@cloud-copilot/iam-policy 0.0.2 → 0.0.4

package/dist/esm/validate/validate.js

@@ -0,0 +1,144 @@
+const allowedPolicyKeys = new Set(['Version', 'Statement', 'Id']);
+const allowedStatementKeys = new Set(['Sid', 'Effect', 'Action', 'NotAction', 'Resource', 'NotResource', 'Principal', 'NotPrincipal', 'Condition']);
+const allowedPrincipalKeys = new Set(['AWS', 'Service', 'Federated', 'CanonicalUser']);
+export function validatePolicySyntax(policyDocument) {
+    const allErrors = [];
+    if (typeof policyDocument !== 'object') {
+        return [{ path: '', message: `Policy must be an object, received type ${typeof policyDocument}` }];
+    }
+    else if (Array.isArray(policyDocument)) {
+        return [{ path: '', message: 'Policy must be an object, received an array' }];
+    }
+    allErrors.push(...validateKeys(policyDocument, allowedPolicyKeys, ''));
+    allErrors.push(...validateDataTypeIfExists(policyDocument.Version, 'Version', 'string'));
+    allErrors.push(...validateDataTypeIfExists(policyDocument.Id, 'Id', 'string'));
+    if (!policyDocument.Statement) {
+        allErrors.push({
+            path: 'Statement',
+            message: 'Statement is required',
+        });
+    }
+    allErrors.push(...validateTypeOrArrayOfTypeIfExists(policyDocument.Statement, 'Statement', ['object']));
+    if (typeof policyDocument.Statement === 'object' && !Array.isArray(policyDocument.Statement)) {
+        allErrors.push(...validateStatement(policyDocument.Statement, 'Statement'));
+    }
+    else if (Array.isArray(policyDocument.Statement)) {
+        for (let i = 0; i < policyDocument.Statement.length; i++) {
+            allErrors.push(...validateStatement(policyDocument.Statement[i], `Statement[${i}]`));
+        }
+    }
+    return allErrors;
+}
+function validateStatement(statement, path) {
+    const statementErrors = [];
+    statementErrors.push(...validateKeys(statement, allowedStatementKeys, path));
+    statementErrors.push(...validateDataTypeIfExists(statement.Sid, `${path}.Sid`, 'string'));
+    if (statement.Effect !== 'Allow' && statement.Effect !== 'Deny') {
+        statementErrors.push({ path: `${path}.Effect`, message: `Effect must be present and exactly "Allow" or "Deny"` });
+    }
+    statementErrors.push(...validateTypeOrArrayOfTypeIfExists(statement.Action, `${path}.Action`, 'string'));
+    statementErrors.push(...validateTypeOrArrayOfTypeIfExists(statement.NotAction, `${path}.NotAction`, 'string'));
+    statementErrors.push(...validateTypeOrArrayOfTypeIfExists(statement.Resource, `${path}.Resource`, 'string'));
+    statementErrors.push(...validateTypeOrArrayOfTypeIfExists(statement.NotResource, `${path}.NotResource`, 'string'));
+    statementErrors.push(...validateDataTypeIfExists(statement.Principal, `${path}.Principal`, ['string', 'object']));
+    statementErrors.push(...validateDataTypeIfExists(statement.NotPrincipal, `${path}.NotPrincipal`, ['string', 'object']));
+    statementErrors.push(...validatePrincipal(statement.Principal, `${path}.Principal`));
+    statementErrors.push(...validatePrincipal(statement.NotPrincipal, `${path}.NotPrincipal`));
+    statementErrors.push(...validateCondition(statement.Condition, `${path}.Condition`));
+    return statementErrors;
+}
+function validatePrincipal(principal, path) {
+    const principalErrors = [];
+    if (principal === undefined || typeof principal === 'string') {
+        return [];
+    }
+    if (typeof principal === 'object') {
+        principalErrors.push(...validateKeys(principal, allowedPrincipalKeys, path));
+        principalErrors.push(...validateTypeOrArrayOfTypeIfExists(principal.AWS, `${path}.AWS`, 'string'));
+        principalErrors.push(...validateTypeOrArrayOfTypeIfExists(principal.Service, `${path}.Service`, 'string'));
+        principalErrors.push(...validateTypeOrArrayOfTypeIfExists(principal.Federated, `${path}.Federated`, 'string'));
+        principalErrors.push(...validateTypeOrArrayOfTypeIfExists(principal.CanonicalUser, `${path}.CanonicalUser`, 'string'));
+    }
+    return principalErrors;
+}
+function validateCondition(condition, path) {
+    const conditionErrors = [];
+    if (condition === undefined) {
+        return [];
+    }
+    conditionErrors.push(...validateDataTypeIfExists(condition, path, 'object'));
+    if (typeof condition !== 'object') {
+        return conditionErrors;
+    }
+    else if (Array.isArray(condition)) {
+        conditionErrors.push({
+            message: 'Condition must be an object, found an array',
+            path
+        });
+        return conditionErrors;
+    }
+    const conditionOperators = Object.keys(condition);
+    for (const operator of conditionOperators) {
+        conditionErrors.push(...validateDataTypeIfExists(condition[operator], `${path}.${operator}`, 'object'));
+        if (Array.isArray(condition[operator])) {
+            conditionErrors.push({
+                message: 'Condition operator must be an object, found an array',
+                path: `${path}.${operator}`
+            });
+        }
+        if (typeof condition[operator] === 'object' && !Array.isArray(condition[operator])) {
+            const conditionKeys = Object.keys(condition[operator]);
+            for (const key of conditionKeys) {
+                conditionErrors.push(...validateTypeOrArrayOfTypeIfExists(condition[operator][key], `${path}.${operator}.${key}`, 'string'));
+            }
+        }
+    }
+    return conditionErrors;
+}
+function validateKeys(object, allowedKeys, path) {
+    const keyErrors = [];
+    if (path != '') {
+        path = `${path}.`;
+    }
+    for (const key of Object.keys(object)) {
+        if (!allowedKeys.has(key)) {
+            keyErrors.push({
+                message: `Invalid key ${key}`,
+                path: `${path}${key}`
+            });
+        }
+    }
+    return keyErrors;
+}
+function validateTypeOrArrayOfTypeIfExists(value, path, allowedTypes) {
+    if (value === undefined) {
+        return [];
+    }
+    allowedTypes = Array.isArray(allowedTypes) ? allowedTypes : [allowedTypes];
+    const arrayOfTypeErrors = [];
+    if (!Array.isArray(value)) {
+        return validateDataTypeIfExists(value, path, allowedTypes);
+    }
+    else {
+        for (let i = 0; i < value.length; i++) {
+            arrayOfTypeErrors.push(...validateDataTypeIfExists(value[i], `${path}[${i}]`, allowedTypes));
+        }
+    }
+    return arrayOfTypeErrors;
+}
+function validateDataTypeIfExists(value, path, allowedDataTypes) {
+    if (value === undefined) {
+        return [];
+    }
+    allowedDataTypes = Array.isArray(allowedDataTypes) ? allowedDataTypes : [allowedDataTypes];
+    const errors = [];
+    const foundDataType = typeof value;
+    if (!allowedDataTypes.includes(foundDataType)) {
+        errors.push({
+            message: `Found data type ${foundDataType} allowed type(s) are ${allowedDataTypes.join(', ')}`,
+            path
+        });
+    }
+    return errors;
+}
+//# sourceMappingURL=validate.js.map

