@nu-art/permissions-shared 0.401.9 → 0.500.6

package/_entity/access-group/db-def.d.ts

@@ -0,0 +1,3 @@
+import { Database } from '@nu-art/db-api-shared';
+import type { DatabaseDef_AccessGroup } from './types.js';
+export declare const DBDef_AccessGroup: Database<DatabaseDef_AccessGroup>;

package/_entity/access-group/db-def.js

@@ -0,0 +1,30 @@
+import { tsValidateString, tsValidateValue, tsValidate_optionalArrayOfUniqueIds, tsValidator_arrayOfUniqueIds } from '@nu-art/ts-common';
+import { AccessGroup_DbKey } from './types.js';
+import { PermissionDBGroup } from '../../consts.js';
+import { PermissionScope_DbKey } from '../permission-scope/types.js';
+const accessGroupTypes = ['user', 'service-account', 'entity', 'custom'];
+const Validator_ModifiableProps = {
+    type: tsValidateValue(accessGroupTypes),
+    key: tsValidateString(),
+    label: tsValidateString(),
+    members: tsValidator_arrayOfUniqueIds,
+    scopeEntries: tsValidate_optionalArrayOfUniqueIds,
+};
+const Validator_GeneratedProps = {};
+export const DBDef_AccessGroup = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.0'],
+    dbKey: AccessGroup_DbKey,
+    entityName: 'AccessGroup',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'access-group',
+    },
+    backend: {
+        name: `${PermissionDBGroup}--access-groups`,
+    },
+    dependencies: {
+        scopeEntries: { dbKey: PermissionScope_DbKey, fieldType: 'string[]' },
+    },
+};

package/_entity/access-group/types.d.ts

@@ -0,0 +1,26 @@
+import type { UniqueId } from '@nu-art/ts-common';
+import { DB_Object, DB_ProtoSeed, DB_Prototype, VersionsDeclaration } from '@nu-art/db-api-shared';
+import type { DatabaseDef_PermissionScope } from '../permission-scope/types.js';
+export type AccessGroupType = 'user' | 'service-account' | 'entity' | 'custom';
+export declare const AccessGroup_DbKey = "permissions--access-groups";
+type DBKey = typeof AccessGroup_DbKey;
+type VersionTypes_AccessGroup = {
+    '1.0.0': DB_AccessGroup;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_AccessGroup>;
+type UniqueKeys = '_id';
+type GeneratedProps = never;
+type Dependencies = {
+    scopeEntries: DatabaseDef_PermissionScope;
+};
+type Proto = DB_ProtoSeed<DB_AccessGroup, DBKey, GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DatabaseDef_AccessGroup = DB_Prototype<Proto>;
+export type UI_AccessGroup = DatabaseDef_AccessGroup['uiType'];
+export type DB_AccessGroup = DB_Object<DBKey> & {
+    type: AccessGroupType;
+    key: string;
+    label: string;
+    members: UniqueId[];
+    scopeEntries?: DatabaseDef_PermissionScope['id'][];
+};
+export {};

package/_entity/access-group/types.js

@@ -0,0 +1 @@
+export const AccessGroup_DbKey = 'permissions--access-groups';

package/_entity/permission-scope/brand.d.ts

@@ -0,0 +1,23 @@
+/** Type-only brand for PermissionScope; use definePermissionScope() to create valid instances. */
+declare const PermissionScopeBrand: unique symbol;
+/**
+ * Branded permission scope for function-based permissions.
+ * Only instances created via definePermissionScope() are valid.
+ */
+export type PermissionScope = {
+    readonly key: string;
+    readonly values: readonly string[];
+    readonly [PermissionScopeBrand]: true;
+};
+/**
+ * Creates a frozen, branded permission scope. Use this to define scopes
+ * for the @RequirePermission decorator (e.g. pathway: read, write, delete, admin).
+ */
+export declare function definePermissionScope<K extends string, V extends readonly string[]>(key: K, values: V): PermissionScope & {
+    key: K;
+    values: V;
+};
+export declare function getPermissionScopeValues(key: string): readonly string[] | undefined;
+export declare function getAllRegisteredScopes(): PermissionScope[];
+export declare function permissionScopeId<Scope extends PermissionScope>(key: Scope['key'], value: Scope['values'][number]): import("@nu-art/db-api-shared").DB_UniqueId<"permissions--scope">;
+export {};

