@forge/bridge 5.10.1-next.6 → 5.10.2-experimental-60ea29e

package/CHANGELOG.md

@@ -1,5 +1,51 @@
 # @forge/bridge
 
+## 5.10.2-experimental-60ea29e
+
+### Minor Changes
+
+- f058dd8: Expose Permissions API in @forge/bridge for Custom UI apps
+
+## 5.10.2
+
+### Patch Changes
+
+- 4205052: Send emitReadyEvent calls over the bridge for usage in static macros
+- Updated dependencies [73c9329]
+- Updated dependencies [1eae7ab]
+- Updated dependencies [b96a445]
+  - @forge/manifest@11.3.2
+
+## 5.10.2-next.1
+
+### Patch Changes
+
+- Updated dependencies [1eae7ab]
+  - @forge/manifest@11.3.2-next.1
+
+## 5.10.2-next.0
+
+### Patch Changes
+
+- 4205052: Send emitReadyEvent calls over the bridge for usage in static macros
+- Updated dependencies [73c9329]
+- Updated dependencies [b96a445]
+  - @forge/manifest@11.3.2-next.0
+
+## 5.10.1
+
+### Patch Changes
+
+- Updated dependencies [10f70c2]
+- Updated dependencies [cd0a085]
+- Updated dependencies [16e7d61]
+- Updated dependencies [f7c9fcc]
+- Updated dependencies [b799627]
+- Updated dependencies [29aa91c]
+- Updated dependencies [8b66e6f]
+  - @forge/manifest@11.3.1
+  - @forge/egress@2.3.1
+
 ## 5.10.1-next.6
 
 ### Patch Changes

package/LICENSE.txt

@@ -1,4 +1,4 @@
-Copyright (c) 2025 Atlassian
+Copyright (c) 2026 Atlassian
 Permission is hereby granted to use this software in accordance with the terms 
 and conditions outlined in the Atlassian Developer Terms, which can be found 
 at the following URL:

package/out/permissions/index.d.ts

@@ -1,2 +1,3 @@
 export * from './permissions';
+export * from './permissionsUtil';
 //# sourceMappingURL=index.d.ts.map

package/out/permissions/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/permissions/index.ts"],"names":[],"mappings":"AAAA,cAAc,eAAe,CAAC;AAC9B,cAAc,mBAAmB,CAAC"}

package/out/permissions/index.js

@@ -2,3 +2,4 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 const tslib_1 = require("tslib");
 tslib_1.__exportStar(require("./permissions"), exports);
+tslib_1.__exportStar(require("./permissionsUtil"), exports);

package/out/permissions/permissionsUtil.d.ts

@@ -0,0 +1,39 @@
+import type { External } from '@forge/manifest';
+import type { RuntimePermissions } from '../types';
+declare const RESOURCE_TYPES: readonly ["fonts", "styles", "frames", "images", "media", "scripts"];
+export declare type ResourceType = (typeof RESOURCE_TYPES)[number];
+declare const FETCH_TYPES: readonly ["backend", "client"];
+export declare type FetchType = (typeof FETCH_TYPES)[number];
+export interface PermissionRequirements {
+    scopes?: string[];
+    external?: {
+        fetch?: {
+            backend?: string[];
+            client?: string[];
+        };
+        fonts?: string[];
+        styles?: string[];
+        frames?: string[];
+        images?: string[];
+        media?: string[];
+        scripts?: string[];
+    };
+    content?: Record<string, unknown>;
+}
+export declare type MissingPermissions = PermissionRequirements;
+export interface PermissionCheckResult {
+    granted: boolean;
+    missing: MissingPermissions | null;
+}
+export interface PermissionUtils {
+    hasScope: (scope: string) => boolean;
+    canFetchFrom: (type: FetchType, url: string) => boolean;
+    canLoadResource: (type: ResourceType, url: string) => boolean;
+    getScopes: () => string[];
+    getExternalPermissions: () => External | undefined;
+    hasAnyPermissions: () => boolean;
+}
+export declare function createPermissionUtils(runtimePermissions: RuntimePermissions | undefined): PermissionUtils | null;
+export declare function checkPermissions(requiredPermissions: PermissionRequirements, runtimePermissions?: RuntimePermissions | undefined): Promise<PermissionCheckResult>;
+export {};
+//# sourceMappingURL=permissionsUtil.d.ts.map

