@nu-art/permissions-shared 0.400.5

package/_entity/permission-access-level/api-def.d.ts

@@ -0,0 +1,5 @@
+import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
+export type ApiStruct_PermissionAccessLevel = {
+    _v1: {};
+};
+export declare const ApiDef_PermissionAccessLevel: ApiDefResolver<ApiStruct_PermissionAccessLevel>;

package/_entity/permission-access-level/api-def.js

@@ -0,0 +1,3 @@
+export const ApiDef_PermissionAccessLevel = {
+    _v1: {}
+};

package/_entity/permission-access-level/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionAccessLevel } from './types.js';
+export declare const DBDef_PermissionAccessLevel: DBDef_V3<DBProto_PermissionAccessLevel>;

package/_entity/permission-access-level/db-def.js

@@ -0,0 +1,31 @@
+import { tsValidateIsInRange, tsValidateString, tsValidateStringWithDashes, tsValidateUniqueId } from '@nu-art/ts-common';
+import { PermissionDBGroup } from '../../consts.js';
+const Validator_ModifiableProps = {
+    domainId: tsValidateUniqueId,
+    name: tsValidateStringWithDashes,
+    uiLabel: tsValidateString(),
+    value: tsValidateIsInRange([[0, 1000]]),
+};
+const Validator_GeneratedProps = {
+    _auditorId: tsValidateString()
+};
+export const DBDef_PermissionAccessLevel = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.1', '1.0.0'],
+    dbKey: 'permissions--level',
+    entityName: 'PermissionAccessLevel',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'level',
+    },
+    backend: {
+        name: 'permissions--level',
+    },
+    dependencies: {
+        domainId: {
+            dbKey: 'permissions--domain',
+            fieldType: 'string',
+        }
+    }
+};

package/_entity/permission-access-level/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-access-level/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionAccessLevel
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-access-level/types.d.ts

@@ -0,0 +1,27 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, VersionsDeclaration } from '@nu-art/ts-common';
+import { DBProto_PermissionDomain } from '../permission-domain/types.js';
+type VersionTypes_PermissionAccessLevel = {
+    '1.0.0': DB_PermissionAccessLevel;
+    '1.0.1': DB_PermissionAccessLevel;
+};
+type Versions = VersionsDeclaration<['1.0.1', '1.0.0'], VersionTypes_PermissionAccessLevel>;
+type Dependencies = {
+    domainId: DBProto_PermissionDomain;
+};
+type UniqueKeys = '_id';
+type GeneratedProps = '_auditorId';
+type Proto = Proto_DB_Object<DB_PermissionAccessLevel, 'permissions--level', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionAccessLevel = DBProto<Proto>;
+export type UI_PermissionAccessLevel = DBProto_PermissionAccessLevel['uiType'];
+export type Base_AccessLevel = {
+    domainId: string;
+    value: number;
+};
+export type DB_PermissionAccessLevel = DB_Object & Base_AccessLevel & AuditableV2 & {
+    name: string;
+    uiLabel: string;
+};
+export type DB_PermissionAccessLevel_1_0_0 = DB_Object & Base_AccessLevel & AuditableV2 & {
+    name: string;
+};
+export {};

package/_entity/permission-access-level/types.js

@@ -0,0 +1 @@
+export {};

package/_entity/permission-api/api-def.d.ts

@@ -0,0 +1,5 @@
+import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
+export type ApiStruct_PermissionAPI = {
+    _v1: {};
+};
+export declare const ApiDef_PermissionAPI: ApiDefResolver<ApiStruct_PermissionAPI>;

package/_entity/permission-api/api-def.js

@@ -0,0 +1,3 @@
+export const ApiDef_PermissionAPI = {
+    _v1: {}
+};

package/_entity/permission-api/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionAPI } from './types.js';
+export declare const DBDef_PermissionAPI: DBDef_V3<DBProto_PermissionAPI>;

package/_entity/permission-api/db-def.js

@@ -0,0 +1,39 @@
+import { tsValidateArray, tsValidateBoolean, tsValidateDynamicObject, tsValidateNumber, tsValidateString, tsValidateUniqueId } from '@nu-art/ts-common';
+import { PermissionDBGroup } from '../../consts.js';
+import { tsValidateStringWithDashesAndSlash, validateProjectId } from '../../validators.js';
+const Validator_ModifiableProps = {
+    projectId: validateProjectId,
+    path: tsValidateStringWithDashesAndSlash,
+    accessLevelIds: tsValidateArray(tsValidateUniqueId, false),
+    deprecated: tsValidateBoolean(false),
+    onlyForApplication: tsValidateBoolean(false),
+};
+const Validator_GeneratedProps = {
+    _auditorId: tsValidateString(),
+    _accessLevels: tsValidateDynamicObject(tsValidateNumber(), tsValidateString(), false),
+};
+export const DBDef_PermissionAPI = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.1', '1.0.0'],
+    dbKey: 'permissions--api',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'api',
+    },
+    backend: {
+        name: 'permissions--api',
+    },
+    entityName: 'PermissionsAPI',
+    uniqueKeys: ['projectId', 'path'],
+    dependencies: {
+        projectId: {
+            dbKey: 'permissions--project',
+            fieldType: 'string'
+        },
+        accessLevelIds: {
+            dbKey: 'permissions--level',
+            fieldType: 'string[]'
+        }
+    }
+};

package/_entity/permission-api/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-api/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionAPI
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-api/types.d.ts

