@magda/typescript-common 1.1.0-alpha.2 → 1.1.0-rc.0

package/dist/test/sampleOpaResponseWithDefaultRule.json

@@ -0,0 +1,303 @@
+{
+    "result": {
+        "queries": [
+            [
+                {
+                    "index": 0,
+                    "terms": {
+                        "type": "ref",
+                        "value": [
+                            {
+                                "type": "var",
+                                "value": "data"
+                            },
+                            {
+                                "type": "string",
+                                "value": "partial"
+                            },
+                            {
+                                "type": "string",
+                                "value": "object"
+                            },
+                            {
+                                "type": "string",
+                                "value": "registry"
+                            },
+                            {
+                                "type": "string",
+                                "value": "record"
+                            },
+                            {
+                                "type": "string",
+                                "value": "esri_owner_groups"
+                            },
+                            {
+                                "type": "string",
+                                "value": "read"
+                            }
+                        ]
+                    }
+                }
+            ]
+        ],
+        "support": [
+            {
+                "package": {
+                    "path": [
+                        {
+                            "type": "var",
+                            "value": "data"
+                        },
+                        {
+                            "type": "string",
+                            "value": "partial"
+                        },
+                        {
+                            "type": "string",
+                            "value": "object"
+                        },
+                        {
+                            "type": "string",
+                            "value": "registry"
+                        },
+                        {
+                            "type": "string",
+                            "value": "record"
+                        },
+                        {
+                            "type": "string",
+                            "value": "esri_owner_groups"
+                        }
+                    ]
+                },
+                "rules": [
+                    {
+                        "head": {
+                            "name": "read",
+                            "value": {
+                                "type": "boolean",
+                                "value": true
+                            }
+                        },
+                        "body": [
+                            {
+                                "index": 0,
+                                "terms": {
+                                    "type": "boolean",
+                                    "value": true
+                                }
+                            }
+                        ]
+                    },
+                    {
+                        "head": {
+                            "name": "read",
+                            "value": {
+                                "type": "boolean",
+                                "value": true
+                            }
+                        },
+                        "body": [
+                            {
+                                "index": 0,
+                                "terms": [
+                                    {
+                                        "type": "ref",
+                                        "value": [
+                                            {
+                                                "type": "var",
+                                                "value": "eq"
+                                            }
+                                        ]
+                                    },
+                                    {
+                                        "type": "ref",
+                                        "value": [
+                                            {
+                                                "type": "var",
+                                                "value": "input"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "object"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "registry"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "record"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "esri-access-control"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "access"
+                                            }
+                                        ]
+                                    },
+                                    {
+                                        "type": "string",
+                                        "value": "public"
+                                    }
+                                ]
+                            },
+                            {
+                                "index": 1,
+                                "terms": [
+                                    {
+                                        "type": "ref",
+                                        "value": [
+                                            {
+                                                "type": "var",
+                                                "value": "gt"
+                                            }
+                                        ]
+                                    },
+                                    {
+                                        "type": "ref",
+                                        "value": [
+                                            {
+                                                "type": "var",
+                                                "value": "input"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "object"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "registry"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "record"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "esri-access-control"
+                                            },
+                                            {
+                                                "type": "string",
+                                                "value": "expiration"
+                                            }
+                                        ]
+                                    },
+                                    {
+                                        "type": "number",
+                                        "value": 1599191720666
