@mondaydotcomorg/monday-authorization 1.2.9 → 1.2.11

package/CHANGELOG.md

@@ -5,6 +5,11 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](http://keepachangelog.com/)
 and this project adheres to [Semantic Versioning](http://semver.org/).
 
+## [1.2.9] - 2024-10-06
+### Added
+- [`authz/bashanye/add-async-resource-attributes-support`](https://github.com/DaPulse/monday-npm-packages/pull/6859)
+  - `AuthorizationAttributesService` - now supports async upsert and delete - requests sent through SNS-SQS).
+
 ## [1.2.3] - 2024-06-10
 ### Added
 

package/README.md

@@ -138,7 +138,10 @@ const canActionInScopeMultipleResponse: ScopedActionResponseObject[] =
 ```
 
 ### Authorization Attributes API
+Authorization attributes have 2 options to get called: sync (http request) and async (send to SNS and consumed asynchronously).  
+When you have to make sure the change in the attributes applied before the function return, please use the sync method, otherwise use the async 
 
+#### Sync method
 Use `AuthorizationAttributesService.upsertResourceAttributesSync` to upsert multiple resource attributes in the authorization MS synchronously.
 
 ```ts
@@ -168,3 +171,25 @@ const attributeKeys: string[] = ['is_default_workspace', 'workspace_kind'];
 const response: ResourceAttributeResponse = await AuthorizationAttributesService.deleteResourceAttributesSync(accountId, userId, resource, attributeKeys);
 ```
 
+#### Async method
+use `AuthorizationAttributesService.updateResourceAttributesAsync` to upsert or delete multiple resource attributes at once.
+
+```ts
+import { AuthorizationAttributesService, ResourceAttributeAssignment, ResourceAttributeResponse } from '@mondaydotcomorg/monday-authorization';
+
+const accountId = 739630;
+const appName =  process.env.APP_NAME;
+const callerActionIdentifier = "actions_v2";
+const resourceAttributeOperations: ResourceAttributesOperation[] = [
+  { operationType: 'upsert', resourceId: 18, resourceType: 'workspace', key: 'is_default_workspace', value: 'true' },
+  { operationType: 'delete', resourceId: 23, resourceType: 'board', key: 'board_kind' }
+];
+
+const response: ResourceAttributeResponse = await AuthorizationAttributesService.updateResourceAttributesAsync(accountId, appName, callerActionIdentifier, resourceAttributeOperations);
+```
+
+Special notes for asynchronous operations:
+1. There is no guarantee about the order of the updates, so don't do multiple operations on the same key in the same resource.
+2. To update an existing key, just use upsert operation, it'll override previous value.
+3. Requests with a lot of operations might split to chunks that will be consumed either sequence or in parallel, so there might be a timeframe where some of the operations already applied and some not. Eventually all of them will be applied.
+4. If your MS depends on the access to the asynchronous operation, you can use a health check operation `asyncResourceAttributesHealthCheck` that will return false if it can't reach to SNS or can't find the required topic. Note it doesn't check write permissions so make sure your MS have permissions to write to the SNS topic.

package/dist/lib/authorization-attributes-service.d.ts

@@ -1,6 +1,7 @@
-import { ResourceAttributeAssignment, ResourceAttributeResponse } from './types/authorization-attributes-contracts';
+import { ResourceAttributeAssignment, ResourceAttributeResponse, ResourceAttributesOperation } from './types/authorization-attributes-contracts';
 import { Resource } from './types/general';
 export declare class AuthorizationAttributesService {
+    private static LOG_TAG;
     /**
      * Upsert resource attributes synchronously, performing http call to the authorization MS to assign the given attributes to the given resource.
      * @param accountId
@@ -19,5 +20,25 @@ export declare class AuthorizationAttributesService {
      * @returns ResourceAttributeResponse - The affected (deleted) resource attributes assignments in the `attributes` field.
