npm - @flipdish/authorization - Versions diffs - 0.0.3 → 0.0.6-rc.1764848040 - Mend

@flipdish/authorization 0.0.3 → 0.0.6-rc.1764848040

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (12) hide show

package/.openapi-generator/FILES CHANGED Viewed

@@ -1,5 +1,6 @@
 .gitignore
 .npmignore
+.openapi-generator-ignore
 README.md
 api.ts
 base.ts

package/README.md CHANGED Viewed

@@ -7,117 +7,174 @@ Internally the package utilizes the [axios](https://github.com/axios/axios) as i
 ### Example code
 ```typescript
-import { AuthorizationApi, Configuration, PermissionsApi, Permissions } from '@flipdish/authorization';
-import { describe, expect, test, it } from '@jest/globals';
+import {
+  AuthorizationApi,
+  Configuration,
+  type ErrorResponse,
+  Permissions,
+  PermissionsApi,
+  UserPermissionsApi,
+} from "@flipdish/authorization";
+import { describe, expect, it, test } from "@jest/globals";
+import axios, { isAxiosError } from "axios";
 const basePath = "https://api.flipdish.co/auth/";
-const configuration = new Configuration({
-    basePath,
-    // to get the API key, you should follow these docs:
-    // https://developers.flipdish.com/docs/getting-started
-    accessToken: process.env.FLIPDISH_BEARER_TOKEN_PROD,
-    // if using in a browser set useDefaultUserAgent
-    // to true to prevent errors
-    // useDefaultUserAgent: true
+const bearerConfiguration = new Configuration({
+  basePath,
+  // to get the API key, you should follow these docs:
+  // https://developers.flipdish.com/docs/getting-started
+  accessToken: process.env.FLIPDISH_BEARER_TOKEN_PROD,
+  // if using in a browser set useDefaultUserAgent
+  // to true to prevent errors
+  // useDefaultUserAgent: true
 });
-const authorization = new AuthorizationApi(configuration);
-const permissions = new PermissionsApi(configuration);
-describe('Authorization Tests', () => {
-    describe('Authorization', () => {
-        test('List Permissions', async () => {
-            const permissionsResponse = await permissions.listPermissions();
-            expect(permissionsResponse.status).toBe(200);
-            expect(permissionsResponse.data.permissions).toBeDefined();
-            expect(permissionsResponse.data.permissions.length).toBeGreaterThan(0);
-            expect(permissionsResponse.data.permissions).toContain(Permissions.ViewApp);
-            expect(permissionsResponse.data.permissions).toContain(Permissions.CreateApp);
-            expect(permissionsResponse.data.permissions).toContain(Permissions.UpdateApp);
-            expect(permissionsResponse.data.permissions).toContain(Permissions.ViewAppName);
-            expect(permissionsResponse.data.permissions).toContain(Permissions.EditAppAssets);
-        });
-        describe('Authenticate and Authorize', () => {
-            it('should authenticate and authorize with a valid FD-Authorization cookie', async () => {
-                const authorizationResponse = await authorization.authenticateAndAuthorize({
-                    headers: {
-                        'Cookie': `FD-Authorization=${process.env.FD_AUTH_COOKIE_PROD};`,
-                    },
-                    action: Permissions.AnyAuditLogs,
-                    resource: {
-                        id: "org12345",
-                        type: "Org",
-                    }
-                });
-                expect(authorizationResponse.status).toBe(200);
-                expect(authorizationResponse.data.authentication.authenticated).toBe(true);
-                expect(authorizationResponse.data.authentication.principal?.type).toBe("User");
-                expect(authorizationResponse.data.authentication.principal?.id).toBe("8147747");
-            });
-            it('should not authenticate and authorize with an invalid FD-Authorization cookie', async () => {
-                try {
-                    await authorization.authenticateAndAuthorize({
-                        headers: {
-                            'Cookie': `FD-Authorization=not-a-valid-cookie;`,
-                        },
-                        action: Permissions.AnyAuditLogs,
-                        resource: {
-                            id: "org12345",
-                            type: "Org",
-                        },
-                    });
-                } catch (error: any) {
-                    expect(error.response.status).toBe(401);
-                    expect(error.response.data.message).toBe("Unauthenticated");
-                }
-            });
-            it('should authenticate and authorize with a valid Bearer token', async () => {
-                const authorizationResponse = await authorization.authenticateAndAuthorize({
-                    headers: {
-                        'Authorization': `Bearer ${process.env.FLIPDISH_BEARER_TOKEN_PROD}`,
-                    },
-                    action: Permissions.AnyAuditLogs,
-                    resource: {
-                        id: "org12345",
-                        type: "Org",
-                    }
-                });
-                expect(authorizationResponse.status).toBe(200);
-                expect(authorizationResponse.data.authentication.authenticated).toBe(true);
-                expect(authorizationResponse.data.authentication.principal?.type).toBe("User");
-                expect(authorizationResponse.data.authentication.principal?.id).toBe("8147747");
-            });
-        });
-        test('Authorize', async () => {
-            let testPrincipal: any = {
-                id: "12345",
-                type: "User",
-            };
-            let testResource: any = {
-                id: "org12345",
