@lark-apaas/auth-sdk 0.1.0-alpha.78 → 0.1.0-alpha.79
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/AuthProvider.d.ts +0 -7
- package/lib/AuthProvider.d.ts.map +1 -1
- package/lib/AuthProvider.js +3 -17
- package/lib/ability-factory.d.ts +5 -7
- package/lib/ability-factory.d.ts.map +1 -1
- package/lib/ability-factory.js +5 -9
- package/lib/types.d.ts +0 -9
- package/lib/types.d.ts.map +1 -1
- package/package.json +1 -1
package/lib/AuthProvider.d.ts
CHANGED
|
@@ -46,13 +46,6 @@ export interface AuthProviderProps {
|
|
|
46
46
|
* ```
|
|
47
47
|
*/
|
|
48
48
|
export declare function AuthProvider({ children, config }: AuthProviderProps): import("react/jsx-runtime").JSX.Element;
|
|
49
|
-
/**
|
|
50
|
-
* 获取 Ability 实例
|
|
51
|
-
*
|
|
52
|
-
* @param permissionApiConfig - 权限 API 配置
|
|
53
|
-
* @returns Ability 实例或错误
|
|
54
|
-
*/
|
|
55
|
-
export declare function getAbility(permissionApiConfig: AuthSdkConfig['permissionApi']): Promise<Error | MongoAbility<import("@casl/ability").AbilityTuple, import("@casl/ability").MongoQuery>>;
|
|
56
49
|
/**
|
|
57
50
|
* useAuth Hook - 获取权限数据和加载状态
|
|
58
51
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"AuthProvider.d.ts","sourceRoot":"","sources":["../src/AuthProvider.tsx"],"names":[],"mappings":"AAAA,OAAO,KAMN,MAAM,OAAO,CAAC;AACf,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,KAAK,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAIlE;;GAEG;AACH,eAAO,MAAM,cAAc,uGAE1B,CAAC;AAOF;;;GAGG;AACH,UAAU,qBAAqB;IAC7B,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,mBAAmB,EAAE,CAAC;IACnC,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB,gBAAgB,EAAE,CAAC,MAAM,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CACtD;AAOD;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;CACxB;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,wBAAgB,YAAY,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,iBAAiB,2CAkFnE;
|
|
1
|
+
{"version":3,"file":"AuthProvider.d.ts","sourceRoot":"","sources":["../src/AuthProvider.tsx"],"names":[],"mappings":"AAAA,OAAO,KAMN,MAAM,OAAO,CAAC;AACf,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,KAAK,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAIlE;;GAEG;AACH,eAAO,MAAM,cAAc,uGAE1B,CAAC;AAOF;;;GAGG;AACH,UAAU,qBAAqB;IAC7B,OAAO,EAAE,YAAY,CAAC;IACtB,WAAW,EAAE,mBAAmB,EAAE,CAAC;IACnC,SAAS,EAAE,OAAO,CAAC;IACnB,KAAK,EAAE,KAAK,GAAG,IAAI,CAAC;IACpB,gBAAgB,EAAE,CAAC,MAAM,CAAC,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;CACtD;AAOD;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;CACxB;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,wBAAgB,YAAY,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,iBAAiB,2CAkFnE;AAGD;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,OAAO,IAAI,qBAAqB,CAQ/C;AAqBD;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,OAAO,CAAC,EACtB,QAAQ,EACR,KAAK,EACL,QAAe,GAChB,EAAE;IACD,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;IAC1B,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;CAC5B,kDAKA;AAED;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,mBAAmB,EAAE,CAE1D;AAED;;;;;;;;;;;;GAYG;AACH,wBAAgB,MAAM,CACpB,MAAM,EAAE,MAAM,EACd,OAAO,EAAE,MAAM,GACd;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,SAAS,EAAE,OAAO,CAAA;CAAE,CAM1C;AAED;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAgB,GAAG,CAAC,EAClB,QAAQ,EACR,MAAM,EACN,OAAO,EACP,QAAe,GAChB,EAAE;IACD,QAAQ,EAAE,KAAK,CAAC,SAAS,CAAC;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,KAAK,CAAC,SAAS,CAAC;CAC5B,kDAIA"}
|
package/lib/AuthProvider.js
CHANGED
|
@@ -3,8 +3,8 @@ import { createContext, useCallback, useContext, useEffect, useState } from "rea
|
|
|
3
3
|
import { ROLE_SUBJECT, createAbility } from "./ability-factory.js";
|
|
4
4
|
import { PermissionClient } from "./permission-client.js";
|
|
5
5
|
