npm - @forklaunch/implementation-iam-base - Versions diffs - 0.6.2 → 0.6.4 - Mend

@forklaunch/implementation-iam-base 0.6.2 → 0.6.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (14) hide show

package/lib/domain/schemas/index.d.mts +733 -334
package/lib/domain/schemas/index.d.ts +733 -334
package/lib/domain/schemas/index.js +90 -58
package/lib/domain/schemas/index.mjs +40 -36
package/lib/domain/types/index.d.mts +166 -71
package/lib/domain/types/index.d.ts +166 -71
package/lib/domain/types/index.js +8 -4
package/lib/eject/services/permission.service.ts +4 -4
package/lib/eject/services/user.service.ts +16 -30
package/lib/services/index.d.mts +250 -81
package/lib/services/index.d.ts +250 -81
package/lib/services/index.js +196 -175
package/lib/services/index.mjs +181 -173
package/package.json +10 -10

package/lib/services/index.js CHANGED Viewed

@@ -1,4 +1,4 @@
-"use strict";
+'use strict';
 var __defProp = Object.defineProperty;
 var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
@@ -8,14 +8,18 @@ var __export = (target, all) => {
     __defProp(target, name, { get: all[name], enumerable: true });
 };
 var __copyProps = (to, from, except, desc) => {
-  if (from && typeof from === "object" || typeof from === "function") {
+  if ((from && typeof from === 'object') || typeof from === 'function') {
     for (let key of __getOwnPropNames(from))
       if (!__hasOwnProp.call(to, key) && key !== except)
-        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+        __defProp(to, key, {
+          get: () => from[key],
+          enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable
+        });
   }
   return to;
 };
-var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var __toCommonJS = (mod) =>
+  __copyProps(__defProp({}, '__esModule', { value: true }), mod);
 // services/index.ts
 var services_exports = {};
@@ -28,7 +32,7 @@ __export(services_exports, {
 module.exports = __toCommonJS(services_exports);
 // services/organization.service.ts
-var import_http = require("@forklaunch/core/http");
+var import_http = require('@forklaunch/core/http');
 var BaseOrganizationService = class {
   // protected _mappers: InternalMapper<InstanceTypeRecord<typeof this.mappers>>;
   evaluatedTelemetryOptions;
@@ -41,16 +45,18 @@ var BaseOrganizationService = class {
     this.openTelemetryCollector = openTelemetryCollector;
     this.schemaValidator = schemaValidator;
     this.mappers = mappers;
-    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http.evaluateTelemetryOptions)(options.telemetry).enabled : {
-      logging: false,
-      metrics: false,
-      tracing: false
-    };
+    this.evaluatedTelemetryOptions = options?.telemetry
+      ? (0, import_http.evaluateTelemetryOptions)(options.telemetry).enabled
+      : {
+          logging: false,
+          metrics: false,
+          tracing: false
+        };
   }
   async createOrganization(organizationDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
       this.openTelemetryCollector.info(
-        "Creating organization",
+        'Creating organization',
         organizationDto
       );
     }
@@ -68,31 +74,30 @@ var BaseOrganizationService = class {
   }
   async getOrganization(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting organization", idDto);
+      this.openTelemetryCollector.info('Getting organization', idDto);
     }
     const organization = await (em ?? this.em).findOneOrFail(
-      "Organization",
+      'Organization',
       idDto,
       {
-        populate: ["id", "*"]
+        populate: ['id', '*']
       }
     );
-    return this.mappers.OrganizationMapper.toDto(
-      organization
-    );
+    return this.mappers.OrganizationMapper.toDto(organization);
   }
   async updateOrganization(organizationDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
       this.openTelemetryCollector.info(
-        "Updating organization",
+        'Updating organization',
         organizationDto
       );
     }
-    const updatedOrganization = await this.mappers.UpdateOrganizationMapper.toEntity(
-      organizationDto,
-      em ?? this.em,
-      ...args
-    );
+    const updatedOrganization =
+      await this.mappers.UpdateOrganizationMapper.toEntity(
+        organizationDto,
+        em ?? this.em,
+        ...args
+      );
     if (em) {
       await em.persist(updatedOrganization);
     } else {
