-client.service.js";
+export * from "./keto-configuration.service.js";
+export * from "./keto-permissions.service.js";
+export * from "./keto-relations.service.js";

package/dist/services/keto-configuration.service.d.ts

@@ -0,0 +1,6 @@
+import { ConfigurationParameters } from '@ory/keto-client';
+import { Configuration } from '@ory/keto-client';
+export declare class KetoConfigurationService extends Configuration {
+    private readonly options;
+    constructor(options: ConfigurationParameters);
+}

package/dist/services/keto-configuration.service.js

@@ -0,0 +1,29 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { Configuration } from '@ory/keto-client';
+import { KETO_MODULE_CONFIGURATION } from '../module/index.js';
+let KetoConfigurationService = class KetoConfigurationService extends Configuration {
+    options;
+    constructor(options) {
+        super(options);
+        this.options = options;
+    }
+};
+KetoConfigurationService = __decorate([
+    Injectable(),
+    __param(0, Inject(KETO_MODULE_CONFIGURATION)),
+    __metadata("design:paramtypes", [Object])
+], KetoConfigurationService);
+export { KetoConfigurationService };

package/dist/services/keto-permissions.service.d.ts

@@ -0,0 +1,6 @@
+import { PermissionApi } from '@ory/keto-client';
+import { KetoConfigurationService } from './keto-configuration.service.js';
+export declare class KetoPermissionsService extends PermissionApi {
+    readonly configuration: KetoConfigurationService;
+    constructor(configuration: KetoConfigurationService);
+}

package/dist/services/keto-permissions.service.js

@@ -0,0 +1,30 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { PermissionApi } from '@ory/keto-client';
+import { KETO_MODULE_CONFIGURATION } from '../module/index.js';
+import { KetoConfigurationService } from './keto-configuration.service.js';
+let KetoPermissionsService = class KetoPermissionsService extends PermissionApi {
+    configuration;
+    constructor(configuration) {
+        super(configuration);
+        this.configuration = configuration;
+    }
+};
+KetoPermissionsService = __decorate([
+    Injectable(),
+    __param(0, Inject(KETO_MODULE_CONFIGURATION)),
+    __metadata("design:paramtypes", [KetoConfigurationService])
+], KetoPermissionsService);
+export { KetoPermissionsService };

package/dist/services/keto-read-client.service.d.ts

@@ -0,0 +1,7 @@
+import { RelationShipTuple } from '../module/index.js';
+import { KetoPermissionsService } from './keto-permissions.service.js';
+export declare class KetoReadClientService {
+    private readonly permissionService;
+    constructor(permissionService: KetoPermissionsService);
+    validateRelationTuple(request: RelationShipTuple): Promise<boolean>;
+}

package/dist/services/keto-read-client.service.js

@@ -0,0 +1,59 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { KetoGeneralException } from '../exceptions/index.js';
+import { KETO_PERMISSIONS } from '../module/index.js';
+import { KetoPermissionsService } from './keto-permissions.service.js';
+let KetoReadClientService = class KetoReadClientService {
+    permissionService;
+    constructor(permissionService) {
+        this.permissionService = permissionService;
+    }
+    async validateRelationTuple(request) {
+        try {
+            let data;
+            if (request.subject_id !== undefined) {
+                const req = request;
+                data = {
+                    relation: req.relation,
+                    object: req.object,
+                    namespace: req.namespace,
+                    subjectId: req.subject_id,
+                };
+            }
+            else {
+                const req = request;
+                data = {
+                    relation: req.relation,
+                    object: req.object,
+                    namespace: req.namespace,
+                    subjectSetNamespace: req.subject_set.namespace,
+                    subjectSetObject: req.subject_set.object,
+                    subjectSetRelation: req.subject_set.relation,
+                };
+            }
+            const response = await this.permissionService.checkPermissionOrError(data);
+            return response.data.allowed;
+        }
+        catch (error) {
+            throw new KetoGeneralException(error.toString());
+        }
+    }
+};
+KetoReadClientService = __decorate([
+    Injectable(),
+    __param(0, Inject(KETO_PERMISSIONS)),
+    __metadata("design:paramtypes", [KetoPermissionsService])
+], KetoReadClientService);
+export { KetoReadClientService };

