@mondaydotcomorg/monday-authorization 3.7.0-feat-shaime-support-entity-attributes-4-49e1de0 → 3.7.1

package/dist/esm/authorization-attributes-sns-service.mjs

@@ -1,14 +1,14 @@
 import chunk from 'lodash/chunk.js';
 import { sendToSns, getTopicAttributes } from '@mondaydotcomorg/monday-sns';
-import { AttributeOperation } from './types/authorization-attributes-contracts.mjs';
 import { logger } from './authorization-internal-service.mjs';
 import { SnsTopicType, ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, RESOURCE_SNS_ARN_ENV_VAR_NAME, RESOURCE_SNS_DEV_TEST_NAME, ENTITY_SNS_ARN_ENV_VAR_NAME, ENTITY_SNS_DEV_TEST_NAME } from './constants/sns.mjs';
+import { BaseAuthorizationAttributesService } from './base-authorization-attributes-service.mjs';
 
 /**
  * Service class for managing resource attributes asynchronously via SNS.
  * Provides asynchronous operations to create/update and delete attributes on resources.
  */
-class AuthorizationAttributesSnsService {
+class AuthorizationAttributesSnsService extends BaseAuthorizationAttributesService {
     static LOG_TAG = 'authorization_attributes';
     resourceSnsArn;
     entitySnsArn;
@@ -16,128 +16,91 @@ class AuthorizationAttributesSnsService {
      * Public constructor to create the AuthorizationAttributesSnsService instance.
      */
     constructor() {
+        super();
         this.resourceSnsArn = AuthorizationAttributesSnsService.getSnsTopicArn(SnsTopicType.RESOURCE);
         this.entitySnsArn = AuthorizationAttributesSnsService.getSnsTopicArn(SnsTopicType.ENTITY);
     }
     /**
-     * Async function to upsert resource attributes using SNS.
-     * Sends the updates request to SNS and returns before the change actually took place.
+     * Async function to delete a resource attribute using SNS.
+     * Sends the delete request to SNS and returns before the change actually took place.
      * @param accountId The account ID
-     * @param appName App name of the calling app
-     * @param callerActionIdentifier Action identifier
-     * @param resourceAttributeAssignments Array of resource attribute assignments to upsert
-     * @return Promise with array of sent operations
-     */
-    async upsertResourceAttributes(accountId, resourceAttributeAssignments, appName, callerActionIdentifier) {
-        if (!appName || !callerActionIdentifier) {
-            throw new Error('appName and callerActionIdentifier are required for SNS service');
-        }
-        const operations = resourceAttributeAssignments.map(assignment => ({
-            ...assignment,
-            operationType: AttributeOperation.UPSERT,
-        }));
-        return this.updateResourceAttributes(accountId, appName, callerActionIdentifier, operations);
-    }
-    /**
-     * Async function to delete resource attributes using SNS.
-     * Sends the updates request to SNS and returns before the change actually took place.
-     * @param accountId The account ID
-     * @param appName App name of the calling app
-     * @param callerActionIdentifier Action identifier
      * @param resource The resource (resourceType, resourceId)
-     * @param attributeKeys Array of attribute keys to delete
-     * @return Promise with array of sent operations
-     */
-    async deleteResourceAttributes(accountId, resource, attributeKeys, appName, callerActionIdentifier) {
-        if (!appName || !callerActionIdentifier) {
-            throw new Error('appName and callerActionIdentifier are required for SNS service');
-        }
-        const operations = attributeKeys.map(key => ({
-            resourceType: resource.type,
-            resourceId: resource.id,
-            key,
-            operationType: AttributeOperation.DELETE,
-        }));
-        return this.updateResourceAttributes(accountId, appName, callerActionIdentifier, operations);
-    }
-    /**
-     * Async function to upsert entity attributes using SNS.
-     * Sends the updates request to SNS and returns before the change actually took place.
-     * @param accountId The account ID
+     * @param attributeKey Attribute key to delete
      * @param appName App name of the calling app
      * @param callerActionIdentifier Action identifier
-     * @param entityAttributeAssignments Array of entity attribute assignments to upsert
-     * @return Promise with array of sent operations
+     * @return Promise with sent operation
      */
-    async upsertEntityAttributes(accountId, entityAttributeAssignments, appName, callerActionIdentifier) {
+    async deleteResourceAttributes(accountId, resource, attributeKey, appName, callerActionIdentifier) {
         if (!appName || !callerActionIdentifier) {
             throw new Error('appName and callerActionIdentifier are required for SNS service');
         }
-        const operations = entityAttributeAssignments.map(assignment => {
-            return {
-                entityId: assignment.entityId,
-                entityType: assignment.entityType,
-                key: assignment.attributeKey,
-                value: assignment.attributeValue,
-                operationType: AttributeOperation.UPSERT,
-            };
-        });
-        return this.updateEntityAttributes(accountId, appName, callerActionIdentifier, operations);
+        const operation = await super.deleteResourceAttributes(accountId, resource, attributeKey);
+        const [result] = await this.sendOperationsToSns(this.resourceSnsArn, accountId, appName, callerActionIdentifier, [operation], ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization resource attributes async delete: failed to send operations to SNS');
+        return result;
     }
     /**
-     * Async function to delete entity attributes using SNS.
-     * Sends the updates request to SNS and returns before the change actually took place.
+     * Async function to delete an entity attribute using SNS.
+     * Sends the delete request to SNS and returns before the change actually took place.
      * @param accountId The account ID
-     * @param appName App name of the calling app
-     * @param callerActionIdentifier Action identifier
      * @param entityType The entity type
      * @param entityId The entity ID
-     * @param attributeKeys Array of attribute keys to delete