+                                    }
+                                ]
+                            }
+                        ]
+                    },
+                    {
+                        "default": true,
+                        "head": {
+                            "name": "read",
+                            "value": {
+                                "type": "boolean",
+                                "value": false
+                            }
+                        },
+                        "body": [
+                            {
+                                "index": 0,
+                                "terms": {
+                                    "type": "boolean",
+                                    "value": true
+                                }
+                            }
+                        ]
+                    }
+                ]
+            }
+        ]
+    },
+    "explanation": [
+        "Enter data.object.registry.record.esri_owner_groups.read",
+        "| Eval data.object.registry.record.esri_owner_groups.read",
+        "| Index data.object.registry.record.esri_owner_groups.read matched 4 rules)",
+        "| Enter data.object.registry.record.esri_owner_groups.read",
+        "| | Eval data.object.registry.record.admin_role",
+        "| | Index data.object.registry.record.admin_role (matched 1 rule)",
+        "| | Enter data.object.registry.record.admin_role",
+        "| | | Eval input.user.roles[_] = \"00000000-0000-0003-0000-000000000000\"",
+        "| | | Exit data.object.registry.record.admin_role",
+        "| | Exit data.object.registry.record.esri_owner_groups.read",
+        "| Redo data.object.registry.record.esri_owner_groups.read",
+        "| | Redo data.object.registry.record.admin_role",
+        "| | Redo data.object.registry.record.admin_role",
+        "| | | Redo input.user.roles[_] = \"00000000-0000-0003-0000-000000000000\"",
+        "| Enter data.object.registry.record.esri_owner_groups.read",
+        "| | Eval data.object.registry.record.has_permission.read",
+        "| | Index data.object.registry.record.has_permission.read (matched 1 rule)",
+        "| | Enter data.object.registry.record.has_permission.read",
+        "| | | Eval data.object.registry.record.has_permission.has_permission(\"object/registry/record/read\")",
+        "| | | Index data.object.registry.record.has_permission.has_permission(\"object/registry/record/read\") (matched 1 rule)",
+        "| | | Enter data.object.registry.record.has_permission.has_permission",
+        "| | | | Eval input.user.permissions[_].operations[_].uri = permission",
+        "| | | | Exit data.object.registry.record.has_permission.has_permission",
+        "| | | Exit data.object.registry.record.has_permission.read",
+        "| | Eval data.object.registry.record.esri_groups",
+        "| | Index data.object.registry.record.esri_groups (matched 1 rule)",
+        "| | Enter data.object.registry.record.esri_groups",
+        "| | | Eval input.object.registry.record[\"esri-access-control\"].groups[_] = input.user.session.esriGroups[_]",
+        "| | | Fail input.object.registry.record[\"esri-access-control\"].groups[_] = input.user.session.esriGroups[_]",
+        "| | Fail data.object.registry.record.esri_groups",
+        "| | Redo data.object.registry.record.has_permission.read",
+        "| | Redo data.object.registry.record.has_permission.read",
+        "| | | Redo data.object.registry.record.has_permission.has_permission(\"object/registry/record/read\")",
+        "| | | Redo data.object.registry.record.has_permission.has_permission",
+        "| | | | Redo input.user.permissions[_].operations[_].uri = permission",
+        "| Enter data.object.registry.record.esri_owner_groups.read",
+        "| | Eval data.object.registry.record.has_permission.read",
+        "| | Index data.object.registry.record.has_permission.read (matched 1 rule)",
+        "| | Eval data.object.registry.record.esri_owner",
+        "| | Index data.object.registry.record.esri_owner (matched 1 rule)",
+        "| | Enter data.object.registry.record.esri_owner",
+        "| | | Eval input.object.registry.record[\"esri-access-control\"].owner = input.user.session.esriUser",
+        "| | | Fail input.object.registry.record[\"esri-access-control\"].owner = input.user.session.esriUser",
+        "| | Fail data.object.registry.record.esri_owner",
+        "| | Redo data.object.registry.record.has_permission.read",
+        "| Enter data.object.registry.record.esri_owner_groups.read",
+        "| | Eval data.object.registry.record.esri_public",
+        "| | Index data.object.registry.record.esri_public (matched 1 rule)",
+        "| | Enter data.object.registry.record.esri_public",
+        "| | | Eval input.object.registry.record[\"esri-access-control\"].access = \"public\"",
+        "| | | Save input.object.registry.record[\"esri-access-control\"].access = \"public\"",
+        "| | | Exit data.object.registry.record.esri_public",
+        "| | Eval data.object.registry.record.esri_expiration",
+        "| | Index data.object.registry.record.esri_expiration (matched 1 rule)",
+        "| | Enter data.object.registry.record.esri_expiration",
+        "| | | Eval __local145__ = input.object.registry.record[\"esri-access-control\"].expiration",
+        "| | | Save __local145__ = input.object.registry.record[\"esri-access-control\"].expiration",
+        "| | | Eval __local146__ = input.timestamp",
+        "| | | Eval gt(__local145__, __local146__)",
+        "| | | Save gt(__local145__, __local146__)",
+        "| | | Exit data.object.registry.record.esri_expiration",
+        "| | Exit data.object.registry.record.esri_owner_groups.read",
+        "| Redo data.object.registry.record.esri_owner_groups.read",
+        "| | Redo data.object.registry.record.esri_expiration",
+        "| | Redo data.object.registry.record.esri_expiration",
+        "| | | Redo gt(__local145__, __local146__)",
+        "| | | Redo __local146__ = input.timestamp",
+        "| | | Redo __local145__ = input.object.registry.record[\"esri-access-control\"].expiration",
+        "| | Redo data.object.registry.record.esri_public",
+        "| | Redo data.object.registry.record.esri_public",
+        "| | | Redo input.object.registry.record[\"esri-access-control\"].access = \"public\"",
+        "| Enter data.object.registry.record.esri_owner_groups.read",
+        "| | Eval true",
+        "| | Exit data.object.registry.record.esri_owner_groups.read",
+        "| Redo data.object.registry.record.esri_owner_groups.read",
+        "| | Redo true",
+        "| Save data.partial.object.registry.record.esri_owner_groups.read = _",
+        "| Save _",
+        "| Exit data.object.registry.record.esri_owner_groups.read",
+        "Redo data.object.registry.record.esri_owner_groups.read",
+        "| Fail data.object.registry.record.esri_owner_groups.read"
+    ]
+}

