@minimaltech/node-infra 0.2.27

package/dist/components/authorize/models/defs.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"defs.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/defs.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,kDAAiD;AACjD,qCAA4E;AAC5E,qCAA0C;AAC1C,qDAAgD;AAEhD,0EAA0E;AACnE,MAAM,UAAU,GAAG,GAAG,EAAE;IAC7B,MAAM,IAAK,SAAQ,yBAAY;QAoD7B,YAAY,IAAoB;YAC9B,KAAK,CAAC,IAAI,CAAC,CAAC;QACd,CAAC;KACF;IAnDC;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;uCACa;IAUf;QARC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,qBAAY,CAAC,OAAO;YAC7B,UAAU,EAAE;gBACV,UAAU,EAAE,QAAQ;gBACpB,QAAQ,EAAE,MAAM;aACjB;SACF,CAAC;;wCACa;IAUf;QARC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,kBAAS,CAAC,MAAM;YACzB,UAAU,EAAE;gBACV,UAAU,EAAE,WAAW;gBACvB,QAAQ,EAAE,MAAM;aACjB;SACF,CAAC;;0CACgB;IASlB;QAPC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,MAAM;YACZ,UAAU,EAAE;gBACV,UAAU,EAAE,cAAc;gBAC1B,QAAQ,EAAE,aAAa;aACxB;SACF,CAAC;kCACY,IAAI;6CAAC;IASnB;QAPC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,MAAM;YACZ,UAAU,EAAE;gBACV,UAAU,EAAE,eAAe;gBAC3B,QAAQ,EAAE,aAAa;aACxB;SACF,CAAC;kCACY,IAAI;6CAAC;IAQnB;QANC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,UAAU,EAAE,WAAW;aACxB;SACF,CAAC;;0CACe;IAOnB,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AA3DW,QAAA,UAAU,cA2DrB;AAEF,0EAA0E;AACnE,MAAM,UAAU,GAAG,GAAG,EAAE;IAC7B,MAAM,IAAK,SAAQ,yBAAY;QA6B7B,YAAY,IAAoB;YAC9B,KAAK,CAAC,IAAI,CAAC,CAAC;QACd,CAAC;KACF;IA3BC;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,IAAI;SACd,CAAC;;4CACiB;IAMnB;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,IAAI;SACd,CAAC;;sCACW;IAKb;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;6CACmB;IAKrB;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;0CACe;IAMjB;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,qBAAY,CAAC,SAAS;SAChC,CAAC;;wCACa;IAOjB,OAAO,IAAI,CAAC;AACd,CAAC,CAAC;AApCW,QAAA,UAAU,cAoCrB;AAEF,0EAA0E;AACnE,MAAM,gBAAgB,GAAG,GAAoC,EAAE;IACpE,MAAM,UAAW,SAAQ,yBAAY;QA+CnC,YAAY,IAA0B;YACpC,KAAK,CAAC,IAAI,CAAC,CAAC;QACd,CAAC;KACF;IA9CC;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;4CACW;IAKb;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;4CACW;IAKb;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;+CACc;IAMhB;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,QAAQ,EAAE;SACrC,CAAC;;6CACY;IAKd;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;8CACa;IAKf;QAHC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;SACf,CAAC;;6CACa;IAMf;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,WAAW,EAAE;SACxC,CAAC;;gDACe;IASjB;QAPC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,UAAU,EAAE,SAAS;gBACrB,QAAQ,EAAE,OAAO;aAClB;SACF,CAAC;;+CACS;IAOb,OAAO,UAAU,CAAC;AACpB,CAAC,CAAC;AAtDW,QAAA,gBAAgB,oBAsD3B;AAEF,0EAA0E;AACnE,MAAM,uBAAuB,GAAG,GAAG,EAAE;IAC1C,MAAM,iBAAkB,SAAQ,yBAAY;QAsB1C,YAAY,IAAiC;YAC3C,KAAK,CAAC,IAAI,CAAC,CAAC;QACd,CAAC;KACF;IApBC;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE;SACtC,CAAC;;qDACc;IAMhB;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE;SACtC,CAAC;;qDACa;IAMf;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,eAAe,EAAE;SAC5C,CAAC;;2DACmB;IAGrB;QADC,IAAA,qBAAQ,EAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,CAAC;;qDACd;IAMjB,OAAO,iBAAiB,CAAC;AAC3B,CAAC,CAAC;AA5BW,QAAA,uBAAuB,2BA4BlC;AAEF,0EAA0E;AACnE,MAAM,cAAc,GAAG,GAAG,EAAE;IACjC,MAAM,QAAS,SAAQ,IAAA,uBAAc,EAAC,yBAAY,EAAE,MAAM,EAAE,QAAQ,CAAC;QAOnE,YAAY,IAAwB;YAClC,KAAK,CAAC,IAAI,CAAC,CAAC;QACd,CAAC;KACF;IALC;QAJC,IAAA,qBAAQ,EAAC;YACR,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE,EAAE,UAAU,EAAE,SAAS,EAAE;SACtC,CAAC;;4CACa;IAMjB,OAAO,QAAQ,CAAC;AAClB,CAAC,CAAC;AAbW,QAAA,cAAc,kBAazB"}