package/_entity/permission-scope/brand.js

@@ -0,0 +1,20 @@
+import { hashToUniqueId } from '@nu-art/db-api-shared';
+const scopeRegistry = new Map();
+/**
+ * Creates a frozen, branded permission scope. Use this to define scopes
+ * for the @RequirePermission decorator (e.g. pathway: read, write, delete, admin).
+ */
+export function definePermissionScope(key, values) {
+    const scope = Object.freeze({ key, values });
+    scopeRegistry.set(key, scope);
+    return scope;
+}
+export function getPermissionScopeValues(key) {
+    return scopeRegistry.get(key)?.values;
+}
+export function getAllRegisteredScopes() {
+    return [...scopeRegistry.values()];
+}
+export function permissionScopeId(key, value) {
+    return hashToUniqueId(`${key}:${value}`);
+}

package/_entity/permission-scope/db-def.d.ts

@@ -0,0 +1,3 @@
+import { Database } from '@nu-art/db-api-shared';
+import { DatabaseDef_PermissionScope } from './types.js';
+export declare const DBDef_PermissionScope: Database<DatabaseDef_PermissionScope>;

package/_entity/{permission-project → permission-scope}/db-def.js

@@ -1,23 +1,22 @@
 import { tsValidateString } from '@nu-art/ts-common';
+import { PermissionScope_DbKey } from './types.js';
 import { PermissionDBGroup } from '../../consts.js';
-import { validateProjectName } from '../../validators.js';
 const Validator_ModifiableProps = {
-    name: validateProjectName,
+    key: tsValidateString(),
+    value: tsValidateString(),
 };
-const Validator_GeneratedProps = {
-    _auditorId: tsValidateString()
-};
-export const DBDef_PermissionProject = {
+const Validator_GeneratedProps = {};
+export const DBDef_PermissionScope = {
     modifiablePropsValidator: Validator_ModifiableProps,
     generatedPropsValidator: Validator_GeneratedProps,
     versions: ['1.0.0'],
-    dbKey: 'permissions--project',
-    entityName: 'PermissionsProject',
+    dbKey: PermissionScope_DbKey,
+    entityName: 'PermissionScope',
     frontend: {
         group: PermissionDBGroup,
-        name: 'project',
+        name: 'scope',
     },
     backend: {
-        name: 'permissions--project'
-    }
+        name: `${PermissionDBGroup}--scopes`
+    },
 };

package/_entity/permission-scope/types.d.ts

@@ -0,0 +1,18 @@
+import { DB_Object, DB_ProtoSeed, DB_Prototype, VersionsDeclaration } from '@nu-art/db-api-shared';
+export declare const PermissionScope_DbKey = "permissions--scope";
+type DBKey = typeof PermissionScope_DbKey;
+type VersionTypes_PermissionScope = {
+    '1.0.0': DB_PermissionScope;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_PermissionScope>;
+type UniqueKeys = '_id';
+type GeneratedProps = never;
+type Dependencies = {};
+type Proto = DB_ProtoSeed<DB_PermissionScope, DBKey, GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DatabaseDef_PermissionScope = DB_Prototype<Proto>;
+export type UI_PermissionScope = DatabaseDef_PermissionScope['uiType'];
+export type DB_PermissionScope = DB_Object<DBKey> & {
+    key: string;
+    value: string;
+};
+export {};

package/_entity/permission-scope/types.js

@@ -0,0 +1 @@
+export const PermissionScope_DbKey = 'permissions--scope';