package/dist/test/session/buildJwt.spec.d.ts

@@ -0,0 +1 @@
+import "mocha";

package/dist/test/session/buildJwt.spec.js

@@ -0,0 +1,50 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const chai_1 = require("chai");
+require("mocha");
+const yargs_1 = __importDefault(require("yargs"));
+const addJwtSecretFromEnvVar_1 = __importDefault(require("../../session/addJwtSecretFromEnvVar"));
+const GetUserId_1 = require("../../session/GetUserId");
+const GetUserSession_1 = require("../../session/GetUserSession");
+const buildJwt_1 = __importDefault(require("../../session/buildJwt"));
+const { mockRequest } = require("mock-req-res");
+describe("Get authz claim from jwt token", () => {
+    const argv = addJwtSecretFromEnvVar_1.default(yargs_1.default.config().help().option("jwtSecret", {
+        describe: "The secret to use to sign JSON Web Token (JWT) for authenticated requests.",
+        type: "string"
+    }).argv);
+    it("should get userId", function () {
+        const aUserId = "aTestUserId";
+        const jwtToken = buildJwt_1.default(argv.jwtSecret, aUserId);
+        const req = mockRequest({
+            header(name) {
+                if (name === "X-Magda-Session")
+                    return jwtToken;
+                else
+                    return null;
+            }
+        });
+        const actual = GetUserId_1.getUserId(req, argv.jwtSecret).valueOr("wrong answer");
+        chai_1.expect(actual).to.be.equal(aUserId);
+    });
+    it("should get user session", function () {
+        const aUserId = "aTestUserId";
+        const groups = ["G1", "G2"];
+        const session = { session: { esriGroups: groups } };
+        const jwtToken = buildJwt_1.default(argv.jwtSecret, aUserId, session);
+        const req = mockRequest({
+            header(name) {
+                if (name === "X-Magda-Session")
+                    return jwtToken;
+                else
+                    return null;
+            }
+        });
+        const actual = GetUserSession_1.getUserSession(req, argv.jwtSecret).valueOr({});
+        chai_1.expect(actual.session.esriGroups).to.be.deep.equal(groups);
+    });
+});
+//# sourceMappingURL=buildJwt.spec.js.map

package/dist/test/session/buildJwt.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildJwt.spec.js","sourceRoot":"","sources":["../../../src/test/session/buildJwt.spec.ts"],"names":[],"mappings":";;;;;AAAA,+BAA8B;AAC9B,iBAAe;AACf,kDAA0B;AAC1B,kGAA0E;AAC1E,uDAAoD;AACpD,iEAA8D;AAC9D,sEAA8C;AAC9C,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;AAEhD,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC5C,MAAM,IAAI,GAAG,gCAAsB,CAC/B,eAAK,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,WAAW,EAAE;QACtC,QAAQ,EACJ,4EAA4E;QAChF,IAAI,EAAE,QAAQ;KACjB,CAAC,CAAC,IAAI,CACV,CAAC;IAEF,EAAE,CAAC,mBAAmB,EAAE;QACpB,MAAM,OAAO,GAAG,aAAa,CAAC;QAC9B,MAAM,QAAQ,GAAG,kBAAQ,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAEnD,MAAM,GAAG,GAAG,WAAW,CAAC;YACpB,MAAM,CAAC,IAAY;gBACf,IAAI,IAAI,KAAK,iBAAiB;oBAAE,OAAO,QAAQ,CAAC;;oBAC3C,OAAO,IAAI,CAAC;YACrB,CAAC;SACJ,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,qBAAS,CAAC,GAAG,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,cAAc,CAAC,CAAC;QACtE,aAAM,CAAC,MAAM,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACxC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yBAAyB,EAAE;QAC1B,MAAM,OAAO,GAAG,aAAa,CAAC;QAC9B,MAAM,MAAM,GAAG,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;QAC5B,MAAM,OAAO,GAAG,EAAE,OAAO,EAAE,EAAE,UAAU,EAAE,MAAM,EAAE,EAAE,CAAC;QACpD,MAAM,QAAQ,GAAG,kBAAQ,CAAC,IAAI,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC;QAE5D,MAAM,GAAG,GAAG,WAAW,CAAC;YACpB,MAAM,CAAC,IAAY;gBACf,IAAI,IAAI,KAAK,iBAAiB;oBAAE,OAAO,QAAQ,CAAC;;oBAC3C,OAAO,IAAI,CAAC;YACrB,CAAC;SACJ,CAAC,CAAC;QAEH,MAAM,MAAM,GAAG,+BAAc,CAAC,GAAG,EAAE,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;QAC/D,aAAM,CAAC,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,EAAE,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAC/D,CAAC,CAAC,CAAC;AACP,CAAC,CAAC,CAAC"}