      */
     static deleteResourceAttributes(accountId: number, userId: number, resource: Resource, attributeKeys: string[]): Promise<ResourceAttributeResponse>;
+    /**
+     *  Async function, this function only send the updates request to SNS and return before the change actually took place
+     * @param accountId
+     * @param appName - App name of the calling app
+     * @param callerActionIdentifier - action identifier
+     * @param resourceAttributeOperations - Array of operations to do on resource attributes.
+     * @return {Promise<ResourceAttributesOperation[]>} Array of sent operations
+     *  */
+    static updateResourceAttributesAsync(accountId: number, appName: string, callerActionIdentifier: string, resourceAttributeOperations: ResourceAttributesOperation[]): Promise<ResourceAttributesOperation[]>;
+    private static sendSingleSnsMessage;
+    private static getSnsTopicArn;
     private static getResourceAttributesUrl;
+    /**
+     * Checks we can contact the required SNS topic that used to send attribute updates to Authorization MS.
+     * This function can be used as health check for services that updating resource attributes in async is crucial.
+     * Note this function only verify the POD can contact AWS SDK and the topic exists, but the user still might get
+     * errors when pushing for the SNS (e.g: in case the AWS role of the POD don't have permissions to push messages).
+     * However, this is the best we can do without actually push dummy messages to the SNS.
+     * @return {Promise<boolean>} - true if succeeded
+     */
+    static asyncResourceAttributesHealthCheck(): Promise<boolean>;
 }

package/dist/lib/authorization-attributes-service.js

@@ -8,11 +8,18 @@ var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, ge
         step((generator = generator.apply(thisArg, _arguments || [])).next());
     });
 };
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthorizationAttributesService = void 0;
+const chunk_1 = __importDefault(require("lodash/chunk"));
 const monday_fetch_1 = require("@mondaydotcomorg/monday-fetch");
 const authorization_internal_service_1 = require("./authorization-internal-service");
 const attributions_service_1 = require("./attributions-service");
+const trident_backend_api_1 = require("@mondaydotcomorg/trident-backend-api");
+const monday_sns_1 = require("@mondaydotcomorg/monday-sns");
+const sns_1 = require("./constants/sns");
 class AuthorizationAttributesService {
     /**
      * Upsert resource attributes synchronously, performing http call to the authorization MS to assign the given attributes to the given resource.
@@ -61,9 +68,88 @@ class AuthorizationAttributesService {
             return { attributes: responseBody['attributes'] };
         });
     }
+    /**
+     *  Async function, this function only send the updates request to SNS and return before the change actually took place
+     * @param accountId
+     * @param appName - App name of the calling app
+     * @param callerActionIdentifier - action identifier
+     * @param resourceAttributeOperations - Array of operations to do on resource attributes.
+     * @return {Promise<ResourceAttributesOperation[]>} Array of sent operations
+     *  */
+    static updateResourceAttributesAsync(accountId, appName, callerActionIdentifier, resourceAttributeOperations) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const topicArn = this.getSnsTopicArn();
+            const sendToSnsPromises = [];
+            const operationChucks = (0, chunk_1.default)(resourceAttributeOperations, sns_1.ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE);
+            for (const operationsChunk of operationChucks) {
+                sendToSnsPromises.push(this.sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk));
+            }
+            return (yield Promise.all(sendToSnsPromises)).flat();
+        });
+    }
+    static sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operations) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const payload = {
+                kind: sns_1.RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND,
+                payload: {
+                    accountId: accountId,
+                    callerAppName: appName,
+                    callerActionIdentifier: callerActionIdentifier,
+                    operations: operations,
+                }
+            };
+            try {
+                yield (0, monday_sns_1.sendToSns)(payload, topicArn);
+                return operations;
+            }
+            catch (error) {
+                authorization_internal_service_1.logger.error({ error, tag: this.LOG_TAG }, "Authorization resource attributes async update: failed to send operations to SNS");
+                return [];
+            }
+        });
+    }
+    static getSnsTopicArn() {
+        var _a;
+        const arnFromApi = (_a = trident_backend_api_1.Api.getPart('configurationVariables')) === null || _a === void 0 ? void 0 : _a.get(sns_1.RESOURCE_ATTRIBUTES_SNS_ARN_SECRET_NAME).arn;
+        if (arnFromApi) {
+            return arnFromApi;
+        }
+        const jsonArnFromEnv = process.env[sns_1.RESOURCE_ATTRIBUTES_SNS_ARN_SECRET_NAME];
+        const arnFromEnv = JSON.parse(jsonArnFromEnv).arn;
+        if (arnFromEnv) {
+            return arnFromEnv;
+        }
+        throw new Error('Unable to get sns topic arn from env variable');
+    }
     static getResourceAttributesUrl(accountId) {
         return `${process.env.AUTHORIZATION_URL}/attributes/${accountId}/resource`;
     }
+    /**
+     * Checks we can contact the required SNS topic that used to send attribute updates to Authorization MS.
