@frontegg/entitlements-javascript-commons 1.0.0-alpha.8 → 1.0.0

package/dist/index.d.ts

@@ -2,4 +2,4 @@ export { FeatureFlagEvaluationResult, FeatureFlag, evaluateFeatureFlag } from '.
 export { TreatmentEnum, Rule } from './rules';
 export { Condition } from './conditions';
 export { OperationEnum, ConditionValue } from './operations/types';
-export { evaluateIsEntitledToFeature, evaluateIsEntitledToPermissions, CustomAttributes, NotEntitledJustification, UserEntitlementsContext, EntitlementResult, } from './user-entitlements';
+export { evaluateIsEntitledToFeature, evaluateIsEntitledToPermissions, prepareAttributes, checkPermission, createPermissionCheckRegex, Permissions, JwtAttributes, CustomAttributes, FronteggAttributes, NotEntitledJustification, UserEntitlementsContext, EntitlementResult, Attributes, } from './user-entitlements';

package/dist/index.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.NotEntitledJustification = exports.evaluateIsEntitledToPermissions = exports.evaluateIsEntitledToFeature = exports.OperationEnum = exports.TreatmentEnum = exports.evaluateFeatureFlag = void 0;
+exports.NotEntitledJustification = exports.createPermissionCheckRegex = exports.checkPermission = exports.prepareAttributes = exports.evaluateIsEntitledToPermissions = exports.evaluateIsEntitledToFeature = exports.OperationEnum = exports.TreatmentEnum = exports.evaluateFeatureFlag = void 0;
 var feature_flags_1 = require("./feature-flags");
 Object.defineProperty(exports, "evaluateFeatureFlag", { enumerable: true, get: function () { return feature_flags_1.evaluateFeatureFlag; } });
 var rules_1 = require("./rules");
@@ -10,5 +10,8 @@ Object.defineProperty(exports, "OperationEnum", { enumerable: true, get: functio
 var user_entitlements_1 = require("./user-entitlements");
 Object.defineProperty(exports, "evaluateIsEntitledToFeature", { enumerable: true, get: function () { return user_entitlements_1.evaluateIsEntitledToFeature; } });
 Object.defineProperty(exports, "evaluateIsEntitledToPermissions", { enumerable: true, get: function () { return user_entitlements_1.evaluateIsEntitledToPermissions; } });
+Object.defineProperty(exports, "prepareAttributes", { enumerable: true, get: function () { return user_entitlements_1.prepareAttributes; } });
+Object.defineProperty(exports, "checkPermission", { enumerable: true, get: function () { return user_entitlements_1.checkPermission; } });
+Object.defineProperty(exports, "createPermissionCheckRegex", { enumerable: true, get: function () { return user_entitlements_1.createPermissionCheckRegex; } });
 Object.defineProperty(exports, "NotEntitledJustification", { enumerable: true, get: function () { return user_entitlements_1.NotEntitledJustification; } });
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAAA,iDAAgG;AAA7C,oHAAA,mBAAmB,OAAA;AACtE,iCAA8C;AAArC,sGAAA,aAAa,OAAA;AAEtB,4CAAmE;AAA1D,sGAAA,aAAa,OAAA;AACtB,yDAO6B;AAN3B,gIAAA,2BAA2B,OAAA;AAC3B,oIAAA,+BAA+B,OAAA;AAE/B,6HAAA,wBAAwB,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;AAAA,iDAAgG;AAA7C,oHAAA,mBAAmB,OAAA;AACtE,iCAA8C;AAArC,sGAAA,aAAa,OAAA;AAEtB,4CAAmE;AAA1D,sGAAA,aAAa,OAAA;AACtB,yDAc6B;AAb3B,gIAAA,2BAA2B,OAAA;AAC3B,oIAAA,+BAA+B,OAAA;AAC/B,sHAAA,iBAAiB,OAAA;AACjB,oHAAA,eAAe,OAAA;AACf,+HAAA,0BAA0B,OAAA;AAK1B,6HAAA,wBAAwB,OAAA"}

package/dist/operations/date/sanitizers.d.ts

@@ -1,5 +1,7 @@
 import { Sanitizer, SanitizersMapper } from '../types';
 import { BetweenDateOperationPayload, DateOperationPayload, SingleDateOperationPayload } from './types';
+export declare const sanitizeDateValue: (value: Date | string | number) => Date;
+export declare const isValidDate: (value: unknown) => boolean;
 export declare const sanitizeSingleDate: Sanitizer<SingleDateOperationPayload>;
 export declare const sanitizeDateRange: Sanitizer<BetweenDateOperationPayload>;
 export declare const DateSanitizersMapper: SanitizersMapper<DateOperationPayload>;

package/dist/operations/date/sanitizers.js

@@ -1,9 +1,16 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.DateSanitizersMapper = exports.sanitizeDateRange = exports.sanitizeSingleDate = void 0;
+exports.DateSanitizersMapper = exports.sanitizeDateRange = exports.sanitizeSingleDate = exports.isValidDate = exports.sanitizeDateValue = void 0;
 const types_1 = require("../types");
+const sanitizeDateValue = (value) => {
+    return new Date(value);
+};
+exports.sanitizeDateValue = sanitizeDateValue;
+const isValidDate = (value) => value instanceof Date && !isNaN(value);
+exports.isValidDate = isValidDate;
 const sanitizeSingleDate = (value) => {
-    const sanitizedValue = value.date ? { date: value.date } : undefined;
+    const sanitizedDateValue = value.date ? (0, exports.sanitizeDateValue)(value.date) : undefined;
+    const sanitizedValue = sanitizedDateValue && (0, exports.isValidDate)(sanitizedDateValue) ? { date: sanitizedDateValue } : undefined;
     return {
         isSanitized: !!sanitizedValue,
         sanitizedValue,
@@ -11,7 +18,11 @@ const sanitizeSingleDate = (value) => {
 };
 exports.sanitizeSingleDate = sanitizeSingleDate;
 const sanitizeDateRange = (value) => {
-    const sanitizedValue = value.start && value.end ? { start: value.start, end: value.end } : undefined;
+    const sanitizedStartValue = value.start ? (0, exports.sanitizeDateValue)(value.start) : undefined;
+    const sanitizedEndValue = value.end ? (0, exports.sanitizeDateValue)(value.end) : undefined;
+    const sanitizedValue = sanitizedStartValue && sanitizedEndValue && (0, exports.isValidDate)(sanitizedStartValue) && (0, exports.isValidDate)(sanitizedEndValue)
+        ? { start: sanitizedStartValue, end: sanitizedEndValue }
+        : undefined;
     return {
         isSanitized: !!sanitizedValue,
         sanitizedValue,
@@ -20,8 +31,8 @@ const sanitizeDateRange = (value) => {
 exports.sanitizeDateRange = sanitizeDateRange;
 exports.DateSanitizersMapper = {
     [types_1.OperationEnum.On]: exports.sanitizeSingleDate,
-    [types_1.OperationEnum.OnOrAfter]: exports.sanitizeDateRange,
+    [types_1.OperationEnum.OnOrAfter]: exports.sanitizeSingleDate,
     [types_1.OperationEnum.OnOrBefore]: exports.sanitizeSingleDate,
-    [types_1.OperationEnum.BetweenDate]: exports.sanitizeSingleDate,
+    [types_1.OperationEnum.BetweenDate]: exports.sanitizeDateRange,
 };
 //# sourceMappingURL=sanitizers.js.map