package/dist/esm/validate/validate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"validate.js","sourceRoot":"","sources":["../../../src/validate/validate.ts"],"names":[],"mappings":"AAKA,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC,CAAE,SAAS,EAAE,WAAW,EAAE,IAAI,CAAE,CAAC,CAAA;AACnE,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC,CAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,WAAW,EAAE,UAAU,EAAE,aAAa,EAAE,WAAW,EAAE,cAAc,EAAE,WAAW,CAAC,CAAC,CAAA;AACpJ,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC,CAAE,KAAK,EAAE,SAAS,EAAE,WAAW,EAAE,eAAe,CAAC,CAAC,CAAA;AAGvF,MAAM,UAAU,oBAAoB,CAAC,cAAmB;IACtD,MAAM,SAAS,GAAsB,EAAE,CAAA;IACvC,IAAG,OAAO,cAAc,KAAK,QAAQ,EAAE,CAAC;QACtC,OAAO,CAAC,EAAC,IAAI,EAAE,EAAE,EAAE,OAAO,EAAE,2CAA2C,OAAO,cAAc,EAAE,EAAC,CAAC,CAAA;IAClG,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE,CAAC;QACzC,OAAO,CAAC,EAAC,IAAI,EAAE,EAAE,EAAE,OAAO,EAAE,6CAA6C,EAAC,CAAC,CAAA;IAC7E,CAAC;IAED,SAAS,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,cAAc,EAAE,iBAAiB,EAAE,EAAE,CAAC,CAAC,CAAA;IAEtE,SAAS,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,cAAc,CAAC,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAA;IACxF,SAAS,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,cAAc,CAAC,EAAE,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAA;IAC9E,IAAG,CAAC,cAAc,CAAC,SAAS,EAAE,CAAC;QAC7B,SAAS,CAAC,IAAI,CAAC;YACb,IAAI,EAAE,WAAW;YACjB,OAAO,EAAE,uBAAuB;SACjC,CAAC,CAAA;IACJ,CAAC;IACD,SAAS,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,cAAc,CAAC,SAAS,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAA;IACvG,IAAG,OAAO,cAAc,CAAC,SAAS,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CAAC;QAC5F,SAAS,CAAC,IAAI,CAAC,GAAG,iBAAiB,CAAC,cAAc,CAAC,SAAS,EAAE,WAAW,CAAC,CAAC,CAAA;IAC7E,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,cAAc,CAAC,SAAS,CAAC,EAAE,CAAC;QACnD,KAAI,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,cAAc,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACxD,SAAS,CAAC,IAAI,CAAC,GAAG,iBAAiB,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,aAAa,CAAC,GAAG,CAAC,CAAC,CAAA;QACtF,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAA;AAClB,CAAC;AAED,SAAS,iBAAiB,CAAC,SAAc,EAAE,IAAY;IACrD,MAAM,eAAe,GAAsB,EAAE,CAAA;IAC7C,eAAe,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,SAAS,EAAE,oBAAoB,EAAE,IAAI,CAAC,CAAC,CAAA;IAC5E,eAAe,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,SAAS,CAAC,GAAG,EAAE,GAAG,IAAI,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAA;IACzF,IAAG,SAAS,CAAC,MAAM,KAAK,OAAO,IAAI,SAAS,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;QAC/D,eAAe,CAAC,IAAI,CAAC,EAAC,IAAI,EAAE,GAAG,IAAI,SAAS,EAAE,OAAO,EAAE,sDAAsD,EAAC,CAAC,CAAA;IACjH,CAAC;IAED,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,MAAM,EAAE,GAAG,IAAI,SAAS,EAAE,QAAQ,CAAC,CAAC,CAAA;IACxG,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,SAAS,EAAE,GAAG,IAAI,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAA;IAC9G,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,QAAQ,EAAE,GAAG,IAAI,WAAW,EAAE,QAAQ,CAAC,CAAC,CAAA;IAC5G,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,WAAW,EAAE,GAAG,IAAI,cAAc,EAAE,QAAQ,CAAC,CAAC,CAAA;IAElH,eAAe,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,SAAS,CAAC,SAAS,EAAE,GAAG,IAAI,YAAY,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAA;IACjH,eAAe,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,SAAS,CAAC,YAAY,EAAE,GAAG,IAAI,eAAe,EAAE,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC,CAAA;IACvH,eAAe,CAAC,IAAI,CAAC,GAAG,iBAAiB,CAAC,SAAS,CAAC,SAAS,EAAE,GAAG,IAAI,YAAY,CAAC,CAAC,CAAA;IACpF,eAAe,CAAC,IAAI,CAAC,GAAG,iBAAiB,CAAC,SAAS,CAAC,YAAY,EAAE,GAAG,IAAI,eAAe,CAAC,CAAC,CAAA;IAE1F,eAAe,CAAC,IAAI,CAAC,GAAG,iBAAiB,CAAC,SAAS,CAAC,SAAS,EAAE,GAAG,IAAI,YAAY,CAAC,CAAC,CAAA;IACpF,OAAO,eAAe,CAAA;AAExB,CAAC;AAED,SAAS,iBAAiB,CAAC,SAAc,EAAE,IAAY;IACrD,MAAM,eAAe,GAAsB,EAAE,CAAA;IAE7C,IAAG,SAAS,KAAK,SAAS,IAAI,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