@backstage-community/plugin-rbac-common 1.12.1 → 1.12.3

package/CHANGELOG.md

@@ -1,5 +1,17 @@
 ## @backstage-community/plugin-rbac-common [1.8.2](https://github.com/janus-idp/backstage-plugins/compare/@backstage-community/plugin-rbac-common@1.8.1...@backstage-community/plugin-rbac-common@1.8.2) (2024-08-06)
 
+## 1.12.3
+
+### Patch Changes
+
+- 4b3653a: Clean up api report warnings and remove unnecessary files
+
+## 1.12.2
+
+### Patch Changes
+
+- b7c2fa1: Updated supported-versions to ^1.28.4.
+
 ## 1.12.1
 
 ### Patch Changes

package/dist/index.d.ts

@@ -1,10 +1,23 @@
 import { NotAllowedError } from '@backstage/errors';
 import { PermissionAttributes, ConditionalPolicyDecision, ResourcePermission } from '@backstage/plugin-permission-common';
 
+/**
+ * @public
+ * 'rest' created via REST API
+ * 'csv-file' created via policies-csv-file with defined path in the application configuration
+ * 'configuration' created from application configuration
+ * 'legacy'; preexisting policies
+ */
 type Source = string;
+/**
+ * @public
+ */
 type PermissionPolicyMetadata = {
     source: Source;
 };
+/**
+ * @public
+ */
 type RoleMetadata = {
     description?: string;
     source?: Source;
@@ -13,84 +26,155 @@ type RoleMetadata = {
     lastModified?: string;
     createdAt?: string;
 };
+/**
+ * @public
+ */
 type Policy = {
     permission?: string;
     policy?: string;
 };
+/**
+ * @public
+ */
 type RoleBasedPolicy = Policy & {
     entityReference?: string;
     effect?: string;
     metadata?: PermissionPolicyMetadata;
 };
+/**
+ * @public
+ */
 type Role = {
     memberReferences: string[];
     name: string;
     metadata?: RoleMetadata;
 };
+/**
+ * @public
+ */
 type UpdatePolicy = {
     oldPolicy: Policy;
     newPolicy: Policy;
 };
+/**
+ * @public
+ */
 type NamedPolicy = {
     name: string;
     policy: string;
 };
+/**
+ * @public
+ */
 type ResourcedPolicy = NamedPolicy & {
     resourceType: string;
 };
+/**
+ * @public
+ */
 type PolicyDetails = NamedPolicy | ResourcedPolicy;
+/**
+ * @public
+ */
 declare function isResourcedPolicy(policy: PolicyDetails): policy is ResourcedPolicy;
+/**
+ * @public
+ */
 type PluginPermissionMetaData = {
     pluginId: string;
     policies: PolicyDetails[];
 };
+/**
+ * @public
+ */
 type NonEmptyArray<T> = [T, ...T[]];
+/**
+ * @public
+ * Permission framework attributes action has values: 'create' | 'read' | 'update' | 'delete' | undefined.
+ * But we are introducing an action named "use" when action does not exist('undefined') to avoid
+ * a more complicated model with multiple policy and request shapes.
+ */
 declare const PermissionActionValues: readonly ["create", "read", "update", "delete", "use"];
+/**
+ * @public
+ */
 type PermissionAction = (typeof PermissionActionValues)[number];
+/**
+ * @public
+ */
 declare const toPermissionAction: (attr: PermissionAttributes) => PermissionAction;
+/**
+ * @public
+ */
 declare function isValidPermissionAction(action: string): action is PermissionAction;
+/**
+ * @public
+ */
 type PermissionInfo = {
     name: string;
     action: PermissionAction;
 };
+/**
+ * @public
+ * Frontend should use RoleConditionalPolicyDecision<PermissionAction>
+ */
 type RoleConditionalPolicyDecision<T extends PermissionAction | PermissionInfo> = ConditionalPolicyDecision & {
     id: number;
     roleEntityRef: string;
     permissionMapping: T[];
 };
+/**
+ * @public
+ */
 declare const ConditionalAliases: {
     readonly CURRENT_USER: "currentUser";
     readonly OWNER_REFS: "ownerRefs";
 };
+/**
+ * @public
+ */
 declare const CONDITION_ALIAS_SIGN = "$";
+/**
+ * @public
+ * UnauthorizedError should be uniformely used for authorization errors.
+ */
 declare class UnauthorizedError extends NotAllowedError {
     constructor();
 }
 
