npm - @driveflux/auth - Versions diffs - 4.0.75 → 4.0.77 - Mend

@driveflux/auth 4.0.75 → 4.0.77

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (159) hide show

package/dist/AuthProvider.d.ts CHANGED Viewed

@@ -1,4 +1,3 @@
 import { type FC, type PropsWithChildren } from 'react';
 declare const AuthProvider: FC<PropsWithChildren>;
 export default AuthProvider;
-//# sourceMappingURL=AuthProvider.d.ts.map

package/dist/AuthProvider.js CHANGED Viewed

@@ -8,34 +8,37 @@ import Cookies from 'js-cookie';
 //! seems like bad idea but it's the only way to resolve conflict
 //! between Vercel build and reference of NextRouter instance
 import Router, { useRouter } from 'next/dist/client/router.js';
-import { useCallback, useEffect, useMemo, useRef, useState } from 'react';
+import { useCallback, useEffect, useMemo, useRef, useState, } from 'react';
 import useSWR from 'swr';
 import { AuthContext } from './context.js';
 import { translations } from './translations.js';
-const AuthProvider = ({ children })=>{
+const AuthProvider = ({ children }) => {
     const { data: session, status, update } = useAuthSession();
     const { setUserData } = useTrackEvent();
     const [token, setToken] = useState(null);
     /**
-	 * A reference to a promise that fetches a new access token from the server.
-	 * This is used to prevent multiple token requests from being sent simultaneously.
-	 */ const newTokenPromise = useRef(null);
+     * A reference to a promise that fetches a new access token from the server.
+     * This is used to prevent multiple token requests from being sent simultaneously.
+     */
+    const newTokenPromise = useRef(null);
     const localeLogicRan = useRef(false);
     const router = useRouter();
     const { pathname, asPath, query, locale } = router;
     const { toastResult } = useToastResult();
-    const { data: user, isValidating, mutate, error } = useSWR(session ? `${config.apiUrl}/user` : null, {
-        fallbackData: session?.user
+    const { data: user, isValidating, mutate, error, } = useSWR(session ? `${config.apiUrl}/user` : null, {
+        fallbackData: session
+            ?.user,
     });
     const isLoadingUser = status !== 'unauthenticated' && isValidating && !user;
     /**
-	 * Retrieves an access token for the current user. If a token is already available and has not expired, it will be returned immediately.
-	 * Otherwise, the function will attempt to retrieve the token from cookies, and if that fails, it will fetch a new token from the server.
-	 * If a new token is fetched, it will be stored in cookies and returned.
-	 * If the user is not authenticated, the function will return null and display an error message.
-	 * @returns {Promise<string | null>} A promise that resolves to the access token string, or null if the user is not authenticated.
-	 */ // biome-ignore lint/correctness/useExhaustiveDependencies: <explanation>
-    const getAccessToken = useCallback(async ()=>{
+     * Retrieves an access token for the current user. If a token is already available and has not expired, it will be returned immediately.
+     * Otherwise, the function will attempt to retrieve the token from cookies, and if that fails, it will fetch a new token from the server.
+     * If a new token is fetched, it will be stored in cookies and returned.
+     * If the user is not authenticated, the function will return null and display an error message.
+     * @returns {Promise<string | null>} A promise that resolves to the access token string, or null if the user is not authenticated.
+     */
+    // biome-ignore lint/correctness/useExhaustiveDependencies: <explanation>
+    const getAccessToken = useCallback(async () => {
         // Check the state first, if we have a token, return it
         if (token && token.expiresAt > new Date()) {
             return token.accessToken;
@@ -48,17 +51,19 @@ const AuthProvider = ({ children })=>{
                 if (expiresAt > new Date()) {
                     setToken({
                         accessToken: tokenFromCookies.accessToken,
-                        expiresAt
+                        expiresAt,
                     });
                 }
                 return tokenFromCookies.accessToken;
             }
-        } catch (_e) {
-        // TODO
-        // Nothing to do here
         }
-        const tokenPromise = newTokenPromise.current || // biome-ignore lint/suspicious/noAssignInExpressions: <explanation>
-        (newTokenPromise.current = enhancedFetch(`${config.apiUrl}/user/token`));
