npm - @prosopo/user-access-policy - Versions diffs - 3.4.0 → 3.5.27 - Mend

@prosopo/user-access-policy 3.4.0 → 3.5.27

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (292) hide show

package/CHANGELOG.md +309 -0
package/coverage/base.css +224 -0
package/coverage/block-navigation.js +87 -0
package/coverage/clover.xml +786 -0
package/coverage/coverage-final.json +15 -0
package/coverage/favicon.png +0 -0
package/coverage/index.html +146 -0
package/coverage/prettify.css +1 -0
package/coverage/prettify.js +2 -0
package/coverage/sort-arrow-sprite.png +0 -0
package/coverage/sorter.js +210 -0
package/coverage/src/accessPolicy.ts.html +457 -0
package/coverage/src/accessPolicyResolver.ts.html +211 -0
package/coverage/src/accessRules.ts.html +265 -0
package/coverage/src/api/accessRuleApiRoutes.ts.html +379 -0
package/coverage/src/api/accessRulesApiClient.ts.html +274 -0
package/coverage/src/api/deleteAllRulesEndpoint.ts.html +229 -0
package/coverage/src/api/deleteRulesEndpoint.ts.html +301 -0
package/coverage/src/api/index.html +176 -0
package/coverage/src/api/insertRulesEndpoint.ts.html +436 -0
package/coverage/src/index.html +176 -0
package/coverage/src/index.ts.html +277 -0
package/coverage/src/redis/index.html +161 -0
package/coverage/src/redis/redisRulesIndex.ts.html +769 -0
package/coverage/src/redis/redisRulesReader.ts.html +652 -0
package/coverage/src/redis/redisRulesStorage.ts.html +229 -0
package/coverage/src/redis/redisRulesWriter.ts.html +424 -0
package/coverage/src/util.ts.html +136 -0
package/dist/.export.d.ts +6 -0
package/dist/.export.d.ts.map +1 -0
package/dist/.export.js +21 -0
package/dist/.export.js.map +1 -0
package/dist/accessPolicy.d.ts +169 -0
package/dist/accessPolicy.d.ts.map +1 -0
package/dist/accessPolicy.js.map +1 -0
package/dist/accessPolicyResolver.d.ts +110 -0
package/dist/accessPolicyResolver.d.ts.map +1 -0
package/dist/accessPolicyResolver.js.map +1 -0
package/dist/accessRules.d.ts +16 -0
package/dist/accessRules.d.ts.map +1 -0
package/dist/accessRules.js.map +1 -0
package/dist/api/.export.d.ts +7 -0
package/dist/api/.export.d.ts.map +1 -0
package/dist/api/.export.js +11 -0
package/dist/api/.export.js.map +1 -0
package/dist/api/accessRuleApiRoutes.d.ts +27 -0
package/dist/api/accessRuleApiRoutes.d.ts.map +1 -0
package/dist/api/accessRuleApiRoutes.js.map +1 -0
package/dist/api/accessRulesApiClient.d.ts +10 -0
package/dist/api/accessRulesApiClient.d.ts.map +1 -0
package/dist/api/accessRulesApiClient.js +38 -0
package/dist/api/accessRulesApiClient.js.map +1 -0
package/dist/api/delete/.export.d.ts +2 -0
package/dist/api/delete/.export.d.ts.map +1 -0
package/dist/api/delete/.export.js +1 -0
package/dist/api/delete/.export.js.map +1 -0
package/dist/api/delete/deleteAllRules.d.ts +11 -0
package/dist/api/delete/deleteAllRules.d.ts.map +1 -0
package/dist/api/delete/deleteAllRules.js +25 -0
package/dist/api/delete/deleteAllRules.js.map +1 -0
package/dist/api/delete/deleteRuleGroups.d.ts +19 -0
package/dist/api/delete/deleteRuleGroups.d.ts.map +1 -0
package/dist/api/delete/deleteRuleGroups.js +52 -0
package/dist/api/delete/deleteRuleGroups.js.map +1 -0
package/dist/api/delete/deleteRules.d.ts +15 -0
package/dist/api/delete/deleteRules.d.ts.map +1 -0
package/dist/api/delete/deleteRules.js +43 -0
package/dist/api/delete/deleteRules.js.map +1 -0
package/dist/api/deleteAllRulesEndpoint.d.ts +12 -0
package/dist/api/deleteAllRulesEndpoint.d.ts.map +1 -0
package/dist/api/deleteAllRulesEndpoint.js.map +1 -0
package/dist/api/deleteRulesEndpoint.d.ts +116 -0
package/dist/api/deleteRulesEndpoint.d.ts.map +1 -0
package/dist/api/deleteRulesEndpoint.js.map +1 -0
package/dist/api/insertRulesEndpoint.d.ts +22 -0
package/dist/api/insertRulesEndpoint.d.ts.map +1 -0
package/dist/api/insertRulesEndpoint.js.map +1 -0
package/dist/api/read/.export.d.ts +4 -0
package/dist/api/read/.export.d.ts.map +1 -0
package/dist/api/read/.export.js +1 -0
package/dist/api/read/.export.js.map +1 -0
package/dist/api/read/fetchRules.d.ts +53 -0
package/dist/api/read/fetchRules.d.ts.map +1 -0
package/dist/api/read/fetchRules.js +43 -0
package/dist/api/read/fetchRules.js.map +1 -0
package/dist/api/read/findRuleIds.d.ts +28 -0
package/dist/api/read/findRuleIds.d.ts.map +1 -0
package/dist/api/read/findRuleIds.js +50 -0
package/dist/api/read/findRuleIds.js.map +1 -0
package/dist/api/read/getMissingIds.d.ts +28 -0
package/dist/api/read/getMissingIds.d.ts.map +1 -0
package/dist/api/read/getMissingIds.js +41 -0
package/dist/api/read/getMissingIds.js.map +1 -0
package/dist/api/ruleApiRoutes.d.ts +43 -0
package/dist/api/ruleApiRoutes.d.ts.map +1 -0
package/dist/api/ruleApiRoutes.js +131 -0
package/dist/api/ruleApiRoutes.js.map +1 -0
