@prosopo/user-access-policy 3.3.2 → 3.5.19

package/CHANGELOG.md

@@ -1,5 +1,271 @@
 # @prosopo/user-access-policy
 
+## 3.5.19
+### Patch Changes
+
+  - @prosopo/api@3.1.24
+  - @prosopo/api-route@2.6.28
+  - @prosopo/common@3.1.20
+  - @prosopo/redis-client@1.0.5
+  - @prosopo/types@3.5.3
+  - @prosopo/util@3.1.5
+
+## 3.5.18
+### Patch Changes
+
+- 5659b24: Release 3.4.4
+- Updated dependencies [f912439]
+- Updated dependencies [5659b24]
+  - @prosopo/common@3.1.19
+  - @prosopo/redis-client@1.0.4
+  - @prosopo/api-route@2.6.27
+  - @prosopo/types@3.5.2
+  - @prosopo/util@3.1.4
+  - @prosopo/api@3.1.23
+
+## 3.5.17
+### Patch Changes
+
+- 50c4120: Release 3.4.3
+- Updated dependencies [52cd544]
+- Updated dependencies [b117ba3]
+- Updated dependencies [50c4120]
+  - @prosopo/types@3.5.1
+  - @prosopo/redis-client@1.0.3
+  - @prosopo/api-route@2.6.26
+  - @prosopo/common@3.1.18
+  - @prosopo/util@3.1.3
+  - @prosopo/api@3.1.22
+
+## 3.5.16
+### Patch Changes
+
+- 618703f: Release 3.4.2
+- Updated dependencies [618703f]
+- Updated dependencies [e20ad6b]
+  - @prosopo/redis-client@1.0.2
+  - @prosopo/api-route@2.6.25
+  - @prosopo/common@3.1.17
+  - @prosopo/types@3.5.0
+  - @prosopo/util@3.1.2
+  - @prosopo/api@3.1.21
+
+## 3.5.15
+### Patch Changes
+
+- 11303d9: feat/pluggable-redis
+- 11303d9: Release 3.4.0
+- 18cb28b: Release 3.4.1
+- 11303d9: feat/pluggable-redis
+- Updated dependencies [11303d9]
+- Updated dependencies [11303d9]
+- Updated dependencies [18cb28b]
+- Updated dependencies [11303d9]
+  - @prosopo/redis-client@1.0.1
+  - @prosopo/api-route@2.6.24
+  - @prosopo/common@3.1.16
+  - @prosopo/types@3.4.1
+  - @prosopo/util@3.1.1
+  - @prosopo/api@3.1.20
+
+## 3.5.14
+### Patch Changes
+
+- f3f7aec: Release 3.4.0
+- Updated dependencies [f3f7aec]
+- Updated dependencies [6768f14]
+  - @prosopo/api-route@2.6.23
+  - @prosopo/common@3.1.15
+  - @prosopo/types@3.4.0
+  - @prosopo/util@3.1.0
+  - @prosopo/config@3.1.15
+
+## 3.5.13
+### Patch Changes
+
+- Release 3.3.1
+- 0824221: Release 3.2.4
+- Updated dependencies [97edf3f]
+- Updated dependencies
+- Updated dependencies [0824221]
+  - @prosopo/types@3.3.0
+  - @prosopo/api-route@2.6.22
+  - @prosopo/common@3.1.14
+  - @prosopo/util@3.0.17
+  - @prosopo/config@3.1.14
+
+## 3.5.12
+### Patch Changes
+
+- 008d112: Release 3.3.0
+- Updated dependencies [509be28]
+- Updated dependencies [008d112]
+  - @prosopo/types@3.2.1
+  - @prosopo/api-route@2.6.21
+  - @prosopo/common@3.1.13
+  - @prosopo/util@3.0.16
+  - @prosopo/config@3.1.13
+
+## 3.5.11
+### Patch Changes
+
+- 0824221: Release 3.2.4
+- Updated dependencies [cf48565]
+- Updated dependencies [0824221]
+  - @prosopo/types@3.2.0
+  - @prosopo/api-route@2.6.20
+  - @prosopo/common@3.1.12
+  - @prosopo/util@3.0.15
+  - @prosopo/config@3.1.12
+
+## 3.5.10
+### Patch Changes
+
+- 1a23649: Release 3.2.3
+- Updated dependencies [0d1a33e]
+- Updated dependencies [0d1a33e]
+- Updated dependencies [1a23649]
+  - @prosopo/types@3.1.4
+  - @prosopo/api-route@2.6.19
+  - @prosopo/common@3.1.11
+  - @prosopo/util@3.0.14