+/**
+ * @public
+ */
 declare const RESOURCE_TYPE_POLICY_ENTITY = "policy-entity";
 /**
+ * @public
  * Convenience type for permission entity
  */
 type PolicyEntityPermission = ResourcePermission<typeof RESOURCE_TYPE_POLICY_ENTITY>;
 /**
+ * @public
  * This permission is used to authorize actions that involve reading
  * permission policies.
  */
 declare const policyEntityReadPermission: ResourcePermission<"policy-entity">;
 /**
+ * @public
  * This permission is used to authorize the creation of new permission policies.
  */
 declare const policyEntityCreatePermission: ResourcePermission<"policy-entity">;
 /**
+ * @public
  * This permission is used to authorize actions that involve removing permission
  * policies.
  */
 declare const policyEntityDeletePermission: ResourcePermission<"policy-entity">;
 /**
+ * @public
  * This permission is used to authorize updating permission policies
  */
 declare const policyEntityUpdatePermission: ResourcePermission<"policy-entity">;
 /**
+ * @public
  * List of all permissions on permission polices.
  */
 declare const policyEntityPermissions: ResourcePermission<"policy-entity">[];

package/dist/permissions.cjs.js.map

@@ -1 +1 @@
-{"version":3,"file":"permissions.cjs.js","sources":["../src/permissions.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n  createPermission,\n  ResourcePermission,\n} from '@backstage/plugin-permission-common';\n\nexport const RESOURCE_TYPE_POLICY_ENTITY = 'policy-entity';\n\n/**\n * Convenience type for permission entity\n */\nexport type PolicyEntityPermission = ResourcePermission<\n  typeof RESOURCE_TYPE_POLICY_ENTITY\n>;\n\n/**\n * This permission is used to authorize actions that involve reading\n * permission policies.\n */\nexport const policyEntityReadPermission = createPermission({\n  name: 'policy.entity.read',\n  attributes: {\n    action: 'read',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize the creation of new permission policies.\n */\nexport const policyEntityCreatePermission = createPermission({\n  name: 'policy.entity.create',\n  attributes: {\n    action: 'create',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize actions that involve removing permission\n * policies.\n */\nexport const policyEntityDeletePermission = createPermission({\n  name: 'policy.entity.delete',\n  attributes: {\n    action: 'delete',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize updating permission policies\n */\nexport const policyEntityUpdatePermission = createPermission({\n  name: 'policy.entity.update',\n  attributes: {\n    action: 'update',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * List of all permissions on permission polices.\n */\nexport const policyEntityPermissions = [\n  policyEntityReadPermission,\n  policyEntityCreatePermission,\n  policyEntityDeletePermission,\n  policyEntityUpdatePermission,\n];\n"],"names":["createPermission"],"mappings":";;;;AAoBO,MAAM,2BAA8B,GAAA,gBAAA;AAapC,MAAM,6BAA6BA,uCAAiB,CAAA;AAAA,EACzD,IAAM,EAAA,oBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,MAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAMM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,uBAA0B,GAAA;AAAA,EACrC,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AACF;;;;;;;;;"}
+{"version":3,"file":"permissions.cjs.js","sources":["../src/permissions.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n  createPermission,\n  ResourcePermission,\n} from '@backstage/plugin-permission-common';\n\n/**\n * @public\n */\nexport const RESOURCE_TYPE_POLICY_ENTITY = 'policy-entity';\n\n/**\n * @public\n * Convenience type for permission entity\n */\nexport type PolicyEntityPermission = ResourcePermission<\n  typeof RESOURCE_TYPE_POLICY_ENTITY\n>;\n\n/**\n * @public\n * This permission is used to authorize actions that involve reading\n * permission policies.\n */\nexport const policyEntityReadPermission = createPermission({\n  name: 'policy.entity.read',\n  attributes: {\n    action: 'read',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize the creation of new permission policies.\n */\nexport const policyEntityCreatePermission = createPermission({\n  name: 'policy.entity.create',\n  attributes: {\n    action: 'create',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize actions that involve removing permission\n * policies.\n */\nexport const policyEntityDeletePermission = createPermission({\n  name: 'policy.entity.delete',\n  attributes: {\n    action: 'delete',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize updating permission policies\n */\nexport const policyEntityUpdatePermission = createPermission({\n  name: 'policy.entity.update',\n  attributes: {\n    action: 'update',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * List of all permissions on permission polices.\n */\nexport const policyEntityPermissions = [\n  policyEntityReadPermission,\n  policyEntityCreatePermission,\n  policyEntityDeletePermission,\n  policyEntityUpdatePermission,\n];\n"],"names":["createPermission"],"mappings":";;;;AAuBO,MAAM,2BAA8B,GAAA;AAepC,MAAM,6BAA6BA,uCAAiB,CAAA;AAAA,EACzD,IAAM,EAAA,oBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAOM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,+BAA+BA,uCAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,uBAA0B,GAAA;AAAA,EACrC,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AAAA,EACA;AACF;;;;;;;;;"}

