@forklaunch/implementation-iam-base 0.2.3 → 0.3.0

package/lib/services/index.js

@@ -1,4 +1,666 @@
-export * from './organization.service';
-export * from './permission.service';
-export * from './role.service';
-export * from './user.service';
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// services/index.ts
+var services_exports = {};
+__export(services_exports, {
+  BaseOrganizationService: () => BaseOrganizationService,
+  BasePermissionService: () => BasePermissionService,
+  BaseRoleService: () => BaseRoleService,
+  BaseUserService: () => BaseUserService
+});
+module.exports = __toCommonJS(services_exports);
+
+// services/organization.service.ts
+var import_http = require("@forklaunch/core/http");
+var import_mappers = require("@forklaunch/core/mappers");
+var BaseOrganizationService = class {
+  constructor(em, openTelemetryCollector, schemaValidator, mappers, options) {
+    this.em = em;
+    this.openTelemetryCollector = openTelemetryCollector;
+    this.schemaValidator = schemaValidator;
+    this.mappers = mappers;
+    this.#mappers = (0, import_mappers.transformIntoInternalDtoMapper)(mappers, schemaValidator);
+    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http.evaluateTelemetryOptions)(options.telemetry).enabled : {
+      logging: false,
+      metrics: false,
+      tracing: false
+    };
+  }
+  #mappers;
+  evaluatedTelemetryOptions;
+  async createOrganization(organizationDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info(
+        "Creating organization",
+        organizationDto
+      );
+    }
+    const organization = await this.#mappers.CreateOrganizationDtoMapper.deserializeDtoToEntity(
+      organizationDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(organization);
+    } else {
+      await this.em.persistAndFlush(organization);
+    }
+    return this.#mappers.OrganizationDtoMapper.serializeEntityToDto(
+      organization
+    );
+  }
+  async getOrganization(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting organization", idDto);
+    }
+    const organization = await (em ?? this.em).findOneOrFail(
+      "Organization",
+      idDto
+    );
+    return this.#mappers.OrganizationDtoMapper.serializeEntityToDto(
+      organization
+    );
+  }
+  async updateOrganization(organizationDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info(
+        "Updating organization",
+        organizationDto
+      );
+    }
+    const updatedOrganization = await this.#mappers.UpdateOrganizationDtoMapper.deserializeDtoToEntity(
+      organizationDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(updatedOrganization);
+    } else {
+      await this.em.persistAndFlush(updatedOrganization);
+    }
+    return this.#mappers.OrganizationDtoMapper.serializeEntityToDto(
+      updatedOrganization
+    );
+  }
+  async deleteOrganization(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting organization", idDto);
+    }
+    if (em) {
+      await em.nativeDelete("Organization", idDto);
+    } else {
+      await this.em.nativeDelete("Organization", idDto);
+    }
+  }
+};
+
+// services/permission.service.ts
+var import_http2 = require("@forklaunch/core/http");
+var import_mappers2 = require("@forklaunch/core/mappers");
+var BasePermissionService = class {
+  constructor(em, roleServiceFactory, openTelemetryCollector, schemaValidator, mappers, options) {
+    this.em = em;
+    this.roleServiceFactory = roleServiceFactory;
+    this.openTelemetryCollector = openTelemetryCollector;
+    this.schemaValidator = schemaValidator;
+    this.mappers = mappers;
+    this.#mappers = (0, import_mappers2.transformIntoInternalDtoMapper)(mappers, schemaValidator);
+    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http2.evaluateTelemetryOptions)(options.telemetry).enabled : {
+      logging: false,
+      metrics: false,
+      tracing: false
+    };
+  }
+  #mappers;
+  evaluatedTelemetryOptions;
+  // start: global helper functions
+  async updateRolesWithPermissions(roles, permissions) {
+    return Promise.all(
+      roles.map(async (role) => {