+  - @prosopo/config@3.1.11
+
+## 3.5.9
+### Patch Changes
+
+- 657a827: Release 3.2.2
+- Updated dependencies [657a827]
+  - @prosopo/api-route@2.6.18
+  - @prosopo/common@3.1.10
+  - @prosopo/types@3.1.3
+  - @prosopo/util@3.0.13
+  - @prosopo/config@3.1.10
+
+## 3.5.8
+### Patch Changes
+
+- 4440947: fix type-only tsc compilation
+- 7bdaca6: Release 3.2.1
+- Updated dependencies [4440947]
+- Updated dependencies [7bdaca6]
+- Updated dependencies [809b984]
+- Updated dependencies [1249ce0]
+- Updated dependencies [809b984]
+  - @prosopo/api-route@2.6.17
+  - @prosopo/common@3.1.9
+  - @prosopo/types@3.1.2
+  - @prosopo/util@3.0.12
+  - @prosopo/config@3.1.9
+
+## 3.5.7
+### Patch Changes
+
+- 6fe8570: Release 3.2.0
+- Updated dependencies [1f980c4]
+- Updated dependencies [6fe8570]
+  - @prosopo/types@3.1.1
+  - @prosopo/api-route@2.6.16
+  - @prosopo/common@3.1.8
+  - @prosopo/util@3.0.11
+  - @prosopo/config@3.1.8
+
+## 3.5.6
+### Patch Changes
+
+- f304be9: Release 3.1.13
+- Updated dependencies [f304be9]
+- Updated dependencies [8bdc7f0]
+  - @prosopo/api-route@2.6.15
+  - @prosopo/common@3.1.7
+  - @prosopo/types@3.1.0
+  - @prosopo/util@3.0.10
+  - @prosopo/config@3.1.7
+
+## 3.5.5
+### Patch Changes
+
+- a07db04: Release 3.1.12
+- Updated dependencies [9eed772]
+- Updated dependencies [ebb0168]
+  - @prosopo/config@3.1.6
+  - @prosopo/util@3.0.9
+  - @prosopo/api-route@2.6.14
+  - @prosopo/common@3.1.6
+  - @prosopo/types@3.0.10
+
+## 3.5.4
+### Patch Changes
+
+- 553025d: Index
+
+## 3.5.3
+### Patch Changes
+
+- 6960643: lint detect missing and unneccessary imports
+- Updated dependencies [6960643]
+  - @prosopo/api-route@2.6.13
+  - @prosopo/common@3.1.5
+  - @prosopo/types@3.0.9
+  - @prosopo/util@3.0.8
+
+## 3.5.2
+### Patch Changes
+
+- Updated dependencies [30e7d4d]
+  - @prosopo/config@3.1.5
+  - @prosopo/api-route@2.6.12
+  - @prosopo/common@3.1.4
+  - @prosopo/types@3.0.8
+  - @prosopo/util@3.0.7
+
+## 3.5.1
+### Patch Changes
+
+- 1f3a02f: Release 3.1.8
+
+## 3.5.0
+### Minor Changes
+
+- e0628d9: Make sure rules don't leak between IPs
+
+## 3.4.1
+### Patch Changes
+
+- a49b538: Extra tests
+- e090e2f: More tests
+- Updated dependencies [44ffda2]
+- Updated dependencies [a49b538]
+  - @prosopo/config@3.1.4
+  - @prosopo/common@3.1.3
+  - @prosopo/api-route@2.6.11
+  - @prosopo/types@3.0.7
+  - @prosopo/util@3.0.6
+
+## 3.4.0
+### Minor Changes
+
+- df4e030: Revising UAP rule getters
+
+### Patch Changes
+
+- 91bbe87: configure typecheck before bundle for vue packages
+- 91bbe87: make typecheck script always recompile
+- 346e092: NODE_ENV default to "development"
+- 5d36e05: remove tsc --force
+- Updated dependencies [828066d]
+- Updated dependencies [df4e030]
+- Updated dependencies [91bbe87]
+- Updated dependencies [3ef4fd2]
+- Updated dependencies [91bbe87]
+- Updated dependencies [346e092]
+- Updated dependencies [5d36e05]
+  - @prosopo/api-route@2.6.10
+  - @prosopo/common@3.1.2
+  - @prosopo/types@3.0.6
+  - @prosopo/config@3.1.3
+  - @prosopo/util@3.0.5
+
 ## 3.3.2
 ### Patch Changes
 