+        catch (_e) {
+            // TODO
+            // Nothing to do here
+        }
+        const tokenPromise = newTokenPromise.current ||
+            // biome-ignore lint/suspicious/noAssignInExpressions: <explanation>
+            (newTokenPromise.current = enhancedFetch(`${config.apiUrl}/user/token`));
         // As a last resort, fetch a new token
         const newToken = await tokenPromise;
         // Resets the newTokenPromise reference to null after the new token has been fetched.
@@ -67,50 +72,42 @@ const AuthProvider = ({ children })=>{
             toastResult(newToken, {
                 error: {
                     title: translations.unauthenticated,
-                    description: translations.unauthenticatedDescription
-                }
+                    description: translations.unauthenticatedDescription,
+                },
             });
             return null;
         }
         const newTokenDetils = {
             accessToken: newToken.val.id,
-            expiresAt: new Date(newToken.val.expiresAt)
+            expiresAt: new Date(newToken.val.expiresAt),
         };
         Cookies.set('accessTokenDetails', JSON.stringify(newTokenDetils));
         setToken(newTokenDetils);
         return newToken.val.id;
-    }, [
-        token
-    ]);
-    const refresh = useCallback(async ()=>{
+    }, [token]);
+    const refresh = useCallback(async () => {
         await update();
         return await mutate();
-    }, [
-        mutate,
-        update
-    ]);
-    const logout = useCallback(async ()=>{
-        await signOut({
-            redirect: false
-        });
+    }, [mutate, update]);
+    const logout = useCallback(async () => {
+        await signOut({ redirect: false });
         await refresh();
-    }, [
-        refresh
-    ]);
-    const context = useMemo(()=>({
-            user,
-            isLoadingUser,
-            refresh,
-            error,
-            getAccessToken,
-            // TODO
-            /**
-			 * @deprecated do not use this property, use getAccessToken instead
-			 */ accessToken: token?.accessToken,
-            signIn,
-            logout,
-            status
-        }), [
+    }, [refresh]);
+    const context = useMemo(() => ({
+        user,
+        isLoadingUser,
+        refresh,
+        error,
+        getAccessToken,
+        // TODO
+        /**
+         * @deprecated do not use this property, use getAccessToken instead
+         */
+        accessToken: token?.accessToken,
+        signIn,
+        logout,
+        status,
+    }), [
         user,
         isLoadingUser,
         refresh,
@@ -118,11 +115,11 @@ const AuthProvider = ({ children })=>{
         getAccessToken,
         logout,
         token,
-        status
+        status,
     ]);
     // Add preferredLocal if any
     // biome-ignore lint/correctness/useExhaustiveDependencies: <explanation>
-    useEffect(()=>{
+    useEffect(() => {
         if (localeLogicRan.current || !user) {
             return;
         }
@@ -130,37 +127,23 @@ const AuthProvider = ({ children })=>{
         const langFromCookies = Cookies.get('NEXT_LOCALE');
         if (user?.preferredLocale && langFromCookies !== user?.preferredLocale) {
             Cookies.set('NEXT_LOCALE', user.preferredLocale);
-            Router.push({
-                pathname,
-                query
-            }, asPath, {
-                locale: user.preferredLocale
-            });
+            Router.push({ pathname, query }, asPath, { locale: user.preferredLocale });
         }
-    }, [
-        user?.preferredLocale,
-        pathname,
-        query,
-        asPath
-    ]);
+    }, [user?.preferredLocale, pathname, query, asPath]);
     // Add user to the tracking
     // biome-ignore lint/correctness/useExhaustiveDependencies: <explanation>
-    useEffect(()=>{
-        if (!user) return;
+    useEffect(() => {
+        if (!user)
+            return;
         setUserData({
             id: user.id,
             email: user.email,
             phoneNumber: user.phoneNumber,
             firstName: user.firstName,
             lastName: user.lastName,
-            addresses: user.addresses
+            addresses: user.addresses,
         });
-    }, [
-        user
-    ]);
-    return /*#__PURE__*/ _jsx(AuthContext.Provider, {
-        value: context,
-        children: children
-    });
+    }, [user]);
+    return _jsx(AuthContext.Provider, { value: context, children: children });
 };
 export default AuthProvider;