package/dist/operations/date/sanitizers.js.map

@@ -1 +1 @@
-{"version":3,"file":"sanitizers.js","sourceRoot":"","sources":["../../../src/operations/date/sanitizers.ts"],"names":[],"mappings":";;;AAAA,oCAAsE;AAG/D,MAAM,kBAAkB,GAA0C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,cAAc,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,IAAY,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAE7E,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAPW,QAAA,kBAAkB,sBAO7B;AAEK,MAAM,iBAAiB,GAA2C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,cAAc,GAAG,KAAK,CAAC,KAAK,IAAI,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,KAAK,CAAC,KAAa,EAAE,GAAG,EAAE,KAAK,CAAC,GAAW,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAErH,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAPW,QAAA,iBAAiB,qBAO5B;AAEW,QAAA,oBAAoB,GAA2C;IAC1E,CAAC,qBAAa,CAAC,EAAE,CAAC,EAAE,0BAAkB;IACtC,CAAC,qBAAa,CAAC,SAAS,CAAC,EAAE,yBAAiB;IAC5C,CAAC,qBAAa,CAAC,UAAU,CAAC,EAAE,0BAAkB;IAC9C,CAAC,qBAAa,CAAC,WAAW,CAAC,EAAE,0BAAkB;CAChD,CAAC"}
+{"version":3,"file":"sanitizers.js","sourceRoot":"","sources":["../../../src/operations/date/sanitizers.ts"],"names":[],"mappings":";;;AAAA,oCAAsE;AAK/D,MAAM,iBAAiB,GAAG,CAAC,KAA6B,EAAQ,EAAE;IACvE,OAAO,IAAI,IAAI,CAAC,KAAK,CAAC,CAAC;AACzB,CAAC,CAAC;AAFW,QAAA,iBAAiB,qBAE5B;AAEK,MAAM,WAAW,GAAG,CAAC,KAAc,EAAW,EAAE,CAAC,KAAK,YAAY,IAAI,IAAI,CAAC,KAAK,CAAC,KAA0B,CAAC,CAAC;AAAvG,QAAA,WAAW,eAA4F;AAE7G,MAAM,kBAAkB,GAA0C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,kBAAkB,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAA,yBAAiB,EAAC,KAAK,CAAC,IAAoB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAClG,MAAM,cAAc,GAClB,kBAAkB,IAAI,IAAA,mBAAW,EAAC,kBAAkB,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,kBAAkB,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAEnG,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AATW,QAAA,kBAAkB,sBAS7B;AAEK,MAAM,iBAAiB,GAA2C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,mBAAmB,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,IAAA,yBAAiB,EAAC,KAAK,CAAC,KAAqB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IACrG,MAAM,iBAAiB,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,IAAA,yBAAiB,EAAC,KAAK,CAAC,GAAmB,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC/F,MAAM,cAAc,GAClB,mBAAmB,IAAI,iBAAiB,IAAI,IAAA,mBAAW,EAAC,mBAAmB,CAAC,IAAI,IAAA,mBAAW,EAAC,iBAAiB,CAAC;QAC5G,CAAC,CAAC,EAAE,KAAK,EAAE,mBAAmB,EAAE,GAAG,EAAE,iBAAiB,EAAE;QACxD,CAAC,CAAC,SAAS,CAAC;IAEhB,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAZW,QAAA,iBAAiB,qBAY5B;AAEW,QAAA,oBAAoB,GAA2C;IAC1E,CAAC,qBAAa,CAAC,EAAE,CAAC,EAAE,0BAAkB;IACtC,CAAC,qBAAa,CAAC,SAAS,CAAC,EAAE,0BAAkB;IAC7C,CAAC,qBAAa,CAAC,UAAU,CAAC,EAAE,0BAAkB;IAC9C,CAAC,qBAAa,CAAC,WAAW,CAAC,EAAE,yBAAiB;CAC/C,CAAC"}

package/dist/operations/numeric/sanitizers.js

@@ -23,10 +23,10 @@ const sanitizeNumericRange = (value) => {
 exports.sanitizeNumericRange = sanitizeNumericRange;
 exports.NumericSanitizersMapper = {
     [types_1.OperationEnum.Equal]: exports.sanitizeSingleNumber,
-    [types_1.OperationEnum.GreaterThan]: exports.sanitizeNumericRange,
+    [types_1.OperationEnum.GreaterThan]: exports.sanitizeSingleNumber,
     [types_1.OperationEnum.GreaterThanEqual]: exports.sanitizeSingleNumber,
     [types_1.OperationEnum.LesserThan]: exports.sanitizeSingleNumber,
-    [types_1.OperationEnum.LesserThanEqual]: exports.sanitizeNumericRange,
+    [types_1.OperationEnum.LesserThanEqual]: exports.sanitizeSingleNumber,
     [types_1.OperationEnum.BetweenNumeric]: exports.sanitizeNumericRange,
 };
 //# sourceMappingURL=sanitizers.js.map

package/dist/operations/string/sanitizers.js

@@ -24,8 +24,8 @@ exports.sanitizeListString = sanitizeListString;
 exports.StringSanitizersMapper = {
     [types_1.OperationEnum.Matches]: exports.sanitizeSingleString,
     [types_1.OperationEnum.Contains]: exports.sanitizeListString,
-    [types_1.OperationEnum.StartsWith]: exports.sanitizeSingleString,
-    [types_1.OperationEnum.EndsWith]: exports.sanitizeSingleString,
+    [types_1.OperationEnum.StartsWith]: exports.sanitizeListString,
+    [types_1.OperationEnum.EndsWith]: exports.sanitizeListString,
     [types_1.OperationEnum.InList]: exports.sanitizeListString,
 };
 //# sourceMappingURL=sanitizers.js.map

package/dist/operations/string/sanitizers.js.map

@@ -1 +1 @@
-{"version":3,"file":"sanitizers.js","sourceRoot":"","sources":["../../../src/operations/string/sanitizers.ts"],"names":[],"mappings":";;;AAAA,oCAAsE;AAGtE,MAAM,QAAQ,GAAG,CAAC,KAAc,EAAmB,EAAE,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC;AAEzE,MAAM,oBAAoB,GAA4C,CAAC,KAAK,EAAE,EAAE;IACrF,MAAM,cAAc,GAAG,KAAK,CAAC,MAAM,KAAK,SAAS,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAEnH,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAPW,QAAA,oBAAoB,wBAO/B;AAEK,MAAM,kBAAkB,GAA0C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,cAAc,GAClB,KAAK,CAAC,IAAI,KAAK,SAAS,IAAgB,KAAK,CAAC,IAAK,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;QAC/E,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,IAAgB,EAAE;QAClC,CAAC,CAAC,SAAS,CAAC;IAEhB,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAVW,QAAA,kBAAkB,sBAU7B;AAEW,QAAA,sBAAsB,GAA6C;IAC9E,CAAC,qBAAa,CAAC,OAAO,CAAC,EAAE,4BAAoB;IAC7C,CAAC,qBAAa,CAAC,QAAQ,CAAC,EAAE,0BAAkB;IAC5C,CAAC,qBAAa,CAAC,UAAU,CAAC,EAAE,4BAAoB;IAChD,CAAC,qBAAa,CAAC,QAAQ,CAAC,EAAE,4BAAoB;IAC9C,CAAC,qBAAa,CAAC,MAAM,CAAC,EAAE,0BAAkB;CAC3C,CAAC"}
+{"version":3,"file":"sanitizers.js","sourceRoot":"","sources":["../../../src/operations/string/sanitizers.ts"],"names":[],"mappings":";;;AAAA,oCAAsE;AAGtE,MAAM,QAAQ,GAAG,CAAC,KAAc,EAAmB,EAAE,CAAC,OAAO,KAAK,KAAK,QAAQ,CAAC;AAEzE,MAAM,oBAAoB,GAA4C,CAAC,KAAK,EAAE,EAAE;IACrF,MAAM,cAAc,GAAG,KAAK,CAAC,MAAM,KAAK,SAAS,IAAI,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAEnH,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAPW,QAAA,oBAAoB,wBAO/B;AAEK,MAAM,kBAAkB,GAA0C,CAAC,KAAK,EAAE,EAAE;IACjF,MAAM,cAAc,GAClB,KAAK,CAAC,IAAI,KAAK,SAAS,IAAgB,KAAK,CAAC,IAAK,CAAC,KAAK,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;QAC/E,CAAC,CAAC,EAAE,IAAI,EAAE,KAAK,CAAC,IAAgB,EAAE;QAClC,CAAC,CAAC,SAAS,CAAC;IAEhB,OAAO;QACL,WAAW,EAAE,CAAC,CAAC,cAAc;QAC7B,cAAc;KACf,CAAC;AACJ,CAAC,CAAC;AAVW,QAAA,kBAAkB,sBAU7B;AAEW,QAAA,sBAAsB,GAA6C;IAC9E,CAAC,qBAAa,CAAC,OAAO,CAAC,EAAE,4BAAoB;IAC7C,CAAC,qBAAa,CAAC,QAAQ,CAAC,EAAE,0BAAkB;IAC5C,CAAC,qBAAa,CAAC,UAAU,CAAC,EAAE,0BAAkB;IAC9C,CAAC,qBAAa,CAAC,QAAQ,CAAC,EAAE,0BAAkB;IAC5C,CAAC,qBAAa,CAAC,MAAM,CAAC,EAAE,0BAAkB;CAC3C,CAAC"}

package/dist/user-entitlements/attributes.utils.d.ts

@@ -0,0 +1,11 @@
+import { Attributes, JwtAttributes, FronteggAttributes } from './types';
+/**
+ *  Merges both `custom` and `jwt` records, map Frontegg attributes and modifies record keys with corrisponding prefixes
+ *
+ *  Example:
+ *  Input: { 'custom': { 'customAttribute': 'someValue' }, 'jwt': { 'email': 'user@email.com', other: 'some-vaule' } }
+ *  Output: { 'customAttribute': 'someValue', 'frontegg.email': 'user@email.com', 'jwt.email': 'user@email.com', 'jwt.other': 'some-vaule' }
+ */
+export declare function prepareAttributes(attributes?: Attributes, customFronteggAttributesMapper?: (jwtAttributes: JwtAttributes) => FronteggAttributes): Record<string, unknown>;
+export declare function defaultFronteggAttributesMapper(jwt: JwtAttributes): FronteggAttributes;
+export declare function modifyObjectKeysWithPrefix(object: Record<string, unknown>, prefix: string): Record<string, unknown>;