package/dist/permissions.esm.js.map

@@ -1 +1 @@
-{"version":3,"file":"permissions.esm.js","sources":["../src/permissions.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n  createPermission,\n  ResourcePermission,\n} from '@backstage/plugin-permission-common';\n\nexport const RESOURCE_TYPE_POLICY_ENTITY = 'policy-entity';\n\n/**\n * Convenience type for permission entity\n */\nexport type PolicyEntityPermission = ResourcePermission<\n  typeof RESOURCE_TYPE_POLICY_ENTITY\n>;\n\n/**\n * This permission is used to authorize actions that involve reading\n * permission policies.\n */\nexport const policyEntityReadPermission = createPermission({\n  name: 'policy.entity.read',\n  attributes: {\n    action: 'read',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize the creation of new permission policies.\n */\nexport const policyEntityCreatePermission = createPermission({\n  name: 'policy.entity.create',\n  attributes: {\n    action: 'create',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize actions that involve removing permission\n * policies.\n */\nexport const policyEntityDeletePermission = createPermission({\n  name: 'policy.entity.delete',\n  attributes: {\n    action: 'delete',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * This permission is used to authorize updating permission policies\n */\nexport const policyEntityUpdatePermission = createPermission({\n  name: 'policy.entity.update',\n  attributes: {\n    action: 'update',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * List of all permissions on permission polices.\n */\nexport const policyEntityPermissions = [\n  policyEntityReadPermission,\n  policyEntityCreatePermission,\n  policyEntityDeletePermission,\n  policyEntityUpdatePermission,\n];\n"],"names":[],"mappings":";;AAoBO,MAAM,2BAA8B,GAAA,gBAAA;AAapC,MAAM,6BAA6B,gBAAiB,CAAA;AAAA,EACzD,IAAM,EAAA,oBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,MAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAMM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA,QAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA,2BAAA;AAChB,CAAC,EAAA;AAKM,MAAM,uBAA0B,GAAA;AAAA,EACrC,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AACF;;;;"}
+{"version":3,"file":"permissions.esm.js","sources":["../src/permissions.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport {\n  createPermission,\n  ResourcePermission,\n} from '@backstage/plugin-permission-common';\n\n/**\n * @public\n */\nexport const RESOURCE_TYPE_POLICY_ENTITY = 'policy-entity';\n\n/**\n * @public\n * Convenience type for permission entity\n */\nexport type PolicyEntityPermission = ResourcePermission<\n  typeof RESOURCE_TYPE_POLICY_ENTITY\n>;\n\n/**\n * @public\n * This permission is used to authorize actions that involve reading\n * permission policies.\n */\nexport const policyEntityReadPermission = createPermission({\n  name: 'policy.entity.read',\n  attributes: {\n    action: 'read',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize the creation of new permission policies.\n */\nexport const policyEntityCreatePermission = createPermission({\n  name: 'policy.entity.create',\n  attributes: {\n    action: 'create',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize actions that involve removing permission\n * policies.\n */\nexport const policyEntityDeletePermission = createPermission({\n  name: 'policy.entity.delete',\n  attributes: {\n    action: 'delete',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * This permission is used to authorize updating permission policies\n */\nexport const policyEntityUpdatePermission = createPermission({\n  name: 'policy.entity.update',\n  attributes: {\n    action: 'update',\n  },\n  resourceType: RESOURCE_TYPE_POLICY_ENTITY,\n});\n\n/**\n * @public\n * List of all permissions on permission polices.\n */\nexport const policyEntityPermissions = [\n  policyEntityReadPermission,\n  policyEntityCreatePermission,\n  policyEntityDeletePermission,\n  policyEntityUpdatePermission,\n];\n"],"names":[],"mappings":";;AAuBO,MAAM,2BAA8B,GAAA;AAepC,MAAM,6BAA6B,gBAAiB,CAAA;AAAA,EACzD,IAAM,EAAA,oBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAOM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,+BAA+B,gBAAiB,CAAA;AAAA,EAC3D,IAAM,EAAA,sBAAA;AAAA,EACN,UAAY,EAAA;AAAA,IACV,MAAQ,EAAA;AAAA,GACV;AAAA,EACA,YAAc,EAAA;AAChB,CAAC;AAMM,MAAM,uBAA0B,GAAA;AAAA,EACrC,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,4BAAA;AAAA,EACA;AACF;;;;"}