package/dist/accessPolicyResolver.js

@@ -1,6 +1,5 @@
-import * as util from "node:util";
 import { z } from "zod";
-import { userScopeInputSchema, policyScopeSchema, AccessPolicyType } from "./accessPolicy.js";
+import { userScopeInputSchema, policyScopeSchema } from "./accessPolicy.js";
 var ScopeMatch = /* @__PURE__ */ ((ScopeMatch2) => {
   ScopeMatch2["Exact"] = "exact";
   ScopeMatch2["Greedy"] = "greedy";
@@ -26,45 +25,7 @@ const policyFilterSchema = z.object({
     /* Exact */
   )
 });
-const createAccessPolicyResolver = (accessRulesReader, logger) => {
-  return async (filter) => {
-    const accessRules = await accessRulesReader.findRules(filter);
-    const primaryAccessRule = resolvePrimaryRule(accessRules);
-    logger.debug(() => ({
-      msg: "Resolved access policy",
-      // filter contains BigInt, which can't be handled directly via logger.
-      data: {
-        inspect: util.inspect(
-          {
-            filter,
-            accessRules,
-            primaryAccessRule
-          },
-          { depth: null }
-        )
-      }
-    }));
-    return primaryAccessRule;
-  };
-};
-const resolvePrimaryRule = (rules) => {
-  const blockingRules = rules.filter(
-    (accessRule) => AccessPolicyType.Block === accessRule.type
-  );
-  const rulesToEvaluate = blockingRules.length > 0 ? blockingRules : rules;
-  return resolveMostLocalRule(rulesToEvaluate);
-};
-const resolveMostLocalRule = (rules) => {
-  const clientRules = rules.filter(
-    (accessRule) => "string" === typeof accessRule.clientId
-  );
-  if (clientRules.length > 0) {
-    return clientRules.shift();
-  }
-  return rules.shift();
-};
 export {
   ScopeMatch,
-  createAccessPolicyResolver,
   policyFilterSchema
 };

package/dist/api/accessRulesApiClient.js

@@ -0,0 +1,38 @@
+import { ApiClient } from "@prosopo/api";
+import { accessRuleApiPaths } from "./accessRuleApiRoutes.js";
+class AccessRulesApiClient extends ApiClient {
+  insertMany(toInsert, timestamp, signature) {
+    return this.post(accessRuleApiPaths.INSERT_MANY, toInsert, {
+      headers: {
+        "Prosopo-Site-Key": this.account,
+        timestamp,
+        signature
+      }
+    });
+  }
+  deleteMany(toDelete, timestamp, signature) {
+    return this.post(accessRuleApiPaths.DELETE_MANY, toDelete, {
+      headers: {
+        "Prosopo-Site-Key": this.account,
+        timestamp,
+        signature
+      }
+    });
+  }
+  deleteAll(timestamp, signature) {
+    return this.post(
+      accessRuleApiPaths.DELETE_ALL,
+      {},
+      {
+        headers: {
+          "Prosopo-Site-Key": this.account,
+          timestamp,
+          signature
+        }
+      }
+    );
+  }
+}
+export {
+  AccessRulesApiClient
+};

