@mondaydotcomorg/monday-authorization 3.5.0-feat-shaime-support-entity-attributes-in-authorization-sdk-c9e4cfc → 3.5.0-feat-shaime-support-entity-attributes-in-authorization-sdk-8d846f1

package/dist/esm/authorization-attributes-service.mjs

@@ -1,112 +1,88 @@
 import chunk from 'lodash/chunk.js';
-import { Api } from '@mondaydotcomorg/trident-backend-api';
 import { sendToSns, getTopicAttributes } from '@mondaydotcomorg/monday-sns';
-import { HttpFetcherError } from '@mondaydotcomorg/monday-fetch-api';
-import { logger, AuthorizationInternalService } from './authorization-internal-service.mjs';
-import { getAttributionsFromApi } from './attributions-service.mjs';
-import { ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, SNS_ARN_ENV_VAR_NAME, SNS_DEV_TEST_NAME, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND } from './constants/sns.mjs';
-import { ERROR_MESSAGES, DEFAULT_FETCH_OPTIONS, APP_NAME } from './constants.mjs';
+import { ResourceAttributeOperationEnum, EntityAttributeOperationEnum } from './types/authorization-attributes-contracts.mjs';
+import { logger } from './authorization-internal-service.mjs';
+import { ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, SNS_ARN_ENV_VAR_NAME, SNS_DEV_TEST_NAME, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND } from './constants/sns.mjs';
 