package/_entity/user-permissions/api-def.d.ts

@@ -0,0 +1,8 @@
+import { ApiDefResolver, QueryApi } from '@nu-art/api-types';
+export type Response_MyPermissions = {
+    scopeEntries: string[];
+};
+export type API_UserPermissions = {
+    getMyPermissions: QueryApi<Response_MyPermissions>;
+};
+export declare const ApiDef_UserPermissions: ApiDefResolver<API_UserPermissions>;

package/_entity/user-permissions/api-def.js

@@ -0,0 +1,4 @@
+import { HttpMethod } from '@nu-art/api-types';
+export const ApiDef_UserPermissions = {
+    getMyPermissions: { method: HttpMethod.GET, path: '/v1/permissions/my-permissions' },
+};

package/_entity/user-permissions/db-def.d.ts

@@ -0,0 +1,3 @@
+import { Database } from '@nu-art/db-api-shared';
+import { DatabaseDef_UserPermissions } from './types.js';
+export declare const DBDef_UserPermissions: Database<DatabaseDef_UserPermissions>;

package/_entity/user-permissions/db-def.js

@@ -0,0 +1,22 @@
+import { tsValidateArray, tsValidateDynamicObject, tsValidateString, tsValidator_arrayOfUniqueIds } from '@nu-art/ts-common';
+import { UserPermissions_DbKey } from './types.js';
+import { PermissionDBGroup } from '../../consts.js';
+const Validator_ModifiableProps = {
+    scopeEntries: tsValidateArray(tsValidateString()),
+    accessIds: tsValidateDynamicObject(tsValidator_arrayOfUniqueIds, tsValidateString()),
+};
+const Validator_GeneratedProps = {};
+export const DBDef_UserPermissions = {
+    modifiablePropsValidator: Validator_ModifiableProps,
+    generatedPropsValidator: Validator_GeneratedProps,
+    versions: ['1.0.0'],
+    dbKey: UserPermissions_DbKey,
+    entityName: 'UserPermissions',
+    frontend: {
+        group: PermissionDBGroup,
+        name: 'user-permissions',
+    },
+    backend: {
+        name: `${PermissionDBGroup}--user-permissions`,
+    },
+};

package/_entity/user-permissions/types.d.ts

@@ -0,0 +1,19 @@
+import { DB_Object, DB_ProtoSeed, DB_Prototype, VersionsDeclaration } from '@nu-art/db-api-shared';
+import type { ScopedAccessIds } from '../../document-access.js';
+export declare const UserPermissions_DbKey = "permissions--user-permissions";
+type DBKey = typeof UserPermissions_DbKey;
+type VersionTypes_UserPermissions = {
+    '1.0.0': DB_UserPermissions;
+};
+type Versions = VersionsDeclaration<['1.0.0'], VersionTypes_UserPermissions>;
+type UniqueKeys = '_id';
+type GeneratedProps = never;
+type Dependencies = {};
+type Proto = DB_ProtoSeed<DB_UserPermissions, DBKey, GeneratedProps, Versions, UniqueKeys, Dependencies>;
+export type DatabaseDef_UserPermissions = DB_Prototype<Proto>;
+export type UI_UserPermissions = DatabaseDef_UserPermissions['uiType'];
+export type DB_UserPermissions = DB_Object<DBKey> & {
+    scopeEntries: string[];
+    accessIds: ScopedAccessIds;
+};
+export {};

package/_entity/user-permissions/types.js

@@ -0,0 +1 @@
+export const UserPermissions_DbKey = 'permissions--user-permissions';