package/out/permissions/permissionsUtil.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissionsUtil.d.ts","sourceRoot":"","sources":["../../src/permissions/permissionsUtil.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAEhD,OAAO,KAAK,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAoBnD,QAAA,MAAM,cAAc,sEAAuE,CAAC;AAC5F,oBAAY,YAAY,GAAG,CAAC,OAAO,cAAc,CAAC,CAAC,MAAM,CAAC,CAAC;AAK3D,QAAA,MAAM,WAAW,gCAAiC,CAAC;AACnD,oBAAY,SAAS,GAAG,CAAC,OAAO,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC;AAKrD,MAAM,WAAW,sBAAsB;IACrC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,QAAQ,CAAC,EAAE;QACT,KAAK,CAAC,EAAE;YACN,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;YACnB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;SACnB,CAAC;QACF,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;QACjB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAClB,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAClB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;QACjB,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;KACpB,CAAC;IACF,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACnC;AAKD,oBAAY,kBAAkB,GAAG,sBAAsB,CAAC;AAKxD,MAAM,WAAW,qBAAqB;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,kBAAkB,GAAG,IAAI,CAAC;CACpC;AAKD,MAAM,WAAW,eAAe;IAI9B,QAAQ,EAAE,CAAC,KAAK,EAAE,MAAM,KAAK,OAAO,CAAC;IAOrC,YAAY,EAAE,CAAC,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC;IAOxD,eAAe,EAAE,CAAC,IAAI,EAAE,YAAY,EAAE,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC;IAK9D,SAAS,EAAE,MAAM,MAAM,EAAE,CAAC;IAK1B,sBAAsB,EAAE,MAAM,QAAQ,GAAG,SAAS,CAAC;IAKnD,iBAAiB,EAAE,MAAM,OAAO,CAAC;CAClC;AAOD,wBAAgB,qBAAqB,CAAC,kBAAkB,EAAE,kBAAkB,GAAG,SAAS,GAAG,eAAe,GAAG,IAAI,CAmDhH;AAiGD,wBAAsB,gBAAgB,CACpC,mBAAmB,EAAE,sBAAsB,EAC3C,kBAAkB,CAAC,EAAE,kBAAkB,GAAG,SAAS,GAClD,OAAO,CAAC,qBAAqB,CAAC,CA+ChC"}