 class AuthorizationAttributesService {
     static LOG_TAG = 'authorization_attributes';
-    static API_PATHS = {
-        UPSERT_RESOURCE_ATTRIBUTES: '/attributes/{accountId}/resource',
-        DELETE_RESOURCE_ATTRIBUTES: '/attributes/{accountId}/resource/{resourceType}/{resourceId}',
-        UPSERT_ENTITY_ATTRIBUTES: '/attributes/{accountId}/entity',
-        DELETE_ENTITY_ATTRIBUTES: '/attributes/{accountId}/entity/{entityType}/{entityId}',
-    };
-    httpClient;
-    fetchOptions;
     snsArn;
     /**
      * Public constructor to create the AuthorizationAttributesService instance.
-     * @param httpClient The HTTP client to use for API requests, if not provided, the default HTTP client from Api will be used.
-     * @param fetchOptions The fetch options to use for API requests, if not provided, the default fetch options will be used.
      */
-    constructor(httpClient, fetchOptions) {
-        if (!httpClient) {
-            httpClient = Api.getPart('httpClient');
-            if (!httpClient) {
-                throw new Error(ERROR_MESSAGES.HTTP_CLIENT_NOT_INITIALIZED);
-            }
-        }
-        if (!fetchOptions) {
-            fetchOptions = DEFAULT_FETCH_OPTIONS;
-        }
-        else {
-            fetchOptions = {
-                ...DEFAULT_FETCH_OPTIONS,
-                ...fetchOptions,
-            };
-        }
-        this.httpClient = httpClient;
-        this.fetchOptions = fetchOptions;
+    constructor() {
         this.snsArn = AuthorizationAttributesService.getSnsTopicArn();
     }
     /**
-     * Upsert resource attributes synchronously, performing http call to the authorization MS to assign the given attributes to the given resource.
-     * @param accountId
-     * @param resourceAttributeAssignments - Array of resource (resourceType, resourceId) and attribute (key, value) pairs to upsert in the authorization MS.
-     * e.g. [{ resourceType: 'board', resourceId: 123, key: 'board_kind', value: 'private' }]
-     * @returns ResourceAttributeResponse - The affected (created and updated_ resource attributes assignments in the `attributes` field.
+     * Async function to upsert resource attributes using SNS.
+     * Sends the updates request to SNS and returns before the change actually took place.
+     * @param accountId The account ID
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @param resourceAttributeAssignments Array of resource attribute assignments to upsert
+     * @return Promise with array of sent operations
      */
-    async upsertResourceAttributes(accountId, resourceAttributeAssignments) {
-        const attributionHeaders = getAttributionsFromApi();
-        try {
-            return await this.httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path: AuthorizationAttributesService.API_PATHS.UPSERT_RESOURCE_ATTRIBUTES.replace('{accountId}', accountId.toString()),
-                },
-                method: 'POST',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ resourceAttributeAssignments }),
-            }, this.fetchOptions);
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('upsertResourceAttributes', err.status, err.message));
-            }
-            throw err;
-        }
+    async upsertResourceAttributesAsync(accountId, appName, callerActionIdentifier, resourceAttributeAssignments) {
+        const operations = resourceAttributeAssignments.map(assignment => ({
+            ...assignment,
+            operationType: ResourceAttributeOperationEnum.UPSERT,
+        }));
+        return this.updateResourceAttributesAsync(accountId, appName, callerActionIdentifier, operations);
     }
     /**
-     * Delete resource attributes assignments synchronously, performing http call to the authorization MS to delete the given attributes from the given singular resource.
-     * @param accountId
-     * @param resource - The resource (resourceType, resourceId) to delete the attributes for.
-     * @param attributeKeys - Array of attribute keys to delete for the resource.
-     * @returns ResourceAttributeResponse - The affected (deleted) resource attributes assignments in the `attributes` field.
+     * Async function to delete resource attributes using SNS.
+     * Sends the updates request to SNS and returns before the change actually took place.
+     * @param accountId The account ID
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @param resource The resource (resourceType, resourceId)
+     * @param attributeKeys Array of attribute keys to delete
+     * @return Promise with array of sent operations
      */
-    async deleteResourceAttributes(accountId, resource, attributeKeys) {
-        const attributionHeaders = getAttributionsFromApi();
-        if (!resource.id) {
-            throw new Error('Resource ID is required');
-        }
-        try {
-            return await this.httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path: AuthorizationAttributesService.API_PATHS.DELETE_RESOURCE_ATTRIBUTES.replace('{accountId}', accountId.toString())
-                        .replace('{resourceType}', resource.type)
-                        .replace('{resourceId}', resource.id.toString()),
-                },
-                method: 'DELETE',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ keys: attributeKeys }),
-            }, this.fetchOptions);
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('deleteResourceAttributes', err.status, err.message));
-            }
-            throw err;
-        }
+    async deleteResourceAttributesAsync(accountId, appName, callerActionIdentifier, resource, attributeKeys) {
+        const operations = attributeKeys.map(key => ({
+            resourceType: resource.type,
+            resourceId: resource.id,
+            key,
+            operationType: ResourceAttributeOperationEnum.DELETE,
+        }));
+        return this.updateResourceAttributesAsync(accountId, appName, callerActionIdentifier, operations);
+    }
+    /**
+     * Async function to upsert entity attributes using SNS.
+     * Sends the updates request to SNS and returns before the change actually took place.
+     * @param accountId The account ID
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @param entityAttributeAssignments Array of entity attribute assignments to upsert
+     * @return Promise with array of sent operations
+     */
+    async upsertEntityAttributesAsync(accountId, appName, callerActionIdentifier, entityAttributeAssignments) {
+        const operations = entityAttributeAssignments.map(assignment => ({
+            ...assignment,
+            operationType: EntityAttributeOperationEnum.UPSERT,
+        }));
+        return this.updateEntityAttributesAsync(accountId, appName, callerActionIdentifier, operations);
+    }
+    /**
+     * Async function to delete entity attributes using SNS.
+     * Sends the updates request to SNS and returns before the change actually took place.
+     * @param accountId The account ID
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @param entityType The entity type
+     * @param entityId The entity ID
+     * @param attributeKeys Array of attribute keys to delete
+     * @return Promise with array of sent operations
+     */
+    async deleteEntityAttributesAsync(accountId, appName, callerActionIdentifier, entityType, entityId, attributeKeys) {