package/dist/types.cjs.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.cjs.js","sources":["../src/types.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { NotAllowedError } from '@backstage/errors';\nimport {\n  ConditionalPolicyDecision,\n  PermissionAttributes,\n} from '@backstage/plugin-permission-common';\n\n// 'rest' created via REST API\n// 'csv-file' created via policies-csv-file with defined path in the application configuration\n// 'configuration' created from application configuration\n// 'legacy'; preexisting policies\nexport type Source = string;\n\nexport type PermissionPolicyMetadata = {\n  source: Source;\n};\n\nexport type RoleMetadata = {\n  description?: string;\n  source?: Source;\n  modifiedBy?: string;\n  author?: string;\n  lastModified?: string;\n  createdAt?: string;\n};\n\nexport type Policy = {\n  permission?: string;\n  policy?: string;\n};\n\nexport type RoleBasedPolicy = Policy & {\n  entityReference?: string;\n  effect?: string;\n  metadata?: PermissionPolicyMetadata;\n};\n\nexport type Role = {\n  memberReferences: string[];\n  name: string;\n  metadata?: RoleMetadata;\n};\n\nexport type UpdatePolicy = {\n  oldPolicy: Policy;\n  newPolicy: Policy;\n};\n\nexport type NamedPolicy = {\n  name: string;\n\n  policy: string;\n};\n\nexport type ResourcedPolicy = NamedPolicy & {\n  resourceType: string;\n};\n\nexport type PolicyDetails = NamedPolicy | ResourcedPolicy;\n\nexport function isResourcedPolicy(\n  policy: PolicyDetails,\n): policy is ResourcedPolicy {\n  return 'resourceType' in policy;\n}\n\nexport type PluginPermissionMetaData = {\n  pluginId: string;\n  policies: PolicyDetails[];\n};\n\nexport type NonEmptyArray<T> = [T, ...T[]];\n\n// Permission framework attributes action has values: 'create' | 'read' | 'update' | 'delete' | undefined.\n// But we are introducing an action named \"use\" when action does not exist('undefined') to avoid\n// a more complicated model with multiple policy and request shapes.\nexport const PermissionActionValues = [\n  'create',\n  'read',\n  'update',\n  'delete',\n  'use',\n] as const;\nexport type PermissionAction = (typeof PermissionActionValues)[number];\nexport const toPermissionAction = (\n  attr: PermissionAttributes,\n): PermissionAction => attr.action ?? 'use';\n\nexport function isValidPermissionAction(\n  action: string,\n): action is PermissionAction {\n  return (PermissionActionValues as readonly string[]).includes(action);\n}\n\nexport type PermissionInfo = {\n  name: string;\n  action: PermissionAction;\n};\n\n// Frontend should use RoleConditionalPolicyDecision<PermissionAction>\nexport type RoleConditionalPolicyDecision<\n  T extends PermissionAction | PermissionInfo,\n> = ConditionalPolicyDecision & {\n  id: number;\n  roleEntityRef: string;\n\n  permissionMapping: T[];\n};\n\nexport const ConditionalAliases = {\n  CURRENT_USER: 'currentUser',\n  OWNER_REFS: 'ownerRefs',\n} as const;\n\nexport const CONDITION_ALIAS_SIGN = '$';\n\n// UnauthorizedError should be uniformely used for authorization errors.\nexport class UnauthorizedError extends NotAllowedError {\n  constructor() {\n    super('Unauthorized');\n  }\n}\n"],"names":["NotAllowedError"],"mappings":";;;;AA0EO,SAAS,kBACd,MAC2B,EAAA;AAC3B,EAAA,OAAO,cAAkB,IAAA,MAAA,CAAA;AAC3B,CAAA;AAYO,MAAM,sBAAyB,GAAA;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,QAAA;AAAA,EACA,QAAA;AAAA,EACA,KAAA;AACF,EAAA;AAEO,MAAM,kBAAqB,GAAA,CAChC,IACqB,KAAA,IAAA,CAAK,MAAU,IAAA,MAAA;AAE/B,SAAS,wBACd,MAC4B,EAAA;AAC5B,EAAQ,OAAA,sBAAA,CAA6C,SAAS,MAAM,CAAA,CAAA;AACtE,CAAA;AAiBO,MAAM,kBAAqB,GAAA;AAAA,EAChC,YAAc,EAAA,aAAA;AAAA,EACd,UAAY,EAAA,WAAA;AACd,EAAA;AAEO,MAAM,oBAAuB,GAAA,IAAA;AAG7B,MAAM,0BAA0BA,sBAAgB,CAAA;AAAA,EACrD,WAAc,GAAA;AACZ,IAAA,KAAA,CAAM,cAAc,CAAA,CAAA;AAAA,GACtB;AACF;;;;;;;;;;"}
