@prosopo/user-access-policy 3.5.32 → 3.7.11

package/dist/ruleInput/ruleInput.d.ts

@@ -0,0 +1,163 @@
+import { type ZodType, z } from "zod";
+import type { AccessPolicy, AccessRule, PolicyScope } from "#policy/rule.js";
+import { type AccessRulesFilter, FilterScopeMatch } from "#policy/rulesStorage.js";
+import { type UserScopeInput } from "./userScopeInput.js";
+type RuleGroupInput = {
+    groupId?: string;
+    ruleGroupId?: string;
+};
+export type AccessRuleInput = AccessPolicy & PolicyScope & UserScopeInput & RuleGroupInput;
+export declare const accessRuleInput: ZodType<AccessRule>;
+export declare const ruleEntryInput: z.ZodObject<{
+    rule: ZodType<AccessRule, z.ZodTypeDef, AccessRule>;
+    expiresUnixTimestamp: z.ZodOptional<z.ZodNumber>;
+}, "strip", z.ZodTypeAny, {
+    rule: AccessPolicy & PolicyScope & import("#policy/rule.js").UserAttributes & import("#policy/rule.js").UserIp & {
+        groupId?: string;
+    };
+    expiresUnixTimestamp?: number | undefined;
+}, {
+    rule: AccessPolicy & PolicyScope & import("#policy/rule.js").UserAttributes & import("#policy/rule.js").UserIp & {
+        groupId?: string;
+    };
+    expiresUnixTimestamp?: number | undefined;
+}>;
+export type AccessRulesFilterInput = AccessRulesFilter & {
+    userScope?: UserScopeInput;
+    policyScopes?: PolicyScope[];
+};
+export declare const accessRulesFilterInput: z.ZodObject<{
+    policyScope: z.ZodOptional<z.ZodObject<{
+        clientId: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        clientId?: string | undefined;
+    }, {
+        clientId?: string | undefined;
+    }>>;
+    policyScopes: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        clientId: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        clientId?: string | undefined;
+    }, {
+        clientId?: string | undefined;
+    }>, "many">>;
+    policyScopeMatch: z.ZodDefault<z.ZodNativeEnum<typeof FilterScopeMatch>>;
+    userScope: z.ZodOptional<z.ZodEffects<z.ZodIntersection<z.ZodIntersection<z.ZodObject<{}, "strip", z.ZodTypeAny, {}, {}>, z.ZodEffects<z.ZodObject<{
+        ip: z.ZodOptional<z.ZodString>;
+        ipMask: z.ZodOptional<z.ZodString>;
+        numericIp: z.ZodOptional<z.ZodBigInt>;
+        numericIpMaskMin: z.ZodOptional<z.ZodBigInt>;
+        numericIpMaskMax: z.ZodOptional<z.ZodBigInt>;
+    }, "strip", z.ZodTypeAny, {
+        ip?: string | undefined;
+        ipMask?: string | undefined;
+        numericIp?: bigint | undefined;
+        numericIpMaskMin?: bigint | undefined;
+        numericIpMaskMax?: bigint | undefined;
+    }, {
+        ip?: string | undefined;
+        ipMask?: string | undefined;
+        numericIp?: bigint | undefined;
+        numericIpMaskMin?: bigint | undefined;
+        numericIpMaskMax?: bigint | undefined;
+    }>, import("#policy/rule.js").UserIp, {
+        ip?: string | undefined;
+        ipMask?: string | undefined;
+        numericIp?: bigint | undefined;
+        numericIpMaskMin?: bigint | undefined;
+        numericIpMaskMax?: bigint | undefined;
+    }>>, z.ZodEffects<z.ZodObject<{
+        userAgent: z.ZodOptional<z.ZodString>;
+        userId: z.ZodOptional<z.ZodString>;
+        ja4Hash: z.ZodOptional<z.ZodString>;
+        headersHash: z.ZodOptional<z.ZodString>;
+        userAgentHash: z.ZodOptional<z.ZodString>;
+        headHash: z.ZodOptional<z.ZodString>;
+        coords: z.ZodOptional<z.ZodString>;
+        countryCode: z.ZodOptional<z.ZodString>;
+    }, "strip", z.ZodTypeAny, {
+        userAgentHash?: string | undefined;
+        userId?: string | undefined;
+        ja4Hash?: string | undefined;
+        headersHash?: string | undefined;
+        headHash?: string | undefined;
+        coords?: string | undefined;
+        countryCode?: string | undefined;
+        userAgent?: string | undefined;
+    }, {
+        userAgentHash?: string | undefined;
+        userId?: string | undefined;
+        ja4Hash?: string | undefined;
+        headersHash?: string | undefined;
+        headHash?: string | undefined;
+        coords?: string | undefined;
+        countryCode?: string | undefined;
+        userAgent?: string | undefined;
+    }>, import("#policy/rule.js").UserAttributes, {
+        userAgentHash?: string | undefined;
+        userId?: string | undefined;
+        ja4Hash?: string | undefined;
+        headersHash?: string | undefined;
+        headHash?: string | undefined;
+        coords?: string | undefined;
+        countryCode?: string | undefined;
+        userAgent?: string | undefined;
+    }>>, UserScopeInput, {} & {
+        ip?: string | undefined;
+        ipMask?: string | undefined;
+        numericIp?: bigint | undefined;
+        numericIpMaskMin?: bigint | undefined;
+        numericIpMaskMax?: bigint | undefined;
+    } & {
+        userAgentHash?: string | undefined;
+        userId?: string | undefined;
+        ja4Hash?: string | undefined;
+        headersHash?: string | undefined;
+        headHash?: string | undefined;
+        coords?: string | undefined;
+        countryCode?: string | undefined;
+        userAgent?: string | undefined;
+    }>>;
+    userScopeMatch: z.ZodDefault<z.ZodNativeEnum<typeof FilterScopeMatch>>;
+    groupId: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    policyScopeMatch: FilterScopeMatch;
+    userScopeMatch: FilterScopeMatch;
+    userScope?: UserScopeInput | undefined;
+    groupId?: string | undefined;
+    policyScope?: {
+        clientId?: string | undefined;
+    } | undefined;
+    policyScopes?: {
+        clientId?: string | undefined;
+    }[] | undefined;
+}, {
+    userScope?: ({} & {
+        ip?: string | undefined;
+        ipMask?: string | undefined;
+        numericIp?: bigint | undefined;
+        numericIpMaskMin?: bigint | undefined;
+        numericIpMaskMax?: bigint | undefined;
+    } & {
+        userAgentHash?: string | undefined;
+        userId?: string | undefined;
+        ja4Hash?: string | undefined;
+        headersHash?: string | undefined;
+        headHash?: string | undefined;
+        coords?: string | undefined;
+        countryCode?: string | undefined;
+        userAgent?: string | undefined;
+    }) | undefined;
+    groupId?: string | undefined;
+    policyScope?: {
+        clientId?: string | undefined;
+    } | undefined;
+    policyScopeMatch?: FilterScopeMatch | undefined;
+    userScopeMatch?: FilterScopeMatch | undefined;
+    policyScopes?: {
+        clientId?: string | undefined;
+    }[] | undefined;
+}>;
+export declare const getAccessRuleFiltersFromInput: (filterInput: AccessRulesFilterInput) => AccessRulesFilter[];
+export {};
+//# sourceMappingURL=ruleInput.d.ts.map

