@flowerforce/flowerbase 1.2.0 → 1.2.1-beta.11

package/dist/services/mongodb-atlas/model.d.ts

@@ -1,5 +1,5 @@
 import { FastifyInstance } from 'fastify';
-import { Collection, Document, FindCursor, WithId } from 'mongodb';
+import { Collection, Document, Filter as MongoFilter, FindCursor, FindOneAndUpdateOptions, UpdateFilter, WithId } from 'mongodb';
 import { User } from '../../auth/dtos';
 import { Filter, Rules } from '../../features/rules/interface';
 import { Role } from '../../utils/roles/interface';
@@ -28,6 +28,7 @@ export type GetOperatorsFunction = (collection: Collection<Document>, { rules, c
     deleteOne: (...params: Parameters<Method<'findOne'>>) => ReturnType<Method<'findOne'>>;
     insertOne: (...params: Parameters<Method<'insertOne'>>) => ReturnType<Method<'insertOne'>>;
     updateOne: (...params: Parameters<Method<'updateOne'>>) => ReturnType<Method<'updateOne'>>;
+    findOneAndUpdate: (filter: MongoFilter<Document>, update: UpdateFilter<Document> | Document[], options?: FindOneAndUpdateOptions) => Promise<Document | null>;
     find: (...params: Parameters<Method<'find'>>) => FindCursor;
     watch: (...params: Parameters<Method<'watch'>>) => ReturnType<Method<'watch'>>;
     aggregate: (...params: [...Parameters<Method<'aggregate'>>, isClient: boolean]) => Promise<ReturnType<Method<'aggregate'>>>;

package/dist/services/mongodb-atlas/model.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"model.d.ts","sourceRoot":"","sources":["../../../src/services/mongodb-atlas/model.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAA;AACzC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,EAAE,MAAM,SAAS,CAAA;AAClE,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AAC9D,OAAO,EAAE,IAAI,EAAE,MAAM,6BAA6B,CAAA;AAElD,MAAM,MAAM,oBAAoB,GAAG,CACjC,GAAG,EAAE,eAAe,EACpB,EACE,KAAK,EACL,IAAI,EACJ,aAAa,EACd,EAAE;IACD,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;CACxB,KACE;IACH,EAAE,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK;QACtB,UAAU,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,UAAU,CAAC,oBAAoB,CAAC,CAAA;KACnE,CAAA;CACF,CAAA;AAED,MAAM,MAAM,kBAAkB,CAAC,CAAC,SAAS,IAAI,GAAG,MAAM,IAAI;IACxD,OAAO,EAAE,CAAC,EAAE,CAAA;IACZ,IAAI,EAAE,IAAI,CAAA;IACV,MAAM,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,QAAQ,GAAG,IAAI,CAAA;CAC5C,CAAA;AACD,KAAK,MAAM,CAAC,CAAC,SAAS,MAAM,UAAU,CAAC,QAAQ,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAA;AAE3E,MAAM,MAAM,oBAAoB,GAAG,CACjC,UAAU,EAAE,UAAU,CAAC,QAAQ,CAAC,EAChC,EACE,KAAK,EACL,QAAQ,EACR,IAAI,EACJ,aAAa,EACd,EAAE;IACD,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;IACvB,QAAQ,EAAE,MAAM,CAAA;CACjB,KACE;IACH,OAAO,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAA;IACpF,SAAS,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAA;IACtF,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,KACvC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAA;IACpC,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,KACvC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAA;IACpC,IAAI,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,UAAU,CAAA;IAC3D,KAAK,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IAC9E,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,KAC/D,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAA;IAC7C,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;IACrC,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;IACrC,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;CACtC,CAAA;AAGD,oBAAY,eAAe;IACzB,MAAM,WAAW;IACjB,IAAI,SAAS;IACb,MAAM,WAAW;IACjB,MAAM,WAAW;CAElB"}
+{"version":3,"file":"model.d.ts","sourceRoot":"","sources":["../../../src/services/mongodb-atlas/model.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAA;AACzC,OAAO,EACL,UAAU,EACV,QAAQ,EACR,MAAM,IAAI,WAAW,EACrB,UAAU,EACV,uBAAuB,EACvB,YAAY,EACZ,MAAM,EACP,MAAM,SAAS,CAAA;AAChB,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AAC9D,OAAO,EAAE,IAAI,EAAE,MAAM,6BAA6B,CAAA;AAElD,MAAM,MAAM,oBAAoB,GAAG,CACjC,GAAG,EAAE,eAAe,EACpB,EACE,KAAK,EACL,IAAI,EACJ,aAAa,EACd,EAAE;IACD,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;CACxB,KACE;IACH,EAAE,EAAE,CAAC,MAAM,EAAE,MAAM,KAAK;QACtB,UAAU,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,UAAU,CAAC,oBAAoB,CAAC,CAAA;KACnE,CAAA;CACF,CAAA;AAED,MAAM,MAAM,kBAAkB,CAAC,CAAC,SAAS,IAAI,GAAG,MAAM,IAAI;IACxD,OAAO,EAAE,CAAC,EAAE,CAAA;IACZ,IAAI,EAAE,IAAI,CAAA;IACV,MAAM,CAAC,EAAE,MAAM,CAAC,QAAQ,CAAC,GAAG,QAAQ,GAAG,IAAI,CAAA;CAC5C,CAAA;AACD,KAAK,MAAM,CAAC,CAAC,SAAS,MAAM,UAAU,CAAC,QAAQ,CAAC,IAAI,UAAU,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAA;AAE3E,MAAM,MAAM,oBAAoB,GAAG,CACjC,UAAU,EAAE,UAAU,CAAC,QAAQ,CAAC,EAChC,EACE,KAAK,EACL,QAAQ,EACR,IAAI,EACJ,aAAa,EACd,EAAE;IACD,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;IACvB,QAAQ,EAAE,MAAM,CAAA;CACjB,KACE;IACH,OAAO,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAA;IACpF,SAAS,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAA;IACtF,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,KACvC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAA;IACpC,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,KACvC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAA;IACpC,gBAAgB,EAAE,CAChB,MAAM,EAAE,WAAW,CAAC,QAAQ,CAAC,EAC7B,MAAM,EAAE,YAAY,CAAC,QAAQ,CAAC,GAAG,QAAQ,EAAE,EAC3C,OAAO,CAAC,EAAE,uBAAuB,KAC9B,OAAO,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAA;IAC7B,IAAI,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,KAAK,UAAU,CAAA;IAC3D,KAAK,EAAE,CAAC,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK,UAAU,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAA;IAC9E,SAAS,EAAE,CACT,GAAG,MAAM,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,CAAC,KAC/D,OAAO,CAAC,UAAU,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAA;IAC7C,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;IACrC,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;IACrC,UAAU,EAAE,CACV,GAAG,MAAM,EAAE,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KACxC,UAAU,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,CAAA;CACtC,CAAA;AAGD,oBAAY,eAAe;IACzB,MAAM,WAAW;IACjB,IAAI,SAAS;IACb,MAAM,WAAW;IACjB,MAAM,WAAW;CAElB"}