QAC5D,OAAO,EAAE,CAAA;IACX,CAAC;IACD,IAAG,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QACjC,eAAe,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,SAAS,EAAE,oBAAoB,EAAE,IAAI,CAAC,CAAC,CAAA;QAC5E,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,GAAG,EAAE,GAAG,IAAI,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAA;QAClG,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,OAAO,EAAE,GAAG,IAAI,UAAU,EAAE,QAAQ,CAAC,CAAC,CAAA;QAC1G,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,SAAS,EAAE,GAAG,IAAI,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAA;QAC9G,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,aAAa,EAAE,GAAG,IAAI,gBAAgB,EAAE,QAAQ,CAAC,CAAC,CAAA;IACxH,CAAC;IAED,OAAO,eAAe,CAAA;AAExB,CAAC;AAED,SAAS,iBAAiB,CAAC,SAAc,EAAE,IAAY;IACrD,MAAM,eAAe,GAAsB,EAAE,CAAA;IAC7C,IAAG,SAAS,KAAK,SAAS,EAAE,CAAC;QAC3B,OAAO,EAAE,CAAA;IACX,CAAC;IACD,eAAe,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,SAAS,EAAE,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAA;IAC5E,IAAG,OAAO,SAAS,KAAK,QAAQ,EAAE,CAAC;QACjC,OAAO,eAAe,CAAA;IACxB,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;QACpC,eAAe,CAAC,IAAI,CAAC;YACnB,OAAO,EAAE,6CAA6C;YACtD,IAAI;SACL,CAAC,CAAA;QACF,OAAO,eAAe,CAAA;IACxB,CAAC;IAED,MAAM,kBAAkB,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;IACjD,KAAI,MAAM,QAAQ,IAAI,kBAAkB,EAAE,CAAC;QACzC,eAAe,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,GAAG,IAAI,IAAI,QAAQ,EAAE,EAAE,QAAQ,CAAC,CAAC,CAAA;QACvG,IAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YACtC,eAAe,CAAC,IAAI,CAAC;gBACnB,OAAO,EAAE,sDAAsD;gBAC/D,IAAI,EAAE,GAAG,IAAI,IAAI,QAAQ,EAAE;aAC5B,CAAC,CAAA;QACJ,CAAC;QAED,IAAG,OAAO,SAAS,CAAC,QAAQ,CAAC,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YAClF,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAA;YACtD,KAAI,MAAM,GAAG,IAAI,aAAa,EAAE,CAAC;gBAC/B,eAAe,CAAC,IAAI,CAAC,GAAG,iCAAiC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,EAAE,GAAG,IAAI,IAAI,QAAQ,IAAI,GAAG,EAAE,EAAE,QAAQ,CAAC,CAAC,CAAA;YAC9H,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAA;AACxB,CAAC;AAED,SAAS,YAAY,CAAC,MAAW,EAAE,WAAwB,EAAE,IAAY;IACvE,MAAM,SAAS,GAAsB,EAAE,CAAA;IACvC,IAAG,IAAI,IAAI,EAAE,EAAE,CAAC;QACd,IAAI,GAAG,GAAG,IAAI,GAAG,CAAA;IACnB,CAAC;IAED,KAAI,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;QACrC,IAAG,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YACzB,SAAS,CAAC,IAAI,CAAC;gBACb,OAAO,EAAE,eAAe,GAAG,EAAE;gBAC7B,IAAI,EAAE,GAAG,IAAI,GAAG,GAAG,EAAE;aACtB,CAAC,CAAA;QACJ,CAAC;IACH,CAAC;IACD,OAAO,SAAS,CAAA;AAClB,CAAC;AAED,SAAS,iCAAiC,CAAC,KAAU,EAAE,IAAY,EAAE,YAA6C;IAChH,IAAG,KAAK,KAAK,SAAS,EAAE,CAAC;QACvB,OAAO,EAAE,CAAA;IACX,CAAC;IAED,YAAY,GAAG,KAAK,CAAC,OAAO,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAE,YAAY,CAAE,CAAA;IAC5E,MAAM,iBAAiB,GAAsB,EAAE,CAAA;IAC/C,IAAG,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,wBAAwB,CAAC,KAAK,EAAE,IAAI,EAAE,YAAY,CAAC,CAAA;IAC5D,CAAC;SAAM,CAAC;QACN,KAAI,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACrC,iBAAiB,CAAC,IAAI,CAAC,GAAG,wBAAwB,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,GAAG,IAAI,IAAI,CAAC,GAAG,EAAE,YAAY,CAAC,CAAC,CAAA;QAC9F,CAAC;IACH,CAAC;IAED,OAAO,iBAAiB,CAAA;AAC1B,CAAC;AAED,SAAS,wBAAwB,CAAC,KAAU,EAAE,IAAY,EAAE,gBAAiD;IAC3G,IAAG,KAAK,KAAK,SAAS,EAAE,CAAC;QACvB,OAAO,EAAE,CAAA;IACX,CAAC;IAED,gBAAgB,GAAG,KAAK,CAAC,OAAO,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAE,gBAAgB,CAAE,CAAA;IAC5F,MAAM,MAAM,GAAsB,EAAE,CAAA;IACpC,MAAM,aAAa,GAAG,OAAO,KAAK,CAAA;IAClC,IAAG,CAAC,gBAAgB,CAAC,QAAQ,CAAC,aAA+B,CAAC,EAAE,CAAC;QAC/D,MAAM,CAAC,IAAI,CAAC;YACV,OAAO,EAAE,mBAAmB,aAAa,wBAAwB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YAC9F,IAAI;SACL,CAAC,CAAA;IACJ,CAAC;IACD,OAAO,MAAM,CAAA;AACf,CAAC"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@cloud-copilot/iam-policy",
-  "version": "0.0.2",
+  "version": "0.0.4",
   "description": "An ORM for AWS IAM policies",
   "repository": {
     "type": "git",