package/consts.d.ts

@@ -1,80 +1 @@
-import { PreDBAccessLevel } from './types.js';
-export declare const PermissionDBGroup = "permission";
-export declare const Prefix_PermissionKey = "permission-key--";
-export declare const DomainNamespace_PermissionAssignment = "Permissions Assignment";
-export declare const DomainNamespace_PermissionManagement = "Permissions Management";
-export declare const DefaultAccessLevel_NoAccess: Readonly<{
-    name: "No-Access";
-    value: 0;
-}>;
-export declare const DefaultAccessLevel_Read: Readonly<{
-    name: "Read";
-    value: 200;
-}>;
-export declare const DefaultAccessLevel_Write: Readonly<{
-    name: "Write";
-    value: 400;
-}>;
-export declare const DefaultAccessLevel_Delete: Readonly<{
-    name: "Delete";
-    value: 600;
-}>;
-export declare const DefaultAccessLevel_Admin: Readonly<{
-    name: "Admin";
-    value: 1000;
-}>;
-export declare const DefaultUIAccessLevel_NoAccess: Readonly<{
-    name: "Ui-No-Access";
-    value: 0;
-}>;
-export declare const DefaultUIAccessLevel_Beta: Readonly<{
-    name: "Beta";
-    value: 1;
-}>;
-export declare const DefaultUIAccessLevel_Release: Readonly<{
-    name: "Release";
-    value: 2;
-}>;
-export declare const defaultUIAccessLevels: (Readonly<{
-    name: "Ui-No-Access";
-    value: 0;
-}> | Readonly<{
-    name: "Beta";
-    value: 1;
-}> | Readonly<{
-    name: "Release";
-    value: 2;
-}>)[];
-export declare const defaultAccessLevels: (Readonly<{
-    name: "No-Access";
-    value: 0;
-}> | Readonly<{
-    name: "Read";
-    value: 200;
-}> | Readonly<{
-    name: "Write";
-    value: 400;
-}> | Readonly<{
-    name: "Delete";
-    value: 600;
-}> | Readonly<{
-    name: "Admin";
-    value: 1000;
-}>)[];
-export declare const DuplicateDefaultAccessLevels: (seed: string) => {
-    _id: string;
-    uiLabel: string;
-    name: string;
-    value: number;
-}[];
-export declare const CreateDefaultAccessLevels: (seed: string, accessLevels: PreDBAccessLevel[]) => {
-    _id: string;
-    uiLabel: string;
-    name: string;
-    value: number;
-}[];
-export declare const generateKeyNamesByAccessLevel: <AccessLevel extends PreDBAccessLevel>(namespace: string, accessLevels: AccessLevel[]) => { [key in AccessLevel["name"]]: string; };
-export declare const defaultPermissionKeySuffix = "permission-key";
-export declare const defaultLevelsRouteLookupWords: {
-    [k: string]: string;
-};
+export declare const PermissionDBGroup = "permissions";

package/consts.js

@@ -1,60 +1 @@
-import { md5 } from '@nu-art/ts-common';
-export const PermissionDBGroup = 'permission';
-export const Prefix_PermissionKey = 'permission-key--';
-export const DomainNamespace_PermissionAssignment = 'Permissions Assignment';
-export const DomainNamespace_PermissionManagement = 'Permissions Management';
-export const DefaultAccessLevel_NoAccess = Object.freeze({ name: 'No-Access', value: 0 });
-export const DefaultAccessLevel_Read = Object.freeze({ name: 'Read', value: 200 });
-export const DefaultAccessLevel_Write = Object.freeze({ name: 'Write', value: 400 });
-export const DefaultAccessLevel_Delete = Object.freeze({ name: 'Delete', value: 600 });
-export const DefaultAccessLevel_Admin = Object.freeze({ name: 'Admin', value: 1000 });
-//UI access levels
-export const DefaultUIAccessLevel_NoAccess = Object.freeze({ name: 'Ui-No-Access', value: 0 });
-export const DefaultUIAccessLevel_Beta = Object.freeze({ name: 'Beta', value: 1 });
-export const DefaultUIAccessLevel_Release = Object.freeze({ name: 'Release', value: 2 });
-export const defaultUIAccessLevels = [
-    DefaultUIAccessLevel_NoAccess,
-    DefaultUIAccessLevel_Beta,
-    DefaultUIAccessLevel_Release
-];
-export const defaultAccessLevels = [
-    DefaultAccessLevel_NoAccess,
-    DefaultAccessLevel_Read,
-    DefaultAccessLevel_Write,
-    DefaultAccessLevel_Delete,
-    DefaultAccessLevel_Admin,
-];
-export const DuplicateDefaultAccessLevels = (seed) => {
-    return CreateDefaultAccessLevels(seed, [
-        { ...DefaultAccessLevel_NoAccess },
-        { ...DefaultAccessLevel_Read },
-        { ...DefaultAccessLevel_Write },
-        { ...DefaultAccessLevel_Delete },
-        { ...DefaultAccessLevel_Admin },
-    ]);
-};
-const generateDefaultKeyName = (namespace, accessLevelName) => {
-    return `${defaultPermissionKeySuffix}--${namespace}--${accessLevelName}`;
-};
-export const CreateDefaultAccessLevels = (seed, accessLevels) => {
-    return accessLevels.map(level => ({ ...level, _id: md5(`${seed}${level.name}`), uiLabel: level.name }));
-};
-export const generateKeyNamesByAccessLevel = (namespace, accessLevels) => {
-    return accessLevels.reduce((keyMapper, currentAccessLevel) => {
-        const currentKey = currentAccessLevel.name;
-        keyMapper[currentKey] = generateDefaultKeyName(namespace, currentAccessLevel.name);
-        return keyMapper;
-    }, {});
-};
-export const defaultPermissionKeySuffix = 'permission-key';
-export const defaultLevelsRouteLookupWords = {
-    'query': 'Read',
-    'query-unique': 'Read',
-    'sync': 'Read',
-    'patch': 'Write',
-    'upsert': 'Write',
-    'upsert-all': 'Write',
-    'delete': 'Delete',
-    'delete-all': 'Delete',
-    'delete-unique': 'Delete'
-};
+export const PermissionDBGroup = 'permissions';

