npm - @illustrisinteractive/sentinel-nest - Versions diffs - 0.0.1 - Mend

@illustrisinteractive/sentinel-nest 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (167) hide show

package/.prettierrc +4 -0
package/README.md +98 -0
package/config/config.json +24 -0
package/dist/bin/commit.d.ts +1 -0
package/dist/bin/commit.js +136 -0
package/dist/bin/commit.js.map +1 -0
package/dist/bin/init.d.ts +2 -0
package/dist/bin/init.js +179 -0
package/dist/bin/init.js.map +1 -0
package/dist/bin/migrations/1-create-permission.d.ts +6 -0
package/dist/bin/migrations/1-create-permission.js +30 -0
package/dist/bin/migrations/1-create-permission.js.map +1 -0
package/dist/bin/migrations/2-create-role.d.ts +2 -0
package/dist/bin/migrations/2-create-role.js +29 -0
package/dist/bin/migrations/2-create-role.js.map +1 -0
package/dist/bin/migrations/3-create-rolepermissions.d.ts +2 -0
package/dist/bin/migrations/3-create-rolepermissions.js +46 -0
package/dist/bin/migrations/3-create-rolepermissions.js.map +1 -0
package/dist/bin/migrations/4-create-model-roles.d.ts +2 -0
package/dist/bin/migrations/4-create-model-roles.js +46 -0
package/dist/bin/migrations/4-create-model-roles.js.map +1 -0
package/dist/bin/resource.d.ts +1 -0
package/dist/bin/resource.js +91 -0
package/dist/bin/resource.js.map +1 -0
package/dist/bin/sentinel.d.ts +2 -0
package/dist/bin/sentinel.js +52 -0
package/dist/bin/sentinel.js.map +1 -0
package/dist/models/SecuredResource.d.ts +8 -0
package/dist/models/SecuredResource.js +9 -0
package/dist/models/SecuredResource.js.map +1 -0
package/dist/models/SentinelConfig.d.ts +7 -0
package/dist/models/SentinelConfig.js +3 -0
package/dist/models/SentinelConfig.js.map +1 -0
package/dist/models/sequelize/PermissionKey.d.ts +7 -0
package/dist/models/sequelize/PermissionKey.js +39 -0
package/dist/models/sequelize/PermissionKey.js.map +1 -0
package/dist/prisma.config.d.ts +3 -0
package/dist/prisma.config.js +14 -0
package/dist/prisma.config.js.map +1 -0
package/dist/src/can.decorator.d.ts +2 -0
package/dist/src/can.decorator.js +6 -0
package/dist/src/can.decorator.js.map +1 -0
package/dist/src/generated/prisma/browser.d.ts +10 -0
package/dist/src/generated/prisma/browser.js +44 -0
package/dist/src/generated/prisma/browser.js.map +1 -0
package/dist/src/generated/prisma/client.d.ts +14 -0
package/dist/src/generated/prisma/client.js +46 -0
package/dist/src/generated/prisma/client.js.map +1 -0
package/dist/src/generated/prisma/commonInputTypes.d.ts +263 -0
package/dist/src/generated/prisma/commonInputTypes.js +3 -0
package/dist/src/generated/prisma/commonInputTypes.js.map +1 -0
package/dist/src/generated/prisma/enums.d.ts +1 -0
package/dist/src/generated/prisma/enums.js +3 -0
package/dist/src/generated/prisma/enums.js.map +1 -0
package/dist/src/generated/prisma/internal/class.d.ts +50 -0
package/dist/src/generated/prisma/internal/class.js +75 -0
package/dist/src/generated/prisma/internal/class.js.map +1 -0
package/dist/src/generated/prisma/internal/prismaNamespace.d.ts +778 -0
package/dist/src/generated/prisma/internal/prismaNamespace.js +128 -0
package/dist/src/generated/prisma/internal/prismaNamespace.js.map +1 -0
package/dist/src/generated/prisma/internal/prismaNamespaceBrowser.d.ts +88 -0
package/dist/src/generated/prisma/internal/prismaNamespaceBrowser.js +112 -0
package/dist/src/generated/prisma/internal/prismaNamespaceBrowser.js.map +1 -0
package/dist/src/generated/prisma/models/ModelHasRoles.d.ts +691 -0
package/dist/src/generated/prisma/models/ModelHasRoles.js +3 -0
package/dist/src/generated/prisma/models/ModelHasRoles.js.map +1 -0
package/dist/src/generated/prisma/models/PermissionKeys.d.ts +547 -0
package/dist/src/generated/prisma/models/PermissionKeys.js +3 -0
package/dist/src/generated/prisma/models/PermissionKeys.js.map +1 -0
package/dist/src/generated/prisma/models/RoleHasPermissions.d.ts +675 -0
package/dist/src/generated/prisma/models/RoleHasPermissions.js +3 -0
package/dist/src/generated/prisma/models/RoleHasPermissions.js.map +1 -0
package/dist/src/generated/prisma/models/Roles.d.ts +582 -0
package/dist/src/generated/prisma/models/Roles.js +3 -0
package/dist/src/generated/prisma/models/Roles.js.map +1 -0
package/dist/src/generated/prisma/models/SequelizeMeta.d.ts +289 -0