package/dist/user-entitlements/attributes.utils.js

@@ -0,0 +1,43 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.modifyObjectKeysWithPrefix = exports.defaultFronteggAttributesMapper = exports.prepareAttributes = void 0;
+const flatten_utils_1 = require("./flatten.utils");
+/**
+ *  Merges both `custom` and `jwt` records, map Frontegg attributes and modifies record keys with corrisponding prefixes
+ *
+ *  Example:
+ *  Input: { 'custom': { 'customAttribute': 'someValue' }, 'jwt': { 'email': 'user@email.com', other: 'some-vaule' } }
+ *  Output: { 'customAttribute': 'someValue', 'frontegg.email': 'user@email.com', 'jwt.email': 'user@email.com', 'jwt.other': 'some-vaule' }
+ */
+function prepareAttributes(attributes = {}, customFronteggAttributesMapper) {
+    const { custom = {}, jwt = {} } = attributes;
+    const flatJwtAttributes = (0, flatten_utils_1.flatten)(jwt);
+    const fronteggAttributes = customFronteggAttributesMapper
+        ? customFronteggAttributesMapper(jwt)
+        : defaultFronteggAttributesMapper(jwt);
+    const fronteggAttributesPrefix = 'frontegg.';
+    const jwtAttributesPrefix = 'jwt.';
+    return {
+        ...custom,
+        ...modifyObjectKeysWithPrefix(fronteggAttributes, fronteggAttributesPrefix),
+        ...modifyObjectKeysWithPrefix(flatJwtAttributes, jwtAttributesPrefix),
+    };
+}
+exports.prepareAttributes = prepareAttributes;
+function defaultFronteggAttributesMapper(jwt) {
+    return {
+        email: jwt.email,
+        emailVerified: jwt.email_verified,
+        tenantId: jwt.tenantId,
+        userId: jwt.userId,
+    };
+}
+exports.defaultFronteggAttributesMapper = defaultFronteggAttributesMapper;
+function modifyObjectKeysWithPrefix(object, prefix) {
+    return Object.keys(object).reduce((modifiedObject, currentKey) => {
+        modifiedObject[`${prefix}${currentKey}`] = object[currentKey];
+        return modifiedObject;
+    }, {});
+}
+exports.modifyObjectKeysWithPrefix = modifyObjectKeysWithPrefix;
+//# sourceMappingURL=attributes.utils.js.map

package/dist/user-entitlements/attributes.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"attributes.utils.js","sourceRoot":"","sources":["../../src/user-entitlements/attributes.utils.ts"],"names":[],"mappings":";;;AACA,mDAA0C;AAC1C;;;;;;GAMG;AACH,SAAgB,iBAAiB,CAC/B,aAAyB,EAAE,EAC3B,8BAAqF;IAErF,MAAM,EAAE,MAAM,GAAG,EAAE,EAAE,GAAG,GAAG,EAAE,EAAE,GAAG,UAAU,CAAC;IAC7C,MAAM,iBAAiB,GAAG,IAAA,uBAAO,EAA+B,GAAG,CAAC,CAAC;IACrE,MAAM,kBAAkB,GAAG,8BAA8B;QACvD,CAAC,CAAC,8BAA8B,CAAC,GAAG,CAAC;QACrC,CAAC,CAAC,+BAA+B,CAAC,GAAG,CAAC,CAAC;IACzC,MAAM,wBAAwB,GAAG,WAAW,CAAC;IAC7C,MAAM,mBAAmB,GAAG,MAAM,CAAC;IAEnC,OAAO;QACL,GAAG,MAAM;QACT,GAAG,0BAA0B,CAAC,kBAAkB,EAAE,wBAAwB,CAAC;QAC3E,GAAG,0BAA0B,CAAC,iBAAiB,EAAE,mBAAmB,CAAC;KACtE,CAAC;AACJ,CAAC;AAjBD,8CAiBC;AAED,SAAgB,+BAA+B,CAAC,GAAkB;IAChE,OAAO;QACL,KAAK,EAAE,GAAG,CAAC,KAAe;QAC1B,aAAa,EAAE,GAAG,CAAC,cAAyB;QAC5C,QAAQ,EAAE,GAAG,CAAC,QAAkB;QAChC,MAAM,EAAE,GAAG,CAAC,MAAgB;KAC7B,CAAC;AACJ,CAAC;AAPD,0EAOC;AAED,SAAgB,0BAA0B,CAAC,MAA+B,EAAE,MAAc;IACxF,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,CAAC,cAAc,EAAE,UAAU,EAAE,EAAE;QAC/D,cAAc,CAAC,GAAG,MAAM,GAAG,UAAU,EAAE,CAAC,GAAG,MAAM,CAAC,UAAU,CAAC,CAAC;QAC9D,OAAO,cAAc,CAAC;IACxB,CAAC,EAAE,EAAE,CAAC,CAAC;AACT,CAAC;AALD,gEAKC"}

package/dist/user-entitlements/flatten.utils.d.ts

@@ -0,0 +1,8 @@
+/** DISCLAIMER - THIS CODE BELONGS TO https://github.com/hughsk/flat  */
+export interface FlattenOptions {
+    delimiter?: string;
+    maxDepth?: number;
+    safe?: boolean;
+    transformKey?: (key: string) => string;
+}
+export declare function flatten<TTraget, TResult>(target: TTraget, opts?: FlattenOptions): TResult;

package/dist/user-entitlements/flatten.utils.js

@@ -0,0 +1,39 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.flatten = void 0;
+function flatten(target, opts) {
+    opts = opts || {};
+    const delimiter = (opts === null || opts === void 0 ? void 0 : opts.delimiter) || '.';
+    const maxDepth = opts === null || opts === void 0 ? void 0 : opts.maxDepth;
+    const transformKey = (opts === null || opts === void 0 ? void 0 : opts.transformKey) || keyIdentity;
+    const output = {};
+    function step(object, prev, currentDepth) {
+        currentDepth = currentDepth || 1;
+        Object.keys(object).forEach(function (key) {
+            const value = object[key];
+            const isarray = (opts === null || opts === void 0 ? void 0 : opts.safe) && Array.isArray(value);
+            const type = Object.prototype.toString.call(value);
+            const isbuffer = isBuffer(value);
+            const isobject = type === '[object Object]' || type === '[object Array]';
+            const newKey = prev ? prev + delimiter + transformKey(key) : transformKey(key);
+            if (!isarray &&
+                !isbuffer &&
+                isobject &&
+                Object.keys(value).length &&
+                (!(opts === null || opts === void 0 ? void 0 : opts.maxDepth) || (maxDepth && currentDepth < maxDepth))) {
+                return step(value, newKey, currentDepth + 1);
+            }
+            output[newKey] = value;
+        });
+    }
+    step(target);
+    return output;
+}
+exports.flatten = flatten;
+function isBuffer(obj) {
+    return obj && obj.constructor && typeof obj.constructor.isBuffer === 'function' && obj.constructor.isBuffer(obj);
+}
+function keyIdentity(key) {
+    return key;
+}
+//# sourceMappingURL=flatten.utils.js.map

package/dist/user-entitlements/flatten.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"flatten.utils.js","sourceRoot":"","sources":["../../src/user-entitlements/flatten.utils.ts"],"names":[],"mappings":";;;AAQA,SAAgB,OAAO,CAAmB,MAAe,EAAE,IAAqB;IAC9E,IAAI,GAAG,IAAI,IAAI,EAAE,CAAC;IAElB,MAAM,SAAS,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,SAAS,KAAI,GAAG,CAAC;IACzC,MAAM,QAAQ,GAAG,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAC;IAChC,MAAM,YAAY,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,YAAY,KAAI,WAAW,CAAC;IACvD,MAAM,MAAM,GAAG,EAAE,CAAC;IAElB,SAAS,IAAI,CAAC,MAAM,EAAE,IAAK,EAAE,YAAa;QACxC,YAAY,GAAG,YAAY,IAAI,CAAC,CAAC;QACjC,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,UAAU,GAAG;YACvC,MAAM,KAAK,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;YAC1B,MAAM,OAAO,GAAG,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,KAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;YACnD,MAAM,IAAI,GAAG,MAAM,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACnD,MAAM,QAAQ,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;YACjC,MAAM,QAAQ,GAAG,IAAI,KAAK,iBAAiB,IAAI,IAAI,KAAK,gBAAgB,CAAC;YAEzE,MAAM,MAAM,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,GAAG,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,CAAC;YAC/E,IACE,CAAC,OAAO;gBACR,CAAC,QAAQ;gBACT,QAAQ;gBACR,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM;gBACzB,CAAC,CAAC,CAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,CAAA,IAAI,CAAC,QAAQ,IAAI,YAAY,GAAG,QAAQ,CAAC,CAAC,EAC1D;gBACA,OAAO,IAAI,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,GAAG,CAAC,CAAC,CAAC;aAC9C;YAED,MAAM,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC;QACzB,CAAC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,CAAC;IAEb,OAAO,MAAiB,CAAC;AAC3B,CAAC;AAnCD,0BAmCC;AAED,SAAS,QAAQ,CAAC,GAAG;IACnB,OAAO,GAAG,IAAI,GAAG,CAAC,WAAW,IAAI,OAAO,GAAG,CAAC,WAAW,CAAC,QAAQ,KAAK,UAAU,IAAI,GAAG,CAAC,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;AACnH,CAAC;AAED,SAAS,WAAW,CAAC,GAAG;IACtB,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/user-entitlements/index.d.ts