package/document-access.d.ts

@@ -0,0 +1,20 @@
+import type { UniqueId } from '@nu-art/ts-common';
+export type ScopedAccessIds = Record<string, UniqueId[]>;
+export declare const AccessScope_Self = "_self";
+export type DocumentAccessInner = {
+    readers: UniqueId[];
+    writers: UniqueId[];
+    deleters: UniqueId[];
+    owners: UniqueId[];
+};
+export type DocumentAccessFields = {
+    __access: DocumentAccessInner;
+};
+export type DocumentAccessCapabilities = {
+    read?: boolean;
+    write?: boolean;
+    delete?: boolean;
+    own?: boolean;
+};
+export declare const AllDocumentAccessKeys: (keyof DocumentAccessInner)[];
+export declare const CapabilityToAccessKey: Record<keyof DocumentAccessCapabilities, keyof DocumentAccessInner>;

package/document-access.js

@@ -0,0 +1,8 @@
+export const AccessScope_Self = '_self';
+export const AllDocumentAccessKeys = ['readers', 'writers', 'deleters', 'owners'];
+export const CapabilityToAccessKey = {
+    read: 'readers',
+    write: 'writers',
+    delete: 'deleters',
+    own: 'owners',
+};

package/group-definition.d.ts

@@ -0,0 +1,14 @@
+import type { PermissionScope } from './_entity/permission-scope/brand.js';
+export type GroupScopeEntry = {
+    readonly scope: PermissionScope;
+    readonly value: string;
+};
+export type AccessGroupDefinition = {
+    readonly key: string;
+    readonly label: string;
+    readonly scopes: readonly GroupScopeEntry[];
+    readonly memberKeys?: readonly string[];
+    readonly scopeKey?: string;
+};
+export declare function defineAccessGroup(def: AccessGroupDefinition): AccessGroupDefinition;
+export declare function getRegisteredGroupDefinitions(): AccessGroupDefinition[];

package/group-definition.js

@@ -0,0 +1,18 @@
+import { BadImplementationException } from '@nu-art/ts-common';
+const groupDefinitionRegistry = new Map();
+export function defineAccessGroup(def) {
+    for (const { scope, value } of def.scopes) {
+        if (!scope.values.includes(value))
+            throw new BadImplementationException(`Invalid value '${value}' for scope '${scope.key}'. Valid values: [${scope.values.join(', ')}]`);
+    }
+    if (groupDefinitionRegistry.has(def.key))
+        throw new BadImplementationException(`Duplicate access group definition for key '${def.key}'`);
+    if (def.memberKeys?.includes(def.key))
+        throw new BadImplementationException(`Access group '${def.key}' cannot reference itself as a member`);
+    const frozen = Object.freeze(def);
+    groupDefinitionRegistry.set(def.key, frozen);
+    return frozen;
+}
+export function getRegisteredGroupDefinitions() {
+    return [...groupDefinitionRegistry.values()];
+}