package/dist/components/authorize/models/index.d.ts

@@ -0,0 +1,6 @@
+export * from './defs';
+export * from './role.model';
+export * from './permission.model';
+export * from './permission-mapping.model';
+export * from './user-role.model';
+export * from './view-authorize-policy.model';

package/dist/components/authorize/models/index.js

@@ -0,0 +1,23 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./defs"), exports);
+__exportStar(require("./role.model"), exports);
+__exportStar(require("./permission.model"), exports);
+__exportStar(require("./permission-mapping.model"), exports);
+__exportStar(require("./user-role.model"), exports);
+__exportStar(require("./view-authorize-policy.model"), exports);
+//# sourceMappingURL=index.js.map

package/dist/components/authorize/models/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,yCAAuB;AACvB,+CAA6B;AAC7B,qDAAmC;AACnC,6DAA2C;AAC3C,oDAAkC;AAClC,gEAA8C"}

package/dist/components/authorize/models/permission-mapping.model.d.ts

@@ -0,0 +1,36 @@
+declare const BasePermissionMapping: {
+    new (data?: Partial<{
+        userId?: number;
+        roleId: number;
+        permissionId: number;
+        effect: string;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    }>): {
+        userId?: number;
+        roleId: number;
+        permissionId: number;
+        effect: string;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    };
+    getIdProperties(): string[];
+    getIdOf(entityOrData: import("@loopback/repository").AnyObject): any;
+    buildWhereForId(id: any): any;
+    readonly modelName: string;
+    definition: import("@loopback/repository").ModelDefinition;
+};
+export declare class PermissionMapping extends BasePermissionMapping {
+    constructor(data?: Partial<PermissionMapping>);
+}
+export {};

package/dist/components/authorize/models/permission-mapping.model.js

@@ -0,0 +1,40 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionMapping = void 0;
+const repository_1 = require("@loopback/repository");
+const defs_1 = require("./defs");
+const BasePermissionMapping = (0, defs_1.definePermissionMapping)();
+let PermissionMapping = class PermissionMapping extends BasePermissionMapping {
+    constructor(data) {
+        super(data);
+    }
+};
+exports.PermissionMapping = PermissionMapping;
+exports.PermissionMapping = PermissionMapping = __decorate([
+    (0, repository_1.model)({
+        settings: {
+            postgresql: {
+                schema: 'public',
+                table: 'PermissionMapping',
+            },
+            hiddenProperties: ['createdAt', 'modifiedAt'],
+            indexes: {
+                INDEX_UNIQUE_USER_ROLE_PERMISSION: {
+                    keys: { userId: 1, roleId: 1, permissionId: 1 },
+                    options: { unique: true },
+                },
+            },
+        },
+    }),
+    __metadata("design:paramtypes", [Object])
+], PermissionMapping);
+//# sourceMappingURL=permission-mapping.model.js.map