package/dist/cjs/accessPolicyResolver.cjs

@@ -1,25 +1,7 @@
 "use strict";
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
-const util = require("node:util");
 const zod = require("zod");
 const accessPolicy = require("./accessPolicy.cjs");
-function _interopNamespaceDefault(e) {
-  const n = Object.create(null, { [Symbol.toStringTag]: { value: "Module" } });
-  if (e) {
-    for (const k in e) {
-      if (k !== "default") {
-        const d = Object.getOwnPropertyDescriptor(e, k);
-        Object.defineProperty(n, k, d.get ? d : {
-          enumerable: true,
-          get: () => e[k]
-        });
-      }
-    }
-  }
-  n.default = e;
-  return Object.freeze(n);
-}
-const util__namespace = /* @__PURE__ */ _interopNamespaceDefault(util);
 var ScopeMatch = /* @__PURE__ */ ((ScopeMatch2) => {
   ScopeMatch2["Exact"] = "exact";
   ScopeMatch2["Greedy"] = "greedy";
@@ -45,43 +27,5 @@ const policyFilterSchema = zod.z.object({
     /* Exact */
   )
 });
-const createAccessPolicyResolver = (accessRulesReader, logger) => {
-  return async (filter) => {
-    const accessRules = await accessRulesReader.findRules(filter);
-    const primaryAccessRule = resolvePrimaryRule(accessRules);
-    logger.debug(() => ({
-      msg: "Resolved access policy",
-      // filter contains BigInt, which can't be handled directly via logger.
-      data: {
-        inspect: util__namespace.inspect(
-          {
-            filter,
-            accessRules,
-            primaryAccessRule
-          },
-          { depth: null }
-        )
-      }
-    }));
-    return primaryAccessRule;
-  };
-};
-const resolvePrimaryRule = (rules) => {
-  const blockingRules = rules.filter(
-    (accessRule) => accessPolicy.AccessPolicyType.Block === accessRule.type
-  );
-  const rulesToEvaluate = blockingRules.length > 0 ? blockingRules : rules;
-  return resolveMostLocalRule(rulesToEvaluate);
-};
-const resolveMostLocalRule = (rules) => {
-  const clientRules = rules.filter(
-    (accessRule) => "string" === typeof accessRule.clientId
-  );
-  if (clientRules.length > 0) {
-    return clientRules.shift();
-  }
-  return rules.shift();
-};
 exports.ScopeMatch = ScopeMatch;
-exports.createAccessPolicyResolver = createAccessPolicyResolver;
 exports.policyFilterSchema = policyFilterSchema;

package/dist/cjs/api/accessRulesApiClient.cjs

@@ -0,0 +1,38 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const api = require("@prosopo/api");
+const accessRuleApiRoutes = require("./accessRuleApiRoutes.cjs");
+class AccessRulesApiClient extends api.ApiClient {
+  insertMany(toInsert, timestamp, signature) {
+    return this.post(accessRuleApiRoutes.accessRuleApiPaths.INSERT_MANY, toInsert, {
+      headers: {
+        "Prosopo-Site-Key": this.account,
+        timestamp,
+        signature
+      }
+    });
+  }
+  deleteMany(toDelete, timestamp, signature) {
+    return this.post(accessRuleApiRoutes.accessRuleApiPaths.DELETE_MANY, toDelete, {
+      headers: {
+        "Prosopo-Site-Key": this.account,
+        timestamp,
+        signature
+      }
+    });
+  }
+  deleteAll(timestamp, signature) {
+    return this.post(
+      accessRuleApiRoutes.accessRuleApiPaths.DELETE_ALL,
+      {},
+      {
+        headers: {
+          "Prosopo-Site-Key": this.account,
+          timestamp,
+          signature
+        }
+      }
+    );
+  }
+}
+exports.AccessRulesApiClient = AccessRulesApiClient;