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.d.ts

@@ -0,0 +1 @@
+import "mocha";

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.js

@@ -0,0 +1,64 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+require("mocha");
+const yargs_1 = __importDefault(require("yargs"));
+const addJwtSecretFromEnvVar_1 = __importDefault(require("../../session/addJwtSecretFromEnvVar"));
+const buildJwt_1 = __importDefault(require("../../session/buildJwt"));
+describe("Get authz claim from jwt token", () => {
+    const argv = addJwtSecretFromEnvVar_1.default(yargs_1.default.config().help().option("jwtSecret", {
+        describe: "The secret to use to sign JSON Web Token (JWT) for authenticated requests.",
+        type: "string"
+    }).argv);
+    it("should create jwt token with userId and session claims", function () {
+        const sessions = [
+            {
+                session: {
+                    esriGroups: [
+                        "Dep. A",
+                        "Branch A, Dep. A",
+                        "Branch B, Dep. A",
+                        "Section C, Branch B, Dep. A"
+                    ],
+                    esriUser: "user0"
+                }
+            },
+            {
+                session: {
+                    esriGroups: ["Branch A, Dep. A"],
+                    esriUser: "user1"
+                }
+            },
+            {
+                session: {
+                    esriGroups: [
+                        "Branch B, Dep. A",
+                        "Section C, Branch B, Dep. A"
+                    ],
+                    esriUser: "user2"
+                }
+            },
+            {
+                session: {
+                    esriGroups: ["Section C, Branch B, Dep. A"],
+                    esriUser: "user3"
+                }
+            }
+        ];
+        const userIds = [
+            "00000000-0000-1000-0000-000000000000",
+            "00000000-0000-1000-0001-000000000000",
+            "00000000-0000-1000-0002-000000000000",
+            "00000000-0000-1000-0003-000000000000"
+        ];
+        for (var i = 0; i < userIds.length; i++) {
+            let userId = userIds[i];
+            let session = sessions[i];
+            let jwtToken = buildJwt_1.default(argv.jwtSecret, userId, session);
+            console.log(`userId ${userIds[i]}: \njwt: ${jwtToken}\n`);
+        }
+    });
+});
+//# sourceMappingURL=buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.js.map

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.js","sourceRoot":"","sources":["../../../src/test/session/buildJwtForRegistryEsriOpaGroupsAndOwnerTest.spec.ts"],"names":[],"mappings":";;;;;AAAA,iBAAe;AACf,kDAA0B;AAC1B,kGAA0E;AAC1E,sEAA8C;AAE9C,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC5C,MAAM,IAAI,GAAG,gCAAsB,CAC/B,eAAK,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,WAAW,EAAE;QACtC,QAAQ,EACJ,4EAA4E;QAChF,IAAI,EAAE,QAAQ;KACjB,CAAC,CAAC,IAAI,CACV,CAAC;IAEF,EAAE,CAAC,wDAAwD,EAAE;QACzD,MAAM,QAAQ,GAAG;YACb;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE;wBACR,QAAQ;wBACR,kBAAkB;wBAClB,kBAAkB;wBAClB,6BAA6B;qBAChC;oBACD,QAAQ,EAAE,OAAO;iBACpB;aACJ;YACD;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE,CAAC,kBAAkB,CAAC;oBAChC,QAAQ,EAAE,OAAO;iBACpB;aACJ;YACD;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE;wBACR,kBAAkB;wBAClB,6BAA6B;qBAChC;oBACD,QAAQ,EAAE,OAAO;iBACpB;aACJ;YACD;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE,CAAC,6BAA6B,CAAC;oBAC3C,QAAQ,EAAE,OAAO;iBACpB;aACJ;SACJ,CAAC;QAEF,MAAM,OAAO,GAAG;YACZ,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;SACzC,CAAC;QAEF,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YACrC,IAAI,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YACxB,IAAI,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;YAC1B,IAAI,QAAQ,GAAG,kBAAQ,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;YACzD,OAAO,CAAC,GAAG,CAAC,UAAU,OAAO,CAAC,CAAC,CAAC,YAAY,QAAQ,IAAI,CAAC,CAAC;SAC7D;IACL,CAAC,CAAC,CAAC;AACP,CAAC,CAAC,CAAC"}