+        const operations = attributeKeys.map(key => ({
+            entityType: entityType,
+            entityId,
+            key,
+            operationType: EntityAttributeOperationEnum.DELETE,
+        }));
+        return this.updateEntityAttributesAsync(accountId, appName, callerActionIdentifier, operations);
     }
     /**
      *  Async function, this function only send the updates request to SNS and return before the change actually took place
@@ -121,11 +97,28 @@ class AuthorizationAttributesService {
         const sendToSnsPromises = [];
         const operationChucks = chunk(resourceAttributeOperations, ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE);
         for (const operationsChunk of operationChucks) {
-            sendToSnsPromises.push(this.sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk));
+            sendToSnsPromises.push(this.sendSingleResourceSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk));
+        }
+        return (await Promise.all(sendToSnsPromises)).flat();
+    }
+    /**
+     *  Async function, this function only send the updates request to SNS and return before the change actually took place
+     * @param accountId
+     * @param appName - App name of the calling app
+     * @param callerActionIdentifier - action identifier
+     * @param entityAttributeOperations - Array of operations to do on entity attributes.
+     * @return {Promise<EntityAttributesOperation[]>} Array of sent operations
+     *  */
+    async updateEntityAttributesAsync(accountId, appName, callerActionIdentifier, entityAttributeOperations) {
+        const topicArn = this.snsArn;
+        const sendToSnsPromises = [];
+        const operationChucks = chunk(entityAttributeOperations, ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE);
+        for (const operationsChunk of operationChucks) {
+            sendToSnsPromises.push(this.sendSingleEntitySnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk));
         }
         return (await Promise.all(sendToSnsPromises)).flat();
     }
-    async sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operations) {
+    async sendSingleResourceSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operations) {
         const payload = {
             kind: RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND,
             payload: {
@@ -144,6 +137,25 @@ class AuthorizationAttributesService {
             return [];
         }
     }
+    async sendSingleEntitySnsMessage(topicArn, accountId, appName, callerActionIdentifier, operations) {
+        const payload = {
+            kind: ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND,
+            payload: {
+                accountId: accountId,
+                callerAppName: appName,
+                callerActionIdentifier: callerActionIdentifier,
+                operations: operations,
+            },
+        };
+        try {
+            await sendToSns(payload, topicArn);
+            return operations;
+        }
+        catch (error) {
+            logger.error({ error, tag: AuthorizationAttributesService.LOG_TAG }, 'Authorization entity attributes async update: failed to send operations to SNS');
+            return [];
+        }
+    }
     static getSnsTopicArn() {
         const arnFromEnv = process.env[SNS_ARN_ENV_VAR_NAME];
         if (arnFromEnv) {
@@ -177,266 +189,6 @@ class AuthorizationAttributesService {
             return false;
         }
     }
-    /**
-     * Validates resource attribute assignments array
-     */
-    static validateResourceAttributeAssignments(assignments) {
-        if (!Array.isArray(assignments)) {
-            throw new Error('resourceAttributeAssignments must be an array');
-        }
-        if (assignments.length === 0) {
-            throw new Error('resourceAttributeAssignments must contain at least 1 item');
-        }
-        if (assignments.length > 100) {
-            throw new Error('resourceAttributeAssignments must contain at most 100 items');
-        }
-        for (let i = 0; i < assignments.length; i++) {
-            const assignment = assignments[i];
-            if (!assignment.resourceId || typeof assignment.resourceId !== 'number') {
-                throw new Error(`resourceAttributeAssignments[${i}].resourceId is required and must be a number`);
-            }
-            if (!assignment.resourceType || typeof assignment.resourceType !== 'string') {
-                throw new Error(`resourceAttributeAssignments[${i}].resourceType is required and must be a string`);
-            }
-            if (!assignment.key || typeof assignment.key !== 'string') {
-                throw new Error(`resourceAttributeAssignments[${i}].key is required and must be a string`);
-            }
-            if (assignment.value === undefined || typeof assignment.value !== 'string') {
-                throw new Error(`resourceAttributeAssignments[${i}].value is required and must be a string`);
-            }
-        }
-    }
-    /**
-     * Validates entity attribute assignments array
-     */
-    static validateEntityAttributeAssignments(assignments) {
-        if (!Array.isArray(assignments)) {
-            throw new Error('entityAttributeAssignments must be an array');
-        }
-        if (assignments.length === 0) {
-            throw new Error('entityAttributeAssignments must contain at least 1 item');
-        }
-        if (assignments.length > 100) {
-            throw new Error('entityAttributeAssignments must contain at most 100 items');
-        }
-        for (let i = 0; i < assignments.length; i++) {
-            const assignment = assignments[i];
-            if (!assignment.entityId || typeof assignment.entityId !== 'number') {
-                throw new Error(`entityAttributeAssignments[${i}].entityId is required and must be a number`);
-            }
-            if (!assignment.entityType || typeof assignment.entityType !== 'string') {
-                throw new Error(`entityAttributeAssignments[${i}].entityType is required and must be a string`);
-            }
-            if (!assignment.key || typeof assignment.key !== 'string') {
-                throw new Error(`entityAttributeAssignments[${i}].key is required and must be a string`);
-            }
-            if (assignment.value === undefined || typeof assignment.value !== 'string') {
-                throw new Error(`entityAttributeAssignments[${i}].value is required and must be a string`);
-            }
-        }
-    }
-    /**
-     * Upsert resource attributes synchronously.
-     * Matches API endpoint: POST /attributes/:accountId/resource
-     * @param accountId The account ID
-     * @param resourceAttributeAssignments Array of ResourceAttributeAssignment objects (1-100 items)
-     * @returns Promise with response containing affected attributes
-     */
-    static async upsertResourceAttributesSync(accountId, resourceAttributeAssignments) {
-        // Validate inputs
-        if (!Number.isInteger(accountId)) {
-            throw new Error(`accountId must be an integer, got: ${accountId}`);
-        }
-        AuthorizationAttributesService.validateResourceAttributeAssignments(resourceAttributeAssignments);
-        const httpClient = Api.getPart('httpClient');
