@autofleet/zehut 1.3.0 → 1.3.1

package/lib/index.d.ts

@@ -0,0 +1,2 @@
+import User, { middleware, eagerLoadPermissionsMiddleware, middlewareWithDecode } from './user';
+export { User, middleware, middlewareWithDecode, eagerLoadPermissionsMiddleware, };

package/lib/index.js

@@ -0,0 +1,27 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.eagerLoadPermissionsMiddleware = exports.middlewareWithDecode = exports.middleware = exports.User = void 0;
+const user_1 = __importStar(require("./user"));
+exports.User = user_1.default;
+Object.defineProperty(exports, "middleware", { enumerable: true, get: function () { return user_1.middleware; } });
+Object.defineProperty(exports, "eagerLoadPermissionsMiddleware", { enumerable: true, get: function () { return user_1.eagerLoadPermissionsMiddleware; } });
+Object.defineProperty(exports, "middlewareWithDecode", { enumerable: true, get: function () { return user_1.middlewareWithDecode; } });

package/lib/services.d.ts

@@ -0,0 +1 @@
+export declare const IdentityNetwork: any;

package/lib/services.js

@@ -0,0 +1,16 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.IdentityNetwork = void 0;
+const network_1 = __importDefault(require("@autofleet/network"));
+const CACHE_LIFETIME_IN_SEC = 10;
+exports.IdentityNetwork = new network_1.default({
+    serviceName: 'IDENTITY_MS',
+    retries: 3,
+    retryCondition: () => true,
+    cache: process.env.NODE_ENV !== 'test' ? {
+        maxAge: CACHE_LIFETIME_IN_SEC * 1000,
+    } : undefined,
+});

package/lib/user/ApiUser.d.ts

@@ -0,0 +1,25 @@
+interface EntityPermissions {
+    [key: string]: string[];
+}
+export interface UserPayload {
+    businessModels: EntityPermissions;
+    fleets: EntityPermissions;
+    demandSources: EntityPermissions;
+    createdAt?: string;
+}
+export default class ApiUser {
+    id: string | undefined;
+    privatePermissions: UserPayload | undefined;
+    privatePermissionsLegacy: any;
+    emptyUser: boolean;
+    constructor(id?: string);
+    getUserPermissions(): Promise<UserPayload>;
+    get businessModels(): string[] | undefined;
+    get fleets(): string[] | undefined;
+    get demandSources(): string[] | undefined;
+    getUserProperty(key: any): string[] | undefined;
+    get permissions(): UserPayload | undefined;
+    getUserPermissionsLegacy(): Promise<any>;
+    get permissionsLegacy(): any;
+}
+export {};

package/lib/user/ApiUser.js

@@ -0,0 +1,72 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const services_1 = require("../services");
+class ApiUser {
+    constructor(id) {
+        this.id = id;
+        this.emptyUser = !!id;
+    }
+    getUserPermissions() {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (!this.id) {
+                return;
+            }
+            if (this.privatePermissions) {
+                return this.privatePermissions;
+            }
+            const { data } = yield services_1.IdentityNetwork.get(`/api/v1/users/${this.id}/authorization-payload`);
+            this.privatePermissions = data;
+            return this.privatePermissions;
+        });
+    }
+    get businessModels() {
+        return this.getUserProperty('businessModels');
+    }
+    get fleets() {
+        return this.getUserProperty('fleets');
+    }
+    get demandSources() {
+        return this.getUserProperty('demandSources');
+    }
+    getUserProperty(key) {
+        if (!this.privatePermissions) {
+            throw new Error(`Cannot get ${key} without calling (async) getUserPermissions before`);
+        }
+        return Object.keys(this.privatePermissions[key] || {});
+    }
+    get permissions() {
+        if (!this.privatePermissions) {
+            throw new Error('Cannot get permissions without calling (async) getUserPermissions before');
+        }
+        return this.privatePermissions;
+    }
+    getUserPermissionsLegacy() {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (!this.id) {
+                return;
+            }
+            if (this.privatePermissionsLegacy) {
+                return this.privatePermissionsLegacy;
+            }
+            const { data } = yield services_1.IdentityNetwork.get(`/api/v1/users/${this.id}/authorization-payload-legacy`);
+            this.privatePermissionsLegacy = data;
+            return this.privatePermissionsLegacy;
+        });
+    }
+    get permissionsLegacy() {
+        if (!this.privatePermissionsLegacy) {
+            throw new Error('Cannot get permissionsLegacy without calling (async) getUserPermissionsLegacy before');
+        }
+        return this.privatePermissionsLegacy;
+    }
+}
+exports.default = ApiUser;

package/lib/user/index.d.ts

@@ -0,0 +1,11 @@
+import ApiUser from './ApiUser';
+export declare const middleware: (options?: {
+    eagerLoadUserPermissions?: boolean;
+    eagerLoadUserPermissionsLegacy?: boolean;
+}) => (req: any, res: any, next: any) => Promise<void>;
+export declare const middlewareWithDecode: (options?: {
+    eagerLoadUserPermissions?: boolean;
+    eagerLoadUserPermissionsLegacy?: boolean;
+}) => (req: any, res: any, next: any) => Promise<void>;
+export declare const eagerLoadPermissionsMiddleware: (req: any, res: any, next: any) => Promise<void>;
+export default ApiUser;