package/dist/components/authorize/models/permission-mapping.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission-mapping.model.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/permission-mapping.model.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAA6C;AAC7C,iCAAiD;AAEjD,MAAM,qBAAqB,GAAG,IAAA,8BAAuB,GAAE,CAAC;AAiBjD,IAAM,iBAAiB,GAAvB,MAAM,iBAAkB,SAAQ,qBAAqB;IAC1D,YAAY,IAAiC;QAC3C,KAAK,CAAC,IAAI,CAAC,CAAC;IACd,CAAC;CACF,CAAA;AAJY,8CAAiB;4BAAjB,iBAAiB;IAf7B,IAAA,kBAAK,EAAC;QACL,QAAQ,EAAE;YACR,UAAU,EAAE;gBACV,MAAM,EAAE,QAAQ;gBAChB,KAAK,EAAE,mBAAmB;aAC3B;YACD,gBAAgB,EAAE,CAAC,WAAW,EAAE,YAAY,CAAC;YAC7C,OAAO,EAAE;gBACP,iCAAiC,EAAE;oBACjC,IAAI,EAAE,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE;oBAC/C,OAAO,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE;iBAC1B;aACF;SACF;KACF,CAAC;;GACW,iBAAiB,CAI7B"}

package/dist/components/authorize/models/permission.model.d.ts

@@ -0,0 +1,44 @@
+declare const BasePermission: {
+    new (data?: Partial<{
+        code: string;
+        name: string;
+        subject: string;
+        pType: string;
+        action: string;
+        scope?: string;
+        parentId: number;
+        details: import("../../..").AnyObject;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    }> | undefined): {
+        code: string;
+        name: string;
+        subject: string;
+        pType: string;
+        action: string;
+        scope?: string;
+        parentId: number;
+        details: import("../../..").AnyObject;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    };
+    getIdProperties(): string[];
+    getIdOf(entityOrData: import("@loopback/repository").AnyObject): any;
+    buildWhereForId(id: any): any;
+    readonly modelName: string;
+    definition: import("@loopback/repository").ModelDefinition;
+};
+export declare class Permission extends BasePermission {
+    constructor(data?: Partial<Permission>);
+}
+export {};

package/dist/components/authorize/models/permission.model.js

@@ -0,0 +1,34 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Permission = void 0;
+const repository_1 = require("@loopback/repository");
+const defs_1 = require("./defs");
+const BasePermission = (0, defs_1.definePermission)();
+let Permission = class Permission extends BasePermission {
+    constructor(data) {
+        super(data);
+    }
+};
+exports.Permission = Permission;
+exports.Permission = Permission = __decorate([
+    (0, repository_1.model)({
+        settings: {
+            postgresql: {
+                schema: 'public',
+                table: 'Permission',
+            },
+            hiddenProperties: ['createdAt', 'modifiedAt'],
+        },
+    }),
+    __metadata("design:paramtypes", [Object])
+], Permission);
+//# sourceMappingURL=permission.model.js.map

package/dist/components/authorize/models/permission.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permission.model.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/permission.model.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAA6C;AAC7C,iCAA0C;AAE1C,MAAM,cAAc,GAAG,IAAA,uBAAgB,GAAE,CAAC;AAWnC,IAAM,UAAU,GAAhB,MAAM,UAAW,SAAQ,cAAc;IAC5C,YAAY,IAA0B;QACpC,KAAK,CAAC,IAAI,CAAC,CAAC;IACd,CAAC;CACF,CAAA;AAJY,gCAAU;qBAAV,UAAU;IATtB,IAAA,kBAAK,EAAC;QACL,QAAQ,EAAE;YACR,UAAU,EAAE;gBACV,MAAM,EAAE,QAAQ;gBAChB,KAAK,EAAE,YAAY;aACpB;YACD,gBAAgB,EAAE,CAAC,WAAW,EAAE,YAAY,CAAC;SAC9C;KACF,CAAC;;GACW,UAAU,CAItB"}