+        permissions.forEach((permission) => role.permissions.add(permission));
+        return role;
+      })
+    );
+  }
+  async removePermissionsFromRoles(roles, permissions) {
+    return Promise.all(
+      roles.map(async (role) => {
+        permissions.forEach(
+          (permission) => role.permissions.remove(permission)
+        );
+        return role;
+      })
+    );
+  }
+  async getBatchRoles(roleIds, em) {
+    return roleIds ? await Promise.all(
+      (await this.roleServiceFactory().getBatchRoles(roleIds, em)).map(
+        async (role) => {
+          return (em ?? this.em).merge(
+            await this.#mappers.RoleEntityMapper.deserializeDtoToEntity(
+              role,
+              em ?? this.em
+            )
+          );
+        }
+      )
+    ) : [];
+  }
+  // end: global helper functions
+  // start: createPermission helper functions
+  async createPermissionDto({
+    permission,
+    addToRoles
+  }) {
+    let roles = [];
+    if (addToRoles) {
+      roles = await this.updateRolesWithPermissions(addToRoles, [permission]);
+    }
+    return { permission, roles };
+  }
+  async extractCreatePermissionDtoToEntityData(permissionDto, em) {
+    return {
+      permission: (em ?? this.em).merge(
+        await this.#mappers.CreatePermissionDtoMapper.deserializeDtoToEntity(
+          permissionDto,
+          em ?? this.em
+        )
+      ),
+      addToRoles: permissionDto.addToRolesIds ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em) : []
+    };
+  }
+  // end: createPermission helper functions
+  async createPermission(createPermissionDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info(
+        "Creating permission",
+        createPermissionDto
+      );
+    }
+    const { permission, roles } = await this.createPermissionDto(
+      await this.extractCreatePermissionDtoToEntityData(createPermissionDto, em)
+    );
+    if (em) {
+      await em.persist([permission, ...roles]);
+    } else {
+      await this.em.persistAndFlush([permission, ...roles]);
+    }
+    return this.#mappers.PermissionDtoMapper.serializeEntityToDto(permission);
+  }
+  async createBatchPermissions(permissionDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info(
+        "Creating batch permissions",
+        permissionDtos
+      );
+    }
+    const rolesCache = {};
+    const permissions = [];
+    permissionDtos.map(async (createPermissionDto) => {
+      const { permission, roles } = await this.createPermissionDto(
+        await this.extractCreatePermissionDtoToEntityData(
+          createPermissionDto,
+          em
+        )
+      );
+      roles.forEach((role) => {
+        if (rolesCache[role.id] && role.permissions !== rolesCache[role.id].permissions) {
+          role.permissions.getItems().forEach((permission2) => {
+            if (!rolesCache[role.id].permissions.contains(permission2)) {
+              rolesCache[role.id].permissions.add(permission2);
+            }
+          });
+        } else {
+          rolesCache[role.id] = role;
+        }
+      });
+      permissions.push(permission);
+    });
+    const entities = [...permissions, ...Object.values(rolesCache)];
+    if (em) {
+      await em.persist(entities);
+    } else {
+      await this.em.persistAndFlush(entities);
+    }
+    return Promise.all(
+      permissions.map(
+        async (permission) => this.#mappers.PermissionDtoMapper.serializeEntityToDto(permission)
+      )
+    );
+  }
+  async getPermission(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting permission", idDto);
+    }
+    const permission = await (em ?? this.em).findOneOrFail("Permission", idDto);
+    return this.#mappers.PermissionDtoMapper.serializeEntityToDto(
+      permission
+    );
+  }
+  async getBatchPermissions(idsDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting batch permissions", idsDto);
+    }
+    return Promise.all(
+      (await (em ?? this.em).find("Permission", idsDto)).map(
+        (permission) => this.#mappers.PermissionDtoMapper.serializeEntityToDto(
