@mondaydotcomorg/monday-authorization 3.3.1-feature-bashanye-add-membership-create-delete-api-d00c165 → 3.3.1-fix-use-standard-env-var-for-metric-server-host-bd2a88a

package/README.md

@@ -25,7 +25,7 @@ import * as MondayAuthorization from '@mondaydotcomorg/monday-authorization';
 
 ...
 
-await MondayAuthorization.init({
+MondayAuthorization.init({
   prometheus: getPrometheus(),
   metrics: {
     serviceName: process.env.APP_NAME,
@@ -39,7 +39,9 @@ startServer(...)
 **Recommended** - optionally init authorization with redisClient so the granted feature results will be cached and reduce http calls.
 
 - grantedFeatureRedisExpirationInSeconds - (optional), redis TTL for cached granted features, default set to 5 minutes
-- metrics - (optional), configure internal DataDog/observability integration. Defaults to `process.env.APP_NAME` as the service name, uses the standard StatsD endpoint (`localhost:8125`) when host/port are not provided, and disables emission automatically in test/development environments (override with `disabled`).
+- metrics - (optional), configure internal DataDog/observability integration. Provide either:
+  - `metrics.client` with a pre-initialized StatsD client that exposes `distribution` and `increment`.
+  - Or the config fields (`serviceName`, `host`, `port`, `disabled`) to let the SDK initialize `@mondaydotcomorg/monday-observability-kit` for you. Defaults to `process.env.APP_NAME` as the service name, uses the standard StatsD endpoint (`localhost:8125`) when host/port are not provided, and disables emission automatically in test/development environments (override with `disabled`).
 
 ### Metrics & Observability
 
@@ -402,129 +404,6 @@ interface RolesResponse {
 }
 ```
 
-### Memberships API
-
-The Memberships API allows you to manage memberships (role assignments) for entities on resources. Use `MembershipsService` to create/update and delete memberships synchronously.
-
-Important note: there is no validations for the user that create/delete memberships on authorization side.
-It's on the caller responsibility to validate the user have the right permission to change these memberships.
-
-#### Create/Update Memberships
-
-Use `MembershipsService.upsertMemberships` to create or update memberships synchronously:
-
-```ts
-import { MembershipsService, MembershipForCreate } from '@mondaydotcomorg/monday-authorization';
-
-const membershipsService = new MembershipsService();
-const accountId = 739630;
-const memberships: MembershipForCreate[] = [
-  {
-    entityId: 123,
-    entityType: 'user',
-    resourceId: 456,
-    resourceType: 'workspace',
-    roleId: 5,
-    roleType: 'basic',
-    addedById: 789,
-  },
-];
-
-const response = await membershipsService.upsertMemberships(accountId, memberships);
-// Returns: { memberships: Membership[] }
-```
-
-**Parameters:**
-
-- `accountId` - The account ID
-- `memberships` - Array of `MembershipForCreate` objects
-
-#### Delete Memberships
-
-Use `MembershipsService.deleteMemberships` to delete memberships synchronously:
-
-```ts
-import { MembershipsService, MembershipForDelete } from '@mondaydotcomorg/monday-authorization';
-
-const membershipsService = new MembershipsService();
-const accountId = 739630;
-const memberships: MembershipForDelete[] = [
-  {
-    entityId: 123,
-    entityType: 'user',
-    resourceId: 456,
-    resourceType: 'workspace',
-  },
-];
-
-const response = await membershipsService.deleteMemberships(accountId, memberships);
-// Returns: { memberships: Membership[] }
-```
-
-**Parameters:**
-
-- `accountId` - The account ID
-- `memberships` - Array of `MembershipForDelete` objects
-
-#### Types
-
-The following types are available for working with memberships:
-
-```ts
-import {
-  MembershipForCreate,
-  MembershipForDelete,
-  Membership,
-  MembershipCreateResponse,
-  MembershipDeleteResponse,
-} from '@mondaydotcomorg/monday-authorization';
-
-// MembershipForCreate interface
-interface MembershipForCreate {
-  entityId: number;
-  entityType: string;
-  resourceId: number;
-  resourceType: string;
-  roleId: number;
-  roleType?: string;
-  addedById: number;
-}
-
-// MembershipForDelete interface
-interface MembershipForDelete {
-  entityId?: number;
-  entityType: string;
-  resourceId?: number;
-  resourceType: string;
-}
-
-// Membership interface
-interface Membership {
-  id: number;
-  entityId: number;
-  entityType: string;
-  resourceId: number;