@@ -0,0 +1,29 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, UniqueId, VersionsDeclaration } from '@nu-art/ts-common';
+import { DBProto_PermissionProject } from '../permission-project/index.js';
+import { DBProto_PermissionAccessLevel } from '../permission-access-level/index.js';
+type VersionTypes_PermissionAPI = {
+    '1.0.0': DB_PermissionAPI;
+    '1.0.1': DB_PermissionAPI;
+};
+type Versions = VersionsDeclaration<['1.0.1', '1.0.0'], VersionTypes_PermissionAPI>;
+type Dependencies = {
+    projectId: DBProto_PermissionProject;
+    accessLevelIds: DBProto_PermissionAccessLevel;
+};
+type UniqueKeys = 'projectId' | 'path';
+type GeneratedProps = '_auditorId' | '_accessLevels';
+type Proto = Proto_DB_Object<DB_PermissionAPI, 'permissions--api', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionAPI = DBProto<Proto>;
+export type UI_PermissionAPI = DBProto_PermissionAPI['uiType'];
+export type DB_PermissionAPI = DB_Object & AuditableV2 & {
+    projectId: string;
+    path: string;
+    accessLevelIds?: string[];
+    deprecated?: boolean;
+    onlyForApplication?: boolean;
+    _accessLevels?: DomainToLevelValueMap;
+};
+export type DomainToLevelValueMap = {
+    [domainId: UniqueId]: number;
+};
+export {};

package/_entity/permission-api/types.js

@@ -0,0 +1 @@
+export {};

package/_entity/permission-domain/api-def.d.ts

@@ -0,0 +1,5 @@
+import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
+export type ApiStruct_PermissionDomain = {
+    _v1: {};
+};
+export declare const ApiDef_PermissionDomain: ApiDefResolver<ApiStruct_PermissionDomain>;

package/_entity/permission-domain/api-def.js

@@ -0,0 +1,3 @@
+export const ApiDef_PermissionDomain = {
+    _v1: {}
+};

package/_entity/permission-domain/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionDomain } from './types.js';
+export declare const DBDef_PermissionDomain: DBDef_V3<DBProto_PermissionDomain>;

package/_entity/permission-domain/db-def.js

@@ -0,0 +1,31 @@
+import { tsValidateString } from '@nu-art/ts-common';
+import { validateProjectId } from '../../validators.js';
+import { PermissionDBGroup } from '../../consts.js';
+const Validator_ModifiableProps = {
+    projectId: validateProjectId,
+    namespace: tsValidateString(50),
+};
+const Validator_GeneratedProps = {
+    _auditorId: tsValidateString()
+};
+export const DBDef_PermissionDomain = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.0'],
+    dbKey: 'permissions--domain',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'domain',
+    },
+    backend: {
+        name: 'permissions--domain',
+    },
+    entityName: 'PermissionDomain',
+    lockKeys: ['projectId'],
+    dependencies: {
+        projectId: {
+            fieldType: 'string',
+            dbKey: 'permissions--project',
+        }
+    }
+};

package/_entity/permission-domain/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-domain/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionDomain
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-domain/types.d.ts

@@ -0,0 +1,19 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, VersionsDeclaration } from '@nu-art/ts-common';
+import { DBProto_PermissionProject } from '../permission-project/index.js';
+type VersionTypes_PermissionDomain = {
+    '1.0.0': DB_PermissionDomain;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_PermissionDomain>;
+type Dependencies = {
+    projectId: DBProto_PermissionProject;
+};
+type UniqueKeys = '_id';
+type GeneratedProps = '_auditorId';
+type Proto = Proto_DB_Object<DB_PermissionDomain, 'permissions--domain', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionDomain = DBProto<Proto>;
+export type UI_PermissionDomain = DBProto_PermissionDomain['uiType'];
+export type DB_PermissionDomain = DB_Object & AuditableV2 & {
+    projectId: string;
+    namespace: string;
+};
+export {};

package/_entity/permission-domain/types.js

@@ -0,0 +1 @@
+export {};