package/dist/services/keto-relations.service.d.ts

@@ -0,0 +1,6 @@
+import { RelationshipApi } from '@ory/keto-client';
+import { Configuration } from '@ory/keto-client';
+export declare class KetoRelationsService extends RelationshipApi {
+    private readonly options;
+    constructor(options: Configuration);
+}

package/dist/services/keto-relations.service.js

@@ -0,0 +1,30 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { RelationshipApi } from '@ory/keto-client';
+import { Configuration } from '@ory/keto-client';
+import { KETO_MODULE_CONFIGURATION } from '../module/index.js';
+let KetoRelationsService = class KetoRelationsService extends RelationshipApi {
+    options;
+    constructor(options) {
+        super(options);
+        this.options = options;
+    }
+};
+KetoRelationsService = __decorate([
+    Injectable(),
+    __param(0, Inject(KETO_MODULE_CONFIGURATION)),
+    __metadata("design:paramtypes", [Configuration])
+], KetoRelationsService);
+export { KetoRelationsService };

package/dist/services/keto-write-client.service.d.ts

@@ -0,0 +1,11 @@
+import { RelationshipPatchActionEnum } from '@ory/keto-client';
+import { Relationship } from '@ory/keto-client';
+import { RelationShipTuple } from '../module/index.js';
+import { KetoRelationsService } from './keto-relations.service.js';
+export declare class KetoWriteClientService {
+    private readonly relationsService;
+    constructor(relationsService: KetoRelationsService);
+    addRelationTuple(tuple: RelationShipTuple): Promise<Relationship>;
+    removeRelationTuple(tuple: RelationShipTuple): Promise<boolean>;
+    patchRelationTuple(tuple: RelationShipTuple, action: RelationshipPatchActionEnum): Promise<boolean>;
+}

package/dist/services/keto-write-client.service.js

@@ -0,0 +1,68 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { Inject } from '@nestjs/common';
+import { Injectable } from '@nestjs/common';
+import { KetoGeneralException } from '../exceptions/index.js';
+import { KETO_RELATIONS } from '../module/index.js';
+import { KetoRelationsService } from './keto-relations.service.js';
+let KetoWriteClientService = class KetoWriteClientService {
+    relationsService;
+    constructor(relationsService) {
+        this.relationsService = relationsService;
+    }
+    async addRelationTuple(tuple) {
+        try {
+            const data = {
+                createRelationshipBody: tuple,
+            };
+            const response = await this.relationsService.createRelationship(data);
+            return response.data;
+        }
+        catch (error) {
+            throw new KetoGeneralException(error.toString());
+        }
+    }
+    async removeRelationTuple(tuple) {
+        try {
+            const data = tuple;
+            await this.relationsService.deleteRelationships(data);
+            return true;
+        }
+        catch (error) {
+            throw new KetoGeneralException(error.toString());
+        }
+    }
+    async patchRelationTuple(tuple, action) {
+        try {
+            const data = {
+                relationshipPatch: [
+                    {
+                        action,
+                        relation_tuple: tuple,
+                    },
+                ],
+            };
+            await this.relationsService.patchRelationships(data);
+            return true;
+        }
+        catch (error) {
+            throw new KetoGeneralException(error.toString());
+        }
+    }
+};
+KetoWriteClientService = __decorate([
+    Injectable(),
+    __param(0, Inject(KETO_RELATIONS)),
+    __metadata("design:paramtypes", [KetoRelationsService])
+], KetoWriteClientService);
+export { KetoWriteClientService };

package/dist/utils/index.d.ts

@@ -0,0 +1 @@
+export * from './relation-tuple-converter.js';

package/dist/utils/index.js

@@ -0,0 +1 @@
+export * from "./relation-tuple-converter.js";

package/dist/utils/relation-tuple-converter.d.ts

@@ -0,0 +1,19 @@
+import { RelationShipTuple } from '../module/index.js';
+type Tuple = string | ((...args: string[]) => string);
+export declare class RelationTupleConverter {
+    private readonly tuple;
+    private readonly replacement;
+    private tupleString;
+    private result;
+    constructor(tuple: Tuple, replacement?: string);
+    private get subjectId();
+    run(): RelationShipTuple;
+    private convertToString;
+    private isTupleCorrect;
+    private getNamespace;
+    private getObject;
+    private getRelation;
+    private getSubjectSet;
+    private isSubjectSet;
+}
+export {};