package/dist/src/generated/prisma/models/SequelizeMeta.js +3 -0
package/dist/src/generated/prisma/models/SequelizeMeta.js.map +1 -0
package/dist/src/generated/prisma/models/Users.d.ts +572 -0
package/dist/src/generated/prisma/models/Users.js +3 -0
package/dist/src/generated/prisma/models/Users.js.map +1 -0
package/dist/src/generated/prisma/models.d.ts +7 -0
package/dist/src/generated/prisma/models.js +3 -0
package/dist/src/generated/prisma/models.js.map +1 -0
package/dist/src/main.d.ts +6 -0
package/dist/src/main.js +23 -0
package/dist/src/main.js.map +1 -0
package/dist/src/models/SecuredResource.d.ts +8 -0
package/dist/src/models/SecuredResource.js +9 -0
package/dist/src/models/SecuredResource.js.map +1 -0
package/dist/src/models/SentinelConfig.d.ts +7 -0
package/dist/src/models/SentinelConfig.js +3 -0
package/dist/src/models/SentinelConfig.js.map +1 -0
package/dist/src/models/SentinelModel.d.ts +35 -0
package/dist/src/models/SentinelModel.js +3 -0
package/dist/src/models/SentinelModel.js.map +1 -0
package/dist/src/models/SentinelModuleOptions.d.ts +7 -0
package/dist/src/models/SentinelModuleOptions.js +3 -0
package/dist/src/models/SentinelModuleOptions.js.map +1 -0
package/dist/src/prisma.service.d.ts +4 -0
package/dist/src/prisma.service.js +29 -0
package/dist/src/prisma.service.js.map +1 -0
package/dist/src/sentinel.guard.d.ts +9 -0
package/dist/src/sentinel.guard.js +73 -0
package/dist/src/sentinel.guard.js.map +1 -0
package/dist/src/sentinel.module-definition.d.ts +2 -0
package/dist/src/sentinel.module-definition.js +7 -0
package/dist/src/sentinel.module-definition.js.map +1 -0
package/dist/src/sentinel.module.d.ts +3 -0
package/dist/src/sentinel.module.js +40 -0
package/dist/src/sentinel.module.js.map +1 -0
package/dist/src/sentinel.service.d.ts +39 -0
package/dist/src/sentinel.service.js +146 -0
package/dist/src/sentinel.service.js.map +1 -0
package/dist/tsconfig.build.tsbuildinfo +1 -0
package/dist/tsconfig.tsbuildinfo +1 -0
package/eslint.config.mjs +34 -0
package/models/index.js +43 -0
package/models/permissionkey.js +31 -0
package/models/role.js +23 -0
package/models/rolehaspermission.js +43 -0
package/nest-cli.json +8 -0
package/package.json +103 -0
package/prisma/migrations/20260227023704_init/migration.sql +74 -0
package/prisma/migrations/migration_lock.toml +3 -0
package/prisma/schema.prisma +62 -0
package/prisma.config.ts +14 -0
package/src/bin/commit.ts +186 -0
package/src/bin/init.ts +251 -0
package/src/bin/migrations/1-create-permission.js +32 -0
package/src/bin/migrations/2-create-role.js +29 -0
package/src/bin/migrations/3-create-rolepermissions.js +46 -0
package/src/bin/migrations/4-create-model-roles.js +46 -0
package/src/bin/resource.ts +107 -0
package/src/bin/sentinel.ts +115 -0
package/src/bin/tsconfig.json +30 -0
package/src/can.decorator.ts +4 -0
package/src/generated/prisma/browser.ts +49 -0
package/src/generated/prisma/client.ts +69 -0
package/src/generated/prisma/commonInputTypes.ts +302 -0
package/src/generated/prisma/enums.ts +15 -0
package/src/generated/prisma/internal/class.ts +250 -0
package/src/generated/prisma/internal/prismaNamespace.ts +1213 -0
package/src/generated/prisma/internal/prismaNamespaceBrowser.ts +163 -0
package/src/generated/prisma/models/ModelHasRoles.ts +1521 -0
package/src/generated/prisma/models/PermissionKeys.ts +1362 -0
package/src/generated/prisma/models/RoleHasPermissions.ts +1503 -0
package/src/generated/prisma/models/Roles.ts +1437 -0
package/src/generated/prisma/models/SequelizeMeta.ts +1032 -0
package/src/generated/prisma/models/Users.ts +1402 -0
package/src/generated/prisma/models.ts +17 -0
package/src/main.ts +24 -0
package/src/models/SecuredResource.d.ts +8 -0
package/src/models/SecuredResource.ts +9 -0
package/src/models/SentinelConfig.d.ts +7 -0
package/src/models/SentinelConfig.ts +8 -0
package/src/models/SentinelModel.ts +39 -0
package/src/models/SentinelModuleOptions.ts +11 -0
package/src/models/sequelize/PermissionKey.ts +22 -0
package/src/models/tsconfig.json +25 -0
package/src/prisma.service.ts +13 -0
package/src/sentinel.guard.ts +63 -0
package/src/sentinel.module-definition.ts +5 -0
package/src/sentinel.module.ts +27 -0
package/src/sentinel.service.ts +188 -0
package/tsconfig.build.json +11 -0
package/tsconfig.json +25 -0