-        if (!httpClient) {
-            throw new Error(ERROR_MESSAGES.HTTP_CLIENT_NOT_INITIALIZED);
-        }
-        const attributionHeaders = getAttributionsFromApi();
-        const path = AuthorizationAttributesService.API_PATHS.UPSERT_RESOURCE_ATTRIBUTES.replace('{accountId}', accountId.toString());
-        try {
-            return await httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path,
-                },
-                method: 'POST',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ resourceAttributeAssignments }),
-            }, {
-                timeout: AuthorizationInternalService.getRequestTimeout(),
-                retryPolicy: AuthorizationInternalService.getRetriesPolicy(),
-            });
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('upsertResourceAttributesSync', err.status, err.message));
-            }
-            throw err;
-        }
-    }
-    /**
-     * Delete resource attributes synchronously.
-     * Matches API endpoint: DELETE /attributes/:accountId/resource/:resourceType/:resourceId
-     * @param accountId The account ID
-     * @param resourceType The resource type
-     * @param resourceId The resource ID
-     * @param keys Array of attribute keys to delete
-     * @returns Promise with response containing affected attributes
-     */
-    static async deleteResourceAttributesSync(accountId, resourceType, resourceId, keys) {
-        // Validate inputs
-        if (!Number.isInteger(accountId)) {
-            throw new Error(`accountId must be an integer, got: ${accountId}`);
-        }
-        if (!resourceType || typeof resourceType !== 'string') {
-            throw new Error(`resourceType must be a string, got: ${typeof resourceType}`);
-        }
-        if (!Number.isInteger(resourceId)) {
-            throw new Error(`resourceId must be an integer, got: ${resourceId}`);
-        }
-        if (!Array.isArray(keys)) {
-            throw new Error('keys must be an array');
-        }
-        if (keys.length === 0) {
-            throw new Error('keys must contain at least 1 item');
-        }
-        const httpClient = Api.getPart('httpClient');
-        if (!httpClient) {
-            throw new Error(ERROR_MESSAGES.HTTP_CLIENT_NOT_INITIALIZED);
-        }
-        const attributionHeaders = getAttributionsFromApi();
-        const path = AuthorizationAttributesService.API_PATHS.DELETE_RESOURCE_ATTRIBUTES.replace('{accountId}', accountId.toString())
-            .replace('{resourceType}', resourceType)
-            .replace('{resourceId}', resourceId.toString());
-        try {
-            return await httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path,
-                },
-                method: 'DELETE',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ keys }),
-            }, {
-                timeout: AuthorizationInternalService.getRequestTimeout(),
-                retryPolicy: AuthorizationInternalService.getRetriesPolicy(),
-            });
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('deleteResourceAttributesSync', err.status, err.message));
-            }
-            throw err;
-        }
-    }
-    /**
-     * Upsert entity attributes synchronously.
-     * Matches API endpoint: POST /attributes/:accountId/entity
-     * @param accountId The account ID
-     * @param entityAttributeAssignments Array of EntityAttributeAssignment objects (1-100 items)
-     * @returns Promise with response containing affected attributes
-     */
-    static async upsertEntityAttributesSync(accountId, entityAttributeAssignments) {
-        // Validate inputs
-        if (!Number.isInteger(accountId)) {
-            throw new Error(`accountId must be an integer, got: ${accountId}`);
-        }
-        AuthorizationAttributesService.validateEntityAttributeAssignments(entityAttributeAssignments);
-        const httpClient = Api.getPart('httpClient');
-        if (!httpClient) {
-            throw new Error(ERROR_MESSAGES.HTTP_CLIENT_NOT_INITIALIZED);
-        }
-        const attributionHeaders = getAttributionsFromApi();
-        const path = AuthorizationAttributesService.API_PATHS.UPSERT_ENTITY_ATTRIBUTES.replace('{accountId}', accountId.toString());
-        try {
-            return await httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path,
-                },
-                method: 'POST',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ entityAttributeAssignments }),
-            }, {
-                timeout: AuthorizationInternalService.getRequestTimeout(),
-                retryPolicy: AuthorizationInternalService.getRetriesPolicy(),
-            });
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('upsertEntityAttributesSync', err.status, err.message));
-            }
-            throw err;
-        }
-    }
-    /**
-     * Delete entity attributes synchronously.
-     * Matches API endpoint: DELETE /attributes/:accountId/entity/:entityType/:entityId
-     * @param accountId The account ID
-     * @param entityType The entity type
-     * @param entityId The entity ID
-     * @param keys Array of attribute keys to delete
-     * @returns Promise with response containing affected attributes
-     */
-    static async deleteEntityAttributesSync(accountId, entityType, entityId, keys) {
-        // Validate inputs
-        if (!Number.isInteger(accountId)) {
-            throw new Error(`accountId must be an integer, got: ${accountId}`);
-        }
-        if (!entityType || typeof entityType !== 'string') {
-            throw new Error(`entityType must be a string, got: ${typeof entityType}`);
-        }
-        if (!Number.isInteger(entityId)) {
-            throw new Error(`entityId must be an integer, got: ${entityId}`);
-        }
-        if (!Array.isArray(keys)) {
-            throw new Error('keys must be an array');
-        }
-        if (keys.length === 0) {
-            throw new Error('keys must contain at least 1 item');
-        }
-        const httpClient = Api.getPart('httpClient');
-        if (!httpClient) {
-            throw new Error(ERROR_MESSAGES.HTTP_CLIENT_NOT_INITIALIZED);
-        }
-        const attributionHeaders = getAttributionsFromApi();
-        const path = AuthorizationAttributesService.API_PATHS.DELETE_ENTITY_ATTRIBUTES.replace('{accountId}', accountId.toString())
-            .replace('{entityType}', entityType)
-            .replace('{entityId}', entityId.toString());
-        try {
-            return await httpClient.fetch({
-                url: {
-                    appName: APP_NAME,
-                    path,
-                },
-                method: 'DELETE',
-                headers: {
-                    'Content-Type': 'application/json',
-                    ...attributionHeaders,
-                },
-                body: JSON.stringify({ keys }),
-            }, {
-                timeout: AuthorizationInternalService.getRequestTimeout(),
-                retryPolicy: AuthorizationInternalService.getRetriesPolicy(),
-            });
-        }
-        catch (err) {
-            if (err instanceof HttpFetcherError) {
-                throw new Error(ERROR_MESSAGES.REQUEST_FAILED('deleteEntityAttributesSync', err.status, err.message));
-            }
-            throw err;
-        }
-    }
 }
 