package/dist/utils/relation-tuple-converter.js

@@ -0,0 +1,88 @@
+import { KetoRelationTupleInvalidException } from '../exceptions/index.js';
+export class RelationTupleConverter {
+    tuple;
+    replacement;
+    tupleString;
+    result;
+    constructor(tuple, replacement = '') {
+        this.tuple = tuple;
+        this.replacement = replacement;
+        this.convertToString();
+    }
+    get subjectId() {
+        return this.tupleString;
+    }
+    run() {
+        if (!this.isTupleCorrect()) {
+            throw new KetoRelationTupleInvalidException();
+        }
+        const namespace = this.getNamespace();
+        const object = this.getObject();
+        const relation = this.getRelation();
+        if (this.isSubjectSet()) {
+            const subjectSet = this.getSubjectSet();
+            this.result = this.result;
+            this.result = {
+                namespace,
+                object,
+                relation,
+                subject_set: subjectSet,
+            };
+        }
+        else {
+            const { subjectId } = this;
+            this.result = this.result;
+            this.result = {
+                namespace,
+                object,
+                relation,
+                subject_id: subjectId,
+            };
+        }
+        return this.result;
+    }
+    convertToString() {
+        if (typeof this.tuple === 'string') {
+            this.tupleString = this.tuple;
+        }
+        else {
+            this.tupleString = this.tuple(this.replacement);
+        }
+    }
+    isTupleCorrect() {
+        const regex = /^\w+:\w+#\w+@[\w\W]+/i;
+        return regex.test(this.tupleString);
+    }
+    getNamespace() {
+        const endOfNamespace = this.tupleString.indexOf(':');
+        const namespace = this.tupleString.substring(0, endOfNamespace);
+        this.tupleString = this.tupleString.slice(endOfNamespace + 1);
+        return namespace;
+    }
+    getObject() {
+        const endOfObject = this.tupleString.indexOf('#');
+        const object = this.tupleString.substring(0, endOfObject);
+        this.tupleString = this.tupleString.slice(endOfObject + 1);
+        return object;
+    }
+    getRelation() {
+        const endOfRelation = this.tupleString.indexOf('@');
+        const relation = this.tupleString.substring(0, endOfRelation > 0 ? endOfRelation : undefined);
+        this.tupleString = this.tupleString.slice(endOfRelation + 1);
+        return relation;
+    }
+    getSubjectSet() {
+        const namespace = this.getNamespace();
+        const object = this.getObject();
+        const relation = this.getRelation();
+        const subjectSet = {
+            namespace,
+            object,
+            relation,
+        };
+        return subjectSet;
+    }
+    isSubjectSet() {
+        return this.tupleString.includes(':') || this.tupleString.includes('#');
+    }
+}