@@ -1,2 +1,4 @@
 export * from './is-entitled.evaluator';
 export * from './types';
+export * from './attributes.utils';
+export * from './permissions.utils';

package/dist/user-entitlements/index.js

@@ -16,4 +16,6 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
 Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./is-entitled.evaluator"), exports);
 __exportStar(require("./types"), exports);
+__exportStar(require("./attributes.utils"), exports);
+__exportStar(require("./permissions.utils"), exports);
 //# sourceMappingURL=index.js.map

package/dist/user-entitlements/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/user-entitlements/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,0DAAwC;AACxC,0CAAwB"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/user-entitlements/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,0DAAwC;AACxC,0CAAwB;AACxB,qDAAmC;AACnC,sDAAoC"}

package/dist/user-entitlements/is-entitled.evaluator.d.ts

@@ -1,3 +1,3 @@
-import { CustomAttributes, EntitlementResult, UserEntitlementsContext } from './types';
-export declare function evaluateIsEntitledToFeature(featureKey: string, userEntitlementsContext: UserEntitlementsContext, attributes?: CustomAttributes): EntitlementResult;
-export declare function evaluateIsEntitledToPermissions(permissionKey: string, userEntitlementsContext: UserEntitlementsContext, attributes?: CustomAttributes): EntitlementResult;
+import { EntitlementResult, UserEntitlementsContext, Attributes } from './types';
+export declare function evaluateIsEntitledToFeature(featureKey: string, userEntitlementsContext: UserEntitlementsContext, attributes?: Attributes): EntitlementResult;
+export declare function evaluateIsEntitledToPermissions(permissionKey: string, userEntitlementsContext: UserEntitlementsContext, attributes?: Attributes): EntitlementResult;

package/dist/user-entitlements/is-entitled.evaluator.js

@@ -3,7 +3,9 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.evaluateIsEntitledToPermissions = exports.evaluateIsEntitledToFeature = void 0;
 const types_1 = require("./types");
 const feature_flags_1 = require("../feature-flags");
+const attributes_utils_1 = require("./attributes.utils");
 const rules_1 = require("../rules");
+const permissions_utils_1 = require("./permissions.utils");
 function evaluateIsEntitledToFeature(featureKey, userEntitlementsContext, attributes = {}) {
     const feature = userEntitlementsContext.features[featureKey];
     let hasExpired = false;
@@ -14,17 +16,21 @@ function evaluateIsEntitledToFeature(featureKey, userEntitlementsContext, attrib
         }
     }
     if (feature && feature.featureFlag) {
-        const { treatment } = (0, feature_flags_1.evaluateFeatureFlag)(feature.featureFlag, attributes);
+        const preparedAttributes = (0, attributes_utils_1.prepareAttributes)(attributes);
+        const { treatment } = (0, feature_flags_1.evaluateFeatureFlag)(feature.featureFlag, preparedAttributes);
         if (treatment === rules_1.TreatmentEnum.True) {
             return { isEntitled: true };
         }
     }
-    return { isEntitled: false, justification: hasExpired ? types_1.NotEntitledJustification.BUNDLE_EXPIRED : types_1.NotEntitledJustification.MISSING_FEATURE };
+    return {
+        isEntitled: false,
+        justification: hasExpired ? types_1.NotEntitledJustification.BUNDLE_EXPIRED : types_1.NotEntitledJustification.MISSING_FEATURE,
+    };
 }
 exports.evaluateIsEntitledToFeature = evaluateIsEntitledToFeature;
-function evaluateIsEntitledToPermissions(permissionKey, userEntitlementsContext, attributes = {}) {
-    const permission = userEntitlementsContext.permissions[permissionKey];
-    if (!permission) {
+function evaluateIsEntitledToPermissions(permissionKey, userEntitlementsContext, attributes) {
+    const hasPermission = (0, permissions_utils_1.checkPermission)(userEntitlementsContext.permissions, permissionKey);
+    if (!hasPermission) {
         return { isEntitled: false, justification: types_1.NotEntitledJustification.MISSING_PERMISSION };
     }
     const linkedFeatures = getLinkedFeatures(permissionKey, userEntitlementsContext);

package/dist/user-entitlements/is-entitled.evaluator.js.map

@@ -1 +1 @@
-{"version":3,"file":"is-entitled.evaluator.js","sourceRoot":"","sources":["../../src/user-entitlements/is-entitled.evaluator.ts"],"names":[],"mappings":";;;AAAA,mCAAqI;AACrI,oDAAuD;AACvD,oCAAyC;AACzC,SAAgB,2BAA2B,CACzC,UAAkB,EAClB,uBAAgD,EAChD,aAA+B,EAAE;IAEjC,MAAM,OAAO,GAAG,uBAAuB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAE7D,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,OAAO,IAAI,OAAO,CAAC,UAAU,KAAK,IAAI,EAAE;QAC1C,UAAU,GAAG,OAAO,CAAC,UAAU,KAAK,0BAAkB,IAAI,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE1F,IAAI,CAAC,UAAU,EAAE;YACf,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;KACF;IAED,IAAI,OAAO,IAAI,OAAO,CAAC,WAAW,EAAE;QAClC,MAAM,EAAE,SAAS,EAAE,GAAG,IAAA,mCAAmB,EAAC,OAAO,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;QAC3E,IAAI,SAAS,KAAK,qBAAa,CAAC,IAAI,EAAE;YACpC,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;KACF;IAED,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,gCAAwB,CAAC,cAAc,CAAC,CAAC,CAAC,gCAAwB,CAAC,eAAe,EAAE,CAAC;AAC/I,CAAC;AAxBD,kEAwBC;AAED,SAAgB,+BAA+B,CAC7C,aAAqB,EACrB,uBAAgD,EAChD,aAA+B,EAAE;IAEjC,MAAM,UAAU,GAAG,uBAAuB,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;IAEtE,IAAI,CAAC,UAAU,EAAE;QACf,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,aAAa,EAAE,gCAAwB,CAAC,kBAAkB,EAAE,CAAC;KAC1F;IAED,MAAM,cAAc,GAAG,iBAAiB,CAAC,aAAa,EAAE,uBAAuB,CAAC,CAAC;IAEjF,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE;QAC1B,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;KAC7B;IAED,IAAI,UAAU,GAAG,KAAK,CAAC;IAEvB,KAAK,MAAM,UAAU,IAAI,cAAc,EAAE;QACvC,MAAM,EAAE,UAAU,EAAE,aAAa,EAAE,GAAG,2BAA2B,CAAC,UAAU,EAAE,uBAAuB,EAAE,UAAU,CAAC,CAAC;QAEnH,IAAI,UAAU,EAAE;YACd,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;QAED,IAAI,aAAa,KAAK,gCAAwB,CAAC,cAAc,EAAE;YAC7D,UAAU,GAAG,IAAI,CAAC;SACnB;KACF;IAED,OAAO;QACL,UAAU,EAAE,KAAK;QACjB,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,gCAAwB,CAAC,cAAc,CAAC,CAAC,CAAC,gCAAwB,CAAC,eAAe;KAC/G,CAAC;AACJ,CAAC;AAnCD,0EAmCC;AAED,SAAS,iBAAiB,CAAC,aAAqB,EAAE,uBAAgD;IAChG,OAAO,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE,CACzE,uBAAuB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,iBAAiB,CAAC,QAAQ,CAAC,aAAa,CAAC,CACvF,CAAC;AACJ,CAAC"}
+{"version":3,"file":"is-entitled.evaluator.js","sourceRoot":"","sources":["../../src/user-entitlements/is-entitled.evaluator.ts"],"names":[],"mappings":";;;AAAA,mCAMiB;AAEjB,oDAAuD;AACvD,yDAAuD;AACvD,oCAAyC;AACzC,2DAAsD;AACtD,SAAgB,2BAA2B,CACzC,UAAkB,EAClB,uBAAgD,EAChD,aAAyB,EAAE;IAE3B,MAAM,OAAO,GAAG,uBAAuB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;IAC7D,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,OAAO,IAAI,OAAO,CAAC,UAAU,KAAK,IAAI,EAAE;QAC1C,UAAU,GAAG,OAAO,CAAC,UAAU,KAAK,0BAAkB,IAAI,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE1F,IAAI,CAAC,UAAU,EAAE;YACf,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;KACF;IAED,IAAI,OAAO,IAAI,OAAO,CAAC,WAAW,EAAE;QAClC,MAAM,kBAAkB,GAAG,IAAA,oCAAiB,EAAC,UAAU,CAAC,CAAC;QACzD,MAAM,EAAE,SAAS,EAAE,GAAG,IAAA,mCAAmB,EAAC,OAAO,CAAC,WAAW,EAAE,kBAAkB,CAAC,CAAC;QACnF,IAAI,SAAS,KAAK,qBAAa,CAAC,IAAI,EAAE;YACpC,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;KACF;IAED,OAAO;QACL,UAAU,EAAE,KAAK;QACjB,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,gCAAwB,CAAC,cAAc,CAAC,CAAC,CAAC,gCAAwB,CAAC,eAAe;KAC/G,CAAC;AACJ,CAAC;AA3BD,kEA2BC;AAED,SAAgB,+BAA+B,CAC7C,aAAqB,EACrB,uBAAgD,EAChD,UAAuB;IAEvB,MAAM,aAAa,GAAG,IAAA,mCAAe,EAAC,uBAAuB,CAAC,WAAW,EAAE,aAAa,CAAC,CAAC;IAC1F,IAAI,CAAC,aAAa,EAAE;QAClB,OAAO,EAAE,UAAU,EAAE,KAAK,EAAE,aAAa,EAAE,gCAAwB,CAAC,kBAAkB,EAAE,CAAC;KAC1F;IAED,MAAM,cAAc,GAAG,iBAAiB,CAAC,aAAa,EAAE,uBAAuB,CAAC,CAAC;IAEjF,IAAI,CAAC,cAAc,CAAC,MAAM,EAAE;QAC1B,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;KAC7B;IAED,IAAI,UAAU,GAAG,KAAK,CAAC;IAEvB,KAAK,MAAM,UAAU,IAAI,cAAc,EAAE;QACvC,MAAM,EAAE,UAAU,EAAE,aAAa,EAAE,GAAG,2BAA2B,CAAC,UAAU,EAAE,uBAAuB,EAAE,UAAU,CAAC,CAAC;QAEnH,IAAI,UAAU,EAAE;YACd,OAAO,EAAE,UAAU,EAAE,IAAI,EAAE,CAAC;SAC7B;QAED,IAAI,aAAa,KAAK,gCAAwB,CAAC,cAAc,EAAE;YAC7D,UAAU,GAAG,IAAI,CAAC;SACnB;KACF;IAED,OAAO;QACL,UAAU,EAAE,KAAK;QACjB,aAAa,EAAE,UAAU,CAAC,CAAC,CAAC,gCAAwB,CAAC,cAAc,CAAC,CAAC,CAAC,gCAAwB,CAAC,eAAe;KAC/G,CAAC;AACJ,CAAC;AAlCD,0EAkCC;AAED,SAAS,iBAAiB,CAAC,aAAqB,EAAE,uBAAgD;IAChG,OAAO,MAAM,CAAC,IAAI,CAAC,uBAAuB,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE,CACzE,uBAAuB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC,iBAAiB,CAAC,QAAQ,CAAC,aAAa,CAAC,CACvF,CAAC;AACJ,CAAC"}

