@heavybit/pendoadmin-shared-lib 1.0.0

package/dist/nestjs/auth.guard.js

@@ -0,0 +1,75 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable, UnauthorizedException, } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { verifyToken } from '../common/jwt.utils.js';
+import { GATEWAY_HEADERS } from '../types/index.js';
+export const IS_PUBLIC_KEY = 'isPublic';
+/**
+ * NestJS Guard: validates JWT or trusts gateway-injected headers.
+ */
+let AuthGuard = class AuthGuard {
+    reflector;
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    async canActivate(context) {
+        const isPublic = this.reflector.getAllAndOverride(IS_PUBLIC_KEY, [
+            context.getHandler(),
+            context.getClass(),
+        ]);
+        if (isPublic)
+            return true;
+        const request = context.switchToHttp().getRequest();
+        // Trust gateway-injected headers first
+        const gatewayUserId = request.headers[GATEWAY_HEADERS.USER_ID];
+        if (gatewayUserId) {
+            const permissions = request.headers[GATEWAY_HEADERS.USER_PERMISSIONS];
+            request.user = {
+                id: gatewayUserId,
+                companyId: request.headers[GATEWAY_HEADERS.COMPANY_ID] || undefined,
+                email: request.headers[GATEWAY_HEADERS.USER_EMAIL] || undefined,
+                roles: request.headers[GATEWAY_HEADERS.USER_ROLES]
+                    ? request.headers[GATEWAY_HEADERS.USER_ROLES].split(',')
+                    : [],
+                permissions: permissions ? permissions.split(',') : [],
+                isSuperAdmin: request.headers[GATEWAY_HEADERS.IS_SUPERADMIN] === 'true',
+            };
+            return true;
+        }
+        // Fallback to direct JWT validation
+        const authHeader = request.headers.authorization;
+        if (!authHeader?.startsWith('Bearer ')) {
+            throw new UnauthorizedException('Missing authentication token');
+        }
+        try {
+            const token = authHeader.slice(7);
+            const payload = verifyToken(token, process.env.JWT_SECRET);
+            request.user = {
+                id: payload.sub,
+                companyId: payload.companyId,
+                email: payload.email,
+                roles: payload.roles || [],
+                permissions: payload.permissions || [],
+                isSuperAdmin: payload.isSuperAdmin || false,
+            };
+            return true;
+        }
+        catch {
+            throw new UnauthorizedException('Invalid or expired token');
+        }
+    }
+};
+AuthGuard = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [Reflector])
+], AuthGuard);
+export { AuthGuard };
+//# sourceMappingURL=auth.guard.js.map

package/dist/nestjs/auth.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.guard.js","sourceRoot":"","sources":["../../src/nestjs/auth.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EACL,UAAU,EAGV,qBAAqB,GACtB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AACrD,OAAO,EAAE,eAAe,EAAkB,MAAM,mBAAmB,CAAC;AAEpE,MAAM,CAAC,MAAM,aAAa,GAAG,UAAU,CAAC;AAExC;;GAEG;AAEI,IAAM,SAAS,GAAf,MAAM,SAAS;IACA;IAApB,YAAoB,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IAAG,CAAC;IAE5C,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAU,aAAa,EAAE;YACxE,OAAO,CAAC,UAAU,EAAE;YACpB,OAAO,CAAC,QAAQ,EAAE;SACnB,CAAC,CAAC;QACH,IAAI,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE1B,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QAEpD,uCAAuC;QACvC,MAAM,aAAa,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,OAAO,CAAC,CAAC;QAC/D,IAAI,aAAa,EAAE,CAAC;YAClB,MAAM,WAAW,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,gBAAgB,CAAC,CAAC;YACtE,OAAO,CAAC,IAAI,GAAG;gBACb,EAAE,EAAE,aAAa;gBACjB,SAAS,EAAE,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,UAAU,CAAC,IAAI,SAAS;gBACnE,KAAK,EAAE,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,UAAU,CAAC,IAAI,SAAS;gBAC/D,KAAK,EAAE,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,UAAU,CAAC;oBAChD,CAAC,CAAE,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,UAAU,CAAY,CAAC,KAAK,CAAC,GAAG,CAAC;oBACpE,CAAC,CAAC,EAAE;gBACN,WAAW,EAAE,WAAW,CAAC,CAAC,CAAE,WAAsB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE;gBAClE,YAAY,EACV,OAAO,CAAC,OAAO,CAAC,eAAe,CAAC,aAAa,CAAC,KAAK,MAAM;aAC/C,CAAC;YACf,OAAO,IAAI,CAAC;QACd,CAAC;QAED,oCAAoC;QACpC,MAAM,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC;QACjD,IAAI,CAAC,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,qBAAqB,CAAC,8BAA8B,CAAC,CAAC;QAClE,CAAC;QAED,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAClC,MAAM,OAAO,GAAG,WAAW,CAAC,KAAK,EAAE,OAAO,CAAC,GAAG,CAAC,UAAW,CAAC,CAAC;YAC5D,OAAO,CAAC,IAAI,GAAG;gBACb,EAAE,EAAE,OAAO,CAAC,GAAG;gBACf,SAAS,EAAE,OAAO,CAAC,SAAS;gBAC5B,KAAK,EAAE,OAAO,CAAC,KAAK;gBACpB,KAAK,EAAE,OAAO,CAAC,KAAK,IAAI,EAAE;gBAC1B,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,EAAE;gBACtC,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,KAAK;aAC/B,CAAC;YACf,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,qBAAqB,CAAC,0BAA0B,CAAC,CAAC;QAC9D,CAAC;IACH,CAAC;CACF,CAAA;AApDY,SAAS;IADrB,UAAU,EAAE;qCAEoB,SAAS;GAD7B,SAAS,CAoDrB"}