package/dist/ruleInput/ruleInput.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleInput.d.ts","sourceRoot":"","sources":["../../src/ruleInput/ruleInput.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,KAAK,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACtC,OAAO,KAAK,EAAE,YAAY,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,iBAAiB,CAAC;AAC7E,OAAO,EAEN,KAAK,iBAAiB,EACtB,gBAAgB,EAChB,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAE,KAAK,cAAc,EAAkB,MAAM,qBAAqB,CAAC;AAE1E,KAAK,cAAc,GAAG;IACrB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG,YAAY,GACzC,WAAW,GACX,cAAc,GACd,cAAc,CAAC;AAiBhB,eAAO,MAAM,eAAe,EAAE,OAAO,CAAC,UAAU,CAQkB,CAAC;AAEnE,eAAO,MAAM,cAAc;;;;;;;;;;;;;EAG6C,CAAC;AAEzE,MAAM,MAAM,sBAAsB,GAAG,iBAAiB,GAAG;IACxD,SAAS,CAAC,EAAE,cAAc,CAAC;IAC3B,YAAY,CAAC,EAAE,WAAW,EAAE,CAAC;CAC7B,CAAC;AAEF,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAWmD,CAAC;AAEvF,eAAO,MAAM,6BAA6B,gBAC5B,sBAAsB,KACjC,iBAAiB,EAiBnB,CAAC"}