package/dist/user-entitlements/permissions.utils.d.ts

@@ -0,0 +1,3 @@
+import { Permissions } from './types';
+export declare function checkPermission(permissions: Permissions, requiredPermission: string): boolean;
+export declare function createPermissionCheckRegex(permissionKey: string): RegExp;

package/dist/user-entitlements/permissions.utils.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createPermissionCheckRegex = exports.checkPermission = void 0;
+function checkPermission(permissions, requiredPermission) {
+    return Object.keys(permissions).some((permissionKey) => createPermissionCheckRegex(permissionKey).test(requiredPermission));
+}
+exports.checkPermission = checkPermission;
+function createPermissionCheckRegex(permissionKey) {
+    return new RegExp('^' + permissionKey.replace(/\./g, '\\.').replace(/\*/g, '.*') + '$', 'gs');
+}
+exports.createPermissionCheckRegex = createPermissionCheckRegex;
+//# sourceMappingURL=permissions.utils.js.map

package/dist/user-entitlements/permissions.utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissions.utils.js","sourceRoot":"","sources":["../../src/user-entitlements/permissions.utils.ts"],"names":[],"mappings":";;;AACA,SAAgB,eAAe,CAAC,WAAwB,EAAE,kBAA0B;IAClF,OAAO,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,EAAE,CACrD,0BAA0B,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,kBAAkB,CAAC,CACnE,CAAC;AACJ,CAAC;AAJD,0CAIC;AAED,SAAgB,0BAA0B,CAAC,aAAqB;IAC9D,OAAO,IAAI,MAAM,CAAC,GAAG,GAAG,aAAa,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,GAAG,EAAE,IAAI,CAAC,CAAC;AAChG,CAAC;AAFD,gEAEC"}

package/dist/user-entitlements/types.d.ts

@@ -5,7 +5,7 @@ export type UserEntitlementsContext = {
         linkedPermissions: string[];
         featureFlag?: FeatureFlag;
     }>;
-    permissions: Record<string, true>;
+    permissions: Permissions;
 };
 export type EntitlementResult = {
     isEntitled: boolean;
@@ -17,4 +17,16 @@ export declare enum NotEntitledJustification {
     BUNDLE_EXPIRED = "BUNDLE_EXPIRED"
 }
 export type CustomAttributes = Record<string, string | number | boolean | Date>;
+export type FronteggAttributes = {
+    tenantId?: string;
+    userId?: string;
+    email?: string;
+    emailVerified?: boolean;
+};
+export type Permissions = Record<string, true>;
+export type Attributes = {
+    custom?: CustomAttributes;
+    jwt?: JwtAttributes;
+};
+export type JwtAttributes = Record<string, unknown>;
 export declare const NO_EXPIRATION_TIME = -1;

package/dist/user-entitlements/types.js.map

@@ -1 +1 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/user-entitlements/types.ts"],"names":[],"mappings":";;;AAkBA,IAAY,wBAIX;AAJD,WAAY,wBAAwB;IAClC,+DAAmC,CAAA;IACnC,qEAAyC,CAAA;IACzC,6DAAiC,CAAA;AACnC,CAAC,EAJW,wBAAwB,GAAxB,gCAAwB,KAAxB,gCAAwB,QAInC;AAIY,QAAA,kBAAkB,GAAG,CAAC,CAAC,CAAC"}
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/user-entitlements/types.ts"],"names":[],"mappings":";;;AAkBA,IAAY,wBAIX;AAJD,WAAY,wBAAwB;IAClC,+DAAmC,CAAA;IACnC,qEAAyC,CAAA;IACzC,6DAAiC,CAAA;AACnC,CAAC,EAJW,wBAAwB,GAAxB,gCAAwB,KAAxB,gCAAwB,QAInC;AAaY,QAAA,kBAAkB,GAAG,CAAC,CAAC,CAAC"}