package/dist/api/rulesApiClient.d.ts +20 -0
package/dist/api/rulesApiClient.d.ts.map +1 -0
package/dist/api/rulesApiClient.js +93 -0
package/dist/api/rulesApiClient.js.map +1 -0
package/dist/api/write/.export.d.ts +2 -0
package/dist/api/write/.export.d.ts.map +1 -0
package/dist/api/write/.export.js +1 -0
package/dist/api/write/.export.js.map +1 -0
package/dist/api/write/insertRules.d.ts +29 -0
package/dist/api/write/insertRules.d.ts.map +1 -0
package/dist/api/write/insertRules.js +102 -0
package/dist/api/write/insertRules.js.map +1 -0
package/dist/api/write/rehashRules.d.ts +11 -0
package/dist/api/write/rehashRules.d.ts.map +1 -0
package/dist/api/write/rehashRules.js +57 -0
package/dist/api/write/rehashRules.js.map +1 -0
package/dist/cjs/.export.cjs +21 -0
package/dist/cjs/api/.export.cjs +11 -0
package/dist/cjs/api/delete/.export.cjs +1 -0
package/dist/cjs/api/delete/deleteAllRules.cjs +25 -0
package/dist/cjs/api/delete/deleteRuleGroups.cjs +52 -0
package/dist/cjs/api/delete/deleteRules.cjs +43 -0
package/dist/cjs/api/read/.export.cjs +1 -0
package/dist/cjs/api/read/fetchRules.cjs +43 -0
package/dist/cjs/api/read/findRuleIds.cjs +50 -0
package/dist/cjs/api/read/getMissingIds.cjs +41 -0
package/dist/cjs/api/ruleApiRoutes.cjs +131 -0
package/dist/cjs/api/rulesApiClient.cjs +93 -0
package/dist/cjs/api/write/.export.cjs +1 -0
package/dist/cjs/api/write/insertRules.cjs +102 -0
package/dist/cjs/api/write/rehashRules.cjs +57 -0
package/dist/cjs/index.cjs +2 -0
package/dist/cjs/mongoose/.export.cjs +4 -0
package/dist/cjs/mongoose/mongooseRuleSchema.cjs +36 -0
package/dist/cjs/redis/.export.cjs +6 -0
package/dist/cjs/redis/reader/redisAggregate.cjs +60 -0
package/dist/cjs/redis/reader/redisRulesQuery.cjs +99 -0
package/dist/cjs/redis/reader/redisRulesReader.cjs +230 -0
package/dist/cjs/redis/redisAccessRules.cjs +4 -4
package/dist/cjs/redis/redisAccessRulesIndex.cjs +55 -14
package/dist/cjs/redis/redisClient.cjs +67 -0
package/dist/cjs/redis/redisRuleIndex.cjs +50 -0
package/dist/cjs/redis/redisRulesStorage.cjs +34 -0
package/dist/cjs/redis/redisRulesWriter.cjs +100 -0
package/dist/cjs/rule.cjs +8 -0
package/dist/cjs/ruleInput/.export.cjs +9 -0
package/dist/cjs/ruleInput/policyInput.cjs +25 -0
package/dist/cjs/ruleInput/ruleInput.cjs +50 -0
package/dist/cjs/ruleInput/userScopeInput.cjs +55 -0
package/dist/cjs/ruleRecord.cjs +23 -0
package/dist/cjs/rulesStorage.cjs +8 -0
package/dist/cjs/transformRule.cjs +77 -0
package/dist/index.d.ts +15 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +7 -3
package/dist/index.js.map +1 -0
package/dist/mongoose/.export.d.ts +2 -0
package/dist/mongoose/.export.d.ts.map +1 -0
package/dist/mongoose/.export.js +4 -0
package/dist/mongoose/.export.js.map +1 -0
package/dist/mongoose/mongooseRuleSchema.d.ts +4 -0
package/dist/mongoose/mongooseRuleSchema.d.ts.map +1 -0
package/dist/mongoose/mongooseRuleSchema.js +36 -0
package/dist/mongoose/mongooseRuleSchema.js.map +1 -0
package/dist/redis/.export.d.ts +3 -0
package/dist/redis/.export.d.ts.map +1 -0
package/dist/redis/.export.js +6 -0
package/dist/redis/.export.js.map +1 -0
package/dist/redis/reader/redisAggregate.d.ts +4 -0
package/dist/redis/reader/redisAggregate.d.ts.map +1 -0
package/dist/redis/reader/redisAggregate.js +60 -0
package/dist/redis/reader/redisAggregate.js.map +1 -0
package/dist/redis/reader/redisRulesQuery.d.ts +4 -0
package/dist/redis/reader/redisRulesQuery.d.ts.map +1 -0
package/dist/redis/reader/redisRulesQuery.js +99 -0
package/dist/redis/reader/redisRulesQuery.js.map +1 -0
package/dist/redis/reader/redisRulesReader.d.ts +26 -0
package/dist/redis/reader/redisRulesReader.d.ts.map +1 -0
package/dist/redis/reader/redisRulesReader.js +213 -0
package/dist/redis/reader/redisRulesReader.js.map +1 -0
package/dist/redis/redisAccessRules.d.ts +7 -0
package/dist/redis/redisAccessRules.d.ts.map +1 -0
package/dist/redis/redisAccessRules.js +112 -128
package/dist/redis/redisAccessRules.js.map +1 -0
package/dist/redis/redisAccessRulesIndex.d.ts +13 -0
package/dist/redis/redisAccessRulesIndex.d.ts.map +1 -0
package/dist/redis/redisAccessRulesIndex.js +122 -112
package/dist/redis/redisAccessRulesIndex.js.map +1 -0
package/dist/redis/redisClient.d.ts +11 -0
package/dist/redis/redisClient.d.ts.map +1 -0
package/dist/redis/redisClient.js +67 -0
package/dist/redis/redisClient.js.map +1 -0
package/dist/redis/redisIndex.d.ts +9 -0
package/dist/redis/redisIndex.d.ts.map +1 -0
package/dist/redis/redisIndex.js +16 -15
package/dist/redis/redisIndex.js.map +1 -0
package/dist/redis/redisRuleIndex.d.ts +13 -0
package/dist/redis/redisRuleIndex.d.ts.map +1 -0
package/dist/redis/redisRuleIndex.js +50 -0
package/dist/redis/redisRuleIndex.js.map +1 -0
package/dist/redis/redisRulesIndex.d.ts +9 -0