package/dist/components/authorize/models/role.model.d.ts

@@ -0,0 +1,40 @@
+import { Permission } from '.';
+declare const BaseRole: {
+    new (data?: Partial<{
+        identifier: string;
+        name: string;
+        description?: string;
+        priority: number;
+        status: string;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    }>): {
+        identifier: string;
+        name: string;
+        description?: string;
+        priority: number;
+        status: string;
+        createdAt: Date;
+        modifiedAt: Date;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        id: number;
+    };
+    getIdProperties(): string[];
+    getIdOf(entityOrData: import("@loopback/repository").AnyObject): any;
+    buildWhereForId(id: any): any;
+    readonly modelName: string;
+    definition: import("@loopback/repository").ModelDefinition;
+};
+export declare class Role extends BaseRole {
+    permissions: Permission[];
+    constructor(data?: Partial<Role>);
+}
+export {};

package/dist/components/authorize/models/role.model.js

@@ -0,0 +1,46 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Role = void 0;
+const repository_1 = require("@loopback/repository");
+const _1 = require(".");
+const defs_1 = require("./defs");
+const BaseRole = (0, defs_1.defineRole)();
+// ---------------------------------------------------------------
+let Role = class Role extends BaseRole {
+    constructor(data) {
+        super(data);
+    }
+};
+exports.Role = Role;
+__decorate([
+    (0, repository_1.hasMany)(() => _1.Permission, {
+        through: {
+            model: () => _1.PermissionMapping,
+            keyFrom: 'roleId',
+            keyTo: 'permissionId',
+        },
+    }),
+    __metadata("design:type", Array)
+], Role.prototype, "permissions", void 0);
+exports.Role = Role = __decorate([
+    (0, repository_1.model)({
+        settings: {
+            postgresql: {
+                schema: 'public',
+                table: 'Role',
+            },
+            hiddenProperties: ['createdAt', 'modifiedAt'],
+        },
+    }),
+    __metadata("design:paramtypes", [Object])
+], Role);
+//# sourceMappingURL=role.model.js.map

package/dist/components/authorize/models/role.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role.model.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/role.model.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAAsD;AACtD,wBAAkD;AAClD,iCAAoC;AAEpC,MAAM,QAAQ,GAAG,IAAA,iBAAU,GAAE,CAAC;AAE9B,kEAAkE;AAU3D,IAAM,IAAI,GAAV,MAAM,IAAK,SAAQ,QAAQ;IAUhC,YAAY,IAAoB;QAC9B,KAAK,CAAC,IAAI,CAAC,CAAC;IACd,CAAC;CACF,CAAA;AAbY,oBAAI;AAQf;IAPC,IAAA,oBAAO,EAAC,GAAG,EAAE,CAAC,aAAU,EAAE;QACzB,OAAO,EAAE;YACP,KAAK,EAAE,GAAG,EAAE,CAAC,oBAAiB;YAC9B,OAAO,EAAE,QAAQ;YACjB,KAAK,EAAE,cAAc;SACtB;KACF,CAAC;;yCACwB;eARf,IAAI;IAThB,IAAA,kBAAK,EAAC;QACL,QAAQ,EAAE;YACR,UAAU,EAAE;gBACV,MAAM,EAAE,QAAQ;gBAChB,KAAK,EAAE,MAAM;aACd;YACD,gBAAgB,EAAE,CAAC,WAAW,EAAE,YAAY,CAAC;SAC9C;KACF,CAAC;;GACW,IAAI,CAahB"}