package/out/permissions/permissionsUtil.js

@@ -0,0 +1,143 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkPermissions = exports.createPermissionUtils = void 0;
+const egress_1 = require("@forge/egress");
+const view_1 = require("../view");
+function extractUrlString(url) {
+    if (typeof url === 'string') {
+        return url;
+    }
+    if ('address' in url && url.address) {
+        return url.address;
+    }
+    return url.remote || '';
+}
+const RESOURCE_TYPES = ['fonts', 'styles', 'frames', 'images', 'media', 'scripts'];
+const FETCH_TYPES = ['backend', 'client'];
+function createPermissionUtils(runtimePermissions) {
+    if (!runtimePermissions) {
+        return null;
+    }
+    const { scopes, external = {} } = runtimePermissions;
+    const scopeArray = Array.isArray(scopes) ? scopes : Object.keys(scopes || {});
+    return {
+        hasScope: (scope) => scopeArray.includes(scope),
+        canFetchFrom: (type, url) => {
+            var _a;
+            const fetchUrls = (_a = external.fetch) === null || _a === void 0 ? void 0 : _a[type];
+            if (!(fetchUrls === null || fetchUrls === void 0 ? void 0 : fetchUrls.length))
+                return false;
+            const allowList = fetchUrls.map(extractUrlString).filter((u) => u.length > 0);
+            if (allowList.length === 0)
+                return false;
+            const egressFilter = new egress_1.EgressFilteringService(allowList);
+            const egressFilterWithCSP = egressFilter;
+            return type === 'client' ? egressFilterWithCSP.isValidUrlCSP(url) : egressFilter.isValidUrl(url);
+        },
+        canLoadResource: (type, url) => {
+            const resourceUrls = external[type];
+            if (!(resourceUrls === null || resourceUrls === void 0 ? void 0 : resourceUrls.length))
+                return false;
+            const allowList = resourceUrls.map(extractUrlString).filter((u) => u.length > 0);
+            if (allowList.length === 0)
+                return false;
+            const egressFilter = new egress_1.EgressFilteringService(allowList);
+            const egressFilterWithCSP = egressFilter;
+            return egressFilterWithCSP.isValidUrlCSP(url);
+        },
+        getScopes: () => scopeArray,
+        getExternalPermissions: () => external,
+        hasAnyPermissions: () => scopeArray.length > 0 || Object.keys(external).length > 0
+    };
+}
+exports.createPermissionUtils = createPermissionUtils;
+function checkScopes(requiredScopes, permissionUtils) {
+    if (!(requiredScopes === null || requiredScopes === void 0 ? void 0 : requiredScopes.length)) {
+        return undefined;
+    }
+    const missingScopes = requiredScopes.filter((scope) => !permissionUtils.hasScope(scope));
+    return missingScopes.length > 0 ? missingScopes : undefined;
+}
+function checkFetchPermissions(requiredFetch, permissionUtils) {
+    if (!(requiredFetch === null || requiredFetch === void 0 ? void 0 : requiredFetch.fetch)) {
+        return undefined;
+    }
+    const missingFetch = {};
+    FETCH_TYPES.forEach((type) => {
+        var _a;
+        const requiredUrls = (_a = requiredFetch.fetch) === null || _a === void 0 ? void 0 : _a[type];
+        if (requiredUrls === null || requiredUrls === void 0 ? void 0 : requiredUrls.length) {
+            const missingUrls = requiredUrls.filter((url) => !permissionUtils.canFetchFrom(type, url));
+            if (missingUrls.length > 0) {
+                missingFetch[type] = missingUrls;
+            }
+        }
+    });
+    return Object.keys(missingFetch).length > 0 ? missingFetch : undefined;
+}
+function checkResourcePermissions(requiredExternal, permissionUtils) {
+    const missingResources = {};
+    RESOURCE_TYPES.forEach((type) => {
+        const requiredUrls = requiredExternal === null || requiredExternal === void 0 ? void 0 : requiredExternal[type];
+        if (requiredUrls === null || requiredUrls === void 0 ? void 0 : requiredUrls.length) {
+            const missingUrls = requiredUrls.filter((url) => !permissionUtils.canLoadResource(type, url));
+            if (missingUrls.length > 0) {
+                missingResources[type] = missingUrls;
+            }
+        }
+    });
+    return Object.keys(missingResources).length > 0 ? missingResources : undefined;
+}
+function checkExternalPermissions(requiredExternal, permissionUtils) {
+    if (!requiredExternal) {
+        return undefined;
+    }
+    const missingFetch = checkFetchPermissions(requiredExternal, permissionUtils);
+    const missingResources = checkResourcePermissions(requiredExternal, permissionUtils);
+    if (!missingFetch && !missingResources) {
+        return undefined;
+    }
+    const missingExternal = {};
+    if (missingFetch) {
+        missingExternal.fetch = missingFetch;
+    }
+    if (missingResources) {
+        Object.assign(missingExternal, missingResources);
+    }
+    return missingExternal;
+}
+async function checkPermissions(requiredPermissions, runtimePermissions) {
+    var _a;
+    if (!requiredPermissions) {
+        return { granted: false, missing: null };
+    }
+    if (!((_a = requiredPermissions.scopes) === null || _a === void 0 ? void 0 : _a.length) && !requiredPermissions.external) {
+        return { granted: true, missing: null };
+    }
+    let permissionsToCheck = runtimePermissions;
+    if (!permissionsToCheck) {
+        const context = await view_1.view.getContext();
+        permissionsToCheck = context.permissions;
+    }
+    const permissionUtils = createPermissionUtils(permissionsToCheck);
+    if (!permissionUtils) {
+        return { granted: false, missing: null };
+    }
+    const missing = {};
+    let hasAllRequiredPermissions = true;
+    const missingScopes = checkScopes(requiredPermissions.scopes, permissionUtils);
+    if (missingScopes) {
+        missing.scopes = missingScopes;
+        hasAllRequiredPermissions = false;
+    }
+    const missingExternal = checkExternalPermissions(requiredPermissions.external, permissionUtils);
+    if (missingExternal) {
+        missing.external = missingExternal;
+        hasAllRequiredPermissions = false;
+    }
+    return {
+        granted: hasAllRequiredPermissions,
+        missing: hasAllRequiredPermissions ? null : missing
+    };
+}
+exports.checkPermissions = checkPermissions;