package/dist/ability.d.ts CHANGED Viewed

@@ -1,3 +1,2 @@
 export * from '@casl/ability';
 export * from '@casl/prisma';
-//# sourceMappingURL=ability.d.ts.map

package/dist/authorization/constants.d.ts CHANGED Viewed

@@ -63,4 +63,3 @@ export declare const GUEST_PERMISSIONS: readonly [{
     readonly action: "read";
     readonly subject: "Vehicle";
 }];
-//# sourceMappingURL=constants.d.ts.map

package/dist/authorization/constants.js CHANGED Viewed

@@ -6,7 +6,7 @@ export const DEPARTMENTS = {
     SALES: 'sales',
     FINANCE: 'finance',
     DATA_ANALYTICS: 'dataAnalytics',
-    PRODUCT: 'product'
+    PRODUCT: 'product',
 };
 export const ROLES = {
     CEO: 'ceo',
@@ -32,54 +32,43 @@ export const ROLES = {
     PRODUCT_MANAGER: 'productManager',
     MEMBER: 'member',
     BUSINESS_ADMIN: 'businessAdmin',
-    BUSINESS_USER: 'businessUser'
+    BUSINESS_USER: 'businessUser',
 };
 export const DEPARTMENTS_MAP = {
     [DEPARTMENTS.CEO_OFFICE]: [
         ROLES.CEO,
         ROLES.HEAD_OF_HUMAN_RESOURCES,
-        ROLES.HUMAN_RESOURCES_EXECUTIVE
+        ROLES.HUMAN_RESOURCES_EXECUTIVE,
     ],
     [DEPARTMENTS.OPERATIONS]: [
         ROLES.HEAD_OF_OPERATIONS,
         ROLES.CUSTOMER_SUCCESS_EXECUTIVE,
-        ROLES.CONCIERGE
-    ],
-    [DEPARTMENTS.MARKETING]: [
-        ROLES.HEAD_OF_MARKETING,
-        ROLES.MARKETING_EXECUTIVE
+        ROLES.CONCIERGE,
     ],
+    [DEPARTMENTS.MARKETING]: [ROLES.HEAD_OF_MARKETING, ROLES.MARKETING_EXECUTIVE],
     [DEPARTMENTS.BUSINESS_DEVELOPMENT]: [
         ROLES.HEAD_OF_BUSINESS_DEVELOPMENT,
-        ROLES.BUSINESS_DEVELOPMENT_EXECUTIVE
-    ],
-    [DEPARTMENTS.SALES]: [
-        ROLES.HEAD_OF_SALES,
-        ROLES.SALES_EXECUTIVE
-    ],
-    [DEPARTMENTS.FINANCE]: [
-        ROLES.HEAD_OF_FINANCE,
-        ROLES.FINANCE_EXECUTIVE
+        ROLES.BUSINESS_DEVELOPMENT_EXECUTIVE,
     ],
+    [DEPARTMENTS.SALES]: [ROLES.HEAD_OF_SALES, ROLES.SALES_EXECUTIVE],
+    [DEPARTMENTS.FINANCE]: [ROLES.HEAD_OF_FINANCE, ROLES.FINANCE_EXECUTIVE],