package/dist/redis/redisRulesIndex.d.ts.map +1 -0
package/dist/redis/redisRulesIndex.js +138 -0
package/dist/redis/redisRulesIndex.js.map +1 -0
package/dist/redis/redisRulesReader.d.ts +6 -0
package/dist/redis/redisRulesReader.d.ts.map +1 -0
package/dist/redis/redisRulesReader.js +125 -0
package/dist/redis/redisRulesReader.js.map +1 -0
package/dist/redis/redisRulesStorage.d.ts +5 -0
package/dist/redis/redisRulesStorage.d.ts.map +1 -0
package/dist/redis/redisRulesStorage.js +34 -0
package/dist/redis/redisRulesStorage.js.map +1 -0
package/dist/redis/redisRulesWriter.d.ts +22 -0
package/dist/redis/redisRulesWriter.d.ts.map +1 -0
package/dist/redis/redisRulesWriter.js +100 -0
package/dist/redis/redisRulesWriter.js.map +1 -0
package/dist/rule.d.ts +34 -0
package/dist/rule.d.ts.map +1 -0
package/dist/rule.js +8 -0
package/dist/rule.js.map +1 -0
package/dist/ruleInput/.export.d.ts +4 -0
package/dist/ruleInput/.export.d.ts.map +1 -0
package/dist/ruleInput/.export.js +9 -0
package/dist/ruleInput/.export.js.map +1 -0
package/dist/ruleInput/policyInput.d.ts +38 -0
package/dist/ruleInput/policyInput.d.ts.map +1 -0
package/dist/ruleInput/policyInput.js +25 -0
package/dist/ruleInput/policyInput.js.map +1 -0
package/dist/ruleInput/ruleInput.d.ts +145 -0
package/dist/ruleInput/ruleInput.d.ts.map +1 -0
package/dist/ruleInput/ruleInput.js +50 -0
package/dist/ruleInput/ruleInput.js.map +1 -0
package/dist/ruleInput/userScopeInput.d.ts +93 -0
package/dist/ruleInput/userScopeInput.d.ts.map +1 -0
package/dist/ruleInput/userScopeInput.js +55 -0
package/dist/ruleInput/userScopeInput.js.map +1 -0
package/dist/ruleRecord.d.ts +18 -0
package/dist/ruleRecord.d.ts.map +1 -0
package/dist/ruleRecord.js +23 -0
package/dist/ruleRecord.js.map +1 -0
package/dist/rulesStorage.d.ts +30 -0
package/dist/rulesStorage.d.ts.map +1 -0
package/dist/rulesStorage.js +8 -0
package/dist/rulesStorage.js.map +1 -0
package/dist/tests/accessPolicy.test.d.ts +2 -0
package/dist/tests/accessPolicy.test.d.ts.map +1 -0
package/dist/tests/accessPolicy.test.js +27 -0
package/dist/tests/accessPolicy.test.js.map +1 -0
package/dist/tests/redis/reader/redisRulesQuery.unit.test.d.ts +2 -0
package/dist/tests/redis/reader/redisRulesQuery.unit.test.d.ts.map +1 -0
package/dist/tests/redis/reader/redisRulesQuery.unit.test.js +101 -0
package/dist/tests/redis/reader/redisRulesQuery.unit.test.js.map +1 -0
package/dist/tests/redis/redisAccessRules.integration.test.d.ts +2 -0
package/dist/tests/redis/redisAccessRules.integration.test.d.ts.map +1 -0
package/dist/tests/redis/redisAccessRules.integration.test.js +586 -0
package/dist/tests/redis/redisAccessRules.integration.test.js.map +1 -0
package/dist/tests/redis/redisAccessRules.unit.test.d.ts +2 -0
package/dist/tests/redis/redisAccessRules.unit.test.d.ts.map +1 -0
package/dist/tests/redis/redisAccessRules.unit.test.js +198 -0
package/dist/tests/redis/redisAccessRules.unit.test.js.map +1 -0
package/dist/tests/redis/redisIndex.integration.test.d.ts +2 -0
package/dist/tests/redis/redisIndex.integration.test.d.ts.map +1 -0
package/dist/tests/redis/redisIndex.integration.test.js +80 -0
package/dist/tests/redis/redisIndex.integration.test.js.map +1 -0
package/dist/tests/redis/redisRulesIndex.unit.test.d.ts +2 -0
package/dist/tests/redis/redisRulesIndex.unit.test.d.ts.map +1 -0
package/dist/tests/redis/redisRulesIndex.unit.test.js +101 -0
package/dist/tests/redis/redisRulesIndex.unit.test.js.map +1 -0
package/dist/tests/redis/redisRulesStorage.integration.test.d.ts +2 -0
package/dist/tests/redis/redisRulesStorage.integration.test.d.ts.map +1 -0
package/dist/tests/redis/redisRulesStorage.integration.test.js +611 -0
package/dist/tests/redis/redisRulesStorage.integration.test.js.map +1 -0
package/dist/tests/redis/testRedisClient.d.ts +3 -0
package/dist/tests/redis/testRedisClient.d.ts.map +1 -0
package/dist/tests/redis/testRedisClient.js +8 -0
package/dist/tests/redis/testRedisClient.js.map +1 -0
package/dist/tests/testLogger.d.ts +4 -0
package/dist/tests/testLogger.d.ts.map +1 -0
package/dist/tests/testLogger.js +22 -0
package/dist/tests/testLogger.js.map +1 -0
package/dist/tests/transformRule.unit.test.d.ts +2 -0
package/dist/tests/transformRule.unit.test.d.ts.map +1 -0
package/dist/tests/transformRule.unit.test.js +188 -0
package/dist/tests/transformRule.unit.test.js.map +1 -0
package/dist/transformRule.d.ts +7 -0
package/dist/transformRule.d.ts.map +1 -0
package/dist/transformRule.js +77 -0
package/dist/transformRule.js.map +1 -0
package/dist/util.d.ts +2 -0
package/dist/util.d.ts.map +1 -0
package/dist/util.js.map +1 -0
package/entries.ts +20 -0
package/package.json +42 -21
package/vite.cjs.config.ts +4 -1
package/vite.esm.config.ts +6 -1