+          permission
+        )
+      )
+    );
+  }
+  // start: updatePermission helper functions
+  updatePermissionDto = async (permissionDto, em) => {
+    const permission = await this.#mappers.UpdatePermissionDtoMapper.deserializeDtoToEntity(
+      permissionDto,
+      em ?? this.em
+    );
+    const addToRoles = permissionDto.addToRolesIds ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em) : [];
+    const removeFromRoles = permissionDto.removeFromRolesIds ? await this.getBatchRoles({ ids: permissionDto.removeFromRolesIds }, em) : [];
+    let roles = [];
+    roles = roles.concat(
+      await this.updateRolesWithPermissions(addToRoles, [permission])
+    );
+    roles = roles.concat(
+      await this.removePermissionsFromRoles(removeFromRoles, [permission])
+    );
+    return {
+      permission,
+      roles
+    };
+  };
+  // end: updatePermission helper functions
+  async updatePermission(permissionDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Updating permission", permissionDto);
+    }
+    const { permission, roles } = await this.updatePermissionDto(permissionDto);
+    const entities = await (em ?? this.em).upsertMany([permission, ...roles]);
+    if (em) {
+      await em.persist(entities);
+    } else {
+      await this.em.persistAndFlush(entities);
+    }
+    return this.#mappers.PermissionDtoMapper.serializeEntityToDto(permission);
+  }
+  async updateBatchPermissions(permissionDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info(
+        "Updating batch permissions",
+        permissionDtos
+      );
+    }
+    const rolesCache = {};
+    const permissions = [];
+    await (em ?? this.em).transactional(async (em2) => {
+      permissionDtos.map(async (updatePermissionDto) => {
+        const { permission, roles } = await this.updatePermissionDto(updatePermissionDto);
+        roles.forEach((role) => {
+          if (rolesCache[role.id] && role.permissions !== rolesCache[role.id].permissions) {
+            role.permissions.getItems().forEach((permission2) => {
+              if (!rolesCache[role.id].permissions.contains(permission2)) {
+                rolesCache[role.id].permissions.add(permission2);
+              }
+            });
+          } else {
+            rolesCache[role.id] = role;
+          }
+        });
+        permissions.push(permission);
+      });
+      const entities = [...permissions, ...Object.values(rolesCache)];
+      if (em2) {
+        await em2.persist(entities);
+      } else {
+        await this.em.persistAndFlush(entities);
+      }
+    });
+    return Promise.all(
+      permissions.map(
+        (permission) => this.#mappers.PermissionDtoMapper.serializeEntityToDto(permission)
+      )
+    );
+  }
+  async deletePermission(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting permission", idDto);
+    }
+    await (em ?? this.em).nativeDelete("Permission", idDto);
+  }
+  async deleteBatchPermissions(idsDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting batch permissions", idsDto);
+    }
+    await (em ?? this.em).nativeDelete("Permission", {
+      id: { $in: idsDto.ids }
+    });
+  }
+};
+
+// services/role.service.ts
+var import_http3 = require("@forklaunch/core/http");
+var import_mappers3 = require("@forklaunch/core/mappers");
+var BaseRoleService = class {
+  constructor(em, openTelemetryCollector, schemaValidator, mappers, options) {
+    this.em = em;
+    this.openTelemetryCollector = openTelemetryCollector;
+    this.schemaValidator = schemaValidator;
+    this.mappers = mappers;
+    this.#mappers = (0, import_mappers3.transformIntoInternalDtoMapper)(mappers, schemaValidator);
+    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http3.evaluateTelemetryOptions)(options.telemetry).enabled : {
+      logging: false,
+      metrics: false,
+      tracing: false
+    };
+  }
+  #mappers;
+  evaluatedTelemetryOptions;
+  async createRole(roleDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Creating role", roleDto);
+    }
+    const role = await this.#mappers.CreateRoleDtoMapper.deserializeDtoToEntity(