     [DEPARTMENTS.DATA_ANALYTICS]: [
         ROLES.HEAD_OF_DATA_ANALYTICS,
-        ROLES.DATA_ANALYST
+        ROLES.DATA_ANALYST,
     ],
     [DEPARTMENTS.PRODUCT]: [
         ROLES.HEAD_OF_PRODUCT,
         ROLES.HEAD_OF_ENGINEERING,
         ROLES.DESIGNER,
         ROLES.ENGINEER,
-        ROLES.PRODUCT_MANAGER
-    ]
+        ROLES.PRODUCT_MANAGER,
+    ],
 };
-export const OWNER_ROLES = [
-    ROLES.CEO
-];
+export const OWNER_ROLES = [ROLES.CEO];
 export const HIGHER_ADMIN_ROLES = [
     ROLES.HEAD_OF_HUMAN_RESOURCES,
     ROLES.HEAD_OF_PRODUCT,
-    ROLES.HEAD_OF_ENGINEERING
+    ROLES.HEAD_OF_ENGINEERING,
 ];
 export const ADMIN_ROLES = [
     ...HIGHER_ADMIN_ROLES,
@@ -99,38 +88,28 @@ export const ADMIN_ROLES = [
     ROLES.DATA_ANALYST,
     ROLES.DESIGNER,
     ROLES.ENGINEER,
-    ROLES.PRODUCT_MANAGER
-];
-export const ALL_ADMIN_ROLES = [
-    ...ADMIN_ROLES,
-    ...OWNER_ROLES
+    ROLES.PRODUCT_MANAGER,
 ];
+export const ALL_ADMIN_ROLES = [...ADMIN_ROLES, ...OWNER_ROLES];
 export const BUSINESS_ROLES = [
     ROLES.BUSINESS_ADMIN,
-    ROLES.BUSINESS_USER
-];
-export const CONSUMER_ROLES = [
-    ...BUSINESS_ROLES,
-    ROLES.MEMBER
-];
-export const ASSIGNABLE_ROLES = [
-    ...ADMIN_ROLES,
-    ...CONSUMER_ROLES
+    ROLES.BUSINESS_USER,
 ];
+export const CONSUMER_ROLES = [...BUSINESS_ROLES, ROLES.MEMBER];
+export const ASSIGNABLE_ROLES = [...ADMIN_ROLES, ...CONSUMER_ROLES];
 /**
  * This is to make it easier for some libraries like zod to understand
  * the roles types. Keep this in sync with the above ROLES constant
- */ export const GENERAL_ROLES = [
-    ...ALL_ADMIN_ROLES,
-    ...CONSUMER_ROLES
-];
+ */
+export const GENERAL_ROLES = [...ALL_ADMIN_ROLES, ...CONSUMER_ROLES];
 export const GUEST_PERMISSIONS = [
     {
         action: 'create',
-        subject: 'Inquiry'
+        subject: 'Inquiry',
     },
     {
         action: 'read',
-        subject: 'Vehicle'
-    }
+        subject: 'Vehicle',
+        // TODO: RESTRICT FIELDS
+    },
 ];