package/dist/components/authorize/models/user-role.model.d.ts

@@ -0,0 +1,34 @@
+declare const BaseUserRole: {
+    new (data?: Partial<{
+        userId: number;
+        principalType?: string;
+        principalId?: import("../../..").IdType;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        createdAt: Date;
+        modifiedAt: Date;
+        id: number;
+    }>): {
+        userId: number;
+        principalType?: string;
+        principalId?: import("../../..").IdType;
+        getId: () => any;
+        getIdObject: () => Object;
+        toJSON: () => Object;
+        toObject: (options?: import("@loopback/repository").Options) => Object;
+        createdAt: Date;
+        modifiedAt: Date;
+        id: number;
+    };
+    getIdProperties(): string[];
+    getIdOf(entityOrData: import("@loopback/repository").AnyObject): any;
+    buildWhereForId(id: any): any;
+    readonly modelName: string;
+    definition: import("@loopback/repository").ModelDefinition;
+};
+export declare class UserRole extends BaseUserRole {
+    constructor(data?: Partial<UserRole>);
+}
+export {};

package/dist/components/authorize/models/user-role.model.js

@@ -0,0 +1,35 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserRole = void 0;
+const repository_1 = require("@loopback/repository");
+const defs_1 = require("./defs");
+const BaseUserRole = (0, defs_1.defineUserRole)();
+// ---------------------------------------------------------------
+let UserRole = class UserRole extends BaseUserRole {
+    constructor(data) {
+        super(data);
+    }
+};
+exports.UserRole = UserRole;
+exports.UserRole = UserRole = __decorate([
+    (0, repository_1.model)({
+        settings: {
+            postgresql: {
+                schema: 'public',
+                table: 'UserRole',
+            },
+            hiddenProperties: ['createdAt', 'modifiedAt'],
+        },
+    }),
+    __metadata("design:paramtypes", [Object])
+], UserRole);
+//# sourceMappingURL=user-role.model.js.map

package/dist/components/authorize/models/user-role.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"user-role.model.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/user-role.model.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qDAA6C;AAC7C,iCAAwC;AAExC,MAAM,YAAY,GAAG,IAAA,qBAAc,GAAE,CAAC;AAEtC,kEAAkE;AAU3D,IAAM,QAAQ,GAAd,MAAM,QAAS,SAAQ,YAAY;IACxC,YAAY,IAAwB;QAClC,KAAK,CAAC,IAAI,CAAC,CAAC;IACd,CAAC;CACF,CAAA;AAJY,4BAAQ;mBAAR,QAAQ;IATpB,IAAA,kBAAK,EAAC;QACL,QAAQ,EAAE;YACR,UAAU,EAAE;gBACV,MAAM,EAAE,QAAQ;gBAChB,KAAK,EAAE,UAAU;aAClB;YACD,gBAAgB,EAAE,CAAC,WAAW,EAAE,YAAY,CAAC;SAC9C;KACF,CAAC;;GACW,QAAQ,CAIpB"}

package/dist/components/authorize/models/view-authorize-policy.model.d.ts

@@ -0,0 +1,9 @@
+import { BaseEntity } from '../../../base/base.model';
+import { IdType, StringIdType } from '../../../common';
+export declare class ViewAuthorizePolicy extends BaseEntity {
+    id: StringIdType;
+    subject: string;
+    subjectType: string;
+    subjectId: IdType;
+    constructor(data?: Partial<ViewAuthorizePolicy>);
+}

package/dist/components/authorize/models/view-authorize-policy.model.js

@@ -0,0 +1,70 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ViewAuthorizePolicy = void 0;
+const base_model_1 = require("../../../base/base.model");
+const repository_1 = require("@loopback/repository");
+// ---------------------------------------------------------------
+let ViewAuthorizePolicy = class ViewAuthorizePolicy extends base_model_1.BaseEntity {
+    constructor(data) {
+        super(data);
+    }
+};
+exports.ViewAuthorizePolicy = ViewAuthorizePolicy;
+__decorate([
+    (0, repository_1.property)({ type: 'string', id: true }),
+    __metadata("design:type", String)
+], ViewAuthorizePolicy.prototype, "id", void 0);
+__decorate([
+    (0, repository_1.property)({
+        type: 'string',
+        postgresql: {
+            columnName: 'subject',
+        },
+    }),
+    __metadata("design:type", String)
+], ViewAuthorizePolicy.prototype, "subject", void 0);
+__decorate([
+    (0, repository_1.property)({
+        type: 'string',
+        postgresql: {
+            columnName: 'subject_type',
+        },
+    }),
+    __metadata("design:type", String)
+], ViewAuthorizePolicy.prototype, "subjectType", void 0);
+__decorate([
+    (0, repository_1.property)({
+        type: 'string',
+        postgresql: {
+            columnName: 'subject_id',
+        },
+    }),
+    __metadata("design:type", Object)
+], ViewAuthorizePolicy.prototype, "subjectId", void 0);
+exports.ViewAuthorizePolicy = ViewAuthorizePolicy = __decorate([
+    (0, repository_1.model)({
+        settings: {
+            postgresql: {
+                schema: 'public',
+                table: 'ViewAuthorizePolicy',
+            },
+            indexes: {
+                INDEX_UNIQUE_SUBJECT: {
+                    keys: { subject: 1 },
+                    options: { unique: true },
+                },
+            },
+        },
+    }),
+    __metadata("design:paramtypes", [Object])
+], ViewAuthorizePolicy);
+//# sourceMappingURL=view-authorize-policy.model.js.map