+      roleDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(role);
+    } else {
+      await this.em.persistAndFlush(role);
+    }
+    return this.#mappers.RoleDtoMapper.serializeEntityToDto(role);
+  }
+  async createBatchRoles(roleDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Creating batch roles", roleDtos);
+    }
+    const roles = await Promise.all(
+      roleDtos.map(
+        async (roleDto) => this.#mappers.CreateRoleDtoMapper.deserializeDtoToEntity(
+          roleDto,
+          em ?? this.em
+        )
+      )
+    );
+    if (em) {
+      await em.persist(roles);
+    } else {
+      await this.em.persistAndFlush(roles);
+    }
+    return Promise.all(
+      roles.map(
+        (role) => this.#mappers.RoleDtoMapper.serializeEntityToDto(role)
+      )
+    );
+  }
+  async getRole({ id }, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting role", { id });
+    }
+    const role = await (em ?? this.em).findOneOrFail("Role", id, {
+      populate: ["id", "*"]
+    });
+    return this.#mappers.RoleDtoMapper.serializeEntityToDto(
+      role
+    );
+  }
+  async getBatchRoles({ ids }, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting batch roles", { ids });
+    }
+    return Promise.all(
+      (await (em ?? this.em).find(
+        "Role",
+        {
+          id: { $in: ids }
+        },
+        {
+          populate: ["id", "*"]
+        }
+      )).map(
+        (role) => this.#mappers.RoleDtoMapper.serializeEntityToDto(
+          role
+        )
+      )
+    );
+  }
+  async updateRole(roleDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Updating role", roleDto);
+    }
+    const role = await this.#mappers.UpdateRoleDtoMapper.deserializeDtoToEntity(
+      roleDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(role);
+    } else {
+      await this.em.persistAndFlush(role);
+    }
+    return this.#mappers.RoleDtoMapper.serializeEntityToDto(role);
+  }
+  async updateBatchRoles(roleDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Updating batch roles", roleDtos);
+    }
+    const roles = await Promise.all(
+      roleDtos.map(
+        async (roleDto) => this.#mappers.UpdateRoleDtoMapper.deserializeDtoToEntity(
+          roleDto,
+          em ?? this.em
+        )
+      )
+    );
+    if (em) {
+      await em.persist(roles);
+    } else {
+      await this.em.persistAndFlush(roles);
+    }
+    return Promise.all(
+      roles.map(
+        (role) => this.#mappers.RoleDtoMapper.serializeEntityToDto(
+          role
+        )
+      )
+    );
+  }
+  async deleteRole(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting role", idDto);
+    }
+    await (em ?? this.em).nativeDelete("Role", idDto);
+  }
+  async deleteBatchRoles(idsDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting batch roles", idsDto);
+    }
+    await (em ?? this.em).nativeDelete("Role", { id: { $in: idsDto.ids } });
+  }
+};
+
+// services/user.service.ts
+var import_http4 = require("@forklaunch/core/http");
+var import_mappers4 = require("@forklaunch/core/mappers");
+var BaseUserService = class {
+  constructor(em, passwordEncryptionPublicKeyPath, roleServiceFactory, organizationServiceFactory, openTelemetryCollector, schemaValidator, mappers, options) {
+    this.em = em;
+    this.passwordEncryptionPublicKeyPath = passwordEncryptionPublicKeyPath;
+    this.roleServiceFactory = roleServiceFactory;
+    this.organizationServiceFactory = organizationServiceFactory;
+    this.openTelemetryCollector = openTelemetryCollector;
+    this.schemaValidator = schemaValidator;
+    this.mappers = mappers;
+    this.options = options;
+    this.#mappers = (0, import_mappers4.transformIntoInternalDtoMapper)(mappers, schemaValidator);
+    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http4.evaluateTelemetryOptions)(options.telemetry).enabled : {
+      logging: false,
+      metrics: false,
+      tracing: false
+    };
+  }
+  #mappers;
+  evaluatedTelemetryOptions;
+  async createUser(userDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Creating user", userDto);