+     * This function can be used as health check for services that updating resource attributes in async is crucial.
+     * Note this function only verify the POD can contact AWS SDK and the topic exists, but the user still might get
+     * errors when pushing for the SNS (e.g: in case the AWS role of the POD don't have permissions to push messages).
+     * However, this is the best we can do without actually push dummy messages to the SNS.
+     * @return {Promise<boolean>} - true if succeeded
+     */
+    static asyncResourceAttributesHealthCheck() {
+        return __awaiter(this, void 0, void 0, function* () {
+            try {
+                const requestedTopicArn = this.getSnsTopicArn();
+                const attributes = yield (0, monday_sns_1.getTopicAttributes)(requestedTopicArn);
+                const isHealthy = !(!attributes || !("TopicArn" in attributes) || attributes.TopicArn !== requestedTopicArn);
+                if (!isHealthy) {
+                    authorization_internal_service_1.logger.error({ requestedTopicArn, snsReturnedAttributes: attributes, tag: this.LOG_TAG }, "authorization-attributes-service failed in health check");
+                }
+                return isHealthy;
+            }
+            catch (error) {
+                authorization_internal_service_1.logger.error({ error, tag: this.LOG_TAG }, "authorization-attributes-service got error during health check");
+                return false;
+            }
+        });
+    }
 }
 exports.AuthorizationAttributesService = AuthorizationAttributesService;
+AuthorizationAttributesService.LOG_TAG = "authorization_attributes";
 //# sourceMappingURL=authorization-attributes-service.js.map

package/dist/lib/authorization-attributes-service.js.map

@@ -1 +1 @@
-{"version":3,"file":"authorization-attributes-service.js","sourceRoot":"","sources":["../../lib/authorization-attributes-service.ts"],"names":[],"mappings":";;;;;;;;;;;;AAEA,gEAAsD;AACtD,qFAAgF;AAChF,iEAAgE;AAEhE,MAAa,8BAA8B;IACzC;;;;;;;OAOG;IACH,MAAM,CAAO,wBAAwB,CACnC,SAAiB,EACjB,MAAc,EACd,4BAA2D;;YAE3D,MAAM,iBAAiB,GAAG,6DAA4B,CAAC,yBAAyB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACpG,MAAM,kBAAkB,GAAG,IAAA,6CAAsB,GAAE,CAAC;YACpD,MAAM,QAAQ,GAAG,MAAM,IAAA,oBAAK,EAC1B,IAAI,CAAC,wBAAwB,CAAC,SAAS,CAAC,EACxC;gBACE,MAAM,EAAE,MAAM;gBACd,OAAO,kBACL,aAAa,EAAE,iBAAiB,EAChC,cAAc,EAAE,kBAAkB,IAC/B,kBAAkB,CACtB;gBACD,OAAO,EAAE,6DAA4B,CAAC,iBAAiB,EAAE;gBACzD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,4BAA4B,EAAE,CAAC;aACvD,EACD,6DAA4B,CAAC,sBAAsB,EAAE,CACtD