package/dist/authorization/define.d.ts CHANGED Viewed

@@ -2,4 +2,3 @@ import type { User } from '@driveflux/db';
 import type { Models } from '@driveflux/db/types';
 import type { AppAbility } from './types.js';
 export declare const defineAbilityFor: (user?: User | Models<"User">) => Promise<AppAbility>;
-//# sourceMappingURL=define.d.ts.map

package/dist/authorization/define.js CHANGED Viewed

@@ -1,6 +1,6 @@
 import { AbilityBuilder } from '@casl/ability';
 import { createPrismaAbility } from '@casl/prisma';
-import { ALL_ADMIN_ROLES, CONSUMER_ROLES, GENERAL_ROLES, HIGHER_ADMIN_ROLES, OWNER_ROLES } from './constants.js';
+import { ALL_ADMIN_ROLES, CONSUMER_ROLES, GENERAL_ROLES, HIGHER_ADMIN_ROLES, OWNER_ROLES, } from './constants.js';
 import { defineRoleAbilitiesBusinessDevelopmentExecutive } from './roles/admin/business-development-executive.js';
 import { defineRoleAbilitiesCeo } from './roles/admin/ceo.js';
 import { defineRoleAbilitiesCommonAdmin } from './roles/admin/common.js';
@@ -26,64 +26,45 @@ import { defineRoleAbilitiesSalesExecutive } from './roles/admin/sales-executive
 import { defineRoleAbilitiesBusinessAdmin } from './roles/consumer/business-admin.js';
 import { defineRoleAbilitiesBusinessUser } from './roles/consumer/business-user.js';
 import { defineRoleAbilitiesMember } from './roles/consumer/member.js';
-export const defineAbilityFor = async (user)=>{
+export const defineAbilityFor = async (user) => {
     const { can, cannot, build } = new AbilityBuilder(createPrismaAbility);
     if (!user) {
         return build();
     }
-    const groups = Array.isArray(user.groups) ? user.groups.map((r)=>`${r}`) : typeof user.groups === 'string' ? [
-        user.groups
-    ] : [];
-    const consumerGroups = groups.filter((g)=>CONSUMER_ROLES.includes(g));
-    const adminGroups = groups.filter((g)=>!consumerGroups.includes(g));
-    const sortedGroups = [
-        ...consumerGroups,
-        ...adminGroups
-    ];
-    for (const role of sortedGroups){
+    const groups = Array.isArray(user.groups)
+        ? user.groups.map((r) => `${r}`)
+        : typeof user.groups === 'string'
+            ? [user.groups]
+            : [];
+    const consumerGroups = groups.filter((g) => CONSUMER_ROLES.includes(g));
+    const adminGroups = groups.filter((g) => !consumerGroups.includes(g));
+    const sortedGroups = [...consumerGroups, ...adminGroups];
+    for (const role of sortedGroups) {
         await defineSpecificRoleAbilities(role, can, cannot, user);
     }
     // Common admin abilities
-    if (user.groups.some((g)=>adminGroups.includes(g))) {
+    if (user.groups.some((g) => adminGroups.includes(g))) {
         await defineRoleAbilitiesCommonAdmin(can);
     }
     // General abilities
-    can([
-        'read',
-        'update'
-    ], 'User', {
-        id: user.id
-    });
-    can([
-        'read'
-    ], 'Invoice', {
-        payerId: user.id
-    });
+    can(['read', 'update'], 'User', { id: user.id });
+    can(['read'], 'Invoice', { payerId: user.id });
     if (user.businessId) {
-        can([
-            'read'
-        ], 'Invoice', {
-            payerId: user.businessId
-        });
+        can(['read'], 'Invoice', { payerId: user.businessId });
     }
-    can('reserveVehicle', 'User', {
-        banned: false,
-        consented: true
-    });
+    can('reserveVehicle', 'User', { banned: false, consented: true });
     // Prevent updating the groups for all users
-    cannot('update', 'User', [
-        'groups'
-    ]);
+    cannot('update', 'User', ['groups']);
     return build();
 };
-const defineSpecificRoleAbilities = async (r, can, cannot, rawUser)=>{
+const defineSpecificRoleAbilities = async (r, can, cannot, rawUser) => {
     if (!~GENERAL_ROLES.indexOf(r)) {
         return;
     }
     // Type issue
     const user = rawUser;
     const role = r;
-    switch(role){
+    switch (role) {
         // Owners
         case 'ceo':
             defineRoleAbilitiesCeo(can);
@@ -161,30 +142,20 @@ const defineSpecificRoleAbilities = async (r, can, cannot, rawUser)=>{
         case 'businessAdmin':
             defineRoleAbilitiesBusinessAdmin(can, user);
             break;
-        default:
-            {
-                const _exhaustiveCheck = role;
-                break;
-            }
+        default: {
+            const _exhaustiveCheck = role;
+            break;
+        }
     }
-    if (![
-        ...OWNER_ROLES,
-        ...HIGHER_ADMIN_ROLES
-    ].includes(role)) {
+    if (![...OWNER_ROLES, ...HIGHER_ADMIN_ROLES].includes(role)) {
         cannot('manageAdmin', 'User');
-        cannot([
-            'create',
-            'update',
-            'delete'
-        ], 'User', undefined, {
+        cannot(['create', 'update', 'delete'], 'User', undefined, {
             groups: {
-                hasSome: [
-                    ...ALL_ADMIN_ROLES
-                ]
-            }
+                hasSome: [...ALL_ADMIN_ROLES],
+            },
         }).because('You are not allowed to update admin users');
         can('update', 'User', undefined, {
-            id: user.id
+            id: user.id,
         });
     }
 };

package/dist/authorization/fields/index.d.ts CHANGED Viewed

@@ -9,4 +9,3 @@ type ModelFieldsMap = {
 export declare const MODEL_FIELDS: ModelFieldsMap;
 export declare const getModelFields: <M extends Prisma.ModelName>(model: M) => ModelFieldsMap[M];
 export {};
-//# sourceMappingURL=index.d.ts.map