package/dist/cjs/api/delete/deleteRules.cjs ADDED Viewed

@@ -0,0 +1,43 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+const common = require("@prosopo/common");
+const zod = require("zod");
+const ruleInput = require("../../ruleInput/ruleInput.cjs");
+class DeleteRulesEndpoint {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+    return zod.z.array(ruleInput.accessRulesFilterInput);
+  }
+  async processRequest(args) {
+    let deletedCount = 0;
+    for (const rulesFilterInput of args) {
+      const ruleFilters = ruleInput.getAccessRuleFiltersFromInput(rulesFilterInput);
+      await common.executeBatchesSequentially(ruleFilters, async (ruleFilter) => {
+        const ruleIds = await this.accessRulesStorage.findRuleIds(ruleFilter);
+        const uniqueRuleIds = [...new Set(ruleIds)];
+        if (uniqueRuleIds.length > 0) {
+          await this.accessRulesStorage.deleteRules(uniqueRuleIds);
+          deletedCount += uniqueRuleIds.length;
+          this.logger.info(() => ({
+            msg: "Endpoint deleted rules",
+            data: {
+              rulesFilterInput,
+              uniqueRuleIds
+            }
+          }));
+        }
+      });
+    }
+    return {
+      status: apiRoute.ApiEndpointResponseStatus.SUCCESS,
+      data: {
+        deleted_count: deletedCount
+      }
+    };
+  }
+}
+exports.DeleteRulesEndpoint = DeleteRulesEndpoint;

package/dist/cjs/api/read/.export.cjs ADDED Viewed

	@@ -0,0 +1 @@
1	+ "use strict";