@@ -102,18 +107,18 @@ var BaseOrganizationService = class {
   }
   async deleteOrganization(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting organization", idDto);
+      this.openTelemetryCollector.info('Deleting organization', idDto);
     }
     if (em) {
-      await em.nativeDelete("Organization", idDto);
+      await em.nativeDelete('Organization', idDto);
     } else {
-      await this.em.nativeDelete("Organization", idDto);
+      await this.em.nativeDelete('Organization', idDto);
     }
   }
 };
 // services/permission.service.ts
-var import_http2 = require("@forklaunch/core/http");
+var import_http2 = require('@forklaunch/core/http');
 var BasePermissionService = class {
   evaluatedTelemetryOptions;
   em;
@@ -121,17 +126,26 @@ var BasePermissionService = class {
   openTelemetryCollector;
   schemaValidator;
   mappers;
-  constructor(em, roleServiceFactory, openTelemetryCollector, schemaValidator, mappers, options) {
+  constructor(
+    em,
+    roleServiceFactory,
+    openTelemetryCollector,
+    schemaValidator,
+    mappers,
+    options
+  ) {
     this.em = em;
     this.roleServiceFactory = roleServiceFactory;
     this.openTelemetryCollector = openTelemetryCollector;
     this.schemaValidator = schemaValidator;
     this.mappers = mappers;
-    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http2.evaluateTelemetryOptions)(options.telemetry).enabled : {
-      logging: false,
-      metrics: false,
-      tracing: false
-    };
+    this.evaluatedTelemetryOptions = options?.telemetry
+      ? (0, import_http2.evaluateTelemetryOptions)(options.telemetry).enabled
+      : {
+          logging: false,
+          metrics: false,
+          tracing: false
+        };
   }
   // start: global helper functions
   async updateRolesWithPermissions(roles, permissions) {
@@ -145,33 +159,32 @@ var BasePermissionService = class {
   async removePermissionsFromRoles(roles, permissions) {
     return Promise.all(
       roles.map(async (role) => {
-        permissions.forEach(
-          (permission) => role.permissions.remove(permission)
+        permissions.forEach((permission) =>
+          role.permissions.remove(permission)
         );
         return role;
       })
     );
   }
   async getBatchRoles(roles, em) {
-    return roles ? await Promise.all(
-      (await this.roleServiceFactory().getBatchRoles(roles, em)).map(
-        async (role) => {
-          return (em ?? this.em).merge(
-            await this.mappers.RoleEntityMapper.toEntity(
-              role,
-              em ?? this.em
-            )
-          );
-        }
-      )
-    ) : [];
+    return roles
+      ? await Promise.all(
+          (await this.roleServiceFactory().getBatchRoles(roles, em)).map(
+            async (role) => {
+              return (em ?? this.em).merge(
+                await this.mappers.RoleEntityMapper.toEntity(
+                  role,
+                  em ?? this.em
+                )
+              );
+            }
+          )
+        )
+      : [];
   }
   // end: global helper functions
   // start: createPermission helper functions
-  async createPermissionEntity({
-    permission,
-    addToRoles
-  }) {
+  async createPermissionEntity({ permission, addToRoles }) {
     let roles = [];
     if (addToRoles) {
       roles = await this.updateRolesWithPermissions(addToRoles, [permission]);
@@ -187,14 +200,16 @@ var BasePermissionService = class {
           ...args
         )
       ),
-      addToRoles: permissionDto.addToRolesIds ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em) : []
+      addToRoles: permissionDto.addToRolesIds
+        ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em)
+        : []
     };
   }
   // end: createPermission helper functions
   async createPermission(createPermissionEntity, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
       this.openTelemetryCollector.info(
-        "Creating permission",
+        'Creating permission',
         createPermissionEntity
       );
     }
@@ -215,13 +230,13 @@ var BasePermissionService = class {
   async createBatchPermissions(permissionDtos, em) {
     if (this.evaluatedTelemetryOptions.logging) {
       this.openTelemetryCollector.info(
-        "Creating batch permissions",
+        'Creating batch permissions',
         permissionDtos
       );
     }
     const rolesCache = {};