package/src/generated/prisma/models.ts ADDED Viewed

@@ -0,0 +1,17 @@
+/* !!! This is code generated by Prisma. Do not edit directly. !!! */
+/* eslint-disable */
+// biome-ignore-all lint: generated file
+// @ts-nocheck
+/*
+ * This is a barrel export file for all models and their related types.
+ *
+ * 🟢 You can import this file directly.
+ */
+export type * from './models/ModelHasRoles.js'
+export type * from './models/PermissionKeys.js'
+export type * from './models/RoleHasPermissions.js'
+export type * from './models/Roles.js'
+export type * from './models/SequelizeMeta.js'
+export type * from './models/Users.js'
+export type * from './commonInputTypes.js'

package/src/main.ts ADDED Viewed

@@ -0,0 +1,24 @@
+export * from './sentinel.module';
+export * from './sentinel.service';
+export * from './sentinel.guard';
+export * from './can.decorator';
+export * from './models/SecuredResource';
+export * from './models/SentinelConfig';
+// import { Logger } from '@nestjs/common';
+// import { NestFactory } from '@nestjs/core';
+// import { SentinelModule } from './sentinel.module';
+// async function bootstrap() {
+//   const app = await NestFactory.create(SentinelModule);
+//   const globalPrefix = 'api';
+//   app.setGlobalPrefix(globalPrefix);
+//   app.enableCors();
+//   const port = 8080;
+//   await app.listen(port);
+//   Logger.log(
+//     `🚀Main Backend Application is running on: http://localhost:${port}/${globalPrefix}`,
+//   );
+// }
+// bootstrap();

