@pax2pay/model-banking 0.1.511 → 0.1.513
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/Client/Users/Invites.ts +20 -0
- package/Client/Users/index.ts +31 -0
- package/Client/index.ts +15 -12
- package/Identity.ts +20 -14
- package/Key/Permissions.ts +46 -0
- package/Key/index.ts +16 -5
- package/User/Access/Permission.ts +1 -1
- package/User/Identity.ts +2 -2
- package/User/JWT/index.ts +3 -1
- package/User/JWT/whitelist.ts +16 -0
- package/dist/cjs/Client/Users/Invites.d.ts +11 -0
- package/dist/cjs/Client/Users/Invites.js +23 -0
- package/dist/cjs/Client/Users/Invites.js.map +1 -0
- package/dist/cjs/Client/Users/index.d.ts +16 -0
- package/dist/cjs/Client/Users/index.js +34 -0
- package/dist/cjs/Client/Users/index.js.map +1 -0
- package/dist/cjs/Client/index.d.ts +8 -6
- package/dist/cjs/Client/index.js +15 -12
- package/dist/cjs/Client/index.js.map +1 -1
- package/dist/cjs/Identity.d.ts +3 -4
- package/dist/cjs/Identity.js +19 -8
- package/dist/cjs/Identity.js.map +1 -1
- package/dist/cjs/Key/Permissions.d.ts +2 -0
- package/dist/cjs/Key/Permissions.js +47 -0
- package/dist/cjs/Key/Permissions.js.map +1 -1
- package/dist/cjs/Key/index.d.ts +3 -5
- package/dist/cjs/Key/index.js +17 -0
- package/dist/cjs/Key/index.js.map +1 -1
- package/dist/cjs/User/Access/Permission.d.ts +4 -4
- package/dist/cjs/User/Access/Permission.js +1 -1
- package/dist/cjs/User/Access/Permission.js.map +1 -1
- package/dist/cjs/User/Identity.d.ts +1 -2
- package/dist/cjs/User/Identity.js +2 -4
- package/dist/cjs/User/Identity.js.map +1 -1
- package/dist/cjs/User/JWT/index.d.ts +1 -0
- package/dist/cjs/User/JWT/index.js +3 -1
- package/dist/cjs/User/JWT/index.js.map +1 -1
- package/dist/cjs/User/JWT/whitelist.d.ts +2 -0
- package/dist/cjs/User/JWT/whitelist.js +17 -0
- package/dist/cjs/User/JWT/whitelist.js.map +1 -0
- package/dist/mjs/Client/Users/Invites.d.ts +11 -0
- package/dist/mjs/Client/Users/Invites.js +19 -0
- package/dist/mjs/Client/Users/Invites.js.map +1 -0
- package/dist/mjs/Client/Users/index.d.ts +16 -0
- package/dist/mjs/Client/Users/index.js +30 -0
- package/dist/mjs/Client/Users/index.js.map +1 -0
- package/dist/mjs/Client/index.d.ts +8 -6
- package/dist/mjs/Client/index.js +15 -12
- package/dist/mjs/Client/index.js.map +1 -1
- package/dist/mjs/Identity.d.ts +3 -4
- package/dist/mjs/Identity.js +19 -8
- package/dist/mjs/Identity.js.map +1 -1
- package/dist/mjs/Key/Permissions.d.ts +2 -0
- package/dist/mjs/Key/Permissions.js +47 -0
- package/dist/mjs/Key/Permissions.js.map +1 -1
- package/dist/mjs/Key/index.d.ts +3 -5
- package/dist/mjs/Key/index.js +17 -0
- package/dist/mjs/Key/index.js.map +1 -1
- package/dist/mjs/User/Access/Permission.d.ts +4 -4
- package/dist/mjs/User/Access/Permission.js +1 -1
- package/dist/mjs/User/Access/Permission.js.map +1 -1
- package/dist/mjs/User/Identity.d.ts +1 -2
- package/dist/mjs/User/Identity.js +2 -4
- package/dist/mjs/User/Identity.js.map +1 -1
- package/dist/mjs/User/JWT/index.d.ts +1 -0
- package/dist/mjs/User/JWT/index.js +3 -1
- package/dist/mjs/User/JWT/index.js.map +1 -1
- package/dist/mjs/User/JWT/whitelist.d.ts +2 -0
- package/dist/mjs/User/JWT/whitelist.js +14 -0
- package/dist/mjs/User/JWT/whitelist.js.map +1 -0
- package/package.json +1 -1
package/dist/cjs/Identity.js
CHANGED
|
@@ -3,7 +3,9 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
3
3
|
exports.Identity = void 0;
|
|
4
4
|
const gracely_1 = require("gracely");
|
|
5
5
|
const model_1 = require("@userwidgets/model");
|
|
6
|
+
const Key_1 = require("./Key");
|
|
6
7
|
const Realm_1 = require("./Realm");
|
|
8
|
+
const User_1 = require("./User");
|
|
7
9
|
class Identity {
|
|
8
10
|
key;
|
|
9
11
|
realm;
|
|
@@ -30,17 +32,17 @@ class Identity {
|
|
|
30
32
|
collectionCheck(collection) {
|
|
31
33
|
return Object.values(this.key.permissions).some(value => (typeof value == "object" && value[collection]) || value == true);
|
|
32
34
|
}
|
|
33
|
-
static async authenticate(header, constraint, requires,
|
|
35
|
+
static async authenticate(header, constraint, requires, key = publicKey, output = "undefined", notify) {
|
|
34
36
|
let result;
|
|
35
37
|
const authorization = header.authorization?.startsWith("Bearer ")
|
|
36
38
|
? header.authorization.replace("Bearer ", "")
|
|
37
39
|
: undefined;
|
|
38
|
-
const
|
|
39
|
-
if (!
|
|
40
|
+
const verified = await Identity.verify(authorization, key);
|
|
41
|
+
if (!verified)
|
|
40
42
|
output !== "undefined" && (result = gracely_1.gracely.client.unauthorized());
|
|
41
43
|
else {
|
|
42
|
-
const realms = Identity.getRealms(
|
|
43
|
-
const identity = new Identity(
|
|
44
|
+
const realms = Identity.getRealms(verified.permissions);
|
|
45
|
+
const identity = new Identity(verified, (realms?.length == 1 ? realms[0] : header.realm), (verified.organization ?? header.organization));
|
|
44
46
|
const requirement = (value) => (requires?.organization ? !!identity?.organization : true) &&
|
|
45
47
|
(requires?.realm ? Realm_1.Realm.type.is(identity?.realm) : true);
|
|
46
48
|
if (identity?.check(constraint) && requirement(identity))
|
|
@@ -55,8 +57,18 @@ class Identity {
|
|
|
55
57
|
}
|
|
56
58
|
return result;
|
|
57
59
|
}
|
|
58
|
-
static async verify(authorization,
|
|
59
|
-
|
|
60
|
+
static async verify(authorization, key) {
|
|
61
|
+
const verifier = model_1.userwidgets.User.Key.Verifier.create(key);
|
|
62
|
+
const jwt = User_1.User.JWT.open({ public: key });
|
|
63
|
+
const unpacked = authorization ? await jwt.unpack(authorization) : undefined;
|
|
64
|
+
let verified;
|
|
65
|
+
if (User_1.User.JWT.Payload.type.is(unpacked) && authorization) {
|
|
66
|
+
const payload = await jwt.verify(authorization);
|
|
67
|
+
verified = payload && Key_1.Key.from(payload, authorization);
|
|
68
|
+
}
|
|
69
|
+
else
|
|
70
|
+
verified = await verifier.verify(authorization);
|
|
71
|
+
return verified;
|
|
60
72
|
}
|
|
61
73
|
static getRealms(permissions) {
|
|
62
74
|
return [
|
|
@@ -66,5 +78,4 @@ class Identity {