     const permissions = [];
-    permissionDtos.map(async (createPermissionEntity) => {
+    for (const createPermissionEntity of permissionDtos) {
       const { permission, roles } = await this.createPermissionEntity(
         await this.extractCreatePermissionEntityToEntityData(
           createPermissionEntity,
@@ -230,20 +245,23 @@ var BasePermissionService = class {
       );
       await Promise.all(
         roles.map(async (role) => {
-          if (role.permissions.isInitialized()) {
+          if (!role.permissions.isInitialized()) {
             return role.permissions.init();
           }
         })
       );
       await Promise.all(
         roles.map(async (role) => {
-          if (role.permissions.isInitialized()) {
+          if (!role.permissions.isInitialized()) {
             return role.permissions.init();
           }
         })
       );
       roles.forEach((role) => {
-        if (rolesCache[role.id] && role.permissions !== rolesCache[role.id].permissions) {
+        if (
+          rolesCache[role.id] &&
+          role.permissions !== rolesCache[role.id].permissions
+        ) {
           role.permissions.getItems().forEach((permission2) => {
             if (!rolesCache[role.id].permissions.contains(permission2)) {
               rolesCache[role.id].permissions.add(permission2);
@@ -254,7 +272,7 @@ var BasePermissionService = class {
         }
       });
       permissions.push(permission);
-    });
+    }
     const entities = [...permissions, ...Object.values(rolesCache)];
     if (em) {
       await em.persist(entities);
@@ -262,29 +280,25 @@ var BasePermissionService = class {
       await this.em.persistAndFlush(entities);
     }
     return Promise.all(
-      permissions.map(
-        async (permission) => this.mappers.PermissionMapper.toDto(permission)
+      permissions.map(async (permission) =>
+        this.mappers.PermissionMapper.toDto(permission)
       )
     );
   }
   async getPermission(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting permission", idDto);
+      this.openTelemetryCollector.info('Getting permission', idDto);
     }
-    const permission = await (em ?? this.em).findOneOrFail("Permission", idDto);
-    return this.mappers.PermissionMapper.toDto(
-      permission
-    );
+    const permission = await (em ?? this.em).findOneOrFail('Permission', idDto);
+    return this.mappers.PermissionMapper.toDto(permission);
   }
   async getBatchPermissions(idsDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting batch permissions", idsDto);
+      this.openTelemetryCollector.info('Getting batch permissions', idsDto);
     }
     return Promise.all(
-      (await (em ?? this.em).find("Permission", idsDto)).map(
-        (permission) => this.mappers.PermissionMapper.toDto(
-          permission
-        )
+      (await (em ?? this.em).find('Permission', idsDto)).map((permission) =>
+        this.mappers.PermissionMapper.toDto(permission)
       )
     );
   }
@@ -295,8 +309,12 @@ var BasePermissionService = class {
       em ?? this.em,
       ...args
     );
-    const addToRoles = permissionDto.addToRolesIds ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em) : [];
-    const removeFromRoles = permissionDto.removeFromRolesIds ? await this.getBatchRoles({ ids: permissionDto.removeFromRolesIds }, em) : [];
+    const addToRoles = permissionDto.addToRolesIds
+      ? await this.getBatchRoles({ ids: permissionDto.addToRolesIds }, em)
+      : [];
+    const removeFromRoles = permissionDto.removeFromRolesIds
+      ? await this.getBatchRoles({ ids: permissionDto.removeFromRolesIds }, em)
+      : [];
     let roles = [];
     roles = roles.concat(
       await this.updateRolesWithPermissions(addToRoles, [permission])
@@ -312,7 +330,7 @@ var BasePermissionService = class {
   // end: updatePermission helper functions
   async updatePermission(permissionDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Updating permission", permissionDto);
+      this.openTelemetryCollector.info('Updating permission', permissionDto);
     }
     const { permission, roles } = await this.updatePermissionDto(permissionDto);
     const entities = await (em ?? this.em).upsertMany([permission, ...roles]);
@@ -326,7 +344,7 @@ var BasePermissionService = class {
   async updateBatchPermissions(permissionDtos, em) {
     if (this.evaluatedTelemetryOptions.logging) {