package/dist/actions/action.d.ts

@@ -1,51 +0,0 @@
-export type ActionType = 'service' | 'wildcard';
-/**
- * An Action string in an IAM policy
- */
-export interface Action {
-    /**
-     * The type of actions
-     */
-    type(): ActionType;
-    /**
-     * The raw string of the action
-     */
-    value(): string;
-    /**
-     * Whether the action is a wildcard action: `"*"`
-     */
-    isWildcardAction(): boolean;
-    /**
-     * Whether the action is a service action: `"service:Action"`
-     */
-    isServiceAction(): boolean;
-}
-/**
- * A wildcard action: `"*"`
- */
-export interface WildcardAction extends Action {
-}
-/**
- * A service action: `"service:Action"`
- */
-export interface ServiceAction extends Action {
-    /**
-     * The service of the action
-     */
-    service(): string;
-    /**
-     * The action within the service
-     */
-    action(): string;
-}
-export declare class ActionImpl implements Action, WildcardAction, ServiceAction {
-    private readonly rawValue;
-    constructor(rawValue: string);
-    type(): ActionType;
-    value(): string;
-    isWildcardAction(): this is WildcardAction;
-    isServiceAction(): this is ServiceAction;
-    service(): string;
-    action(): string;
-}
-//# sourceMappingURL=action.d.ts.map

package/dist/actions/action.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"action.d.ts","sourceRoot":"","sources":["../../src/actions/action.ts"],"names":[],"mappings":"AAEA,MAAM,MAAM,UAAU,GAAG,SAAS,GAAG,UAAU,CAAA;AAE/C;;GAEG;AACH,MAAM,WAAW,MAAM;IACrB;;OAEG;IACH,IAAI,IAAI,UAAU,CAAA;IAElB;;OAEG;IACH,KAAK,IAAI,MAAM,CAAA;IAEf;;OAEG;IACH,gBAAgB,IAAI,OAAO,CAAA;IAE3B;;OAEG;IACH,eAAe,IAAI,OAAO,CAAA;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,cAAe,SAAQ,MAAM;CAC7C;AAED;;GAEG;AACH,MAAM,WAAW,aAAc,SAAQ,MAAM;IAC3C;;OAEG;IACH,OAAO,IAAI,MAAM,CAAA;IAEjB;;OAEG;IACH,MAAM,IAAI,MAAM,CAAA;CACjB;AAED,qBAAa,UAAW,YAAW,MAAM,EAAG,cAAc,EAAE,aAAa;IAC3D,OAAO,CAAC,QAAQ,CAAC,QAAQ;gBAAR,QAAQ,EAAE,MAAM;IAEtC,IAAI,IAAI,UAAU;IAOlB,KAAK,IAAI,MAAM;IAIf,gBAAgB,IAAI,IAAI,IAAI,cAAc;IAI1C,eAAe,IAAI,IAAI,IAAI,aAAa;IAIxC,OAAO,IAAI,MAAM;IAIjB,MAAM,IAAI,MAAM;CAGxB"}

package/dist/actions/action.js

@@ -1,33 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ActionImpl = void 0;
-const utils_js_1 = require("../utils.js");
-class ActionImpl {
-    rawValue;
-    constructor(rawValue) {
-        this.rawValue = rawValue;
-    }
-    type() {
-        if ((0, utils_js_1.isAllWildcards)(this.rawValue)) {
-            return 'wildcard';
-        }
-        return 'service';
-    }
-    value() {
-        return this.rawValue;
-    }
-    isWildcardAction() {
-        return this.type() === 'wildcard';
-    }
-    isServiceAction() {
-        return this.type() === 'service';
-    }
-    service() {
-        return this.rawValue.split(':')[0];
-    }
-    action() {
-        return this.rawValue.split(':')[1];
-    }
-}
-exports.ActionImpl = ActionImpl;
-//# sourceMappingURL=action.js.map