package/_entity/permission-group/api-def.d.ts

@@ -0,0 +1,5 @@
+import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
+export type ApiStruct_PermissionGroup = {
+    _v1: {};
+};
+export declare const ApiDef_PermissionGroup: ApiDefResolver<ApiStruct_PermissionGroup>;

package/_entity/permission-group/api-def.js

@@ -0,0 +1,3 @@
+export const ApiDef_PermissionGroup = {
+    _v1: {}
+};

package/_entity/permission-group/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionGroup } from './types.js';
+export declare const DBDef_PermissionGroup: DBDef_V3<DBProto_PermissionGroup>;

package/_entity/permission-group/db-def.js

@@ -0,0 +1,37 @@
+import { tsValidateArray, tsValidateDynamicObject, tsValidateNumber, tsValidateOptionalId, tsValidateString, tsValidateUniqueId } from '@nu-art/ts-common';
+import { PermissionDBGroup } from '../../consts.js';
+import { validateGroupLabel } from '../../validators.js';
+const Validator_ModifiableProps = {
+    label: validateGroupLabel,
+    uiLabel: tsValidateString(),
+    projectId: tsValidateOptionalId,
+    accessLevelIds: tsValidateArray(tsValidateUniqueId, false),
+};
+const Validator_GeneratedProps = {
+    _levelsMap: tsValidateDynamicObject(tsValidateNumber(), tsValidateString(), false),
+    _auditorId: tsValidateString(),
+};
+export const DBDef_PermissionGroup = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.1', '1.0.0'],
+    dbKey: 'permissions--group',
+    entityName: 'PermissionGroup',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'group',
+    },
+    backend: {
+        name: 'permissions--group'
+    },
+    dependencies: {
+        projectId: {
+            dbKey: 'permissions--project',
+            fieldType: 'string',
+        },
+        accessLevelIds: {
+            dbKey: 'permissions--level',
+            fieldType: 'string[]',
+        }
+    }
+};

package/_entity/permission-group/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-group/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionGroup
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-group/types.d.ts

@@ -0,0 +1,31 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, TypedMap, VersionsDeclaration } from '@nu-art/ts-common';
+import { DBProto_PermissionProject } from '../permission-project/index.js';
+import { DBProto_PermissionAccessLevel } from '../permission-access-level/index.js';
+type VersionTypes_PermissionGroup = {
+    '1.0.0': DB_PermissionGroup;
+    '1.0.1': DB_PermissionGroup;
+};
+type Versions = VersionsDeclaration<['1.0.1', '1.0.0'], VersionTypes_PermissionGroup>;
+type Dependencies = {
+    projectId: DBProto_PermissionProject;
+    accessLevelIds: DBProto_PermissionAccessLevel;
+};
+type UniqueKeys = '_id';
+type GeneratedProps = '_levelsMap' | '_auditorId';
+type Proto = Proto_DB_Object<DB_PermissionGroup, 'permissions--group', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionGroup = DBProto<Proto>;
+export type UI_PermissionGroup = DBProto_PermissionGroup['uiType'];
+export type DB_PermissionGroup = DB_Object & AuditableV2 & {
+    projectId?: string;
+    label: string;
+    uiLabel: string;
+    accessLevelIds: string[];
+    _levelsMap?: TypedMap<number>;
+};
+export type DB_PermissionGroup_1_0_0 = DB_Object & AuditableV2 & {
+    projectId?: string;
+    label: string;
+    accessLevelIds: string[];
+    _levelsMap?: TypedMap<number>;
+};
+export {};

package/_entity/permission-group/types.js

@@ -0,0 +1 @@
+export {};

package/_entity/permission-project/api-def.d.ts

@@ -0,0 +1,5 @@
+import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
+export type ApiStruct_PermissionProject = {
+    _v1: {};
+};
+export declare const ApiDef_PermissionProject: ApiDefResolver<ApiStruct_PermissionProject>;

package/_entity/permission-project/api-def.js

@@ -0,0 +1,3 @@
+export const ApiDef_PermissionProject = {
+    _v1: {}
+};

package/_entity/permission-project/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionProject } from './types.js';
+export declare const DBDef_PermissionProject: DBDef_V3<DBProto_PermissionProject>;

package/_entity/permission-project/db-def.js

@@ -0,0 +1,23 @@
+import { tsValidateString } from '@nu-art/ts-common';
+import { PermissionDBGroup } from '../../consts.js';
+import { validateProjectName } from '../../validators.js';
+const Validator_ModifiableProps = {
+    name: validateProjectName,
+};
+const Validator_GeneratedProps = {
+    _auditorId: tsValidateString()
+};
+export const DBDef_PermissionProject = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.0'],
+    dbKey: 'permissions--project',
+    entityName: 'PermissionsProject',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'project',
+    },
+    backend: {
+        name: 'permissions--project'
+    }
+};

package/_entity/permission-project/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-project/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionProject
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-project/types.d.ts