package/package.json

@@ -1,7 +1,16 @@
 {
   "name": "@atls/nestjs-keto",
-  "version": "0.0.5",
+  "version": "0.0.7",
   "license": "BSD-3-Clause",
+  "type": "module",
+  "exports": {
+    "./package.json": "./package.json",
+    ".": {
+      "import": "./dist/index.js",
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    }
+  },
   "main": "dist/index.js",
   "files": [
     "dist"
@@ -12,29 +21,45 @@
     "postpack": "rm -rf dist"
   },
   "dependencies": {
-    "@oryd/keto-client": "^0.5.6-alpha.1"
+    "@ory/keto-client": "0.11.0-alpha.0"
   },
   "devDependencies": {
-    "@nestjs/common": "patch:@nestjs/common@npm%3A10.2.5#~/.yarn/patches/@nestjs-common-npm-10.2.5-816dceeade.patch",
-    "@nestjs/core": "10.2.5",
-    "@nestjs/graphql": "^7.0.0",
-    "@types/node": "17.0.18",
-    "apollo-server-core": "^3.3.0",
-    "graphql": "^15.5.3",
-    "reflect-metadata": "0.1.13",
+    "@jest/globals": "29.7.0",
+    "@nestjs/common": "10.4.1",
+    "@nestjs/core": "10.4.1",
+    "@nestjs/graphql": "12.2.0",
+    "@nestjs/testing": "10.4.1",
+    "@types/node": "22.5.5",
+    "@types/supertest": "6.0.2",
+    "apollo-server-core": "3.3.0",
+    "get-port": "7.1.0",
+    "graphql": "16.9.0",
+    "reflect-metadata": "0.2.2",
     "rimraf": "3.0.2",
-    "rxjs": "^7.5.4",
-    "typescript": "^3.8.3"
+    "rxjs": "7.8.1",
+    "supertest": "6.3.4",
+    "testcontainers": "10.13.1",
+    "ts-morph": "21.0.1",
+    "typescript": "5.4.2"
   },
   "peerDependencies": {
-    "@nestjs/common": "^8.0.4",
-    "@nestjs/core": "^8.0.4",
-    "reflect-metadata": "^0.1.12",
-    "rxjs": "^7.2.0"
+    "@nestjs/common": "10",
+    "@nestjs/core": "10",
+    "reflect-metadata": "0.2",
+    "rxjs": "7"
   },
   "publishConfig": {
+    "exports": {
+      "./package.json": "./package.json",
+      ".": {
+        "import": "./dist/index.js",
+        "types": "./dist/index.d.ts",
+        "default": "./dist/index.js"
+      }
+    },
     "main": "dist/index.js",
     "typings": "dist/index.d.ts"
   },
+  "typecheckSkipLibCheck": true,
   "typings": "dist/index.d.ts"
 }

package/dist/constants.d.ts

@@ -1,2 +0,0 @@
-export declare const RESOURCES_SCOPE = "__ketoResourcesStope__";
-export declare const ACCESS_POLICY_METADATA = "__ketoAccessPolicy__";

package/dist/constants.js

@@ -1,5 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ACCESS_POLICY_METADATA = exports.RESOURCES_SCOPE = void 0;
-exports.RESOURCES_SCOPE = '__ketoResourcesStope__';
-exports.ACCESS_POLICY_METADATA = '__ketoAccessPolicy__';

package/dist/decorators/access-policy.decorator.d.ts

@@ -1 +0,0 @@
-export declare const AccessPolicy: (flavor: string, resource: string, action: string) => import("@nestjs/common").CustomDecorator<string>;

package/dist/decorators/access-policy.decorator.js

@@ -1,7 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AccessPolicy = void 0;
-const common_1 = require("@nestjs/common");
-const constants_1 = require("../constants");
-const AccessPolicy = (flavor, resource, action) => (0, common_1.SetMetadata)(constants_1.ACCESS_POLICY_METADATA, { flavor, resource, action });
-exports.AccessPolicy = AccessPolicy;

package/dist/guards/keto-access-control.guard.d.ts

@@ -1,13 +0,0 @@
-import { CanActivate } from '@nestjs/common';
-import { ExecutionContext } from '@nestjs/common';
-import { Reflector } from '@nestjs/core';
-import { EnginesApi } from '@oryd/keto-client';
-import { ResourceService } from '../services';
-export declare class KetoAccessControlGuard implements CanActivate {
-    private reflector;
-    private keto;
-    private resourceService;
-    constructor(reflector: Reflector, keto: EnginesApi, resourceService: ResourceService);
-    getSubject(context: ExecutionContext): any;
-    canActivate(context: ExecutionContext): Promise<boolean>;
-}