package/index.d.ts

@@ -1,10 +1,12 @@
-export * from './_entity/permission-access-level/index.js';
-export * from './_entity/permission-api/index.js';
-export * from './_entity/permission-domain/index.js';
-export * from './_entity/permission-group/index.js';
-export * from './_entity/permission-project/index.js';
-export * from './_entity/permission-user/index.js';
-export * from './apis.js';
-export * from './consts.js';
-export * from './types.js';
-export * from './permission-keys.js';
+export * from './_entity/permission-scope/types.js';
+export * from './_entity/permission-scope/db-def.js';
+export * from './_entity/permission-scope/brand.js';
+export * from './_entity/user-permissions/types.js';
+export * from './_entity/user-permissions/db-def.js';
+export * from './_entity/user-permissions/api-def.js';
+export * from './session-data.js';
+export * from './permissions-scopes.js';
+export * from './group-definition.js';
+export * from './_entity/access-group/types.js';
+export * from './_entity/access-group/db-def.js';
+export * from './document-access.js';

package/index.js

@@ -16,13 +16,15 @@
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */
-export * from './_entity/permission-access-level/index.js';
-export * from './_entity/permission-api/index.js';
-export * from './_entity/permission-domain/index.js';
-export * from './_entity/permission-group/index.js';
-export * from './_entity/permission-project/index.js';
-export * from './_entity/permission-user/index.js';
-export * from './apis.js';
-export * from './consts.js';
-export * from './types.js';
-export * from './permission-keys.js';
+export * from './_entity/permission-scope/types.js';
+export * from './_entity/permission-scope/db-def.js';
+export * from './_entity/permission-scope/brand.js';
+export * from './_entity/user-permissions/types.js';
+export * from './_entity/user-permissions/db-def.js';
+export * from './_entity/user-permissions/api-def.js';
+export * from './session-data.js';
+export * from './permissions-scopes.js';
+export * from './group-definition.js';
+export * from './_entity/access-group/types.js';
+export * from './_entity/access-group/db-def.js';
+export * from './document-access.js';

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@nu-art/permissions-shared",
-  "version": "0.401.9",
+  "version": "0.500.6",
   "description": "Permissions Shared",
   "keywords": [
     "TacB0sS",
@@ -11,7 +11,6 @@
     "nu-art",
     "permissions",
     "saml",
-    "thunderstorm",
     "typescript",
     "user-account"
   ],
@@ -35,11 +34,10 @@
     "test": "ts-mocha -w -p src/test/tsconfig.json --timeout 0 --inspect=8107 --watch-files '**/*.ts' src/test/__all-tests.ts"
   },
   "dependencies": {
-    "@nu-art/ts-common": "0.401.9",
-    "@nu-art/firebase-shared": "0.401.9",
-    "@nu-art/thunderstorm-shared": "0.401.9",
-    "@nu-art/user-account-shared": "0.401.9",
-    "@nu-art/ts-styles": "0.401.9",
+    "@nu-art/ts-common": "0.500.6",
+    "@nu-art/firebase-shared": "0.500.6",
+    "@nu-art/user-account-shared": "0.500.6",
+    "@nu-art/ts-styles": "0.500.6",
     "firebase": "^11.9.0",
     "firebase-admin": "13.4.0",
     "firebase-functions": "6.3.2",
@@ -48,7 +46,9 @@
     "react-router-dom": "^6.9.0",
     "moment": "^2.29.4",
     "saml2-js": "^4.0.1",
-    "express": "^4.18.2"
+    "express": "^4.18.2",
+    "@nu-art/api-types": "0.500.6",
+    "@nu-art/db-api-shared": "0.500.6"
   },
   "devDependencies": {
     "@types/react": "^18.0.0",
@@ -59,6 +59,7 @@
     "@types/chai": "^4.3.4",
     "@types/mocha": "^10.0.1",
     "@types/history": "^4.7.2",
+    "@types/request": "^2.48.1",
     "@types/saml2-js": "^1.6.8"
   },
   "unitConfig": {