+    }
+    const user = await this.#mappers.CreateUserDtoMapper.deserializeDtoToEntity(
+      userDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(user);
+    } else {
+      await this.em.persistAndFlush(user);
+    }
+    return this.#mappers.UserDtoMapper.serializeEntityToDto(user);
+  }
+  async createBatchUsers(userDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Creating batch users", userDtos);
+    }
+    const users = await Promise.all(
+      userDtos.map(
+        async (createUserDto) => this.#mappers.CreateUserDtoMapper.deserializeDtoToEntity(
+          createUserDto,
+          em ?? this.em
+        )
+      )
+    );
+    if (em) {
+      await em.persist(users);
+    } else {
+      await this.em.persistAndFlush(users);
+    }
+    return Promise.all(
+      users.map(
+        (user) => this.#mappers.UserDtoMapper.serializeEntityToDto(user)
+      )
+    );
+  }
+  async getUser(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting user", idDto);
+    }
+    const user = await (em ?? this.em).findOneOrFail("User", idDto, {
+      populate: ["id", "*"]
+    });
+    return this.#mappers.UserDtoMapper.serializeEntityToDto(
+      user
+    );
+  }
+  async getBatchUsers(idsDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Getting batch users", idsDto);
+    }
+    return Promise.all(
+      (await (em ?? this.em).find("User", idsDto, {
+        populate: ["id", "*"]
+      })).map(
+        (user) => this.#mappers.UserDtoMapper.serializeEntityToDto(
+          user
+        )
+      )
+    );
+  }
+  async updateUser(userDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Updating user", userDto);
+    }
+    const user = await this.#mappers.UpdateUserDtoMapper.deserializeDtoToEntity(
+      userDto,
+      em ?? this.em
+    );
+    if (em) {
+      await em.persist(user);
+    } else {
+      await this.em.persistAndFlush(user);
+    }
+    return this.#mappers.UserDtoMapper.serializeEntityToDto(user);
+  }
+  async updateBatchUsers(userDtos, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Updating batch users", userDtos);
+    }
+    const users = await Promise.all(
+      userDtos.map(
+        async (updateUserDto) => this.#mappers.UpdateUserDtoMapper.deserializeDtoToEntity(
+          updateUserDto,
+          em ?? this.em
+        )
+      )
+    );
+    if (em) {
+      await em.persist(users);
+    } else {
+      await this.em.persistAndFlush(users);
+    }
+    return Promise.all(
+      users.map(
+        (user) => this.#mappers.UserDtoMapper.serializeEntityToDto(user)
+      )
+    );
+  }
+  async deleteUser(idDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting user", idDto);
+    }
+    await (em ?? this.em).nativeDelete("User", idDto);
+  }
+  async deleteBatchUsers(idsDto, em) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Deleting batch users", idsDto);
+    }
+    await (em ?? this.em).nativeDelete("User", idsDto);
+  }
+  async verifyHasRole(idDto, roleId) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Verifying user has role", {
+        idDto,
+        roleId
+      });
+    }
+    const user = await this.getUser(idDto);
+    if (user.roles.filter((role) => {
+      return roleId == role.id;
+    }).length === 0) {
+      throw new Error(`User ${idDto.id} does not have role ${roleId}`);
+    }
+  }
+  async verifyHasPermission(idDto, permissionId) {
+    if (this.evaluatedTelemetryOptions.logging) {
+      this.openTelemetryCollector.info("Verifying user has permission", {
+        idDto,
+        permissionId
+      });
+    }
+    const user = await this.getUser(idDto);
+    if (user.roles.map((role) => role.permissions.map((permission) => permission.id)).flat().filter((id) => id == permissionId).length === 0) {
+      throw new Error(
+        `User ${idDto.id} does not have permission ${permissionId}`
+      );
+    }
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  BaseOrganizationService,
+  BasePermissionService,
+  BaseRoleService,
+  BaseUserService
+});