package/docs/CHANGELOG.md

@@ -1,3 +1,100 @@
+# 1.0.0 (2023-10-31)
+
+
+### Bug Fixes
+
+* fix export order ([#16](https://github.com/frontegg/entitlements-javascript-commons/issues/16)) ([d7fafa4](https://github.com/frontegg/entitlements-javascript-commons/commit/d7fafa427e5f99fffe541f9fa78fd9b7507045c3))
+* **date:** fix incorrect sanitizers mapping ([#25](https://github.com/frontegg/entitlements-javascript-commons/issues/25)) ([da08f16](https://github.com/frontegg/entitlements-javascript-commons/commit/da08f1628753b1794422c83327670ae09242ec11))
+* **dep:** remove flat dependency ([e8a2daf](https://github.com/frontegg/entitlements-javascript-commons/commit/e8a2dafde0612ebfacc8e2d7e346d189276e5f72))
+* **sanitizers:** fix numeric and date sanitizers ([#24](https://github.com/frontegg/entitlements-javascript-commons/issues/24)) ([8f5717a](https://github.com/frontegg/entitlements-javascript-commons/commit/8f5717acdcc0a1eccae84b272c7a02e315131a01))
+* **string:** fix string sanitizers type to match opertaions ([#21](https://github.com/frontegg/entitlements-javascript-commons/issues/21)) ([4461155](https://github.com/frontegg/entitlements-javascript-commons/commit/4461155e53c0ef6f647ff4bc0215804667b52928))
+* **user-entitlements:** exported utility function ([4d81b3e](https://github.com/frontegg/entitlements-javascript-commons/commit/4d81b3e04b1de59047c6b5911f09391a4ccafcb9))
+
+
+### Features
+
+* additional (handy) exports that SDKs might use to interact with feature flags (FR-13491) ([a7d1fc2](https://github.com/frontegg/entitlements-javascript-commons/commit/a7d1fc2f596cf379d10cb34ae7aa55a7111c1244))
+* create pipeline and release infra ([16fd6d1](https://github.com/frontegg/entitlements-javascript-commons/commit/16fd6d165cff4c3ae28e2392db2480d41dd591b1))
+* **conditions:** add condition evaluator ([#5](https://github.com/frontegg/entitlements-javascript-commons/issues/5)) ([5ca2446](https://github.com/frontegg/entitlements-javascript-commons/commit/5ca24465a76b9fa103977e5600a6d870da5520cb))
+* **feature-flags:** add feature flag evaluation ([#11](https://github.com/frontegg/entitlements-javascript-commons/issues/11)) ([94679a1](https://github.com/frontegg/entitlements-javascript-commons/commit/94679a123581cd4977fd9f2087adc9e2532a638c))
+* **operations:** add numeric operations ([#3](https://github.com/frontegg/entitlements-javascript-commons/issues/3)) ([#10](https://github.com/frontegg/entitlements-javascript-commons/issues/10)) ([0b3de2f](https://github.com/frontegg/entitlements-javascript-commons/commit/0b3de2f7f1aede036ec63e4fadf898dcf5ad32a4))
+* **operations:** add string operations ([#2](https://github.com/frontegg/entitlements-javascript-commons/issues/2)) ([e2e63a7](https://github.com/frontegg/entitlements-javascript-commons/commit/e2e63a74211a723dc326918e42e2093fcca86779))
+* **rule:** add rule evaluator ([#6](https://github.com/frontegg/entitlements-javascript-commons/issues/6)) ([5fbf4da](https://github.com/frontegg/entitlements-javascript-commons/commit/5fbf4da00a3d9df2908d8899723a64b1bd80a7c2))
+* **sanitizers:** add value sanitizers ([#12](https://github.com/frontegg/entitlements-javascript-commons/issues/12)) ([1decf2c](https://github.com/frontegg/entitlements-javascript-commons/commit/1decf2c01e0a86055bc856db5ff115a2318f1c59))
+* **user-entitlements:** add frontegg attributes ([878f4aa](https://github.com/frontegg/entitlements-javascript-commons/commit/878f4aa5f284fc2dd27ffae63ed9c0c74b2c8adb))
+* **user-entitlements:** add frontegg attributes ([b1c3e30](https://github.com/frontegg/entitlements-javascript-commons/commit/b1c3e30e420e8972167087c5745ef49ac0c6b859))
+* **user-entitlements:** add missing types ([fd375c1](https://github.com/frontegg/entitlements-javascript-commons/commit/fd375c15fea40ddbf8e259a73f8831fa9dbb763e))
+* **user-entitlements:** add user entitlements evaluation logic ([d924a05](https://github.com/frontegg/entitlements-javascript-commons/commit/d924a056498b4b040dd765b262cde42201644653))
+* **user-entitlements:** export function signature parameters types ([2207986](https://github.com/frontegg/entitlements-javascript-commons/commit/220798611a91875e594c83f76baed6c18f5ac19a))
+* **user-entitlements:** export types ([06f6f13](https://github.com/frontegg/entitlements-javascript-commons/commit/06f6f13263bcfecc098290da35b310393bcecda4))
+* **user-entitlements:** handle jwt attributes ([cc0ce70](https://github.com/frontegg/entitlements-javascript-commons/commit/cc0ce70f4c3ebf2b3b410865d740c23ab1d0d9ed))
+* **user-entitlements:** introduce wildcard to permission check ([986ba21](https://github.com/frontegg/entitlements-javascript-commons/commit/986ba213cbf88aef99495e3fd6fc2bf1203ec7e6))
+
+# [1.0.0-alpha.17](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.16...v-1.0.0-alpha.17) (2023-10-30)
+
+
+### Bug Fixes
+
+* **user-entitlements:** exported utility function ([4d81b3e](https://github.com/frontegg/entitlements-javascript-commons/commit/4d81b3e04b1de59047c6b5911f09391a4ccafcb9))
+
+# [1.0.0-alpha.16](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.15...v-1.0.0-alpha.16) (2023-10-30)
+
+
+### Features
+
+* **user-entitlements:** introduce wildcard to permission check ([986ba21](https://github.com/frontegg/entitlements-javascript-commons/commit/986ba213cbf88aef99495e3fd6fc2bf1203ec7e6))
+
+# [1.0.0-alpha.15](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.14...v-1.0.0-alpha.15) (2023-10-25)
+
+
+### Bug Fixes
+
+* **date:** fix incorrect sanitizers mapping ([#25](https://github.com/frontegg/entitlements-javascript-commons/issues/25)) ([da08f16](https://github.com/frontegg/entitlements-javascript-commons/commit/da08f1628753b1794422c83327670ae09242ec11))
+
+# [1.0.0-alpha.14](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.13...v-1.0.0-alpha.14) (2023-10-24)
+
+
+### Bug Fixes
+
+* **sanitizers:** fix numeric and date sanitizers ([#24](https://github.com/frontegg/entitlements-javascript-commons/issues/24)) ([8f5717a](https://github.com/frontegg/entitlements-javascript-commons/commit/8f5717acdcc0a1eccae84b272c7a02e315131a01))
+
+# [1.0.0-alpha.13](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.12...v-1.0.0-alpha.13) (2023-10-22)
+
+
+### Bug Fixes
+
+* **dep:** remove flat dependency ([e8a2daf](https://github.com/frontegg/entitlements-javascript-commons/commit/e8a2dafde0612ebfacc8e2d7e346d189276e5f72))
+
+# [1.0.0-alpha.12](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.11...v-1.0.0-alpha.12) (2023-10-18)
+
+
+### Bug Fixes
+
+* **string:** fix string sanitizers type to match opertaions ([#21](https://github.com/frontegg/entitlements-javascript-commons/issues/21)) ([4461155](https://github.com/frontegg/entitlements-javascript-commons/commit/4461155e53c0ef6f647ff4bc0215804667b52928))
+
+# [1.0.0-alpha.11](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.10...v-1.0.0-alpha.11) (2023-10-17)
+
+
+### Features
+
+* **user-entitlements:** handle jwt attributes ([cc0ce70](https://github.com/frontegg/entitlements-javascript-commons/commit/cc0ce70f4c3ebf2b3b410865d740c23ab1d0d9ed))
+
+# [1.0.0-alpha.10](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.9...v-1.0.0-alpha.10) (2023-10-12)
+
+
+### Features
+
+* **user-entitlements:** add missing types ([fd375c1](https://github.com/frontegg/entitlements-javascript-commons/commit/fd375c15fea40ddbf8e259a73f8831fa9dbb763e))
+* **user-entitlements:** export types ([06f6f13](https://github.com/frontegg/entitlements-javascript-commons/commit/06f6f13263bcfecc098290da35b310393bcecda4))
+
+# [1.0.0-alpha.9](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.8...v-1.0.0-alpha.9) (2023-10-12)
+
+
+### Features
+
+* **user-entitlements:** add frontegg attributes ([878f4aa](https://github.com/frontegg/entitlements-javascript-commons/commit/878f4aa5f284fc2dd27ffae63ed9c0c74b2c8adb))
+* **user-entitlements:** add frontegg attributes ([b1c3e30](https://github.com/frontegg/entitlements-javascript-commons/commit/b1c3e30e420e8972167087c5745ef49ac0c6b859))
+
 # [1.0.0-alpha.8](https://github.com/frontegg/entitlements-javascript-commons/compare/v-1.0.0-alpha.7...v-1.0.0-alpha.8) (2023-10-11)
 
 

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@frontegg/entitlements-javascript-commons",
-  "version": "1.0.0-alpha.8",
+  "version": "1.0.0",
   "description": "",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",

package/src/index.ts

@@ -5,8 +5,15 @@ export { OperationEnum, ConditionValue } from './operations/types';
 export {
   evaluateIsEntitledToFeature,
   evaluateIsEntitledToPermissions,
+  prepareAttributes,
+  checkPermission,
+  createPermissionCheckRegex,
+  Permissions,
+  JwtAttributes,
   CustomAttributes,
+  FronteggAttributes,
   NotEntitledJustification,
   UserEntitlementsContext,
   EntitlementResult,
+  Attributes,
 } from './user-entitlements';

package/src/operations/date/sanitizers.ts

@@ -1,8 +1,18 @@
 import { OperationEnum, Sanitizer, SanitizersMapper } from '../types';
 import { BetweenDateOperationPayload, DateOperationPayload, SingleDateOperationPayload } from './types';
 
+type RawDateValue = Date | string | number;
+
+export const sanitizeDateValue = (value: Date | string | number): Date => {
+  return new Date(value);
+};
+
+export const isValidDate = (value: unknown): boolean => value instanceof Date && !isNaN(value as unknown as number);
+
 export const sanitizeSingleDate: Sanitizer<SingleDateOperationPayload> = (value) => {
-  const sanitizedValue = value.date ? { date: value.date as Date } : undefined;
+  const sanitizedDateValue = value.date ? sanitizeDateValue(value.date as RawDateValue) : undefined;
+  const sanitizedValue =
+    sanitizedDateValue && isValidDate(sanitizedDateValue) ? { date: sanitizedDateValue } : undefined;
 
   return {
     isSanitized: !!sanitizedValue,
@@ -11,7 +21,12 @@ export const sanitizeSingleDate: Sanitizer<SingleDateOperationPayload> = (value)
 };
 
 export const sanitizeDateRange: Sanitizer<BetweenDateOperationPayload> = (value) => {
-  const sanitizedValue = value.start && value.end ? { start: value.start as Date, end: value.end as Date } : undefined;
+  const sanitizedStartValue = value.start ? sanitizeDateValue(value.start as RawDateValue) : undefined;
+  const sanitizedEndValue = value.end ? sanitizeDateValue(value.end as RawDateValue) : undefined;
+  const sanitizedValue =
+    sanitizedStartValue && sanitizedEndValue && isValidDate(sanitizedStartValue) && isValidDate(sanitizedEndValue)
+      ? { start: sanitizedStartValue, end: sanitizedEndValue }
+      : undefined;
 