package/permissions-scopes.d.ts

@@ -0,0 +1,8 @@
+export declare const PermissionScope_PermissionsUI: import("./_entity/permission-scope/brand.js").PermissionScope & {
+    key: "permissions-ui";
+    values: readonly ["view"];
+};
+export declare const PermissionScope_AccessGroup: import("./_entity/permission-scope/brand.js").PermissionScope & {
+    key: "access-group";
+    values: readonly ["create"];
+};

package/permissions-scopes.js

@@ -0,0 +1,3 @@
+import { definePermissionScope } from './_entity/permission-scope/brand.js';
+export const PermissionScope_PermissionsUI = definePermissionScope('permissions-ui', ['view']);
+export const PermissionScope_AccessGroup = definePermissionScope('access-group', ['create']);

package/session-data.d.ts

@@ -0,0 +1,4 @@
+import { TypedKeyValue } from '@nu-art/ts-common';
+export type SessionData_StrictMode = TypedKeyValue<'strictMode', {
+    isStrictMode: boolean;
+}>;

package/_entity/permission-access-level/api-def.d.ts

@@ -1,5 +0,0 @@
-import { ApiDefResolver } from '@nu-art/thunderstorm-shared';
-export type ApiStruct_PermissionAccessLevel = {
-    _v1: {};
-};
-export declare const ApiDef_PermissionAccessLevel: ApiDefResolver<ApiStruct_PermissionAccessLevel>;

package/_entity/permission-access-level/api-def.js

@@ -1,3 +0,0 @@
-export const ApiDef_PermissionAccessLevel = {
-    _v1: {}
-};

package/_entity/permission-access-level/db-def.d.ts

@@ -1,3 +0,0 @@
-import { DBDef_V3 } from '@nu-art/ts-common';
-import { DBProto_PermissionAccessLevel } from './types.js';
-export declare const DBDef_PermissionAccessLevel: DBDef_V3<DBProto_PermissionAccessLevel>;

package/_entity/permission-access-level/db-def.js

@@ -1,31 +0,0 @@
-import { tsValidateIsInRange, tsValidateString, tsValidateStringWithDashes, tsValidateUniqueId } from '@nu-art/ts-common';
-import { PermissionDBGroup } from '../../consts.js';
-const Validator_ModifiableProps = {
-    domainId: tsValidateUniqueId,
-    name: tsValidateStringWithDashes,
-    uiLabel: tsValidateString(),
-    value: tsValidateIsInRange([[0, 1000]]),
-};
-const Validator_GeneratedProps = {
-    _auditorId: tsValidateString()
-};
-export const DBDef_PermissionAccessLevel = {
-    modifiablePropsValidator: Validator_ModifiableProps,
-    generatedPropsValidator: Validator_GeneratedProps,
-    versions: ['1.0.1', '1.0.0'],
-    dbKey: 'permissions--level',
-    entityName: 'PermissionAccessLevel',
-    frontend: {
-        group: PermissionDBGroup,
-        name: 'level',
-    },
-    backend: {
-        name: 'permissions--level',
-    },
-    dependencies: {
-        domainId: {
-            dbKey: 'permissions--domain',
-            fieldType: 'string',
-        }
-    }
-};

package/_entity/permission-access-level/index.d.ts

@@ -1,3 +0,0 @@
-export * from './types.js';
-export * from './db-def.js';
-export * from './api-def.js';

package/_entity/permission-access-level/index.js

@@ -1,4 +0,0 @@
-// Generated DB Item type: PermissionAccessLevel
-export * from './types.js';
-export * from './db-def.js';
-export * from './api-def.js';