 export { AuthorizationAttributesService };

package/dist/esm/constants/sns.d.ts

@@ -1,5 +1,7 @@
 export declare const SNS_ARN_ENV_VAR_NAME = "SHARED_AUTHORIZATION_SNS_ENDPOINT_RESOURCE_ATTRIBUTES";
 export declare const SNS_DEV_TEST_NAME = "arn:aws:sns:us-east-1:000000000000:monday-authorization-resource-attributes-sns-local";
 export declare const RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = "resourceAttributeModification";
+export declare const ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = "entityAttributeModification";
 export declare const ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;
+export declare const ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;
 //# sourceMappingURL=sns.d.ts.map

package/dist/esm/constants/sns.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"sns.d.ts","sourceRoot":"","sources":["../../../src/constants/sns.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,oBAAoB,0DAA0D,CAAC;AAC5F,eAAO,MAAM,iBAAiB,0FAC2D,CAAC;AAC1F,eAAO,MAAM,qDAAqD,kCAAkC,CAAC;AACrG,eAAO,MAAM,oDAAoD,MAAM,CAAC"}
+{"version":3,"file":"sns.d.ts","sourceRoot":"","sources":["../../../src/constants/sns.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,oBAAoB,0DAA0D,CAAC;AAC5F,eAAO,MAAM,iBAAiB,0FAC2D,CAAC;AAC1F,eAAO,MAAM,qDAAqD,kCAAkC,CAAC;AACrG,eAAO,MAAM,mDAAmD,gCAAgC,CAAC;AACjG,eAAO,MAAM,oDAAoD,MAAM,CAAC;AACxE,eAAO,MAAM,kDAAkD,MAAM,CAAC"}