package/dist/cjs/api/read/fetchRules.cjs ADDED Viewed

@@ -0,0 +1,43 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+const zod = require("zod");
+const ruleInput = require("../../ruleInput/ruleInput.cjs");
+const fetchRulesResponse = zod.z.object({
+  ruleEntries: ruleInput.ruleEntryInput.array()
+});
+class FetchRulesEndpoint {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+    return zod.z.object({
+      ids: zod.z.string().array()
+    });
+  }
+  async processRequest(args) {
+    const ruleEntries = await this.accessRulesStorage.fetchRules(args.ids);
+    this.logger.info(() => ({
+      msg: "Endpoint fetched rules",
+      data: {
+        requestedCount: args.ids.length,
+        foundCount: ruleEntries.length
+      }
+    }));
+    this.logger.debug(() => ({
+      msg: "Fetched rule details",
+      data: {
+        ruleEntries
+      }
+    }));
+    return {
+      status: apiRoute.ApiEndpointResponseStatus.SUCCESS,
+      data: {
+        ruleEntries
+      }
+    };
+  }
+}
+exports.FetchRulesEndpoint = FetchRulesEndpoint;
+exports.fetchRulesResponse = fetchRulesResponse;

package/dist/cjs/api/read/findRuleIds.cjs ADDED Viewed

@@ -0,0 +1,50 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+const common = require("@prosopo/common");
+const zod = require("zod");
+const ruleInput = require("../../ruleInput/ruleInput.cjs");
+const ruleIdsResponse = zod.z.object({
+  ruleIds: zod.z.string().array()
+});
+class FindRuleIdsEndpoint {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+    return zod.z.array(ruleInput.accessRulesFilterInput);
+  }
+  async processRequest(args) {
+    const ruleIdBatches = await common.executeBatchesSequentially(
+      args,
+      async (rulesFilterInput) => {
+        const ruleFilters = ruleInput.getAccessRuleFiltersFromInput(rulesFilterInput);
+        const ruleIds2 = await common.executeBatchesSequentially(
+          ruleFilters,
+          (ruleFilter) => this.accessRulesStorage.findRuleIds(ruleFilter)
+        );
+        return ruleIds2.flat();
+      }
+    );
+    const ruleIds = ruleIdBatches.flat();
+    const uniqueRuleIds = [...new Set(ruleIds)];
+    this.logger.info(() => ({
+      msg: "Endpoint found rules",
+      data: {
+        totalFoundCount: ruleIds.length,
+        uniqueFoundCount: uniqueRuleIds.length,
+        searchFilters: args,
+        foundIds: uniqueRuleIds
+      }
+    }));
+    return {
+      status: apiRoute.ApiEndpointResponseStatus.SUCCESS,
+      data: {
+        ruleIds: uniqueRuleIds
+      }
+    };
+  }
+}
+exports.FindRuleIdsEndpoint = FindRuleIdsEndpoint;
+exports.ruleIdsResponse = ruleIdsResponse;

package/dist/cjs/api/read/getMissingIds.cjs ADDED Viewed

@@ -0,0 +1,41 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+const zod = require("zod");
+const missingIdsResponse = zod.z.object({
+  ids: zod.z.string().array()
+});
+class GetMissingIdsEndpoint {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+    return zod.z.string().array();
+  }
+  async processRequest(args) {
+    const missingIds = await this.accessRulesStorage.getMissingRuleIds(args);
+    this.logger.info(() => ({
+      msg: "Endpoint checked missing ids",
+      data: {
+        idsToCheck: args.length,
+        missingIds: missingIds.length
+      }
+    }));
+    this.logger.debug(() => ({
+      msg: "Missing id details",
+      data: {
+        idsToCheck: args,
+        missingIds
+      }
+    }));
+    return {
+      status: apiRoute.ApiEndpointResponseStatus.SUCCESS,
+      data: {
+        ids: missingIds
+      }
+    };
+  }
+}
+exports.GetMissingIdsEndpoint = GetMissingIdsEndpoint;
+exports.missingIdsResponse = missingIdsResponse;

