@open-core/framework 0.2.1-beta.1 → 0.2.4

package/dist/runtime/server/services/access-control.service.d.ts

@@ -1,59 +0,0 @@
-import { Server } from '../../..'
-import { PrincipalProviderContract } from '../contracts'
-/**
- * **Core Security Service**
- *
- * This service acts as the central enforcement point for the Access Control system.
- * It uses the configured `PrincipalProvider` to query roles and validates them against requirements.
- *
- * It is primarily used internally by the `@Guard` decorator, but can be injected
- * into services to perform manual checks.
- */
-export declare class AccessControlService {
-  private readonly principalProvider
-  constructor(principalProvider: PrincipalProviderContract)
-  /**
-   * Verifies if a player meets a minimum numeric rank requirement.
-   *
-   * @param player - The target player.
-   * @param minRank - The minimum numeric value required (Inclusive).
-   *
-   * @returns `true` if `Principal.rank >= minRank`.
-   *
-   * @throws {AppError} code `UNAUTHORIZED` if the player has no Principal (not logged in).
-   * @throws {AppError} code `NO_RANK_IN_PRINCIPAL` if the Principal exists but has no `rank` defined.
-   */
-  hasRank(player: Server.Player, minRank: number): Promise<boolean>
-  /**
-   * Verifies if a player possesses a specific permission string.
-   *
-   * @remarks
-   * This method supports the **Wildcard ('*')** permission. If the principal has `'*'`
-   * in their permissions array, this method always returns `true`.
-   *
-   * @param player - The target player.
-   * @param permission - The specific permission key (e.g., `'admin.ban'`).
-   * @returns `true` if the player has the permission or the wildcard.
-   */
-  hasPermission(player: Server.Player, permission: string): Promise<boolean>
-  /**
-   * **Strict Enforcement**
-   *
-   * Validates a set of requirements against a player. If any requirement fails,
-   * it throws an exception, halting the execution flow.
-   *
-   * Used primarily by the `@Guard` decorator logic.
-   *
-   * @param player - The server player to validate.
-   * @param requirements - An object containing rank and/or permission constraints.
-   *
-   * @throws {AppError} code `PERMISSION_DENIED` if validation fails.
-   */
-  enforce(
-    player: Server.Player,
-    requirements: {
-      minRank?: number
-      permission?: string
-    },
-  ): Promise<void>
-}

package/dist/runtime/server/services/access-control.service.js

@@ -1,127 +0,0 @@
-'use strict'
-var __decorate =
-  (this && this.__decorate) ||
-  function (decorators, target, key, desc) {
-    var c = arguments.length,
-      r =
-        c < 3
-          ? target
-          : desc === null
-            ? (desc = Object.getOwnPropertyDescriptor(target, key))
-            : desc,
-      d
-    if (typeof Reflect === 'object' && typeof Reflect.decorate === 'function')
-      r = Reflect.decorate(decorators, target, key, desc)
-    else
-      for (var i = decorators.length - 1; i >= 0; i--)
-        if ((d = decorators[i]))
-          r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r
-    return c > 3 && r && Object.defineProperty(target, key, r), r
-  }
-var __metadata =
-  (this && this.__metadata) ||
-  ((k, v) => {
-    if (typeof Reflect === 'object' && typeof Reflect.metadata === 'function')
-      return Reflect.metadata(k, v)
-  })
-Object.defineProperty(exports, '__esModule', { value: true })
-exports.AccessControlService = void 0
-const tsyringe_1 = require('tsyringe')
-const utils_1 = require('../../../kernel/utils')
-const contracts_1 = require('../contracts')
-/**
- * **Core Security Service**
- *
- * This service acts as the central enforcement point for the Access Control system.
- * It uses the configured `PrincipalProvider` to query roles and validates them against requirements.
- *
- * It is primarily used internally by the `@Guard` decorator, but can be injected
- * into services to perform manual checks.
- */
-let AccessControlService = class AccessControlService {
-  constructor(principalProvider) {
-    this.principalProvider = principalProvider
-  }
-  /**
-   * Verifies if a player meets a minimum numeric rank requirement.