package/dist/nestjs/correlation.interceptor.d.ts

@@ -0,0 +1,9 @@
+import { NestInterceptor, ExecutionContext, CallHandler } from '@nestjs/common';
+import { Observable } from 'rxjs';
+/**
+ * NestJS Interceptor: propagates or generates x-correlation-id header.
+ */
+export declare class CorrelationInterceptor implements NestInterceptor {
+    intercept(context: ExecutionContext, next: CallHandler): Observable<any>;
+}
+//# sourceMappingURL=correlation.interceptor.d.ts.map

package/dist/nestjs/correlation.interceptor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"correlation.interceptor.d.ts","sourceRoot":"","sources":["../../src/nestjs/correlation.interceptor.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,eAAe,EACf,gBAAgB,EAChB,WAAW,EACZ,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,UAAU,EAAO,MAAM,MAAM,CAAC;AAGvC;;GAEG;AACH,qBACa,sBAAuB,YAAW,eAAe;IAC5D,SAAS,CAAC,OAAO,EAAE,gBAAgB,EAAE,IAAI,EAAE,WAAW,GAAG,UAAU,CAAC,GAAG,CAAC;CAezE"}

package/dist/nestjs/correlation.interceptor.js

@@ -0,0 +1,29 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+import { Injectable, } from '@nestjs/common';
+import { tap } from 'rxjs';
+import { v4 as uuidv4 } from 'uuid';
+/**
+ * NestJS Interceptor: propagates or generates x-correlation-id header.
+ */
+let CorrelationInterceptor = class CorrelationInterceptor {
+    intercept(context, next) {
+        const request = context.switchToHttp().getRequest();
+        const response = context.switchToHttp().getResponse();
+        const correlationId = request.headers['x-correlation-id'] || uuidv4();
+        request.correlationId = correlationId;
+        response.setHeader('x-correlation-id', correlationId);
+        return next.handle().pipe(tap(() => {
+            // correlation id already set on response
+        }));
+    }
+};
+CorrelationInterceptor = __decorate([
+    Injectable()
+], CorrelationInterceptor);
+export { CorrelationInterceptor };
+//# sourceMappingURL=correlation.interceptor.js.map

package/dist/nestjs/correlation.interceptor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"correlation.interceptor.js","sourceRoot":"","sources":["../../src/nestjs/correlation.interceptor.ts"],"names":[],"mappings":";;;;;;AAAA,OAAO,EACL,UAAU,GAIX,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAc,GAAG,EAAE,MAAM,MAAM,CAAC;AACvC,OAAO,EAAE,EAAE,IAAI,MAAM,EAAE,MAAM,MAAM,CAAC;AAEpC;;GAEG;AAEI,IAAM,sBAAsB,GAA5B,MAAM,sBAAsB;IACjC,SAAS,CAAC,OAAyB,EAAE,IAAiB;QACpD,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QACpD,MAAM,QAAQ,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,WAAW,EAAE,CAAC;QAEtD,MAAM,aAAa,GACjB,OAAO,CAAC,OAAO,CAAC,kBAAkB,CAAC,IAAI,MAAM,EAAE,CAAC;QAClD,OAAO,CAAC,aAAa,GAAG,aAAa,CAAC;QACtC,QAAQ,CAAC,SAAS,CAAC,kBAAkB,EAAE,aAAa,CAAC,CAAC;QAEtD,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC,IAAI,CACvB,GAAG,CAAC,GAAG,EAAE;YACP,yCAAyC;QAC3C,CAAC,CAAC,CACH,CAAC;IACJ,CAAC;CACF,CAAA;AAhBY,sBAAsB;IADlC,UAAU,EAAE;GACA,sBAAsB,CAgBlC"}

package/dist/nestjs/exception.filter.d.ts

@@ -0,0 +1,8 @@
+import { ExceptionFilter, ArgumentsHost } from '@nestjs/common';
+/**
+ * NestJS Exception Filter: standardises error responses.
+ */
+export declare class GlobalExceptionFilter implements ExceptionFilter {
+    catch(exception: unknown, host: ArgumentsHost): void;
+}
+//# sourceMappingURL=exception.filter.d.ts.map