package/dist/services/mongodb-atlas/utils.d.ts

@@ -5,12 +5,14 @@ import { AggregationPipeline, Filter, Projection, Rules } from '../../features/r
 import { Role } from '../../utils/roles/interface';
 import { CRUD_OPERATIONS, GetValidRuleParams } from './model';
 export declare const getValidRule: <T extends Role | Filter>({ filters, user, record }: GetValidRuleParams<T>) => T[];
-export declare const getFormattedQuery: (filters: Filter[] | undefined, query: Parameters<Collection<Document>["findOne"]>[0], user?: User) => any[];
+export declare const getFormattedQuery: (filters: Filter[] | undefined, query: Parameters<Collection<Document>["findOne"]>[0], user?: User) => FilterMongoDB<Document>[];
 export declare const getFormattedProjection: (filters?: Filter[], user?: User) => Projection | null;
 export declare const applyAccessControlToPipeline: (pipeline: AggregationPipeline, rules: Record<string, {
     filters?: Filter[];
     roles?: Role[];
-}>, user: User) => AggregationPipeline;
+}>, user: User, collectionName: string, options?: {
+    isClientPipeline?: boolean;
+}) => AggregationPipeline;
 export declare const checkDenyOperation: (rules: Rules, collectionName: string, operation: CRUD_OPERATIONS) => void;
 export declare function normalizeQuery(query: FilterMongoDB<Document>[]): {
     [x: string]: any;
@@ -28,4 +30,9 @@ export declare function normalizeQuery(query: FilterMongoDB<Document>[]): {
     $comment?: string | Document;
 }[];
 export declare const getCollectionsFromPipeline: (pipeline: Document[]) => string[];
+export declare function ensureClientPipelineStages(pipeline: AggregationPipeline): void;
+export declare function getHiddenFieldsFromRulesConfig(rulesConfig?: {
+    roles?: Role[];
+}): string[];
+export declare function prependUnsetStage(pipeline: AggregationPipeline, hiddenFields: string[]): AggregationPipeline;
 //# sourceMappingURL=utils.d.ts.map

package/dist/services/mongodb-atlas/utils.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/services/mongodb-atlas/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAElC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,IAAI,aAAa,EAAE,MAAM,SAAS,CAAA;AACvE,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EACL,mBAAmB,EAEnB,MAAM,EAEN,UAAU,EACV,KAAK,EAGN,MAAM,gCAAgC,CAAA;AACvC,OAAO,EAAE,IAAI,EAAE,MAAM,6BAA6B,CAAA;AAGlD,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAA;AAE7D,eAAO,MAAM,YAAY,GAAI,CAAC,SAAS,IAAI,GAAG,MAAM,EAAE,2BAInD,kBAAkB,CAAC,CAAC,CAAC,QA2BvB,CAAA;AAED,eAAO,MAAM,iBAAiB,GAC5B,SAAS,MAAM,EAAE,YAAK,EACtB,OAAO,UAAU,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,EACrD,OAAO,IAAI,UAQZ,CAAA;AAED,eAAO,MAAM,sBAAsB,GACjC,UAAS,MAAM,EAAO,EACtB,OAAO,IAAI,KACV,UAAU,GAAG,IAaf,CAAA;AAED,eAAO,MAAM,4BAA4B,GACvC,UAAU,mBAAmB,EAC7B,OAAO,MAAM,CACX,MAAM,EACN;IACE,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,KAAK,CAAC,EAAE,IAAI,EAAE,CAAA;CACf,CACF,EACD,MAAM,IAAI,KACT,mBA+DF,CAAA;AAED,eAAO,MAAM,kBAAkB,GAC7B,OAAO,KAAK,EACZ,gBAAgB,MAAM,EACtB,WAAW,eAAe,SAM3B,CAAA;AAED,wBAAgB,cAAc,CAAC,KAAK,EAAE,aAAa,CAAC,QAAQ,CAAC,EAAE;;;;;;;;iBA2CqkvS,CAAC;sBAAgC,CAAC;2BAAsC,CAAC;;;;IAnC5svS;AAED,eAAO,MAAM,0BAA0B,GAAI,UAAU,QAAQ,EAAE,aAgC9D,CAAA"}
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/services/mongodb-atlas/utils.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAElC,OAAO,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,IAAI,aAAa,EAAE,MAAM,SAAS,CAAA;AACvE,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EACL,mBAAmB,EAEnB,MAAM,EAEN,UAAU,EACV,KAAK,EAGN,MAAM,gCAAgC,CAAA;AACvC,OAAO,EAAE,IAAI,EAAE,MAAM,6BAA6B,CAAA;AAGlD,OAAO,EAAE,eAAe,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAA;AAE7D,eAAO,MAAM,YAAY,GAAI,CAAC,SAAS,IAAI,GAAG,MAAM,EAAE,2BAInD,kBAAkB,CAAC,CAAC,CAAC,QA2BvB,CAAA;AAED,eAAO,MAAM,iBAAiB,GAC5B,SAAS,MAAM,EAAE,YAAK,EACtB,OAAO,UAAU,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,EACrD,OAAO,IAAI,8BAcZ,CAAA;AAED,eAAO,MAAM,sBAAsB,GACjC,UAAS,MAAM,EAAO,EACtB,OAAO,IAAI,KACV,UAAU,GAAG,IAaf,CAAA;AAED,eAAO,MAAM,4BAA4B,GACvC,UAAU,mBAAmB,EAC7B,OAAO,MAAM,CACX,MAAM,EACN;IACE,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,KAAK,CAAC,EAAE,IAAI,EAAE,CAAA;CACf,CACF,EACD,MAAM,IAAI,EACV,gBAAgB,MAAM,EACtB,UAAU;IACR,gBAAgB,CAAC,EAAE,OAAO,CAAA;CAC3B,KACA,mBA6GF,CAAA;AAED,eAAO,MAAM,kBAAkB,GAC7B,OAAO,KAAK,EACZ,gBAAgB,MAAM,EACtB,WAAW,eAAe,SAM3B,CAAA;AAED,wBAAgB,cAAc,CAAC,KAAK,EAAE,aAAa,CAAC,QAAQ,CAAC,EAAE;;;;;;;;iBA2Hs1rS,CAAC;sBAAgC,CAAC;2BAAsC,CAAC;;;;IAnH79rS;AAED,eAAO,MAAM,0BAA0B,GAAI,UAAU,QAAQ,EAAE,aAgC9D,CAAA;AAYD,wBAAgB,0BAA0B,CAAC,QAAQ,EAAE,mBAAmB,QA+BvE;AAED,wBAAgB,8BAA8B,CAAC,WAAW,CAAC,EAAE;IAAE,KAAK,CAAC,EAAE,IAAI,EAAE,CAAA;CAAE,YAK9E;AAyBD,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,mBAAmB,EAAE,YAAY,EAAE,MAAM,EAAE,uBAKtF"}