   return {
     isSanitized: !!sanitizedValue,
@@ -21,7 +36,7 @@ export const sanitizeDateRange: Sanitizer<BetweenDateOperationPayload> = (value)
 
 export const DateSanitizersMapper: SanitizersMapper<DateOperationPayload> = {
   [OperationEnum.On]: sanitizeSingleDate,
-  [OperationEnum.OnOrAfter]: sanitizeDateRange,
+  [OperationEnum.OnOrAfter]: sanitizeSingleDate,
   [OperationEnum.OnOrBefore]: sanitizeSingleDate,
-  [OperationEnum.BetweenDate]: sanitizeSingleDate,
+  [OperationEnum.BetweenDate]: sanitizeDateRange,
 };

package/src/operations/date/tests/sanitizers.spec.ts

@@ -1,7 +1,24 @@
 import { fc, test } from '@fast-check/jest';
-import { sanitizeDateRange, sanitizeSingleDate } from '../sanitizers';
+import { isValidDate, sanitizeDateRange, sanitizeDateValue, sanitizeSingleDate } from '../sanitizers';
 
 describe('Date sanitizers', () => {
+  it.each([['2021-01-01'], ['2023-10-23T12:09:17.502Z'], [123432443], [new Date()]])(
+    'should return sanitized date when value is a string',
+    (value) => {
+      const sanitizationResult = sanitizeDateValue(value);
+
+      expect(sanitizationResult).toBeDefined();
+      expect(sanitizationResult).toEqual(new Date(value));
+    },
+  );
+
+  it.each([['not a date'], [], {}, [undefined]])('should return invalid date when value is not a date', (value) => {
+    const sanitizationResult = sanitizeDateValue(value as any);
+
+    expect(sanitizationResult).toBeDefined();
+    expect(isValidDate(sanitizationResult)).toBe(false);
+  });
+
   test.prop([fc.record({ date: fc.date() })], { verbose: true })(
     'should return sanitized when date value exists',
     (value) => {

package/src/operations/numeric/sanitizers.ts

@@ -26,9 +26,9 @@ export const sanitizeNumericRange: Sanitizer<BetweenNumericOperationPayload> = (
 
 export const NumericSanitizersMapper: SanitizersMapper<NumericOperationPayload> = {
   [OperationEnum.Equal]: sanitizeSingleNumber,
-  [OperationEnum.GreaterThan]: sanitizeNumericRange,
+  [OperationEnum.GreaterThan]: sanitizeSingleNumber,
   [OperationEnum.GreaterThanEqual]: sanitizeSingleNumber,
   [OperationEnum.LesserThan]: sanitizeSingleNumber,
-  [OperationEnum.LesserThanEqual]: sanitizeNumericRange,
+  [OperationEnum.LesserThanEqual]: sanitizeSingleNumber,
   [OperationEnum.BetweenNumeric]: sanitizeNumericRange,
 };

package/src/operations/string/sanitizers.ts

@@ -27,7 +27,7 @@ export const sanitizeListString: Sanitizer<ListStringOperationPayload> = (value)
 export const StringSanitizersMapper: SanitizersMapper<StringOperationPayload> = {
   [OperationEnum.Matches]: sanitizeSingleString,
   [OperationEnum.Contains]: sanitizeListString,
-  [OperationEnum.StartsWith]: sanitizeSingleString,
-  [OperationEnum.EndsWith]: sanitizeSingleString,
+  [OperationEnum.StartsWith]: sanitizeListString,
+  [OperationEnum.EndsWith]: sanitizeListString,
   [OperationEnum.InList]: sanitizeListString,
 };

package/src/user-entitlements/attributes.utils.ts

@@ -0,0 +1,43 @@
+import { Attributes, JwtAttributes, FronteggAttributes } from './types';
+import { flatten } from './flatten.utils';
+/**
+ *  Merges both `custom` and `jwt` records, map Frontegg attributes and modifies record keys with corrisponding prefixes
+ *
+ *  Example:
+ *  Input: { 'custom': { 'customAttribute': 'someValue' }, 'jwt': { 'email': 'user@email.com', other: 'some-vaule' } }
+ *  Output: { 'customAttribute': 'someValue', 'frontegg.email': 'user@email.com', 'jwt.email': 'user@email.com', 'jwt.other': 'some-vaule' }
+ */
+export function prepareAttributes(
+  attributes: Attributes = {},
+  customFronteggAttributesMapper?: (jwtAttributes: JwtAttributes) => FronteggAttributes,
+): Record<string, unknown> {
+  const { custom = {}, jwt = {} } = attributes;
+  const flatJwtAttributes = flatten<JwtAttributes, JwtAttributes>(jwt);
+  const fronteggAttributes = customFronteggAttributesMapper
+    ? customFronteggAttributesMapper(jwt)
+    : defaultFronteggAttributesMapper(jwt);
+  const fronteggAttributesPrefix = 'frontegg.';
+  const jwtAttributesPrefix = 'jwt.';
+
+  return {
+    ...custom,
+    ...modifyObjectKeysWithPrefix(fronteggAttributes, fronteggAttributesPrefix),
+    ...modifyObjectKeysWithPrefix(flatJwtAttributes, jwtAttributesPrefix),
+  };
+}
+
+export function defaultFronteggAttributesMapper(jwt: JwtAttributes): FronteggAttributes {
+  return {
+    email: jwt.email as string,
+    emailVerified: jwt.email_verified as boolean,
+    tenantId: jwt.tenantId as string,
+    userId: jwt.userId as string,
+  };
+}
+
+export function modifyObjectKeysWithPrefix(object: Record<string, unknown>, prefix: string): Record<string, unknown> {
+  return Object.keys(object).reduce((modifiedObject, currentKey) => {
+    modifiedObject[`${prefix}${currentKey}`] = object[currentKey];
+    return modifiedObject;
+  }, {});
+}

package/src/user-entitlements/flatten.utils.ts

@@ -0,0 +1,52 @@
+/** DISCLAIMER - THIS CODE BELONGS TO https://github.com/hughsk/flat  */
+export interface FlattenOptions {
+  delimiter?: string;
+  maxDepth?: number;
+  safe?: boolean;
+  transformKey?: (key: string) => string;
+}
+
+export function flatten<TTraget, TResult>(target: TTraget, opts?: FlattenOptions): TResult {
+  opts = opts || {};
+
+  const delimiter = opts?.delimiter || '.';
+  const maxDepth = opts?.maxDepth;
+  const transformKey = opts?.transformKey || keyIdentity;
+  const output = {};
+
+  function step(object, prev?, currentDepth?) {
+    currentDepth = currentDepth || 1;
+    Object.keys(object).forEach(function (key) {
+      const value = object[key];
+      const isarray = opts?.safe && Array.isArray(value);
+      const type = Object.prototype.toString.call(value);
+      const isbuffer = isBuffer(value);
+      const isobject = type === '[object Object]' || type === '[object Array]';
+
+      const newKey = prev ? prev + delimiter + transformKey(key) : transformKey(key);
+      if (
+        !isarray &&
+        !isbuffer &&
+        isobject &&
+        Object.keys(value).length &&
+        (!opts?.maxDepth || (maxDepth && currentDepth < maxDepth))
+      ) {
+        return step(value, newKey, currentDepth + 1);
+      }
+
+      output[newKey] = value;
+    });
+  }
+
+  step(target);
+
+  return output as TResult;
+}
+
+function isBuffer(obj) {
+  return obj && obj.constructor && typeof obj.constructor.isBuffer === 'function' && obj.constructor.isBuffer(obj);
+}
+
+function keyIdentity(key) {
+  return key;
+}

package/src/user-entitlements/index.ts

@@ -1,2 +1,4 @@
 export * from './is-entitled.evaluator';
 export * from './types';
+export * from './attributes.utils';
+export * from './permissions.utils';

package/src/user-entitlements/is-entitled.evaluator.ts

@@ -1,13 +1,21 @@
-import { CustomAttributes, EntitlementResult, NotEntitledJustification, NO_EXPIRATION_TIME, UserEntitlementsContext } from './types';
+import {
+  EntitlementResult,
+  NotEntitledJustification,
+  NO_EXPIRATION_TIME,
+  UserEntitlementsContext,
+  Attributes,
+} from './types';
+
 import { evaluateFeatureFlag } from '../feature-flags';
+import { prepareAttributes } from './attributes.utils';
 import { TreatmentEnum } from '../rules';
+import { checkPermission } from './permissions.utils';
 export function evaluateIsEntitledToFeature(
   featureKey: string,
   userEntitlementsContext: UserEntitlementsContext,
-  attributes: CustomAttributes = {},
+  attributes: Attributes = {},
 ): EntitlementResult {
   const feature = userEntitlementsContext.features[featureKey];
-
   let hasExpired = false;
   if (feature && feature.expireTime !== null) {
     hasExpired = feature.expireTime !== NO_EXPIRATION_TIME && feature.expireTime < Date.now();
@@ -18,23 +26,26 @@ export function evaluateIsEntitledToFeature(
   }
 
   if (feature && feature.featureFlag) {
-    const { treatment } = evaluateFeatureFlag(feature.featureFlag, attributes);
+    const preparedAttributes = prepareAttributes(attributes);
+    const { treatment } = evaluateFeatureFlag(feature.featureFlag, preparedAttributes);
     if (treatment === TreatmentEnum.True) {
       return { isEntitled: true };
     }
   }
 