package/dist/nestjs/exception.filter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"exception.filter.d.ts","sourceRoot":"","sources":["../../src/nestjs/exception.filter.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,eAAe,EAEf,aAAa,EAGd,MAAM,gBAAgB,CAAC;AAKxB;;GAEG;AACH,qBACa,qBAAsB,YAAW,eAAe;IAC3D,KAAK,CAAC,SAAS,EAAE,OAAO,EAAE,IAAI,EAAE,aAAa;CAoC9C"}

package/dist/nestjs/exception.filter.js

@@ -0,0 +1,54 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+import { Catch, HttpException, HttpStatus, } from '@nestjs/common';
+import { createLogger } from '../logging/index.js';
+const logger = createLogger('exception-filter');
+/**
+ * NestJS Exception Filter: standardises error responses.
+ */
+let GlobalExceptionFilter = class GlobalExceptionFilter {
+    catch(exception, host) {
+        const ctx = host.switchToHttp();
+        const response = ctx.getResponse();
+        const request = ctx.getRequest();
+        let status = HttpStatus.INTERNAL_SERVER_ERROR;
+        let message = 'Internal server error';
+        let errors = undefined;
+        if (exception instanceof HttpException) {
+            status = exception.getStatus();
+            const exResponse = exception.getResponse();
+            if (typeof exResponse === 'string') {
+                message = exResponse;
+            }
+            else if (typeof exResponse === 'object') {
+                message = exResponse.message || message;
+                errors = exResponse.errors;
+            }
+        }
+        else if (exception instanceof Error) {
+            message = exception.message;
+            logger.error('Unhandled exception', {
+                error: exception.message,
+                stack: exception.stack,
+                path: request.url,
+            });
+        }
+        response.status(status).json({
+            success: false,
+            message,
+            ...(errors ? { errors } : {}),
+            statusCode: status,
+            timestamp: new Date().toISOString(),
+            path: request.url,
+        });
+    }
+};
+GlobalExceptionFilter = __decorate([
+    Catch()
+], GlobalExceptionFilter);
+export { GlobalExceptionFilter };
+//# sourceMappingURL=exception.filter.js.map

package/dist/nestjs/exception.filter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exception.filter.js","sourceRoot":"","sources":["../../src/nestjs/exception.filter.ts"],"names":[],"mappings":";;;;;;AAAA,OAAO,EAEL,KAAK,EAEL,aAAa,EACb,UAAU,GACX,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,MAAM,MAAM,GAAG,YAAY,CAAC,kBAAkB,CAAC,CAAC;AAEhD;;GAEG;AAEI,IAAM,qBAAqB,GAA3B,MAAM,qBAAqB;IAChC,KAAK,CAAC,SAAkB,EAAE,IAAmB;QAC3C,MAAM,GAAG,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QAChC,MAAM,QAAQ,GAAG,GAAG,CAAC,WAAW,EAAE,CAAC;QACnC,MAAM,OAAO,GAAG,GAAG,CAAC,UAAU,EAAE,CAAC;QAEjC,IAAI,MAAM,GAAG,UAAU,CAAC,qBAAqB,CAAC;QAC9C,IAAI,OAAO,GAAG,uBAAuB,CAAC;QACtC,IAAI,MAAM,GAAQ,SAAS,CAAC;QAE5B,IAAI,SAAS,YAAY,aAAa,EAAE,CAAC;YACvC,MAAM,GAAG,SAAS,CAAC,SAAS,EAAE,CAAC;YAC/B,MAAM,UAAU,GAAG,SAAS,CAAC,WAAW,EAAE,CAAC;YAC3C,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;gBACnC,OAAO,GAAG,UAAU,CAAC;YACvB,CAAC;iBAAM,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;gBAC1C,OAAO,GAAI,UAAkB,CAAC,OAAO,IAAI,OAAO,CAAC;gBACjD,MAAM,GAAI,UAAkB,CAAC,MAAM,CAAC;YACtC,CAAC;QACH,CAAC;aAAM,IAAI,SAAS,YAAY,KAAK,EAAE,CAAC;YACtC,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC;YAC5B,MAAM,CAAC,KAAK,CAAC,qBAAqB,EAAE;gBAClC,KAAK,EAAE,SAAS,CAAC,OAAO;gBACxB,KAAK,EAAE,SAAS,CAAC,KAAK;gBACtB,IAAI,EAAE,OAAO,CAAC,GAAG;aAClB,CAAC,CAAC;QACL,CAAC;QAED,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC;YAC3B,OAAO,EAAE,KAAK;YACd,OAAO;YACP,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC7B,UAAU,EAAE,MAAM;YAClB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,IAAI,EAAE,OAAO,CAAC,GAAG;SAClB,CAAC,CAAC;IACL,CAAC;CACF,CAAA;AArCY,qBAAqB;IADjC,KAAK,EAAE;GACK,qBAAqB,CAqCjC"}

