@mondaydotcomorg/monday-authorization 1.1.9-featuremosheauthorizationesm.3696 → 1.1.9-featureorcomonday-jwt-ts.472

package/dist/esm/testKit/index.d.ts

@@ -1,11 +0,0 @@
-import { Action, BaseRequest, BaseResponse, ContextGetter, Resource, ResourceGetter } from '../types/general';
-import type { NextFunction } from 'express';
-export type TestPermittedAction = {
-    accountId: number;
-    userId: number;
-    resources: Resource[];
-    action: Action;
-};
-export declare const addTestPermittedAction: (accountId: number, userId: number, resources: Resource[], action: Action) => void;
-export declare const clearTestPermittedActions: () => void;
-export declare const getTestAuthorizationMiddleware: (action: Action, resourceGetter: ResourceGetter, contextGetter?: ContextGetter) => (request: BaseRequest, response: BaseResponse, next: NextFunction) => Promise<void>;

package/dist/esm/testKit/index.mjs

@@ -1,44 +0,0 @@
-import { defaultContextGetter } from '../authorization-middleware.mjs';
-import { AuthorizationInternalService } from '../authorization-internal-service.mjs';
-
-let testPermittedActions = [];
-const addTestPermittedAction = (accountId, userId, resources, action) => {
-    testPermittedActions.push({ accountId, userId, resources, action });
-};
-const clearTestPermittedActions = () => {
-    testPermittedActions = [];
-};
-const isActionAuthorized = (accountId, userId, resources, action) => {
-    return {
-        isAuthorized: resources.every(_ => {
-            return testPermittedActions.some(combination => {
-                return (combination.accountId === accountId &&
-                    combination.userId === userId &&
-                    combination.action === action &&
-                    combination.resources.some(combinationResource => {
-                        return resources.some(resource => {
-                            return (combinationResource.id === resource.id &&
-                                combinationResource.type === resource.type &&
-                                JSON.stringify(combinationResource.wrapperData) === JSON.stringify(resource.wrapperData));
-                        });
-                    }));
-            });
-        }),
-    };
-};
-const getTestAuthorizationMiddleware = (action, resourceGetter, contextGetter) => {
-    return async function authorizationMiddleware(request, response, next) {
-        contextGetter ||= defaultContextGetter;
-        const { userId, accountId } = contextGetter(request);
-        const resources = resourceGetter(request);
-        const { isAuthorized } = isActionAuthorized(accountId, userId, resources, action);
-        AuthorizationInternalService.markAuthorized(request);
-        if (!isAuthorized) {
-            response.status(403).json({ message: 'Access denied' });
-            return;
-        }
-        next();
-    };
-};
-
-export { addTestPermittedAction, clearTestPermittedActions, getTestAuthorizationMiddleware };

package/dist/esm/types/authorization-attributes-contracts.d.ts

@@ -1,27 +0,0 @@
-import { Resource } from './general';
-export interface ResourceAttributeAssignment {
-    resourceType: Resource['type'];
-    resourceId: Resource['id'];
-    key: string;
-    value: string;
-}
-export interface ResourceAttributeResponse {
-    attributes: ResourceAttributeAssignment[];
-}
-export interface ResourceAttributeDelete {
-    resourceType: Resource['type'];
-    resourceId: Resource['id'];
-    key: string;
-}
-export declare enum ResourceAttributeOperationEnum {
-    UPSERT = "upsert",
-    DELETE = "delete"
-}
-interface UpsertResourceAttributeOperation extends ResourceAttributeAssignment {
-    operationType: ResourceAttributeOperationEnum.UPSERT;
-}
-interface DeleteResourceAttributeOperation extends ResourceAttributeDelete {
-    operationType: ResourceAttributeOperationEnum.DELETE;
-}
-export type ResourceAttributesOperation = UpsertResourceAttributeOperation | DeleteResourceAttributeOperation;
-export {};

package/dist/esm/types/authorization-attributes-contracts.mjs

@@ -1,7 +0,0 @@
-var ResourceAttributeOperationEnum;
-(function (ResourceAttributeOperationEnum) {
-    ResourceAttributeOperationEnum["UPSERT"] = "upsert";
-    ResourceAttributeOperationEnum["DELETE"] = "delete";
-})(ResourceAttributeOperationEnum || (ResourceAttributeOperationEnum = {}));
-
-export { ResourceAttributeOperationEnum };