package/dist/authorization/fields/index.js CHANGED Viewed

@@ -1,5 +1,6 @@
 import { Prisma, prisma } from '@driveflux/db';
-export const MODEL_FIELDS = Object.keys(Prisma.ModelName).map((k)=>{
+export const MODEL_FIELDS = Object.keys(Prisma.ModelName)
+    .map((k) => {
     if (!(k in Prisma.ModelName)) {
         return null;
     }
@@ -7,15 +8,17 @@ export const MODEL_FIELDS = Object.keys(Prisma.ModelName).map((k)=>{
     return {
         // TODO
         // @ts-expect-error
-        [key]: prisma._runtimeDataModel.models[key].fields.map((f)=>f.name)
+        [key]: prisma._runtimeDataModel.models[key].fields.map((f) => f.name),
     };
-}).filter((m)=>m).reduce((carry, current)=>{
+})
+    .filter((m) => m)
+    .reduce((carry, current) => {
     if (current) {
         Object.assign(carry, current);
     }
     return carry;
 }, {});
-export const getModelFields = (model)=>{
+export const getModelFields = (model) => {
     const fields = MODEL_FIELDS[model];
     return fields;
 };

package/dist/authorization/helpers.d.ts CHANGED Viewed

@@ -3,4 +3,3 @@ export declare const extractNonAdminRoles: (userGroups?: string[]) => string[] |
 export declare const isConsumer: (group?: string) => boolean;
 export declare const isOwner: (group?: string) => boolean;
 export declare const isAdmin: (group?: string) => boolean;
-//# sourceMappingURL=helpers.d.ts.map

package/dist/authorization/helpers.js CHANGED Viewed

@@ -1,18 +1,16 @@
 import { ALL_ADMIN_ROLES, CONSUMER_ROLES, OWNER_ROLES } from './constants';
-export const extractAdminRoles = (userGroups)=>{
-    return userGroups?.filter((group)=>isAdmin(group));
+export const extractAdminRoles = (userGroups) => {
+    return userGroups?.filter((group) => isAdmin(group));
 };
-export const extractNonAdminRoles = (userGroups)=>{
-    return userGroups?.filter((group)=>!isAdmin(group));
+export const extractNonAdminRoles = (userGroups) => {
+    return userGroups?.filter((group) => !isAdmin(group));
 };
-export const isConsumer = (group)=>{
+export const isConsumer = (group) => {
     return CONSUMER_ROLES.includes(group);
 };
-export const isOwner = (group)=>{
-    return [
-        ...OWNER_ROLES
-    ]?.map((r)=>group === r)?.[0];
+export const isOwner = (group) => {
+    return [...OWNER_ROLES]?.map((r) => group === r)?.[0];
 };
-export const isAdmin = (group)=>{
+export const isAdmin = (group) => {
     return ALL_ADMIN_ROLES.includes(group);
 };

package/dist/authorization/index.d.ts CHANGED Viewed

@@ -2,4 +2,3 @@ import type { User } from '@driveflux/db';
 import type { Models } from '@driveflux/db/types';
 import type { AppAbility } from './types.js';
 export declare const buildOrDefineAbility: (user?: User | Models<"User">, refresh?: boolean) => Promise<AppAbility>;
-//# sourceMappingURL=index.d.ts.map

package/dist/authorization/index.js CHANGED Viewed

@@ -4,15 +4,15 @@ import { ErrorWithResult } from '@driveflux/result';
 import { GUEST_PERMISSIONS } from './constants.js';
 import buildAbilityFromJson from './quick.js';
 import { updateUserPermissions } from './update-user-permissions.js';
-export const buildOrDefineAbility = async (user, refresh)=>{
+export const buildOrDefineAbility = async (user, refresh) => {
     if (!user) {
-        return createPrismaAbility([
-            ...GUEST_PERMISSIONS
-        ], {
-            detectSubjectType: detectSubjectType
+        return createPrismaAbility([...GUEST_PERMISSIONS], {
+            detectSubjectType: detectSubjectType,
         });
     }
-    if (!Array.isArray(user.permissions) || !user.permissions?.length || refresh) {
+    if (!Array.isArray(user.permissions) ||
+        !user.permissions?.length ||
+        refresh) {
         const result = await updateUserPermissions(user);
         if (result.err) {
             throw new ErrorWithResult(result);