-  resourceType: string;
-  roleId: number;
-  roleType: string;
-  addedById: null | number | undefined;
-  hops: number;
-  isNewRecord: boolean;
-  previousValues: Partial<Membership>;
-  walVersion: number | null | undefined;
-}
-
-// MembershipCreateResponse interface
-interface MembershipCreateResponse {
-  memberships: Membership[];
-}
-
-// MembershipDeleteResponse interface
-interface MembershipDeleteResponse {
-  memberships: Membership[];
-}
-```
-
 ## Development
 
 ### Local Development and Testing

package/dist/authorization-service.js

@@ -133,7 +133,7 @@ class AuthorizationService {
             const { resourceType } = utils_authorization_utils.scopeToResource(scope);
             const isAuthorized = obj.permit.can;
             prometheusService.sendAuthorizationCheckResponseTimeMetric(resourceType, action, isAuthorized, 200, time);
-            metricsService.recordAuthorizationTiming(apiType, time, 'canActionInScopeMultiple');
+            metricsService.recordAuthorizationTiming(apiType, time);
         }
         return scopedActionResponseObjects;
     }

package/dist/esm/authorization-service.mjs

@@ -131,7 +131,7 @@ class AuthorizationService {
             const { resourceType } = scopeToResource(scope);
             const isAuthorized = obj.permit.can;
             sendAuthorizationCheckResponseTimeMetric(resourceType, action, isAuthorized, 200, time);
-            recordAuthorizationTiming(apiType, time, 'canActionInScopeMultiple');
+            recordAuthorizationTiming(apiType, time);
         }
         return scopedActionResponseObjects;
     }

package/dist/esm/index.d.ts

@@ -1,23 +1,25 @@
 import { MondayFetchOptions } from '@mondaydotcomorg/monday-fetch';
+import { MetricsClient } from './metrics-service';
 import * as TestKit from './testKit';
+interface MetricsInitOptions {
+    client?: MetricsClient;
+    serviceName?: string;
+    host?: string;
+    port?: number;
+    disabled?: boolean;
+}
 export interface InitOptions {
     prometheus?: any;
     mondayFetchOptions?: MondayFetchOptions;
     redisClient?: any;
     grantedFeatureRedisExpirationInSeconds?: number;
-    metrics?: {
-        serviceName?: string;
-        host?: string;
-        port?: number;
-        disabled?: boolean;
-    };
+    metrics?: MetricsInitOptions;
 }
 export declare function init(options?: InitOptions): Promise<void>;
 export { authorizationCheckMiddleware, getAuthorizationMiddleware, skipAuthorizationMiddleware, } from './authorization-middleware';
 export { AuthorizationService, AuthorizeResponse } from './authorization-service';
 export { AuthorizationAttributesService } from './authorization-attributes-service';
 export { RolesService } from './roles-service';
-export { MembershipsService } from './memberships';
 export { AuthorizationObject, Resource, BaseRequest, ResourceGetter, ContextGetter } from './types/general';
 export { Translation, ScopedAction, ScopedActionResponseObject, ScopedActionPermit, } from './types/scoped-actions-contracts';
 export { CustomRole, BasicRole, RoleType, RoleCreateRequest, RoleUpdateRequest, RolesResponse } from './types/roles';

package/dist/esm/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAInE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC;CACH;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBAuBnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAErH,OAAO,EAAE,OAAO,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAqB,aAAa,EAAE,MAAM,mBAAmB,CAAC;AACrE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,UAAU,kBAAkB;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE,kBAAkB,CAAC;CAC9B;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBA6BnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAErH,OAAO,EAAE,OAAO,EAAE,CAAC"}

package/dist/esm/index.mjs

@@ -7,20 +7,26 @@ export { testKit_index as TestKit };
 export { authorizationCheckMiddleware, getAuthorizationMiddleware, skipAuthorizationMiddleware } from './authorization-middleware.mjs';
 export { AuthorizationAttributesService } from './authorization-attributes-service.mjs';
 export { RolesService } from './roles-service.mjs';
-export { MembershipsService } from './memberships.mjs';
 export { RoleType } from './types/roles.mjs';
 
 async function init(options = {}) {
     if (options.prometheus) {
         setPrometheus(options.prometheus);
     }
-    const resolvedDisabled = options.metrics?.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