package/src/models/SecuredResource.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+export interface SecuredResource {
+    name: string;
+    actions: SecuredResourceAction[];
+}
+export interface SecuredResourceAction {
+    key: string;
+    description?: string;
+}

package/src/models/SecuredResource.ts ADDED Viewed

@@ -0,0 +1,9 @@
+export abstract class SecuredResource {
+  name: string;
+  actions: Record<string, SecuredResourceAction>;
+}
+export interface SecuredResourceAction {
+  description?: string;
+  source?: string;
+}

package/src/models/SentinelConfig.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { SecuredResource } from './SecuredResource';
+export interface SentinelConfig {
+    name: string;
+    sourceRoot: string;
+    sentinelConfigPath: string;
+    resources?: SecuredResource[];
+}

package/src/models/SentinelConfig.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { SecuredResource } from './SecuredResource';
+export interface SentinelConfig {
+  name: string;
+  sourceRoot: string;
+  sentinelConfigPath: string;
+  resources?: SecuredResource[];
+}

package/src/models/SentinelModel.ts ADDED Viewed

@@ -0,0 +1,39 @@
+import { PermissionKeysModel } from '../generated/prisma/models';
+export interface SentinelPermissionKey {
+  id: string;
+  resource: string;
+  action: string;
+  createdAt: string | Date;
+  updatedAt: string | Date;
+  description: string;
+}
+export interface SentinelModelRoleHasPermissions {
+  id: number;
+  role: number;
+  permission: string;
+  createdAt: string | Date;
+  updatedAt: string | Date;
+  PermissionKeys: SentinelPermissionKey;
+}
+export interface SentinelModelRole {
+  id: number;
+  name: string;
+  createdAt: string | Date;
+  updatedAt: string | Date;
+  RoleHasPermissions: SentinelModelRoleHasPermissions[];
+}
+export interface SentinelModelHasPermissions {
+  id: number;
+  role: number;
+  model: number;
+  createdAt: string | Date;
+  updatedAt: string | Date;
+  Roles: SentinelModelRole;
+}
+export interface SentinelModel {
+  permissions: PermissionKeysModel[];
+}

package/src/models/SentinelModuleOptions.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { SecuredResource } from './SecuredResource';
+export interface SentinelModuleOptions {
+  resources: SecuredResource[];
+  modelTable: string;
+  modelKey: string;
+  /**
+   * Defines which custom header Sentinel should look for when validating gRPC calls via the SentinelGuard
+   */
+  header: string;
+}

package/src/models/sequelize/PermissionKey.ts ADDED Viewed

@@ -0,0 +1,22 @@
+import {
+  Column,
+  DataType,
+  Model,
+  PrimaryKey,
+  Table,
+} from 'sequelize-typescript';
+@Table({ tableName: 'PermissionKeys' })
+export class PermissionKey extends Model {
+  @Column({ primaryKey: true, type: DataType.STRING })
+  declare id: string;
+  @Column({ type: DataType.STRING })
+  resource: string;
+  @Column({ type: DataType.STRING })
+  action: string;
+  @Column({ type: DataType.STRING })
+  description: string;
+}