-     * @return Promise with array of sent operations
+     * @param attributeKey Attribute key to delete
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @return Promise with sent operation
      */
-    async deleteEntityAttributes(accountId, entityType, entityId, attributeKeys, appName, callerActionIdentifier) {
+    async deleteEntityAttributes(accountId, entityType, entityId, attributeKey, appName, callerActionIdentifier) {
         if (!appName || !callerActionIdentifier) {
             throw new Error('appName and callerActionIdentifier are required for SNS service');
         }
-        const operations = attributeKeys.map(key => ({
-            entityType: entityType,
-            entityId,
-            key,
-            operationType: AttributeOperation.DELETE,
-        }));
-        return this.updateEntityAttributes(accountId, appName, callerActionIdentifier, operations);
+        const operation = await super.deleteEntityAttributes(accountId, entityType, entityId, attributeKey);
+        const [result] = await this.sendOperationsToSns(this.entitySnsArn, accountId, appName, callerActionIdentifier, [operation], ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization entity attributes async delete: failed to send operations to SNS');
+        return result;
     }
     /**
-     *  Async function, this function only send the updates request to SNS and return before the change actually took place
+     *  Async function, this function only send the update request to SNS and return before the change actually took place
      * @param accountId
      * @param appName - App name of the calling app
      * @param callerActionIdentifier - action identifier
-     * @param resourceAttributeOperations - Array of operations to do on resource attributes.
-     * @return {Promise<ResourceAttributesOperation[]>} Array of sent operations
+     * @param resourceAttributeOperation - Operation to do on resource attribute.
+     * @return {Promise<ResourceAttributeUpsertOperation>} Sent operation
      *  */
-    async updateResourceAttributes(accountId, appName, callerActionIdentifier, resourceAttributeOperations) {
-        const topicArn = this.resourceSnsArn;
-        const sendToSnsPromises = [];
-        const operationChucks = chunk(resourceAttributeOperations, ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE);
-        for (const operationsChunk of operationChucks) {
-            sendToSnsPromises.push(this.sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization resource attributes async update: failed to send operations to SNS'));
-        }
-        return (await Promise.all(sendToSnsPromises)).flat();
+    async updateResourceAttributes(accountId, appName, callerActionIdentifier, resourceAttributeOperation) {
+        await super.updateResourceAttributes(accountId, appName, callerActionIdentifier, resourceAttributeOperation);
+        const [result] = await this.sendOperationsToSns(this.resourceSnsArn, accountId, appName, callerActionIdentifier, [resourceAttributeOperation], ASYNC_RESOURCE_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, RESOURCE_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization resource attributes async update: failed to send operations to SNS');
+        return result;
     }
     /**
-     *  Async function, this function only send the updates request to SNS and return before the change actually took place
+     *  Async function, this function only send the update request to SNS and return before the change actually took place
      * @param accountId
      * @param appName - App name of the calling app
      * @param callerActionIdentifier - action identifier
-     * @param entityAttributeOperations - Array of operations to do on entity attributes.
-     * @return {Promise<EntityAttributeOperation[]>} Array of sent operations
+     * @param entityAttributeOperation - Operation to do on entity attribute.
+     * @return {Promise<EntityAttributeUpsertOperation>} Sent operation
      *  */
-    async updateEntityAttributes(accountId, appName, callerActionIdentifier, entityAttributeOperations) {
-        const topicArn = this.entitySnsArn;
+    async updateEntityAttributes(accountId, appName, callerActionIdentifier, entityAttributeOperation) {
+        await super.updateEntityAttributes(accountId, appName, callerActionIdentifier, entityAttributeOperation);
+        const [result] = await this.sendOperationsToSns(this.entitySnsArn, accountId, appName, callerActionIdentifier, [entityAttributeOperation], ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization entity attributes async update: failed to send operations to SNS');
+        return result;
+    }
+    /**
+     * Base function to send attribute operations to SNS.
+     * Chunks operations and sends them in parallel.
+     * @param topicArn The SNS topic ARN to send messages to
+     * @param accountId The account ID
+     * @param appName App name of the calling app
+     * @param callerActionIdentifier Action identifier
+     * @param operations Array of operations to send
+     * @param chunkSize Maximum number of operations per message
+     * @param messageKind The kind of message being sent
+     * @param errorLogMessage Error message to log if sending fails
+     * @return Promise with array of sent operations
+     */
+    async sendOperationsToSns(topicArn, accountId, appName, callerActionIdentifier, operations, chunkSize, messageKind, errorLogMessage) {
         const sendToSnsPromises = [];
-        const operationChucks = chunk(entityAttributeOperations, ASYNC_ENTITY_ATTRIBUTES_MAX_OPERATIONS_PER_MESSAGE);
-        for (const operationsChunk of operationChucks) {
-            sendToSnsPromises.push(this.sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk, ENTITY_ATTRIBUTES_SNS_UPDATE_OPERATION_MESSAGE_KIND, 'Authorization entity attributes async update: failed to send operations to SNS'));
+        const operationChunks = chunk(operations, chunkSize);
+        for (const operationsChunk of operationChunks) {
+            sendToSnsPromises.push(this.sendSingleSnsMessage(topicArn, accountId, appName, callerActionIdentifier, operationsChunk, messageKind, errorLogMessage));
         }
         return (await Promise.all(sendToSnsPromises)).flat();
     }