-   *
-   * @param player - The target player.
-   * @param minRank - The minimum numeric value required (Inclusive).
-   *
-   * @returns `true` if `Principal.rank >= minRank`.
-   *
-   * @throws {AppError} code `UNAUTHORIZED` if the player has no Principal (not logged in).
-   * @throws {AppError} code `NO_RANK_IN_PRINCIPAL` if the Principal exists but has no `rank` defined.
-   */
-  async hasRank(player, minRank) {
-    const principal = await this.principalProvider.getPrincipal(player)
-    if (!principal) throw new utils_1.AppError('AUTH:UNAUTHORIZED', 'No principal found', 'core')
-    if (principal.rank === undefined)
-      throw new utils_1.AppError(
-        'GAME:NO_RANK_IN_PRINCIPAL',
-        "You're trying to compare a Principal rank, but there's no defined rank! ",
-        'core',
-      )
-    return principal.rank >= minRank
-  }
-  /**
-   * Verifies if a player possesses a specific permission string.
-   *
-   * @remarks
-   * This method supports the **Wildcard ('*')** permission. If the principal has `'*'`
-   * in their permissions array, this method always returns `true`.
-   *
-   * @param player - The target player.
-   * @param permission - The specific permission key (e.g., `'admin.ban'`).
-   * @returns `true` if the player has the permission or the wildcard.
-   */
-  async hasPermission(player, permission) {
-    const principal = await this.principalProvider.getPrincipal(player)
-    if (!principal) return false
-    if (principal.permissions.includes('*')) return true
-    return principal.permissions.includes(permission)
-  }
-  /**
-   * **Strict Enforcement**
-   *
-   * Validates a set of requirements against a player. If any requirement fails,
-   * it throws an exception, halting the execution flow.
-   *
-   * Used primarily by the `@Guard` decorator logic.
-   *
-   * @param player - The server player to validate.
-   * @param requirements - An object containing rank and/or permission constraints.
-   *
-   * @throws {AppError} code `PERMISSION_DENIED` if validation fails.
-   */
-  async enforce(player, requirements) {
-    if (requirements.minRank !== undefined) {
-      const hasRank = await this.hasRank(player, requirements.minRank)
-      if (!hasRank) {
-        throw new utils_1.AppError(
-          'AUTH:PERMISSION_DENIED',
-          `Access Denied: Requires minimum rank level ${requirements.minRank}`,
-          'core',
-        )
-      }
-    }
-    if (requirements.permission) {
-      const hasPerm = await this.hasPermission(player, requirements.permission)
-      if (!hasPerm) {
-        throw new utils_1.AppError(
-          'AUTH:PERMISSION_DENIED',
-          `Access Denied: Missing required permission '${requirements.permission}'`,
-          'core',
-        )
-      }
-    }
-  }
-}
-exports.AccessControlService = AccessControlService
-exports.AccessControlService = AccessControlService = __decorate(
-  [
-    (0, tsyringe_1.injectable)(),
-    __metadata('design:paramtypes', [contracts_1.PrincipalProviderContract]),
-  ],
-  AccessControlService,
-)

package/dist/runtime/server/services/core/vehicle-modification.service.d.ts

@@ -1,104 +0,0 @@
-import { VehicleService } from './vehicle.service'
-import type { VehicleModificationOptions, VehicleMods } from '../../types/vehicle.types'
-/**
- * Service for handling vehicle modifications with validation.
- *
- * This service is separated from VehicleService to maintain single responsibility.
- * All modifications are validated server-side before being applied.
- *
- * Security features:
- * - Ownership validation
- * - Proximity checks
- * - Modification limits
- * - Audit logging
- */
-export declare class VehicleModificationService {
-  private readonly vehicleService
-  constructor(vehicleService: VehicleService)
-  /**
-   * Applies modifications to a vehicle with validation.