const AbilityContext = /*#__PURE__*/ createContext(createAbility({
|
|
6
|
-
|
|
7
|
-
|
|
6
|
+
roles: [],
|
|
7
|
+
permissionPoints: []
|
|
8
8
|
}));
|
|
9
9
|
const PermissionsContext = /*#__PURE__*/ createContext([]);
|
|
10
10
|
const AuthStateContext = /*#__PURE__*/ createContext(null);
|
|
@@ -67,20 +67,6 @@ function AuthProvider({ children, config }) {
|
|
|
67
67
|
})
|
|
68
68
|
});
|
|
69
69
|
}
|
|
70
|
-
async function getAbility(permissionApiConfig) {
|
|
71
|
-
if (!permissionApiConfig) return new Error('permissionApi config is required');
|
|
72
|
-
const client = new PermissionClient(permissionApiConfig);
|
|
73
|
-
try {
|
|
74
|
-
const data = await client.fetchPermissions();
|
|
75
|
-
const ability = createAbility({
|
|
76
|
-
roles: data.roles
|
|
77
|
-
});
|
|
78
|
-
return ability;
|
|
79
|
-
} catch (err) {
|
|
80
|
-
const error = err instanceof Error ? err : new Error(String(err));
|
|
81
|
-
return error;
|
|
82
|
-
}
|
|
83
|
-
}
|
|
84
70
|
function useAuth() {
|
|
85
71
|
const context = useContext(AuthStateContext);
|
|
86
72
|
if (!context) throw new Error('useAuth must be used within an AuthProvider');
|
|
@@ -128,4 +114,4 @@ function Can({ children, action, subject, fallback = null }) {
|
|
|
128
114
|
children: children
|
|
129
115
|
}) : null;
|
|
130
116
|
}
|
|
131
|
-
export { AbilityContext, AuthProvider, Can, CanRole,
|
|
117
|
+
export { AbilityContext, AuthProvider, Can, CanRole, useAuth, useCan, useUserPermissions };
|
package/lib/ability-factory.d.ts
CHANGED
|
@@ -1,23 +1,21 @@
|
|
|
1
1
|
import { MongoAbility as Ability } from '@casl/ability';
|
|
2
|
-
import type {
|
|
2
|
+
import type { CaslRule, PermissionPointData } from './types';
|
|
3
3
|
export declare const ROLE_SUBJECT = "@role";
|
|
4
4
|
/**
|
|
5
|
-
*
|
|
5
|
+
* 将角色和权限点位转换为 CASL 规则
|
|
6
6
|
*/
|
|
7
|
-
export declare function convertPermissionsToRules(
|
|
7
|
+
export declare function convertPermissionsToRules(roles: string[], permissionPoints?: PermissionPointData[]): CaslRule[];
|
|
8
8
|
/**
|
|
9
9
|
* 创建 MongoAbility 实例
|
|
10
10
|
*/
|
|
11
|
-
export declare function createAbility({
|
|
12
|
-
permissions?: Permission[];
|
|
11
|
+
export declare function createAbility({ roles, permissionPoints, }: {
|
|
13
12
|
roles?: string[];
|
|
14
13
|
permissionPoints?: PermissionPointData[];
|
|
15
14
|
}): Ability;
|
|
16
15
|
/**
|
|
17
16
|
* 更新已存在的 Ability 实例
|
|
18
17
|
*/
|
|
19
|
-
export declare function updateAbility(ability: Ability, {
|
|
20
|
-
permissions?: Permission[];
|
|
18
|
+
export declare function updateAbility(ability: Ability, { roles, permissionPoints }: {
|
|
21
19
|
roles?: string[];
|
|
22
20
|
permissionPoints?: PermissionPointData[];
|
|
23
21
|
}): void;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"ability-factory.d.ts","sourceRoot":"","sources":["../src/ability-factory.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,IAAI,OAAO,EAGxB,MAAM,eAAe,CAAC;AACvB,OAAO,KAAK,EAAE,
|
|
1
|
+
{"version":3,"file":"ability-factory.d.ts","sourceRoot":"","sources":["../src/ability-factory.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,YAAY,IAAI,OAAO,EAGxB,MAAM,eAAe,CAAC;AACvB,OAAO,KAAK,EAAE,QAAQ,EAAE,mBAAmB,EAAE,MAAM,SAAS,CAAC;AAE7D,eAAO,MAAM,YAAY,UAAU,CAAC;AACpC;;GAEG;AACH,wBAAgB,yBAAyB,CACvC,KAAK,EAAE,MAAM,EAAE,EACf,gBAAgB,CAAC,EAAE,mBAAmB,EAAE,GACvC,QAAQ,EAAE,CAkBZ;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,EAC5B,KAAK,EACL,gBAAgB,GACjB,EAAE;IACD,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,gBAAgB,CAAC,EAAE,mBAAmB,EAAE,CAAC;CAC1C,GAAG,OAAO,CAiBV;AAED;;GAEG;AACH,wBAAgB,aAAa,CAC3B,OAAO,EAAE,OAAO,EAChB,EAAE,KAAK,EAAE,gBAAgB,EAAE,EAAE;IAAE,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAAC,gBAAgB,CAAC,EAAE,mBAAmB,EAAE,CAAA;CAAE,GAC1F,IAAI,CAGN"}
|
package/lib/ability-factory.js