@@ -0,0 +1,15 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, VersionsDeclaration } from '@nu-art/ts-common';
+type VersionTypes_PermissionProject = {
+    '1.0.0': DB_PermissionProject;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_PermissionProject>;
+type Dependencies = {};
+type UniqueKeys = '_id';
+type GeneratedProps = '_auditorId';
+type Proto = Proto_DB_Object<DB_PermissionProject, 'permissions--project', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionProject = DBProto<Proto>;
+export type UI_PermissionProject = DBProto_PermissionProject['uiType'];
+export type DB_PermissionProject = DB_Object & AuditableV2 & {
+    name: string;
+};
+export {};

package/_entity/permission-project/types.js

@@ -0,0 +1 @@
+export {};

package/_entity/permission-user/api-def.d.ts

@@ -0,0 +1,12 @@
+import { ApiDefResolver, BodyApi } from '@nu-art/thunderstorm-shared';
+export type Request_AssignPermissions = {
+    projectId?: string;
+    permissionGroupIds: string[];
+    targetAccountIds: string[];
+};
+export type ApiStruct_PermissionUser = {
+    _v1: {
+        assignPermissions: BodyApi<void, Request_AssignPermissions>;
+    };
+};
+export declare const ApiDef_PermissionUser: ApiDefResolver<ApiStruct_PermissionUser>;

package/_entity/permission-user/api-def.js

@@ -0,0 +1,6 @@
+import { HttpMethod } from '@nu-art/thunderstorm-shared';
+export const ApiDef_PermissionUser = {
+    _v1: {
+        assignPermissions: { method: HttpMethod.POST, path: '/pah/permissions/assign/app-permissions' }
+    }
+};

package/_entity/permission-user/db-def.d.ts

@@ -0,0 +1,3 @@
+import { DBDef_V3 } from '@nu-art/ts-common';
+import { DBProto_PermissionUser } from './types.js';
+export declare const DBDef_PermissionUser: DBDef_V3<DBProto_PermissionUser>;

package/_entity/permission-user/db-def.js

@@ -0,0 +1,31 @@
+import { tsValidateArray, tsValidateString, tsValidateStringAndNumbersWithDashes } from '@nu-art/ts-common';
+import { PermissionDBGroup } from '../../consts.js';
+const Validator_ModifiableProps = {
+    groups: tsValidateArray({
+        groupId: tsValidateStringAndNumbersWithDashes,
+    }, false),
+};
+const Validator_GeneratedProps = {
+    __groupIds: tsValidateArray(tsValidateStringAndNumbersWithDashes, false),
+    _auditorId: tsValidateString()
+};
+export const DBDef_PermissionUser = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.0'],
+    dbKey: 'permissions--user',
+    entityName: 'PermissionUser',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'user',
+    },
+    backend: {
+        name: 'permissions--user'
+    },
+    dependencies: {
+        '__groupIds': {
+            fieldType: 'string[]',
+            dbKey: 'permissions--group',
+        }
+    }
+};

package/_entity/permission-user/index.d.ts

@@ -0,0 +1,3 @@
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-user/index.js

@@ -0,0 +1,4 @@
+// Generated DB Item type: PermissionUser
+export * from './types.js';
+export * from './db-def.js';
+export * from './api-def.js';

package/_entity/permission-user/types.d.ts

@@ -0,0 +1,22 @@
+import { AuditableV2, DB_Object, DBProto, Proto_DB_Object, VersionsDeclaration } from '@nu-art/ts-common';
+import { DBProto_PermissionGroup } from '../permission-group/index.js';
+type VersionTypes_PermissionUser = {
+    '1.0.0': DB_PermissionUser;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_PermissionUser>;
+type Dependencies = {
+    '__groupIds': DBProto_PermissionGroup;
+};
+type UniqueKeys = '_id';
+type GeneratedProps = '__groupIds' | '_auditorId';
+type Proto = Proto_DB_Object<DB_PermissionUser, 'permissions--user', GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DBProto_PermissionUser = DBProto<Proto>;
+export type UI_PermissionUser = DBProto_PermissionUser['uiType'];
+export type User_Group = {
+    groupId: string;
+};
+export type DB_PermissionUser = DB_Object & AuditableV2 & {
+    groups: User_Group[];
+    __groupIds?: string[];
+};
+export {};

package/_entity/permission-user/types.js

@@ -0,0 +1 @@
+export {};

package/_entity.d.ts

@@ -0,0 +1,6 @@
+export * from './_entity/permission-access-level/index.js';
+export * from './_entity/permission-api/index.js';
+export * from './_entity/permission-project/index.js';
+export * from './_entity/permission-domain/index.js';
+export * from './_entity/permission-group/index.js';
+export * from './_entity/permission-user/index.js';