package/lib/user/index.js

@@ -0,0 +1,57 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.eagerLoadPermissionsMiddleware = exports.middlewareWithDecode = exports.middleware = void 0;
+const ApiUser_1 = __importDefault(require("./ApiUser"));
+const utils_1 = require("../utils");
+exports.middleware = (options = {}) => (req, res, next) => __awaiter(void 0, void 0, void 0, function* () {
+    const userId = req.headers['x-af-user-id'];
+    if (!userId) {
+        next();
+        return;
+    }
+    req.user = new ApiUser_1.default(userId);
+    if (options.eagerLoadUserPermissions) {
+        yield req.user.getUserPermissions();
+    }
+    if (options.eagerLoadUserPermissionsLegacy) {
+        yield req.user.getUserPermissionsLegacy();
+    }
+    next();
+});
+exports.middlewareWithDecode = (options = {}) => (req, res, next) => __awaiter(void 0, void 0, void 0, function* () {
+    var _a;
+    if (req.headers.authorization) {
+        const decoded = utils_1.decodeBearer(req.headers.authorization);
+        const userId = (_a = decoded === null || decoded === void 0 ? void 0 : decoded.user) === null || _a === void 0 ? void 0 : _a.id;
+        if (userId) {
+            req.headers['X-AF-USER-ID'] = userId;
+        }
+        const userObject = new ApiUser_1.default(userId);
+        req.user = userObject;
+        if (options.eagerLoadUserPermissions) {
+            yield req.user.getUserPermissions();
+        }
+        if (options.eagerLoadUserPermissionsLegacy) {
+            yield req.user.getUserPermissionsLegacy();
+        }
+        const entities = req.user.permissions;
+    }
+    next();
+});
+exports.eagerLoadPermissionsMiddleware = (req, res, next) => __awaiter(void 0, void 0, void 0, function* () {
+    yield req.user.getUserPermissions();
+    next();
+});
+exports.default = ApiUser_1.default;

package/lib/utils.d.ts

@@ -0,0 +1,5 @@
+export declare const getAuthFromBearer: (bearer: string) => string;
+export declare const decodeBearer: (bearer: string) => any;
+export declare const parsePermissions: (contextId: any, decodedToken: any) => any;
+export declare const getEntitiesFromContext: (contextId: string, decodedToken: any) => any;
+export declare const getContextAttributes: (contextId: string, decodedToken: any) => any;

package/lib/utils.js

@@ -0,0 +1,91 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getContextAttributes = exports.getEntitiesFromContext = exports.parsePermissions = exports.decodeBearer = exports.getAuthFromBearer = void 0;
+/* eslint-disable prefer-destructuring */
+const jwt = __importStar(require("jsonwebtoken"));
+const CONTEXT_PROPS = ['fleetId', 'businessModelId', 'demandSourceId'];
+const CONTEXT_MAP_PROPS = {
+    fleet: 'fleets',
+    business: 'businessModels',
+    demand: 'demandSources',
+};
+exports.getAuthFromBearer = (bearer) => bearer.replace('Bearer ', '');
+exports.decodeBearer = (bearer) => {
+    const token = bearer.replace('Bearer ', '');
+    const decoded = jwt.decode(token);
+    return decoded;
+};
+exports.parsePermissions = (contextId, decodedToken) => {
+    var _a;
+    if (!decodedToken) {
+        return [];
+    }
+    const contexts = decodedToken.contexts;
+    const activeContext = contexts.find(context => context.id === contextId);
+    const permissionsByContext = {};
+    const permissionsValue = `${(_a = activeContext.permissions) === null || _a === void 0 ? void 0 : _a.map(cp => `${cp},`)}`;
+    return {
+        key: activeContext.entityId,
+        value: permissionsValue,
+    };
+};
+exports.getEntitiesFromContext = (contextId, decodedToken) => {
+    if (!decodedToken) {
+        return [];
+    }
+    let contexts = decodedToken.contexts;
+    if (contextId) {
+        contexts = contexts.filter(context => context.id === contextId);
+    }
+    const attributes = {};
+    contexts.forEach((context) => {
+        const prop = CONTEXT_MAP_PROPS[context.subSystem || 'business'];
+        const permissions = exports.parsePermissions(context.id, decodedToken);
+        // eslint-disable-next-line no-unused-expressions
+        attributes[prop] ?
+            attributes[prop][permissions.key] = permissions.value
+            : attributes[prop] = { [permissions.key]: permissions.value };
+    });
+    return attributes;
+};
+exports.getContextAttributes = (contextId, decodedToken) => {
+    if (!decodedToken) {
+        return [];
+    }
+    let contexts = decodedToken.contexts;
+    if (contextId) {
+        contexts = contexts.filter(context => context.id === contextId);
+    }
+    const attributes = {};
+    contexts.forEach((context) => {
+        CONTEXT_PROPS.forEach((prop) => {
+            if (context[prop]) {
+                const contextPropWrapped = [context[prop]];
+                // eslint-disable-next-line no-unused-expressions
+                attributes[prop] ?
+                    attributes[prop] = attributes[prop].concat(contextPropWrapped) :
+                    attributes[prop] = contextPropWrapped;
+            }
+        });
+    });
+    return attributes;
+};

package/package.json

@@ -1,11 +1,12 @@
 {
   "name": "@autofleet/zehut",
-  "version": "1.3.0",
+  "version": "1.3.1",
   "description": "manage user's identity",
   "main": "lib/index.js",
   "types": "lib/index.d.ts",
   "scripts": {
     "build": "rm -rf lib && tsc",
+    "prepublish": "npm run build",
     "coverage": "jest --coverage --forceExit --runInBand",
     "test": "jest --forceExit --runInBand",
     "test-auto": "jest --watch --runInBand",