-   *
-   * @param options - Modification options
-   * @returns Success status
-   */
-  applyModifications(options: VehicleModificationOptions): boolean
-  /**
-   * Sets vehicle colors with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param primaryColor - Primary color ID
-   * @param secondaryColor - Secondary color ID
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setColors(
-    networkId: number,
-    primaryColor: number,
-    secondaryColor: number,
-    requestedBy?: number,
-  ): boolean
-  /**
-   * Sets vehicle livery with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param livery - Livery index
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setLivery(networkId: number, livery: number, requestedBy?: number): boolean
-  /**
-   * Toggles vehicle turbo with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param enabled - Whether turbo should be enabled
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setTurbo(networkId: number, enabled: boolean, requestedBy?: number): boolean
-  /**
-   * Sets vehicle window tint with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param tint - Tint level (0-6)
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setWindowTint(networkId: number, tint: number, requestedBy?: number): boolean
-  /**
-   * Sets vehicle neon lights with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param enabled - Array of [left, right, front, back] enabled states
-   * @param color - RGB color array
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setNeon(
-    networkId: number,
-    enabled: [boolean, boolean, boolean, boolean],
-    color?: [number, number, number],
-    requestedBy?: number,
-  ): boolean
-  /**
-   * Resets all modifications on a vehicle.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param requestedBy - Client ID requesting the reset
-   * @returns Success status
-   */
-  resetModifications(networkId: number, requestedBy?: number): boolean
-  /**
-   * Gets the current modifications of a vehicle.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @returns Vehicle mods or undefined
-   */
-  getModifications(networkId: number): VehicleMods | undefined
-  /**
-   * Validates modification values to prevent exploits.
-   *
-   * @param mods - Modifications to validate
-   * @returns Validated modifications
-   */
-  private validateMods
-}

package/dist/runtime/server/services/core/vehicle-modification.service.js

@@ -1,330 +0,0 @@
-'use strict'
-var __decorate =
-  (this && this.__decorate) ||
-  function (decorators, target, key, desc) {
-    var c = arguments.length,
-      r =
-        c < 3
-          ? target
-          : desc === null
-            ? (desc = Object.getOwnPropertyDescriptor(target, key))
-            : desc,
-      d
-    if (typeof Reflect === 'object' && typeof Reflect.decorate === 'function')
-      r = Reflect.decorate(decorators, target, key, desc)
-    else
-      for (var i = decorators.length - 1; i >= 0; i--)
-        if ((d = decorators[i]))
-          r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r
-    return c > 3 && r && Object.defineProperty(target, key, r), r
-  }
-var __metadata =
-  (this && this.__metadata) ||
-  ((k, v) => {
-    if (typeof Reflect === 'object' && typeof Reflect.metadata === 'function')
-      return Reflect.metadata(k, v)
-  })
-var __param =
-  (this && this.__param) ||
-  ((paramIndex, decorator) => (target, key) => {
-    decorator(target, key, paramIndex)
-  })
-Object.defineProperty(exports, '__esModule', { value: true })
-exports.VehicleModificationService = void 0
-const tsyringe_1 = require('tsyringe')
-const vehicle_service_1 = require('./vehicle.service')
-const logger_1 = require('../../../../kernel/shared/logger')
-/**
- * Service for handling vehicle modifications with validation.
- *
- * This service is separated from VehicleService to maintain single responsibility.
- * All modifications are validated server-side before being applied.
- *
- * Security features:
- * - Ownership validation
- * - Proximity checks
- * - Modification limits
- * - Audit logging
- */
-let VehicleModificationService = class VehicleModificationService {
-  constructor(vehicleService) {
-    this.vehicleService = vehicleService
-  }
-  /**
-   * Applies modifications to a vehicle with validation.