package/dist/esm/constants/sns.mjs

@@ -1,6 +1,8 @@
 const SNS_ARN_ENV_VAR_NAME = 'SHARED_AUTHORIZATION_SNS_ENDPOINT_RESOURCE_ATTRIBUTES';
 const SNS_DEV_TEST_NAME = 'arn:aws:sns:us-east-1:000000000000:monday-authorization-resource-attributes-sns-local';
 const RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = 'resourceAttributeModification';
+const ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND = 'entityAttributeModification';
 const ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;
+const ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE = 100;
 
-export { ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, SNS_ARN_ENV_VAR_NAME, SNS_DEV_TEST_NAME };
+export { ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, SNS_ARN_ENV_VAR_NAME, SNS_DEV_TEST_NAME };

package/dist/esm/resource-attribute-assignment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAG/E,qBAAa,2BAA2B;IACtC,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;IAC3C,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAE3B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IA8BlG;;;OAGG;IACH,GAAG,IAAI;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAS/E;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAWpD"}
+{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAG/E,qBAAa,2BAA2B;IACtC,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;IAC3C,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAE3B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IA4BlG;;;OAGG;IACH,GAAG,IAAI;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAS/E;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAWpD"}

package/dist/esm/resource-attributes-constants.d.ts

@@ -21,5 +21,5 @@ export declare const RESOURCE_ATTRIBUTES_CONSTANTS: {
         readonly SYSTEM_ENTITY_TYPE: "system_entity_type";
     };
 };
-export type ResourceType = typeof RESOURCE_TYPES[keyof typeof RESOURCE_TYPES];
+export type ResourceType = (typeof RESOURCE_TYPES)[keyof typeof RESOURCE_TYPES];
 //# sourceMappingURL=resource-attributes-constants.d.ts.map

package/dist/esm/resource-attributes-constants.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc;;;;;;;;;;CAUjB,CAAC;AAEX,eAAO,MAAM,6BAA6B;;;;;;;;;;;CAWhC,CAAC;AAEX,MAAM,MAAM,YAAY,GAAG,OAAO,cAAc,CAAC,MAAM,OAAO,cAAc,CAAC,CAAC"}
+{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc;;;;;;;;;;CAUjB,CAAC;AAEX,eAAO,MAAM,6BAA6B;;;;;;;;;;;CAWhC,CAAC;AAEX,MAAM,MAAM,YAAY,GAAG,CAAC,OAAO,cAAc,CAAC,CAAC,MAAM,OAAO,cAAc,CAAC,CAAC"}

package/dist/esm/types/authorization-attributes-contracts.d.ts

@@ -29,16 +29,32 @@ export interface ResourceAttributeDelete {
     resourceId: Resource['id'];
     key: string;
 }
+export interface EntityAttributeDelete {
+    entityType: EntityType;
+    entityId: number;
+    key: string;
+}
 export declare enum ResourceAttributeOperationEnum {
     UPSERT = "upsert",
     DELETE = "delete"
 }
+export declare enum EntityAttributeOperationEnum {
+    UPSERT = "upsert",
+    DELETE = "delete"
+}
 interface UpsertResourceAttributeOperation extends ResourceAttributeAssignment {
     operationType: ResourceAttributeOperationEnum.UPSERT;
 }
 interface DeleteResourceAttributeOperation extends ResourceAttributeDelete {
     operationType: ResourceAttributeOperationEnum.DELETE;
 }
+interface UpsertEntityAttributeOperation extends EntityAttributeAssignment {
+    operationType: EntityAttributeOperationEnum.UPSERT;
+}
+interface DeleteEntityAttributeOperation extends EntityAttributeDelete {
+    operationType: EntityAttributeOperationEnum.DELETE;
+}
 export type ResourceAttributesOperation = UpsertResourceAttributeOperation | DeleteResourceAttributeOperation;
+export type EntityAttributesOperation = UpsertEntityAttributeOperation | DeleteEntityAttributeOperation;
 export {};
 //# sourceMappingURL=authorization-attributes-contracts.d.ts.map