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAC3C,6DAA4B,CAAC,wBAAwB,CAAC,QAAQ,EAAE,8BAA8B,CAAC,CAAC;YAEhG,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC,YAAY,CAAC,EAAE,CAAC;QACpD,CAAC;KAAA;IAED;;;;;;;OAOG;IACH,MAAM,CAAO,wBAAwB,CACnC,SAAiB,EACjB,MAAc,EACd,QAAkB,EAClB,aAAuB;;YAEvB,MAAM,iBAAiB,GAAG,6DAA4B,CAAC,yBAAyB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACpG,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,wBAAwB,CAAC,SAAS,CAAC,IAAI,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAC1F,MAAM,kBAAkB,GAAG,IAAA,6CAAsB,GAAE,CAAC;YACpD,MAAM,QAAQ,GAAG,MAAM,IAAA,oBAAK,EAC1B,GAAG,EACH;gBACE,MAAM,EAAE,QAAQ;gBAChB,OAAO,kBACL,aAAa,EAAE,iBAAiB,EAChC,cAAc,EAAE,kBAAkB,IAC/B,kBAAkB,CACtB;gBACD,OAAO,EAAE,6DAA4B,CAAC,iBAAiB,EAAE;gBACzD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC;aAC9C,EACD,6DAA4B,CAAC,sBAAsB,EAAE,CACtD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAC3C,6DAA4B,CAAC,wBAAwB,CAAC,QAAQ,EAAE,8BAA8B,CAAC,CAAC;YAEhG,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC,YAAY,CAAC,EAAE,CAAC;QACpD,CAAC;KAAA;IAEO,MAAM,CAAC,wBAAwB,CAAC,SAAiB;QACvD,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,eAAe,SAAS,WAAW,CAAC;IAC7E,CAAC;CACF;AA9ED,wEA8EC"}
+{"version":3,"file":"authorization-attributes-service.js","sourceRoot":"","sources":["../../lib/authorization-attributes-service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,yDAAiC;AAOjC,gEAAsD;AACtD,qFAAwF;AACxF,iEAAgE;AAChE,8EAA2D;AAC3D,4DAA4E;AAE5E,yCAIyB;AAEzB,MAAa,8BAA8B;IAEzC;;;;;;;OAOG;IACH,MAAM,CAAO,wBAAwB,CACnC,SAAiB,EACjB,MAAc,EACd,4BAA2D;;YAE3D,MAAM,iBAAiB,GAAG,6DAA4B,CAAC,yBAAyB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACpG,MAAM,kBAAkB,GAAG,IAAA,6CAAsB,GAAE,CAAC;YACpD,MAAM,QAAQ,GAAG,MAAM,IAAA,oBAAK,EAC1B,IAAI,CAAC,wBAAwB,CAAC,SAAS,CAAC,EACxC;gBACE,MAAM,EAAE,MAAM;gBACd,OAAO,kBACL,aAAa,EAAE,iBAAiB,EAChC,cAAc,EAAE,kBAAkB,IAC/B,kBAAkB,CACtB;gBACD,OAAO,EAAE,6DAA4B,CAAC,iBAAiB,EAAE;gBACzD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,4BAA4B,EAAE,CAAC;aACvD,EACD,6DAA4B,CAAC,sBAAsB,EAAE,CACtD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAC3C,6DAA4B,CAAC,wBAAwB,CAAC,QAAQ,EAAE,8BAA8B,CAAC,CAAC;YAEhG,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC,YAAY,CAAC,EAAE,CAAC;QACpD,CAAC;KAAA;IAED;;;;;;;OAOG;IACH,MAAM,CAAO,wBAAwB,CACnC,SAAiB,EACjB,MAAc,EACd,QAAkB,EAClB,aAAuB;;YAEvB,MAAM,iBAAiB,GAAG,6DAA4B,CAAC,yBAAyB,CAAC,SAAS,EAAE,MAAM,CAAC,CAAC;YACpG,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,wBAAwB,CAAC,SAAS,CAAC,IAAI,QAAQ,CAAC,IAAI,IAAI,QAAQ,CAAC,EAAE,EAAE,CAAC;YAC1F,MAAM,kBAAkB,GAAG,IAAA,6CAAsB,GAAE,CAAC;YACpD,MAAM,QAAQ,GAAG,MAAM,IAAA,oBAAK,EAC1B,GAAG,EACH;gBACE,MAAM,EAAE,QAAQ;gBAChB,OAAO,kBACL,aAAa,EAAE,iBAAiB,EAChC,cAAc,EAAE,kBAAkB,IAC/B,kBAAkB,CACtB;gBACD,OAAO,EAAE,6DAA4B,CAAC,iBAAiB,EAAE;gBACzD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC;aAC9C,EACD,6DAA4B,CAAC,sBAAsB,EAAE,CACtD,CAAC;YAEF,MAAM,YAAY,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAC3C,6DAA4B,CAAC,wBAAwB,CAAC,QAAQ,EAAE,8BAA8B,CAAC,CAAC;YAEhG,OAAO,EAAE,UAAU,EAAE,YAAY,CAAC,YAAY,CAAC,EAAE,CAAC;QACpD,CAAC;KAAA;IAED;;;;;;;UAOM;IACN,MAAM,CAAO,6BAA6B,CAAC,SAAiB,EAAE,OAAe,EAAE,sBAA8B,EAClE,2BAA0D;;YACnG,MAAM,QAAQ,GAAW,IAAI,CAAC,cAAc,EAAE,CAAC;YAC/C,MAAM,iBAAiB,GAA6C,EAAE,CAAC;YACvE,MAAM,eAAe,GAAG,IAAA,eAAK,EAAC,2BAA2B,EAAE,0DAAoD,CAAC,CAAC;YACjH,KAAK,MAAM,eAAe,IAAI,eAAe,EAAE,CAAC;gBAC9C,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,oBAAoB,CAAC,QAAQ,EAAE,SAAS,EAAE,OAAO,EAAE,sBAAsB,EAAE,eAAe,CAAC,CAAC,CAAC;YAC3H,CAAC;YACD,OAAO,CAAC,MAAM,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC,CAAC,IAAI,EAAE,CAAA;QACtD,CAAC;KAAA;IAEO,MAAM,CAAO,oBAAoB,CAAC,QAAgB,EAAE,SAAiB,EAAE,OAAe,EAAE,sBAA8B,EAAE,UAAyC;;YAEvK,MAAM,OAAO,GAAG;gBACd,IAAI,EAAE,2DAAqD;gBAC3D,OAAO,EAAE;oBACP,SAAS,EAAE,SAAS;oBACpB,aAAa,EAAE,OAAO;oBACtB,sBAAsB,EAAE,sBAAsB;oBAC9C,UAAU,EAAE,UAAU;iBACvB;aACF,CAAA;YACD,IAAI,CAAC;gBACH,MAAM,IAAA,sBAAS,EAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;gBACnC,OAAO,UAAU,CAAC;YACpB,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,uCAAM,CAAC,KAAK,CAAC,EAAC,KAAK,EAAE,GAAG,EAAE,IAAI,CAAC,OAAO,EAAC,EAAE,kFAAkF,CAAC,CAAA;gBAC5H,OAAO,EAAE,CAAC;YACZ,CAAC;QACH,CAAC;KAAA;IAEO,MAAM,CAAC,cAAc;;QAC3B,MAAM,UAAU,GAAuB,MAAA,yBAAG,CAAC,OAAO,CAAC,wBAAwB,CAAC,0CAAE,GAAG,CAAC,6CAAuC,EAAE,GAAG,CAAA;QAC9H,IAAI,UAAU,EAAE,CAAC;YACf,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,MAAM,cAAc,GAAW,OAAO,CAAC,GAAG,CAAC,6CAAuC,CAAE,CAAC;QACrF,MAAM,UAAU,GAAuB,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,GAAG,CAAC;QACtE,IAAI,UAAU,EAAE,CAAC;YACf,OAAO,UAAU,CAAC;QACpB,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;IACnE,CAAC;IAEO,MAAM,CAAC,wBAAwB,CAAC,SAAiB;QACvD,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,iBAAiB,eAAe,SAAS,WAAW,CAAC;IAC7E,CAAC;IAED;;;;;;;OAOG;IACH,MAAM,CAAO,kCAAkC;;YAC7C,IAAI,CAAC;gBACH,MAAM,iBAAiB,GAAW,IAAI,CAAC,cAAc,EAAE,CAAC;gBACxD,MAAM,UAAU,GAAuB,MAAM,IAAA,+BAAkB,EAAC,iBAAiB,CAAC,CAAC;gBACnF,MAAM,SAAS,GAAG,CAAC,CAAC,CAAC,UAAU,IAAI,CAAC,CAAC,UAAU,IAAI,UAAU,CAAC,IAAI,UAAU,CAAC,QAAQ,KAAK,iBAAiB,CAAC,CAAC;gBAC7G,IAAI,CAAC,SAAS,EAAE,CAAC;oBACf,uCAAM,CAAC,KAAK,CAAC,EAAC,iBAAiB,EAAE,qBAAqB,EAAE,UAAU,EAAE,GAAG,EAAE,IAAI,CAAC,OAAO,EAAC,EACpF,yDAAyD,CAAC,CAAA;gBAC9D,CAAC;gBACD,OAAO,SAAS,CAAA;YAClB,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,uCAAM,CAAC,KAAK,CAAC,EAAC,KAAK,EAAE,GAAG,EAAE,IAAI,CAAC,OAAO,EAAC,EACrC,gEAAgE,CAAC,CAAA;gBACnE,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;KAAA;;AA3JH,wEA4JC;AA3JgB,sCAAO,GAAG,0BAA0B,CAAA"}