package/src/models/tsconfig.json ADDED Viewed

@@ -0,0 +1,25 @@
+{
+  "compilerOptions": {
+    "module": "nodenext",
+    "moduleResolution": "nodenext",
+    "resolvePackageJsonExports": true,
+    "esModuleInterop": true,
+    "isolatedModules": true,
+    "declaration": true,
+    "removeComments": true,
+    "emitDecoratorMetadata": true,
+    "experimentalDecorators": true,
+    "allowSyntheticDefaultImports": true,
+    "target": "ES2023",
+    "sourceMap": true,
+    "outDir": "../../dist/models/sentinel",
+    "baseUrl": "./",
+    "incremental": true,
+    "skipLibCheck": true,
+    "strictNullChecks": true,
+    "forceConsistentCasingInFileNames": true,
+    "noImplicitAny": false,
+    "strictBindCallApply": false,
+    "noFallthroughCasesInSwitch": false
+  }
+}

package/src/prisma.service.ts ADDED Viewed

@@ -0,0 +1,13 @@
+import { Injectable } from '@nestjs/common';
+import { PrismaClient } from './generated/prisma/client';
+import { PrismaPg } from '@prisma/adapter-pg';
+@Injectable()
+export class PrismaService extends PrismaClient {
+  constructor() {
+    const adapter = new PrismaPg({
+      connectionString: `postgres://${process.env.SENTINEL_DB_USER}:${process.env.SENTINEL_DB_PASS}@${process.env.SENTINEL_DB_HOST}:${process.env.SENTINEL_DB_PORT}/${process.env.SENTINEL_DB_DATABASE}`,
+    });
+    super({ adapter });
+  }
+}

package/src/sentinel.guard.ts ADDED Viewed

@@ -0,0 +1,63 @@
+import {
+  CanActivate,
+  ExecutionContext,
+  Inject,
+  Injectable,
+} from '@nestjs/common';
+import { SentinelService } from './sentinel.service';
+import { type Metadata } from '@grpc/grpc-js';
+import { type Request } from 'express';
+import { SentinelModel } from './models/SentinelModel';
+import { Reflector } from '@nestjs/core';
+import { Can, SecuredResourceAction } from './main';
+@Injectable()
+export class SentinelGuard implements CanActivate {
+  constructor(
+    private readonly sentinelService: SentinelService,
+    @Inject(Reflector) private reflector: Reflector,
+  ) {}
+  canActivate(context: ExecutionContext): boolean {
+    const requiredActions = this.reflector.getAllAndOverride<
+      SecuredResourceAction[]
+    >(Can, [context.getHandler(), context.getClass()]);
+    if (requiredActions.length == 0) return true;
+    let sentinelAuth = '';
+    if (context.getType() == 'rpc') {
+      const rpcContext: Metadata = context.switchToRpc().getContext();
+      sentinelAuth = rpcContext.get(
+        this.sentinelService.options.header || 'x-sentinel-key',
+      )[0] as string;
+    } else if (context.getType() == 'http') {
+      const httpContext: Request = context.switchToHttp().getRequest();
+      const header =
+        httpContext.headers[
+          this.sentinelService.options.header || 'x-sentinel-key'
+        ];
+      if (header && typeof header == 'string') {
+        sentinelAuth = header;
+      }
+    } else return false;
+    if (!sentinelAuth) return false;
+    try {
+      const payload: SentinelModel = this.sentinelService.verify(sentinelAuth);
+      if (!payload) return false;
+      const abilities = this.sentinelService.parseModelAbilities(payload);
+      for (const action of requiredActions) {
+        if (!action.source) {
+          return false;
+        }
+        if (abilities.can(Object.keys(action)[0], action.source)) return true;
+      }
+      return false;
+    } catch {
+      return false;
+    }
+  }
+}

package/src/sentinel.module-definition.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import { ConfigurableModuleBuilder } from '@nestjs/common';
+import { SentinelModuleOptions } from './models/SentinelModuleOptions';
+export const { ConfigurableModuleClass, MODULE_OPTIONS_TOKEN } =
+  new ConfigurableModuleBuilder<SentinelModuleOptions>().build();