package/dist/nestjs/index.d.ts

@@ -0,0 +1,7 @@
+export { AuthGuard } from './auth.guard.js';
+export { RequirePermission, RequireAllPermissions, RequireRole, Public, } from './permission.decorator.js';
+export { PermissionGuard } from './permission.guard.js';
+export { CurrentUser } from './user.decorator.js';
+export { CorrelationInterceptor } from './correlation.interceptor.js';
+export { GlobalExceptionFilter } from './exception.filter.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/nestjs/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/nestjs/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EACL,iBAAiB,EACjB,qBAAqB,EACrB,WAAW,EACX,MAAM,GACP,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC"}

package/dist/nestjs/index.js

@@ -0,0 +1,7 @@
+export { AuthGuard } from './auth.guard.js';
+export { RequirePermission, RequireAllPermissions, RequireRole, Public, } from './permission.decorator.js';
+export { PermissionGuard } from './permission.guard.js';
+export { CurrentUser } from './user.decorator.js';
+export { CorrelationInterceptor } from './correlation.interceptor.js';
+export { GlobalExceptionFilter } from './exception.filter.js';
+//# sourceMappingURL=index.js.map

package/dist/nestjs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/nestjs/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EACL,iBAAiB,EACjB,qBAAqB,EACrB,WAAW,EACX,MAAM,GACP,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AACxD,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAClD,OAAO,EAAE,sBAAsB,EAAE,MAAM,8BAA8B,CAAC;AACtE,OAAO,EAAE,qBAAqB,EAAE,MAAM,uBAAuB,CAAC"}

package/dist/nestjs/permission.decorator.d.ts

@@ -0,0 +1,22 @@
+export declare const PERMISSIONS_KEY = "permissions";
+export declare const REQUIRE_ALL_KEY = "requireAll";
+export declare const ROLES_KEY = "roles";
+/**
+ * Decorator: require at least one of the listed permissions.
+ * @example @RequirePermission('sms.messages:read', 'sms.messages:list')
+ */
+export declare const RequirePermission: (...permissions: string[]) => import("@nestjs/common").CustomDecorator<string>;
+/**
+ * Decorator: require ALL of the listed permissions.
+ */
+export declare const RequireAllPermissions: (...permissions: string[]) => (target: any, key?: string | symbol, descriptor?: any) => any;
+/**
+ * Decorator: require at least one of the listed roles.
+ * @example @RequireRole('admin', 'manager')
+ */
+export declare const RequireRole: (...roles: string[]) => import("@nestjs/common").CustomDecorator<string>;
+/**
+ * Decorator: mark route as public (skip auth guard).
+ */
+export declare const Public: () => import("@nestjs/common").CustomDecorator<string>;
+//# sourceMappingURL=permission.decorator.d.ts.map

package/dist/nestjs/permission.decorator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.decorator.d.ts","sourceRoot":"","sources":["../../src/nestjs/permission.decorator.ts"],"names":[],"mappings":"AAGA,eAAO,MAAM,eAAe,gBAAgB,CAAC;AAC7C,eAAO,MAAM,eAAe,eAAe,CAAC;AAC5C,eAAO,MAAM,SAAS,UAAU,CAAC;AAEjC;;;GAGG;AACH,eAAO,MAAM,iBAAiB,GAAI,GAAG,aAAa,MAAM,EAAE,qDACf,CAAC;AAE5C;;GAEG;AACH,eAAO,MAAM,qBAAqB,GAAI,GAAG,aAAa,MAAM,EAAE,MACpD,QAAQ,GAAG,EAAE,MAAM,MAAM,GAAG,MAAM,EAAE,aAAa,GAAG,QAK7D,CAAC;AAEF;;;GAGG;AACH,eAAO,MAAM,WAAW,GAAI,GAAG,OAAO,MAAM,EAAE,qDACf,CAAC;AAEhC;;GAEG;AACH,eAAO,MAAM,MAAM,wDAAyC,CAAC"}