package/dist/esm/authorization-service.d.ts

@@ -33,7 +33,6 @@ export declare class AuthorizationService {
     private static fetchIsUserGrantedWithFeature;
     private static getCachedKeyName;
     static canActionInScope(accountId: number, userId: number, action: string, scope: ScopeOptions): Promise<ScopedActionPermit>;
-    private static getProfile;
     static canActionInScopeMultiple(accountId: number, userId: number, scopedActions: ScopedAction[]): Promise<ScopedActionResponseObject[]>;
     private static isAuthorizedSingular;
     private static isAuthorizedMultiple;

package/dist/esm/authorization-service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"authorization-service.d.ts","sourceRoot":"","sources":["../../src/authorization-service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAmB,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAC5E,OAAO,EAAE,MAAM,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAG7F,OAAO,EACL,YAAY,EACZ,kBAAkB,EAClB,0BAA0B,EAC1B,YAAY,EACb,MAAM,kCAAkC,CAAC;AAe1C,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,mBAAmB,CAAC,EAAE,mBAAmB,EAAE,CAAC;CAC7C;AAED,wBAAgB,sBAAsB,CAAC,wBAAwB,EAAE,kBAAkB,QAElF;AAMD,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,MAAM,KAAK,QAAQ,GAK1B;IACD,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAW;IAEpC,OAAO,CAAC,MAAM,KAAK,WAAW,GAK7B;IACD,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAc;IAE1C,MAAM,CAAC,eAAe,IAAI,IAAI;IAK9B,MAAM,CAAC,WAAW,CAAC,MAAC;IACpB,MAAM,CAAC,sCAAsC,CAAC,EAAE,MAAM,CAAC;IACvD,MAAM,CAAC,YAAY,CAAC,EAAE,YAAY,CAAC;IAEnC;;;OAGG;WACU,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,QAAQ,EAAE,EACrB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,iBAAiB,CAAC;WAEhB,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,2BAA2B,EAAE,mBAAmB,EAAE,GACjD,OAAO,CAAC,iBAAiB,CAAC;IAY7B;;;OAGG;WACU,wBAAwB,CACnC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,MAAM,EACnB,OAAO,GAAE;QAAE,eAAe,CAAC,EAAE,OAAO,CAAA;KAAO,GAC1C,OAAO,CAAC,OAAO,CAAC;mBAkBE,6BAA6B;IAclD,OAAO,CAAC,MAAM,CAAC,gBAAgB;WAIlB,gBAAgB,CAC3B,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,YAAY,GAClB,OAAO,CAAC,kBAAkB,CAAC;IAM9B,OAAO,CAAC,MAAM,CAAC,UAAU;WAsBZ,wBAAwB,CACnC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,aAAa,EAAE,YAAY,EAAE,GAC5B,OAAO,CAAC,0BAA0B,EAAE,CAAC;mBA4CnB,oBAAoB;mBAUpB,oBAAoB;CAmF1C;AAED,wBAAgB,cAAc,CAC5B,MAAM,KAAA,EACN,sCAAsC,GAAE,MAAiD,QAY1F;AAED,wBAAsB,eAAe,kBAMpC;AAED,wBAAgB,yBAAyB,CAAC,SAAS,EAAE,QAAQ,EAAE,EAAE,MAAM,EAAE,MAAM,GAAG,mBAAmB,CAepG"}
+{"version":3,"file":"authorization-service.d.ts","sourceRoot":"","sources":["../../src/authorization-service.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAmB,YAAY,EAAE,MAAM,6BAA6B,CAAC;AAC5E,OAAO,EAAE,MAAM,EAAE,mBAAmB,EAAE,mBAAmB,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAG7F,OAAO,EACL,YAAY,EACZ,kBAAkB,EAClB,0BAA0B,EAC1B,YAAY,EACb,MAAM,kCAAkC,CAAC;AAY1C,MAAM,WAAW,iBAAiB;IAChC,YAAY,EAAE,OAAO,CAAC;IACtB,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,mBAAmB,CAAC,EAAE,mBAAmB,EAAE,CAAC;CAC7C;AAED,wBAAgB,sBAAsB,CAAC,wBAAwB,EAAE,kBAAkB,QAElF;AAMD,qBAAa,oBAAoB;IAC/B,OAAO,CAAC,MAAM,KAAK,QAAQ,GAK1B;IACD,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAW;IAEpC,OAAO,CAAC,MAAM,KAAK,WAAW,GAK7B;IACD,OAAO,CAAC,MAAM,CAAC,YAAY,CAAC,CAAc;IAE1C,MAAM,CAAC,eAAe,IAAI,IAAI;IAK9B,MAAM,CAAC,WAAW,CAAC,MAAC;IACpB,MAAM,CAAC,sCAAsC,CAAC,EAAE,MAAM,CAAC;IACvD,MAAM,CAAC,YAAY,CAAC,EAAE,YAAY,CAAC;IAEnC;;;OAGG;WACU,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,SAAS,EAAE,QAAQ,EAAE,EACrB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,iBAAiB,CAAC;WAEhB,YAAY,CACvB,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,2BAA2B,EAAE,mBAAmB,EAAE,GACjD,OAAO,CAAC,iBAAiB,CAAC;IAY7B;;;OAGG;WACU,wBAAwB,CACnC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,MAAM,EACnB,OAAO,GAAE;QAAE,eAAe,CAAC,EAAE,OAAO,CAAA;KAAO,GAC1C,OAAO,CAAC,OAAO,CAAC;mBAkBE,6BAA6B;IAclD,OAAO,CAAC,MAAM,CAAC,gBAAgB;WAIlB,gBAAgB,CAC3B,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,MAAM,EAAE,MAAM,EACd,KAAK,EAAE,YAAY,GAClB,OAAO,CAAC,kBAAkB,CAAC;WAMjB,wBAAwB,CACnC,SAAS,EAAE,MAAM,EACjB,MAAM,EAAE,MAAM,EACd,aAAa,EAAE,YAAY,EAAE,GAC5B,OAAO,CAAC,0BAA0B,EAAE,CAAC;mBA4CnB,oBAAoB;mBAUpB,oBAAoB;CAmF1C;AAED,wBAAgB,cAAc,CAC5B,MAAM,KAAA,EACN,sCAAsC,GAAE,MAAiD,QAY1F;AAED,wBAAsB,eAAe,kBAMpC;AAED,wBAAgB,yBAAyB,CAAC,SAAS,EAAE,QAAQ,EAAE,EAAE,MAAM,EAAE,MAAM,GAAG,mBAAmB,CAepG"}

package/dist/esm/authorization-service.mjs

@@ -5,16 +5,13 @@ import { getIgniteClient } from '@mondaydotcomorg/ignite-sdk';
 import { sendAuthorizationCheckResponseTimeMetric } from './prometheus-service.mjs';
 import { recordAuthorizationTiming } from './metrics-service.mjs';
 import { AuthorizationInternalService, logger } from './authorization-internal-service.mjs';
-import { getProfile, PlatformProfile, getAttributionsFromApi } from './attributions-service.mjs';
+import { getProfile, getAttributionsFromApi } from './attributions-service.mjs';
 import { GraphApi } from './clients/graph-api.mjs';
 import { PlatformApi } from './clients/platform-api.mjs';
 import { scopeToResource } from './utils/authorization.utils.mjs';
 