package/dist/components/authorize/models/view-authorize-policy.model.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"view-authorize-policy.model.js","sourceRoot":"","sources":["../../../../src/components/authorize/models/view-authorize-policy.model.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,kDAA+C;AAE/C,qDAAuD;AAEvD,kEAAkE;AAe3D,IAAM,mBAAmB,GAAzB,MAAM,mBAAoB,SAAQ,uBAAU;IA4BjD,YAAY,IAAmC;QAC7C,KAAK,CAAC,IAAI,CAAC,CAAC;IACd,CAAC;CACF,CAAA;AA/BY,kDAAmB;AAE9B;IADC,IAAA,qBAAQ,EAAC,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;;+CACtB;AAQjB;IANC,IAAA,qBAAQ,EAAC;QACR,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,UAAU,EAAE,SAAS;SACtB;KACF,CAAC;;oDACc;AAQhB;IANC,IAAA,qBAAQ,EAAC;QACR,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,UAAU,EAAE,cAAc;SAC3B;KACF,CAAC;;wDACkB;AAQpB;IANC,IAAA,qBAAQ,EAAC;QACR,IAAI,EAAE,QAAQ;QACd,UAAU,EAAE;YACV,UAAU,EAAE,YAAY;SACzB;KACF,CAAC;;sDACgB;8BA1BP,mBAAmB;IAd/B,IAAA,kBAAK,EAAC;QACL,QAAQ,EAAE;YACR,UAAU,EAAE;gBACV,MAAM,EAAE,QAAQ;gBAChB,KAAK,EAAE,qBAAqB;aAC7B;YACD,OAAO,EAAE;gBACP,oBAAoB,EAAE;oBACpB,IAAI,EAAE,EAAE,OAAO,EAAE,CAAC,EAAE;oBACpB,OAAO,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE;iBAC1B;aACF;SACF;KACF,CAAC;;GACW,mBAAmB,CA+B/B"}

package/dist/components/authorize/provider.d.ts

@@ -0,0 +1,30 @@
+import { AuthorizationContext, AuthorizationDecision, AuthorizationMetadata, Authorizer } from '@loopback/authorization';
+import { Provider } from '@loopback/core';
+import { EnforcerService } from './services';
+export declare class AuthorizeProvider implements Provider<Authorizer> {
+    private enforcerService;
+    private alwaysAllowRoles;
+    private normalizePayloadFn;
+    private logger;
+    constructor(enforcerService: EnforcerService, alwaysAllowRoles: string[], normalizePayloadFn: (opts: {
+        subject: string;
+        object: string;
+        scope?: string;
+    }) => {
+        subject: string;
+        object: string;
+        action: string;
+    });
+    value(): Authorizer<AuthorizationMetadata>;
+    normalizeEnforcePayload(opts: {
+        subject: string;
+        object: string;
+        scope?: string;
+    }): {
+        subject: string;
+        object: string;
+        action: string;
+    };
+    authorizePermission(userId: number, object: string, scopes?: string[]): Promise<boolean>;
+    authorize(context: AuthorizationContext, metadata: AuthorizationMetadata): Promise<AuthorizationDecision>;
+}