package/dist/actions/action.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"action.js","sourceRoot":"","sources":["../../src/actions/action.ts"],"names":[],"mappings":";;;AAAA,0CAA4C;AAkD5C,MAAa,UAAU;IACQ;IAA7B,YAA6B,QAAgB;QAAhB,aAAQ,GAAR,QAAQ,CAAQ;IAAG,CAAC;IAE1C,IAAI;QACT,IAAG,IAAA,yBAAc,EAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACjC,OAAO,UAAU,CAAA;QACnB,CAAC;QACD,OAAO,SAAS,CAAA;IAClB,CAAC;IAEM,KAAK;QACV,OAAO,IAAI,CAAC,QAAQ,CAAA;IACtB,CAAC;IAEM,gBAAgB;QACrB,OAAO,IAAI,CAAC,IAAI,EAAE,KAAK,UAAU,CAAA;IACnC,CAAC;IAEM,eAAe;QACpB,OAAO,IAAI,CAAC,IAAI,EAAE,KAAK,SAAS,CAAA;IAClC,CAAC;IAEM,OAAO;QACZ,OAAO,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAA;IACpC,CAAC;IAEM,MAAM;QACX,OAAO,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAA;IACpC,CAAC;CACF;AA7BD,gCA6BC"}

package/dist/actions/actions.test.d.ts

@@ -1,2 +0,0 @@
-export {};
-//# sourceMappingURL=actions.test.d.ts.map

package/dist/actions/actions.test.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"actions.test.d.ts","sourceRoot":"","sources":["../../src/actions/actions.test.ts"],"names":[],"mappings":""}

package/dist/actions/actions.test.js

@@ -1,91 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-const vitest_1 = require("vitest");
-const action_js_1 = require("./action.js");
-(0, vitest_1.describe)('ActionImpl', () => {
-    (0, vitest_1.describe)('type', () => {
-        (0, vitest_1.it)('should return wildcard when all wildcards', () => {
-            // Given an action wildcard
-            const actionString = "*";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.type()).toBe('wildcard');
-        });
-        (0, vitest_1.it)('should return service when not all wildcards', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.type()).toBe('service');
-        });
-    });
-    (0, vitest_1.describe)('value', () => {
-        (0, vitest_1.it)('should return the value', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.value()).toBe(actionString);
-        });
-    });
-    (0, vitest_1.describe)('isWildcardAction', () => {
-        (0, vitest_1.it)('should return true when wildcard', () => {
-            // Given an action wildcard
-            const actionString = "*";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.isWildcardAction()).toBe(true);
-        });
-        (0, vitest_1.it)('should return false when not wildcard', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.isWildcardAction()).toBe(false);
-        });
-    });
-    (0, vitest_1.describe)('isServiceAction', () => {
-        (0, vitest_1.it)('should return true when service', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.isServiceAction()).toBe(true);
-        });
-        (0, vitest_1.it)('should return false when not service', () => {
-            // Given an action wildcard
-            const actionString = "*";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.isServiceAction()).toBe(false);
-        });
-    });
-    (0, vitest_1.describe)('service', () => {
-        (0, vitest_1.it)('should return the service', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.service()).toBe('s3');
-        });
-    });
-    (0, vitest_1.describe)('action', () => {
-        (0, vitest_1.it)('should return the action', () => {
-            // Given an action string
-            const actionString = "s3:GetObject";
-            // When an ActionImpl is created
-            const action = new action_js_1.ActionImpl(actionString);
-            // Assert
-            (0, vitest_1.expect)(action.action()).toBe('GetObject');
-        });
-    });
-});
-//# sourceMappingURL=actions.test.js.map

package/dist/actions/actions.test.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"actions.test.js","sourceRoot":"","sources":["../../src/actions/actions.test.ts"],"names":[],"mappings":";;AAAA,mCAA6C;AAC7C,2CAAwC;AAExC,IAAA,iBAAQ,EAAC,YAAY,EAAE,GAAG,EAAE;IAC1B,IAAA,iBAAQ,EAAC,MAAM,EAAE,GAAG,EAAE;QACpB,IAAA,WAAE,EAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,2BAA2B;YAC3B,MAAM,YAAY,GAAG,GAAG,CAAA;YAExB,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAA;QACxC,CAAC,CAAC,CAAA;QAEF,IAAA,WAAE,EAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,CAAA;QACvC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAA,iBAAQ,EAAC,OAAO,EAAE,GAAG,EAAE;QACrB,IAAA,WAAE,EAAC,yBAAyB,EAAE,GAAG,EAAE;YACjC,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAAA;QAC3C,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAA,iBAAQ,EAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,IAAA,WAAE,EAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,2BAA2B;YAC3B,MAAM,YAAY,GAAG,GAAG,CAAA;YAExB,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC9C,CAAC,CAAC,CAAA;QAEF,IAAA,WAAE,EAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QAC/C,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAA,iBAAQ,EAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,IAAA,WAAE,EAAC,iCAAiC,EAAE,GAAG,EAAE;YACzC,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QAC7C,CAAC,CAAC,CAAA;QAEF,IAAA,WAAE,EAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,2BAA2B;YAC3B,MAAM,YAAY,GAAG,GAAG,CAAA;YAExB,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,eAAe,EAAE,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;QAC9C,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAA,iBAAQ,EAAC,SAAS,EAAE,GAAG,EAAE;QACvB,IAAA,WAAE,EAAC,2BAA2B,EAAE,GAAG,EAAE;YACnC,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAA;QACrC,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;IAEF,IAAA,iBAAQ,EAAC,QAAQ,EAAE,GAAG,EAAE;QACtB,IAAA,WAAE,EAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,yBAAyB;YACzB,MAAM,YAAY,GAAG,cAAc,CAAA;YAEnC,gCAAgC;YAChC,MAAM,MAAM,GAAG,IAAI,sBAAU,CAAC,YAAY,CAAC,CAAA;YAE3C,SAAS;YACT,IAAA,eAAM,EAAC,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAA;QAC3C,CAAC,CAAC,CAAA;IACJ,CAAC,CAAC,CAAA;AACJ,CAAC,CAAC,CAAA"}

