@iquadras/shared-guards 0.0.1

package/dist/nestjs/decorators/require-super-admin.decorator.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RequireSuperAdminAuth = void 0;
+const permissions_decorator_1 = require("./permissions.decorator");
+const RequireSuperAdminAuth = () => (0, permissions_decorator_1.Permission)({ type: 'SUPER_ADMIN_ONLY' });
+exports.RequireSuperAdminAuth = RequireSuperAdminAuth;
+//# sourceMappingURL=require-super-admin.decorator.js.map

package/dist/nestjs/decorators/require-super-admin.decorator.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"require-super-admin.decorator.js","sourceRoot":"","sources":["../../../src/nestjs/decorators/require-super-admin.decorator.ts"],"names":[],"mappings":";;;AAAA,mEAAqD;AAE9C,MAAM,qBAAqB,GAAG,GAAG,EAAE,CACxC,IAAA,kCAAU,EAAC,EAAE,IAAI,EAAE,kBAAkB,EAAE,CAAC,CAAC;AAD9B,QAAA,qBAAqB,yBACS"}

package/dist/nestjs/guards/jwt-auth.guard.d.ts

@@ -0,0 +1,10 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { JwtService } from '@nestjs/jwt';
+import { Reflector } from '@nestjs/core';
+export declare class JwtAuthGuard implements CanActivate {
+    private readonly jwtService;
+    private readonly reflector;
+    constructor(jwtService: JwtService, reflector: Reflector);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private extractTokenFromHeader;
+}

package/dist/nestjs/guards/jwt-auth.guard.js

@@ -0,0 +1,69 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.JwtAuthGuard = void 0;
+const common_1 = require("@nestjs/common");
+const jwt_1 = require("@nestjs/jwt");
+const core_1 = require("@nestjs/core");
+const logger_util_1 = require("../utils/logger.util");
+const constants_1 = require("../constants");
+const permissions_decorator_1 = require("../decorators/permissions.decorator");
+let JwtAuthGuard = class JwtAuthGuard {
+    constructor(jwtService, reflector) {
+        this.jwtService = jwtService;
+        this.reflector = reflector;
+    }
+    async canActivate(context) {
+        const requiresAuth = this.reflector.getAllAndOverride(constants_1.REQUIRES_AUTH_KEY, [
+            context.getHandler(),
+            context.getClass(),
+        ]) ||
+            this.reflector.getAllAndOverride(permissions_decorator_1.Permission, [
+                context.getHandler(),
+                context.getClass(),
+            ]);
+        if (!requiresAuth) {
+            logger_util_1.guardsLogger.debug('Rota pública - bypass de autenticação');
+            return true;
+        }
+        const request = context.switchToHttp().getRequest();
+        const token = this.extractTokenFromHeader(request);
+        if (!token) {
+            logger_util_1.guardsLogger.warn('Requisição sem token JWT no header x-auth-access-token');
+            throw new common_1.UnauthorizedException('Token de autenticação não fornecido');
+        }
+        try {
+            const payload = await this.jwtService.verifyAsync(token);
+            request.user = payload;
+            logger_util_1.guardsLogger.debug(`Usuário autenticado: ${payload.sub} (${payload.email})`);
+            return true;
+        }
+        catch (error) {
+            logger_util_1.guardsLogger.warn(`Token JWT inválido ou expirado: ${error instanceof Error ? error.message : 'Erro desconhecido'}`);
+            throw new common_1.UnauthorizedException('Token inválido ou expirado');
+        }
+    }
+    extractTokenFromHeader(request) {
+        const token = request.headers['x-auth-access-token'];
+        if (typeof token === 'string')
+            return token;
+        if (Array.isArray(token) && token.length > 0)
+            return token[0];
+        return undefined;
+    }
+};
+exports.JwtAuthGuard = JwtAuthGuard;
+exports.JwtAuthGuard = JwtAuthGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [jwt_1.JwtService,
+        core_1.Reflector])
+], JwtAuthGuard);
+//# sourceMappingURL=jwt-auth.guard.js.map

package/dist/nestjs/guards/jwt-auth.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"jwt-auth.guard.js","sourceRoot":"","sources":["../../../src/nestjs/guards/jwt-auth.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAKwB;AACxB,qCAAyC;AACzC,uCAAyC;AAEzC,sDAAoD;AACpD,4CAAiD;AACjD,+EAAiE;AAI1D,IAAM,YAAY,GAAlB,MAAM,YAAY;IACvB,YACmB,UAAsB,EACtB,SAAoB;QADpB,eAAU,GAAV,UAAU,CAAY;QACtB,cAAS,GAAT,SAAS,CAAW;IACpC,CAAC;IAEJ,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,MAAM,YAAY,GAChB,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAU,6BAAiB,EAAE;YAC3D,OAAO,CAAC,UAAU,EAAE;YACpB,OAAO,CAAC,QAAQ,EAAE;SACnB,CAAC;YACF,IAAI,CAAC,SAAS,CAAC,iBAAiB,CAAC,kCAAU,EAAE;gBAC3C,OAAO,CAAC,UAAU,EAAE;gBACpB,OAAO,CAAC,QAAQ,EAAE;aACnB,CAAC,CAAC;QAEL,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,0BAAY,CAAC,KAAK,CAAC,uCAAuC,CAAC,CAAC;YAC5D,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAW,CAAC;QAC7D,MAAM,KAAK,GAAG,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC,CAAC;QAEnD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,0BAAY,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC;YAC5E,MAAM,IAAI,8BAAqB,CAAC,qCAAqC,CAAC,CAAC;QACzE,CAAC;QAED,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,WAAW,CAAa,KAAK,CAAC,CAAC;YACpE,OAA0C,CAAC,IAAI,GAAG,OAAO,CAAC;YAC3D,0BAAY,CAAC,KAAK,CAAC,wBAAwB,OAAO,CAAC,GAAG,KAAK,OAAO,CAAC,KAAK,GAAG,CAAC,CAAC;YAC7E,OAAO,IAAI,CAAC;QACd,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,0BAAY,CAAC,IAAI,CACf,mCAAmC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,mBAAmB,EAAE,CAClG,CAAC;YACF,MAAM,IAAI,8BAAqB,CAAC,4BAA4B,CAAC,CAAC;QAChE,CAAC;IACH,CAAC;IAEO,sBAAsB,CAAC,OAAgB;QAC7C,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,qBAAqB,CAAC,CAAC;QACrD,IAAI,OAAO,KAAK,KAAK,QAAQ;YAAE,OAAO,KAAK,CAAC;QAC5C,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC;QAC9D,OAAO,SAAS,CAAC;IACnB,CAAC;CACF,CAAA;AAjDY,oCAAY;uBAAZ,YAAY;IADxB,IAAA,mBAAU,GAAE;qCAGoB,gBAAU;QACX,gBAAS;GAH5B,YAAY,CAiDxB"}

package/dist/nestjs/guards/permissions.guard.d.ts

@@ -0,0 +1,8 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class PermissionsGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+    private checkPermission;
+}

package/dist/nestjs/guards/permissions.guard.js

@@ -0,0 +1,98 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionsGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+const logger_util_1 = require("../utils/logger.util");
+const permissions_1 = require("../../core/permissions");
+const permissions_decorator_1 = require("../decorators/permissions.decorator");
+function getByPath(obj, path) {
+    return path.split('.').reduce((o, key) => o?.[key], obj);
+}
+function resolveOrganizationId(request, organizationIdSource) {
+    const paths = Array.isArray(organizationIdSource)
+        ? organizationIdSource
+        : [organizationIdSource];
+    for (const path of paths) {
+        const value = getByPath(request, path);
+        if (typeof value === 'string' && value.trim() !== '') {
+            return value;
+        }
+    }
+    return undefined;
+}
+let PermissionsGuard = class PermissionsGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const permissionMetadata = this.reflector.getAllAndOverride(permissions_decorator_1.Permission, [context.getHandler(), context.getClass()]);
+        if (!permissionMetadata) {
+            logger_util_1.guardsLogger.debug('Nenhuma restrição de permissão - acesso permitido');
+            return true;
+        }
+        const request = context.switchToHttp().getRequest();
+        const user = request.user;
+        if (!user) {
+            logger_util_1.guardsLogger.error('PermissionsGuard executado sem usuário autenticado. Use JwtAuthGuard antes.');
+            throw new common_1.ForbiddenException('Usuário não autenticado');
+        }
+        const hasPermission = this.checkPermission(user, permissionMetadata, request);
+        if (!hasPermission) {
+            logger_util_1.guardsLogger.warn(`Acesso negado para usuário ${user.sub}: tipo=${permissionMetadata.type}, ` +
+                `module=${permissionMetadata.module ?? 'N/A'}`);
+            throw new common_1.ForbiddenException('Você não tem permissão para acessar este recurso');
+        }
+        logger_util_1.guardsLogger.debug(`Permissão concedida para usuário ${user.sub}`);
+        return true;
+    }
+    checkPermission(user, metadata, request) {
+        switch (metadata.type) {
+            case 'SUPER_ADMIN_ONLY':
+                return (0, permissions_1.isSuperAdmin)(user);
+            case 'ORGANIZATION_ADMIN_ONLY': {
+                if (!metadata.organizationIdSource) {
+                    throw new common_1.InternalServerErrorException('@RequireOrganizationAdminAuth() exige organizationIdSource. Ex: RequireOrganizationAdminAuth({ organizationIdSource: "params.organizationId" })');
+                }
+                const organizationId = resolveOrganizationId(request, metadata.organizationIdSource);
+                if (!organizationId) {
+                    logger_util_1.guardsLogger.warn(`OrganizationAdmin requerido mas organizationId não encontrado em ${metadata.organizationIdSource}`);
+                    return false;
+                }
+                return (0, permissions_1.isOrgAdmin)(user, organizationId);
+            }
+            case 'MODULE_ACCESS': {
+                if (!metadata.organizationIdSource) {
+                    throw new common_1.InternalServerErrorException('@RequireModuleAuth() exige organizationIdSource. Ex: RequireModuleAuth(MODULES.BOOKING, { organizationIdSource: "params.organizationId" })');
+                }
+                if (!metadata.module) {
+                    throw new common_1.InternalServerErrorException('@RequireModuleAuth() exige module');
+                }
+                const organizationId = resolveOrganizationId(request, metadata.organizationIdSource);
+                if (!organizationId) {
+                    logger_util_1.guardsLogger.warn(`ModuleAccess requerido mas organizationId não encontrado em ${metadata.organizationIdSource}`);
+                    return false;
+                }
+                return (0, permissions_1.hasModuleAccess)(user, organizationId, metadata.module);
+            }
+            default:
+                logger_util_1.guardsLogger.warn(`Tipo de permissão desconhecido: ${metadata.type}`);
+                return false;
+        }
+    }
+};
+exports.PermissionsGuard = PermissionsGuard;
+exports.PermissionsGuard = PermissionsGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], PermissionsGuard);
+//# sourceMappingURL=permissions.guard.js.map

package/dist/nestjs/guards/permissions.guard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissions.guard.js","sourceRoot":"","sources":["../../../src/nestjs/guards/permissions.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAMwB;AACxB,uCAAyC;AAEzC,sDAAoD;AAEpD,wDAAmF;AACnF,+EAI6C;AAE7C,SAAS,SAAS,CAAC,GAAY,EAAE,IAAY;IAC3C,OAAO,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAU,EAAE,GAAG,EAAE,EAAE,CAAE,CAA6B,EAAE,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,CAAC;AACjG,CAAC;AAED,SAAS,qBAAqB,CAC5B,OAAgB,EAChB,oBAA0C;IAE1C,MAAM,KAAK,GAAG,KAAK,CAAC,OAAO,CAAC,oBAAoB,CAAC;QAC/C,CAAC,CAAC,oBAAoB;QACtB,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC;IAE3B,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,KAAK,GAAG,SAAS,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC;QACvC,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACrD,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAGM,IAAM,gBAAgB,GAAtB,MAAM,gBAAgB;IAC3B,YAA6B,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IAAG,CAAC;IAErD,WAAW,CAAC,OAAyB;QACnC,MAAM,kBAAkB,GAAG,IAAI,CAAC,SAAS,CAAC,iBAAiB,CACzD,kCAAU,EACV,CAAC,OAAO,CAAC,UAAU,EAAE,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAC3C,CAAC;QAEF,IAAI,CAAC,kBAAkB,EAAE,CAAC;YACxB,0BAAY,CAAC,KAAK,CAAC,mDAAmD,CAAC,CAAC;YACxE,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAkC,CAAC;QACpF,MAAM,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;QAE1B,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,0BAAY,CAAC,KAAK,CAAC,6EAA6E,CAAC,CAAC;YAClG,MAAM,IAAI,2BAAkB,CAAC,yBAAyB,CAAC,CAAC;QAC1D,CAAC;QAED,MAAM,aAAa,GAAG,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,kBAAkB,EAAE,OAAO,CAAC,CAAC;QAE9E,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,0BAAY,CAAC,IAAI,CACf,8BAA8B,IAAI,CAAC,GAAG,UAAU,kBAAkB,CAAC,IAAI,IAAI;gBACzE,UAAU,kBAAkB,CAAC,MAAM,IAAI,KAAK,EAAE,CACjD,CAAC;YACF,MAAM,IAAI,2BAAkB,CAAC,kDAAkD,CAAC,CAAC;QACnF,CAAC;QAED,0BAAY,CAAC,KAAK,CAAC,oCAAoC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;QACnE,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,eAAe,CACrB,IAAgB,EAChB,QAA4B,EAC5B,OAAgB;QAEhB,QAAQ,QAAQ,CAAC,IAAI,EAAE,CAAC;YACtB,KAAK,kBAAkB;gBACrB,OAAO,IAAA,0BAAY,EAAC,IAAI,CAAC,CAAC;YAC5B,KAAK,yBAAyB,CAAC,CAAC,CAAC;gBAC/B,IAAI,CAAC,QAAQ,CAAC,oBAAoB,EAAE,CAAC;oBACnC,MAAM,IAAI,qCAA4B,CACpC,iJAAiJ,CAClJ,CAAC;gBACJ,CAAC;gBACD,MAAM,cAAc,GAAG,qBAAqB,CAAC,OAAO,EAAE,QAAQ,CAAC,oBAAoB,CAAC,CAAC;gBACrF,IAAI,CAAC,cAAc,EAAE,CAAC;oBACpB,0BAAY,CAAC,IAAI,CACf,oEAAoE,QAAQ,CAAC,oBAAoB,EAAE,CACpG,CAAC;oBACF,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,OAAO,IAAA,wBAAU,EAAC,IAAI,EAAE,cAAc,CAAC,CAAC;YAC1C,CAAC;YACD,KAAK,eAAe,CAAC,CAAC,CAAC;gBACrB,IAAI,CAAC,QAAQ,CAAC,oBAAoB,EAAE,CAAC;oBACnC,MAAM,IAAI,qCAA4B,CACpC,4IAA4I,CAC7I,CAAC;gBACJ,CAAC;gBACD,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;oBACrB,MAAM,IAAI,qCAA4B,CAAC,mCAAmC,CAAC,CAAC;gBAC9E,CAAC;gBACD,MAAM,cAAc,GAAG,qBAAqB,CAAC,OAAO,EAAE,QAAQ,CAAC,oBAAoB,CAAC,CAAC;gBACrF,IAAI,CAAC,cAAc,EAAE,CAAC;oBACpB,0BAAY,CAAC,IAAI,CACf,+DAA+D,QAAQ,CAAC,oBAAoB,EAAE,CAC/F,CAAC;oBACF,OAAO,KAAK,CAAC;gBACf,CAAC;gBACD,OAAO,IAAA,6BAAe,EAAC,IAAI,EAAE,cAAc,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;YAChE,CAAC;YACD;gBACE,0BAAY,CAAC,IAAI,CAAC,mCAAoC,QAA+B,CAAC,IAAI,EAAE,CAAC,CAAC;gBAC9F,OAAO,KAAK,CAAC;QACjB,CAAC;IACH,CAAC;CACF,CAAA;AAlFY,4CAAgB;2BAAhB,gBAAgB;IAD5B,IAAA,mBAAU,GAAE;qCAE6B,gBAAS;GADtC,gBAAgB,CAkF5B"}

package/dist/nestjs/index.d.ts

@@ -0,0 +1,15 @@
+export * from './module/shared-guards.module';
+export * from './guards/jwt-auth.guard';
+export * from './guards/permissions.guard';
+export * from './decorators/auth.decorator';
+export * from './decorators/get-user.decorator';
+export * from './decorators/require-module.decorator';
+export * from './decorators/require-organization-admin.decorator';
+export * from './decorators/require-super-admin.decorator';
+export * from './constants';
+export { MODULES } from '../core/constants';
+export type { JwtPayload, OrganizationPermission } from '../core/types';
+export type { ModuleType } from '../core/constants';
+export type { OrganizationIdSource } from './decorators/permissions.decorator';
+export type { RequireOrganizationAdminOptions } from './decorators/require-organization-admin.decorator';
+export type { RequireModuleAuthOptions } from './decorators/require-module.decorator';

package/dist/nestjs/index.js

@@ -0,0 +1,29 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.MODULES = void 0;
+__exportStar(require("./module/shared-guards.module"), exports);
+__exportStar(require("./guards/jwt-auth.guard"), exports);
+__exportStar(require("./guards/permissions.guard"), exports);
+__exportStar(require("./decorators/auth.decorator"), exports);
+__exportStar(require("./decorators/get-user.decorator"), exports);
+__exportStar(require("./decorators/require-module.decorator"), exports);
+__exportStar(require("./decorators/require-organization-admin.decorator"), exports);
+__exportStar(require("./decorators/require-super-admin.decorator"), exports);
+__exportStar(require("./constants"), exports);
+var constants_1 = require("../core/constants");
+Object.defineProperty(exports, "MODULES", { enumerable: true, get: function () { return constants_1.MODULES; } });
+//# sourceMappingURL=index.js.map

package/dist/nestjs/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/nestjs/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;AAAA,gEAA8C;AAC9C,0DAAwC;AACxC,6DAA2C;AAC3C,8DAA4C;AAC5C,kEAAgD;AAChD,wEAAsD;AACtD,oFAAkE;AAClE,6EAA2D;AAC3D,8CAA4B;AAC5B,+CAA4C;AAAnC,oGAAA,OAAO,OAAA"}

package/dist/nestjs/module/shared-guards.module.d.ts

@@ -0,0 +1,4 @@
+import { DynamicModule } from '@nestjs/common';
+export declare class SharedGuardsModule {
+    static forRoot(): DynamicModule;
+}

package/dist/nestjs/module/shared-guards.module.js

@@ -0,0 +1,44 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var SharedGuardsModule_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SharedGuardsModule = void 0;
+const common_1 = require("@nestjs/common");
+const jwt_1 = require("@nestjs/jwt");
+const core_1 = require("@nestjs/core");
+const jwt_auth_guard_1 = require("../guards/jwt-auth.guard");
+const permissions_guard_1 = require("../guards/permissions.guard");
+let SharedGuardsModule = SharedGuardsModule_1 = class SharedGuardsModule {
+    static forRoot() {
+        const jwtSecret = process.env.JWT_SECRET;
+        if (!jwtSecret) {
+            throw new Error('JWT_SECRET deve ser definido na variável de ambiente');
+        }
+        return {
+            module: SharedGuardsModule_1,
+            global: true,
+            imports: [
+                jwt_1.JwtModule.register({
+                    secret: jwtSecret,
+                    signOptions: { expiresIn: '7d' },
+                }),
+            ],
+            providers: [
+                { provide: core_1.APP_GUARD, useClass: jwt_auth_guard_1.JwtAuthGuard },
+                { provide: core_1.APP_GUARD, useClass: permissions_guard_1.PermissionsGuard },
+            ],
+            exports: [jwt_1.JwtModule],
+        };
+    }
+};
+exports.SharedGuardsModule = SharedGuardsModule;
+exports.SharedGuardsModule = SharedGuardsModule = SharedGuardsModule_1 = __decorate([
+    (0, common_1.Global)(),
+    (0, common_1.Module)({})
+], SharedGuardsModule);
+//# sourceMappingURL=shared-guards.module.js.map

package/dist/nestjs/module/shared-guards.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"shared-guards.module.js","sourceRoot":"","sources":["../../../src/nestjs/module/shared-guards.module.ts"],"names":[],"mappings":";;;;;;;;;;AAAA,2CAA+D;AAC/D,qCAAwC;AACxC,uCAAyC;AACzC,6DAAwD;AACxD,mEAA+D;AAIxD,IAAM,kBAAkB,0BAAxB,MAAM,kBAAkB;IAC7B,MAAM,CAAC,OAAO;QACZ,MAAM,SAAS,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC;QACzC,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;QAC1E,CAAC;QAED,OAAO;YACL,MAAM,EAAE,oBAAkB;YAC1B,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE;gBACP,eAAS,CAAC,QAAQ,CAAC;oBACjB,MAAM,EAAE,SAAS;oBACjB,WAAW,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE;iBACjC,CAAC;aACH;YACD,SAAS,EAAE;gBACT,EAAE,OAAO,EAAE,gBAAS,EAAE,QAAQ,EAAE,6BAAY,EAAE;gBAC9C,EAAE,OAAO,EAAE,gBAAS,EAAE,QAAQ,EAAE,oCAAgB,EAAE;aACnD;YACD,OAAO,EAAE,CAAC,eAAS,CAAC;SACrB,CAAC;IACJ,CAAC;CACF,CAAA;AAvBY,gDAAkB;6BAAlB,kBAAkB;IAF9B,IAAA,eAAM,GAAE;IACR,IAAA,eAAM,EAAC,EAAE,CAAC;GACE,kBAAkB,CAuB9B"}