+{"version":3,"file":"types.cjs.js","sources":["../src/types.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { NotAllowedError } from '@backstage/errors';\nimport {\n  ConditionalPolicyDecision,\n  PermissionAttributes,\n} from '@backstage/plugin-permission-common';\n\n/**\n * @public\n * 'rest' created via REST API\n * 'csv-file' created via policies-csv-file with defined path in the application configuration\n * 'configuration' created from application configuration\n * 'legacy'; preexisting policies\n */\nexport type Source = string;\n\n/**\n * @public\n */\nexport type PermissionPolicyMetadata = {\n  source: Source;\n};\n\n/**\n * @public\n */\nexport type RoleMetadata = {\n  description?: string;\n  source?: Source;\n  modifiedBy?: string;\n  author?: string;\n  lastModified?: string;\n  createdAt?: string;\n};\n\n/**\n * @public\n */\nexport type Policy = {\n  permission?: string;\n  policy?: string;\n};\n\n/**\n * @public\n */\nexport type RoleBasedPolicy = Policy & {\n  entityReference?: string;\n  effect?: string;\n  metadata?: PermissionPolicyMetadata;\n};\n\n/**\n * @public\n */\nexport type Role = {\n  memberReferences: string[];\n  name: string;\n  metadata?: RoleMetadata;\n};\n\n/**\n * @public\n */\nexport type UpdatePolicy = {\n  oldPolicy: Policy;\n  newPolicy: Policy;\n};\n\n/**\n * @public\n */\nexport type NamedPolicy = {\n  name: string;\n\n  policy: string;\n};\n\n/**\n * @public\n */\nexport type ResourcedPolicy = NamedPolicy & {\n  resourceType: string;\n};\n\n/**\n * @public\n */\nexport type PolicyDetails = NamedPolicy | ResourcedPolicy;\n\n/**\n * @public\n */\nexport function isResourcedPolicy(\n  policy: PolicyDetails,\n): policy is ResourcedPolicy {\n  return 'resourceType' in policy;\n}\n\n/**\n * @public\n */\nexport type PluginPermissionMetaData = {\n  pluginId: string;\n  policies: PolicyDetails[];\n};\n\n/**\n * @public\n */\nexport type NonEmptyArray<T> = [T, ...T[]];\n\n/**\n * @public\n * Permission framework attributes action has values: 'create' | 'read' | 'update' | 'delete' | undefined.\n * But we are introducing an action named \"use\" when action does not exist('undefined') to avoid\n * a more complicated model with multiple policy and request shapes.\n */\nexport const PermissionActionValues = [\n  'create',\n  'read',\n  'update',\n  'delete',\n  'use',\n] as const;\n\n/**\n * @public\n */\nexport type PermissionAction = (typeof PermissionActionValues)[number];\n\n/**\n * @public\n */\nexport const toPermissionAction = (\n  attr: PermissionAttributes,\n): PermissionAction => attr.action ?? 'use';\n\n/**\n * @public\n */\nexport function isValidPermissionAction(\n  action: string,\n): action is PermissionAction {\n  return (PermissionActionValues as readonly string[]).includes(action);\n}\n\n/**\n * @public\n */\nexport type PermissionInfo = {\n  name: string;\n  action: PermissionAction;\n};\n\n/**\n * @public\n * Frontend should use RoleConditionalPolicyDecision<PermissionAction>\n */\nexport type RoleConditionalPolicyDecision<\n  T extends PermissionAction | PermissionInfo,\n> = ConditionalPolicyDecision & {\n  id: number;\n  roleEntityRef: string;\n\n  permissionMapping: T[];\n};\n\n/**\n * @public\n */\nexport const ConditionalAliases = {\n  CURRENT_USER: 'currentUser',\n  OWNER_REFS: 'ownerRefs',\n} as const;\n\n/**\n * @public\n */\nexport const CONDITION_ALIAS_SIGN = '$';\n\n/**\n * @public\n * UnauthorizedError should be uniformely used for authorization errors.\n */\nexport class UnauthorizedError extends NotAllowedError {\n  constructor() {\n    super('Unauthorized');\n  }\n}\n"],"names":["NotAllowedError"],"mappings":";;;;AA2GO,SAAS,kBACd,MAC2B,EAAA;AAC3B,EAAA,OAAO,cAAkB,IAAA,MAAA;AAC3B;AAqBO,MAAM,sBAAyB,GAAA;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,QAAA;AAAA,EACA,QAAA;AAAA,EACA;AACF;AAUO,MAAM,kBAAqB,GAAA,CAChC,IACqB,KAAA,IAAA,CAAK,MAAU,IAAA;AAK/B,SAAS,wBACd,MAC4B,EAAA;AAC5B,EAAQ,OAAA,sBAAA,CAA6C,SAAS,MAAM,CAAA;AACtE;AA0BO,MAAM,kBAAqB,GAAA;AAAA,EAChC,YAAc,EAAA,aAAA;AAAA,EACd,UAAY,EAAA;AACd;AAKO,MAAM,oBAAuB,GAAA;AAM7B,MAAM,0BAA0BA,sBAAgB,CAAA;AAAA,EACrD,WAAc,GAAA;AACZ,IAAA,KAAA,CAAM,cAAc,CAAA;AAAA;AAExB;;;;;;;;;;"}