package/dist/cjs/conditions/conditions.d.ts

@@ -1,15 +0,0 @@
-export interface Condition {
-    operation(): string;
-    conditionKey(): string;
-    conditionValues(): string[];
-}
-export declare class ConditionImpl implements Condition {
-    private readonly op;
-    private readonly key;
-    private readonly values;
-    constructor(op: string, key: string, values: string | string[]);
-    operation(): string;
-    conditionKey(): string;
-    conditionValues(): string[];
-}
-//# sourceMappingURL=conditions.d.ts.map

package/dist/cjs/conditions/conditions.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"conditions.d.ts","sourceRoot":"","sources":["../../../src/conditions/conditions.ts"],"names":[],"mappings":"AAAA,MAAM,WAAW,SAAS;IACxB,SAAS,IAAI,MAAM,CAAA;IACnB,YAAY,IAAI,MAAM,CAAA;IACtB,eAAe,IAAI,MAAM,EAAE,CAAA;CAC5B;AAED,qBAAa,aAAc,YAAW,SAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,EAAE;IAAU,OAAO,CAAC,QAAQ,CAAC,GAAG;IAAU,OAAO,CAAC,QAAQ,CAAC,MAAM;gBAAjE,EAAE,EAAE,MAAM,EAAmB,GAAG,EAAE,MAAM,EAAmB,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE;IAE1G,SAAS,IAAI,MAAM;IAInB,YAAY,IAAI,MAAM;IAItB,eAAe,IAAI,MAAM,EAAE;CAGnC"}

package/dist/cjs/conditions/conditions.js

@@ -1,24 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ConditionImpl = void 0;
-class ConditionImpl {
-    op;
-    key;
-    values;
-    constructor(op, key, values) {
-        this.op = op;
-        this.key = key;
-        this.values = values;
-    }
-    operation() {
-        return this.op;
-    }
-    conditionKey() {
-        return this.key;
-    }
-    conditionValues() {
-        return typeof this.values === 'string' ? [this.values] : this.values;
-    }
-}
-exports.ConditionImpl = ConditionImpl;
-//# sourceMappingURL=conditions.js.map

package/dist/cjs/conditions/conditions.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"conditions.js","sourceRoot":"","sources":["../../../src/conditions/conditions.ts"],"names":[],"mappings":";;;AAMA,MAAa,aAAa;IACK;IAA6B;IAA8B;IAAxF,YAA6B,EAAU,EAAmB,GAAW,EAAmB,MAAyB;QAApF,OAAE,GAAF,EAAE,CAAQ;QAAmB,QAAG,GAAH,GAAG,CAAQ;QAAmB,WAAM,GAAN,MAAM,CAAmB;IAAG,CAAC;IAE9G,SAAS;QACd,OAAO,IAAI,CAAC,EAAE,CAAA;IAChB,CAAC;IAEM,YAAY;QACjB,OAAO,IAAI,CAAC,GAAG,CAAA;IACjB,CAAC;IAEM,eAAe;QACpB,OAAO,OAAO,IAAI,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAA;IACtE,CAAC;CACF;AAdD,sCAcC"}

package/dist/cjs/principals/principals.d.ts

@@ -1,21 +0,0 @@
-export type PrincipalType = 'AWS' | 'Service' | 'Federated' | 'CanonicalUser';
-export interface Principal {
-    type(): PrincipalType;
-    value(): string;
-}
-export declare class PrincipalImpl {
-    private readonly principalType;
-    private readonly principalId;
-    constructor(principalType: PrincipalType, principalId: string);
-    value(): string;
-    type(): PrincipalType;
-}
-export declare class AwsPrincipal extends PrincipalImpl {
-}
-export declare class ServicePrincipal extends PrincipalImpl {
-}
-export declare class FederatedPrincipal extends PrincipalImpl {
-}
-export declare class CanonicalUserPrincipal extends PrincipalImpl {
-}
-//# sourceMappingURL=principals.d.ts.map

package/dist/cjs/principals/principals.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"principals.d.ts","sourceRoot":"","sources":["../../../src/principals/principals.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,aAAa,GAAG,KAAK,GAAG,SAAS,GAAG,WAAW,GAAG,eAAe,CAAA;AAE7E,MAAM,WAAW,SAAS;IACxB,IAAI,IAAI,aAAa,CAAA;IACrB,KAAK,IAAI,MAAM,CAAA;CAChB;AAED,qBAAa,aAAa;IACZ,OAAO,CAAC,QAAQ,CAAC,aAAa;IAAiB,OAAO,CAAC,QAAQ,CAAC,WAAW;gBAA1D,aAAa,EAAE,aAAa,EAAmB,WAAW,EAAE,MAAM;IAExF,KAAK,IAAI,MAAM;IAIf,IAAI,IAAI,aAAa;CAG7B;AAGD,qBAAa,YAAa,SAAQ,aAAa;CAC9C;AAGD,qBAAa,gBAAiB,SAAQ,aAAa;CAClD;AAGD,qBAAa,kBAAmB,SAAQ,aAAa;CACpD;AAGD,qBAAa,sBAAuB,SAAQ,aAAa;CACxD"}