 const GRANTED_FEATURE_CACHE_EXPIRATION_SECONDS = 5 * 60;
 const PLATFORM_AUTHORIZE_PATH = '/internal_ms/authorization/authorize';
-const ALLOWED_SDK_PLATFORM_PROFILES_KEY = 'allowed-sdk-platform-profiles';
-const IN_RELEASE_SDK_PLATFORM_PROFILES_KEY = 'in-release-sdk-platform-profile';
-const PLATFORM_PROFILE_RELEASE_FF = 'sdk-platform-profiles';
 const NAVIGATE_CAN_ACTION_IN_SCOPE_TO_GRAPH_FF = 'navigate-can-action-in-scope-to-graph';
 function setRequestFetchOptions(customMondayFetchOptions) {
     AuthorizationInternalService.setRequestFetchOptions(customMondayFetchOptions);
@@ -88,23 +85,6 @@ class AuthorizationService {
         const scopedActionResponseObjects = await this.canActionInScopeMultiple(accountId, userId, scopedActions);
         return scopedActionResponseObjects[0].permit;
     }
-    static getProfile(accountId, userId) {
-        const appName = process.env.APP_NAME ?? 'INVALID_APP_NAME';
-        if (!this.igniteClient) {
-            logger.error({ tag: 'authorization-service' }, 'AuthorizationService: igniteClient is not set, failing request');
-            throw new Error('AuthorizationService: igniteClient is not set, failing request');
-        }
-        if (this.igniteClient.configuration.getObjectValue(ALLOWED_SDK_PLATFORM_PROFILES_KEY, []).includes(appName)) {
-            return getProfile();
-        }
-        if (this.igniteClient.configuration
-            .getObjectValue(IN_RELEASE_SDK_PLATFORM_PROFILES_KEY, [])
-            .includes(appName) &&
-            this.igniteClient.isReleased(PLATFORM_PROFILE_RELEASE_FF, { accountId, userId })) {
-            return getProfile();
-        }
-        return PlatformProfile.APP;
-    }
     static async canActionInScopeMultiple(accountId, userId, scopedActions) {
         if (scopedActions.length === 0) {
             return [];
@@ -119,7 +99,7 @@ class AuthorizationService {
         }
         else {
             apiType = 'platform';
-            const profile = this.getProfile(accountId, userId);
+            const profile = getProfile();
             const internalAuthToken = AuthorizationInternalService.generateInternalAuthToken(accountId, userId);
             scopedActionResponseObjects = await this.platformApi.checkPermissions(profile, internalAuthToken, userId, scopedActions);
         }
@@ -140,7 +120,7 @@ class AuthorizationService {
         return this.isAuthorizedMultiple(accountId, userId, authorizationObjects);
     }
     static async isAuthorizedMultiple(accountId, userId, authorizationRequestObjects) {
-        const profile = this.getProfile(accountId, userId);
+        const profile = getProfile();
         const internalAuthToken = AuthorizationInternalService.generateInternalAuthToken(accountId, userId);
         const startTime = performance.now();
         const attributionHeaders = getAttributionsFromApi();

package/dist/esm/base-attribute-assignment.d.ts

@@ -1,20 +1,19 @@
-import { EntityAttributeAssignment, ResourceAttributeDelete } from './types/authorization-attributes-contracts';
 /**
  * Base class for attribute assignments (Resource or Entity)
  * Provides common validation and functionality
  */
-export declare abstract class BaseAttributeAssignment<TId extends number, TType extends string> {
-    readonly id: TId;
-    readonly type: TType;
+export declare abstract class BaseAttributeAssignment<T, R> {
+    readonly id: number;
+    readonly type: T;
     readonly attributeKey: string;
     readonly attributeValue: string;
-    constructor(id: TId, type: string, attributeKey: string, attributeValue: string, validTypes: readonly string[], idFieldName: string, typeFieldName: string);
+    constructor(id: number, type: T, attributeKey: string, attributeValue: string);
     /**
      * Compares two assignments for equality
      * @param other Another assignment instance
      * @returns true if all properties are equal
      */
-    equals(other: BaseAttributeAssignment<TId, TType>): boolean;
-    abstract toDataTransferObject(): EntityAttributeAssignment | ResourceAttributeDelete;
+    equals(other: BaseAttributeAssignment<T, R>): boolean;
+    abstract toDataTransferObject(): R;
 }
 //# sourceMappingURL=base-attribute-assignment.d.ts.map

package/dist/esm/base-attribute-assignment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"base-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/base-attribute-assignment.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,yBAAyB,EAAE,uBAAuB,EAAE,MAAM,4CAA4C,CAAC;AAEhH;;;GAGG;AACH,8BAAsB,uBAAuB,CAAC,GAAG,SAAS,MAAM,EAAE,KAAK,SAAS,MAAM;IACpF,SAAgB,EAAE,EAAE,GAAG,CAAC;IACxB,SAAgB,IAAI,EAAE,KAAK,CAAC;IAC5B,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAGrC,EAAE,EAAE,GAAG,EACP,IAAI,EAAE,MAAM,EACZ,YAAY,EAAE,MAAM,EACpB,cAAc,EAAE,MAAM,EACtB,UAAU,EAAE,SAAS,MAAM,EAAE,EAC7B,WAAW,EAAE,MAAM,EACnB,aAAa,EAAE,MAAM;IAcvB;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,uBAAuB,CAAC,GAAG,EAAE,KAAK,CAAC,GAAG,OAAO;IAI3D,QAAQ,CAAC,oBAAoB,IAAI,yBAAyB,GAAG,uBAAuB;CACrF"}
+{"version":3,"file":"base-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/base-attribute-assignment.ts"],"names":[],"mappings":"AAEA;;;GAGG;AACH,8BAAsB,uBAAuB,CAAC,CAAC,EAAE,CAAC;IAChD,SAAgB,EAAE,EAAE,MAAM,CAAC;IAC3B,SAAgB,IAAI,EAAE,CAAC,CAAC;IACxB,SAAgB,YAAY,EAAE,MAAM,CAAC;IACrC,SAAgB,cAAc,EAAE,MAAM,CAAC;gBAE3B,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IAO7E;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,uBAAuB,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,OAAO;IAIrD,QAAQ,CAAC,oBAAoB,IAAI,CAAC;CACnC"}

package/dist/esm/base-attribute-assignment.mjs

@@ -1,4 +1,3 @@
-import { ValidationUtils } from './utils/validation.mjs';
 import isEqual from 'lodash/isEqual.js';
 