|
|
|
66
78
|
}
|
|
67
79
|
exports.Identity = Identity;
|
|
68
80
|
const publicKey = "MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2W8CD2kpfS4QIRV2/rgm4NVvsvJsYNMHtnIl9ADvO3A81hAmRKvOAPVoXICe6+EuZ47jGjGL7f48GEoQuITfBPv/MosCDj1YhJ56ILDynCSd8FlxDrhv8pl5IquST7tcL6Hc6m+vuvoTLrFQ5QqNxv0a5eDd/YTrWv7SUuRfBEhYd/wMysGynN3QauHqy5ceBCt1nv1MJLGlSzczMRK7wjy1zi2g9NCHZBOoo1HXOpi727Xh+YXHc9EP2TN0oOXyxykv45nkGIDI0Qek3/pfkavClBffc1sEqA+rUx7YqRN9KGYxwLMLug+NOOh3ptqjfobXbR5fx/sUWhvcjUMTE1JreTrWYbGmVnjd/SeYSClfmGhdTBUfqnZbaABv0ruTXva18qRhP4y143vHMk/k8HzbuROTKAzrtEeLIjgwUgDcnE+JwDqcb8tKSGV6i++TiTldlSBCRTT4dK2hpHJje80b2abqtrbCkxbJlT98UsAAoiq2eW1X6lYmCfiGCJPkfswibQ2tPAKKNe/2xuHPsjx4FuXGmV0dbzmCwSIQoApXqOvKzoNFi6AaKIjxfNmiEigLwKpNrw08H0lVZbq/9MMxI3TzMTZjY9QmBKVLSGy3Z6IJqZpyK22lv7whJcllG0Qw8tv8+7wmC8SR3+4jpuxuFGZ+69CW+otx+CPMJjcCAwEAAQ==";
|
|
69
|
-
const productionVerifier = model_1.userwidgets.User.Key.Verifier.create(publicKey);
|
|
70
81
|
//# sourceMappingURL=Identity.js.map
|
package/dist/cjs/Identity.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"Identity.js","sourceRoot":"","sources":["../../Identity.ts"],"names":[],"mappings":";;;AAAA,qCAAiC;AACjC,8CAAgD;
|
|
1
|
+
{"version":3,"file":"Identity.js","sourceRoot":"","sources":["../../Identity.ts"],"names":[],"mappings":";;;AAAA,qCAAiC;AACjC,8CAAgD;AAEhD,+BAA2B;AAC3B,mCAA+B;AAC/B,iCAA6B;AAE7B,MAAa,QAAQ;IAOV;IACA;IACA;IARV,OAAO,CAAqB;IAC5B,IAAI,MAAM;QACT,OAAO,CAAC,IAAI,CAAC,OAAO,KAAK,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAA;IACnE,CAAC;IAED,YACU,GAAQ,EACR,KAA0D,EAC1D,YAA0E;QAF1E,QAAG,GAAH,GAAG,CAAK;QACR,UAAK,GAAL,KAAK,CAAqD;QAC1D,iBAAY,GAAZ,YAAY,CAA8D;IACjF,CAAC;IACJ,KAAK,CAAC,UAA+C,EAAE,KAAa,EAAE,YAAqB;QAC1F,OAAO,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC;YAC/B,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,EAAE,YAAY,CAAC,CAAC;YAC1D,CAAC,CAAC;gBACA,EAAE,CAAC,GAAG,KAAK,IAAI,IAAI,CAAC,KAAK,IAAI,YAAY,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC,EAAE,UAAU,EAAE;gBAC/E,EAAE,CAAC,GAAG,YAAY,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC,EAAE,UAAU,EAAE;gBACxD,EAAE,CAAC,GAAG,KAAK,IAAI,IAAI,CAAC,KAAK,IAAI,CAAC,EAAE,UAAU,EAAE;gBAC5C,EAAE,CAAC,KAAK,CAAC,EAAE,UAAU,EAAE;aACtB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,mBAAW,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,CAAA;IAC5E,CAAC;IACD,eAAe,CAAC,UAAkB;QACjC,OAAO,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,IAAI,CAC9C,KAAK,CAAC,EAAE,CAAC,CAAC,OAAO,KAAK,IAAI,QAAQ,IAAI,KAAK,CAAC,UAAU,CAAC,CAAC,IAAI,KAAK,IAAI,IAAI,CACzE,CAAA;IACF,CAAC;IAkBD,MAAM,CAAC,KAAK,CAAC,YAAY,CACxB,MAAoF,EACpF,UAA+C,EAC/C,QAAY,EACZ,MAAc,SAAS,EACvB,SAAgC,WAAW,EAC3C,MAAwB;QAExB,IAAI,MAA+C,CAAA;QACnD,MAAM,aAAa,GAAG,MAAM,CAAC,aAAa,EAAE,UAAU,CAAC,SAAS,CAAC;YAChE,CAAC,CAAC,MAAM,CAAC,aAAa,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC;YAC7C,CAAC,CAAC,SAAS,CAAA;QACZ,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,MAAM,CAAC,aAAa,EAAE,GAAG,CAAC,CAAA;QAC1D,IAAI,CAAC,QAAQ;YACZ,MAAM,KAAK,WAAW,IAAI,CAAC,MAAM,GAAG,iBAAO,CAAC,MAAM,CAAC,YAAY,EAAE,CAAC,CAAA;aAC9D,CAAC;YACL,MAAM,MAAM,GAAG,QAAQ,CAAC,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAA;YACvD,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAC5B,QAAQ,EACR,CAAC,MAAM,EAAE,MAAM,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAU,EACzD,CAAC,QAAQ,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY,CAAW,CACxD,CAAA;YACD,MAAM,WAAW,GAAG,CACnB,KAA2B,EAGf,EAAE,CACd,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC;gBAC1D,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,aAAK,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAA;YAC1D,IAAI,QAAQ,EAAE,KAAK,CAAC,UAAU,CAAC,IAAI,WAAW,CAAC,QAAQ,CAAC;gBACvD,MAAM,GAAG,QAAQ,CAAA;iBACb,IAAI,MAAM,KAAK,WAAW;gBAC9B,MAAM,GAAG,SAAS,CAAA;iBACd,CAAC;gBACL,MAAM,MAAM,EAAE,KAAK,CAAC,IAAI,CACvB,eAAe,EACf,kCAAkC,MAAM,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,MAAM,CAAC,QAAQ,EAAE,CAClF,CAAA;gBACD,OAAO,CAAC,GAAG,CACV,QAAQ,CAAC,GAAG,CAAC,KAAK,EAClB,gCAAgC,EAChC,MAAM,EAAE,MAAM,CAAC,WAAW,EAAE,EAC5B,MAAM,EAAE,QAAQ,CAChB,CAAA;gBACD,MAAM,GAAG,iBAAO,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;YACpC,CAAC;QACF,CAAC;QACD,OAAO,MAAM,CAAA;IACd,CAAC;IACD,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,aAAiC,EAAE,GAAW;QACjE,MAAM,QAAQ,GAAG,mBAAW,CAAC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAM,GAAG,CAAC,CAAA;QAC/D,MAAM,GAAG,GAAG,WAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,GAAG,EAAE,CAAC,CAAA;QAC1C,MAAM,QAAQ,GAAG,aAAa,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,MAAM,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAC5E,IAAI,QAAyB,CAAA;QAC7B,IAAI,WAAI,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,aAAa,EAAE,CAAC;YACzD,MAAM,OAAO,GAAG,MAAM,GAAG,CAAC,MAAM,CAAC,aAAa,CAAC,CAAA;YAC/C,QAAQ,GAAG,OAAO,IAAI,SAAG,CAAC,IAAI,CAAC,OAAO,EAAE,aAAa,CAAC,CAAA;QACvD,CAAC;;YACA,QAAQ,GAAG,MAAM,QAAQ,CAAC,MAAM,CAAC,aAAa,CAAC,CAAA;QAChD,OAAO,QAAQ,CAAA;IAChB,CAAC;IACD,MAAM,CAAC,SAAS,CAAC,WAA4B;QAC5C,OAAO;YACN,GAAG,IAAI,GAAG,CACT,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CACvC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,aAAK,CAAC,MAAM,CAAC,CAAC,CAAC,aAAK,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CACnF,CACD;SACD,CAAA;IACF,CAAC;CACD;AAjHD,4BAiHC;AAkBD,MAAM,SAAS,GACd,kuBAAkuB,CAAA"}
|
|
@@ -1,4 +1,5 @@
|
|
|
1
1
|
import { userwidgets } from "@userwidgets/model";
|
|
2
|
+
import { User } from "../User";
|
|
2
3
|
export type Permissions = Permissions.Organization | Permissions.Realm;
|
|
3
4
|
export declare namespace Permissions {
|
|
4
5
|
function stringify(permissions: Permissions): string;
|
|
@@ -90,4 +91,5 @@ export declare namespace Permissions {
|
|
|
90
91
|
cancel?: true;
|
|
91
92
|
} | true;
|
|
92
93
|
}
|
|
94
|
+
function from(permission: User.Access.Permission): Permissions;
|
|
93
95
|
}
|
|
@@ -2,11 +2,58 @@
|
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.Permissions = void 0;
|
|
4
4
|
const model_1 = require("@userwidgets/model");
|