package/dist/authorization/permissions-list.d.ts CHANGED Viewed

@@ -122,4 +122,3 @@ export declare const getPermissionsFromAbility: (ability: AppAbility) => {
     readApplicant: boolean;
     readVacancy: boolean;
 };
-//# sourceMappingURL=permissions-list.d.ts.map

package/dist/authorization/permissions-list.js CHANGED Viewed

@@ -1,5 +1,5 @@
 import { s } from './utils.js';
-export const getPermissionsFromAbility = (ability)=>{
+export const getPermissionsFromAbility = (ability) => {
     return {
         // Lists
         viewContractsList: ability.can('read', 'SubscriptionContract'),
@@ -52,7 +52,7 @@ export const getPermissionsFromAbility = (ability)=>{
         updateVehicleServiceCenters: ability.can('update', 'Vehicle', 'allowedServiceCenterIds'),
         readPricingInput: ability.can('readPricingInput', 'Vehicle'),
         updatePricingInput: ability.can('update', 'Vehicle', 'pricing'),
-        testPricingInput: ability.can('testPricingInput', 'Vehicle'),
+        testPricingInput: ability.can('testPricingInput', 'Vehicle'), // Special Permission to allow users edit pricing but without the ability to update
         // Users ( Members )
         createMember: ability.can('create', 'User'),
         updateMember: ability.can('update', s('User')),
@@ -83,7 +83,8 @@ export const getPermissionsFromAbility = (ability)=>{
         updateInvoice: ability.can('update', s('Invoice', 'payerId')),
         cancelInvoice: ability.can('cancelInvoice', 'Invoice'),
         markInvoiceAsPaid: ability.can('markInvoice', 'Invoice', 'paid'),
-        markInvoiceAsRefunded: ability.can('markInvoice', 'Invoice', 'totalRefunded') && ability.can('create', 'Refund'),
+        markInvoiceAsRefunded: ability.can('markInvoice', 'Invoice', 'totalRefunded') &&
+            ability.can('create', 'Refund'),
         readPaymentMethodsUser: ability.can('read', s('User'), 'paymentMethods'),
         readPaymentMethodsBusiness: ability.can('read', s('Business'), 'paymentMethods'),
         addPaymentMethodUser: ability.can('update', s('User'), 'paymentMethods'),
@@ -131,7 +132,8 @@ export const getPermissionsFromAbility = (ability)=>{
         // TODO add logs permision or remove the comments
         // Logs
         // Website Settings
-        uploadBanners: ability.can('update', 'PlatformConfig') && ability.can('create', 'PlatformConfig'),
+        uploadBanners: ability.can('update', 'PlatformConfig') &&
+            ability.can('create', 'PlatformConfig'),
         deleteBanners: ability.can('update', 'PlatformConfig'),
         // Quotations
         createQuotation: ability.can('create', 'Quotation'),
@@ -140,6 +142,6 @@ export const getPermissionsFromAbility = (ability)=>{
         createVacancy: ability.can('create', 'Vacancy'),
         updateVacancy: ability.can('update', 'Vacancy'),
         readApplicant: ability.can('read', 'Applicant'),
-        readVacancy: ability.can('read', 'Vacancy')
+        readVacancy: ability.can('read', 'Vacancy'),
     };
 };

package/dist/authorization/quick.d.ts CHANGED Viewed

@@ -3,4 +3,3 @@ import type { Models } from '@driveflux/db/types';
 import type { FrontendModel } from '@driveflux/db/types/frontend';
 export declare function buildAbilityFromJson(user: Pick<User | FrontendModel<'User'> | Models<'User'>, 'permissions'>): import("@casl/ability").PureAbility<any, any>;
 export default buildAbilityFromJson;
-//# sourceMappingURL=quick.d.ts.map

package/dist/authorization/quick.js CHANGED Viewed

@@ -2,7 +2,7 @@ import { createPrismaAbility } from '@casl/prisma';
 import { detectSubjectType } from './utils.js';
 export function buildAbilityFromJson(user) {
     return createPrismaAbility(user.permissions, {
-        detectSubjectType
+        detectSubjectType,
     });
 }
 export default buildAbilityFromJson;