 /**
@@ -10,12 +9,11 @@ class BaseAttributeAssignment {
     type;
     attributeKey;
     attributeValue;
-    constructor(id, type, attributeKey, attributeValue, validTypes, idFieldName, typeFieldName) {
-        const validated = ValidationUtils.validateAssignment({ id, type, attributeKey, attributeValue }, validTypes, { id: idFieldName, type: typeFieldName });
-        this.id = validated.id;
-        this.type = validated.type;
-        this.attributeKey = validated.attributeKey;
-        this.attributeValue = validated.attributeValue;
+    constructor(id, type, attributeKey, attributeValue) {
+        this.id = id;
+        this.type = type;
+        this.attributeKey = attributeKey;
+        this.attributeValue = attributeValue;
     }
     /**
      * Compares two assignments for equality

package/dist/esm/base-authorization-attributes-service.d.ts

@@ -0,0 +1,32 @@
+import { EntityType } from './entity-attributes-constants';
+import { ResourceAttributeDeleteOperation, EntityAttributeDeleteOperation, ResourceAttributeUpsertOperation, EntityAttributeUpsertOperation } from './types/authorization-attributes-contracts';
+import { Resource } from './types/general';
+/**
+ * Abstract base class for authorization attributes operations.
+ * Both MS (HTTP) and SNS (async) services extend this class.
+ */
+export declare abstract class BaseAuthorizationAttributesService {
+    /**
+     * Deletes a resource attribute.
+     * Returns Promise<ResourceAttributeDeleteOperation>
+     */
+    deleteResourceAttributes(accountId: number, resource: Resource, attributeKey: string, _appName?: string, _callerActionIdentifier?: string): Promise<ResourceAttributeDeleteOperation>;
+    /**
+     * Deletes an entity attribute.
+     * Returns Promise<EntityAttributeDeleteOperation>
+     */
+    deleteEntityAttributes(accountId: number, entityType: EntityType, entityId: number, attributeKey: string): Promise<EntityAttributeDeleteOperation>;
+    /**
+     * Updates a resource attribute (single operation - upsert only).
+     * For MS service: performs upsert operation
+     * For SNS service: returns Promise<ResourceAttributeUpsertOperation>
+     */
+    updateResourceAttributes(accountId: number, _appName: string, _callerActionIdentifier: string, resourceAttributeOperation: ResourceAttributeUpsertOperation): Promise<ResourceAttributeUpsertOperation>;
+    /**
+     * Updates an entity attribute (single operation - upsert only).
+     * For MS service: performs upsert operation
+     * For SNS service: returns Promise<EntityAttributeUpsertOperation>
+     */
+    updateEntityAttributes(accountId: number, _appName: string, _callerActionIdentifier: string, entityAttributeOperation: EntityAttributeUpsertOperation): Promise<EntityAttributeUpsertOperation>;
+}
+//# sourceMappingURL=base-authorization-attributes-service.d.ts.map

package/dist/esm/base-authorization-attributes-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"base-authorization-attributes-service.d.ts","sourceRoot":"","sources":["../../src/base-authorization-attributes-service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAC;AAC3D,OAAO,EACL,gCAAgC,EAChC,8BAA8B,EAC9B,gCAAgC,EAChC,8BAA8B,EAE/B,MAAM,4CAA4C,CAAC;AACpD,OAAO,EAAE,QAAQ,EAAE,MAAM,iBAAiB,CAAC;AAG3C;;;GAGG;AACH,8BAAsB,kCAAkC;IACtD;;;OAGG;IACH,wBAAwB,CACtB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,QAAQ,EAClB,YAAY,EAAE,MAAM,EACpB,QAAQ,CAAC,EAAE,MAAM,EACjB,uBAAuB,CAAC,EAAE,MAAM,GAC/B,OAAO,CAAC,gCAAgC,CAAC;IAY5C;;;OAGG;IACH,sBAAsB,CACpB,SAAS,EAAE,MAAM,EACjB,UAAU,EAAE,UAAU,EACtB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC,8BAA8B,CAAC;IAY1C;;;;OAIG;IACH,wBAAwB,CACtB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,EAChB,uBAAuB,EAAE,MAAM,EAC/B,0BAA0B,EAAE,gCAAgC,GAC3D,OAAO,CAAC,gCAAgC,CAAC;IAK5C;;;;OAIG;IACH,sBAAsB,CACpB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,EAChB,uBAAuB,EAAE,MAAM,EAC/B,wBAAwB,EAAE,8BAA8B,GACvD,OAAO,CAAC,8BAA8B,CAAC;CAK3C"}