package/dist/types.esm.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.esm.js","sources":["../src/types.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { NotAllowedError } from '@backstage/errors';\nimport {\n  ConditionalPolicyDecision,\n  PermissionAttributes,\n} from '@backstage/plugin-permission-common';\n\n// 'rest' created via REST API\n// 'csv-file' created via policies-csv-file with defined path in the application configuration\n// 'configuration' created from application configuration\n// 'legacy'; preexisting policies\nexport type Source = string;\n\nexport type PermissionPolicyMetadata = {\n  source: Source;\n};\n\nexport type RoleMetadata = {\n  description?: string;\n  source?: Source;\n  modifiedBy?: string;\n  author?: string;\n  lastModified?: string;\n  createdAt?: string;\n};\n\nexport type Policy = {\n  permission?: string;\n  policy?: string;\n};\n\nexport type RoleBasedPolicy = Policy & {\n  entityReference?: string;\n  effect?: string;\n  metadata?: PermissionPolicyMetadata;\n};\n\nexport type Role = {\n  memberReferences: string[];\n  name: string;\n  metadata?: RoleMetadata;\n};\n\nexport type UpdatePolicy = {\n  oldPolicy: Policy;\n  newPolicy: Policy;\n};\n\nexport type NamedPolicy = {\n  name: string;\n\n  policy: string;\n};\n\nexport type ResourcedPolicy = NamedPolicy & {\n  resourceType: string;\n};\n\nexport type PolicyDetails = NamedPolicy | ResourcedPolicy;\n\nexport function isResourcedPolicy(\n  policy: PolicyDetails,\n): policy is ResourcedPolicy {\n  return 'resourceType' in policy;\n}\n\nexport type PluginPermissionMetaData = {\n  pluginId: string;\n  policies: PolicyDetails[];\n};\n\nexport type NonEmptyArray<T> = [T, ...T[]];\n\n// Permission framework attributes action has values: 'create' | 'read' | 'update' | 'delete' | undefined.\n// But we are introducing an action named \"use\" when action does not exist('undefined') to avoid\n// a more complicated model with multiple policy and request shapes.\nexport const PermissionActionValues = [\n  'create',\n  'read',\n  'update',\n  'delete',\n  'use',\n] as const;\nexport type PermissionAction = (typeof PermissionActionValues)[number];\nexport const toPermissionAction = (\n  attr: PermissionAttributes,\n): PermissionAction => attr.action ?? 'use';\n\nexport function isValidPermissionAction(\n  action: string,\n): action is PermissionAction {\n  return (PermissionActionValues as readonly string[]).includes(action);\n}\n\nexport type PermissionInfo = {\n  name: string;\n  action: PermissionAction;\n};\n\n// Frontend should use RoleConditionalPolicyDecision<PermissionAction>\nexport type RoleConditionalPolicyDecision<\n  T extends PermissionAction | PermissionInfo,\n> = ConditionalPolicyDecision & {\n  id: number;\n  roleEntityRef: string;\n\n  permissionMapping: T[];\n};\n\nexport const ConditionalAliases = {\n  CURRENT_USER: 'currentUser',\n  OWNER_REFS: 'ownerRefs',\n} as const;\n\nexport const CONDITION_ALIAS_SIGN = '$';\n\n// UnauthorizedError should be uniformely used for authorization errors.\nexport class UnauthorizedError extends NotAllowedError {\n  constructor() {\n    super('Unauthorized');\n  }\n}\n"],"names":[],"mappings":";;AA0EO,SAAS,kBACd,MAC2B,EAAA;AAC3B,EAAA,OAAO,cAAkB,IAAA,MAAA,CAAA;AAC3B,CAAA;AAYO,MAAM,sBAAyB,GAAA;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,QAAA;AAAA,EACA,QAAA;AAAA,EACA,KAAA;AACF,EAAA;AAEO,MAAM,kBAAqB,GAAA,CAChC,IACqB,KAAA,IAAA,CAAK,MAAU,IAAA,MAAA;AAE/B,SAAS,wBACd,MAC4B,EAAA;AAC5B,EAAQ,OAAA,sBAAA,CAA6C,SAAS,MAAM,CAAA,CAAA;AACtE,CAAA;AAiBO,MAAM,kBAAqB,GAAA;AAAA,EAChC,YAAc,EAAA,aAAA;AAAA,EACd,UAAY,EAAA,WAAA;AACd,EAAA;AAEO,MAAM,oBAAuB,GAAA,IAAA;AAG7B,MAAM,0BAA0B,eAAgB,CAAA;AAAA,EACrD,WAAc,GAAA;AACZ,IAAA,KAAA,CAAM,cAAc,CAAA,CAAA;AAAA,GACtB;AACF;;;;"}