package/dist/cjs/api/ruleApiRoutes.cjs ADDED Viewed

@@ -0,0 +1,131 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const fetchRules = require("./read/fetchRules.cjs");
+const findRuleIds = require("./read/findRuleIds.cjs");
+const getMissingIds = require("./read/getMissingIds.cjs");
+const rehashRules = require("./write/rehashRules.cjs");
+const deleteAllRules = require("./delete/deleteAllRules.cjs");
+const deleteRuleGroups = require("./delete/deleteRuleGroups.cjs");
+const deleteRules = require("./delete/deleteRules.cjs");
+const insertRules = require("./write/insertRules.cjs");
+var accessRuleApiPaths = /* @__PURE__ */ ((accessRuleApiPaths2) => {
+  accessRuleApiPaths2["DELETE_ALL"] = "/v1/prosopo/user-access-policy/rules/delete-all";
+  accessRuleApiPaths2["DELETE_GROUPS"] = "/v1/prosopo/user-access-policy/rules/delete-groups";
+  accessRuleApiPaths2["DELETE_MANY"] = "/v1/prosopo/user-access-policy/rules/delete-many";
+  accessRuleApiPaths2["FETCH_MANY"] = "/v1/prosopo/user-access-policy/rules/fetch-many";
+  accessRuleApiPaths2["FIND_IDS"] = "/v1/prosopo/user-access-policy/rules/find-ids";
+  accessRuleApiPaths2["GET_MISSING_IDS"] = "/v1/prosopo/user-access-policy/rules/get-missing-ids";
+  accessRuleApiPaths2["INSERT_MANY"] = "/v1/prosopo/user-access-policy/rules/insert-many";
+  accessRuleApiPaths2["REHASH_ALL"] = "/v1/prosopo/user-access-policy/rules/rehash-all";
+  return accessRuleApiPaths2;
+})(accessRuleApiPaths || {});
+class AccessRuleApiRoutes {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRoutes() {
+    return {
+      ...this.makeDeleteEndpoints(),
+      ...this.makeReadEndpoints(),
+      ...this.makeWriteEndpoints()
+    };
+  }
+  makeDeleteEndpoints() {
+    return {
+      [
+        "/v1/prosopo/user-access-policy/rules/delete-all"
+        /* DELETE_ALL */
+      ]: new deleteAllRules.DeleteAllRulesEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      ),
+      [
+        "/v1/prosopo/user-access-policy/rules/delete-groups"
+        /* DELETE_GROUPS */
+      ]: new deleteRuleGroups.DeleteRuleGroupsEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      ),
+      [
+        "/v1/prosopo/user-access-policy/rules/delete-many"
+        /* DELETE_MANY */
+      ]: new deleteRules.DeleteRulesEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      )
+    };
+  }
+  makeReadEndpoints() {
+    return {
+      [
+        "/v1/prosopo/user-access-policy/rules/fetch-many"
+        /* FETCH_MANY */
+      ]: new fetchRules.FetchRulesEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      ),
+      [
+        "/v1/prosopo/user-access-policy/rules/find-ids"
+        /* FIND_IDS */
+      ]: new findRuleIds.FindRuleIdsEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      ),
+      [
+        "/v1/prosopo/user-access-policy/rules/get-missing-ids"
+        /* GET_MISSING_IDS */
+      ]: new getMissingIds.GetMissingIdsEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      )
+    };
+  }
+  makeWriteEndpoints() {
+    return {
+      [
+        "/v1/prosopo/user-access-policy/rules/insert-many"
+        /* INSERT_MANY */
+      ]: new insertRules.InsertRulesEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      ),
+      [
+        "/v1/prosopo/user-access-policy/rules/rehash-all"
+        /* REHASH_ALL */
+      ]: new rehashRules.RehashRulesEndpoint(
+        this.accessRulesStorage,
+        this.logger
+      )
+    };
+  }
+}
+const getExpressApiRuleRateLimits = () => {
+  const defaults = {
+    limit: 5,
+    windowSeconds: 10
+  };
+  const defaultWindowMs = defaults.windowSeconds * 1e3;
+  const rateLimitEntries = Object.entries(accessRuleApiPaths).map(
+    ([endpointName, endpointPath]) => [
+      endpointPath,
+      {
+        windowMs: getIntEnvironmentVariable(
+          `PROSOPO_USER_ACCESS_POLICY_RULE_${endpointName}_WINDOW`
+        ) || defaultWindowMs,
+        limit: getIntEnvironmentVariable(
+          `PROSOPO_USER_ACCESS_POLICY_RULE_${endpointName}_LIMIT`
+        ) || defaults.limit
+      }
+    ]
+  );
+  return Object.fromEntries(rateLimitEntries);
+};
+const getIntEnvironmentVariable = (variableName) => {
+  const variableValue = process.env[variableName];
+  const numericValue = variableValue ? Number.parseInt(variableValue) : Number.NaN;
+  return Number.isInteger(numericValue) ? numericValue : void 0;
+};
+exports.AccessRuleApiRoutes = AccessRuleApiRoutes;
+exports.accessRuleApiPaths = accessRuleApiPaths;
+exports.getExpressApiRuleRateLimits = getExpressApiRuleRateLimits;

package/dist/cjs/api/rulesApiClient.cjs ADDED Viewed

@@ -0,0 +1,93 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const api = require("@prosopo/api");
+const fetchRules = require("./read/fetchRules.cjs");
+const findRuleIds = require("./read/findRuleIds.cjs");
+const getMissingIds = require("./read/getMissingIds.cjs");
+const ruleApiRoutes = require("./ruleApiRoutes.cjs");
+class AccessRulesApiClient extends api.ApiClient {
+  //// delete
+  deleteMany(filters, timestamp, signature) {
+    return this.post(
+      ruleApiRoutes.accessRuleApiPaths.DELETE_MANY,
+      filters,
+      this.getAuthHeaders(timestamp, signature)
+    );
+  }
+  deleteGroups(siteGroups, timestamp, signature) {
+    return this.post(
+      ruleApiRoutes.accessRuleApiPaths.DELETE_GROUPS,
+      siteGroups,
+      this.getAuthHeaders(timestamp, signature)
+    );
+  }
+  deleteAll(timestamp, signature) {
+    return this.post(
+      ruleApiRoutes.accessRuleApiPaths.DELETE_ALL,
+      {},
+      this.getAuthHeaders(timestamp, signature)
+    );
+  }
+  //// read
+  async getMissingIds(idsToCheck, timestamp, signature) {
+    const endpointResponse = await this.post(
+      ruleApiRoutes.accessRuleApiPaths.GET_MISSING_IDS,
+      idsToCheck,
+      this.getAuthHeaders(timestamp, signature)
+    );
+    const parsedData = getMissingIds.missingIdsResponse.safeParse(endpointResponse.data);
+    return {
+      ...endpointResponse,
+      data: parsedData.success ? parsedData.data : void 0
+    };
+  }
+  async fetchMany(fetchOptions, timestamp, signature) {
+    const endpointResponse = await this.post(
+      ruleApiRoutes.accessRuleApiPaths.FETCH_MANY,
+      fetchOptions,
+      this.getAuthHeaders(timestamp, signature)
+    );
+    const parsedData = fetchRules.fetchRulesResponse.safeParse(endpointResponse.data);
+    return {
+      ...endpointResponse,
+      data: parsedData.success ? parsedData.data : void 0
+    };
+  }
+  async findIds(filters, timestamp, signature) {
+    const endpointResponse = await this.post(
+      ruleApiRoutes.accessRuleApiPaths.FIND_IDS,
+      filters,
+      this.getAuthHeaders(timestamp, signature)
+    );
+    const parsedData = findRuleIds.ruleIdsResponse.safeParse(endpointResponse.data);
+    return {
+      ...endpointResponse,
+      data: parsedData.success ? parsedData.data : void 0
+    };
+  }
+  //// write
+  async rehashAll(timestamp, signature) {
+    return this.post(
+      ruleApiRoutes.accessRuleApiPaths.REHASH_ALL,
+      {},
+      this.getAuthHeaders(timestamp, signature)
+    );
+  }
+  insertMany(ruleGroups, timestamp, signature) {
+    return this.post(
+      ruleApiRoutes.accessRuleApiPaths.INSERT_MANY,
+      ruleGroups,
+      this.getAuthHeaders(timestamp, signature)
+    );
+  }
+  getAuthHeaders(timestamp, signature) {
+    return {
+      headers: {
+        "Prosopo-Site-Key": this.account,
+        timestamp,
+        signature
+      }
+    };
+  }
+}
+exports.AccessRulesApiClient = AccessRulesApiClient;