package/dist/cjs/principals/principals.js

@@ -1,35 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.CanonicalUserPrincipal = exports.FederatedPrincipal = exports.ServicePrincipal = exports.AwsPrincipal = exports.PrincipalImpl = void 0;
-class PrincipalImpl {
-    principalType;
-    principalId;
-    constructor(principalType, principalId) {
-        this.principalType = principalType;
-        this.principalId = principalId;
-    }
-    value() {
-        return this.principalId;
-    }
-    type() {
-        return this.principalType;
-    }
-}
-exports.PrincipalImpl = PrincipalImpl;
-//AWS
-class AwsPrincipal extends PrincipalImpl {
-}
-exports.AwsPrincipal = AwsPrincipal;
-//Service
-class ServicePrincipal extends PrincipalImpl {
-}
-exports.ServicePrincipal = ServicePrincipal;
-//Federated
-class FederatedPrincipal extends PrincipalImpl {
-}
-exports.FederatedPrincipal = FederatedPrincipal;
-//CanonicalUser
-class CanonicalUserPrincipal extends PrincipalImpl {
-}
-exports.CanonicalUserPrincipal = CanonicalUserPrincipal;
-//# sourceMappingURL=principals.js.map

package/dist/cjs/principals/principals.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"principals.js","sourceRoot":"","sources":["../../../src/principals/principals.ts"],"names":[],"mappings":";;;AAOA,MAAa,aAAa;IACK;IAA+C;IAA5E,YAA6B,aAA4B,EAAmB,WAAmB;QAAlE,kBAAa,GAAb,aAAa,CAAe;QAAmB,gBAAW,GAAX,WAAW,CAAQ;IAAG,CAAC;IAE5F,KAAK;QACV,OAAO,IAAI,CAAC,WAAW,CAAA;IACzB,CAAC;IAEM,IAAI;QACT,OAAO,IAAI,CAAC,aAAa,CAAA;IAC3B,CAAC;CACF;AAVD,sCAUC;AAED,KAAK;AACL,MAAa,YAAa,SAAQ,aAAa;CAC9C;AADD,oCACC;AAED,SAAS;AACT,MAAa,gBAAiB,SAAQ,aAAa;CAClD;AADD,4CACC;AAED,WAAW;AACX,MAAa,kBAAmB,SAAQ,aAAa;CACpD;AADD,gDACC;AAED,eAAe;AACf,MAAa,sBAAuB,SAAQ,aAAa;CACxD;AADD,wDACC"}

package/dist/conditions/condition.d.ts

@@ -1,16 +0,0 @@
-import { ConditionOperation } from "./conditionOperation.js";
-export interface Condition {
-    operation(): ConditionOperation;
-    conditionKey(): string;
-    conditionValues(): string[];
-}
-export declare class ConditionImpl implements Condition {
-    private readonly op;
-    private readonly key;
-    private readonly values;
-    constructor(op: string, key: string, values: string | string[]);
-    operation(): ConditionOperation;
-    conditionKey(): string;
-    conditionValues(): string[];
-}
-//# sourceMappingURL=condition.d.ts.map

package/dist/conditions/condition.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"condition.d.ts","sourceRoot":"","sources":["../../src/conditions/condition.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAA0B,MAAM,yBAAyB,CAAA;AAEpF,MAAM,WAAW,SAAS;IACxB,SAAS,IAAI,kBAAkB,CAAA;IAC/B,YAAY,IAAI,MAAM,CAAA;IACtB,eAAe,IAAI,MAAM,EAAE,CAAA;CAC5B;AAED,qBAAa,aAAc,YAAW,SAAS;IACjC,OAAO,CAAC,QAAQ,CAAC,EAAE;IAAU,OAAO,CAAC,QAAQ,CAAC,GAAG;IAAU,OAAO,CAAC,QAAQ,CAAC,MAAM;gBAAjE,EAAE,EAAE,MAAM,EAAmB,GAAG,EAAE,MAAM,EAAmB,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE;IAE1G,SAAS,IAAI,kBAAkB;IAI/B,YAAY,IAAI,MAAM;IAItB,eAAe,IAAI,MAAM,EAAE;CAGnC"}

package/dist/conditions/condition.js

@@ -1,25 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ConditionImpl = void 0;
-const conditionOperation_js_1 = require("./conditionOperation.js");
-class ConditionImpl {
-    op;
-    key;
-    values;
-    constructor(op, key, values) {
-        this.op = op;
-        this.key = key;
-        this.values = values;
-    }
-    operation() {
-        return new conditionOperation_js_1.ConditionOperationImpl(this.op);
-    }
-    conditionKey() {
-        return this.key;
-    }
-    conditionValues() {
-        return typeof this.values === 'string' ? [this.values] : this.values;
-    }
-}
-exports.ConditionImpl = ConditionImpl;
-//# sourceMappingURL=condition.js.map

package/dist/conditions/condition.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"condition.js","sourceRoot":"","sources":["../../src/conditions/condition.ts"],"names":[],"mappings":";;;AAAA,mEAAoF;AAQpF,MAAa,aAAa;IACK;IAA6B;IAA8B;IAAxF,YAA6B,EAAU,EAAmB,GAAW,EAAmB,MAAyB;QAApF,OAAE,GAAF,EAAE,CAAQ;QAAmB,QAAG,GAAH,GAAG,CAAQ;QAAmB,WAAM,GAAN,MAAM,CAAmB;IAAG,CAAC;IAE9G,SAAS;QACd,OAAO,IAAI,8CAAsB,CAAC,IAAI,CAAC,EAAE,CAAC,CAAA;IAC5C,CAAC;IAEM,YAAY;QACjB,OAAO,IAAI,CAAC,GAAG,CAAA;IACjB,CAAC;IAEM,eAAe;QACpB,OAAO,OAAO,IAAI,CAAC,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAA;IACtE,CAAC;CACF;AAdD,sCAcC"}