package/dist/lib/constants/sns.d.ts

@@ -0,0 +1,3 @@
+export declare const RESOURCE_ATTRIBUTES_SNS_ARN_SECRET_NAME = "AUTHORIZATION_RESOURCE_ATTRIBUTES_SNS_TOPIC";
+export declare const RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = "resourceAttributeModification";
+export declare const ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;

package/dist/lib/constants/sns.js

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = exports.RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = exports.RESOURCE_ATTRIBUTES_SNS_ARN_SECRET_NAME = void 0;
+exports.RESOURCE_ATTRIBUTES_SNS_ARN_SECRET_NAME = 'AUTHORIZATION_RESOURCE_ATTRIBUTES_SNS_TOPIC';
+exports.RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = 'resourceAttributeModification';
+exports.ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;
+//# sourceMappingURL=sns.js.map

package/dist/lib/constants/sns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sns.js","sourceRoot":"","sources":["../../../lib/constants/sns.ts"],"names":[],"mappings":";;;AAAa,QAAA,uCAAuC,GAAG,6CAA6C,CAAA;AACvF,QAAA,qDAAqD,GAAG,+BAA+B,CAAC;AACxF,QAAA,oDAAoD,GAAG,GAAG,CAAC"}

package/dist/lib/types/authorization-attributes-contracts.d.ts

@@ -8,3 +8,20 @@ export interface ResourceAttributeAssignment {
 export interface ResourceAttributeResponse {
     attributes: ResourceAttributeAssignment[];
 }
+export interface ResourceAttributeDelete {
+    resourceType: Resource['type'];
+    resourceId: Resource['id'];
+    key: string;
+}
+export declare enum ResourceAttributeOperationEnum {
+    UPSERT = "upsert",
+    DELETE = "delete"
+}
+interface UpsertResourceAttributeOperation extends ResourceAttributeAssignment {
+    operationType: ResourceAttributeOperationEnum.UPSERT;
+}
+interface DeleteResourceAttributeOperation extends ResourceAttributeDelete {
+    operationType: ResourceAttributeOperationEnum.DELETE;
+}
+export type ResourceAttributesOperation = UpsertResourceAttributeOperation | DeleteResourceAttributeOperation;
+export {};

package/dist/lib/types/authorization-attributes-contracts.js

@@ -1,3 +1,9 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
+exports.ResourceAttributeOperationEnum = void 0;
+var ResourceAttributeOperationEnum;
+(function (ResourceAttributeOperationEnum) {