|
5
|
+
const User_1 = require("../User");
|
|
5
6
|
var Permissions;
|
|
6
7
|
(function (Permissions) {
|
|
7
8
|
function stringify(permissions) {
|
|
8
9
|
return model_1.userwidgets.User.Permissions.stringify(permissions);
|
|
9
10
|
}
|
|
10
11
|
Permissions.stringify = stringify;
|
|
12
|
+
function from(permission) {
|
|
13
|
+
const result = {};
|
|
14
|
+
if (permission["*"])
|
|
15
|
+
result["*"] = User_1.User.Access.Permission.Level.get(permission["*"]) >= 2 || {
|
|
16
|
+
org: { view: true },
|
|
17
|
+
user: User_1.User.Access.Permission.Level.get(permission["user"]) >= 2 || { view: true },
|
|
18
|
+
app: { view: true },
|
|
19
|
+
};
|
|
20
|
+
if (permission["account"])
|
|
21
|
+
result.accounts = User_1.User.Access.Permission.Level.get(permission["account"]) >= 2 || {
|
|
22
|
+
view: true,
|
|
23
|
+
};
|
|
24
|
+
if (permission["card"])
|
|
25
|
+
result.cards = User_1.User.Access.Permission.Level.get(permission["card"]) >= 2 || {
|
|
26
|
+
view: true,
|
|
27
|
+
};
|
|
28
|
+
if (permission["log"])
|
|
29
|
+
result.logs = User_1.User.Access.Permission.Level.get(permission["log"]) >= 2 || {
|
|
30
|
+
view: true,
|
|
31
|
+
};
|
|
32
|
+
if (permission["operation"])
|
|
33
|
+
result.operations = User_1.User.Access.Permission.Level.get(permission["operation"]) >= 2 || {
|
|
34
|
+
view: true,
|
|
35
|
+
};
|
|
36
|
+
if (permission["organization"])
|
|
37
|
+
result.organizations = User_1.User.Access.Permission.Level.get(permission["organization"]) >= 2 || {
|
|
38
|
+
view: true,
|
|
39
|
+
rules: { view: true, customer: { view: true }, product: { view: true }, fincrime: { view: true } },
|
|
40
|
+
accounts: { view: true },
|
|
41
|
+
};
|
|
42
|
+
if (permission["rule"])
|
|
43
|
+
result.rules = User_1.User.Access.Permission.Level.get(permission["rule"]) >= 2 || {
|
|
44
|
+
view: true,
|
|
45
|
+
customer: { view: true },
|
|
46
|
+
product: { view: true },
|
|
47
|
+
fincrime: { view: true },
|
|
48
|
+
};
|
|
49
|
+
if (permission["settlement"])
|
|
50
|
+
result.settlements = User_1.User.Access.Permission.Level.get(permission["settlement"]) >= 2 || { view: true };
|
|
51
|
+
if (permission["transaction"])
|
|
52
|
+
result.transactions = User_1.User.Access.Permission.Level.get(permission["transaction"]) >= 2 || { view: true };
|
|
53
|
+
if (permission["treasury"])
|
|
54
|
+
result.treasury = User_1.User.Access.Permission.Level.get(permission["treasury"]) >= 2 || { view: true };
|
|
55
|
+
return result;
|
|
56
|
+
}
|
|
57
|
+
Permissions.from = from;
|
|
11
58
|
})(Permissions || (exports.Permissions = Permissions = {}));
|
|
12
59
|
//# sourceMappingURL=Permissions.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"Permissions.js","sourceRoot":"","sources":["../../../Key/Permissions.ts"],"names":[],"mappings":";;;AAAA,8CAAgD;
|
|
1
|
+
{"version":3,"file":"Permissions.js","sourceRoot":"","sources":["../../../Key/Permissions.ts"],"names":[],"mappings":";;;AAAA,8CAAgD;AAChD,kCAA8B;AAG9B,IAAiB,WAAW,CAyF3B;AAzFD,WAAiB,WAAW;IAC3B,SAAgB,SAAS,CAAC,WAAwB;QACjD,OAAO,mBAAW,CAAC,IAAI,CAAC,WAAW,CAAC,SAAS,CAAC,WAAW,CAAC,CAAA;IAC3D,CAAC;IAFe,qBAAS,YAExB,CAAA;IAyCD,SAAgB,IAAI,CAAC,UAAkC;QACtD,MAAM,MAAM,GAAgB,EAAE,CAAA;QAC9B,IAAI,UAAU,CAAC,GAAG,CAAC;YAClB,MAAM,CAAC,GAAG,CAAC,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI;gBACvE,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;gBACnB,IAAI,EAAE,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE;gBACjF,GAAG,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACnB,CAAA;QACF,IAAI,UAAU,CAAC,SAAS,CAAC;YACxB,MAAM,CAAC,QAAQ,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,IAAI,CAAC,IAAI;gBACjF,IAAI,EAAE,IAAI;aACV,CAAA;QACF,IAAI,UAAU,CAAC,MAAM,CAAC;YACrB,MAAM,CAAC,KAAK,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI;gBAC3E,IAAI,EAAE,IAAI;aACV,CAAA;QACF,IAAI,UAAU,CAAC,KAAK,CAAC;YACpB,MAAM,CAAC,IAAI,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI;gBACzE,IAAI,EAAE,IAAI;aACV,CAAA;QACF,IAAI,UAAU,CAAC,WAAW,CAAC;YAC1B,MAAM,CAAC,UAAU,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,WAAW,CAAC,CAAC,IAAI,CAAC,IAAI;gBACrF,IAAI,EAAE,IAAI;aACV,CAAA;QACF,IAAI,UAAU,CAAC,cAAc,CAAC;YAC7B,MAAM,CAAC,aAAa,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC,IAAI,CAAC,IAAI;gBAC3F,IAAI,EAAE,IAAI;gBACV,KAAK,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,OAAO,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,QAAQ,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;gBAClG,QAAQ,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACxB,CAAA;QACF,IAAI,UAAU,CAAC,MAAM,CAAC;YACrB,MAAM,CAAC,KAAK,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,IAAI;gBAC3E,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;gBACxB,OAAO,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;gBACvB,QAAQ,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACxB,CAAA;QACF,IAAI,UAAU,CAAC,YAAY,CAAC;YAC3B,MAAM,CAAC,WAAW,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;QACvG,IAAI,UAAU,CAAC,aAAa,CAAC;YAC5B,MAAM,CAAC,YAAY,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;QACzG,IAAI,UAAU,CAAC,UAAU,CAAC;YACzB,MAAM,CAAC,QAAQ,GAAG,WAAI,CAAC,MAAM,CAAC,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,CAAA;QAClG,OAAO,MAAM,CAAA;IACd,CAAC;IA5Ce,gBAAI,OA4CnB,CAAA;AACF,CAAC,EAzFgB,WAAW,2BAAX,WAAW,QAyF3B"}
|
package/dist/cjs/Key/index.d.ts
CHANGED
|
@@ -1,5 +1,6 @@
|
|
|
1
1
|
import { userwidgets } from "@userwidgets/model";
|
|
2
2
|
import { Realm } from "../Realm";
|
|
3
|
+
import { User } from "../User";
|
|
3
4
|
import { Permissions as KeyPermissions } from "./Permissions";
|
|
4
5
|
import { Roles as KeyRoles } from "./Roles";
|
|
5
6
|
type Claims = {
|
|
@@ -8,11 +9,7 @@ type Claims = {
|
|
|
8
9
|
};
|
|
9
10
|
export type Key = userwidgets.User.Key<userwidgets.User.Key.Creatable.Claims | Claims, Key.Permissions>;
|
|
10
11
|
export declare namespace Key {
|
|
11
|
-
|
|
12
|
-
namespace Permissions {
|
|
13
|
-
type Realm = KeyPermissions.Realm;
|
|
14
|
-
type Organization = KeyPermissions.Organization;