-    initializeMetrics({
-        serviceName: options.metrics?.serviceName ?? process.env.APP_NAME ?? 'authorization-sdk',
-        host: options.metrics?.host,
-        port: options.metrics?.port,
-        disabled: resolvedDisabled,
-    });
+    if (options.metrics) {
+        if (options.metrics.client) {
+            initializeMetrics({ client: options.metrics.client });
+        }
+        else {
+            const resolvedDisabled = options.metrics.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
+            initializeMetrics({
+                serviceName: options.metrics.serviceName ?? process.env.APP_NAME ?? 'authorization-sdk',
+                host: options.metrics.host,
+                port: options.metrics.port,
+                disabled: resolvedDisabled,
+            });
+        }
+    }
     if (options.mondayFetchOptions) {
         setRequestFetchOptions(options.mondayFetchOptions);
     }

package/dist/esm/metrics-service.d.ts

@@ -1,12 +1,15 @@
-type ApiType = 'platform' | 'graph' | 'authorization';
+import { Metric } from '@mondaydotcomorg/monday-observability-kit';
+type ApiType = 'platform' | 'graph';
+export type MetricsClient = Pick<typeof Metric, 'distribution' | 'increment'>;
 interface InitializeMetricsOptions {
-    serviceName: string;
+    client?: MetricsClient;
+    serviceName?: string;
     host?: string;
     port?: number;
     disabled?: boolean;
 }
 export declare function initializeMetrics(options: InitializeMetricsOptions): void;
-export declare function recordAuthorizationTiming(apiType: ApiType, duration: number, placement: string): void;
-export declare function recordAuthorizationError(apiType: ApiType, statusCode: number, placement: string): void;
+export declare function recordAuthorizationTiming(apiType: ApiType, duration: number): void;
+export declare function recordAuthorizationError(apiType: ApiType, statusCode: number): void;
 export {};
 //# sourceMappingURL=metrics-service.d.ts.map

package/dist/esm/metrics-service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"metrics-service.d.ts","sourceRoot":"","sources":["../../src/metrics-service.ts"],"names":[],"mappings":"AAGA,KAAK,OAAO,GAAG,UAAU,GAAG,OAAO,GAAG,eAAe,CAAC;AAEtD,UAAU,wBAAwB;IAChC,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAID,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,wBAAwB,GAAG,IAAI,CA4BzE;AAED,wBAAgB,yBAAyB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAUrG;AAED,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CActG"}
+{"version":3,"file":"metrics-service.d.ts","sourceRoot":"","sources":["../../src/metrics-service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAGnE,KAAK,OAAO,GAAG,UAAU,GAAG,OAAO,CAAC;AAEpC,MAAM,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,MAAM,EAAE,cAAc,GAAG,WAAW,CAAC,CAAC;AAE9E,UAAU,wBAAwB;IAChC,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAID,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,wBAAwB,GAAG,IAAI,CAiCzE;AAED,wBAAgB,yBAAyB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,IAAI,CAmBlF;AAED,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI,CAmBnF"}

package/dist/esm/metrics-service.mjs

@@ -1,17 +1,21 @@
 import { Metric } from '@mondaydotcomorg/monday-observability-kit';
 import { logger } from './authorization-internal-service.mjs';
 
-let initialized = false;
+let metricsClient = null;
 function initializeMetrics(options) {
-    if (initialized) {
+    if (metricsClient) {
+        return;
+    }
+    if (options.client) {
+        metricsClient = options.client;
         return;
     }
     const { serviceName } = options;
     if (!serviceName) {
-        logger.warn({ tag: 'metrics-service' }, 'Metrics initialization skipped: serviceName is missing');
+        logger.warn({ tag: 'monday-authorization-sdk' }, 'Metrics initialization skipped: serviceName is missing');
         return;
     }
-    const resolvedHost = options.host ?? process.env.DOGSTATSD_HOST ?? 'localhost';
+    const resolvedHost = options.host ?? process.env.HOST_IP ?? 'localhost';
     const envPort = process.env.DOGSTATSD_PORT ? Number(process.env.DOGSTATSD_PORT) : undefined;
     const resolvedPort = options.port ?? (Number.isFinite(envPort ?? NaN) ? envPort : undefined) ?? 8125;
     const resolvedDisabled = options.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
@@ -22,32 +26,44 @@ function initializeMetrics(options) {