package/out/view/emitReadyEvent.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"emitReadyEvent.d.ts","sourceRoot":"","sources":["../../src/view/emitReadyEvent.ts"],"names":[],"mappings":"AAKA,eAAO,MAAM,cAAc,QAAa,QAAQ,IAAI,CAMnD,CAAC"}
+{"version":3,"file":"emitReadyEvent.d.ts","sourceRoot":"","sources":["../../src/view/emitReadyEvent.ts"],"names":[],"mappings":"AASA,eAAO,MAAM,cAAc,QAAa,QAAQ,IAAI,CAiBnD,CAAC"}

package/out/view/emitReadyEvent.js

@@ -3,11 +3,23 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.emitReadyEvent = void 0;
 const events_1 = require("../events/events");
 const view_1 = require("./view");
+const bridge_1 = require("../bridge");
+const errors_1 = require("../errors");
+const callBridge = (0, bridge_1.getCallBridge)();
 const EXTENSION_READY = 'EXTENSION_READY';
 const emitReadyEvent = async () => {
     const context = await view_1.view.getContext();
     await events_1.events.emit(EXTENSION_READY, {
         localId: context.localId
     });
+    try {
+        const success = await callBridge('emitReadyEvent');
+        if (success === false) {
+            throw new errors_1.BridgeAPIError('Unable to emit ready event.');
+        }
+    }
+    catch (err) {
+        throw new errors_1.BridgeAPIError('Unable to emit ready event.');
+    }
 };
 exports.emitReadyEvent = emitReadyEvent;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@forge/bridge",
-  "version": "5.10.1-next.6",
+  "version": "5.10.2-experimental-60ea29e",
   "description": "Forge bridge API for custom UI apps",
   "author": "Atlassian",
   "license": "SEE LICENSE IN LICENSE.txt",
@@ -15,12 +15,12 @@
   "dependencies": {
     "@atlaskit/adf-schema": "^48.0.0",
     "@atlaskit/tokens": "^1.58.0",
-    "@forge/egress": "^2.3.1-next.0",
+    "@forge/egress": "^2.3.1",
     "@forge/i18n": "0.0.7",
     "@forge/resolver": "1.7.1",
     "@statsig/js-client": "3.18.2",
     "@types/history": "^4.7.11",
-    "@forge/manifest": "11.3.1-next.5",
+    "@forge/manifest": "11.3.2",
     "@types/iframe-resizer": "^3.5.8",
     "iframe-resizer": "^4.4.5",
     "uuid": "^9.0.1"