package/dist/esm/types/express.mjs

@@ -1 +0,0 @@
-

package/dist/esm/types/general.d.ts

@@ -1,32 +0,0 @@
-import type { Request, Response } from 'express';
-export interface Resource {
-    id?: number;
-    type: string;
-    wrapperData?: object;
-}
-export type Action = string;
-export interface Context {
-    accountId: number;
-    userId: number;
-}
-export interface AuthorizationObject {
-    resource_id?: Resource['id'];
-    resource_type: Resource['type'];
-    wrapper_data?: Resource['wrapperData'];
-    action: Action;
-}
-export interface AuthorizationParams {
-    authorizationObjects: AuthorizationObject[];
-}
-type BasicObject = {
-    [key: string]: string;
-};
-export type BaseParameters = BasicObject;
-export type BaseResponseBody = BasicObject;
-export type BaseBodyParameters = BasicObject;
-export type BaseQueryParameters = BasicObject;
-export type BaseRequest = Request<BaseParameters, BaseResponseBody, BaseBodyParameters, BaseQueryParameters>;
-export type BaseResponse = Response<BaseResponseBody>;
-export type ResourceGetter = (request: BaseRequest) => Resource[];
-export type ContextGetter = (request: BaseRequest) => Context;
-export {};

package/dist/esm/types/general.mjs

@@ -1 +0,0 @@
-

package/dist/esm/types/scoped-actions-contracts.mjs

@@ -1,8 +0,0 @@
-var PermitTechnicalReason;
-(function (PermitTechnicalReason) {
-    PermitTechnicalReason[PermitTechnicalReason["NO_REASON"] = 0] = "NO_REASON";
-    PermitTechnicalReason[PermitTechnicalReason["NOT_ELIGIBLE"] = 1] = "NOT_ELIGIBLE";
-    PermitTechnicalReason[PermitTechnicalReason["BY_ROLE_IN_SCOPE"] = 2] = "BY_ROLE_IN_SCOPE";
-})(PermitTechnicalReason || (PermitTechnicalReason = {}));
-
-export { PermitTechnicalReason };

package/dist/prometheus-service.d.ts

@@ -1,10 +0,0 @@
-import { Action } from './types/general';
-export declare const METRICS: {
-    AUTHORIZATION_CHECK: string;
-    AUTHORIZATION_CHECKS_PER_REQUEST: string;
-    AUTHORIZATION_CHECK_RESPONSE_TIME: string;
-};
-export declare function setPrometheus(customPrometheus: any): void;
-export declare function getMetricsManager(): any;
-export declare function sendAuthorizationChecksPerRequestMetric(responseStatus: any, amountOfAuthorizationObjects: any): void;
-export declare function sendAuthorizationCheckResponseTimeMetric(resourceType: string, action: Action, isAuthorized: boolean, responseStatus: number, time: number): void;

package/dist/testKit/index.d.ts

@@ -1,11 +0,0 @@
-import { Action, BaseRequest, BaseResponse, ContextGetter, Resource, ResourceGetter } from '../types/general';
-import type { NextFunction } from 'express';
-export type TestPermittedAction = {
-    accountId: number;
-    userId: number;
-    resources: Resource[];
-    action: Action;
-};
-export declare const addTestPermittedAction: (accountId: number, userId: number, resources: Resource[], action: Action) => void;
-export declare const clearTestPermittedActions: () => void;
-export declare const getTestAuthorizationMiddleware: (action: Action, resourceGetter: ResourceGetter, contextGetter?: ContextGetter) => (request: BaseRequest, response: BaseResponse, next: NextFunction) => Promise<void>;