             port: resolvedPort,
             disabled: resolvedDisabled,
         });
-        initialized = true;
+        metricsClient = Metric;
     }
     catch (error) {
-        logger.warn({ tag: 'metrics-service', error }, 'Failed to initialize metrics');
+        logger.warn({ tag: 'monday-authorization-sdk', error }, 'Failed to initialize metrics');
     }
 }
-function recordAuthorizationTiming(apiType, duration, placement) {
-    if (!initialized) {
+function recordAuthorizationTiming(apiType, duration) {
+    if (!metricsClient) {
         return;
     }
     try {
-        Metric.distribution(`authorization.authorizationCheck.${apiType}.${placement}.duration`, duration);
+        metricsClient.distribution(`authorization.authorizationCheck.${apiType}.duration`, duration);
     }
-    catch {
-        // ignore metric emission failures
+    catch (error) {
+        logger.warn({
+            tag: 'monday-authorization-sdk',
+            metric: 'authorizationCheckDuration',
+            apiType,
+            duration,
+            error,
+        }, 'Failed to emit authorization timing metric');
     }
 }
-function recordAuthorizationError(apiType, statusCode, placement) {
-    if (!initialized) {
+function recordAuthorizationError(apiType, statusCode) {
+    if (!metricsClient) {
         return;
     }
     try {
-        Metric.increment(`authorization.authorizationCheck.${apiType}.${placement}.error`, { statusCode: String(statusCode) }, 1);
+        metricsClient.increment(`authorization.authorizationCheck.${apiType}.error`, { statusCode: String(statusCode) }, 1);
     }
-    catch {
-        // ignore metric emission failures
+    catch (error) {
+        logger.warn({
+            tag: 'monday-authorization-sdk',
+            metric: 'authorizationCheckError',
+            apiType,
+            statusCode,
+            error,
+        }, 'Failed to emit authorization error metric');
     }
 }
 

package/dist/esm/utils/api-error-handler.d.ts

@@ -1,2 +1,2 @@
-export declare function handleApiError(err: unknown, apiType: 'platform' | 'graph' | 'authorization', placement: string): never;
+export declare function handleApiError(err: unknown, apiType: 'platform' | 'graph', placement: string): never;
 //# sourceMappingURL=api-error-handler.d.ts.map

package/dist/esm/utils/api-error-handler.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"api-error-handler.d.ts","sourceRoot":"","sources":["../../../src/utils/api-error-handler.ts"],"names":[],"mappings":"AAIA,wBAAgB,cAAc,CAC5B,GAAG,EAAE,OAAO,EACZ,OAAO,EAAE,UAAU,GAAG,OAAO,GAAG,eAAe,EAC/C,SAAS,EAAE,MAAM,GAChB,KAAK,CAgBP"}
+{"version":3,"file":"api-error-handler.d.ts","sourceRoot":"","sources":["../../../src/utils/api-error-handler.ts"],"names":[],"mappings":"AAIA,wBAAgB,cAAc,CAAC,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,UAAU,GAAG,OAAO,EAAE,SAAS,EAAE,MAAM,GAAG,KAAK,CAgBpG"}

package/dist/esm/utils/api-error-handler.mjs

@@ -4,13 +4,13 @@ import { recordAuthorizationError } from '../metrics-service.mjs';
 
 function handleApiError(err, apiType, placement) {
     if (err instanceof HttpFetcherError) {
-        logger.error({ tag: `${apiType}-api`, status: err.status, error: err.message }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API ${placement} request failed`);
-        recordAuthorizationError(apiType, err.status, placement);
+        logger.error({ tag: `${apiType}-api`, status: err.status, error: err.message }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API authorization request failed`);
+        recordAuthorizationError(apiType, err.status);
         AuthorizationInternalService.throwOnHttpError(err.status, placement);
     }
     else {
-        logger.error({ tag: `${apiType}-api`, error: err instanceof Error ? err.message : String(err) }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API ${placement} request failed`);
-        recordAuthorizationError(apiType, 500, placement);
+        logger.error({ tag: `${apiType}-api`, error: err instanceof Error ? err.message : String(err) }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API authorization request failed`);
+        recordAuthorizationError(apiType, 500);
         throw err;
     }
 }

package/dist/index.d.ts

@@ -1,23 +1,25 @@
 import { MondayFetchOptions } from '@mondaydotcomorg/monday-fetch';
+import { MetricsClient } from './metrics-service';