package/dist/esm/base-authorization-attributes-service.mjs

@@ -0,0 +1,61 @@
+import { AttributeOperation } from './types/authorization-attributes-contracts.mjs';
+import { ValidationUtils } from './utils/validation.mjs';
+
+/**
+ * Abstract base class for authorization attributes operations.
+ * Both MS (HTTP) and SNS (async) services extend this class.
+ */
+class BaseAuthorizationAttributesService {
+    /**
+     * Deletes a resource attribute.
+     * Returns Promise<ResourceAttributeDeleteOperation>
+     */
+    deleteResourceAttributes(accountId, resource, attributeKey, _appName, _callerActionIdentifier) {
+        const operation = {
+            resourceType: resource.type,
+            resourceId: resource.id,
+            key: attributeKey,
+            operationType: AttributeOperation.DELETE,
+        };
+        ValidationUtils.validateInteger(accountId);
+        ValidationUtils.validatDeleteResourceAssignment(operation);
+        return Promise.resolve(operation);
+    }
+    /**
+     * Deletes an entity attribute.
+     * Returns Promise<EntityAttributeDeleteOperation>
+     */
+    deleteEntityAttributes(accountId, entityType, entityId, attributeKey) {
+        const operation = {
+            entityType: entityType,
+            entityId: entityId,
+            key: attributeKey,
+            operationType: AttributeOperation.DELETE,
+        };
+        ValidationUtils.validateInteger(accountId);
+        ValidationUtils.validatDeleteEntityAssignment(operation);
+        return Promise.resolve(operation);
+    }
+    /**
+     * Updates a resource attribute (single operation - upsert only).
+     * For MS service: performs upsert operation
+     * For SNS service: returns Promise<ResourceAttributeUpsertOperation>
+     */
+    updateResourceAttributes(accountId, _appName, _callerActionIdentifier, resourceAttributeOperation) {
+        ValidationUtils.validateInteger(accountId);
+        ValidationUtils.validatUpsertResourceAssignment(resourceAttributeOperation);
+        return Promise.resolve(resourceAttributeOperation);
+    }
+    /**
+     * Updates an entity attribute (single operation - upsert only).
+     * For MS service: performs upsert operation
+     * For SNS service: returns Promise<EntityAttributeUpsertOperation>
+     */
+    updateEntityAttributes(accountId, _appName, _callerActionIdentifier, entityAttributeOperation) {
+        ValidationUtils.validateInteger(accountId);
+        ValidationUtils.validatUpsertEntityAssignment(entityAttributeOperation);
+        return Promise.resolve(entityAttributeOperation);
+    }
+}
+
+export { BaseAuthorizationAttributesService };

package/dist/esm/entity-attribute-assignment.d.ts

@@ -1,15 +1,11 @@
 import { EntityType } from './entity-attributes-constants';
 import { BaseAttributeAssignment } from './base-attribute-assignment';
-export declare class EntityAttributeAssignment extends BaseAttributeAssignment<number, EntityType> {
+import { EntityAttributeAssignment as EntityAttributeAssignmentContract } from './types/authorization-attributes-contracts';
+export declare class EntityAttributeAssignment extends BaseAttributeAssignment<EntityType, EntityAttributeAssignmentContract> {
     readonly entityId: number;
     readonly entityType: EntityType;
-    constructor(entityId: number, entityType: string, attributeKey: string, attributeValue: string);
-    toDataTransferObject(): {
-        entityId: number;
-        entityType: EntityType;
-        key: string;
-        value: string;
-    };
+    constructor(entityId: number, entityType: EntityType, key: string, value: string);
+    toDataTransferObject(): EntityAttributeAssignmentContract;
     /**
      * Compares two assignments for equality
      * @param other Another EntityAttributeAssignment instance

package/dist/esm/entity-attribute-assignment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"entity-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/entity-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAgB,UAAU,EAAE,MAAM,+BAA+B,CAAC;AACzE,OAAO,EAAE,uBAAuB,EAAE,MAAM,6BAA6B,CAAC;AAEtE,qBAAa,yBAA0B,SAAQ,uBAAuB,CAAC,MAAM,EAAE,UAAU,CAAC;IACxF,SAAgB,QAAQ,EAAE,MAAM,CAAC;IACjC,SAAgB,UAAU,EAAE,UAAU,CAAC;gBAE3B,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IAM9F,oBAAoB;;;;;;IAQpB;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,yBAAyB,GAAG,OAAO;CAGlD"}
+{"version":3,"file":"entity-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/entity-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,MAAM,+BAA+B,CAAC;AAC3D,OAAO,EAAE,uBAAuB,EAAE,MAAM,6BAA6B,CAAC;AACtE,OAAO,EAAE,yBAAyB,IAAI,iCAAiC,EAAE,MAAM,4CAA4C,CAAC;AAE5H,qBAAa,yBAA0B,SAAQ,uBAAuB,CAAC,UAAU,EAAE,iCAAiC,CAAC;IACnH,SAAgB,QAAQ,EAAE,MAAM,CAAC;IACjC,SAAgB,UAAU,EAAE,UAAU,CAAC;gBAE3B,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU,EAAE,GAAG,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM;IAMhF,oBAAoB,IAAI,iCAAiC;IAQzD;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,yBAAyB,GAAG,OAAO;CAGlD"}

package/dist/esm/entity-attribute-assignment.mjs

@@ -1,13 +1,12 @@
-import { ENTITY_TYPES } from './entity-attributes-constants.mjs';
 import { BaseAttributeAssignment } from './base-attribute-assignment.mjs';
 
 class EntityAttributeAssignment extends BaseAttributeAssignment {
     entityId;
     entityType;
-    constructor(entityId, entityType, attributeKey, attributeValue) {
-        super(entityId, entityType, attributeKey, attributeValue, ENTITY_TYPES, 'entityId', 'entityType');
+    constructor(entityId, entityType, key, value) {
+        super(entityId, entityType, key, value);
         this.entityId = entityId;
-        this.entityType = this.type;
+        this.entityType = entityType;
     }
     toDataTransferObject() {
         return {