package/dist/services/mongodb-atlas/utils.js

@@ -5,10 +5,14 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getCollectionsFromPipeline = exports.checkDenyOperation = exports.applyAccessControlToPipeline = exports.getFormattedProjection = exports.getFormattedQuery = exports.getValidRule = void 0;
 exports.normalizeQuery = normalizeQuery;
+exports.ensureClientPipelineStages = ensureClientPipelineStages;
+exports.getHiddenFieldsFromRulesConfig = getHiddenFieldsFromRulesConfig;
+exports.prependUnsetStage = prependUnsetStage;
 const mongodb_1 = require("mongodb");
 const interface_1 = require("../../features/rules/interface");
 const rules_1 = require("../../utils/rules");
 const utils_1 = __importDefault(require("../../utils/rules-matcher/utils"));
+const model_1 = require("./model");
 const getValidRule = ({ filters = [], user, record = null }) => {
     if (!filters.length)
         return [];
@@ -31,10 +35,14 @@ exports.getValidRule = getValidRule;
 const getFormattedQuery = (filters = [], query, user) => {
     const preFilter = (0, exports.getValidRule)({ filters, user });
     const isValidPreFilter = !!(preFilter === null || preFilter === void 0 ? void 0 : preFilter.length);
-    return [
-        isValidPreFilter && (0, rules_1.expandQuery)(preFilter[0].query, { '%%user': user }),
-        query
-    ].filter(Boolean).filter(r => Object.keys(r).length > 0);
+    const formatted = [];
+    if (isValidPreFilter) {
+        formatted.push((0, rules_1.expandQuery)(preFilter[0].query, { '%%user': user }));
+    }
+    if (query && Object.keys(query).length > 0) {
+        formatted.push(query);
+    }
+    return formatted;
 };
 exports.getFormattedQuery = getFormattedQuery;
 const getFormattedProjection = (filters = [], user) => {
@@ -53,49 +61,66 @@ const getFormattedProjection = (filters = [], user) => {
     return Object.assign({}, ...projections);
 };
 exports.getFormattedProjection = getFormattedProjection;
-const applyAccessControlToPipeline = (pipeline, rules, user) => {
+const applyAccessControlToPipeline = (pipeline, rules, user, collectionName, options) => {
+    const { isClientPipeline = false } = options || {};
+    const hiddenFieldsForCollection = isClientPipeline
+        ? getHiddenFieldsFromRulesConfig(rules[collectionName])
+        : [];
     return pipeline.map((stage) => {
         const [stageName] = Object.keys(stage);
         const value = stage[stageName];
-        // CASE LOOKUP
         if (stageName === interface_1.STAGES_TO_SEARCH.LOOKUP) {
             const lookUpStage = value;
             const currentCollection = lookUpStage.from;
+            (0, exports.checkDenyOperation)(rules, currentCollection, model_1.CRUD_OPERATIONS.READ);
             const lookupRules = rules[currentCollection] || {};
             const formattedQuery = (0, exports.getFormattedQuery)(lookupRules.filters, {}, user);
             const projection = (0, exports.getFormattedProjection)(lookupRules.filters);
+            const nestedPipeline = (0, exports.applyAccessControlToPipeline)(lookUpStage.pipeline || [], rules, user, currentCollection, { isClientPipeline });
+            const lookupPipeline = [
+                ...(formattedQuery.length ? [{ $match: { $and: formattedQuery } }] : []),
+                ...(projection ? [{ $project: projection }] : []),
+                ...nestedPipeline
+            ];
+            const pipelineWithHiddenFields = isClientPipeline
+                ? prependUnsetStage(lookupPipeline, getHiddenFieldsFromRulesConfig(lookupRules))
+                : lookupPipeline;
             return {
-                $lookup: Object.assign(Object.assign({}, lookUpStage), { pipeline: [
-                        ...(formattedQuery.length ? [{ $match: { $and: formattedQuery } }] : []),
-                        ...(projection ? [{ $project: projection }] : []),
-                        ...(0, exports.applyAccessControlToPipeline)(lookUpStage.pipeline || [], rules, user)
-                    ] })
+                $lookup: Object.assign(Object.assign({}, lookUpStage), { pipeline: pipelineWithHiddenFields })
             };
         }
-        // CASE LOOKUP
         if (stageName === interface_1.STAGES_TO_SEARCH.UNION_WITH) {
             const unionWithStage = value;
             const isSimpleStage = typeof unionWithStage === 'string';
             const currentCollection = isSimpleStage ? unionWithStage : unionWithStage.coll;
+            (0, exports.checkDenyOperation)(rules, currentCollection, model_1.CRUD_OPERATIONS.READ);
             const unionRules = rules[currentCollection] || {};
             const formattedQuery = (0, exports.getFormattedQuery)(unionRules.filters, {}, user);
             const projection = (0, exports.getFormattedProjection)(unionRules.filters);
-            const nestedPipeline = isSimpleStage ? [] : unionWithStage.pipeline || [];
+            if (isSimpleStage) {
+                return stage;
+            }
+            const nestedPipeline = unionWithStage.pipeline || [];