package/dist/esm/types/authorization-attributes-contracts.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"authorization-attributes-contracts.d.ts","sourceRoot":"","sources":["../../../src/types/authorization-attributes-contracts.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAGrC,MAAM,MAAM,YAAY,GACpB,SAAS,GACT,iBAAiB,GACjB,WAAW,GACX,OAAO,GACP,MAAM,GACN,MAAM,GACN,UAAU,GACV,UAAU,GACV,KAAK,CAAC;AAGV,MAAM,MAAM,UAAU,GAClB,MAAM,GACN,MAAM,GACN,SAAS,CAAC;AAGd,MAAM,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAGxC,MAAM,MAAM,oBAAoB,GAAG,MAAM,CAAC;AAG1C,MAAM,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAGxC,MAAM,MAAM,wBAAwB,GAAG,kBAAkB,GAAG,oBAAoB,CAAC;AACjF,MAAM,MAAM,sBAAsB,GAAG,kBAAkB,GAAG,kBAAkB,CAAC;AAG7E,MAAM,WAAW,2BAA2B;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,YAAY,CAAC;IAC3B,GAAG,EAAE,wBAAwB,CAAC;IAC9B,KAAK,EAAE,MAAM,CAAC;CACf;AAGD,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,UAAU,CAAC;IACvB,GAAG,EAAE,sBAAsB,CAAC;IAC5B,KAAK,EAAE,MAAM,CAAC;CACf;AAGD,MAAM,WAAW,yBAAyB;IACxC,UAAU,EAAE,2BAA2B,EAAE,CAAC;CAC3C;AAED,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,yBAAyB,EAAE,CAAC;CACzC;AAGD,MAAM,WAAW,uBAAuB;IACtC,YAAY,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC/B,UAAU,EAAE,QAAQ,CAAC,IAAI,CAAC,CAAC;IAC3B,GAAG,EAAE,MAAM,CAAC;CACb;AAED,oBAAY,8BAA8B;IACxC,MAAM,WAAW;IACjB,MAAM,WAAW;CAClB;AAED,UAAU,gCAAiC,SAAQ,2BAA2B;IAC5E,aAAa,EAAE,8BAA8B,CAAC,MAAM,CAAC;CACtD;AAED,UAAU,gCAAiC,SAAQ,uBAAuB;IACxE,aAAa,EAAE,8BAA8B,CAAC,MAAM,CAAC;CACtD;AAED,MAAM,MAAM,2BAA2B,GAAG,gCAAgC,GAAG,gCAAgC,CAAC"}
+{"version":3,"file":"authorization-attributes-contracts.d.ts","sourceRoot":"","sources":["../../../src/types/authorization-attributes-contracts.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAGrC,MAAM,MAAM,YAAY,GACpB,SAAS,GACT,iBAAiB,GACjB,WAAW,GACX,OAAO,GACP,MAAM,GACN,MAAM,GACN,UAAU,GACV,UAAU,GACV,KAAK,CAAC;AAGV,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,MAAM,GAAG,SAAS,CAAC;AAGrD,MAAM,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAGxC,MAAM,MAAM,oBAAoB,GAAG,MAAM,CAAC;AAG1C,MAAM,MAAM,kBAAkB,GAAG,MAAM,CAAC;AAGxC,MAAM,MAAM,wBAAwB,GAAG,kBAAkB,GAAG,oBAAoB,CAAC;AACjF,MAAM,MAAM,sBAAsB,GAAG,kBAAkB,GAAG,kBAAkB,CAAC;AAG7E,MAAM,WAAW,2BAA2B;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,YAAY,CAAC;IAC3B,GAAG,EAAE,wBAAwB,CAAC;IAC9B,KAAK,EAAE,MAAM,CAAC;CACf;AAGD,MAAM,WAAW,yBAAyB;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,EAAE,UAAU,CAAC;IACvB,GAAG,EAAE,sBAAsB,CAAC;IAC5B,KAAK,EAAE,MAAM,CAAC;CACf;AAGD,MAAM,WAAW,yBAAyB;IACxC,UAAU,EAAE,2BAA2B,EAAE,CAAC;CAC3C;AAED,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,yBAAyB,EAAE,CAAC;CACzC;AAGD,MAAM,WAAW,uBAAuB;IACtC,YAAY,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC;IAC/B,UAAU,EAAE,QAAQ,CAAC,IAAI,CAAC,CAAC;IAC3B,GAAG,EAAE,MAAM,CAAC;CACb;AAED,MAAM,WAAW,qBAAqB;IACpC,UAAU,EAAE,UAAU,CAAC;IACvB,QAAQ,EAAE,MAAM,CAAC;IACjB,GAAG,EAAE,MAAM,CAAC;CACb;AAED,oBAAY,8BAA8B;IACxC,MAAM,WAAW;IACjB,MAAM,WAAW;CAClB;AAED,oBAAY,4BAA4B;IACtC,MAAM,WAAW;IACjB,MAAM,WAAW;CAClB;AAED,UAAU,gCAAiC,SAAQ,2BAA2B;IAC5E,aAAa,EAAE,8BAA8B,CAAC,MAAM,CAAC;CACtD;AAED,UAAU,gCAAiC,SAAQ,uBAAuB;IACxE,aAAa,EAAE,8BAA8B,CAAC,MAAM,CAAC;CACtD;AAED,UAAU,8BAA+B,SAAQ,yBAAyB;IACxE,aAAa,EAAE,4BAA4B,CAAC,MAAM,CAAC;CACpD;AAED,UAAU,8BAA+B,SAAQ,qBAAqB;IACpE,aAAa,EAAE,4BAA4B,CAAC,MAAM,CAAC;CACpD;AAED,MAAM,MAAM,2BAA2B,GAAG,gCAAgC,GAAG,gCAAgC,CAAC;AAC9G,MAAM,MAAM,yBAAyB,GAAG,8BAA8B,GAAG,8BAA8B,CAAC"}