package/dist/components/authorize/provider.js

@@ -0,0 +1,157 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+var AuthorizeProvider_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthorizeProvider = void 0;
+const helpers_1 = require("../../helpers");
+const utilities_1 = require("../../utilities");
+const authorization_1 = require("@loopback/authorization");
+const core_1 = require("@loopback/core");
+const intersection_1 = __importDefault(require("lodash/intersection"));
+const isEmpty_1 = __importDefault(require("lodash/isEmpty"));
+const common_1 = require("./common");
+const services_1 = require("./services");
+let AuthorizeProvider = AuthorizeProvider_1 = class AuthorizeProvider {
+    constructor(enforcerService, alwaysAllowRoles, normalizePayloadFn) {
+        this.enforcerService = enforcerService;
+        this.alwaysAllowRoles = alwaysAllowRoles;
+        this.normalizePayloadFn = normalizePayloadFn;
+        this.logger = helpers_1.LoggerFactory.getLogger([AuthorizeProvider_1.name]);
+    }
+    value() {
+        return this.authorize.bind(this);
+    }
+    // -------------------------------------------------------------------------------------------------------------------
+    normalizeEnforcePayload(opts) {
+        var _a, _b, _c;
+        const { subject, object, scope } = opts;
+        return {
+            subject: (subject === null || subject === void 0 ? void 0 : subject.toLowerCase()) || '',
+            object: (_a = scope === null || scope === void 0 ? void 0 : scope.toLowerCase()) !== null && _a !== void 0 ? _a : (_c = (_b = ((object === null || object === void 0 ? void 0 : object.toLowerCase()) || '')) === null || _b === void 0 ? void 0 : _b.replace(/controller/g, '')) === null || _c === void 0 ? void 0 : _c.replace(/.prototype/g, ''),
+            action: common_1.EnforcerDefinitions.ACTION_EXECUTE,
+        };
+    }
+    // -------------------------------------------------------------------------------------------------------------------
+    authorizePermission(userId, object, scopes) {
+        return __awaiter(this, void 0, void 0, function* () {
+            var _a, _b, _c, _d;
+            let isSingleAuthRs = false;
+            let isScopeAuthRs = true;
+            const enforcer = yield this.enforcerService.getTypeEnforcer(userId);
+            if (!enforcer) {
+                this.logger.debug('[authorizePermission] Skip authorization for NULL enforcer!');
+                return false;
+            }
+            const subject = `${common_1.EnforcerDefinitions.PREFIX_USER}_${userId}`;
+            for (const scope of scopes !== null && scopes !== void 0 ? scopes : []) {
+                const enforcePayload = (_b = (_a = this.normalizePayloadFn) === null || _a === void 0 ? void 0 : _a.call(this, { subject, object, scope })) !== null && _b !== void 0 ? _b : this.normalizeEnforcePayload({ subject, object, scope });
+                isScopeAuthRs = yield enforcer.enforce(enforcePayload.subject, enforcePayload.object, enforcePayload.action);
+                this.logger.debug('[authorizePermission] Payload: %j | scopeAuthRs: %s', enforcePayload, isScopeAuthRs);
+                if (!isScopeAuthRs) {
+                    this.logger.debug('[authorizePermission] Permission denied | Payload: %j', enforcePayload);
+                    break;
+                }
+            }
+            if (!isScopeAuthRs) {
+                return isScopeAuthRs;
+            }
+            if (object) {
+                const enforcePayload = (_d = (_c = this.normalizePayloadFn) === null || _c === void 0 ? void 0 : _c.call(this, { subject, object })) !== null && _d !== void 0 ? _d : this.normalizeEnforcePayload({ subject, object });
+                isSingleAuthRs = yield enforcer.enforce(enforcePayload.subject, enforcePayload.object, enforcePayload.action);
+                this.logger.debug('[authorizePermission] Payload: %j | singleAuthRs: %s', enforcePayload, isSingleAuthRs);
+            }
+            return isScopeAuthRs && isSingleAuthRs;
+        });
+    }