package/dist/conditions/conditionOperation.d.ts

@@ -1,31 +0,0 @@
-export type SetOperator = 'ForAllValues' | 'ForAnyValue';
-/**
- * ConditionOperation is a string that represents the operation of a condition.
- */
-export interface ConditionOperation {
-    /**
-     * Returns the set modifier if present.
-     */
-    setOperator(): SetOperator | undefined;
-    /**
-     * Returns the base operator of the condition without the set modifier or IfExists.
-     */
-    baseOperator(): string;
-    /**
-     * Returns true if the condition operation ends with IfExists.
-     */
-    isIfExists(): boolean;
-    /**
-     * Returns the raw string of the condition operation.
-     */
-    value(): string;
-}
-export declare class ConditionOperationImpl implements ConditionOperation {
-    private readonly op;
-    constructor(op: string);
-    setOperator(): SetOperator | undefined;
-    isIfExists(): boolean;
-    baseOperator(): string;
-    value(): string;
-}
-//# sourceMappingURL=conditionOperation.d.ts.map

package/dist/conditions/conditionOperation.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"conditionOperation.d.ts","sourceRoot":"","sources":["../../src/conditions/conditionOperation.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,WAAW,GAAG,cAAc,GAAG,aAAa,CAAA;AAExD;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC;;OAEG;IACH,WAAW,IAAI,WAAW,GAAG,SAAS,CAAA;IAEtC;;OAEG;IACH,YAAY,IAAI,MAAM,CAAA;IAEtB;;OAEG;IACH,UAAU,IAAI,OAAO,CAAA;IAErB;;OAEG;IACH,KAAK,IAAI,MAAM,CAAA;CAChB;AAID,qBAAa,sBAAuB,YAAW,kBAAkB;IACnD,OAAO,CAAC,QAAQ,CAAC,EAAE;gBAAF,EAAE,EAAE,MAAM;IAEhC,WAAW,IAAI,WAAW,GAAG,SAAS;IAOtC,UAAU,IAAI,OAAO;IAIrB,YAAY,IAAI,MAAM;IAQtB,KAAK,IAAI,MAAM;CAIvB"}

package/dist/conditions/conditionOperation.js

@@ -1,31 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ConditionOperationImpl = void 0;
-const ifExistsSlice = 'IfExists'.length * -1;
-class ConditionOperationImpl {
-    op;
-    constructor(op) {
-        this.op = op;
-    }
-    setOperator() {
-        if (!this.op.includes(':')) {
-            return undefined;
-        }
-        return this.op.split(':').at(0);
-    }
-    isIfExists() {
-        return this.op.endsWith('IfExists');
-    }
-    baseOperator() {
-        const base = this.op.split(':').at(-1);
-        if (base?.endsWith('IfExists')) {
-            return base.slice(0, ifExistsSlice);
-        }
-        return base;
-    }
-    value() {
-        return this.op;
-    }
-}
-exports.ConditionOperationImpl = ConditionOperationImpl;
-//# sourceMappingURL=conditionOperation.js.map

package/dist/conditions/conditionOperation.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"conditionOperation.js","sourceRoot":"","sources":["../../src/conditions/conditionOperation.ts"],"names":[],"mappings":";;;AA2BA,MAAM,aAAa,GAAG,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAA;AAE5C,MAAa,sBAAsB;IACJ;IAA7B,YAA6B,EAAU;QAAV,OAAE,GAAF,EAAE,CAAQ;IAAG,CAAC;IAEpC,WAAW;QAChB,IAAG,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YAC1B,OAAO,SAAS,CAAA;QAClB,CAAC;QACD,OAAO,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAgB,CAAA;IAChD,CAAC;IAEM,UAAU;QACf,OAAO,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAA;IACrC,CAAC;IAEM,YAAY;QACjB,MAAM,IAAI,GAAG,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAE,CAAA;QACvC,IAAG,IAAI,EAAE,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,aAAa,CAAC,CAAA;QACrC,CAAC;QACD,OAAO,IAAI,CAAA;IACb,CAAC;IAEM,KAAK;QACV,OAAO,IAAI,CAAC,EAAE,CAAA;IAChB,CAAC;CAEF;AA1BD,wDA0BC"}

package/dist/index.d.ts

@@ -1,9 +0,0 @@
-export type { Action, ActionType, ServiceAction, WildcardAction } from './actions/action.js';
-export type { Condition } from './conditions/condition.js';
-export type { ConditionOperation, SetOperator } from './conditions/conditionOperation.js';
-export { loadPolicy } from './parser.js';
-export type { Policy } from './policies/policy.js';
-export type { Principal, PrincipalType } from './principals/principal.js';
-export type { Resource } from './resources/resource.js';
-export type { ActionStatement, NotActionStatement, NotPrincipalStatement, NotResourceStatement, PrincipalStatement, ResourceStatement, Statement } from './statements/statement.js';
-//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,MAAM,EAAE,UAAU,EAAE,aAAa,EAAE,cAAc,EAAE,MAAM,qBAAqB,CAAA;AAC5F,YAAY,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAA;AAC1D,YAAY,EAAE,kBAAkB,EAAE,WAAW,EAAE,MAAM,oCAAoC,CAAA;AACzF,OAAO,EAAE,UAAU,EAAE,MAAM,aAAa,CAAA;AACxC,YAAY,EAAE,MAAM,EAAE,MAAM,sBAAsB,CAAA;AAClD,YAAY,EAAE,SAAS,EAAE,aAAa,EAAE,MAAM,2BAA2B,CAAA;AACzE,YAAY,EAAE,QAAQ,EAAE,MAAM,yBAAyB,CAAA;AACvD,YAAY,EAAE,eAAe,EAAE,kBAAkB,EAAE,qBAAqB,EAAE,oBAAoB,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAA"}

package/dist/index.js

@@ -1,6 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.loadPolicy = void 0;
-var parser_js_1 = require("./parser.js");
-Object.defineProperty(exports, "loadPolicy", { enumerable: true, get: function () { return parser_js_1.loadPolicy; } });
-//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAGA,yCAAwC;AAA/B,uGAAA,UAAU,OAAA"}