package/dist/cjs/index.cjs

@@ -2,26 +2,30 @@
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
 const accessPolicy = require("./accessPolicy.cjs");
 const accessPolicyResolver = require("./accessPolicyResolver.cjs");
+const accessRules = require("./accessRules.cjs");
 const accessRuleApiRoutes = require("./api/accessRuleApiRoutes.cjs");
 const deleteAllRulesEndpoint = require("./api/deleteAllRulesEndpoint.cjs");
 const deleteRulesEndpoint = require("./api/deleteRulesEndpoint.cjs");
 const insertRulesEndpoint = require("./api/insertRulesEndpoint.cjs");
-const redisAccessRules = require("./redis/redisAccessRules.cjs");
-const redisAccessRulesIndex = require("./redis/redisAccessRulesIndex.cjs");
+const redisRulesStorage = require("./redis/redisRulesStorage.cjs");
+const redisRulesIndex = require("./redis/redisRulesIndex.cjs");
+const accessRulesApiClient = require("./api/accessRulesApiClient.cjs");
 const createApiRuleRoutesProvider = (rulesStorage) => {
   return new accessRuleApiRoutes.AccessRuleApiRoutes(rulesStorage);
 };
 exports.AccessPolicyType = accessPolicy.AccessPolicyType;
 exports.accessPolicySchema = accessPolicy.accessPolicySchema;
+exports.accessRuleSchemaExtended = accessPolicy.accessRuleSchemaExtended;
 exports.policyScopeSchema = accessPolicy.policyScopeSchema;
 exports.userScopeInputSchema = accessPolicy.userScopeInputSchema;
 exports.ScopeMatch = accessPolicyResolver.ScopeMatch;
-exports.createAccessPolicyResolver = accessPolicyResolver.createAccessPolicyResolver;
+exports.accessRuleSchema = accessRules.accessRuleSchema;
 exports.accessRuleApiPaths = accessRuleApiRoutes.accessRuleApiPaths;
 exports.getExpressApiRuleRateLimits = accessRuleApiRoutes.getExpressApiRuleRateLimits;
 exports.deleteAllRulesEndpointSchema = deleteAllRulesEndpoint.deleteAllRulesEndpointSchema;
 exports.deleteRulesEndpointSchema = deleteRulesEndpoint.deleteRulesEndpointSchema;
 exports.insertRulesEndpointSchema = insertRulesEndpoint.insertRulesEndpointSchema;
-exports.createRedisAccessRulesStorage = redisAccessRules.createRedisAccessRulesStorage;
-exports.createRedisAccessRulesIndex = redisAccessRulesIndex.createRedisAccessRulesIndex;
+exports.createRedisAccessRulesStorage = redisRulesStorage.createRedisAccessRulesStorage;
+exports.redisAccessRulesIndex = redisRulesIndex.redisAccessRulesIndex;
+exports.AccessRulesApiClient = accessRulesApiClient.AccessRulesApiClient;
 exports.createApiRuleRoutesProvider = createApiRuleRoutesProvider;