package/dist/nestjs/permission.decorator.js

@@ -0,0 +1,30 @@
+import { SetMetadata } from '@nestjs/common';
+import { IS_PUBLIC_KEY } from './auth.guard.js';
+export const PERMISSIONS_KEY = 'permissions';
+export const REQUIRE_ALL_KEY = 'requireAll';
+export const ROLES_KEY = 'roles';
+/**
+ * Decorator: require at least one of the listed permissions.
+ * @example @RequirePermission('sms.messages:read', 'sms.messages:list')
+ */
+export const RequirePermission = (...permissions) => SetMetadata(PERMISSIONS_KEY, permissions);
+/**
+ * Decorator: require ALL of the listed permissions.
+ */
+export const RequireAllPermissions = (...permissions) => {
+    return (target, key, descriptor) => {
+        SetMetadata(PERMISSIONS_KEY, permissions)(target, key, descriptor);
+        SetMetadata(REQUIRE_ALL_KEY, true)(target, key, descriptor);
+        return descriptor;
+    };
+};
+/**
+ * Decorator: require at least one of the listed roles.
+ * @example @RequireRole('admin', 'manager')
+ */
+export const RequireRole = (...roles) => SetMetadata(ROLES_KEY, roles);
+/**
+ * Decorator: mark route as public (skip auth guard).
+ */
+export const Public = () => SetMetadata(IS_PUBLIC_KEY, true);
+//# sourceMappingURL=permission.decorator.js.map

package/dist/nestjs/permission.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.decorator.js","sourceRoot":"","sources":["../../src/nestjs/permission.decorator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAEhD,MAAM,CAAC,MAAM,eAAe,GAAG,aAAa,CAAC;AAC7C,MAAM,CAAC,MAAM,eAAe,GAAG,YAAY,CAAC;AAC5C,MAAM,CAAC,MAAM,SAAS,GAAG,OAAO,CAAC;AAEjC;;;GAGG;AACH,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,GAAG,WAAqB,EAAE,EAAE,CAC5D,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,CAAC;AAE5C;;GAEG;AACH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,GAAG,WAAqB,EAAE,EAAE;IAChE,OAAO,CAAC,MAAW,EAAE,GAAqB,EAAE,UAAgB,EAAE,EAAE;QAC9D,WAAW,CAAC,eAAe,EAAE,WAAW,CAAC,CAAC,MAAM,EAAE,GAAI,EAAE,UAAU,CAAC,CAAC;QACpE,WAAW,CAAC,eAAe,EAAE,IAAI,CAAC,CAAC,MAAM,EAAE,GAAI,EAAE,UAAU,CAAC,CAAC;QAC7D,OAAO,UAAU,CAAC;IACpB,CAAC,CAAC;AACJ,CAAC,CAAC;AAEF;;;GAGG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,GAAG,KAAe,EAAE,EAAE,CAChD,WAAW,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;AAEhC;;GAEG;AACH,MAAM,CAAC,MAAM,MAAM,GAAG,GAAG,EAAE,CAAC,WAAW,CAAC,aAAa,EAAE,IAAI,CAAC,CAAC"}

package/dist/nestjs/permission.guard.d.ts

@@ -0,0 +1,12 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+/**
+ * NestJS Guard: checks permissions/roles from decorators.
+ * Must be used after AuthGuard so that request.user is populated.
+ */
+export declare class PermissionGuard implements CanActivate {
+    private reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+}
+//# sourceMappingURL=permission.guard.d.ts.map

package/dist/nestjs/permission.guard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.guard.d.ts","sourceRoot":"","sources":["../../src/nestjs/permission.guard.ts"],"names":[],"mappings":"AAAA,OAAO,EAEL,WAAW,EACX,gBAAgB,EAEjB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AASzC;;;GAGG;AACH,qBACa,eAAgB,YAAW,WAAW;IACrC,OAAO,CAAC,SAAS;gBAAT,SAAS,EAAE,SAAS;IAExC,WAAW,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO;CAoDhD"}

package/dist/nestjs/permission.guard.js

@@ -0,0 +1,66 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+import { Injectable, ForbiddenException, } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { PERMISSIONS_KEY, REQUIRE_ALL_KEY, ROLES_KEY, } from './permission.decorator.js';
+import { IS_PUBLIC_KEY } from './auth.guard.js';
+/**
+ * NestJS Guard: checks permissions/roles from decorators.
+ * Must be used after AuthGuard so that request.user is populated.
+ */
+let PermissionGuard = class PermissionGuard {
+    reflector;
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        // Skip permission check for public routes
+        const isPublic = this.reflector.getAllAndOverride(IS_PUBLIC_KEY, [
+            context.getHandler(),
+            context.getClass(),
+        ]);
+        if (isPublic)
+            return true;
+        const request = context.switchToHttp().getRequest();
+        const user = request.user;
+        if (!user) {
+            throw new ForbiddenException('User context not found');
+        }
+        // Super admins bypass all permission checks
+        if (user.isSuperAdmin)
+            return true;
+        // Check roles
+        const requiredRoles = this.reflector.getAllAndOverride(ROLES_KEY, [context.getHandler(), context.getClass()]);
+        if (requiredRoles?.length) {
+            const hasRole = requiredRoles.some((role) => user.roles.includes(role));
+            if (!hasRole) {
+                throw new ForbiddenException('Insufficient role');
+            }
+        }
+        // Check permissions
+        const requiredPermissions = this.reflector.getAllAndOverride(PERMISSIONS_KEY, [context.getHandler(), context.getClass()]);
+        if (!requiredPermissions?.length)
+            return true;
+        const requireAll = this.reflector.getAllAndOverride(REQUIRE_ALL_KEY, [context.getHandler(), context.getClass()]);
+        const hasPermission = requireAll
+            ? requiredPermissions.every((p) => user.permissions.includes(p))
+            : requiredPermissions.some((p) => user.permissions.includes(p));
+        if (!hasPermission) {
+            throw new ForbiddenException('Insufficient permissions');
+        }
+        return true;
+    }
+};
+PermissionGuard = __decorate([
+    Injectable(),
+    __metadata("design:paramtypes", [Reflector])
+], PermissionGuard);
+export { PermissionGuard };
+//# sourceMappingURL=permission.guard.js.map