 import * as TestKit from './testKit';
+interface MetricsInitOptions {
+    client?: MetricsClient;
+    serviceName?: string;
+    host?: string;
+    port?: number;
+    disabled?: boolean;
+}
 export interface InitOptions {
     prometheus?: any;
     mondayFetchOptions?: MondayFetchOptions;
     redisClient?: any;
     grantedFeatureRedisExpirationInSeconds?: number;
-    metrics?: {
-        serviceName?: string;
-        host?: string;
-        port?: number;
-        disabled?: boolean;
-    };
+    metrics?: MetricsInitOptions;
 }
 export declare function init(options?: InitOptions): Promise<void>;
 export { authorizationCheckMiddleware, getAuthorizationMiddleware, skipAuthorizationMiddleware, } from './authorization-middleware';
 export { AuthorizationService, AuthorizeResponse } from './authorization-service';
 export { AuthorizationAttributesService } from './authorization-attributes-service';
 export { RolesService } from './roles-service';
-export { MembershipsService } from './memberships';
 export { AuthorizationObject, Resource, BaseRequest, ResourceGetter, ContextGetter } from './types/general';
 export { Translation, ScopedAction, ScopedActionResponseObject, ScopedActionPermit, } from './types/scoped-actions-contracts';
 export { CustomRole, BasicRole, RoleType, RoleCreateRequest, RoleUpdateRequest, RolesResponse } from './types/roles';

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAInE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE;QACR,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,QAAQ,CAAC,EAAE,OAAO,CAAC;KACpB,CAAC;CACH;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBAuBnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAErH,OAAO,EAAE,OAAO,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAqB,aAAa,EAAE,MAAM,mBAAmB,CAAC;AACrE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,UAAU,kBAAkB;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE,kBAAkB,CAAC;CAC9B;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBA6BnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAErH,OAAO,EAAE,OAAO,EAAE,CAAC"}

package/dist/index.js

@@ -7,20 +7,26 @@ const testKit_index = require('./testKit/index.js');
 const authorizationMiddleware = require('./authorization-middleware.js');
 const authorizationAttributesService = require('./authorization-attributes-service.js');
 const rolesService = require('./roles-service.js');
-const memberships = require('./memberships.js');
 const types_roles = require('./types/roles.js');
 
 async function init(options = {}) {
     if (options.prometheus) {
         prometheusService.setPrometheus(options.prometheus);
     }
-    const resolvedDisabled = options.metrics?.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
-    metricsService.initializeMetrics({
-        serviceName: options.metrics?.serviceName ?? process.env.APP_NAME ?? 'authorization-sdk',
-        host: options.metrics?.host,
-        port: options.metrics?.port,
-        disabled: resolvedDisabled,
-    });
+    if (options.metrics) {
+        if (options.metrics.client) {
+            metricsService.initializeMetrics({ client: options.metrics.client });
+        }
+        else {
+            const resolvedDisabled = options.metrics.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
+            metricsService.initializeMetrics({
+                serviceName: options.metrics.serviceName ?? process.env.APP_NAME ?? 'authorization-sdk',
+                host: options.metrics.host,
+                port: options.metrics.port,
+                disabled: resolvedDisabled,
+            });
+        }
+    }
     if (options.mondayFetchOptions) {
         authorizationService.setRequestFetchOptions(options.mondayFetchOptions);
     }
@@ -38,7 +44,6 @@ exports.getAuthorizationMiddleware = authorizationMiddleware.getAuthorizationMid
 exports.skipAuthorizationMiddleware = authorizationMiddleware.skipAuthorizationMiddleware;
 exports.AuthorizationAttributesService = authorizationAttributesService.AuthorizationAttributesService;
 exports.RolesService = rolesService.RolesService;
-exports.MembershipsService = memberships.MembershipsService;
 Object.defineProperty(exports, 'RoleType', {
 enumerable: true,
 get: () => types_roles.RoleType

package/dist/metrics-service.d.ts

@@ -1,12 +1,15 @@
-type ApiType = 'platform' | 'graph' | 'authorization';
+import { Metric } from '@mondaydotcomorg/monday-observability-kit';
+type ApiType = 'platform' | 'graph';