|
|
15
|
-
}
|
|
12
|
+
export import Permissions = KeyPermissions;
|
|
16
13
|
type Roles = KeyRoles;
|
|
17
14
|
const Roles: typeof KeyRoles;
|
|
18
15
|
namespace Roles {
|
|
@@ -21,5 +18,6 @@ export declare namespace Key {
|
|
|
21
18
|
type Role = KeyRoles.Organization.Role;
|
|
22
19
|
}
|
|
23
20
|
}
|
|
21
|
+
function from(payload: User.JWT.Payload, token: string): Key;
|
|
24
22
|
}
|
|
25
23
|
export {};
|
package/dist/cjs/Key/index.js
CHANGED
|
@@ -1,9 +1,26 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.Key = void 0;
|
|
4
|
+
const isoly_1 = require("isoly");
|
|
5
|
+
const Permissions_1 = require("./Permissions");
|
|
4
6
|
const Roles_1 = require("./Roles");
|
|
5
7
|
var Key;
|
|
6
8
|
(function (Key) {
|
|
9
|
+
Key.Permissions = Permissions_1.Permissions;
|
|
7
10
|
Key.Roles = Roles_1.Roles;
|
|
11
|
+
function from(payload, token) {
|
|
12
|
+
return {
|
|
13
|
+
audience: payload.aud,
|
|
14
|
+
email: payload.sub,
|
|
15
|
+
realm: payload.realm,
|
|
16
|
+
permissions: { [payload.realm + "-*"]: Key.Permissions.from(payload.permission) },
|
|
17
|
+
expires: payload.exp ? isoly_1.isoly.DateTime.create(payload.exp) : isoly_1.isoly.DateTime.nextYear(isoly_1.isoly.DateTime.now(), 10),
|
|
18
|
+
issued: isoly_1.isoly.DateTime.create(payload.iat),
|
|
19
|
+
issuer: payload.iss,
|
|
20
|
+
name: { first: "", last: "" },
|
|
21
|
+
token,
|
|
22
|
+
};
|
|
23
|
+
}
|
|
24
|
+
Key.from = from;
|
|
8
25
|
})(Key || (exports.Key = Key = {}));
|
|
9
26
|
//# sourceMappingURL=index.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../Key/index.ts"],"names":[],"mappings":";;;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../Key/index.ts"],"names":[],"mappings":";;;AAAA,iCAA6B;AAI7B,+CAA6D;AAC7D,mCAA2C;AAQ3C,IAAiB,GAAG,CAuBnB;AAvBD,WAAiB,GAAG;IACL,eAAW,GAAG,yBAAc,CAAA;IAE7B,SAAK,GAAG,aAAQ,CAAA;IAO7B,SAAgB,IAAI,CAAC,OAAyB,EAAE,KAAa;QAC5D,OAAO;YACN,QAAQ,EAAE,OAAO,CAAC,GAAG;YACrB,KAAK,EAAE,OAAO,CAAC,GAAG;YAClB,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,WAAW,EAAE,EAAE,CAAC,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,EAAE,IAAA,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE;YAC7E,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,aAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,aAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,aAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,EAAE,EAAE,CAAC;YAC7G,MAAM,EAAE,aAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC;YAC1C,MAAM,EAAE,OAAO,CAAC,GAAG;YACnB,IAAI,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE;YAC7B,KAAK;SACL,CAAA;IACF,CAAC;IAZe,QAAI,OAYnB,CAAA;AACF,CAAC,EAvBgB,GAAG,mBAAH,GAAG,QAuBnB"}
|
|
@@ -7,14 +7,14 @@ export declare namespace Permission {
|
|
|
7
7
|
type Level = typeof Level.values[number];
|
|
8
8
|
namespace Level {
|
|
9
9
|
const values: readonly ["read", "write", "developer", "admin"];
|
|
10
|
-
const type: isly.Type<"
|
|
10
|
+
const type: isly.Type<"read" | "write" | "developer" | "admin">;
|
|
11
11
|
function get(level: Level | undefined): number;
|
|
12
12
|
const value: Record<Level, number>;
|
|
13
13
|
}
|
|
14
14
|
type Collection = typeof Collection.values[number];
|
|
15
15
|
namespace Collection {
|
|
16
|
-
const values: readonly ["account", "card", "log", "operation", "organization", "rule", "settlement", "transaction", "treasury", "user"
|
|
17
|
-
const type: isly.Type<"rule" | "card" | "transaction" | "account" | "settlement" | "organization" | "log" | "user" | "operation" | "
|
|
16
|
+
const values: readonly ["*", "account", "card", "log", "operation", "organization", "rule", "settlement", "transaction", "treasury", "user"];
|
|
17
|
+
const type: isly.Type<"rule" | "card" | "transaction" | "account" | "settlement" | "organization" | "log" | "user" | "operation" | "*" | "treasury">;
|
|
18
18
|
}
|
|
19
|
-
const type: isly.Type<Partial<Record<"rule" | "card" | "transaction" | "account" | "settlement" | "organization" | "log" | "user" | "operation" | "
|
|
19
|
+
const type: isly.Type<Partial<Record<"rule" | "card" | "transaction" | "account" | "settlement" | "organization" | "log" | "user" | "operation" | "*" | "treasury", "read" | "write" | "developer" | "admin">>>;
|
|
20
20
|
}
|
|
@@ -28,6 +28,7 @@ var Permission;
|
|
|
28
28
|
let Collection;
|
|
29
29
|
(function (Collection) {
|
|
30
30
|
Collection.values = [
|
|
31
|
+
"*",
|
|
31
32
|
"account",
|
|
32
33
|
"card",
|
|
33
34
|
"log",
|
|
@@ -38,7 +39,6 @@ var Permission;
|
|
|
38
39
|
"transaction",
|
|
39
40
|
"treasury",
|
|
40
41
|
"user",
|
|
41
|
-
"*",
|
|
42
42
|
];
|
|
43
43
|
Collection.type = isly_1.isly.string(Collection.values);
|
|
44
44
|
})(Collection = Permission.Collection || (Permission.Collection = {}));
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"Permission.js","sourceRoot":"","sources":["../../../../User/Access/Permission.ts"],"names":[],"mappings":";;;AAAA,+BAA2B;AAC3B,qCAAiC;AAGjC,IAAiB,UAAU,CA0C1B;AA1CD,WAAiB,UAAU;IAG1B,SAAgB,KAAK,CAAC,UAAsB,EAAE,SAAqB;QAClE,OAAO,iBAAO,CAAC,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,KAAK,CAC9C,CAAC,CAAC,UAAU,EAAE,KAAK,CAAC,EAAE,EAAE,CACvB,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC;YAC1E,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CACpE,CAAA;IACF,CAAC;IANe,gBAAK,QAMpB,CAAA;IAED,IAAiB,KAAK,CAYrB;IAZD,WAAiB,KAAK;QACR,YAAM,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,CAAU,CAAA;QACzD,UAAI,GAAG,WAAI,CAAC,MAAM,CAAC,MAAA,MAAM,CAAC,CAAA;QACvC,SAAgB,GAAG,CAAC,KAAwB;YAC3C,OAAO,KAAK,CAAC,CAAC,CAAC,MAAA,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QAChC,CAAC;QAFe,SAAG,MAElB,CAAA;QACY,WAAK,GAA0B;YAC3C,IAAI,EAAE,CAAC;YACP,KAAK,EAAE,CAAC;YACR,SAAS,EAAE,CAAC;YACZ,KAAK,EAAE,CAAC;SACC,CAAA;IACX,CAAC,EAZgB,KAAK,GAAL,gBAAK,KAAL,gBAAK,QAYrB;IAED,IAAiB,UAAU,CAe1B;IAfD,WAAiB,UAAU;QACb,iBAAM,GAAG;YACrB,SAAS;YACT,MAAM;YACN,KAAK;YACL,WAAW;YACX,cAAc;YACd,MAAM;YACN,YAAY;YACZ,aAAa;YACb,UAAU;YACV,MAAM;
|
|
1
|
+