package/dist/nestjs/permission.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.guard.js","sourceRoot":"","sources":["../../src/nestjs/permission.guard.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EACL,UAAU,EAGV,kBAAkB,GACnB,MAAM,gBAAgB,CAAC;AACxB,OAAO,EAAE,SAAS,EAAE,MAAM,cAAc,CAAC;AACzC,OAAO,EACL,eAAe,EACf,eAAe,EACf,SAAS,GACV,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAGhD;;;GAGG;AAEI,IAAM,eAAe,GAArB,MAAM,eAAe;IACN;IAApB,YAAoB,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IAAG,CAAC;IAE5C,WAAW,CAAC,OAAyB;QACnC,0CAA0C;QAC1C,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAU,aAAa,EAAE;YACxE,OAAO,CAAC,UAAU,EAAE;YACpB,OAAO,CAAC,QAAQ,EAAE;SACnB,CAAC,CAAC;QACH,IAAI,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE1B,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QACpD,MAAM,IAAI,GAA0B,OAAO,CAAC,IAAI,CAAC;QAEjD,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,MAAM,IAAI,kBAAkB,CAAC,wBAAwB,CAAC,CAAC;QACzD,CAAC;QAED,4CAA4C;QAC5C,IAAI,IAAI,CAAC,YAAY;YAAE,OAAO,IAAI,CAAC;QAEnC,cAAc;QACd,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CACpD,SAAS,EACT,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAC3C,CAAC;QACF,IAAI,aAAa,EAAE,MAAM,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC,IAAY,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC;YAChF,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,MAAM,IAAI,kBAAkB,CAAC,mBAAmB,CAAC,CAAC;YACpD,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,MAAM,mBAAmB,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAC1D,eAAe,EACf,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAC3C,CAAC;QACF,IAAI,CAAC,mBAAmB,EAAE,MAAM;YAAE,OAAO,IAAI,CAAC;QAE9C,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CACjD,eAAe,EACf,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAC3C,CAAC;QAEF,MAAM,aAAa,GAAG,UAAU;YAC9B,CAAC,CAAC,mBAAmB,CAAC,KAAK,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;YACxE,CAAC,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1E,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,MAAM,IAAI,kBAAkB,CAAC,0BAA0B,CAAC,CAAC;QAC3D,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF,CAAA;AAvDY,eAAe;IAD3B,UAAU,EAAE;qCAEoB,SAAS;GAD7B,eAAe,CAuD3B"}

package/dist/nestjs/user.decorator.d.ts

@@ -0,0 +1,12 @@
+import type { IAuthUser } from '../types/index.js';
+/**
+ * Decorator: extract the authenticated user from the request.
+ * @example
+ *   @Get('profile')
+ *   getProfile(@CurrentUser() user: IAuthUser) { ... }
+ *
+ *   @Get('id')
+ *   getId(@CurrentUser('id') userId: string) { ... }
+ */
+export declare const CurrentUser: (...dataOrPipes: (keyof IAuthUser | import("@nestjs/common").PipeTransform<any, any> | import("@nestjs/common").Type<import("@nestjs/common").PipeTransform<any, any>> | undefined)[]) => ParameterDecorator;
+//# sourceMappingURL=user.decorator.d.ts.map

package/dist/nestjs/user.decorator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.decorator.d.ts","sourceRoot":"","sources":["../../src/nestjs/user.decorator.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,mBAAmB,CAAC;AAEnD;;;;;;;;GAQG;AACH,eAAO,MAAM,WAAW,8MAMvB,CAAC"}

package/dist/nestjs/user.decorator.js

@@ -0,0 +1,16 @@
+import { createParamDecorator } from '@nestjs/common';
+/**
+ * Decorator: extract the authenticated user from the request.
+ * @example
+ *   @Get('profile')
+ *   getProfile(@CurrentUser() user: IAuthUser) { ... }
+ *
+ *   @Get('id')
+ *   getId(@CurrentUser('id') userId: string) { ... }
+ */
+export const CurrentUser = createParamDecorator((data, ctx) => {
+    const request = ctx.switchToHttp().getRequest();
+    const user = request.user;
+    return data ? user?.[data] : user;
+});
+//# sourceMappingURL=user.decorator.js.map