+{"version":3,"file":"types.esm.js","sources":["../src/types.ts"],"sourcesContent":["/*\n * Copyright 2024 The Backstage Authors\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\nimport { NotAllowedError } from '@backstage/errors';\nimport {\n  ConditionalPolicyDecision,\n  PermissionAttributes,\n} from '@backstage/plugin-permission-common';\n\n/**\n * @public\n * 'rest' created via REST API\n * 'csv-file' created via policies-csv-file with defined path in the application configuration\n * 'configuration' created from application configuration\n * 'legacy'; preexisting policies\n */\nexport type Source = string;\n\n/**\n * @public\n */\nexport type PermissionPolicyMetadata = {\n  source: Source;\n};\n\n/**\n * @public\n */\nexport type RoleMetadata = {\n  description?: string;\n  source?: Source;\n  modifiedBy?: string;\n  author?: string;\n  lastModified?: string;\n  createdAt?: string;\n};\n\n/**\n * @public\n */\nexport type Policy = {\n  permission?: string;\n  policy?: string;\n};\n\n/**\n * @public\n */\nexport type RoleBasedPolicy = Policy & {\n  entityReference?: string;\n  effect?: string;\n  metadata?: PermissionPolicyMetadata;\n};\n\n/**\n * @public\n */\nexport type Role = {\n  memberReferences: string[];\n  name: string;\n  metadata?: RoleMetadata;\n};\n\n/**\n * @public\n */\nexport type UpdatePolicy = {\n  oldPolicy: Policy;\n  newPolicy: Policy;\n};\n\n/**\n * @public\n */\nexport type NamedPolicy = {\n  name: string;\n\n  policy: string;\n};\n\n/**\n * @public\n */\nexport type ResourcedPolicy = NamedPolicy & {\n  resourceType: string;\n};\n\n/**\n * @public\n */\nexport type PolicyDetails = NamedPolicy | ResourcedPolicy;\n\n/**\n * @public\n */\nexport function isResourcedPolicy(\n  policy: PolicyDetails,\n): policy is ResourcedPolicy {\n  return 'resourceType' in policy;\n}\n\n/**\n * @public\n */\nexport type PluginPermissionMetaData = {\n  pluginId: string;\n  policies: PolicyDetails[];\n};\n\n/**\n * @public\n */\nexport type NonEmptyArray<T> = [T, ...T[]];\n\n/**\n * @public\n * Permission framework attributes action has values: 'create' | 'read' | 'update' | 'delete' | undefined.\n * But we are introducing an action named \"use\" when action does not exist('undefined') to avoid\n * a more complicated model with multiple policy and request shapes.\n */\nexport const PermissionActionValues = [\n  'create',\n  'read',\n  'update',\n  'delete',\n  'use',\n] as const;\n\n/**\n * @public\n */\nexport type PermissionAction = (typeof PermissionActionValues)[number];\n\n/**\n * @public\n */\nexport const toPermissionAction = (\n  attr: PermissionAttributes,\n): PermissionAction => attr.action ?? 'use';\n\n/**\n * @public\n */\nexport function isValidPermissionAction(\n  action: string,\n): action is PermissionAction {\n  return (PermissionActionValues as readonly string[]).includes(action);\n}\n\n/**\n * @public\n */\nexport type PermissionInfo = {\n  name: string;\n  action: PermissionAction;\n};\n\n/**\n * @public\n * Frontend should use RoleConditionalPolicyDecision<PermissionAction>\n */\nexport type RoleConditionalPolicyDecision<\n  T extends PermissionAction | PermissionInfo,\n> = ConditionalPolicyDecision & {\n  id: number;\n  roleEntityRef: string;\n\n  permissionMapping: T[];\n};\n\n/**\n * @public\n */\nexport const ConditionalAliases = {\n  CURRENT_USER: 'currentUser',\n  OWNER_REFS: 'ownerRefs',\n} as const;\n\n/**\n * @public\n */\nexport const CONDITION_ALIAS_SIGN = '$';\n\n/**\n * @public\n * UnauthorizedError should be uniformely used for authorization errors.\n */\nexport class UnauthorizedError extends NotAllowedError {\n  constructor() {\n    super('Unauthorized');\n  }\n}\n"],"names":[],"mappings":";;AA2GO,SAAS,kBACd,MAC2B,EAAA;AAC3B,EAAA,OAAO,cAAkB,IAAA,MAAA;AAC3B;AAqBO,MAAM,sBAAyB,GAAA;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,QAAA;AAAA,EACA,QAAA;AAAA,EACA;AACF;AAUO,MAAM,kBAAqB,GAAA,CAChC,IACqB,KAAA,IAAA,CAAK,MAAU,IAAA;AAK/B,SAAS,wBACd,MAC4B,EAAA;AAC5B,EAAQ,OAAA,sBAAA,CAA6C,SAAS,MAAM,CAAA;AACtE;AA0BO,MAAM,kBAAqB,GAAA;AAAA,EAChC,YAAc,EAAA,aAAA;AAAA,EACd,UAAY,EAAA;AACd;AAKO,MAAM,oBAAuB,GAAA;AAM7B,MAAM,0BAA0B,eAAgB,CAAA;AAAA,EACrD,WAAc,GAAA;AACZ,IAAA,KAAA,CAAM,cAAc,CAAA;AAAA;AAExB;;;;"}