{"version":3,"file":"Permission.js","sourceRoot":"","sources":["../../../../User/Access/Permission.ts"],"names":[],"mappings":";;;AAAA,+BAA2B;AAC3B,qCAAiC;AAGjC,IAAiB,UAAU,CA0C1B;AA1CD,WAAiB,UAAU;IAG1B,SAAgB,KAAK,CAAC,UAAsB,EAAE,SAAqB;QAClE,OAAO,iBAAO,CAAC,MAAM,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,KAAK,CAC9C,CAAC,CAAC,UAAU,EAAE,KAAK,CAAC,EAAE,EAAE,CACvB,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC;YAC1E,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,IAAI,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,CAAC,CACpE,CAAA;IACF,CAAC;IANe,gBAAK,QAMpB,CAAA;IAED,IAAiB,KAAK,CAYrB;IAZD,WAAiB,KAAK;QACR,YAAM,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,OAAO,CAAU,CAAA;QACzD,UAAI,GAAG,WAAI,CAAC,MAAM,CAAC,MAAA,MAAM,CAAC,CAAA;QACvC,SAAgB,GAAG,CAAC,KAAwB;YAC3C,OAAO,KAAK,CAAC,CAAC,CAAC,MAAA,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAA;QAChC,CAAC;QAFe,SAAG,MAElB,CAAA;QACY,WAAK,GAA0B;YAC3C,IAAI,EAAE,CAAC;YACP,KAAK,EAAE,CAAC;YACR,SAAS,EAAE,CAAC;YACZ,KAAK,EAAE,CAAC;SACC,CAAA;IACX,CAAC,EAZgB,KAAK,GAAL,gBAAK,KAAL,gBAAK,QAYrB;IAED,IAAiB,UAAU,CAe1B;IAfD,WAAiB,UAAU;QACb,iBAAM,GAAG;YACrB,GAAG;YACH,SAAS;YACT,MAAM;YACN,KAAK;YACL,WAAW;YACX,cAAc;YACd,MAAM;YACN,YAAY;YACZ,aAAa;YACb,UAAU;YACV,MAAM;SACG,CAAA;QACG,eAAI,GAAG,WAAI,CAAC,MAAM,CAAC,WAAA,MAAM,CAAC,CAAA;IACxC,CAAC,EAfgB,UAAU,GAAV,qBAAU,KAAV,qBAAU,QAe1B;IACY,eAAI,GAAG,WAAI,CAAC,MAAM,CAAa,UAAU,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,CAAC,CAAA;AACzE,CAAC,EA1CgB,UAAU,0BAAV,UAAU,QA0C1B"}
|
|
@@ -4,9 +4,8 @@ import { Access } from "./Access";
|
|
|
4
4
|
import { JWT } from "./JWT";
|
|
5
5
|
export declare class Identity {
|
|
6
6
|
readonly payload: JWT.Payload;
|
|
7
|
-
private readonly jwt;
|
|
8
7
|
get realm(): Realm;
|
|
9
|
-
constructor(payload: JWT.Payload
|
|
8
|
+
constructor(payload: JWT.Payload);
|
|
10
9
|
authenticate(constraint: Access.Permission | Access.Permission[]): Identity | gracely.Error;
|
|
11
10
|
static open(authorization: string | undefined, options: {
|
|
12
11
|
whitelist?: JWT.Whitelist;
|
|
@@ -6,13 +6,11 @@ const Access_1 = require("./Access");
|
|
|
6
6
|
const JWT_1 = require("./JWT");
|
|
7
7
|
class Identity {
|
|
8
8
|
payload;
|
|
9
|
-
jwt;
|
|
10
9
|
get realm() {
|
|
11
10
|
return this.payload.realm;
|
|
12
11
|
}
|
|
13
|
-
constructor(payload
|
|
12
|
+
constructor(payload) {
|
|
14
13
|
this.payload = payload;
|
|
15
|
-
this.jwt = jwt;
|
|
16
14
|
}
|
|
17
15
|
authenticate(constraint) {
|
|
18
16
|
let allowed;
|
|
@@ -25,7 +23,7 @@ class Identity {
|
|
|
25
23
|
static async open(authorization, options) {
|
|
26
24
|
const jwt = authorization?.startsWith("Bearer ") ? authorization.replace("Bearer ", "") : undefined;
|
|
27
25
|
const payload = jwt ? await JWT_1.JWT.open({ public: options.key }, options.whitelist).verify(jwt) : undefined;
|
|
28
|
-
return jwt && payload ? new Identity(payload
|
|
26
|
+
return jwt && payload ? new Identity(payload) : gracely_1.gracely.client.unauthorized();
|
|
29
27
|
}
|
|
30
28
|
}
|
|
31
29
|
exports.Identity = Identity;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"Identity.js","sourceRoot":"","sources":["../../../User/Identity.ts"],"names":[],"mappings":";;;AAAA,qCAAiC;AAGjC,qCAAiC;AACjC,+BAA2B;AAE3B,MAAa,QAAQ;IAIQ;
|
|
1
|
+
{"version":3,"file":"Identity.js","sourceRoot":"","sources":["../../../User/Identity.ts"],"names":[],"mappings":";;;AAAA,qCAAiC;AAGjC,qCAAiC;AACjC,+BAA2B;AAE3B,MAAa,QAAQ;IAIQ;IAH5B,IAAI,KAAK;QACR,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,CAAA;IAC1B,CAAC;IACD,YAA4B,OAAoB;QAApB,YAAO,GAAP,OAAO,CAAa;IAAG,CAAC;IAEpD,YAAY,CAAC,UAAmD;QAC/D,IAAI,OAAgB,CAAA;QACpB,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC;YAC5B,OAAO,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAA;;YAEpD,OAAO,GAAG,eAAM,CAAC,UAAU,CAAC,KAAK,CAAC,UAAU,EAAE,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAA;QACvE,OAAO,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,iBAAO,CAAC,MAAM,CAAC,SAAS,EAAE,CAAA;IACnD,CAAC;IAGD,MAAM,CAAC,KAAK,CAAC,IAAI,CAChB,aAAiC,EACjC,OAAoD;QAEpD,MAAM,GAAG,GAAG,aAAa,EAAE,UAAU,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QACnG,MAAM,OAAO,GAAG,GAAG,CAAC,CAAC,CAAC,MAAM,SAAG,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,OAAO,CAAC,GAAG,EAAE,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QACxG,OAAO,GAAG,IAAI,OAAO,CAAC,CAAC,CAAC,IAAI,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,iBAAO,CAAC,MAAM,CAAC,YAAY,EAAE,CAAA;IAC9E,CAAC;CACD;AAxBD,4BAwBC"}
|
|
@@ -18,6 +18,7 @@ export declare class JWT {
|
|
|
18
18
|
}
|
|
19
19
|
export declare namespace JWT {
|
|
20
20
|
export import Signer = JWTSigner;
|
|
21
|
+
const whitelist: Partial<Record<"test" | "uk" | "eea", Payload.LongTerm[]>>;
|
|
21
22
|
type Whitelist = Partial<Record<Realm, Payload.LongTerm[]>>;
|
|
22
23
|
function unpack(token: string): Promise<JWT.Payload | undefined>;
|
|
23
24
|
export import Payload = JWTPayload;
|
|
@@ -4,6 +4,7 @@ exports.JWT = void 0;
|
|
|
4
4
|
const authly_1 = require("authly");
|
|
5
5
|
const Payload_1 = require("./Payload");
|
|
6
6
|
const Signer_1 = require("./Signer");
|
|
7
|
+
const whitelist_1 = require("./whitelist");
|
|
7
8
|
class JWT {
|
|
8
9
|
key;
|
|
9
10
|
whitelist;
|
|
@@ -41,12 +42,13 @@ class JWT {
|
|
|
41
42
|
return unpacked;
|
|
42
43
|
}
|
|
43
44
|
static open(key, whitelist) {
|
|
44
|
-
return new this({ private: key?.private, public: key?.public ?? JWT.key }, whitelist);
|
|
45
|
+
return new this({ private: key?.private, public: key?.public ?? JWT.key }, whitelist ?? JWT.whitelist);
|
|
45
46
|
}
|
|
46
47
|
}
|
|
47
48
|
exports.JWT = JWT;
|
|
48
49
|
(function (JWT) {
|
|
49
50
|
JWT.Signer = Signer_1.Signer;
|
|
51
|
+
JWT.whitelist = whitelist_1.whitelist;
|
|
50
52
|
async function unpack(token) {
|
|
51
53
|
const algorithm = authly_1.authly.Algorithm.RS256(undefined);
|
|
52
54
|
const verifier = algorithm ? authly_1.authly.Verifier.create(algorithm) : undefined;