package/dist/cjs/api/write/.export.cjs ADDED Viewed

	@@ -0,0 +1 @@
1	+ "use strict";

package/dist/cjs/api/write/insertRules.cjs ADDED Viewed

@@ -0,0 +1,102 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+const common = require("@prosopo/common");
+const zod = require("zod");
+const policyInput = require("../../ruleInput/policyInput.cjs");
+const userScopeInput = require("../../ruleInput/userScopeInput.cjs");
+class InsertRulesEndpoint {
+  constructor(accessRulesWriter, logger) {
+    this.accessRulesWriter = accessRulesWriter;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+    return zod.z.array(
+      zod.z.object({
+        accessPolicy: policyInput.accessPolicyInput,
+        policyScopes: zod.z.array(policyInput.policyScopeInput).optional(),
+        groupId: zod.z.string().optional(),
+        userScopes: zod.z.array(userScopeInput.userScopeInput),
+        expiresUnixTimestamp: zod.z.number().optional()
+      })
+    );
+  }
+  async processRequest(args) {
+    const timeoutPromise = new Promise((resolve) => {
+      setTimeout(() => {
+        resolve({
+          status: apiRoute.ApiEndpointResponseStatus.PROCESSING
+        });
+      }, 5e3);
+    });
+    const userScopesCount = args.reduce(
+      (userScopesCount2, group) => userScopesCount2 + group.userScopes.length,
+      0
+    );
+    const createRulesPromise = this.createRuleGroups(args).then((insertedIds) => {
+      this.logger.info(() => ({
+        msg: "Endpoint inserted access rules",
+        data: {
+          userScopesCount,
+          insertedCount: insertedIds.length,
+          uniqueIdsCount: new Set(insertedIds).size
+        }
+      }));
+      this.logger.debug(() => ({
+        msg: "Inserted access rules details",
+        data: {
+          insertedIds,
+          input: args
+        }
+      }));
+      return {
+        status: apiRoute.ApiEndpointResponseStatus.SUCCESS
+      };
+    }).catch((error) => {
+      if (common.LogLevel.enum.debug === this.logger.getLogLevel()) {
+        this.logger.error(() => ({
+          err: error,
+          data: { args },
+          msg: "Failed to insert access rules"
+        }));
+      }
+      return {
+        status: apiRoute.ApiEndpointResponseStatus.FAIL
+      };
+    });
+    return Promise.race([timeoutPromise, createRulesPromise]);
+  }
+  async createRuleGroups(groups) {
+    const ruleIdPromises = groups.map((group) => this.createRulesGroup(group));
+    const ruleIdSets = await Promise.all(ruleIdPromises);
+    return ruleIdSets.flat();
+  }
+  async createRulesGroup(group) {
+    const ruleEntries = [];
+    const policyScopes = group.policyScopes || [];
+    for (const userScope of group.userScopes) {
+      const ruleBase = {
+        ...group.accessPolicy,
+        ...userScope,
+        ...group.groupId ? { groupId: group.groupId } : {}
+      };
+      if (policyScopes.length > 0) {
+        for (const policyScope of policyScopes) {
+          ruleEntries.push({
+            rule: {
+              ...ruleBase,
+              ...policyScope
+            }
+          });
+        }
+      } else {
+        ruleEntries.push({
+          rule: ruleBase,
+          expiresUnixTimestamp: group.expiresUnixTimestamp
+        });
+      }
+    }
+    return this.accessRulesWriter.insertRules(ruleEntries);
+  }
+}
+exports.InsertRulesEndpoint = InsertRulesEndpoint;