+            const sanitizedNestedPipeline = (0, exports.applyAccessControlToPipeline)(nestedPipeline, rules, user, currentCollection, { isClientPipeline });
+            const unionPipeline = [
+                ...(formattedQuery.length ? [{ $match: { $and: formattedQuery } }] : []),
+                ...(projection ? [{ $project: projection }] : []),
+                ...sanitizedNestedPipeline
+            ];
+            const pipelineWithHiddenFields = isClientPipeline
+                ? prependUnsetStage(unionPipeline, getHiddenFieldsFromRulesConfig(unionRules))
+                : unionPipeline;
             return {
-                $unionWith: {
-                    coll: currentCollection,
-                    pipeline: [
-                        ...(formattedQuery.length ? [{ $match: { $and: formattedQuery } }] : []),
-                        ...(projection ? [{ $project: projection }] : []),
-                        ...(0, exports.applyAccessControlToPipeline)(nestedPipeline, rules, user)
-                    ]
-                }
+                $unionWith: Object.assign(Object.assign({}, unionWithStage), { pipeline: pipelineWithHiddenFields })
             };
         }
-        // CASE FACET
         if (stageName === interface_1.STAGES_TO_SEARCH.FACET) {
             const modifiedFacets = Object.fromEntries(Object.entries(value).map(([facetKey, facetPipeline]) => {
-                return [facetKey, (0, exports.applyAccessControlToPipeline)(facetPipeline, rules, user)];
+                const sanitizedFacetPipeline = (0, exports.applyAccessControlToPipeline)(facetPipeline, rules, user, collectionName, { isClientPipeline });
+                const facetPipelineWithHiddenFields = isClientPipeline
+                    ? prependUnsetStage(sanitizedFacetPipeline, hiddenFieldsForCollection)
+                    : sanitizedFacetPipeline;
+                return [facetKey, facetPipelineWithHiddenFields];
             }));
             return { $facet: modifiedFacets };
         }
@@ -147,3 +172,68 @@ const getCollectionsFromPipeline = (pipeline) => {
     }, []);
 };
 exports.getCollectionsFromPipeline = getCollectionsFromPipeline;
+const CLIENT_STAGE_BLACKLIST = new Set([
+    '$replaceRoot',
+    '$merge',
+    '$out',
+    '$function',
+    '$where',
+    '$accumulator',
+    '$graphLookup'
+]);
+function ensureClientPipelineStages(pipeline) {
+    pipeline.forEach((stage) => {
+        const [stageName] = Object.keys(stage);
+        if (!stageName)
+            return;
+        if (CLIENT_STAGE_BLACKLIST.has(stageName)) {
+            throw new Error(`Stage ${stageName} is not allowed in client aggregate pipelines`);
+        }
+        const value = stage[stageName];
+        if (stageName === interface_1.STAGES_TO_SEARCH.LOOKUP) {
+            ensureClientPipelineStages(value.pipeline || []);
+            return;
+        }
+        if (stageName === interface_1.STAGES_TO_SEARCH.UNION_WITH) {
+            if (typeof value === 'string') {
+                throw new Error('$unionWith must provide a pipeline when called from the client');
+            }
+            const unionStage = value;
+            ensureClientPipelineStages(unionStage.pipeline || []);
+            return;
+        }
+        if (stageName === interface_1.STAGES_TO_SEARCH.FACET) {
+            Object.values(value).forEach((facetPipeline) => ensureClientPipelineStages(facetPipeline));
+        }
+    });
+}
+function getHiddenFieldsFromRulesConfig(rulesConfig) {
+    if (!rulesConfig) {
+        return [];
+    }
+    return collectHiddenFieldsFromRoles(rulesConfig.roles);
+}
+function collectHiddenFieldsFromRoles(roles = []) {
+    const hiddenFields = new Set();
+    const collectFromFields = (fields) => {
+        if (!fields)
+            return;
+        Object.entries(fields).forEach(([fieldName, permissions]) => {
+            const canRead = Boolean((permissions === null || permissions === void 0 ? void 0 : permissions.read) || (permissions === null || permissions === void 0 ? void 0 : permissions.write));
+            if (!canRead) {
+                hiddenFields.add(fieldName);
+            }
+        });
+    };
+    roles.forEach((role) => {
+        collectFromFields(role.fields);
+        collectFromFields(role.additional_fields);
+    });
+    return Array.from(hiddenFields);
+}
+function prependUnsetStage(pipeline, hiddenFields) {
+    if (!hiddenFields.length) {
+        return pipeline;
+    }
+    return [{ $unset: hiddenFields }, ...pipeline];
+}

package/dist/shared/handleUserRegistration.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"handleUserRegistration.d.ts","sourceRoot":"","sources":["../../src/shared/handleUserRegistration.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,sBAAsB,EAAE,MAAM,uCAAuC,CAAA;AAE9E;;;;;;GAMG;AACH,QAAA,MAAM,sBAAsB,EAAE,sBAkD7B,CAAA;AAED,eAAe,sBAAsB,CAAA"}
+{"version":3,"file":"handleUserRegistration.d.ts","sourceRoot":"","sources":["../../src/shared/handleUserRegistration.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,sBAAsB,EAAE,MAAM,uCAAuC,CAAA;AAE9E;;;;;;GAMG;AACH,QAAA,MAAM,sBAAsB,EAAE,sBAoD7B,CAAA;AAED,eAAe,sBAAsB,CAAA"}