package/dist/testKit/index.js

@@ -1,48 +0,0 @@
-Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
-
-const authorizationMiddleware = require('../authorization-middleware.js');
-const authorizationInternalService = require('../authorization-internal-service.js');
-
-let testPermittedActions = [];
-const addTestPermittedAction = (accountId, userId, resources, action) => {
-    testPermittedActions.push({ accountId, userId, resources, action });
-};
-const clearTestPermittedActions = () => {
-    testPermittedActions = [];
-};
-const isActionAuthorized = (accountId, userId, resources, action) => {
-    return {
-        isAuthorized: resources.every(_ => {
-            return testPermittedActions.some(combination => {
-                return (combination.accountId === accountId &&
-                    combination.userId === userId &&
-                    combination.action === action &&
-                    combination.resources.some(combinationResource => {
-                        return resources.some(resource => {
-                            return (combinationResource.id === resource.id &&
-                                combinationResource.type === resource.type &&
-                                JSON.stringify(combinationResource.wrapperData) === JSON.stringify(resource.wrapperData));
-                        });
-                    }));
-            });
-        }),
-    };
-};
-const getTestAuthorizationMiddleware = (action, resourceGetter, contextGetter) => {
-    return async function authorizationMiddleware$1(request, response, next) {
-        contextGetter ||= authorizationMiddleware.defaultContextGetter;
-        const { userId, accountId } = contextGetter(request);
-        const resources = resourceGetter(request);
-        const { isAuthorized } = isActionAuthorized(accountId, userId, resources, action);
-        authorizationInternalService.AuthorizationInternalService.markAuthorized(request);
-        if (!isAuthorized) {
-            response.status(403).json({ message: 'Access denied' });
-            return;
-        }
-        next();
-    };
-};
-
-exports.addTestPermittedAction = addTestPermittedAction;
-exports.clearTestPermittedActions = clearTestPermittedActions;
-exports.getTestAuthorizationMiddleware = getTestAuthorizationMiddleware;

package/dist/types/authorization-attributes-contracts.d.ts

@@ -1,27 +0,0 @@
-import { Resource } from './general';
-export interface ResourceAttributeAssignment {
-    resourceType: Resource['type'];
-    resourceId: Resource['id'];
-    key: string;
-    value: string;
-}
-export interface ResourceAttributeResponse {
-    attributes: ResourceAttributeAssignment[];
-}
-export interface ResourceAttributeDelete {
-    resourceType: Resource['type'];
-    resourceId: Resource['id'];
-    key: string;
-}
-export declare enum ResourceAttributeOperationEnum {
-    UPSERT = "upsert",
-    DELETE = "delete"
-}
-interface UpsertResourceAttributeOperation extends ResourceAttributeAssignment {
-    operationType: ResourceAttributeOperationEnum.UPSERT;
-}
-interface DeleteResourceAttributeOperation extends ResourceAttributeDelete {
-    operationType: ResourceAttributeOperationEnum.DELETE;
-}
-export type ResourceAttributesOperation = UpsertResourceAttributeOperation | DeleteResourceAttributeOperation;
-export {};

package/dist/types/authorization-attributes-contracts.js

@@ -1,7 +0,0 @@
-Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
-
-exports.ResourceAttributeOperationEnum = void 0;
-(function (ResourceAttributeOperationEnum) {
-    ResourceAttributeOperationEnum["UPSERT"] = "upsert";
-    ResourceAttributeOperationEnum["DELETE"] = "delete";
-})(exports.ResourceAttributeOperationEnum || (exports.ResourceAttributeOperationEnum = {}));

package/dist/types/express.d.ts

@@ -1,10 +0,0 @@
-declare namespace Express {
-    interface Request {
-        payload: {
-            accountId: number;
-            userId: number;
-        };
-        authorizationCheckPerformed: boolean;
-        authorizationSkipPerformed: boolean;
-    }
-}

package/dist/types/express.js

@@ -1 +0,0 @@
-

package/dist/types/general.js

@@ -1 +0,0 @@
-

package/dist/types/scoped-actions-contracts.d.ts

@@ -1,38 +0,0 @@
-export interface WorkspaceScope {
-    workspaceId: number;
-}
-export interface BoardScope {
-    boardId: number;
-}
-export interface PulseScope {
-    pulseId: number;
-}
-export interface AccountProductScope {
-    accountProductId: number;
-}
-export interface AccountScope {
-    accountId: number;
-}
-export type ScopeOptions = WorkspaceScope | BoardScope | PulseScope | AccountProductScope | AccountScope;
-export interface Translation {
-    key: string;
-    [option: string]: string;
-}
-export declare enum PermitTechnicalReason {
-    NO_REASON = 0,
-    NOT_ELIGIBLE = 1,
-    BY_ROLE_IN_SCOPE = 2
-}
-export interface ScopedActionPermit {
-    can: boolean;
-    reason: Translation;
-    technicalReason: PermitTechnicalReason;
-}
-export interface ScopedAction {
-    action: string;
-    scope: ScopeOptions;
-}
-export interface ScopedActionResponseObject {
-    scopedAction: ScopedAction;
-    permit: ScopedActionPermit;
-}