package/dist/cjs/api/write/rehashRules.cjs ADDED Viewed

@@ -0,0 +1,57 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const apiRoute = require("@prosopo/api-route");
+class RehashRulesEndpoint {
+  constructor(accessRulesStorage, logger) {
+    this.accessRulesStorage = accessRulesStorage;
+    this.logger = logger;
+  }
+  getRequestArgsSchema() {
+  }
+  async processRequest() {
+    await this.accessRulesStorage.fetchAllRuleIds(async (ruleIds) => {
+      this.logger.info(() => ({
+        msg: "Fetched rule ids batch",
+        data: {
+          count: ruleIds.length,
+          ruleIds
+        }
+      }));
+      const ruleEntries = await this.accessRulesStorage.fetchRules(ruleIds);
+      this.logger.info(() => ({
+        msg: "Fetched rules",
+        data: {
+          count: ruleEntries.length
+        }
+      }));
+      if (ruleEntries.length !== ruleIds.length) {
+        this.logger.warn(() => ({
+          msg: "Fetched rules count is not equal to the requested count",
+          data: {
+            fetchedCount: ruleEntries.length,
+            requestedCount: ruleIds.length
+          }
+        }));
+      }
+      await this.accessRulesStorage.deleteRules(ruleIds);
+      this.logger.info(() => ({
+        msg: "Deleted rules",
+        data: {
+          count: ruleIds.length
+        }
+      }));
+      await this.accessRulesStorage.insertRules(ruleEntries);
+      this.logger.info(() => ({
+        msg: "Inserted rules",
+        data: {
+          count: ruleEntries.length
+        }
+      }));
+    });
+    return {
+      status: apiRoute.ApiEndpointResponseStatus.SUCCESS,
+      data: {}
+    };
+  }
+}
+exports.RehashRulesEndpoint = RehashRulesEndpoint;

package/dist/cjs/index.cjs CHANGED Viewed

@@ -2,6 +2,7 @@
 Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
 const accessPolicy = require("./accessPolicy.cjs");
 const accessPolicyResolver = require("./accessPolicyResolver.cjs");
+const accessRules = require("./accessRules.cjs");
 const accessRuleApiRoutes = require("./api/accessRuleApiRoutes.cjs");
 const deleteAllRulesEndpoint = require("./api/deleteAllRulesEndpoint.cjs");
 const deleteRulesEndpoint = require("./api/deleteRulesEndpoint.cjs");
@@ -17,6 +18,7 @@ exports.accessRuleSchemaExtended = accessPolicy.accessRuleSchemaExtended;
 exports.policyScopeSchema = accessPolicy.policyScopeSchema;
 exports.userScopeInputSchema = accessPolicy.userScopeInputSchema;
 exports.ScopeMatch = accessPolicyResolver.ScopeMatch;
+exports.accessRuleSchema = accessRules.accessRuleSchema;
 exports.accessRuleApiPaths = accessRuleApiRoutes.accessRuleApiPaths;
 exports.getExpressApiRuleRateLimits = accessRuleApiRoutes.getExpressApiRuleRateLimits;
 exports.deleteAllRulesEndpointSchema = deleteAllRulesEndpoint.deleteAllRulesEndpointSchema;

package/dist/cjs/mongoose/.export.cjs ADDED Viewed

@@ -0,0 +1,4 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const mongooseRuleSchema = require("./mongooseRuleSchema.cjs");
+exports.accessRuleMongooseSchema = mongooseRuleSchema.accessRuleMongooseSchema;

package/dist/cjs/mongoose/mongooseRuleSchema.cjs ADDED Viewed

@@ -0,0 +1,36 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const userAttributesSchema = {
+  userId: { type: String, required: false },
+  ja4Hash: { type: String, required: false },
+  userAgent: { type: String, required: false },
+  headersHash: { type: String, required: false }
+};
+const userIpSchema = {
+  ip: { type: String, required: false },
+  ipMask: { type: String, required: false }
+};
+const userScopeSchema = {
+  ...userAttributesSchema,
+  ...userIpSchema
+};
+const policyScopeSchema = {
+  clientId: { type: String, required: false }
+};
+const accessPolicySchema = {
+  type: { type: String, required: true },
+  captchaType: { type: String, required: false },
+  description: { type: String, required: false },
+  solvedImagesCount: { type: Number, required: false },
+  imageThreshold: { type: Number, required: false },
+  powDifficulty: { type: Number, required: false },
+  unsolvedImagesCount: { type: Number, required: false },
+  frictionlessScore: { type: Number, required: false }
+};
+const accessRuleMongooseSchema = {
+  ...accessPolicySchema,
+  ...policyScopeSchema,
+  ...userScopeSchema,
+  ruleGroupId: { type: String, required: false }
+};
+exports.accessRuleMongooseSchema = accessRuleMongooseSchema;

package/dist/cjs/redis/.export.cjs ADDED Viewed

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, Symbol.toStringTag, { value: "Module" });
+const redisRulesStorage = require("./redisRulesStorage.cjs");
+const redisRuleIndex = require("./redisRuleIndex.cjs");
+exports.createRedisAccessRulesStorage = redisRulesStorage.createRedisAccessRulesStorage;
+exports.accessRulesRedisIndex = redisRuleIndex.accessRulesRedisIndex;