package/src/sentinel.module.ts ADDED Viewed

@@ -0,0 +1,27 @@
+import { Module } from '@nestjs/common';
+import { SentinelService } from './sentinel.service';
+import { ConfigModule, ConfigService } from '@nestjs/config';
+import { PrismaService } from './prisma.service';
+import { ConfigurableModuleClass } from './sentinel.module-definition';
+import { JwtModule } from '@nestjs/jwt';
+import { SentinelGuard } from './sentinel.guard';
+@Module({
+  imports: [
+    ConfigModule.forRoot({ isGlobal: true }),
+    JwtModule.registerAsync({
+      imports: [ConfigModule],
+      inject: [ConfigService],
+      useFactory: (configService: ConfigService) => ({
+        secret: configService.getOrThrow('SENTINEL_KEY'),
+        signOptions: {
+          expiresIn: '30m',
+        },
+      }),
+    }),
+  ],
+  controllers: [],
+  providers: [PrismaService, SentinelService, SentinelGuard],
+  exports: [PrismaService, SentinelService, SentinelGuard],
+})
+export class SentinelModule extends ConfigurableModuleClass {}

package/src/sentinel.service.ts ADDED Viewed

@@ -0,0 +1,188 @@
+import {
+  Inject,
+  Injectable,
+  Logger,
+  NotFoundException,
+  OnModuleInit,
+} from '@nestjs/common';
+import { Prisma } from './generated/prisma/client';
+import { PrismaService } from './prisma.service';
+import { MODULE_OPTIONS_TOKEN } from './sentinel.module-definition';
+import type { SentinelModuleOptions } from './models/SentinelModuleOptions';
+import { SecuredResource } from './main';
+import { PermissionKeysModel } from './generated/prisma/models';
+import {
+  AbilityBuilder,
+  createMongoAbility,
+  ExtractSubjectType,
+  InferSubjects,
+  MongoAbility,
+} from '@casl/ability';
+import { ConfigService } from '@nestjs/config';
+import { JwtService } from '@nestjs/jwt';
+import { SentinelModel } from './models/SentinelModel';
+@Injectable()
+export class SentinelService implements OnModuleInit {
+  resources: SecuredResource[];
+  options: SentinelModuleOptions;
+  constructor(
+    @Inject(MODULE_OPTIONS_TOKEN) private _options: SentinelModuleOptions,
+    private prisma: PrismaService,
+    private jwt: JwtService,
+    private config: ConfigService,
+  ) {
+    this.options = this._options;
+    this.resources = this.options.resources;
+  }
+  verify(token: string): SentinelModel {
+    return this.jwt.verify(token);
+  }
+  packModel(model: PermissionKeysModel[]) {
+    return this.jwt.sign({
+      permissions: model,
+    });
+  }
+  parseModelAbilities(model: SentinelModel): MongoAbility {
+    const { can, cannot, build } = new AbilityBuilder(createMongoAbility);
+    for (const resource of this.resources) {
+      for (const action of Object.keys(resource.actions)) {
+        if (
+          model.permissions.find(
+            (permissions) => permissions.action == resource.actions[action],
+          )
+        ) {
+          can(action, resource.name);
+        } else cannot(action, resource.name);
+      }
+    }
+    type Subjects = InferSubjects<any>;
+    return build({
+      detectSubjectType: (item) =>
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-return
+        item.constructor as ExtractSubjectType<Subjects>,
+    });
+  }
+  async buildModelAbilities(modelId: number) {
+    const rawModel = await this.getModelRoles(modelId);
+    if (!rawModel)
+      return new NotFoundException(
+        'The provided model ID did not return any Role assigned to it.',
+      );
+    const model: {
+      roles: string[];
+      permissions: PermissionKeysModel[];
+    } = {
+      roles: [],
+      permissions: [],
+    };
+    // for (const role of rawModel) {
+    //   model.roles.push(role.Roles.name || '');
+    //   role.Roles.RoleHasPermissions.forEach((permission) => {