       this.openTelemetryCollector.info(
-        "Updating batch permissions",
+        'Updating batch permissions',
         permissionDtos
       );
     }
@@ -334,9 +352,13 @@ var BasePermissionService = class {
     const permissions = [];
     await (em ?? this.em).transactional(async (em2) => {
       permissionDtos.map(async (updatePermissionDto) => {
-        const { permission, roles } = await this.updatePermissionDto(updatePermissionDto);
+        const { permission, roles } =
+          await this.updatePermissionDto(updatePermissionDto);
         roles.forEach((role) => {
-          if (rolesCache[role.id] && role.permissions !== rolesCache[role.id].permissions) {
+          if (
+            rolesCache[role.id] &&
+            role.permissions !== rolesCache[role.id].permissions
+          ) {
             role.permissions.getItems().forEach((permission2) => {
               if (!rolesCache[role.id].permissions.contains(permission2)) {
                 rolesCache[role.id].permissions.add(permission2);
@@ -356,29 +378,29 @@ var BasePermissionService = class {
       }
     });
     return Promise.all(
-      permissions.map(
-        (permission) => this.mappers.PermissionMapper.toDto(permission)
+      permissions.map((permission) =>
+        this.mappers.PermissionMapper.toDto(permission)
       )
     );
   }
   async deletePermission(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting permission", idDto);
+      this.openTelemetryCollector.info('Deleting permission', idDto);
     }
-    await (em ?? this.em).nativeDelete("Permission", idDto);
+    await (em ?? this.em).nativeDelete('Permission', idDto);
   }
   async deleteBatchPermissions(idsDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting batch permissions", idsDto);
+      this.openTelemetryCollector.info('Deleting batch permissions', idsDto);
     }
-    await (em ?? this.em).nativeDelete("Permission", {
+    await (em ?? this.em).nativeDelete('Permission', {
       id: { $in: idsDto.ids }
     });
   }
 };
 // services/role.service.ts
-var import_http3 = require("@forklaunch/core/http");
+var import_http3 = require('@forklaunch/core/http');
 var BaseRoleService = class {
   evaluatedTelemetryOptions;
   em;
@@ -390,15 +412,17 @@ var BaseRoleService = class {
     this.openTelemetryCollector = openTelemetryCollector;
     this.schemaValidator = schemaValidator;
     this.mappers = mappers;
-    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http3.evaluateTelemetryOptions)(options.telemetry).enabled : {
-      logging: false,
-      metrics: false,
-      tracing: false
-    };
+    this.evaluatedTelemetryOptions = options?.telemetry
+      ? (0, import_http3.evaluateTelemetryOptions)(options.telemetry).enabled
+      : {
+          logging: false,
+          metrics: false,
+          tracing: false
+        };
   }
   async createRole(roleDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Creating role", roleDto);
+      this.openTelemetryCollector.info('Creating role', roleDto);
     }
     const role = await this.mappers.CreateRoleMapper.toEntity(
       roleDto,
@@ -414,11 +438,11 @@ var BaseRoleService = class {
   }
   async createBatchRoles(roleDtos, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Creating batch roles", roleDtos);
+      this.openTelemetryCollector.info('Creating batch roles', roleDtos);
     }
     const roles = await Promise.all(
-      roleDtos.map(
-        async (roleDto) => this.mappers.CreateRoleMapper.toEntity(roleDto, em ?? this.em, ...args)
+      roleDtos.map(async (roleDto) =>
+        this.mappers.CreateRoleMapper.toEntity(roleDto, em ?? this.em, ...args)
       )
     );
     if (em) {
@@ -432,34 +456,34 @@ var BaseRoleService = class {
   }
   async getRole({ id }, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting role", { id });
+      this.openTelemetryCollector.info('Getting role', { id });
     }
-    const role = await (em ?? this.em).findOneOrFail("Role", id, {
-      populate: ["id", "*"]
+    const role = await (em ?? this.em).findOneOrFail('Role', id, {
+      populate: ['id', '*']
     });
     return this.mappers.RoleMapper.toDto(role);
   }
   async getBatchRoles({ ids }, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting batch roles", { ids });
+      this.openTelemetryCollector.info('Getting batch roles', { ids });
     }
     return Promise.all(