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../User/JWT/index.ts"],"names":[],"mappings":";;;AAAA,mCAA+B;AAE/B,uCAAiD;AACjD,qCAA8C;
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../User/JWT/index.ts"],"names":[],"mappings":";;;AAAA,mCAA+B;AAE/B,uCAAiD;AACjD,qCAA8C;AAC9C,2CAAuD;AAEvD,MAAa,GAAG;IAiBG;IACR;IAjBV,SAAS,CAA+B;IACxC,IAAY,QAAQ;QACnB,IAAI,CAAC,IAAI,CAAC,SAAS,IAAI,IAAI,CAAC,GAAG,EAAE,MAAM,EAAE,CAAC;YACzC,MAAM,SAAS,GAAG,eAAM,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAA;YACzD,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC,CAAC,CAAC,eAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QAC3E,CAAC;QACD,OAAO,IAAI,CAAC,SAAS,CAAA;IACtB,CAAC;IACD,OAAO,CAAY;IACnB,IAAY,MAAM;QACjB,OAAO,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,KAAK,eAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;IACnF,CAAC;IACD,IAAI,IAAI;QACP,OAAO,IAAI,CAAC,MAAM,EAAE,IAAI,CAAA;IACzB,CAAC;IACD,YACkB,GAA2C,EACnD,SAAyB;QADjB,QAAG,GAAH,GAAG,CAAwC;QACnD,cAAS,GAAT,SAAS,CAAgB;IAChC,CAAC;IAEJ,KAAK,CAAC,MAAM,CAAC,KAAa;QACzB,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,QAAQ,EAAE,MAAM,CAAC,KAAK,EAAE,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,GAAG,CAAC,CAAA;QAClF,OAAO,QAAQ,EAAE,KAAK,CAAA;QACtB,OAAO,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC;YACnC,QAAQ,EAAE,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,aAAa,CAAC,GAAG;YAC9C,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,QAAQ,CAAC,EAAE,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,QAAQ,CAAC,EAAE,CAAC,CAAC,CAAC;YACpG,CAAC,CAAC,QAAQ;YACV,CAAC,CAAC,SAAS,CAAA;IACb,CAAC;IACD,KAAK,CAAC,MAAM,CAAC,KAAa;QACzB,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,CAAA;QACxC,OAAO,QAAQ,EAAE,KAAK,CAAA;QACtB,OAAO,QAAQ,CAAA;IAChB,CAAC;IAED,MAAM,CAAC,IAAI,CAAC,GAA2C,EAAE,SAAyB;QACjF,OAAO,IAAI,IAAI,CAAC,EAAE,OAAO,EAAE,GAAG,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,IAAI,GAAG,CAAC,GAAG,EAAE,EAAE,SAAS,IAAI,GAAG,CAAC,SAAS,CAAC,CAAA;IACvG,CAAC;CACD;AAvCD,kBAuCC;AACD,WAAiB,GAAG;IACL,UAAM,GAAG,eAAS,CAAA;IACnB,aAAS,GAAG,qBAAY,CAAA;IAE9B,KAAK,UAAU,MAAM,CAAC,KAAa;QACzC,MAAM,SAAS,GAAG,eAAM,CAAC,SAAS,CAAC,KAAK,CAAC,SAAS,CAAC,CAAA;QACnD,MAAM,QAAQ,GAAG,SAAS,CAAC,CAAC,CAAC,eAAM,CAAC,QAAQ,CAAC,MAAM,CAAc,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAA;QACvF,OAAO,QAAQ,EAAE,MAAM,CAAC,KAAK,CAAC,CAAA;IAC/B,CAAC;IAJqB,UAAM,SAI3B,CAAA;IACa,WAAO,GAAG,iBAAU,CAAA;IACrB,OAAG,GACf,kuBAAkuB,CAAA;AACpuB,CAAC,EAZgB,GAAG,mBAAH,GAAG,QAYnB"}
|
|
@@ -0,0 +1,17 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.whitelist = void 0;
|
|
4
|
+
exports.whitelist = {
|
|
5
|
+
test: [
|
|
6
|
+
{
|
|
7
|
+
aud: "https://banking.pax2pay.app",
|
|
8
|
+
iat: 1751283567,
|
|
9
|
+
id: "UUwLn9rhcf8AoRuG",
|
|
10
|
+
iss: "pax2pay",
|
|
11
|
+
permission: {},
|
|
12
|
+
realm: "test",
|
|
13
|
+
sub: "Test",
|
|
14
|
+
},
|
|
15
|
+
],
|
|
16
|
+
};
|
|
17
|
+
//# sourceMappingURL=whitelist.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"whitelist.js","sourceRoot":"","sources":["../../../../User/JWT/whitelist.ts"],"names":[],"mappings":";;;AAEa,QAAA,SAAS,GAAkB;IACvC,IAAI,EAAE;QACL;YACC,GAAG,EAAE,6BAA6B;YAClC,GAAG,EAAE,UAAU;YAEf,EAAE,EAAE,kBAAkB;YACtB,GAAG,EAAE,SAAS;YACd,UAAU,EAAE,EAAE;YACd,KAAK,EAAE,MAAM;YACb,GAAG,EAAE,MAAM;SACX;KACD;CACD,CAAA"}
|
|
@@ -0,0 +1,11 @@
|
|
|
1
|
+
import { gracely } from "gracely";
|
|
2
|
+
import { http } from "cloudly-http";
|
|
3
|
+
import { User } from "../../User";
|
|
4
|
+
export declare class Invites {
|
|
5
|
+
private readonly client;
|
|
6
|
+
constructor(client: http.Client);
|
|
7
|
+
create(creatable: User.Invite.Creatable): Promise<User | gracely.Error>;
|
|
8
|
+
fetch(identifier: string): Promise<User | gracely.Error>;
|
|
9
|
+
list(): Promise<User[] | gracely.Error>;
|
|
10
|
+
remove(identifier: string): Promise<User | gracely.Error>;
|
|
11
|
+
}
|
|
@@ -0,0 +1,19 @@
|
|
|
1
|
+
export class Invites {
|
|
2
|
+
client;
|
|
3
|
+
constructor(client) {
|
|
4
|
+
this.client = client;
|
|
5
|
+
}
|
|
6
|
+
async create(creatable) {
|
|
7
|
+
return await this.client.post("/user/invite", creatable);
|
|
8
|
+
}
|
|
9
|
+
async fetch(identifier) {
|
|
10
|
+
return await this.client.get(`/user/invite/${identifier}`);
|
|
11
|
+
}
|
|
12
|
+
async list() {
|
|
13
|
+
return await this.client.get("/user/invite");
|
|
14
|
+
}
|
|
15
|
+
async remove(identifier) {
|
|
16
|
+
return await this.client.delete(`/user/invite/:${identifier}`);
|
|
17
|
+
}
|
|
18
|
+
}
|
|
19
|
+
//# sourceMappingURL=Invites.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"Invites.js","sourceRoot":"","sources":["../../../../Client/Users/Invites.ts"],"names":[],"mappings":"AAIA,MAAM,OAAO,OAAO;IACU;IAA7B,YAA6B,MAAmB;QAAnB,WAAM,GAAN,MAAM,CAAa;IAAG,CAAC;IAEpD,KAAK,CAAC,MAAM,CAAC,SAAgC;QAC5C,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAO,cAAc,EAAE,SAAS,CAAC,CAAA;IAC/D,CAAC;IACD,KAAK,CAAC,KAAK,CAAC,UAAkB;QAC7B,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAO,gBAAgB,UAAU,EAAE,CAAC,CAAA;IACjE,CAAC;IACD,KAAK,CAAC,IAAI;QACT,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAS,cAAc,CAAC,CAAA;IACrD,CAAC;IACD,KAAK,CAAC,MAAM,CAAC,UAAkB;QAC9B,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAO,iBAAiB,UAAU,EAAE,CAAC,CAAA;IACrE,CAAC;CACD"}
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
import { gracely } from "gracely";
|
|
2
|
+
import { http } from "cloudly-http";
|
|
3
|
+
import { User } from "../../User";
|
|
4
|
+
import { Invites } from "./Invites";
|
|
5
|
+
export declare class Users {
|
|
6
|
+
#private;
|
|
7
|
+
private readonly client;
|
|
8
|
+
get invites(): Invites;
|
|
9
|
+
constructor(client: http.Client);
|
|
10
|
+
create(user: User.Creatable): Promise<User | gracely.Error>;
|
|
11
|
+
fetch(email: string): Promise<User | gracely.Error>;
|
|
12
|
+
list(): Promise<User[] | gracely.Error>;
|
|
13
|
+
remove(email: string): Promise<User | gracely.Error>;
|
|
14
|
+
updatePassword(email: string, creatable: User.Password.Creatable): Promise<User | gracely.Error>;
|
|
15
|
+