package/dist/nestjs/user.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user.decorator.js","sourceRoot":"","sources":["../../src/nestjs/user.decorator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAoB,MAAM,gBAAgB,CAAC;AAGxE;;;;;;;;GAQG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG,oBAAoB,CAC7C,CAAC,IAAiC,EAAE,GAAqB,EAAE,EAAE;IAC3D,MAAM,OAAO,GAAG,GAAG,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;IAChD,MAAM,IAAI,GAAc,OAAO,CAAC,IAAI,CAAC;IACrC,OAAO,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AACpC,CAAC,CACF,CAAC"}

package/dist/types/index.d.ts

@@ -0,0 +1,193 @@
+export interface IUser {
+    id: string;
+    email: string;
+    first_name: string;
+    last_name: string;
+    phone?: string | null;
+    password_hash: string;
+    company_id: string;
+    is_superadmin: boolean;
+    is_active: boolean;
+    email_verified: boolean;
+    failed_login_attempts: number;
+    locked_until: Date | null;
+    change_password_next_login: boolean;
+    last_login_at: Date | null;
+    created_at: Date;
+    updated_at: Date;
+}
+export interface IUserCreate {
+    email: string;
+    first_name: string;
+    last_name: string;
+    phone?: string;
+    password_hash: string;
+    company_id: string;
+    is_superadmin?: boolean;
+}
+export interface IUserUpdate {
+    email?: string;
+    first_name?: string;
+    last_name?: string;
+    phone?: string;
+    password_hash?: string;
+    company_id?: string;
+    is_active?: boolean;
+    email_verified?: boolean;
+    failed_login_attempts?: number;
+    locked_until?: Date | null;
+    change_password_next_login?: boolean;
+    last_login_at?: Date | null;
+}
+export interface IJwtPayload {
+    sub: string;
+    email: string;
+    companyId: string;
+    roles: string[];
+    permissions: string[];
+    isSuperAdmin: boolean;
+    iat?: number;
+    exp?: number;
+    iss?: string;
+}
+export interface ITokenPair {
+    accessToken: string;
+    refreshToken: string;
+    expiresIn: number;
+}
+export interface IAuthUser {
+    id: string;
+    email: string;
+    companyId: string;
+    roles: string[];
+    permissions: string[];
+    isSuperAdmin: boolean;
+}
+export interface ICompany {
+    id: string;
+    name: string;
+    short_name?: string | null;
+    company_type?: string | null;
+    email?: string | null;
+    phone?: string | null;
+    address?: string | null;
+    city?: string | null;
+    country?: string | null;
+    logo_url?: string | null;
+    website?: string | null;
+    is_active: boolean;
+    created_at: Date;
+    updated_at: Date;
+}
+export interface ICompanyCreate {
+    name: string;
+    short_name?: string;
+    company_type?: string;
+    email?: string;
+    phone?: string;
+    address?: string;
+    city?: string;
+    country?: string;
+}
+export interface ICompanyUpdate {
+    name?: string;
+    short_name?: string;
+    company_type?: string;
+    email?: string;
+    phone?: string;
+    address?: string;
+    city?: string;
+    country?: string;
+    logo_url?: string;
+    website?: string;
+    is_active?: boolean;
+}
+export interface ICompanyBranch {
+    id: string;
+    company_id: string;
+    name: string;
+    code?: string | null;
+    address?: string | null;
+    city?: string | null;
+    phone?: string | null;
+    email?: string | null;
+    is_active: boolean;
+    created_at: Date;
+    updated_at: Date;
+}
+export interface ICompanyServiceConfig {
+    id: string;
+    company_id: string;
+    service_name: string;
+    config: Record<string, unknown>;
+    is_active: boolean;
+    created_at: Date;
+    updated_at: Date;
+}
+export interface IRole {
+    id: string;
+    name: string;
+    slug: string;
+    description?: string | null;
+    company_id?: string | null;
+    is_system_role: boolean;
+    is_editable: boolean;
+    created_at: Date;
+    updated_at: Date;
+}
+export interface IPermission {
+    id: string;
+    name: string;
+    description?: string | null;
+    category: string;
+    is_active: boolean;
+    created_at: Date;
+}
+export interface IApiResponse<T = unknown> {
+    success: boolean;
+    message: string;
+    data?: T;
+    errors?: Record<string, string[]>;
+    meta?: IPaginationMeta;
+}
+export interface IPaginationMeta {
+    page: number;
+    limit: number;
+    total: number;
+    totalPages: number;
+    hasNext: boolean;
+    hasPrev: boolean;
+}
+export interface IPaginationParams {