+export type MetricsClient = Pick<typeof Metric, 'distribution' | 'increment'>;
 interface InitializeMetricsOptions {
-    serviceName: string;
+    client?: MetricsClient;
+    serviceName?: string;
     host?: string;
     port?: number;
     disabled?: boolean;
 }
 export declare function initializeMetrics(options: InitializeMetricsOptions): void;
-export declare function recordAuthorizationTiming(apiType: ApiType, duration: number, placement: string): void;
-export declare function recordAuthorizationError(apiType: ApiType, statusCode: number, placement: string): void;
+export declare function recordAuthorizationTiming(apiType: ApiType, duration: number): void;
+export declare function recordAuthorizationError(apiType: ApiType, statusCode: number): void;
 export {};
 //# sourceMappingURL=metrics-service.d.ts.map

package/dist/metrics-service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"metrics-service.d.ts","sourceRoot":"","sources":["../src/metrics-service.ts"],"names":[],"mappings":"AAGA,KAAK,OAAO,GAAG,UAAU,GAAG,OAAO,GAAG,eAAe,CAAC;AAEtD,UAAU,wBAAwB;IAChC,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAID,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,wBAAwB,GAAG,IAAI,CA4BzE;AAED,wBAAgB,yBAAyB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CAUrG;AAED,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,IAAI,CActG"}
+{"version":3,"file":"metrics-service.d.ts","sourceRoot":"","sources":["../src/metrics-service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,2CAA2C,CAAC;AAGnE,KAAK,OAAO,GAAG,UAAU,GAAG,OAAO,CAAC;AAEpC,MAAM,MAAM,aAAa,GAAG,IAAI,CAAC,OAAO,MAAM,EAAE,cAAc,GAAG,WAAW,CAAC,CAAC;AAE9E,UAAU,wBAAwB;IAChC,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAID,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,wBAAwB,GAAG,IAAI,CAiCzE;AAED,wBAAgB,yBAAyB,CAAC,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,GAAG,IAAI,CAmBlF;AAED,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,MAAM,GAAG,IAAI,CAmBnF"}

package/dist/metrics-service.js

@@ -3,17 +3,21 @@ Object.defineProperty(exports, Symbol.toStringTag, { value: 'Module' });
 const mondayObservabilityKit = require('@mondaydotcomorg/monday-observability-kit');
 const authorizationInternalService = require('./authorization-internal-service.js');
 
-let initialized = false;
+let metricsClient = null;
 function initializeMetrics(options) {
-    if (initialized) {
+    if (metricsClient) {
+        return;
+    }
+    if (options.client) {
+        metricsClient = options.client;
         return;
     }
     const { serviceName } = options;
     if (!serviceName) {
-        authorizationInternalService.logger.warn({ tag: 'metrics-service' }, 'Metrics initialization skipped: serviceName is missing');
+        authorizationInternalService.logger.warn({ tag: 'monday-authorization-sdk' }, 'Metrics initialization skipped: serviceName is missing');
         return;
     }
-    const resolvedHost = options.host ?? process.env.DOGSTATSD_HOST ?? 'localhost';
+    const resolvedHost = options.host ?? process.env.HOST_IP ?? 'localhost';
     const envPort = process.env.DOGSTATSD_PORT ? Number(process.env.DOGSTATSD_PORT) : undefined;
     const resolvedPort = options.port ?? (Number.isFinite(envPort ?? NaN) ? envPort : undefined) ?? 8125;
     const resolvedDisabled = options.disabled ?? ['test', 'development'].includes((process.env.NODE_ENV ?? '').toLowerCase());
@@ -24,32 +28,44 @@ function initializeMetrics(options) {
             port: resolvedPort,
             disabled: resolvedDisabled,
         });
-        initialized = true;
+        metricsClient = mondayObservabilityKit.Metric;
     }
     catch (error) {
-        authorizationInternalService.logger.warn({ tag: 'metrics-service', error }, 'Failed to initialize metrics');
+        authorizationInternalService.logger.warn({ tag: 'monday-authorization-sdk', error }, 'Failed to initialize metrics');
     }
 }
-function recordAuthorizationTiming(apiType, duration, placement) {
-    if (!initialized) {
+function recordAuthorizationTiming(apiType, duration) {
+    if (!metricsClient) {
         return;
     }
     try {
-        mondayObservabilityKit.Metric.distribution(`authorization.authorizationCheck.${apiType}.${placement}.duration`, duration);
+        metricsClient.distribution(`authorization.authorizationCheck.${apiType}.duration`, duration);
     }
-    catch {
-        // ignore metric emission failures