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsTest.spec.d.ts

@@ -0,0 +1 @@
+import "mocha";

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsTest.spec.js

@@ -0,0 +1,52 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+require("mocha");
+const yargs_1 = __importDefault(require("yargs"));
+const addJwtSecretFromEnvVar_1 = __importDefault(require("../../session/addJwtSecretFromEnvVar"));
+const buildJwt_1 = __importDefault(require("../../session/buildJwt"));
+describe("Get authz claim from jwt token", () => {
+    const argv = addJwtSecretFromEnvVar_1.default(yargs_1.default.config().help().option("jwtSecret", {
+        describe: "The secret to use to sign JSON Web Token (JWT) for authenticated requests.",
+        type: "string"
+    }).argv);
+    it("should create jwt token with userId and session claims", function () {
+        const sessions = [
+            {
+                session: {
+                    esriGroups: [
+                        "Dep. A",
+                        "Branch A, Dep. A",
+                        "Branch B, Dep. A",
+                        "Section C, Branch B, Dep. A"
+                    ]
+                }
+            },
+            { session: { esriGroups: ["Branch A, Dep. A"] } },
+            {
+                session: {
+                    esriGroups: [
+                        "Branch B, Dep. A",
+                        "Section C, Branch B, Dep. A"
+                    ]
+                }
+            },
+            { session: { esriGroups: ["Section C, Branch B, Dep. A"] } }
+        ];
+        const userIds = [
+            "00000000-0000-1000-0000-000000000000",
+            "00000000-0000-1000-0001-000000000000",
+            "00000000-0000-1000-0002-000000000000",
+            "00000000-0000-1000-0003-000000000000"
+        ];
+        for (var i = 0; i < userIds.length; i++) {
+            let userId = userIds[i];
+            let session = sessions[i];
+            let jwtToken = buildJwt_1.default(argv.jwtSecret, userId, session);
+            console.log(`userId ${userIds[i]}: \njwt: ${jwtToken}\n`);
+        }
+    });
+});
+//# sourceMappingURL=buildJwtForRegistryEsriOpaGroupsTest.spec.js.map

package/dist/test/session/buildJwtForRegistryEsriOpaGroupsTest.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildJwtForRegistryEsriOpaGroupsTest.spec.js","sourceRoot":"","sources":["../../../src/test/session/buildJwtForRegistryEsriOpaGroupsTest.spec.ts"],"names":[],"mappings":";;;;;AAAA,iBAAe;AACf,kDAA0B;AAC1B,kGAA0E;AAC1E,sEAA8C;AAE9C,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC5C,MAAM,IAAI,GAAG,gCAAsB,CAC/B,eAAK,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,WAAW,EAAE;QACtC,QAAQ,EACJ,4EAA4E;QAChF,IAAI,EAAE,QAAQ;KACjB,CAAC,CAAC,IAAI,CACV,CAAC;IAEF,EAAE,CAAC,wDAAwD,EAAE;QACzD,MAAM,QAAQ,GAAG;YACb;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE;wBACR,QAAQ;wBACR,kBAAkB;wBAClB,kBAAkB;wBAClB,6BAA6B;qBAChC;iBACJ;aACJ;YACD,EAAE,OAAO,EAAE,EAAE,UAAU,EAAE,CAAC,kBAAkB,CAAC,EAAE,EAAE;YACjD;gBACI,OAAO,EAAE;oBACL,UAAU,EAAE;wBACR,kBAAkB;wBAClB,6BAA6B;qBAChC;iBACJ;aACJ;YACD,EAAE,OAAO,EAAE,EAAE,UAAU,EAAE,CAAC,6BAA6B,CAAC,EAAE,EAAE;SAC/D,CAAC;QAEF,MAAM,OAAO,GAAG;YACZ,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;SACzC,CAAC;QAEF,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YACrC,IAAI,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YACxB,IAAI,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;YAC1B,IAAI,QAAQ,GAAG,kBAAQ,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;YACzD,OAAO,CAAC,GAAG,CAAC,UAAU,OAAO,CAAC,CAAC,CAAC,YAAY,QAAQ,IAAI,CAAC,CAAC;SAC7D;IACL,CAAC,CAAC,CAAC;AACP,CAAC,CAAC,CAAC"}