package/dist/shared/handleUserRegistration.js

@@ -19,11 +19,13 @@ const crypto_1 = require("../utils/crypto");
  * @returns {Promise<InsertOneResult<Document>>} A promise resolving to the result of the insert operation.
  */
 const handleUserRegistration = (app, opt) => (_a) => __awaiter(void 0, [_a], void 0, function* ({ email, password }) {
+    var _b;
     const { run_as_system, skipUserCheck, provider } = opt !== null && opt !== void 0 ? opt : {};
     if (!run_as_system) {
         throw new Error('only run_as_system');
     }
     const { authCollection } = constants_1.AUTH_CONFIG;
+    const autoConfirm = ((_b = constants_1.AUTH_CONFIG.localUserpassConfig) === null || _b === void 0 ? void 0 : _b.autoConfirm) === true;
     const mongo = app === null || app === void 0 ? void 0 : app.mongo;
     const db = mongo.client.db(constants_1.DB_NAME);
     const hashedPassword = yield (0, crypto_1.hashPassword)(password);
@@ -34,7 +36,8 @@ const handleUserRegistration = (app, opt) => (_a) => __awaiter(void 0, [_a], voi
     const result = yield (db === null || db === void 0 ? void 0 : db.collection(authCollection).insertOne({
         email,
         password: hashedPassword,
-        status: skipUserCheck ? 'confirmed' : 'pending',
+        status: skipUserCheck || autoConfirm ? 'confirmed' : 'pending',
+        createdAt: new Date(),
         custom_data: {
         // TODO: aggiungere dati personalizzati alla registrazione
         },

package/dist/shared/models/handleUserRegistration.model.d.ts

@@ -1,5 +1,4 @@
 import { FastifyInstance } from "fastify/types/instance";
-import { InsertOneResult } from "mongodb/mongodb";
 import { User } from "../../auth/dtos";
 import { Rules } from "../../features/rules/interface";
 type RegistrationParams = {
@@ -13,7 +12,12 @@ export type Options = {
     provider?: PROVIDER;
     run_as_system?: boolean;
 };
-export type HandleUserRegistration = (app: FastifyInstance, opt: Options) => (params: RegistrationParams) => Promise<InsertOneResult<Document>>;
+type RegistrationResult = {
+    insertedId?: {
+        toString: () => string;
+    };
+};
+export type HandleUserRegistration = (app: FastifyInstance, opt: Options) => (params: RegistrationParams) => Promise<RegistrationResult>;
 export declare enum PROVIDER {
     LOCAL_USERPASS = "local-userpass",
     CUSTOM_FUNCTION = "custom-function"

package/dist/shared/models/handleUserRegistration.model.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"handleUserRegistration.model.d.ts","sourceRoot":"","sources":["../../../src/shared/models/handleUserRegistration.model.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AACxD,OAAO,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAA;AACjD,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AAEtD,KAAK,kBAAkB,GAAG;IACxB,KAAK,EAAE,MAAM,CAAA;IACb,QAAQ,EAAE,MAAM,CAAA;CACjB,CAAA;AAED,MAAM,MAAM,OAAO,GAAG;IACpB,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;IACvB,QAAQ,CAAC,EAAE,QAAQ,CAAA;IACnB,aAAa,CAAC,EAAE,OAAO,CAAA;CACxB,CAAA;AAED,MAAM,MAAM,sBAAsB,GAAG,CACnC,GAAG,EAAE,eAAe,EACpB,GAAG,EAAE,OAAO,KACT,CAAC,MAAM,EAAE,kBAAkB,KAAK,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC,CAAA;AAEvE,oBAAY,QAAQ;IAClB,cAAc,mBAAmB;IACjC,eAAe,oBAAoB;CACpC"}
+{"version":3,"file":"handleUserRegistration.model.d.ts","sourceRoot":"","sources":["../../../src/shared/models/handleUserRegistration.model.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,wBAAwB,CAAA;AACxD,OAAO,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACtC,OAAO,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AAEtD,KAAK,kBAAkB,GAAG;IACxB,KAAK,EAAE,MAAM,CAAA;IACb,QAAQ,EAAE,MAAM,CAAA;CACjB,CAAA;AAED,MAAM,MAAM,OAAO,GAAG;IACpB,IAAI,CAAC,EAAE,IAAI,CAAA;IACX,KAAK,CAAC,EAAE,KAAK,CAAA;IACb,aAAa,CAAC,EAAE,OAAO,CAAA;IACvB,QAAQ,CAAC,EAAE,QAAQ,CAAA;IACnB,aAAa,CAAC,EAAE,OAAO,CAAA;CACxB,CAAA;AAED,KAAK,kBAAkB,GAAG;IACxB,UAAU,CAAC,EAAE;QACX,QAAQ,EAAE,MAAM,MAAM,CAAA;KACvB,CAAA;CACF,CAAA;AAED,MAAM,MAAM,sBAAsB,GAAG,CACnC,GAAG,EAAE,eAAe,EACpB,GAAG,EAAE,OAAO,KACT,CAAC,MAAM,EAAE,kBAAkB,KAAK,OAAO,CAAC,kBAAkB,CAAC,CAAA;AAEhE,oBAAY,QAAQ;IAClB,cAAc,mBAAmB;IACjC,eAAe,oBAAoB;CACpC"}

package/dist/utils/context/helpers.d.ts

@@ -15,14 +15,15 @@ export declare const generateContextData: ({ user, services, app, rules, current
     BSON: typeof mongodb.BSON;
     console: {
         log: (...args: Arguments) => void;
+        error: (...args: Arguments) => void;
     };
     context: {
         request: {
             remoteIPAddress: string | undefined;
-            id?: string | undefined;
             method?: string | undefined;
             url?: string | undefined;
             host?: string | undefined;
+            id?: string | undefined;
             ips?: string[];
             hostname?: string | undefined;
             ip?: string | undefined;
@@ -36,6 +37,10 @@ export declare const generateContextData: ({ user, services, app, rules, current
         };
         services: {
             get: (serviceName: keyof typeof services) => {
+                db: (dbName: string) => {
+                    collection: (collName: string) => ReturnType<import("../../services/mongodb-atlas/model").GetOperatorsFunction>;
+                };
+            } | {
                 get: <T = null>({ url, headers }: import("../../services/api/model").GetParams) => Promise<{
                     status: number;
                     headers: import("undici/types/header").IncomingHttpHeaders;
@@ -74,14 +79,10 @@ export declare const generateContextData: ({ user, services, app, rules, current
                     InvokeAsync: import("aws-sdk").Lambda["invokeAsync"];
                 };
                 s3: (region: string) => import("aws-sdk").S3;
-            } | {
-                db: (dbName: string) => {
-                    collection: (collName: string) => ReturnType<import("../../services/mongodb-atlas/model").GetOperatorsFunction>;
-                };
             } | undefined;
         };
         functions: {
-            execute: (name: keyof typeof functionsList, ...args: Arguments) => Promise<void>;
+            execute: (name: keyof typeof functionsList, ...args: Arguments) => Promise<unknown>;
         };
     };
 };