-      (await (em ?? this.em).find(
-        "Role",
-        {
-          id: { $in: ids }
-        },
-        {
-          populate: ["id", "*"]
-        }
-      )).map(
-        (role) => this.mappers.RoleMapper.toDto(role)
-      )
+      (
+        await (em ?? this.em).find(
+          'Role',
+          {
+            id: { $in: ids }
+          },
+          {
+            populate: ['id', '*']
+          }
+        )
+      ).map((role) => this.mappers.RoleMapper.toDto(role))
     );
   }
   async updateRole(roleDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Updating role", roleDto);
+      this.openTelemetryCollector.info('Updating role', roleDto);
     }
     const role = await this.mappers.UpdateRoleMapper.toEntity(
       roleDto,
@@ -475,11 +499,11 @@ var BaseRoleService = class {
   }
   async updateBatchRoles(roleDtos, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Updating batch roles", roleDtos);
+      this.openTelemetryCollector.info('Updating batch roles', roleDtos);
     }
     const roles = await Promise.all(
-      roleDtos.map(
-        async (roleDto) => this.mappers.UpdateRoleMapper.toEntity(roleDto, em ?? this.em, ...args)
+      roleDtos.map(async (roleDto) =>
+        this.mappers.UpdateRoleMapper.toEntity(roleDto, em ?? this.em, ...args)
       )
     );
     if (em) {
@@ -488,53 +512,59 @@ var BaseRoleService = class {
       await this.em.persistAndFlush(roles);
     }
     return Promise.all(
-      roles.map(
-        (role) => this.mappers.RoleMapper.toDto(role)
-      )
+      roles.map((role) => this.mappers.RoleMapper.toDto(role))
     );
   }
   async deleteRole(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting role", idDto);
+      this.openTelemetryCollector.info('Deleting role', idDto);
     }
-    await (em ?? this.em).nativeDelete("Role", idDto);
+    await (em ?? this.em).nativeDelete('Role', idDto);
   }
   async deleteBatchRoles(idsDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting batch roles", idsDto);
+      this.openTelemetryCollector.info('Deleting batch roles', idsDto);
     }
-    await (em ?? this.em).nativeDelete("Role", { id: { $in: idsDto.ids } });
+    await (em ?? this.em).nativeDelete('Role', { id: { $in: idsDto.ids } });
   }
 };
 // services/user.service.ts
-var import_http4 = require("@forklaunch/core/http");
+var import_http4 = require('@forklaunch/core/http');
 var BaseUserService = class {
   evaluatedTelemetryOptions;
   em;
-  passwordEncryptionPublicKeyPath;
   roleServiceFactory;
   organizationServiceFactory;
   openTelemetryCollector;
   schemaValidator;
   mappers;
-  constructor(em, passwordEncryptionPublicKeyPath, roleServiceFactory, organizationServiceFactory, openTelemetryCollector, schemaValidator, mappers, options) {
+  constructor(
+    em,
+    roleServiceFactory,
+    organizationServiceFactory,
+    openTelemetryCollector,
+    schemaValidator,
+    mappers,
+    options
+  ) {
     this.em = em;
-    this.passwordEncryptionPublicKeyPath = passwordEncryptionPublicKeyPath;
     this.roleServiceFactory = roleServiceFactory;
     this.organizationServiceFactory = organizationServiceFactory;
     this.openTelemetryCollector = openTelemetryCollector;
     this.schemaValidator = schemaValidator;
     this.mappers = mappers;
-    this.evaluatedTelemetryOptions = options?.telemetry ? (0, import_http4.evaluateTelemetryOptions)(options.telemetry).enabled : {
-      logging: false,
-      metrics: false,
-      tracing: false
-    };
+    this.evaluatedTelemetryOptions = options?.telemetry
+      ? (0, import_http4.evaluateTelemetryOptions)(options.telemetry).enabled
+      : {
+          logging: false,
+          metrics: false,
+          tracing: false
+        };
   }
   async createUser(userDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Creating user", userDto);
+      this.openTelemetryCollector.info('Creating user', userDto);
     }
     const user = await this.mappers.CreateUserMapper.toEntity(
       userDto,
@@ -550,11 +580,11 @@ var BaseUserService = class {
   }
   async createBatchUsers(userDtos, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Creating batch users", userDtos);
+      this.openTelemetryCollector.info('Creating batch users', userDtos);
     }
     const users = await Promise.all(
-      userDtos.map(
-        async (createUserDto) => this.mappers.CreateUserMapper.toEntity(