package/dist/esm/types/authorization-attributes-contracts.mjs

@@ -3,5 +3,10 @@ var ResourceAttributeOperationEnum;
     ResourceAttributeOperationEnum["UPSERT"] = "upsert";
     ResourceAttributeOperationEnum["DELETE"] = "delete";
 })(ResourceAttributeOperationEnum || (ResourceAttributeOperationEnum = {}));
+var EntityAttributeOperationEnum;
+(function (EntityAttributeOperationEnum) {
+    EntityAttributeOperationEnum["UPSERT"] = "upsert";
+    EntityAttributeOperationEnum["DELETE"] = "delete";
+})(EntityAttributeOperationEnum || (EntityAttributeOperationEnum = {}));
 
-export { ResourceAttributeOperationEnum };
+export { EntityAttributeOperationEnum, ResourceAttributeOperationEnum };

package/dist/resource-attribute-assignment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAG/E,qBAAa,2BAA2B;IACtC,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;IAC3C,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAE3B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IA8BlG;;;OAGG;IACH,GAAG,IAAI;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAS/E;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAWpD"}
+{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAG/E,qBAAa,2BAA2B;IACtC,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;IAC3C,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAE3B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IA4BlG;;;OAGG;IACH,GAAG,IAAI;QAAE,UAAU,EAAE,MAAM,CAAC;QAAC,YAAY,EAAE,MAAM,CAAC;QAAC,GAAG,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE;IAS/E;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAWpD"}

package/dist/resource-attributes-constants.d.ts

@@ -21,5 +21,5 @@ export declare const RESOURCE_ATTRIBUTES_CONSTANTS: {
         readonly SYSTEM_ENTITY_TYPE: "system_entity_type";
     };
 };
-export type ResourceType = typeof RESOURCE_TYPES[keyof typeof RESOURCE_TYPES];
+export type ResourceType = (typeof RESOURCE_TYPES)[keyof typeof RESOURCE_TYPES];
 //# sourceMappingURL=resource-attributes-constants.d.ts.map

package/dist/resource-attributes-constants.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc;;;;;;;;;;CAUjB,CAAC;AAEX,eAAO,MAAM,6BAA6B;;;;;;;;;;;CAWhC,CAAC;AAEX,MAAM,MAAM,YAAY,GAAG,OAAO,cAAc,CAAC,MAAM,OAAO,cAAc,CAAC,CAAC"}
+{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,cAAc;;;;;;;;;;CAUjB,CAAC;AAEX,eAAO,MAAM,6BAA6B;;;;;;;;;;;CAWhC,CAAC;AAEX,MAAM,MAAM,YAAY,GAAG,CAAC,OAAO,cAAc,CAAC,CAAC,MAAM,OAAO,cAAc,CAAC,CAAC"}