+    //     model.permissions.push(permission);
+    //   });
+    // }
+    const { can, cannot, build } = new AbilityBuilder(createMongoAbility);
+    for (const resource of this.resources) {
+      for (const action of Object.keys(resource.actions)) {
+        if (
+          model.permissions.find(
+            (permissions) => permissions.action == resource.actions[action],
+          )
+        ) {
+          can(action, resource.name);
+        } else cannot(action, resource.name);
+      }
+    }
+    type Subjects = InferSubjects<any>;
+    return build({
+      detectSubjectType: (item) =>
+        // eslint-disable-next-line @typescript-eslint/no-unsafe-return
+        item.constructor as ExtractSubjectType<Subjects>,
+    });
+  }
+  async onModuleInit() {
+    // check if Sentinel key has been generated
+    const key: string | undefined = this.config.get('SENTINEL_KEY');
+    if (!key) {
+      throw new Error(
+        'SENTINEL_KEY was not found during Sentinel runtime. Have you ran `npx sentinel init`?',
+      );
+    }
+    // check if actions exist in database
+    for (const resource of this.options.resources) {
+      const matchingActions = await this.prisma.permissionKeys.findMany({
+        where: {
+          resource: resource.name,
+        },
+      });
+      Object.keys(resource.actions).forEach((_key) => {
+        if (!matchingActions.find((mAction) => mAction.action == _key)) {
+          Logger.warn(
+            `Action "${_key}" in Secured Resource "${resource.name}" does not exist in the database. If these Actions are new, have you persisted them with "npx sentinel commit"?`,
+          );
+        }
+      });
+    }
+  }
+  async getRole(role: Prisma.RolesWhereUniqueInput) {
+    return this.prisma.roles.findUnique({
+      where: role,
+    });
+  }
+  async getModelRoles(modelId: number): Promise<PermissionKeysModel[]> {
+    try {
+      const result = await this.prisma.modelHasRoles.findMany({
+        where: {
+          model: modelId,
+        },
+        include: {
+          Roles: {
+            include: {
+              RoleHasPermissions: {
+                include: {
+                  PermissionKeys: true,
+                },
+              },
+            },
+          },
+        },
+      });
+      const flatResult: PermissionKeysModel[] = result.flatMap((rhp) =>
+        rhp.Roles.RoleHasPermissions.map((rhp) => rhp.PermissionKeys),
+      );
+      return flatResult;
+    } catch (error) {
+      // eslint-disable-next-line @typescript-eslint/no-unsafe-argument
+      throw new Error(error);
+    }
+  }
+  async getPermission(id: 'fds' | 'fdsk') {
+    return await this.prisma.permissionKeys.findFirst({
+      where: {
+        id,
+      },
+    });
+  }
+}

package/tsconfig.build.json ADDED Viewed

@@ -0,0 +1,11 @@
+{
+  "extends": "./tsconfig.json",
+  "exclude": [
+    "node_modules",
+    "src/models/",
+    "src/bin",
+    "test",
+    "dist",
+    "**/*spec.ts"
+  ]
+}

package/tsconfig.json ADDED Viewed

@@ -0,0 +1,25 @@
+{
+  "compilerOptions": {
+    "module": "nodenext",
+    "moduleResolution": "nodenext",
+    "resolvePackageJsonExports": true,
+    "esModuleInterop": true,
+    "isolatedModules": true,
+    "declaration": true,
+    "removeComments": true,
+    "emitDecoratorMetadata": true,
+    "experimentalDecorators": true,
+    "allowSyntheticDefaultImports": true,
+    "target": "ES2023",
+    "sourceMap": true,
+    "outDir": "./dist",
+    "baseUrl": "./",
+    "incremental": true,
+    "skipLibCheck": true,
+    "strictNullChecks": true,
+    "forceConsistentCasingInFileNames": true,
+    "noImplicitAny": false,
+    "strictBindCallApply": false,
+    "noFallthroughCasesInSwitch": false
+  }
+}