package/dist/utils/context/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/utils/context/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAE3C,OAAO,EAAE,yBAAyB,EAAE,MAAM,aAAa,CAAA;AAEvD;;;;;;;;;GASG;AACH,eAAO,MAAM,mBAAmB,GAAI,0FASjC,yBAAyB;;;uBAGT,SAAS;;;;;;;;;;;;;;;;;;uBAcX,MAAM;;;+BAGE,MAAM,OAAO,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;6BA/BG,GAE3C;;;;;;;;;;;4BA8CgB,MAAM,OAAO,aAAa,WAAW,SAAS;;;CAclE,CAAA"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/utils/context/helpers.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAA;AAC1C,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAA;AAE3C,OAAO,EAAE,yBAAyB,EAAE,MAAM,aAAa,CAAA;AAEvD;;;;;;;;;GASG;AACH,eAAO,MAAM,mBAAmB,GAAI,0FASjC,yBAAyB;;;uBAGT,SAAS;yBAGP,SAAS;;;;;;;;;;;;;;;;;;uBAcb,MAAM;;;+BAGE,MAAM,OAAO,QAAQ;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;6BAlCG,GAE3C;;;;;;;4BAiDgB,MAAM,OAAO,aAAa,WAAW,SAAS;;;CAclE,CAAA"}

package/dist/utils/context/helpers.js

@@ -17,6 +17,9 @@ const generateContextData = ({ user, services, app, rules, currentFunction, func
     console: {
         log: (...args) => {
             console.log(...args);
+        },
+        error: (...args) => {
+            console.error(...args);
         }
     },
     context: {

package/dist/utils/context/index.d.ts

@@ -10,5 +10,5 @@ import { GenerateContextParams } from './interface';
  * @param functionsList -> the list of all functions
  * @param services -> the list of all services
  */
-export declare function GenerateContext({ args, app, rules, user, currentFunction, functionsList, services, runAsSystem, deserializeArgs, enqueue, request }: GenerateContextParams): Promise<any>;
+export declare function GenerateContext({ args, app, rules, user, currentFunction, functionsList, services, runAsSystem, deserializeArgs, enqueue, request }: GenerateContextParams): Promise<unknown>;
 //# sourceMappingURL=index.d.ts.map

package/dist/utils/context/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/context/index.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAA;AAEnD;;;;;;;;;;GAUG;AACH,wBAAsB,eAAe,CAAC,EACpC,IAAI,EACJ,GAAG,EACH,KAAK,EACL,IAAI,EACJ,eAAe,EACf,aAAa,EACb,QAAQ,EACR,WAAW,EACX,eAAsB,EACtB,OAAO,EACP,OAAO,EACR,EAAE,qBAAqB,gBA2CvB"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/context/index.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,qBAAqB,EAAE,MAAM,aAAa,CAAA;AA0GnD;;;;;;;;;;GAUG;AACH,wBAAsB,eAAe,CAAC,EACpC,IAAI,EACJ,GAAG,EACH,KAAK,EACL,IAAI,EACJ,eAAe,EACf,aAAa,EACb,QAAQ,EACR,WAAW,EACX,eAAsB,EACtB,OAAO,EACP,OAAO,EACR,EAAE,qBAAqB,GAAG,OAAO,CAAC,OAAO,CAAC,CAkK1C"}