+      userDtos.map(async (createUserDto) =>
+        this.mappers.CreateUserMapper.toEntity(
           createUserDto,
           em ?? this.em,
           ...args
@@ -572,28 +602,28 @@ var BaseUserService = class {
   }
   async getUser(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting user", idDto);
+      this.openTelemetryCollector.info('Getting user', idDto);
     }
-    const user = await (em ?? this.em).findOneOrFail("User", idDto, {
-      populate: ["id", "*"]
+    const user = await (em ?? this.em).findOneOrFail('User', idDto, {
+      populate: ['id', '*']
     });
     return this.mappers.UserMapper.toDto(user);
   }
   async getBatchUsers(idsDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Getting batch users", idsDto);
+      this.openTelemetryCollector.info('Getting batch users', idsDto);
     }
     return Promise.all(
-      (await (em ?? this.em).find("User", idsDto, {
-        populate: ["id", "*"]
-      })).map(
-        (user) => this.mappers.UserMapper.toDto(user)
-      )
+      (
+        await (em ?? this.em).find('User', idsDto, {
+          populate: ['id', '*']
+        })
+      ).map((user) => this.mappers.UserMapper.toDto(user))
     );
   }
   async updateUser(userDto, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Updating user", userDto);
+      this.openTelemetryCollector.info('Updating user', userDto);
     }
     const user = await this.mappers.UpdateUserMapper.toEntity(
       userDto,
@@ -609,11 +639,11 @@ var BaseUserService = class {
   }
   async updateBatchUsers(userDtos, em, ...args) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Updating batch users", userDtos);
+      this.openTelemetryCollector.info('Updating batch users', userDtos);
     }
     const users = await Promise.all(
-      userDtos.map(
-        async (updateUserDto) => this.mappers.UpdateUserMapper.toEntity(
+      userDtos.map(async (updateUserDto) =>
+        this.mappers.UpdateUserMapper.toEntity(
           updateUserDto,
           em ?? this.em,
           ...args
@@ -631,49 +661,40 @@ var BaseUserService = class {
   }
   async deleteUser(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting user", idDto);
+      this.openTelemetryCollector.info('Deleting user', idDto);
     }
-    await (em ?? this.em).nativeDelete("User", idDto);
+    await (em ?? this.em).nativeDelete('User', idDto);
   }
   async deleteBatchUsers(idsDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Deleting batch users", idsDto);
+      this.openTelemetryCollector.info('Deleting batch users', idsDto);
     }
-    await (em ?? this.em).nativeDelete("User", idsDto);
+    await (em ?? this.em).nativeDelete('User', idsDto);
   }
-  async verifyHasRole(idDto, roleId) {
+  async surfaceRoles(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Verifying user has role", {
-        idDto,
-        roleId
+      this.openTelemetryCollector.info('Surfacing user roles', {
+        idDto
       });
     }
-    const user = await this.getUser(idDto);
-    if (user.roles.filter((role) => {
-      return roleId == role.id;
-    }).length === 0) {
-      throw new Error(`User ${idDto.id} does not have role ${roleId}`);
-    }
+    const user = await this.getUser(idDto, em);
+    return user.roles;
   }
-  async verifyHasPermission(idDto, permissionId) {
+  async surfacePermissions(idDto, em) {
     if (this.evaluatedTelemetryOptions.logging) {
-      this.openTelemetryCollector.info("Verifying user has permission", {
-        idDto,
-        permissionId
+      this.openTelemetryCollector.info('Surfacing user permissions', {
+        idDto
       });
     }
-    const user = await this.getUser(idDto);
-    if (user.roles.map((role) => role.permissions.map((permission) => permission.id)).flat().filter((id) => id == permissionId).length === 0) {
-      throw new Error(
-        `User ${idDto.id} does not have permission ${permissionId}`
-      );
-    }
+    const user = await this.getUser(idDto, em);
+    return user.roles.map((role) => role.permissions).flat();
   }
 };
 // Annotate the CommonJS export names for ESM import in node:
-0 && (module.exports = {
-  BaseOrganizationService,
-  BasePermissionService,
-  BaseRoleService,
-  BaseUserService
-});
+0 &&
+  (module.exports = {
+    BaseOrganizationService,
+    BasePermissionService,
+    BaseRoleService,
+    BaseUserService
+  });