package/_entity.js

@@ -0,0 +1,6 @@
+export * from './_entity/permission-access-level/index.js';
+export * from './_entity/permission-api/index.js';
+export * from './_entity/permission-project/index.js';
+export * from './_entity/permission-domain/index.js';
+export * from './_entity/permission-group/index.js';
+export * from './_entity/permission-user/index.js';

package/apis.d.ts

@@ -0,0 +1,75 @@
+import { ApiDefResolver, BodyApi, QueryApi } from '@nu-art/thunderstorm-shared';
+import { PreDB, StringMap } from '@nu-art/ts-common';
+import { DB_PermissionProject } from './_entity.js';
+export type UserUrlsPermissions = {
+    [url: string]: boolean;
+};
+export type Request_AssertApiForUser = {
+    projectId: string;
+    path: string;
+};
+export type Request_UserUrlsPermissions = {
+    projectId: string;
+    urls: UserUrlsPermissions;
+};
+export type Request_UserCFsByShareGroups = {
+    groupsIds: string[];
+};
+export type Request_UsersCFsByShareGroups = Request_UserCFsByShareGroups & {
+    usersEmails: string[];
+};
+export type Response_UsersCFsByShareGroups = {
+    [userEmail: string]: StringMap[];
+};
+export type Request_AssignAppPermissions<T extends StringMap = StringMap> = {
+    projectId: string;
+    groupsToRemove: PredefinedGroup[];
+    group: PredefinedGroup;
+    customField: T;
+    assertKeys?: (keyof T)[];
+    customKey: string;
+    sharedUserIds?: string[];
+    appAccountId?: string;
+};
+export type AssignAppPermissions = Request_AssignAppPermissions & {
+    granterUserId: string;
+};
+export type PredefinedGroup = {
+    _id: string;
+    key: string;
+    label: string;
+    customKeys?: string[];
+};
+export type PredefinedUser = {
+    accountId: string;
+    _id: string;
+    groups: PredefinedGroup[];
+};
+export type Request_RegisterProject = {
+    project: PreDB<DB_PermissionProject>;
+    routes: string[];
+    predefinedGroups?: PredefinedGroup[];
+    predefinedUser?: PredefinedUser;
+};
+export type Response_User = {
+    userId: string;
+};
+export type _ApiStruct_PermissionsUser = {
+    pah: {
+        assignAppPermissions: BodyApi<void, Request_AssignAppPermissions>;
+    };
+};
+export declare const _ApiDef_PermissionUser: ApiDefResolver<_ApiStruct_PermissionsUser>;
+export type ApiStruct_PermissionsAssert = {
+    vv1: {
+        assertUserPermissions: BodyApi<Response_User, Request_AssertApiForUser>;
+    };
+};
+export declare const ApiDef_PermissionsAssert: ApiDefResolver<ApiStruct_PermissionsAssert>;
+export type ApiStruct_Permissions = {
+    v1: {
+        toggleStrictMode: QueryApi<void>;
+        createProject: QueryApi<void>;
+    };
+};
+export declare const ApiDef_Permissions: ApiDefResolver<ApiStruct_Permissions>;

package/apis.js

@@ -0,0 +1,42 @@
+/*
+ * Permissions management system, define access level for each of
+ * your server apis, and restrict users by giving them access levels
+ *
+ * Copyright (C) 2020 Adam van der Kruk aka TacB0sS
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+import { HttpMethod } from '@nu-art/thunderstorm-shared';
+import { Minute } from '@nu-art/ts-common';
+export const _ApiDef_PermissionUser = {
+    pah: {
+        assignAppPermissions: { method: HttpMethod.POST, path: '/v1/permissions/assign/app-permissions' }
+    }
+};
+export const ApiDef_PermissionsAssert = {
+    vv1: {
+        assertUserPermissions: { method: HttpMethod.POST, path: 'v1/permissions/assert-user-access' }
+    }
+};
+export const ApiDef_Permissions = {
+    v1: {
+        // getUserUrlsPermissions: {method: HttpMethod.POST, path: 'v1/permissions/user-urls-permissions'},
+        // getUserCFsByShareGroups: {method: HttpMethod.POST, path: 'v1/user-custom-fields/user-cf-by-share-groups'},
+        // getUsersCFsByShareGroups: {method: HttpMethod.POST, path: 'v1/user-custom-fields/users-cf-by-share-groups'},
+        // registerExternalProject: {method: HttpMethod.POST, path: 'v1/register/register-external-project'},
+        // registerProject: {method: HttpMethod.GET, path: 'v1/register/register-project'},
+        toggleStrictMode: { method: HttpMethod.GET, path: 'v1/permissions/toggle-strict-mode', timeout: Minute },
+        createProject: { method: HttpMethod.GET, path: 'v1/permissions/create-first-project', timeout: Minute },
+        // connectDomainToRoutes: {method: HttpMethod.POST, path: 'v1/permissions/connect-domain-to-routes'},
+    }
+};