package/dist/utils/context/index.js

@@ -14,10 +14,100 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.GenerateContext = GenerateContext;
 const node_module_1 = require("node:module");
+const node_path_1 = __importDefault(require("node:path"));
+const node_url_1 = require("node:url");
 const vm_1 = __importDefault(require("vm"));
 const bson_1 = require("bson");
 const state_1 = require("../../state");
 const helpers_1 = require("./helpers");
+const dynamicImport = new Function('specifier', 'return import(specifier)');
+const transformImportsToRequire = (code) => {
+    let importIndex = 0;
+    const lines = code.split(/\r?\n/);
+    return lines
+        .map((line) => {
+        const trimmed = line.trim();
+        if (/^import\s+type\s+/.test(trimmed)) {
+            return '';
+        }
+        const sideEffectMatch = trimmed.match(/^import\s+['"]([^'"]+)['"]\s*;?$/);
+        if (sideEffectMatch) {
+            return `require('${sideEffectMatch[1]}')`;
+        }
+        const match = trimmed.match(/^import\s+(.+?)\s+from\s+['"]([^'"]+)['"]\s*;?$/);
+        if (!match)
+            return line;
+        const [, importClause, source] = match;
+        const clause = importClause.trim();
+        if (clause.startsWith('{') && clause.endsWith('}')) {
+            const named = clause.slice(1, -1).trim();
+            return `const { ${named} } = require('${source}')`;
+        }
+        const namespaceMatch = clause.match(/^\*\s+as\s+(\w+)$/);
+        if (namespaceMatch) {
+            return `const ${namespaceMatch[1]} = require('${source}')`;
+        }
+        if (clause.includes(',')) {
+            const [defaultPart, restRaw] = clause.split(',', 2);
+            const defaultName = defaultPart.trim();
+            const rest = restRaw.trim();
+            const tmpName = `__fb_import_${importIndex++}`;
+            const linesOut = [`const ${tmpName} = require('${source}')`];
+            if (defaultName) {
+                linesOut.push(`const ${defaultName} = ${tmpName}`);
+            }
+            if (rest.startsWith('{') && rest.endsWith('}')) {
+                const named = rest.slice(1, -1).trim();
+                linesOut.push(`const { ${named} } = ${tmpName}`);
+            }
+            else {
+                const nsMatch = rest.match(/^\*\s+as\s+(\w+)$/);
+                if (nsMatch) {
+                    linesOut.push(`const ${nsMatch[1]} = ${tmpName}`);
+                }
+            }
+            return linesOut.join('\n');
+        }
+        return `const ${clause} = require('${source}')`;
+    })
+        .join('\n');
+};
+const wrapEsmModule = (code) => {
+    const prelude = [
+        'const __fb_module = { exports: {} };',
+        'let exports = __fb_module.exports;',
+        'let module = __fb_module;',
+        'const __fb_require = globalThis.__fb_require;',
+        'const require = __fb_require;',
+        'const __filename = globalThis.__fb_filename;',
+        'const __dirname = globalThis.__fb_dirname;'
+    ].join('\n');
+    const trailer = [
+        'globalThis.__fb_module = __fb_module;',
+        'globalThis.__fb_exports = exports;'
+    ].join('\n');
+    return `${prelude}\n${code}\n${trailer}`;
+};
+const resolveImportTarget = (specifier, customRequire) => {
+    try {
+        const resolved = customRequire.resolve(specifier);
+        if (resolved.startsWith('node:'))
+            return resolved;
+        if (node_path_1.default.isAbsolute(resolved)) {
+            return (0, node_url_1.pathToFileURL)(resolved).href;
+        }
+        return resolved;
+    }
+    catch (_a) {
+        return specifier;
+    }
+};
+const shouldFallbackFromVmModules = (error) => {
+    if (!error || typeof error !== 'object')
+        return false;
+    const code = error.code;
+    return code === 'ERR_VM_MODULES_DISABLED' || code === 'ERR_VM_MODULES_NOT_SUPPORTED';
+};
 /**
  * > Used to generate the current context
  * @testable
@@ -31,10 +121,12 @@ const helpers_1 = require("./helpers");
  */
 function GenerateContext(_a) {
     return __awaiter(this, arguments, void 0, function* ({ args, app, rules, user, currentFunction, functionsList, services, runAsSystem, deserializeArgs = true, enqueue, request }) {
+        if (!currentFunction)
+            return;
         const functionsQueue = state_1.StateManager.select("functionsQueue");
         const functionToRun = Object.assign({ run_as_system: runAsSystem }, currentFunction);
         const run = () => __awaiter(this, void 0, void 0, function* () {
-            var _a, _b;
+            var _a, _b, _c;
             const contextData = (0, helpers_1.generateContextData)({
                 user,
                 services,
@@ -45,19 +137,98 @@ function GenerateContext(_a) {
                 GenerateContext,
                 request
             });
+            const isExportedFunction = (value) => typeof value === 'function';
+            const getDefaultExport = (value) => {
+                if (!value || typeof value !== 'object')
+                    return undefined;
+                if (!('default' in value))
+                    return undefined;
+                const maybeDefault = value.default;
+                return isExportedFunction(maybeDefault) ? maybeDefault : undefined;
+            };
+            const resolveExport = (ctx) => {
+                var _a, _b, _c, _d, _e;
+                const moduleExports = (_b = (_a = ctx.module) === null || _a === void 0 ? void 0 : _a.exports) !== null && _b !== void 0 ? _b : (_c = ctx.__fb_module) === null || _c === void 0 ? void 0 : _c.exports;
+                if (isExportedFunction(moduleExports))
+                    return moduleExports;
+                const contextExports = (_d = ctx.exports) !== null && _d !== void 0 ? _d : ctx.__fb_exports;
+                if (isExportedFunction(contextExports))
+                    return contextExports;
+                return (_e = getDefaultExport(moduleExports)) !== null && _e !== void 0 ? _e : getDefaultExport(contextExports);
+            };
+            const sandboxModule = { exports: {} };
             try {
                 const entryFile = (_b = (_a = require.main) === null || _a === void 0 ? void 0 : _a.filename) !== null && _b !== void 0 ? _b : process.cwd();
                 const customRequire = (0, node_module_1.createRequire)(entryFile);
-                vm_1.default.runInContext(functionToRun.code, vm_1.default.createContext(Object.assign(Object.assign({}, contextData), { require: customRequire, exports,
-                    module, __filename: __filename, __dirname: __dirname })));
+                const vmContext = vm_1.default.createContext(Object.assign(Object.assign({}, contextData), { require: customRequire, exports: sandboxModule.exports, module: sandboxModule, __filename,
+                    __dirname, __fb_require: customRequire, __fb_filename: __filename, __fb_dirname: __dirname }));
+                const vmModules = vm_1.default;
+                const hasStaticImport = /\bimport\s+/.test(functionToRun.code);
+                let usedVmModules = false;
+                if (hasStaticImport && vmModules.SourceTextModule && vmModules.SyntheticModule) {
+                    try {
+                        const moduleCache = new Map();
+                        const loadModule = (specifier) => __awaiter(this, void 0, void 0, function* () {
+                            const importTarget = resolveImportTarget(specifier, customRequire);
+                            const cached = moduleCache.get(importTarget);
+                            if (cached)
+                                return cached;
+                            const namespace = yield dynamicImport(importTarget);
+                            const exportNames = Object.keys(namespace);
+                            if ('default' in namespace && !exportNames.includes('default')) {
+                                exportNames.push('default');
+                            }
+                            const syntheticModule = new vmModules.SyntheticModule(exportNames, function () {
+                                for (const name of exportNames) {
+                                    this.setExport(name, namespace[name]);
+                                }
+                            }, { context: vmContext, identifier: importTarget });
+                            moduleCache.set(importTarget, syntheticModule);
+                            return syntheticModule;
+                        });
+                        const importModuleDynamically = ((specifier) => __awaiter(this, void 0, void 0, function* () {
+                            const module = yield loadModule(specifier);
+                            if (module.status === 'unlinked') {
+                                yield module.link(loadModule);
+                            }
+                            if (module.status === 'linked') {
+                                yield module.evaluate();
+                            }
+                            return module;
+                        }));
+                        const sourceModule = new vmModules.SourceTextModule(wrapEsmModule(functionToRun.code), {
+                            context: vmContext,
+                            identifier: entryFile,
+                            initializeImportMeta: (meta) => {
+                                meta.url = (0, node_url_1.pathToFileURL)(entryFile).href;
+                            },
+                            importModuleDynamically
+                        });
+                        yield sourceModule.link(loadModule);
+                        yield sourceModule.evaluate();
+                        usedVmModules = true;
+                    }
+                    catch (error) {
+                        if (!shouldFallbackFromVmModules(error)) {
+                            throw error;
+                        }
+                    }
+                }
+                if (!usedVmModules) {
+                    const codeToRun = functionToRun.code.includes('import ')
+                        ? transformImportsToRequire(functionToRun.code)
+                        : functionToRun.code;
+                    vm_1.default.runInContext(codeToRun, vmContext);
+                }
+                sandboxModule.exports = (_c = resolveExport(vmContext)) !== null && _c !== void 0 ? _c : sandboxModule.exports;
             }
             catch (e) {
                 console.log(e);
             }
             if (deserializeArgs) {
-                return yield module.exports(...bson_1.EJSON.deserialize(args));
+                return yield sandboxModule.exports(...bson_1.EJSON.deserialize(args));
             }
-            return yield module.exports(...args);
+            return yield sandboxModule.exports(...args);
         });
         const res = yield functionsQueue.add(run, enqueue);
         return res;