+    catch (error) {
+        authorizationInternalService.logger.warn({
+            tag: 'monday-authorization-sdk',
+            metric: 'authorizationCheckDuration',
+            apiType,
+            duration,
+            error,
+        }, 'Failed to emit authorization timing metric');
     }
 }
-function recordAuthorizationError(apiType, statusCode, placement) {
-    if (!initialized) {
+function recordAuthorizationError(apiType, statusCode) {
+    if (!metricsClient) {
         return;
     }
     try {
-        mondayObservabilityKit.Metric.increment(`authorization.authorizationCheck.${apiType}.${placement}.error`, { statusCode: String(statusCode) }, 1);
+        metricsClient.increment(`authorization.authorizationCheck.${apiType}.error`, { statusCode: String(statusCode) }, 1);
     }
-    catch {
-        // ignore metric emission failures
+    catch (error) {
+        authorizationInternalService.logger.warn({
+            tag: 'monday-authorization-sdk',
+            metric: 'authorizationCheckError',
+            apiType,
+            statusCode,
+            error,
+        }, 'Failed to emit authorization error metric');
     }
 }
 

package/dist/utils/api-error-handler.d.ts

@@ -1,2 +1,2 @@
-export declare function handleApiError(err: unknown, apiType: 'platform' | 'graph' | 'authorization', placement: string): never;
+export declare function handleApiError(err: unknown, apiType: 'platform' | 'graph', placement: string): never;
 //# sourceMappingURL=api-error-handler.d.ts.map

package/dist/utils/api-error-handler.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"api-error-handler.d.ts","sourceRoot":"","sources":["../../src/utils/api-error-handler.ts"],"names":[],"mappings":"AAIA,wBAAgB,cAAc,CAC5B,GAAG,EAAE,OAAO,EACZ,OAAO,EAAE,UAAU,GAAG,OAAO,GAAG,eAAe,EAC/C,SAAS,EAAE,MAAM,GAChB,KAAK,CAgBP"}
+{"version":3,"file":"api-error-handler.d.ts","sourceRoot":"","sources":["../../src/utils/api-error-handler.ts"],"names":[],"mappings":"AAIA,wBAAgB,cAAc,CAAC,GAAG,EAAE,OAAO,EAAE,OAAO,EAAE,UAAU,GAAG,OAAO,EAAE,SAAS,EAAE,MAAM,GAAG,KAAK,CAgBpG"}

package/dist/utils/api-error-handler.js

@@ -6,13 +6,13 @@ const metricsService = require('../metrics-service.js');
 
 function handleApiError(err, apiType, placement) {
     if (err instanceof mondayFetchApi.HttpFetcherError) {
-        authorizationInternalService.logger.error({ tag: `${apiType}-api`, status: err.status, error: err.message }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API ${placement} request failed`);
-        metricsService.recordAuthorizationError(apiType, err.status, placement);
+        authorizationInternalService.logger.error({ tag: `${apiType}-api`, status: err.status, error: err.message }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API authorization request failed`);
+        metricsService.recordAuthorizationError(apiType, err.status);
         authorizationInternalService.AuthorizationInternalService.throwOnHttpError(err.status, placement);
     }
     else {
-        authorizationInternalService.logger.error({ tag: `${apiType}-api`, error: err instanceof Error ? err.message : String(err) }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API ${placement} request failed`);
-        metricsService.recordAuthorizationError(apiType, 500, placement);
+        authorizationInternalService.logger.error({ tag: `${apiType}-api`, error: err instanceof Error ? err.message : String(err) }, `${apiType.charAt(0).toUpperCase() + apiType.slice(1)} API authorization request failed`);
+        metricsService.recordAuthorizationError(apiType, 500);
         throw err;
     }
 }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@mondaydotcomorg/monday-authorization",
-  "version": "3.3.1-feature-bashanye-add-membership-create-delete-api-d00c165",
+  "version": "3.3.1-fix-use-standard-env-var-for-metric-server-host-bd2a88a",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
   "license": "BSD-3-Clause",

package/src/authorization-service.ts

@@ -213,7 +213,7 @@ export class AuthorizationService {
       const { resourceType } = scopeToResource(scope);
       const isAuthorized = obj.permit.can;
       sendAuthorizationCheckResponseTimeMetric(resourceType, action, isAuthorized, 200, time);
-      recordAuthorizationTiming(apiType, time, 'canActionInScopeMultiple');
+      recordAuthorizationTiming(apiType, time);
     }
 
     return scopedActionResponseObjects;