package/dist/esm/index.d.ts

@@ -19,10 +19,16 @@ export declare function init(options?: InitOptions): Promise<void>;
 export { authorizationCheckMiddleware, getAuthorizationMiddleware, skipAuthorizationMiddleware, } from './authorization-middleware';
 export { AuthorizationService, AuthorizeResponse } from './authorization-service';
 export { AuthorizationAttributesService } from './authorization-attributes-service';
+export * from './resource-attributes-constants';
+export * from './entity-attributes-constants';
+export { ResourceAttributeAssignment } from './resource-attribute-assignment';
+export { EntityAttributeAssignment } from './entity-attribute-assignment';
 export { RolesService } from './roles-service';
 export { MembershipsService } from './memberships';
 export { AuthorizationObject, Resource, BaseRequest, ResourceGetter, ContextGetter } from './types/general';
 export { Translation, ScopedAction, ScopedActionResponseObject, ScopedActionPermit, } from './types/scoped-actions-contracts';
 export { CustomRole, BasicRole, RoleType, RoleCreateRequest, RoleUpdateRequest, RolesResponse } from './types/roles';
+export { AttributeAssignment, AttributeOperation, ResourceAttributeDeleteAssignment, ResourceAttributeUpsertOperation, ResourceAttributeDeleteOperation, EntityAttributeDeleteAssignment, EntityAttributeUpsertOperation, EntityAttributeDeleteOperation, ResourceAttributeAssignment as ResourceAttributeAssignmentContract, EntityAttributeAssignment as EntityAttributeAssignmentContract, } from './types/authorization-attributes-contracts';
+export { BaseAuthorizationAttributesService as IAuthorizationAttributesService } from './base-authorization-attributes-service';
 export { TestKit };
 //# sourceMappingURL=index.d.ts.map

package/dist/esm/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAqB,aAAa,EAAE,MAAM,mBAAmB,CAAC;AACrE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,UAAU,kBAAkB;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE,kBAAkB,CAAC;CAC9B;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBA6BnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAErH,OAAO,EAAE,OAAO,EAAE,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,kBAAkB,EAAE,MAAM,+BAA+B,CAAC;AAGnE,OAAO,EAAqB,aAAa,EAAE,MAAM,mBAAmB,CAAC;AACrE,OAAO,KAAK,OAAO,MAAM,WAAW,CAAC;AAErC,UAAU,kBAAkB;IAC1B,MAAM,CAAC,EAAE,aAAa,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,OAAO,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,UAAU,CAAC,EAAE,GAAG,CAAC;IACjB,kBAAkB,CAAC,EAAE,kBAAkB,CAAC;IACxC,WAAW,CAAC,EAAE,GAAG,CAAC;IAClB,sCAAsC,CAAC,EAAE,MAAM,CAAC;IAChD,OAAO,CAAC,EAAE,kBAAkB,CAAC;CAC9B;AAED,wBAAsB,IAAI,CAAC,OAAO,GAAE,WAAgB,iBA6BnD;AAED,OAAO,EACL,4BAA4B,EAC5B,0BAA0B,EAC1B,2BAA2B,GAC5B,MAAM,4BAA4B,CAAC;AACpC,OAAO,EAAE,oBAAoB,EAAE,iBAAiB,EAAE,MAAM,yBAAyB,CAAC;AAClF,OAAO,EAAE,8BAA8B,EAAE,MAAM,oCAAoC,CAAC;AACpF,cAAc,iCAAiC,CAAC;AAChD,cAAc,+BAA+B,CAAC;AAC9C,OAAO,EAAE,2BAA2B,EAAE,MAAM,iCAAiC,CAAC;AAC9E,OAAO,EAAE,yBAAyB,EAAE,MAAM,+BAA+B,CAAC;AAC1E,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,eAAe,CAAC;AACnD,OAAO,EAAE,mBAAmB,EAAE,QAAQ,EAAE,WAAW,EAAE,cAAc,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC;AAC5G,OAAO,EACL,WAAW,EACX,YAAY,EACZ,0BAA0B,EAC1B,kBAAkB,GACnB,MAAM,kCAAkC,CAAC;AAC1C,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,QAAQ,EAAE,iBAAiB,EAAE,iBAAiB,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AACrH,OAAO,EACL,mBAAmB,EACnB,kBAAkB,EAClB,iCAAiC,EACjC,gCAAgC,EAChC,gCAAgC,EAChC,+BAA+B,EAC/B,8BAA8B,EAC9B,8BAA8B,EAC9B,2BAA2B,IAAI,mCAAmC,EAClE,yBAAyB,IAAI,iCAAiC,GAC/D,MAAM,4CAA4C,CAAC;AACpD,OAAO,EAAE,kCAAkC,IAAI,+BAA+B,EAAE,MAAM,yCAAyC,CAAC;AAEhI,OAAO,EAAE,OAAO,EAAE,CAAC"}

package/dist/esm/index.mjs

@@ -6,9 +6,15 @@ import * as testKit_index from './testKit/index.mjs';
 export { testKit_index as TestKit };
 export { authorizationCheckMiddleware, getAuthorizationMiddleware, skipAuthorizationMiddleware } from './authorization-middleware.mjs';
 export { AuthorizationAttributesService } from './authorization-attributes-service.mjs';
+export { RESOURCE_ATTRIBUTES_CONSTANTS, RESOURCE_TYPES, ResourceType } from './resource-attributes-constants.mjs';
+export { ENTITY_TYPES, EntityType } from './entity-attributes-constants.mjs';
+export { ResourceAttributeAssignment } from './resource-attribute-assignment.mjs';
+export { EntityAttributeAssignment } from './entity-attribute-assignment.mjs';
 export { RolesService } from './roles-service.mjs';
 export { MembershipsService } from './memberships.mjs';
 export { RoleType } from './types/roles.mjs';
+export { AttributeOperation } from './types/authorization-attributes-contracts.mjs';
+export { BaseAuthorizationAttributesService as IAuthorizationAttributesService } from './base-authorization-attributes-service.mjs';
 
 async function init(options = {}) {
     if (options.prometheus) {

package/dist/esm/resource-attribute-assignment.d.ts

@@ -1,15 +1,11 @@
 import { ResourceType } from './resource-attributes-constants';
 import { BaseAttributeAssignment } from './base-attribute-assignment';
-export declare class ResourceAttributeAssignment extends BaseAttributeAssignment<number, ResourceType> {
+import { ResourceAttributeAssignment as ResourceAttributeAssignmentContract } from './types/authorization-attributes-contracts';
+export declare class ResourceAttributeAssignment extends BaseAttributeAssignment<ResourceType, ResourceAttributeAssignmentContract> {
     readonly resourceId: number;
     readonly resourceType: ResourceType;
     constructor(resourceId: number, resourceType: ResourceType, attributeKey: string, attributeValue: string);
-    toDataTransferObject(): {
-        resourceId: number;
-        resourceType: ResourceType;
-        key: string;
-        value: string;
-    };
+    toDataTransferObject(): ResourceAttributeAssignmentContract;
     /**
      * Compares two assignments for equality
      * @param other Another ResourceAttributeAssignment instance