package/dist/utils/context/interface.d.ts

@@ -18,7 +18,7 @@ export interface GenerateContextParams {
 }
 type ContextRequest = Pick<FastifyRequest, "ips" | "host" | "hostname" | "url" | "method" | "ip" | "id">;
 export interface GenerateContextDataParams extends Omit<GenerateContextParams, 'args'> {
-    GenerateContext: (params: GenerateContextParams) => Promise<void>;
+    GenerateContext: (params: GenerateContextParams) => Promise<unknown>;
 }
 export {};
 //# sourceMappingURL=interface.d.ts.map

package/dist/utils/context/interface.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"interface.d.ts","sourceRoot":"","sources":["../../../src/utils/context/interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,SAAS,CAAA;AACzD,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACjD,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AACtD,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AAEnD,MAAM,WAAW,qBAAqB;IACpC,GAAG,EAAE,eAAe,CAAA;IACpB,eAAe,EAAE,QAAQ,CAAA;IACzB,aAAa,EAAE,SAAS,CAAA;IACxB,KAAK,EAAE,KAAK,CAAA;IACZ,IAAI,EAAE,IAAI,CAAA;IACV,QAAQ,EAAE,QAAQ,CAAA;IAClB,IAAI,EAAE,SAAS,CAAA;IACf,WAAW,CAAC,EAAE,OAAO,CAAA;IACrB,eAAe,CAAC,EAAE,OAAO,CAAA;IACzB,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB,OAAO,CAAC,EAAE,cAAc,CAAA;CACzB;AAED,KAAK,cAAc,GAAG,IAAI,CAAC,cAAc,EAAE,KAAK,GAAG,MAAM,GAAG,UAAU,GAAG,KAAK,GAAG,QAAQ,GAAG,IAAI,GAAG,IAAI,CAAC,CAAA;AACxG,MAAM,WAAW,yBAA0B,SAAQ,IAAI,CAAC,qBAAqB,EAAE,MAAM,CAAC;IACpF,eAAe,EAAE,CAAC,MAAM,EAAE,qBAAqB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAA;CAClE"}
+{"version":3,"file":"interface.d.ts","sourceRoot":"","sources":["../../../src/utils/context/interface.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,SAAS,CAAA;AACzD,OAAO,EAAE,SAAS,EAAE,IAAI,EAAE,MAAM,iBAAiB,CAAA;AACjD,OAAO,EAAE,QAAQ,EAAE,SAAS,EAAE,MAAM,oCAAoC,CAAA;AACxE,OAAO,EAAE,KAAK,EAAE,MAAM,gCAAgC,CAAA;AACtD,OAAO,EAAE,QAAQ,EAAE,MAAM,0BAA0B,CAAA;AAEnD,MAAM,WAAW,qBAAqB;IACpC,GAAG,EAAE,eAAe,CAAA;IACpB,eAAe,EAAE,QAAQ,CAAA;IACzB,aAAa,EAAE,SAAS,CAAA;IACxB,KAAK,EAAE,KAAK,CAAA;IACZ,IAAI,EAAE,IAAI,CAAA;IACV,QAAQ,EAAE,QAAQ,CAAA;IAClB,IAAI,EAAE,SAAS,CAAA;IACf,WAAW,CAAC,EAAE,OAAO,CAAA;IACrB,eAAe,CAAC,EAAE,OAAO,CAAA;IACzB,OAAO,CAAC,EAAE,OAAO,CAAA;IACjB,OAAO,CAAC,EAAE,cAAc,CAAA;CACzB;AAED,KAAK,cAAc,GAAG,IAAI,CAAC,cAAc,EAAE,KAAK,GAAG,MAAM,GAAG,UAAU,GAAG,KAAK,GAAG,QAAQ,GAAG,IAAI,GAAG,IAAI,CAAC,CAAA;AACxG,MAAM,WAAW,yBAA0B,SAAQ,IAAI,CAAC,qBAAqB,EAAE,MAAM,CAAC;IACpF,eAAe,EAAE,CAAC,MAAM,EAAE,qBAAqB,KAAK,OAAO,CAAC,OAAO,CAAC,CAAA;CACrE"}

package/dist/utils/crypto/index.d.ts

@@ -16,4 +16,5 @@ export declare const comparePassword: (plaintext: string, storedPassword: string
  * @param length -> the token length
  */
 export declare const generateToken: (length?: number) => string;
+export declare const hashToken: (token: string) => string;
 //# sourceMappingURL=index.d.ts.map

package/dist/utils/crypto/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/crypto/index.ts"],"names":[],"mappings":"AAKA;;;;GAIG;AACH,eAAO,MAAM,YAAY,GAAU,WAAW,MAAM,oBAInD,CAAA;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAU,WAAW,MAAM,EAAE,gBAAgB,MAAM,qBAU9E,CAAA;AAED;;;GAGG;AACH,eAAO,MAAM,aAAa,GAAI,eAAW,WAExC,CAAA"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/utils/crypto/index.ts"],"names":[],"mappings":"AAKA;;;;GAIG;AACH,eAAO,MAAM,YAAY,GAAU,WAAW,MAAM,oBAInD,CAAA;AAED;;;;;GAKG;AACH,eAAO,MAAM,eAAe,GAAU,WAAW,MAAM,EAAE,gBAAgB,MAAM,qBAU9E,CAAA;AAED;;;GAGG;AACH,eAAO,MAAM,aAAa,GAAI,eAAW,WAExC,CAAA;AAED,eAAO,MAAM,SAAS,GAAI,OAAO,MAAM,WAEtC,CAAA"}