package/dist/cjs/redis/redisRulesIndex.cjs

@@ -0,0 +1,138 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const search = require("@redis/search");
+const accessPolicy = require("../accessPolicy.cjs");
+const accessPolicyResolver = require("../accessPolicyResolver.cjs");
+const redisRulesIndexName = "index:user-access-rules";
+const redisRuleKeyPrefix = "uar:";
+const redisAccessRulesIndex = {
+  name: redisRulesIndexName,
+  /**
+   * Note on the field type decision
+   *
+   * TAG is designed for the exact value matching
+   * TEXT is designed for the word-based and pattern matching
+   *
+   * For our goal TAG fits perfectly and, more performant
+   */
+  schema: {
+    clientId: {
+      type: search.SCHEMA_FIELD_TYPE.TAG,
+      // necessary to make possible use of the ismissing() function on this field in the search
+      INDEXMISSING: true
+    },
+    numericIpMaskMin: { type: search.SCHEMA_FIELD_TYPE.NUMERIC, INDEXMISSING: true },
+    numericIpMaskMax: { type: search.SCHEMA_FIELD_TYPE.NUMERIC, INDEXMISSING: true },
+    userId: { type: search.SCHEMA_FIELD_TYPE.TAG, INDEXMISSING: true },
+    numericIp: { type: search.SCHEMA_FIELD_TYPE.NUMERIC, INDEXMISSING: true },
+    ja4Hash: { type: search.SCHEMA_FIELD_TYPE.TAG, INDEXMISSING: true },
+    headersHash: { type: search.SCHEMA_FIELD_TYPE.TAG, INDEXMISSING: true },
+    userAgentHash: { type: search.SCHEMA_FIELD_TYPE.TAG, INDEXMISSING: true }
+  },
+  // the satisfy statement is to guarantee that the keys are right
+  options: {
+    ON: "HASH",
+    PREFIX: [redisRuleKeyPrefix]
+  }
+};
+const numericIndexFields = [
+  "numericIp",
+  "numericIpMaskMin",
+  "numericIpMaskMax"
+];
+const greedyFieldComparisons = {
+  numericIp: (value, scope) => {
+    if (value !== void 0) {
+      return `( @numericIp:[${value}] | ( @numericIpMaskMin:[-inf ${value}] @numericIpMaskMax:[${value} +inf] ) )`;
+    }
+    if (scope.numericIpMaskMin === void 0 && scope.numericIpMaskMax === void 0) {
+      return "ismissing(@numericIp) ismissing(@numericIpMaskMin) ismissing(@numericIpMaskMax)";
+    }
+    return "";
+  },
+  numericIpMaskMin: (value, scope) => {
+    if (scope.numericIp !== void 0) {
+      return "";
+    }
+    return value !== void 0 ? `@numericIpMaskMin:[-inf ${value}]` : "ismissing(@numericIpMaskMin)";
+  },
+  numericIpMaskMax: (value, scope) => {
+    if (scope.numericIp !== void 0) {
+      return "";
+    }
+    return value !== void 0 ? `@numericIpMaskMax:[${value} +inf]` : "ismissing(@numericIpMaskMax)";
+  }
+};
+const redisRulesSearchOptions = {
+  // #2 is a required option when the 'ismissing()' function is in the query body
+  DIALECT: 2
+};
+const getRedisRulesQuery = (filter, matchingFieldsOnly) => {
+  const { policyScope, userScope } = filter;
+  const policyScopeFilter = getPolicyScopeQuery(
+    policyScope,
+    filter.policyScopeMatch
+  );
+  if (userScope && Object.keys(userScope).length > 0) {
+    const userScopeFilter = getUserScopeQuery(
+      userScope,
+      filter.userScopeMatch,
+      matchingFieldsOnly
+    );
+    return `${policyScopeFilter} ( ${userScopeFilter} )`;
+  }
+  return policyScopeFilter ? policyScopeFilter : "*";
+};
+const getPolicyScopeQuery = (policyScope, scopeMatchType) => {
+  const clientId = policyScope?.clientId;
+  if ("string" === typeof clientId) {
+    return accessPolicyResolver.ScopeMatch.Exact === scopeMatchType ? `@clientId:{${clientId}}` : `( @clientId:{${clientId}} | ismissing(@clientId) )`;
+  }
+  return accessPolicyResolver.ScopeMatch.Exact === scopeMatchType ? "ismissing(@clientId)" : "";
+};
+const getUserScopeQuery = (userScope, scopeMatchType, matchingFieldsOnly) => {
+  let scopeEntries = Object.entries(userScope);
+  let scopeJoinType = " ";
+  if (scopeMatchType === accessPolicyResolver.ScopeMatch.Greedy) {
+    scopeEntries = scopeEntries.filter(
+      ([_, value]) => value !== void 0
+    );
+    scopeJoinType = " | ";
+  }
+  if (matchingFieldsOnly) {
+    const scopeMap = new Map(scopeEntries);
+    if (scopeMap.has("numericIp") && scopeMap.get("numericIp") === void 0) {
+      scopeMap.set("numericIpMaskMin", void 0);
+      scopeMap.set("numericIpMaskMax", void 0);
+    }
+    for (const name of Object.keys(accessPolicy.userScopeSchema.shape)) {
+      if (!scopeMap.has(name)) {
+        scopeMap.set(name, void 0);
+      }
+    }
+    scopeEntries = [...scopeMap.entries()];
+  }
+  const scopeObj = Object.fromEntries(scopeEntries);
+  return scopeEntries.map(
+    ([scopeFieldName, scopeFieldValue]) => getUserScopeFieldQuery(
+      scopeFieldName,
+      scopeFieldValue,
+      scopeMatchType,
+      scopeObj
+    )
+  ).filter(Boolean).join(scopeJoinType);
+};
+const getUserScopeFieldQuery = (fieldName, fieldValue, matchType, fullScope) => {
+  if ("function" === typeof greedyFieldComparisons[fieldName]) {
+    return greedyFieldComparisons[fieldName](fieldValue, fullScope);
+  }
+  if (fieldValue === void 0) {
+    return `ismissing(@${fieldName})`;
+  }
+  return numericIndexFields.includes(fieldName) ? `@${fieldName}:[${fieldValue}]` : `@${fieldName}:{${fieldValue}}`;
+};
+exports.getRedisRulesQuery = getRedisRulesQuery;
+exports.redisAccessRulesIndex = redisAccessRulesIndex;
+exports.redisRuleKeyPrefix = redisRuleKeyPrefix;
+exports.redisRulesIndexName = redisRulesIndexName;
+exports.redisRulesSearchOptions = redisRulesSearchOptions;