-                type: "Org",
-            };
-            const authorizationResponse = await authorization.authorize({
-                principal: testPrincipal,
-                action: Permissions.AnyAuditLogs,
-                resource: testResource
-            });
-            expect(authorizationResponse.status).toBe(200);
-            expect(authorizationResponse.data.allowed).toBe(false);
-            expect(authorizationResponse.data.decision).toBe("DENY");
-        });
+const authorization = new AuthorizationApi(bearerConfiguration);
+const permissions = new PermissionsApi(bearerConfiguration);
+// mimic brower config where cookies will be sent automatically
+// you shouldn't need to pass an axios instance as the cookies will be
+// sent automatically by the browser
+const userPermissions = new UserPermissionsApi(
+  new Configuration({ basePath }),
+  undefined,
+  axios.create({
+    headers: {
+      Cookie: `FD-Authorization=${process.env.FD_AUTH_COOKIE_PROD_JM_CLIENT};`,
+    },
+  }),
+);
+describe("Authorization Tests", () => {
+  describe("Authorization", () => {
+    test("List Permissions", async () => {
+      const permissionsResponse = await permissions.listPermissions();
+      expect(permissionsResponse.status).toBe(200);
+      expect(permissionsResponse.data.permissions).toBeDefined();
+      expect(permissionsResponse.data.permissions.length).toBeGreaterThan(0);
+      expect(permissionsResponse.data.permissions).toContain(
+        Permissions.ViewApp,
+      );
+      expect(permissionsResponse.data.permissions).toContain(
+        Permissions.CreateApp,
+      );
+      expect(permissionsResponse.data.permissions).toContain(
+        Permissions.UpdateApp,
+      );
+      expect(permissionsResponse.data.permissions).toContain(
+        Permissions.ViewAppName,
+      );
+      expect(permissionsResponse.data.permissions).toContain(
+        Permissions.EditAppAssets,
+      );
     });
+    describe("List User Permission Sets", () => {
+      it("should list user permission sets", async () => {
+        const userPermissionSetsResponse =
+          await userPermissions.listOwnPermissions("org42068");
+        expect(userPermissionSetsResponse.status).toBe(200);
+        expect(userPermissionSetsResponse.data.resources).toBeDefined();
+        expect(userPermissionSetsResponse.data.resources).toHaveProperty(
+          "org42068",
+        );
+        expect(
+          userPermissionSetsResponse.data.resources.org42068.permissions.length,
+        ).toBeGreaterThan(0);
+      });
+    });
+    describe("Authenticate and Authorize", () => {
+      it("should authenticate and authorize with a valid FD-Authorization cookie", async () => {
+        const authorizationResponse =
+          await authorization.authenticateAndAuthorize({
+            headers: {
+              Cookie: `FD-Authorization=${process.env.FD_AUTH_COOKIE_PROD};`,
+            },
+            action: Permissions.AnyAuditLogs,
+            resource: {
+              id: "org12345",
+              type: "Org",
+            },
+          });
+        expect(authorizationResponse.status).toBe(200);
+        expect(authorizationResponse.data.authentication.authenticated).toBe(
+          true,
+        );
+        expect(authorizationResponse.data.authentication.principal?.type).toBe(
+          "User",
+        );
+        expect(authorizationResponse.data.authentication.principal?.id).toBe(
+          "8147747",
+        );
+      });
+      it("should not authenticate and authorize with an invalid FD-Authorization cookie", async () => {
+        try {
+          await authorization.authenticateAndAuthorize({
+            headers: {
+              Cookie: `FD-Authorization=not-a-valid-cookie;`,
+            },
+            action: Permissions.AnyAuditLogs,
+            resource: {
+              id: "org12345",
+              type: "Org",
+            },
+          });
+        } catch (error) {
+          if (isAxiosError<ErrorResponse>(error)) {
+            expect(error.response?.status).toBe(401);
+            expect(error.response?.data.message).toBe("Unauthenticated");
+          }
+        }
+      });
+      it("should authenticate and authorize with a valid Bearer token", async () => {
+        const authorizationResponse =
+          await authorization.authenticateAndAuthorize({
+            headers: {
+              Authorization: `Bearer ${process.env.FLIPDISH_BEARER_TOKEN_PROD}`,
+            },
+            action: Permissions.AnyAuditLogs,
+            resource: {
+              id: "org12345",
+              type: "Org",
+            },
+          });
+        expect(authorizationResponse.status).toBe(200);
+        expect(authorizationResponse.data.authentication.authenticated).toBe(
+          true,
+        );
+        expect(authorizationResponse.data.authentication.principal?.type).toBe(
+          "User",
+        );
+        expect(authorizationResponse.data.authentication.principal?.id).toBe(
+          "8147747",
+        );
+      });
+    });
+    test("Authorize", async () => {
+      const authorizationResponse = await authorization.authorize({
+        principal: {
+          id: "12345",
+          type: "User",
+        },
+        action: Permissions.AnyAuditLogs,
+        resource: {
+          id: "org12345",
+          type: "Org",
+        },
+      });
+      expect(authorizationResponse.status).toBe(200);
+      expect(authorizationResponse.data.allowed).toBe(false);
+      expect(authorizationResponse.data.decision).toBe("DENY");
+    });
+  });
 });
 ```
 The generated Node module can be used in the following environments: