@kravc/dos 1.8.9 → 1.9.0

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@kravc/dos",
-  "version": "1.8.9",
+  "version": "1.9.0",
   "description": "Convention-based, easy-to-use library for building API-driven serverless services.",
   "keywords": [
     "Service",

package/src/Document.js

@@ -1,12 +1,12 @@
 'use strict'
 
-const { get, omit, capitalize } = require('lodash')
 const { ulid }              = require('ulid')
 const Component             = require('./Component')
 const getIdPrefix           = require('./helpers/getIdPrefix')
 const getComponentTitle     = require('./helpers/getComponentTitle')
 const DocumentExistsError   = require('./errors/DocumentExistsError')
 const DocumentNotFoundError = require('./errors/DocumentNotFoundError')
+const { get, omit, capitalize, cloneDeep } = require('lodash')
 
 const STORE = {}
 
@@ -81,10 +81,10 @@ class Document extends Component {
     const { validator } = context
     mutation = validator.normalize(mutation, this.id)
 
-    const accountId = get(context, 'identity.accountId')
+    const identitySubjectId = get(context, 'identity.sub')
 
-    if (accountId) {
-      mutation.createdBy = accountId
+    if (identitySubjectId) {
+      mutation.createdBy = identitySubjectId
     }
 
     const timestamp = new Date().toJSON()
@@ -139,7 +139,7 @@ class Document extends Component {
   }
 
   static _read({ id = 'NONE' }) {
-    return STORE[this.name][id]
+    return cloneDeep(STORE[this.name][id])
   }
 
   static async index(context, query = {}, options = {}) {
@@ -151,7 +151,7 @@ class Document extends Component {
   }
 
   static _index() {
-    const items = Object.values(STORE[this.name] || {})
+    const items = Object.values(STORE[this.name] || {}).map(cloneDeep)
 
     return { items, count: items.length }
   }
@@ -159,10 +159,10 @@ class Document extends Component {
   static async update(context, query, mutation, originalDocument = null) {
     mutation = omit(mutation, [ this.idKey, 'createdAt', 'createdBy' ])
 
-    const accountId = get(context, 'identity.accountId')
+    const identitySubjectId = get(context, 'identity.sub')
 
-    if (accountId) {
-      mutation.updatedBy = accountId
+    if (identitySubjectId) {
+      mutation.updatedBy = identitySubjectId
     }
 
     const timestamp = new Date().toJSON()
@@ -201,7 +201,7 @@ class Document extends Component {
 
     STORE[this.name][id] = { ...item, ...mutation }
 
-    return STORE[this.name][id]
+    return cloneDeep(STORE[this.name][id])
   }
 
   static async delete(context, query) {

package/src/Document.spec.js

@@ -22,7 +22,7 @@ Profile.schema = loadSync('examples/Profile.yaml')
 
 describe('Document', () => {
   const validator = new Validator([ Profile.schema ])
-  const identity  = { accountId: 'ACCOUNT_ID' }
+  const identity  = { sub: 'USER_ID' }
   const getContext = () => ({ validator, identity })
 
   let id

package/src/Operation.spec.js

@@ -19,7 +19,7 @@ class Profile extends Document {}
 Profile.schema = loadSync('examples/Profile.yaml')
 
 const validator = new Validator([ Profile.schema ])
-const identity  = { accountId: 'ACCOUNT_ID' }
+const identity  = { sub: 'USER_ID' }
 const DEFAULT_CONTEXT = { validator, identity }
 
 describe('Operation', () => {

package/src/security/SystemAuthorization.js

@@ -44,7 +44,7 @@ class SystemAuthorization {
       return { isAuthorized: false, error }
     }
 
-    return { isAuthorized: true, accountId: 'SYSTEM' }
+    return { isAuthorized: true, isSystem: true }
   }
 }
 

package/src/test/createAccessToken.js

@@ -5,14 +5,13 @@ const { privateKey: PRIVATE_KEY } = require('./keys')
 
 const createAccessToken = (options, attributes) => {
   const {
-    algorithm  = 'RS256',
+    algorithm = 'RS256',
     privateKey = PRIVATE_KEY,
     ...jwtOptions
   } = options
 
   const payload = {
-    sub:       'SESSION_ID',
-    accountId: 'ACCOUNT_ID',
+    sub: 'USER_ID',
     ...attributes
   }