+    // -------------------------------------------------------------------------------------------------------------------
+    authorize(context, metadata) {
+        return __awaiter(this, void 0, void 0, function* () {
+            var _a, _b;
+            const t = new Date().getTime();
+            if ((context === null || context === void 0 ? void 0 : context.principals.length) <= 0) {
+                return authorization_1.AuthorizationDecision.DENY;
+            }
+            const { userId, roles: encodedRoles } = context.principals[0];
+            const roleIds = [];
+            const roleIdentifiers = [];
+            const roles = [];
+            for (const encodedRole of encodedRoles) {
+                if (!encodedRole || (0, isEmpty_1.default)(encodedRole)) {
+                    continue;
+                }
+                const { id, identifier } = encodedRole;
+                roleIds.push((0, utilities_1.int)(id));
+                roleIdentifiers.push(identifier);
+                roles.push({ id, identifier });
+            }
+            // DENY all unknown user and unknow roles
+            if (!userId || !(roles === null || roles === void 0 ? void 0 : roles.length)) {
+                return authorization_1.AuthorizationDecision.DENY;
+            }
+            const { resource, allowedRoles = [], scopes, voters } = metadata;
+            const requestResource = resource !== null && resource !== void 0 ? resource : context.resource;
+            // Verify static roles
+            if (((_a = (0, intersection_1.default)(this.alwaysAllowRoles, roleIdentifiers)) === null || _a === void 0 ? void 0 : _a.length) > 0 ||
+                ((_b = (0, intersection_1.default)(allowedRoles, roleIdentifiers)) === null || _b === void 0 ? void 0 : _b.length) > 0) {
+                return authorization_1.AuthorizationDecision.ALLOW;
+            }
+            if (voters && (voters === null || voters === void 0 ? void 0 : voters.length) > 0) {
+                const voterRs = yield Promise.all(voters === null || voters === void 0 ? void 0 : voters.map(el => {
+                    switch (typeof el) {
+                        case 'function': {
+                            return el === null || el === void 0 ? void 0 : el(context, metadata);
+                        }
+                        default: {
+                            throw (0, utilities_1.getError)({
+                                message: '[authorize][voter] voter implementation must be function type!',
+                            });
+                        }
+                    }
+                }));
+                const voterSet = new Set(voterRs);
+                if (voterSet.size === 1 && voterSet.has(authorization_1.AuthorizationDecision.ALLOW)) {
+                    return authorization_1.AuthorizationDecision.ALLOW;
+                }
+                if (voterSet.has(authorization_1.AuthorizationDecision.DENY)) {
+                    return authorization_1.AuthorizationDecision.DENY;
+                }
+            }
+            // Authorize by role and user permissions
+            const isAuthorized = yield this.authorizePermission(userId, requestResource, scopes);
+            const rs = isAuthorized ? authorization_1.AuthorizationDecision.ALLOW : authorization_1.AuthorizationDecision.DENY;
+            this.logger.debug('[authorize] Authorizing... | Resource: %s | allowedRoles: %j | scopes: %j | Took: %d(ms)', requestResource, allowedRoles, scopes, new Date().getTime() - t);
+            return rs;
+        });
+    }
+};
+exports.AuthorizeProvider = AuthorizeProvider;
+exports.AuthorizeProvider = AuthorizeProvider = AuthorizeProvider_1 = __decorate([
+    __param(0, (0, core_1.inject)(common_1.AuthorizerKeys.ENFORCER)),
+    __param(1, (0, core_1.inject)(common_1.AuthorizerKeys.ALWAYS_ALLOW_ROLES)),
+    __param(2, (0, core_1.inject)(common_1.AuthorizerKeys.NORMALIZE_PAYLOAD_FN)),
+    __metadata("design:paramtypes", [services_1.EnforcerService, Array, Function])
+], AuthorizeProvider);
+//# sourceMappingURL=provider.js.map