updateAccess(email: string, access: User.Access): Promise<User | gracely.Error>;
|
|
16
|
+
}
|
|
@@ -0,0 +1,30 @@
|
|
|
1
|
+
import { Invites } from "./Invites";
|
|
2
|
+
export class Users {
|
|
3
|
+
client;
|
|
4
|
+
#invites;
|
|
5
|
+
get invites() {
|
|
6
|
+
return (this.#invites ??= new Invites(this.client));
|
|
7
|
+
}
|
|
8
|
+
constructor(client) {
|
|
9
|
+
this.client = client;
|
|
10
|
+
}
|
|
11
|
+
async create(user) {
|
|
12
|
+
return await this.client.post("/user", user);
|
|
13
|
+
}
|
|
14
|
+
async fetch(email) {
|
|
15
|
+
return await this.client.get(`/user/${email}`);
|
|
16
|
+
}
|
|
17
|
+
async list() {
|
|
18
|
+
return await this.client.get("/user");
|
|
19
|
+
}
|
|
20
|
+
async remove(email) {
|
|
21
|
+
return await this.client.delete(`/user/${email}`);
|
|
22
|
+
}
|
|
23
|
+
async updatePassword(email, creatable) {
|
|
24
|
+
return await this.client.put(`/user/${email}/password`, creatable);
|
|
25
|
+
}
|
|
26
|
+
async updateAccess(email, access) {
|
|
27
|
+
return await this.client.put(`/user/${email}/access`, access);
|
|
28
|
+
}
|
|
29
|
+
}
|
|
30
|
+
//# sourceMappingURL=index.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../Client/Users/index.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AAEnC,MAAM,OAAO,KAAK;IAKY;IAJ7B,QAAQ,CAAU;IAClB,IAAI,OAAO;QACV,OAAO,CAAC,IAAI,CAAC,QAAQ,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAA;IACpD,CAAC;IACD,YAA6B,MAAmB;QAAnB,WAAM,GAAN,MAAM,CAAa;IAAG,CAAC;IAEpD,KAAK,CAAC,MAAM,CAAC,IAAoB;QAChC,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,IAAI,CAAO,OAAO,EAAE,IAAI,CAAC,CAAA;IACnD,CAAC;IACD,KAAK,CAAC,KAAK,CAAC,KAAa;QACxB,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAO,SAAS,KAAK,EAAE,CAAC,CAAA;IACrD,CAAC;IACD,KAAK,CAAC,IAAI;QACT,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAS,OAAO,CAAC,CAAA;IAC9C,CAAC;IACD,KAAK,CAAC,MAAM,CAAC,KAAa;QACzB,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,MAAM,CAAO,SAAS,KAAK,EAAE,CAAC,CAAA;IACxD,CAAC;IACD,KAAK,CAAC,cAAc,CAAC,KAAa,EAAE,SAAkC;QACrE,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAO,SAAS,KAAK,WAAW,EAAE,SAAS,CAAC,CAAA;IACzE,CAAC;IACD,KAAK,CAAC,YAAY,CAAC,KAAa,EAAE,MAAmB;QACpD,OAAO,MAAM,IAAI,CAAC,MAAM,CAAC,GAAG,CAAO,SAAS,KAAK,SAAS,EAAE,MAAM,CAAC,CAAA;IACpE,CAAC;CACD"}
|
|
@@ -14,26 +14,28 @@ import { Rules } from "./Rules";
|
|
|
14
14
|
import { Settlements } from "./Settlements";
|
|
15
15
|
import { Transactions as ClientTransactions } from "./Transactions";
|
|
16
16
|
import { Treasury } from "./Treasury";
|
|
17
|
+
import { Users } from "./Users";
|
|
17
18
|
import { Version } from "./Version";
|
|
18
19
|
export declare class Client {
|
|
19
20
|
private readonly client;
|
|
20
21
|
realm?: string;
|
|
21
22
|
organization?: string;
|
|
22
23
|
readonly accounts: Accounts;
|
|
24
|
+
readonly audits: Audit;
|
|
23
25
|
readonly cards: Cards;
|
|
24
|
-
readonly operations: Operations;
|
|
25
26
|
readonly exchanges: Exchanges;
|
|
27
|
+
readonly flags: Labels;
|
|
28
|
+
readonly groups: Labels;
|
|
29
|
+
readonly logs: Logs;
|
|
30
|
+
readonly operations: Operations;
|
|
26
31
|
readonly organizations: Organizations;
|
|
32
|
+
readonly processors: Processor;
|
|
27
33
|
readonly reports: Reports;
|
|
28
|
-
readonly audits: Audit;
|
|
29
|
-
readonly logs: Logs;
|
|
30
34
|
readonly rules: Rules;
|
|
31
35
|
readonly settlements: Settlements;
|
|
32
36
|
readonly transactions: ClientTransactions;
|
|
33
37
|
readonly treasury: Treasury;
|
|
34
|
-
readonly
|
|
35
|
-
readonly groups: Labels;
|
|
36
|
-
readonly processors: Processor;
|
|
38
|
+
readonly users: Users;
|
|
37
39
|
readonly version: Version;
|
|
38
40
|
set key(value: string | undefined);
|
|
39
41
|
get key(): string | undefined;
|
package/dist/mjs/Client/index.js
CHANGED
|
@@ -14,26 +14,28 @@ import { Rules } from "./Rules";
|
|
|
14
14
|
import { Settlements } from "./Settlements";
|
|
15
15
|
import { Transactions as ClientTransactions } from "./Transactions";
|
|
16
16
|
import { Treasury } from "./Treasury";
|
|
17
|
+
import { Users } from "./Users";
|
|
17
18
|
import { Version } from "./Version";
|
|
18
19
|
export class Client {
|
|
19
20
|
client;
|
|
20
21
|
realm;
|
|
21
22
|
organization;
|
|
22
23
|
accounts;
|
|
24
|
+
audits;
|
|
23
25
|
cards;
|
|
24
|
-
operations;
|
|
25
26
|
exchanges;
|
|
27
|
+
flags;
|
|
28
|
+
groups;
|
|
29
|
+
logs;
|
|
30
|
+
operations;
|
|
26
31
|
organizations;
|
|
32
|
+
processors;
|
|
27
33
|
reports;
|
|
28
|
-
audits;
|
|
29
|
-
logs;
|
|
30
34
|
rules;
|
|
31
35
|
settlements;
|
|
32
36
|
transactions;
|
|
33
37
|
treasury;
|
|
34
|
-
|
|
35
|
-
groups;
|
|
36
|
-
processors;
|
|
38
|
+
users;
|
|
37
39
|
version;
|
|
38
40
|
set key(value) {
|
|
39
41
|
this.client.key = value;
|
|
@@ -51,20 +53,21 @@ export class Client {
|
|
|
51
53
|
this.client = client;
|
|
52
54
|
this.client.onUnauthorized = async () => this.onUnauthorized != undefined && (await this.onUnauthorized(this));
|
|
53
55
|
this.accounts = new Accounts(this.client);
|
|
56
|
+
this.audits = new Audit(this.client);
|
|
54
57
|
this.cards = new Cards(this.client);
|
|
55
|
-
this.operations = new Operations(this.client);
|
|
56
58
|
this.exchanges = new Exchanges(this.client);
|
|
59
|
+
this.flags = new Labels(this.client, "flag");
|
|
60
|
+
this.groups = new Labels(this.client, "group");
|
|
61
|
+
this.logs = new Logs(this.client);
|
|
62
|
+
this.operations = new Operations(this.client);
|
|
57
63
|
this.organizations = new Organizations(this.client);
|
|
64
|
+
this.processors = new Processor(this.client);
|
|
58
65
|
this.reports = new Reports(this.client);
|
|
59
|
-
this.audits = new Audit(this.client);
|
|
60
|
-
this.logs = new Logs(this.client);
|
|
61
66
|
this.rules = new Rules(this.client);
|
|
62
67
|
this.settlements = new Settlements(this.client);
|
|
63
68
|
this.transactions = new ClientTransactions(this.client);
|
|
64
69
|
this.treasury = new Treasury(this.client);
|
|
65
|
-
this.