-   *
-   * @param options - Modification options
-   * @returns Success status
-   */
-  applyModifications(options) {
-    const { networkId, mods, requestedBy } = options
-    const vehicle = this.vehicleService.getByNetworkId(networkId)
-    if (!vehicle) {
-      logger_1.coreLogger.warn('Vehicle not found for modification', { networkId })
-      return false
-    }
-    if (!vehicle.exists) {
-      logger_1.coreLogger.warn('Vehicle no longer exists', { networkId })
-      return false
-    }
-    if (requestedBy !== undefined) {
-      if (!this.vehicleService.validateOwnership(networkId, requestedBy)) {
-        logger_1.coreLogger.warn('Unauthorized modification attempt', {
-          networkId,
-          requestedBy,
-          owner: vehicle.ownership.clientID,
-        })
-        return false
-      }
-      if (!this.vehicleService.validateProximity(networkId, requestedBy, 15.0)) {
-        logger_1.coreLogger.warn('Player too far from vehicle for modification', {
-          networkId,
-          requestedBy,
-        })
-        return false
-      }
-    }
-    const validatedMods = this.validateMods(mods)
-    vehicle.applyMods(validatedMods)
-    logger_1.coreLogger.debug('Vehicle modifications applied', {
-      networkId,
-      requestedBy,
-      mods: Object.keys(validatedMods),
-    })
-    emitNet('opencore:vehicle:modified', -1, {
-      networkId,
-      mods: validatedMods,
-    })
-    return true
-  }
-  /**
-   * Sets vehicle colors with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param primaryColor - Primary color ID
-   * @param secondaryColor - Secondary color ID
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setColors(networkId, primaryColor, secondaryColor, requestedBy) {
-    return this.applyModifications({
-      networkId,
-      mods: { primaryColor, secondaryColor },
-      requestedBy,
-    })
-  }
-  /**
-   * Sets vehicle livery with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param livery - Livery index
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setLivery(networkId, livery, requestedBy) {
-    return this.applyModifications({
-      networkId,
-      mods: { livery },
-      requestedBy,
-    })
-  }
-  /**
-   * Toggles vehicle turbo with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param enabled - Whether turbo should be enabled
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setTurbo(networkId, enabled, requestedBy) {
-    return this.applyModifications({
-      networkId,
-      mods: { turbo: enabled },
-      requestedBy,
-    })
-  }
-  /**
-   * Sets vehicle window tint with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param tint - Tint level (0-6)
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setWindowTint(networkId, tint, requestedBy) {
-    const validTint = Math.max(0, Math.min(6, tint))
-    return this.applyModifications({
-      networkId,
-      mods: { windowTint: validTint },
-      requestedBy,
-    })
-  }
-  /**
-   * Sets vehicle neon lights with validation.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param enabled - Array of [left, right, front, back] enabled states
-   * @param color - RGB color array
-   * @param requestedBy - Client ID requesting the change
-   * @returns Success status
-   */
-  setNeon(networkId, enabled, color, requestedBy) {
-    const mods = { neonEnabled: enabled }
-    if (color) {
-      mods.neonColor = color
-    }
-    return this.applyModifications({
-      networkId,
-      mods,
-      requestedBy,
-    })
-  }
-  /**
-   * Resets all modifications on a vehicle.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @param requestedBy - Client ID requesting the reset
-   * @returns Success status
-   */
-  resetModifications(networkId, requestedBy) {
-    const vehicle = this.vehicleService.getByNetworkId(networkId)
-    if (!vehicle) return false
-    if (requestedBy !== undefined) {
-      if (!this.vehicleService.validateOwnership(networkId, requestedBy)) {
-        return false
-      }
-    }
-    const defaultMods = {
-      spoiler: -1,
-      frontBumper: -1,
-      rearBumper: -1,
-      sideSkirt: -1,
-      exhaust: -1,
-      frame: -1,
-      grille: -1,
-      hood: -1,
-      fender: -1,
-      rightFender: -1,
-      roof: -1,
-      engine: -1,
-      brakes: -1,
-      transmission: -1,
-      horns: -1,
-      suspension: -1,
-      armor: -1,
-      turbo: false,
-      xenon: false,
-      windowTint: 0,
-    }
-    vehicle.applyMods(defaultMods)
-    logger_1.coreLogger.info('Vehicle modifications reset', { networkId, requestedBy })
-    emitNet('opencore:vehicle:modified', -1, {
-      networkId,
-      mods: defaultMods,
-    })
-    return true
-  }
-  /**
-   * Gets the current modifications of a vehicle.