+    page: number;
+    limit: number;
+    search?: string;
+    sortBy?: string;
+    sortOrder?: 'asc' | 'desc';
+}
+export interface IPaginatedResult<T> {
+    data: T[];
+    meta: IPaginationMeta;
+}
+export interface IAnalyticsEvent {
+    event_type: string;
+    event_data: Record<string, unknown>;
+    company_id?: string;
+    timestamp?: Date;
+}
+export interface IServiceConfig {
+    serviceName: string;
+    serviceUrl: string;
+    healthEndpoint: string;
+}
+export declare const GATEWAY_HEADERS: {
+    readonly USER_ID: "x-user-id";
+    readonly COMPANY_ID: "x-company-id";
+    readonly USER_EMAIL: "x-user-email";
+    readonly USER_ROLES: "x-user-roles";
+    readonly USER_PERMISSIONS: "x-user-permissions";
+    readonly IS_SUPERADMIN: "x-is-superadmin";
+    readonly CORRELATION_ID: "x-correlation-id";
+    readonly SERVICE_NAME: "x-service-name";
+};
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,KAAK;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,OAAO,CAAC;IACvB,SAAS,EAAE,OAAO,CAAC;IACnB,cAAc,EAAE,OAAO,CAAC;IACxB,qBAAqB,EAAE,MAAM,CAAC;IAC9B,YAAY,EAAE,IAAI,GAAG,IAAI,CAAC;IAC1B,0BAA0B,EAAE,OAAO,CAAC;IACpC,aAAa,EAAE,IAAI,GAAG,IAAI,CAAC;IAC3B,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,CAAC,EAAE,OAAO,CAAC;CACzB;AAED,MAAM,WAAW,WAAW;IAC1B,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,OAAO,CAAC;IACpB,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,YAAY,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;IAC3B,0BAA0B,CAAC,EAAE,OAAO,CAAC;IACrC,aAAa,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;CAC7B;AAED,MAAM,WAAW,WAAW;IAC1B,GAAG,EAAE,MAAM,CAAC;IACZ,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,YAAY,EAAE,OAAO,CAAC;IACtB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,UAAU;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,CAAC;IAClB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,WAAW,EAAE,MAAM,EAAE,CAAC;IACtB,YAAY,EAAE,OAAO,CAAC;CACvB;AAMD,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC7B,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACzB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,SAAS,EAAE,OAAO,CAAC;IACnB,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB;AAED,MAAM,WAAW,cAAc;IAC7B,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,OAAO,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACrB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,KAAK,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IACtB,SAAS,EAAE,OAAO,CAAC;IACnB,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;CAClB;AAED,MAAM,WAAW,qBAAqB;IACpC,EAAE,EAAE,MAAM,CAAC;IACX,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAChC,SAAS,EAAE,OAAO,CAAC;IACnB,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;CAClB;AAMD,MAAM,WAAW,KAAK;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,UAAU,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,cAAc,EAAE,OAAO,CAAC;IACxB,WAAW,EAAE,OAAO,CAAC;IACrB,UAAU,EAAE,IAAI,CAAC;IACjB,UAAU,EAAE,IAAI,CAAC;CAClB;AAED,MAAM,WAAW,WAAW;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,EAAE,MAAM,CAAC;IACjB,SAAS,EAAE,OAAO,CAAC;IACnB,UAAU,EAAE,IAAI,CAAC;CAClB;AAMD,MAAM,WAAW,YAAY,CAAC,CAAC,GAAG,OAAO;IACvC,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,CAAC,CAAC;IACT,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IAClC,IAAI,CAAC,EAAE,eAAe,CAAC;CACxB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,iBAAiB;IAChC,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,SAAS,CAAC,EAAE,KAAK,GAAG,MAAM,CAAC;CAC5B;AAED,MAAM,WAAW,gBAAgB,CAAC,CAAC;IACjC,IAAI,EAAE,CAAC,EAAE,CAAC;IACV,IAAI,EAAE,eAAe,CAAC;CACvB;AAMD,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE,IAAI,CAAC;CAClB;AAMD,MAAM,WAAW,cAAc;IAC7B,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,cAAc,EAAE,MAAM,CAAC;CACxB;AAMD,eAAO,MAAM,eAAe;;;;;;;;;CASlB,CAAC"}

package/dist/types/index.js

@@ -0,0 +1,17 @@
+// ──────────────────────────────────────────────
+// User & Auth Types
+// ──────────────────────────────────────────────
+// ──────────────────────────────────────────────
+// Gateway Header Types
+// ──────────────────────────────────────────────
+export const GATEWAY_HEADERS = {
+    USER_ID: 'x-user-id',
+    COMPANY_ID: 'x-company-id',
+    USER_EMAIL: 'x-user-email',
+    USER_ROLES: 'x-user-roles',
+    USER_PERMISSIONS: 'x-user-permissions',
+    IS_SUPERADMIN: 'x-is-superadmin',
+    CORRELATION_ID: 'x-correlation-id',
+    SERVICE_NAME: 'x-service-name',
+};
+//# sourceMappingURL=index.js.map