package/dist/test/session/buildJwtForRegistryEsriOpaOwnerTest.spec.d.ts

@@ -0,0 +1 @@
+import "mocha";

package/dist/test/session/buildJwtForRegistryEsriOpaOwnerTest.spec.js

@@ -0,0 +1,36 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+require("mocha");
+const yargs_1 = __importDefault(require("yargs"));
+const addJwtSecretFromEnvVar_1 = __importDefault(require("../../session/addJwtSecretFromEnvVar"));
+const buildJwt_1 = __importDefault(require("../../session/buildJwt"));
+describe("Get authz claim from jwt token", () => {
+    const argv = addJwtSecretFromEnvVar_1.default(yargs_1.default.config().help().option("jwtSecret", {
+        describe: "The secret to use to sign JSON Web Token (JWT) for authenticated requests.",
+        type: "string"
+    }).argv);
+    it("should create jwt token with userId and session claims", function () {
+        const sessions = [
+            { session: { esriUser: "user0" } },
+            { session: { esriUser: "user1" } },
+            { session: { esriUser: "user2" } },
+            { session: { esriUser: "user3" } }
+        ];
+        const userIds = [
+            "00000000-0000-1000-0000-000000000000",
+            "00000000-0000-1000-0001-000000000000",
+            "00000000-0000-1000-0002-000000000000",
+            "00000000-0000-1000-0003-000000000000"
+        ];
+        for (var i = 0; i < userIds.length; i++) {
+            let userId = userIds[i];
+            let session = sessions[i];
+            let jwtToken = buildJwt_1.default(argv.jwtSecret, userId, session);
+            console.log(`userId ${userIds[i]}: \njwt: ${jwtToken}\n`);
+        }
+    });
+});
+//# sourceMappingURL=buildJwtForRegistryEsriOpaOwnerTest.spec.js.map

package/dist/test/session/buildJwtForRegistryEsriOpaOwnerTest.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"buildJwtForRegistryEsriOpaOwnerTest.spec.js","sourceRoot":"","sources":["../../../src/test/session/buildJwtForRegistryEsriOpaOwnerTest.spec.ts"],"names":[],"mappings":";;;;;AAAA,iBAAe;AACf,kDAA0B;AAC1B,kGAA0E;AAC1E,sEAA8C;AAE9C,QAAQ,CAAC,gCAAgC,EAAE,GAAG,EAAE;IAC5C,MAAM,IAAI,GAAG,gCAAsB,CAC/B,eAAK,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,CAAC,MAAM,CAAC,WAAW,EAAE;QACtC,QAAQ,EACJ,4EAA4E;QAChF,IAAI,EAAE,QAAQ;KACjB,CAAC,CAAC,IAAI,CACV,CAAC;IAEF,EAAE,CAAC,wDAAwD,EAAE;QACzD,MAAM,QAAQ,GAAG;YACb,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;YAClC,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;YAClC,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;YAClC,EAAE,OAAO,EAAE,EAAE,QAAQ,EAAE,OAAO,EAAE,EAAE;SACrC,CAAC;QAEF,MAAM,OAAO,GAAG;YACZ,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;YACtC,sCAAsC;SACzC,CAAC;QAEF,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;YACrC,IAAI,MAAM,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;YACxB,IAAI,OAAO,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC;YAC1B,IAAI,QAAQ,GAAG,kBAAQ,CAAC,IAAI,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;YACzD,OAAO,CAAC,GAAG,CAAC,UAAU,OAAO,CAAC,CAAC,CAAC,YAAY,QAAQ,IAAI,CAAC,CAAC;SAC7D;IACL,CAAC,CAAC,CAAC;AACP,CAAC,CAAC,CAAC"}

package/dist/test/testAsyncPage.spec.d.ts

@@ -0,0 +1 @@
+import "mocha";