-  return { isEntitled: false, justification: hasExpired ? NotEntitledJustification.BUNDLE_EXPIRED : NotEntitledJustification.MISSING_FEATURE };
+  return {
+    isEntitled: false,
+    justification: hasExpired ? NotEntitledJustification.BUNDLE_EXPIRED : NotEntitledJustification.MISSING_FEATURE,
+  };
 }
 
 export function evaluateIsEntitledToPermissions(
   permissionKey: string,
   userEntitlementsContext: UserEntitlementsContext,
-  attributes: CustomAttributes = {},
+  attributes?: Attributes,
 ): EntitlementResult {
-  const permission = userEntitlementsContext.permissions[permissionKey];
-
-  if (!permission) {
+  const hasPermission = checkPermission(userEntitlementsContext.permissions, permissionKey);
+  if (!hasPermission) {
     return { isEntitled: false, justification: NotEntitledJustification.MISSING_PERMISSION };
   }
 

package/src/user-entitlements/permissions.utils.ts

@@ -0,0 +1,10 @@
+import { Permissions } from './types';
+export function checkPermission(permissions: Permissions, requiredPermission: string): boolean {
+  return Object.keys(permissions).some((permissionKey) =>
+    createPermissionCheckRegex(permissionKey).test(requiredPermission),
+  );
+}
+
+export function createPermissionCheckRegex(permissionKey: string): RegExp {
+  return new RegExp('^' + permissionKey.replace(/\./g, '\\.').replace(/\*/g, '.*') + '$', 'gs');
+}

package/src/user-entitlements/tests/attributes.utils.spec.ts

@@ -0,0 +1,75 @@
+import * as AttributesUtils from '../attributes.utils';
+import { Attributes, FronteggAttributes, JwtAttributes } from '../types';
+describe('prepareAttributes', () => {
+  test('given custom & jwt attributes, expected is merged & flatten attributes record', () => {
+    const attributes: Attributes = {
+      custom: {
+        customAttribute: 'some-value',
+      },
+      jwt: {
+        userId: 'user-1',
+        tenantId: 'tenant-1',
+        email: 'test@email.com',
+        email_verified: true,
+        dummyAttribute: 'dummy',
+      },
+    };
+
+    const expectedPreparedAttributes = {
+      customAttribute: 'some-value',
+      'frontegg.userId': 'user-1',
+      'frontegg.tenantId': 'tenant-1',
+      'frontegg.email': 'test@email.com',
+      'frontegg.emailVerified': true,
+      'jwt.userId': 'user-1',
+      'jwt.tenantId': 'tenant-1',
+      'jwt.email': 'test@email.com',
+      'jwt.email_verified': true,
+      'jwt.dummyAttribute': 'dummy',
+    };
+
+    const preparedAttributes = AttributesUtils.prepareAttributes(attributes);
+
+    expect(preparedAttributes).toEqual(expectedPreparedAttributes);
+  });
+});
+
+describe('defaultFronteggAttributesMapper', () => {
+  test('given jwt-attributes, expected mapped frontegg-attributes', async () => {
+    const jwtAttributes: JwtAttributes = {
+      userId: 'user-1',
+      tenantId: 'tenant-1',
+      email: 'test@email.com',
+      email_verified: true,
+      dummyAttribute: 'dummy',
+    };
+
+    const expectedFronteggAttributes: FronteggAttributes = {
+      userId: 'user-1',
+      tenantId: 'tenant-1',
+      email: 'test@email.com',
+      emailVerified: true,
+    };
+
+    const mappedAttributes = AttributesUtils.defaultFronteggAttributesMapper(jwtAttributes);
+
+    expect(mappedAttributes).toEqual(expectedFronteggAttributes);
+  });
+});
+
+describe('modifyObjectKeysWithPrefix', () => {
+  test('given object and prefix, object keys should altered with prefix', async () => {
+    const prefix = 'test.';
+    const obj = {
+      property: 'value',
+    };
+
+    const expectedModifiedObject = {
+      'test.property': 'value',
+    };
+
+    const modifiedObject = AttributesUtils.modifyObjectKeysWithPrefix(obj, prefix);
+
+    expect(modifiedObject).toEqual(expectedModifiedObject);
+  });
+});

package/src/user-entitlements/tests/is-entitled.evaluator.spec.ts

@@ -1,8 +1,10 @@
-import * as FeatureFlags from '../../feature-flags/feature-flag.evaluator';
 import * as IsEntitledEvaluators from '../is-entitled.evaluator';
+import * as FeatureFlagEvalutor from '../../feature-flags/feature-flag.evaluator';
+import * as AttributesUtils from '../attributes.utils';
 import { TreatmentEnum } from '../../rules';
 import { EntitlementResult, NotEntitledJustification, NO_EXPIRATION_TIME, UserEntitlementsContext } from '../types';
 import { FeatureFlag } from '../../feature-flags/types';
+
 const mockFeatureFlag: FeatureFlag = {
   on: true,
   defaultTreatment: TreatmentEnum.True,
@@ -25,10 +27,13 @@ const falsyEntitlementResultMissingPermission: EntitlementResult = {
   justification: NotEntitledJustification.MISSING_PERMISSION,
 };
 describe('evaluateIsEntitledToFeature', () => {
+  beforeAll(() => {
+    jest.spyOn(AttributesUtils, 'prepareAttributes').mockReturnValue({ testAttribute: 'test-value' });
+  });
   describe('entitled', () => {
     describe('feature-flag evaluated truthy', () => {
       beforeAll(async () => {
-        jest.spyOn(FeatureFlags, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.True });
+        jest.spyOn(FeatureFlagEvalutor, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.True });
       });
 
       test('feature granted with valid expiration date', async () => {
@@ -94,7 +99,7 @@ describe('evaluateIsEntitledToFeature', () => {
     });
     describe('feature-flag evaluated falsy', () => {
       beforeAll(async () => {
-        jest.spyOn(FeatureFlags, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.False });
+        jest.spyOn(FeatureFlagEvalutor, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.False });
       });
       test('feature granted with no expiration date', async () => {
         const userEntitlementContext: UserEntitlementsContext = {
@@ -162,7 +167,7 @@ describe('evaluateIsEntitledToFeature', () => {
   describe('not entitled', () => {
     describe('feature-flag evaluated falsy', () => {
       beforeAll(async () => {
-        jest.spyOn(FeatureFlags, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.False });
+        jest.spyOn(FeatureFlagEvalutor, 'evaluateFeatureFlag').mockReturnValue({ treatment: TreatmentEnum.False });
       });
       test('feature has not been granted', async () => {
         const userEntitlementContext: UserEntitlementsContext = {
@@ -170,6 +175,7 @@ describe('evaluateIsEntitledToFeature', () => {
             'test-feature': {
               expireTime: null,
               linkedPermissions: [],
+              featureFlag: mockFeatureFlag,
             },
           },
           permissions: {},
@@ -184,6 +190,7 @@ describe('evaluateIsEntitledToFeature', () => {
             'test-feature': {
               expireTime: Date.now() - 3600,
               linkedPermissions: [],
+              featureFlag: mockFeatureFlag,
             },
           },
           permissions: {},

package/src/user-entitlements/tests/permissions.utils.spec.ts

@@ -0,0 +1,21 @@
+import { Permissions } from '../types';
+import { checkPermission } from '../permissions.utils';
+describe('checkPermission', () => {
+  test.each([[{ 'test.permission': true }], [{ 'test.*': true }], [{ '*': true }]])(
+    'expected truthy result',
+    (permissions) => {
+      const requiredPermission = 'test.permission';
+      const result = checkPermission(permissions as Permissions, requiredPermission);
+      expect(result).toBeTruthy();
+    },
+  );
+
+  test.each([[{}], [{ 'test.permission.read': true }], [{ 'test.permission.write.*': true }]])(
+    'expected falsy result',
+    (permissions) => {
+      const requiredPermission = 'test.permission';
+      const result = checkPermission(permissions as Permissions, requiredPermission);
+      expect(result).toBeFalsy();
+    },
+  );
+});

package/src/user-entitlements/types.ts

@@ -8,7 +8,7 @@ export type UserEntitlementsContext = {
       featureFlag?: FeatureFlag;
     }
   >;
-  permissions: Record<string, true>;
+  permissions: Permissions;
 };
 
 export type EntitlementResult = {
@@ -24,4 +24,13 @@ export enum NotEntitledJustification {
 
 export type CustomAttributes = Record<string, string | number | boolean | Date>;
 
+export type FronteggAttributes = {
+  tenantId?: string;
+  userId?: string;
+  email?: string;
+  emailVerified?: boolean;
+};
+export type Permissions = Record<string, true>;
+export type Attributes = { custom?: CustomAttributes; jwt?: JwtAttributes };
+export type JwtAttributes = Record<string, unknown>;
 export const NO_EXPIRATION_TIME = -1;