package/dist/guards/keto-access-control.guard.js

@@ -1,61 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.KetoAccessControlGuard = void 0;
-const common_1 = require("@nestjs/common");
-const core_1 = require("@nestjs/core");
-const graphql_1 = require("@nestjs/graphql");
-const keto_client_1 = require("@oryd/keto-client");
-const constants_1 = require("../constants");
-const services_1 = require("../services");
-let KetoAccessControlGuard = class KetoAccessControlGuard {
-    constructor(reflector, keto, resourceService) {
-        this.reflector = reflector;
-        this.keto = keto;
-        this.resourceService = resourceService;
-    }
-    getSubject(context) {
-        if (context.getType() === 'graphql') {
-            const gqlContext = graphql_1.GqlExecutionContext.create(context);
-            return gqlContext.getContext().user;
-        }
-        return context.switchToHttp().getRequest().get('x-user');
-    }
-    async canActivate(context) {
-        const subject = this.getSubject(context);
-        const policy = this.reflector.get(constants_1.ACCESS_POLICY_METADATA, context.getHandler());
-        if (!policy) {
-            return true;
-        }
-        if (!subject) {
-            return false;
-        }
-        try {
-            const { body } = await this.keto.doOryAccessControlPoliciesAllow(policy.flavor, {
-                subject,
-                resource: this.resourceService.withScope(policy.resource),
-                action: policy.action,
-                context: {},
-            });
-            return body.allowed;
-        }
-        catch (error) {
-            return false;
-        }
-    }
-};
-KetoAccessControlGuard = __decorate([
-    (0, common_1.Injectable)(),
-    __metadata("design:paramtypes", [core_1.Reflector,
-        keto_client_1.EnginesApi,
-        services_1.ResourceService])
-], KetoAccessControlGuard);
-exports.KetoAccessControlGuard = KetoAccessControlGuard;

package/dist/keto.module.d.ts

@@ -1,4 +0,0 @@
-import { DynamicModule } from '@nestjs/common';
-export declare class KetoModule {
-    static forRoot(options?: any): DynamicModule;
-}

package/dist/keto.module.js

@@ -1,40 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var KetoModule_1;
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.KetoModule = void 0;
-const common_1 = require("@nestjs/common");
-const keto_client_1 = require("@oryd/keto-client");
-const constants_1 = require("./constants");
-const services_1 = require("./services");
-let KetoModule = KetoModule_1 = class KetoModule {
-    static forRoot(options = {}) {
-        const enginesApiProvider = {
-            provide: keto_client_1.EnginesApi,
-            useFactory: () => new keto_client_1.EnginesApi((options.url || process.env.KETO_ENGINES_URL || '').replace(/\/+$/, '')),
-        };
-        const resourcesScopeProvider = {
-            provide: constants_1.RESOURCES_SCOPE,
-            useValue: options.scope,
-        };
-        const resourceServiceProvider = {
-            provide: services_1.ResourceService,
-            useClass: services_1.ResourceService,
-        };
-        return {
-            module: KetoModule_1,
-            providers: [enginesApiProvider, resourceServiceProvider, resourcesScopeProvider],
-            exports: [enginesApiProvider, resourceServiceProvider],
-            global: true,
-        };
-    }
-};
-KetoModule = KetoModule_1 = __decorate([
-    (0, common_1.Module)({})
-], KetoModule);
-exports.KetoModule = KetoModule;

package/dist/services/resource.service.d.ts

@@ -1,7 +0,0 @@
-export declare class ResourceService {
-    private scope;
-    constructor(scope: string);
-    withScope(resource: string): string;
-    withoutScope(resource: string): string | undefined;
-    isMatchScope(resource: string): boolean;
-}

package/dist/services/resource.service.js

@@ -1,54 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ResourceService = void 0;
-const common_1 = require("@nestjs/common");
-const common_2 = require("@nestjs/common");
-const constants_1 = require("../constants");
-const SEPARATOR = ':';
-let ResourceService = class ResourceService {
-    constructor(scope) {
-        this.scope = scope;
-    }
-    withScope(resource) {
-        if (!resource) {
-            return resource;
-        }
-        if (!this.scope) {
-            return resource;
-        }
-        return [this.scope, resource].join(SEPARATOR);
-    }
-    withoutScope(resource) {
-        if (!resource) {
-            return resource;
-        }
-        if (!this.scope) {
-            return resource;
-        }
-        if (resource.includes(this.scope)) {
-            return resource.replace(this.scope, '').split(SEPARATOR).pop();
-        }
-        return resource;
-    }
-    isMatchScope(resource) {
-        return resource.startsWith(this.scope);
-    }
-};
-ResourceService = __decorate([
-    (0, common_2.Injectable)(),
-    __param(0, (0, common_1.Inject)(constants_1.RESOURCES_SCOPE)),
-    __metadata("design:paramtypes", [String])
-], ResourceService);
-exports.ResourceService = ResourceService;