package/consts.d.ts

@@ -0,0 +1,80 @@
+import { PreDBAccessLevel } from './types.js';
+export declare const PermissionDBGroup = "permission";
+export declare const Prefix_PermissionKey = "permission-key--";
+export declare const DomainNamespace_PermissionAssignment = "Permissions Assignment";
+export declare const DomainNamespace_PermissionManagement = "Permissions Management";
+export declare const DefaultAccessLevel_NoAccess: Readonly<{
+    name: "No-Access";
+    value: 0;
+}>;
+export declare const DefaultAccessLevel_Read: Readonly<{
+    name: "Read";
+    value: 200;
+}>;
+export declare const DefaultAccessLevel_Write: Readonly<{
+    name: "Write";
+    value: 400;
+}>;
+export declare const DefaultAccessLevel_Delete: Readonly<{
+    name: "Delete";
+    value: 600;
+}>;
+export declare const DefaultAccessLevel_Admin: Readonly<{
+    name: "Admin";
+    value: 1000;
+}>;
+export declare const DefaultUIAccessLevel_NoAccess: Readonly<{
+    name: "Ui-No-Access";
+    value: 0;
+}>;
+export declare const DefaultUIAccessLevel_Beta: Readonly<{
+    name: "Beta";
+    value: 1;
+}>;
+export declare const DefaultUIAccessLevel_Release: Readonly<{
+    name: "Release";
+    value: 2;
+}>;
+export declare const defaultUIAccessLevels: (Readonly<{
+    name: "Ui-No-Access";
+    value: 0;
+}> | Readonly<{
+    name: "Beta";
+    value: 1;
+}> | Readonly<{
+    name: "Release";
+    value: 2;
+}>)[];
+export declare const defaultAccessLevels: (Readonly<{
+    name: "No-Access";
+    value: 0;
+}> | Readonly<{
+    name: "Read";
+    value: 200;
+}> | Readonly<{
+    name: "Write";
+    value: 400;
+}> | Readonly<{
+    name: "Delete";
+    value: 600;
+}> | Readonly<{
+    name: "Admin";
+    value: 1000;
+}>)[];
+export declare const DuplicateDefaultAccessLevels: (seed: string) => {
+    _id: string;
+    uiLabel: string;
+    name: string;
+    value: number;
+}[];
+export declare const CreateDefaultAccessLevels: (seed: string, accessLevels: PreDBAccessLevel[]) => {
+    _id: string;
+    uiLabel: string;
+    name: string;
+    value: number;
+}[];
+export declare const generateKeyNamesByAccessLevel: <AccessLevel extends PreDBAccessLevel>(namespace: string, accessLevels: AccessLevel[]) => { [key in AccessLevel["name"]]: string; };
+export declare const defaultPermissionKeySuffix = "permission-key";
+export declare const defaultLevelsRouteLookupWords: {
+    [k: string]: string;
+};