+    ResourceAttributeOperationEnum["UPSERT"] = "upsert";
+    ResourceAttributeOperationEnum["DELETE"] = "delete";
+})(ResourceAttributeOperationEnum || (exports.ResourceAttributeOperationEnum = ResourceAttributeOperationEnum = {}));
 //# sourceMappingURL=authorization-attributes-contracts.js.map

package/dist/lib/types/authorization-attributes-contracts.js.map

@@ -1 +1 @@
-{"version":3,"file":"authorization-attributes-contracts.js","sourceRoot":"","sources":["../../../lib/types/authorization-attributes-contracts.ts"],"names":[],"mappings":""}
+{"version":3,"file":"authorization-attributes-contracts.js","sourceRoot":"","sources":["../../../lib/types/authorization-attributes-contracts.ts"],"names":[],"mappings":";;;AAoBA,IAAY,8BAGX;AAHD,WAAY,8BAA8B;IACxC,mDAAiB,CAAA;IACjB,mDAAiB,CAAA;AACnB,CAAC,EAHW,8BAA8B,8CAA9B,8BAA8B,QAGzC"}

package/dist/tsconfig.tsbuildinfo

@@ -1 +1 @@
-{"root":["../index.ts","../lib/attributions-service.ts","../lib/authorization-attributes-service.ts","../lib/authorization-internal-service.ts","../lib/authorization-middleware.ts","../lib/authorization-service.ts","../lib/prometheus-service.ts","../lib/testKit/index.ts","../lib/types/authorization-attributes-contracts.ts","../lib/types/express.ts","../lib/types/general.ts","../lib/types/scoped-actions-contracts.ts"],"version":"5.6.2"}
+{"root":["../index.ts","../lib/attributions-service.ts","../lib/authorization-attributes-service.ts","../lib/authorization-internal-service.ts","../lib/authorization-middleware.ts","../lib/authorization-service.ts","../lib/prometheus-service.ts","../lib/constants/sns.ts","../lib/testKit/index.ts","../lib/types/authorization-attributes-contracts.ts","../lib/types/express.ts","../lib/types/general.ts","../lib/types/scoped-actions-contracts.ts"],"version":"5.6.3"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@mondaydotcomorg/monday-authorization",
-  "version": "1.2.9",
+  "version": "1.2.11",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "license": "BSD-3-Clause",
@@ -29,7 +29,10 @@
     "@mondaydotcomorg/monday-fetch": "^0.0.7",
     "@mondaydotcomorg/monday-jwt": "^3.0.14",
     "@mondaydotcomorg/monday-logger": "^4.0.11",
+    "@mondaydotcomorg/monday-sns": "^1.0.6",
     "@mondaydotcomorg/trident-backend-api": "^0.23.10",
+    "@types/lodash": "^4.17.10",
+    "lodash": "^4.17.21",
     "node-fetch": "^2.6.7",
     "on-headers": "^1.0.2",
     "ts-node": "^10.0.0"
@@ -53,5 +56,5 @@
   "files": [
     "dist/"
   ],
-  "gitHead": "8085d4ad6f7dc73997b7b73a03bb1460b93ceffc"
+  "gitHead": "4db8fcacd3fe976b0e3fbc8e76d556f20f757d41"
 }