package/dist/esm/resource-attribute-assignment.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAkB,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/E,OAAO,EAAE,uBAAuB,EAAE,MAAM,6BAA6B,CAAC;AAEtE,qBAAa,2BAA4B,SAAQ,uBAAuB,CAAC,MAAM,EAAE,YAAY,CAAC;IAC5F,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;gBAE/B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IAcxG,oBAAoB;;;;;;IAQpB;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAGpD"}
+{"version":3,"file":"resource-attribute-assignment.d.ts","sourceRoot":"","sources":["../../src/resource-attribute-assignment.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,iCAAiC,CAAC;AAC/D,OAAO,EAAE,uBAAuB,EAAE,MAAM,6BAA6B,CAAC;AACtE,OAAO,EAAE,2BAA2B,IAAI,mCAAmC,EAAE,MAAM,4CAA4C,CAAC;AAGhI,qBAAa,2BAA4B,SAAQ,uBAAuB,CACtE,YAAY,EACZ,mCAAmC,CACpC;IACC,SAAgB,UAAU,EAAE,MAAM,CAAC;IACnC,SAAgB,YAAY,EAAE,YAAY,CAAC;gBAE/B,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,EAAE,cAAc,EAAE,MAAM;IAYxG,oBAAoB,IAAI,mCAAmC;IAQ3D;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,2BAA2B,GAAG,OAAO;CAGpD"}

package/dist/esm/resource-attribute-assignment.mjs

@@ -1,11 +1,17 @@
-import { RESOURCE_TYPES } from './resource-attributes-constants.mjs';
 import { BaseAttributeAssignment } from './base-attribute-assignment.mjs';
+import { ValidationUtils } from './utils/validation.mjs';
 
 class ResourceAttributeAssignment extends BaseAttributeAssignment {
     resourceId;
     resourceType;
     constructor(resourceId, resourceType, attributeKey, attributeValue) {
-        super(resourceId, resourceType, attributeKey, attributeValue, Object.values(RESOURCE_TYPES), 'resourceId', 'resourceType');
+        ValidationUtils.validatUpsertResourceAssignment({
+            resourceId,
+            resourceType,
+            key: attributeKey,
+            value: attributeValue,
+        });
+        super(resourceId, resourceType, attributeKey, attributeValue);
         this.resourceId = resourceId;
         this.resourceType = this.type;
     }

package/dist/esm/resource-attributes-constants.d.ts

@@ -1,15 +1,15 @@
-export declare const RESOURCE_ATTRIBUTES_CONSTANTS: {
-    readonly ACCOUNT_RESOURCE_ATTRIBUTES: {
-        readonly ENABLE_MEMBERS_INVITE_FROM_NON_AUTH_DOMAIN: "enable_members_invite_from_non_auth_domain";
+export declare const RESOURCE_ATTRIBUTES_CONSTANTS: Readonly<{
+    ACCOUNT_RESOURCE_ATTRIBUTES: {
+        ENABLE_MEMBERS_INVITE_FROM_NON_AUTH_DOMAIN: string;
     };
-    readonly WORKSPACE_RESOURCE_ATTRIBUTES: {
-        readonly IS_DEFAULT_WORKSPACE: "is_default_workspace";
+    WORKSPACE_RESOURCE_ATTRIBUTES: {
+        IS_DEFAULT_WORKSPACE: string;
     };
-    readonly BOARD_RESOURCE_ATTRIBUTES: {
-        readonly IS_SYNCABLE_CHILD_ENTITY: "is_syncable_child_entity";
-        readonly SYSTEM_ENTITY_TYPE: "system_entity_type";
+    BOARD_RESOURCE_ATTRIBUTES: {
+        IS_SYNCABLE_CHILD_ENTITY: string;
+        SYSTEM_ENTITY_TYPE: string;
     };
-};
+}>;
 export declare enum ResourceType {
     Account = "account",
     AccountProduct = "account_product",
@@ -19,7 +19,9 @@ export declare enum ResourceType {
     Team = "team",
     Overview = "overview",
     Document = "document",
-    Crm = "crm"
+    Crm = "crm",
+    Feature = "feature",
+    POST = "post"
 }
 export declare const RESOURCE_TYPES: readonly ResourceType[];
 //# sourceMappingURL=resource-attributes-constants.d.ts.map

package/dist/esm/resource-attributes-constants.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,6BAA6B;;;;;;;;;;;CAWhC,CAAC;AAEX,oBAAY,YAAY;IACtB,OAAO,YAAY;IACnB,cAAc,oBAAoB;IAClC,SAAS,cAAc;IACvB,KAAK,UAAU;IACf,IAAI,SAAS;IACb,IAAI,SAAS;IACb,QAAQ,aAAa;IACrB,QAAQ,aAAa;IACrB,GAAG,QAAQ;CACZ;AAGD,eAAO,MAAM,cAAc,yBAA6C,CAAC"}
+{"version":3,"file":"resource-attributes-constants.d.ts","sourceRoot":"","sources":["../../src/resource-attributes-constants.ts"],"names":[],"mappings":"AAAA,eAAO,MAAM,6BAA6B;;;;;;;;;;;EAWxC,CAAC;AAEH,oBAAY,YAAY;IACtB,OAAO,YAAY;IACnB,cAAc,oBAAoB;IAClC,SAAS,cAAc;IACvB,KAAK,UAAU;IACf,IAAI,SAAS;IACb,IAAI,SAAS;IACb,QAAQ,aAAa;IACrB,QAAQ,aAAa;IACrB,GAAG,QAAQ;IACX,OAAO,YAAY;IACnB,IAAI,SAAS;CACd;AAGD,eAAO,MAAM,cAAc,yBAA6C,CAAC"}