package/consts.js

@@ -0,0 +1,60 @@
+import { md5 } from '@nu-art/ts-common';
+export const PermissionDBGroup = 'permission';
+export const Prefix_PermissionKey = 'permission-key--';
+export const DomainNamespace_PermissionAssignment = 'Permissions Assignment';
+export const DomainNamespace_PermissionManagement = 'Permissions Management';
+export const DefaultAccessLevel_NoAccess = Object.freeze({ name: 'No-Access', value: 0 });
+export const DefaultAccessLevel_Read = Object.freeze({ name: 'Read', value: 200 });
+export const DefaultAccessLevel_Write = Object.freeze({ name: 'Write', value: 400 });
+export const DefaultAccessLevel_Delete = Object.freeze({ name: 'Delete', value: 600 });
+export const DefaultAccessLevel_Admin = Object.freeze({ name: 'Admin', value: 1000 });
+//UI access levels
+export const DefaultUIAccessLevel_NoAccess = Object.freeze({ name: 'Ui-No-Access', value: 0 });
+export const DefaultUIAccessLevel_Beta = Object.freeze({ name: 'Beta', value: 1 });
+export const DefaultUIAccessLevel_Release = Object.freeze({ name: 'Release', value: 2 });
+export const defaultUIAccessLevels = [
+    DefaultUIAccessLevel_NoAccess,
+    DefaultUIAccessLevel_Beta,
+    DefaultUIAccessLevel_Release
+];
+export const defaultAccessLevels = [
+    DefaultAccessLevel_NoAccess,
+    DefaultAccessLevel_Read,
+    DefaultAccessLevel_Write,
+    DefaultAccessLevel_Delete,
+    DefaultAccessLevel_Admin,
+];
+export const DuplicateDefaultAccessLevels = (seed) => {
+    return CreateDefaultAccessLevels(seed, [
+        { ...DefaultAccessLevel_NoAccess },
+        { ...DefaultAccessLevel_Read },
+        { ...DefaultAccessLevel_Write },
+        { ...DefaultAccessLevel_Delete },
+        { ...DefaultAccessLevel_Admin },
+    ]);
+};
+const generateDefaultKeyName = (namespace, accessLevelName) => {
+    return `${defaultPermissionKeySuffix}--${namespace}--${accessLevelName}`;
+};
+export const CreateDefaultAccessLevels = (seed, accessLevels) => {
+    return accessLevels.map(level => ({ ...level, _id: md5(`${seed}${level.name}`), uiLabel: level.name }));
+};
+export const generateKeyNamesByAccessLevel = (namespace, accessLevels) => {
+    return accessLevels.reduce((keyMapper, currentAccessLevel) => {
+        const currentKey = currentAccessLevel.name;
+        keyMapper[currentKey] = generateDefaultKeyName(namespace, currentAccessLevel.name);
+        return keyMapper;
+    }, {});
+};
+export const defaultPermissionKeySuffix = 'permission-key';
+export const defaultLevelsRouteLookupWords = {
+    'query': 'Read',
+    'query-unique': 'Read',
+    'sync': 'Read',
+    'patch': 'Write',
+    'upsert': 'Write',
+    'upsert-all': 'Write',
+    'delete': 'Delete',
+    'delete-all': 'Delete',
+    'delete-unique': 'Delete'
+};

package/index.d.ts

@@ -0,0 +1,10 @@
+export * from './_entity/permission-access-level/index.js';
+export * from './_entity/permission-api/index.js';
+export * from './_entity/permission-domain/index.js';
+export * from './_entity/permission-group/index.js';
+export * from './_entity/permission-project/index.js';
+export * from './_entity/permission-user/index.js';
+export * from './apis.js';
+export * from './consts.js';
+export * from './types.js';
+export * from './permission-keys.js';

package/index.js

@@ -0,0 +1,28 @@
+/*
+ * Permissions management system, define access level for each of
+ * your server apis, and restrict users by giving them access levels
+ *
+ * Copyright (C) 2020 Adam van der Kruk aka TacB0sS
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+export * from './_entity/permission-access-level/index.js';
+export * from './_entity/permission-api/index.js';
+export * from './_entity/permission-domain/index.js';
+export * from './_entity/permission-group/index.js';
+export * from './_entity/permission-project/index.js';
+export * from './_entity/permission-user/index.js';
+export * from './apis.js';
+export * from './consts.js';
+export * from './types.js';
+export * from './permission-keys.js';

package/package.json

@@ -0,0 +1,80 @@
+{
+  "name": "@nu-art/permissions-shared",
+  "version": "0.400.5",
+  "description": "Permissions Shared",
+  "keywords": [
+    "TacB0sS",
+    "create account",
+    "express",
+    "infra",
+    "login",
+    "nu-art",
+    "permissions",
+    "saml",
+    "thunderstorm",
+    "typescript",
+    "user-account"
+  ],
+  "homepage": "https://github.com/nu-art-js/permissions",
+  "bugs": {
+    "url": "https://github.com/nu-art-js/permissions/issues"
+  },
+  "repository": {
+    "type": "git",
+    "url": "git+ssh://git@github.com:nu-art-js/permissions.git"
+  },
+  "publishConfig": {
+    "directory": "dist",
+    "linkDirectory": true
+  },
+  "license": "Apache-2.0",
+  "author": "TacB0sS",
+  "scripts": {
+    "build": "tsc",
+    "run-tests": "firebase emulators:exec \"npm run test\"",
+    "test": "ts-mocha -w -p src/test/tsconfig.json --timeout 0 --inspect=8107 --watch-files '**/*.ts' src/test/__all-tests.ts"
+  },
+  "dependencies": {
+    "@nu-art/ts-common": "0.400.5",
+    "@nu-art/firebase-shared": "0.400.5",
+    "@nu-art/thunderstorm-shared": "0.400.5",
+    "@nu-art/user-account-shared": "0.400.5",
+    "@nu-art/ts-styles": "0.400.5",
+    "firebase": "^11.9.0",
+    "firebase-admin": "13.4.0",
+    "firebase-functions": "6.3.2",
+    "react": "^18.0.0",
+    "react-dom": "^18.0.0",
+    "react-router-dom": "^6.9.0",
+    "moment": "^2.29.4",
+    "saml2-js": "^4.0.1",
+    "express": "^4.18.2",
+    "request": "^2.88.0"
+  },
+  "devDependencies": {
+    "@types/react": "^18.0.0",
+    "@types/express": "^4.17.17",
+    "@types/react-dom": "^18.0.0",
+    "@types/react-router": "^5.1.20",
+    "@types/react-router-dom": "^5.3.3",
+    "@types/chai": "^4.3.4",
+    "@types/mocha": "^10.0.1",
+    "@types/history": "^4.7.2",
+    "@types/request": "^2.48.1",
+    "@types/saml2-js": "^1.6.8"
+  },
+  "unitConfig": {
+    "type": "typescript-lib"
+  },
+  "type": "module",
+  "exports": {
+    ".": {
+      "types": "./index.d.ts",
+      "import": "./index.js"
+    },
+    "./*": {
+      "types": "./*.d.ts",
+      "import": "./*.js"
+    }
+  }
+}