package/package.json

@@ -1,7 +1,7 @@
 {
   "name": "@backstage-community/plugin-rbac-common",
   "description": "Common functionalities for the rbac-common plugin",
-  "version": "1.12.1",
+  "version": "1.12.3",
   "main": "dist/index.cjs.js",
   "types": "dist/index.d.ts",
   "license": "Apache-2.0",
@@ -13,7 +13,7 @@
   },
   "backstage": {
     "role": "common-library",
-    "supported-versions": "1.32.5",
+    "supported-versions": "^1.28.4",
     "pluginId": "rbac",
     "pluginPackages": [
       "@backstage-community/plugin-rbac",
@@ -44,7 +44,7 @@
     "@backstage/errors": "^1.2.4",
     "@backstage/plugin-permission-common": "^0.8.1",
     "@spotify/prettier-config": "^15.0.0",
-    "prettier": "3.3.3"
+    "prettier": "^3.3.3"
   },
   "files": [
     "dist"
@@ -66,5 +66,15 @@
     "@PatAKnight"
   ],
   "author": "Red Hat",
+  "prettier": "@spotify/prettier-config",
+  "lint-staged": {
+    "*.{js,jsx,ts,tsx,mjs,cjs}": [
+      "eslint --fix",
+      "prettier --write"
+    ],
+    "*.{json,md}": [
+      "prettier --write"
+    ]
+  },
   "module": "dist/index.esm.js"
 }