-   *
-   * @param networkId - Network ID of the vehicle
-   * @returns Vehicle mods or undefined
-   */
-  getModifications(networkId) {
-    const vehicle = this.vehicleService.getByNetworkId(networkId)
-    return vehicle === null || vehicle === void 0 ? void 0 : vehicle.mods
-  }
-  /**
-   * Validates modification values to prevent exploits.
-   *
-   * @param mods - Modifications to validate
-   * @returns Validated modifications
-   */
-  validateMods(mods) {
-    const validated = {}
-    const modSlots = [
-      'spoiler',
-      'frontBumper',
-      'rearBumper',
-      'sideSkirt',
-      'exhaust',
-      'frame',
-      'grille',
-      'hood',
-      'fender',
-      'rightFender',
-      'roof',
-      'engine',
-      'brakes',
-      'transmission',
-      'horns',
-      'suspension',
-      'armor',
-      'wheels',
-    ]
-    for (const slot of modSlots) {
-      if (mods[slot] !== undefined) {
-        const value = mods[slot]
-        validated[slot] = Math.max(-1, Math.min(50, value))
-      }
-    }
-    if (mods.turbo !== undefined) validated.turbo = Boolean(mods.turbo)
-    if (mods.xenon !== undefined) validated.xenon = Boolean(mods.xenon)
-    if (mods.wheelType !== undefined) {
-      validated.wheelType = Math.max(0, Math.min(12, mods.wheelType))
-    }
-    if (mods.windowTint !== undefined) {
-      validated.windowTint = Math.max(0, Math.min(6, mods.windowTint))
-    }
-    if (mods.livery !== undefined) {
-      validated.livery = Math.max(-1, Math.min(50, mods.livery))
-    }
-    if (mods.plateStyle !== undefined) {
-      validated.plateStyle = Math.max(0, Math.min(5, mods.plateStyle))
-    }
-    if (mods.primaryColor !== undefined) {
-      validated.primaryColor = Math.max(0, Math.min(160, mods.primaryColor))
-    }
-    if (mods.secondaryColor !== undefined) {
-      validated.secondaryColor = Math.max(0, Math.min(160, mods.secondaryColor))
-    }
-    if (mods.pearlescentColor !== undefined) {
-      validated.pearlescentColor = Math.max(0, Math.min(160, mods.pearlescentColor))
-    }
-    if (mods.wheelColor !== undefined) {
-      validated.wheelColor = Math.max(0, Math.min(160, mods.wheelColor))
-    }
-    if (mods.xenonColor !== undefined) {
-      validated.xenonColor = Math.max(0, Math.min(12, mods.xenonColor))
-    }
-    if (mods.neonEnabled !== undefined) {
-      validated.neonEnabled = mods.neonEnabled
-    }
-    if (mods.neonColor !== undefined) {
-      validated.neonColor = [
-        Math.max(0, Math.min(255, mods.neonColor[0])),
-        Math.max(0, Math.min(255, mods.neonColor[1])),
-        Math.max(0, Math.min(255, mods.neonColor[2])),
-      ]
-    }
-    if (mods.extras !== undefined) {
-      validated.extras = {}
-      for (const [key, value] of Object.entries(mods.extras)) {
-        const extraId = Number(key)
-        if (extraId >= 0 && extraId <= 20) {
-          validated.extras[extraId] = Boolean(value)
-        }
-      }
-    }
-    return validated
-  }
-}
-exports.VehicleModificationService = VehicleModificationService
-exports.VehicleModificationService = VehicleModificationService = __decorate(
-  [
-    (0, tsyringe_1.injectable)(),
-    __param(0, (0, tsyringe_1.inject)(vehicle_service_1.VehicleService)),
-    __metadata('design:paramtypes', [vehicle_service_1.VehicleService]),
-  ],
-  VehicleModificationService,
-)