package/permission-keys.d.ts

@@ -0,0 +1,3 @@
+export declare const PermissionKey_DeveloperViewer = "permission-key--developer-viewer";
+export declare const PermissionKey_DeveloperWriter = "permission-key--developer-editor";
+export declare const PermissionKey_DeveloperAdmin = "permission-key--developer-admin";

package/permission-keys.js

@@ -0,0 +1,3 @@
+export const PermissionKey_DeveloperViewer = 'permission-key--developer-viewer';
+export const PermissionKey_DeveloperWriter = 'permission-key--developer-editor';
+export const PermissionKey_DeveloperAdmin = 'permission-key--developer-admin';

package/types.d.ts

@@ -0,0 +1,48 @@
+import { TypedKeyValue, TypedMap, UniqueId } from '@nu-art/ts-common';
+import { DomainToLevelValueMap } from './_entity/permission-api/index.js';
+export type PermissionKey = string;
+export declare const Const_PermissionKeyType = "permission-key";
+export type PermissionKeyType = typeof Const_PermissionKeyType;
+export type DefaultDef_Api = {
+    path: string;
+    accessLevel: string;
+    domainId?: string;
+};
+export type DefaultDef_GeneratedApi = {
+    domain: string;
+    collections: string[];
+};
+export type DB_PermissionKeyData = {
+    type: PermissionKeyType;
+    accessLevelIds: UniqueId[];
+    _accessLevels: DomainToLevelValueMap;
+};
+export type PreDBAccessLevel = {
+    name: string;
+    value: number;
+};
+export type DefaultDef_AccessLevel = {
+    _id: string;
+    name: string;
+    uiLabel: string;
+    value: number;
+};
+export type DefaultDef_Group = {
+    _id: string;
+    name: string;
+    uiLabel: string;
+    accessLevels: {
+        [domainName: string]: string;
+    };
+};
+export type SessionData_Permissions_Value = {
+    domainToValueMap: TypedMap<number>;
+    roles: {
+        key: string;
+        uiLabel: string;
+    }[];
+};
+export type SessionData_Permissions = TypedKeyValue<'permissions', SessionData_Permissions_Value>;
+export type SessionData_StrictMode = TypedKeyValue<'strictMode', {
+    isStrictMode: boolean;
+}>;

package/types.js

@@ -0,0 +1 @@
+export const Const_PermissionKeyType = 'permission-key';

package/validators.d.ts

@@ -0,0 +1,6 @@
+export declare const validateProjectId: import("@nu-art/ts-common").Validator<string>;
+export declare const tsValidateStringWithDashesAndSlash: import("@nu-art/ts-common").Validator<string>;
+export declare const validateProjectName: import("@nu-art/ts-common").Validator<string>;
+export declare const validateUserUuid: import("@nu-art/ts-common").Validator<string>;
+export declare const validateGroupLabel: import("@nu-art/ts-common").Validator<string>;
+export declare const validateCustomFieldValues: import("@nu-art/ts-common").Validator<string>;

package/validators.js

@@ -0,0 +1,25 @@
+/*
+ * Permissions management system, define access level for each of
+ * your server apis, and restrict users by giving them access levels
+ *
+ * Copyright (C) 2020 Adam van der Kruk aka TacB0sS
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+import { tsValidateRegexp, tsValidateUniqueId } from '@nu-art/ts-common';
+export const validateProjectId = tsValidateUniqueId;
+export const tsValidateStringWithDashesAndSlash = tsValidateRegexp(/^[0-9A-Za-z-/]+$/);
+export const validateProjectName = tsValidateRegexp(/^[A-Za-z- ]{3,40}$/);
+export const validateUserUuid = tsValidateRegexp(/^.{0,50}$/);
+export const validateGroupLabel = tsValidateRegexp(/^[A-Za-z-0-9\._\/ ]+$/);
+export const validateCustomFieldValues = tsValidateRegexp(/^.{0,500}$/);