CHANGED
|
@@ -1,11 +1,7 @@
|
|
|
1
1
|
import { AbilityBuilder, createMongoAbility } from "@casl/ability";
|
|
2
2
|
const ROLE_SUBJECT = '@role';
|
|
3
|
-
function convertPermissionsToRules(
|
|
3
|
+
function convertPermissionsToRules(roles, permissionPoints) {
|
|
4
4
|
const rules = [];
|
|
5
|
-
for (const permission of permissions)for (const action of permission.actions)rules.push({
|
|
6
|
-
action,
|
|
7
|
-
subject: permission.sub
|
|
8
|
-
});
|
|
9
5
|
for (const role of roles)rules.push({
|
|
10
6
|
action: role,
|
|
11
7
|
subject: ROLE_SUBJECT
|
|
@@ -16,15 +12,15 @@ function convertPermissionsToRules(permissions, roles, permissionPoints) {
|
|
|
16
12
|
});
|
|
17
13
|
return rules;
|
|
18
14
|
}
|
|
19
|
-
function createAbility({
|
|
15
|
+
function createAbility({ roles, permissionPoints }) {
|
|
20
16
|
const { build, can } = new AbilityBuilder(createMongoAbility);
|
|
21
|
-
const rules = convertPermissionsToRules(
|
|
17
|
+
const rules = convertPermissionsToRules(roles || [], permissionPoints);
|
|
22
18
|
for (const rule of rules)if (Array.isArray(rule.action)) for (const action of rule.action)can(action, rule.subject, rule.fields);
|
|
23
19
|
else can(rule.action, rule.subject, rule.fields);
|
|
24
20
|
return build();
|
|
25
21
|
}
|
|
26
|
-
function updateAbility(ability, {
|
|
27
|
-
const rules = convertPermissionsToRules(
|
|
22
|
+
function updateAbility(ability, { roles, permissionPoints }) {
|
|
23
|
+
const rules = convertPermissionsToRules(roles || [], permissionPoints);
|
|
28
24
|
ability.update(rules);
|
|
29
25
|
}
|
|
30
26
|
export { ROLE_SUBJECT, convertPermissionsToRules, createAbility, updateAbility };
|
package/lib/types.d.ts
CHANGED
|
@@ -13,15 +13,6 @@ export type Action = 'create' | 'read' | 'update' | 'delete' | 'manage' | string
|
|
|
13
13
|
* 权限主体(资源)类型
|
|
14
14
|
*/
|
|
15
15
|
export type Subject = string;
|
|
16
|
-
/**
|
|
17
|
-
* 单个权限定义
|
|
18
|
-
*/
|
|
19
|
-
export interface Permission {
|
|
20
|
-
id: string;
|
|
21
|
-
name: string;
|
|
22
|
-
sub: Subject;
|
|
23
|
-
actions: Action[];
|
|
24
|
-
}
|
|
25
16
|
/**
|
|
26
17
|
* 权限点位数据(action + subject 分离模式)
|
|
27
18
|
* 由 permissionPointsFetcher 返回,注册到 CASL Ability
|
package/lib/types.d.ts.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,MAAM;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;CACF;AAED;;GAEG;AACH,MAAM,MAAM,MAAM,GACd,QAAQ,GACR,MAAM,GACN,QAAQ,GACR,QAAQ,GACR,QAAQ,GACR,MAAM,CAAC;AAEX;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG,MAAM,CAAC;AAE7B
|
|
1
|
+
{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA,OAAO,CAAC,MAAM,CAAC;IACb,UAAU,MAAM;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,MAAM,CAAC,EAAE,MAAM,CAAC;KACjB;CACF;AAED;;GAEG;AACH,MAAM,MAAM,MAAM,GACd,QAAQ,GACR,MAAM,GACN,QAAQ,GACR,QAAQ,GACR,QAAQ,GACR,MAAM,CAAC;AAEX;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG,MAAM,CAAC;AAE7B;;;GAGG;AACH,MAAM,WAAW,mBAAmB;IAClC,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,kBAAkB;IAClB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,SAAS,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC;;OAEG;IACH,GAAG,EAAE,MAAM,CAAC;IAEZ;;;OAGG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB;;OAEG;IACH,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B;;OAEG;IACH,aAAa,CAAC,EAAE,mBAAmB,CAAC;IAEpC;;OAEG;IACH,uBAAuB,CAAC,EAAE,MAAM,OAAO,CAAC,mBAAmB,EAAE,CAAC,CAAC;IAE/D;;;OAGG;IACH,MAAM,CAAC,EAAE,OAAO,CAAC;IAEjB;;OAEG;IACH,OAAO,CAAC,EAAE,CAAC,KAAK,EAAE,KAAK,KAAK,IAAI,CAAC;IAEjC;;OAEG;IACH,SAAS,CAAC,EAAE,CAAC,IAAI,EAAE,qBAAqB,KAAK,IAAI,CAAC;CACnD;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IAC1B,OAAO,EAAE,OAAO,GAAG,OAAO,EAAE,CAAC;IAC7B,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACrC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB"}
|