|
|
66
|
-
this.groups = new Labels(this.client, "group");
|
|
67
|
-
this.processors = new Processor(this.client);
|
|
70
|
+
this.users = new Users(this.client);
|
|
68
71
|
this.version = new Version(this.client);
|
|
69
72
|
}
|
|
70
73
|
userwidgets = (server, application) => new userwidgets.ClientCollection(new http.Client(server), { application });
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../Client/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAA;AAChD,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAA;AACnC,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAA;AACrC,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAA;AAC7B,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AACzC,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AAC/C,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AACnC,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAA;AAC3C,OAAO,EAAE,YAAY,IAAI,kBAAkB,EAAE,MAAM,gBAAgB,CAAA;AACnE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAA;AACrC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AAEnC,MAAM,OAAO,MAAM;IA
|
|
1
|
+
{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../Client/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAA;AAChD,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAA;AACnC,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAA;AACrC,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAA;AAC7B,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAA;AACzC,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAA;AAC/C,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAA;AACvC,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AACnC,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,WAAW,EAAE,MAAM,eAAe,CAAA;AAC3C,OAAO,EAAE,YAAY,IAAI,kBAAkB,EAAE,MAAM,gBAAgB,CAAA;AACnE,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAA;AACrC,OAAO,EAAE,KAAK,EAAE,MAAM,SAAS,CAAA;AAC/B,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAA;AAEnC,MAAM,OAAO,MAAM;IAgCmB;IA/BrC,KAAK,CAAS;IACd,YAAY,CAAS;IACZ,QAAQ,CAAU;IAClB,MAAM,CAAO;IACb,KAAK,CAAO;IACZ,SAAS,CAAW;IACpB,KAAK,CAAQ;IACb,MAAM,CAAQ;IACd,IAAI,CAAM;IACV,UAAU,CAAY;IACtB,aAAa,CAAe;IAC5B,UAAU,CAAW;IACrB,OAAO,CAAS;IAChB,KAAK,CAAO;IACZ,WAAW,CAAa;IACxB,YAAY,CAAoB;IAChC,QAAQ,CAAU;IAClB,KAAK,CAAO;IACZ,OAAO,CAAS;IACzB,IAAI,GAAG,CAAC,KAAyB;QAChC,IAAI,CAAC,MAAM,CAAC,GAAG,GAAG,KAAK,CAAA;IACxB,CAAC;IACD,IAAI,GAAG;QACN,OAAO,IAAI,CAAC,MAAM,CAAC,GAAG,CAAA;IACvB,CAAC;IACD,IAAI,OAAO,CAAC,KAAyF;QACpG,IAAI,CAAC,MAAM,CAAC,OAAO,GAAG,KAAK,CAAA;IAC5B,CAAC;IACD,IAAI,OAAO;QACV,OAAO,IAAI,CAAC,MAAM,CAAC,OAAO,CAAA;IAC3B,CAAC;IACD,YAAqC,MAAkC;QAAlC,WAAM,GAAN,MAAM,CAA4B;QACtE,IAAI,CAAC,MAAM,CAAC,cAAc,GAAG,KAAK,IAAI,EAAE,CAAC,IAAI,CAAC,cAAc,IAAI,SAAS,IAAI,CAAC,MAAM,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,CAAA;QAC9G,IAAI,CAAC,QAAQ,GAAG,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACzC,IAAI,CAAC,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACpC,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACnC,IAAI,CAAC,SAAS,GAAG,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAC3C,IAAI,CAAC,KAAK,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,MAAM,CAAC,CAAA;QAC5C,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,MAAM,EAAE,OAAO,CAAC,CAAA;QAC9C,IAAI,CAAC,IAAI,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACjC,IAAI,CAAC,UAAU,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAC7C,IAAI,CAAC,aAAa,GAAG,IAAI,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACnD,IAAI,CAAC,UAAU,GAAG,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAC5C,IAAI,CAAC,OAAO,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACvC,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACnC,IAAI,CAAC,WAAW,GAAG,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QAC/C,IAAI,CAAC,YAAY,GAAG,IAAI,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACvD,IAAI,CAAC,QAAQ,GAAG,IAAI,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACzC,IAAI,CAAC,KAAK,GAAG,IAAI,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;QACnC,IAAI,CAAC,OAAO,GAAG,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IACxC,CAAC;IACQ,WAAW,GAAG,CAAC,MAAc,EAAE,WAAmB,EAAE,EAAE,CAC9D,IAAI,WAAW,CAAC,gBAAgB,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,EAAE,WAAW,EAAE,CAAC,CAAA;IAC3E,cAAc,CAAuC;IAErD,MAAM,CAAC,MAAM,CAAC,MAAc,EAAE,GAAY;QACzC,MAAM,UAAU,GAA+B,IAAI,IAAI,CAAC,MAAM,CAAgB,MAAM,EAAE,GAAG,EAAE;YAC1F,YAAY,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC;gBACzB,GAAG,OAAO,CAAC,MAAM;gBACjB,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY;oBACrD,CAAC,CAAC,EAAE,YAAY,EAAE,OAAO,CAAC,MAAM,CAAC,YAAY,IAAI,MAAM,CAAC,YAAY,EAAE;oBACtE,CAAC,CAAC,EAAE,CAAC;aACN,CAAC;YACF,WAAW,EAAE,KAAK,EAAC,QAAQ,EAAC,EAAE;gBAC7B,IAAI,MAAM,GAAG,QAAQ,CAAA;gBACrB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,CAAA;gBAChC,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC;oBACtB,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAC5B,MAAM,CAAC,cAAc,CAAC,IAAI,EAAE,QAAQ,EAAE;wBACrC,KAAK,EAAE,QAAQ,CAAC,MAAM,CAAC,MAAM,IAAI,QAAQ,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;qBACtE,CAAC,CACF,CAAA;gBACF,OAAO,MAAM,CAAA;YACd,CAAC;SACD,CAAC,CAAA;QACF,MAAM,MAAM,GAAW,IAAI,MAAM,CAAC,UAAU,CAAC,CAAA;QAC7C,OAAO,MAAM,CAAA;IACd,CAAC;CACD;AACD,WAAiB,MAAM;IACR,mBAAY,GAAG,kBAAkB,CAAA;AAChD,CAAC,EAFgB,MAAM,KAAN,MAAM,QAEtB"}
|
package/dist/mjs/Identity.d.ts
CHANGED
|
@@ -1,5 +1,4 @@
|
|
|
1
1
|
import { gracely } from "gracely";
|
|
2
|
-
import { userwidgets } from "@userwidgets/model";
|
|
3
2
|
import { slackly } from "slackly";
|
|
4
3
|
import { Key } from "./Key";
|
|
5
4
|
import { Realm } from "./Realm";
|
|
@@ -12,13 +11,13 @@ export declare class Identity<T extends Identity.Require = never> {
|
|
|
12
11
|
constructor(key: Key, realm: T["realm"] extends true ? Realm : Realm | undefined, organization: T["organization"] extends true ? string : string | undefined);
|
|
13
12
|
check(constraint: Key.Permissions | Key.Permissions[], realm?: Realm, organization?: string): boolean;
|
|
14
13
|
collectionCheck(collection: string): boolean;
|
|
15
|
-
static authenticate<T extends Identity.Require = Record<string, never>>(header: Identity.Header, constraint: Key.Permissions | Key.Permissions[], requires?: T,
|
|
14
|
+
static authenticate<T extends Identity.Require = Record<string, never>>(header: Identity.Header, constraint: Key.Permissions | Key.Permissions[], requires?: T, key?: string, output?: "undefined", notify?: Identity.Notify): Promise<Identity<T> | undefined>;
|
|
16
15
|
static authenticate<T extends Identity.Require = Record<string, never>>(header: {
|
|
17
16
|
authorization?: string | undefined;
|
|
18
17
|
realm?: Realm;
|
|
19
18
|
organization?: string;
|
|
20
|
-
}, constraint: Key.Permissions | Key.Permissions[], requires?: T,
|
|
21
|
-
static verify(authorization: string | undefined,
|
|
19
|
+
}, constraint: Key.Permissions | Key.Permissions[], requires?: T, key?: string, output?: "error", notify?: Identity.Notify): Promise<Identity<T> | gracely.Error>;
|
|
20
|
+
static verify(authorization: string | undefined, key: string): Promise<Key | undefined>;
|
|
22
21
|
static getRealms(permissions: Key.Permissions): Realm[];
|
|
23
22
|
}
|
|
24
23
|
export declare namespace Identity {
|