package/dist/nestjs/utils/logger.util.d.ts

@@ -0,0 +1,2 @@
+import { Logger } from '@nestjs/common';
+export declare const guardsLogger: Logger;

package/dist/nestjs/utils/logger.util.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.guardsLogger = void 0;
+const common_1 = require("@nestjs/common");
+exports.guardsLogger = new common_1.Logger('NestSharedGuards');
+//# sourceMappingURL=logger.util.js.map

package/dist/nestjs/utils/logger.util.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"logger.util.js","sourceRoot":"","sources":["../../../src/nestjs/utils/logger.util.ts"],"names":[],"mappings":";;;AAAA,2CAAwC;AAE3B,QAAA,YAAY,GAAG,IAAI,eAAM,CAAC,kBAAkB,CAAC,CAAC"}

package/dist/react/index.d.ts

@@ -0,0 +1,5 @@
+export { MODULES, AUTH_ACCESS_TOKEN_HEADER } from '../core';
+export type { JwtPayload, OrganizationPermission, ModuleType } from '../core';
+export declare function isSuperAdmin(token: string): boolean;
+export declare function isOrgAdmin(token: string, organizationId: string): boolean;
+export declare function hasModuleAccess(token: string, organizationId: string, module: string): boolean;

package/dist/react/index.js

@@ -0,0 +1,24 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AUTH_ACCESS_TOKEN_HEADER = exports.MODULES = void 0;
+exports.isSuperAdmin = isSuperAdmin;
+exports.isOrgAdmin = isOrgAdmin;
+exports.hasModuleAccess = hasModuleAccess;
+const jwt_1 = require("../core/jwt");
+const permissions_1 = require("../core/permissions");
+var core_1 = require("../core");
+Object.defineProperty(exports, "MODULES", { enumerable: true, get: function () { return core_1.MODULES; } });
+Object.defineProperty(exports, "AUTH_ACCESS_TOKEN_HEADER", { enumerable: true, get: function () { return core_1.AUTH_ACCESS_TOKEN_HEADER; } });
+function isSuperAdmin(token) {
+    const user = (0, jwt_1.decodeToken)(token);
+    return (0, permissions_1.isSuperAdmin)(user);
+}
+function isOrgAdmin(token, organizationId) {
+    const user = (0, jwt_1.decodeToken)(token);
+    return (0, permissions_1.isOrgAdmin)(user, organizationId);
+}
+function hasModuleAccess(token, organizationId, module) {
+    const user = (0, jwt_1.decodeToken)(token);
+    return (0, permissions_1.hasModuleAccess)(user, organizationId, module);
+}
+//# sourceMappingURL=index.js.map

package/dist/react/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/react/index.ts"],"names":[],"mappings":";;;AAeA,oCAGC;AAED,gCAGC;AAED,0CAOC;AA3BD,qCAA0C;AAC1C,qDAI6B;AAE7B,gCAA4D;AAAnD,+FAAA,OAAO,OAAA;AAAE,gHAAA,wBAAwB,OAAA;AAG1C,SAAgB,YAAY,CAAC,KAAa;IACxC,MAAM,IAAI,GAAG,IAAA,iBAAW,EAAC,KAAK,CAAC,CAAC;IAChC,OAAO,IAAA,0BAAgB,EAAC,IAAI,CAAC,CAAC;AAChC,CAAC;AAED,SAAgB,UAAU,CAAC,KAAa,EAAE,cAAsB;IAC9D,MAAM,IAAI,GAAG,IAAA,iBAAW,EAAC,KAAK,CAAC,CAAC;IAChC,OAAO,IAAA,wBAAc,EAAC,IAAI,EAAE,cAAc,CAAC,CAAC;AAC9C,CAAC;AAED,SAAgB,eAAe,CAC7B,KAAa,EACb,cAAsB,EACtB,MAAc;IAEd,MAAM,IAAI,GAAG,IAAA,iBAAW,EAAC,KAAK,CAAC,CAAC;IAChC,OAAO,IAAA,6BAAmB,EAAC,IAAI,EAAE,cAAc,EAAE,MAAM,CAAC,CAAC;AAC3D,CAAC"}