package/dist/ruleInput/ruleInput.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleInput.js","sourceRoot":"","sources":["../../src/ruleInput/ruleInput.ts"],"names":[],"mappings":"AAeA,OAAO,EAAgB,CAAC,EAAE,MAAM,KAAK,CAAC;AAEtC,OAAO,EAGN,gBAAgB,GAChB,MAAM,yBAAyB,CAAC;AACjC,OAAO,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AACvE,OAAO,EAAuB,cAAc,EAAE,MAAM,qBAAqB,CAAC;AAY1E,MAAM,cAAc,GAAG,CAAC;KACtB,MAAM,CAAC;IACP,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACP,CAAC;KACnC,SAAS,CAAC,CAAC,cAA8B,EAAE,EAAE;IAC7C,MAAM,EAAE,WAAW,EAAE,GAAG,SAAS,EAAE,GAAG,cAAc,CAAC;IAErD,IAAI,QAAQ,KAAK,OAAO,WAAW,EAAE,CAAC;QACrC,SAAS,CAAC,OAAO,GAAG,WAAW,CAAC;IACjC,CAAC;IAED,OAAO,SAAS,CAAC;AAClB,CAAC,CAAC,CAAC;AAEJ,MAAM,CAAC,MAAM,eAAe,GAAwB,CAAC;KACnD,MAAM,CAAC;IACP,GAAG,iBAAiB,CAAC,KAAK;IAC1B,GAAG,gBAAgB,CAAC,KAAK;CACzB,CAAC;KACD,GAAG,CAAC,cAAc,CAAC;KACnB,GAAG,CAAC,cAAc,CAAC;KAEnB,SAAS,CAAC,CAAC,SAA0B,EAAc,EAAE,CAAC,SAAS,CAAC,CAAC;AAEnE,MAAM,CAAC,MAAM,cAAc,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,IAAI,EAAE,eAAe;IACrB,oBAAoB,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACf,CAAoC,CAAC;AAOzE,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9C,WAAW,EAAE,gBAAgB,CAAC,QAAQ,EAAE;IACxC,YAAY,EAAE,CAAC,CAAC,KAAK,CAAC,gBAAgB,CAAC,CAAC,QAAQ,EAAE;IAClD,gBAAgB,EAAE,CAAC;SACjB,UAAU,CAAC,gBAAgB,CAAC;SAC5B,OAAO,CAAC,gBAAgB,CAAC,KAAK,CAAC;IACjC,SAAS,EAAE,cAAc,CAAC,QAAQ,EAAE;IACpC,cAAc,EAAE,CAAC;SACf,UAAU,CAAC,gBAAgB,CAAC;SAC5B,OAAO,CAAC,gBAAgB,CAAC,KAAK,CAAC;IACjC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACY,CAA2C,CAAC;AAEvF,MAAM,CAAC,MAAM,6BAA6B,GAAG,CAC5C,WAAmC,EACb,EAAE;IACxB,MAAM,EAAE,YAAY,EAAE,WAAW,EAAE,GAAG,UAAU,EAAE,GAAG,WAAW,CAAC;IAEjE,MAAM,eAAe,GAAG,YAAY,IAAI,EAAE,CAAC;IAE3C,IAAI,WAAW,EAAE,CAAC;QACjB,eAAe,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IACnC,CAAC;IAED,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChC,OAAO,eAAe,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;YAC5C,GAAG,UAAU;YACb,WAAW;SACX,CAAC,CAAC,CAAC;IACL,CAAC;IAED,OAAO,CAAC,UAAU,CAAC,CAAC;AACrB,CAAC,CAAC"}

package/dist/ruleInput/userScopeInput.d.ts

@@ -0,0 +1,117 @@
+import { z } from "zod";
+import type { UserAttributes, UserIp } from "#policy/rule.js";
+import type { UserAttributesRecord, UserIpRecord } from "#policy/ruleRecord.js";
+export type UserAttributesInput = UserAttributes & UserAttributesRecord;
+export type UserIpInput = UserIp & UserIpRecord;
+export type UserScopeInput = UserAttributesInput & UserIpInput;
+export declare const userScopeSchema: z.ZodObject<{
+    userId: z.ZodOptional<z.ZodString>;
+    ja4Hash: z.ZodOptional<z.ZodString>;
+    headersHash: z.ZodOptional<z.ZodString>;
+    userAgentHash: z.ZodOptional<z.ZodString>;
+    headHash: z.ZodOptional<z.ZodString>;
+    coords: z.ZodOptional<z.ZodString>;
+    countryCode: z.ZodOptional<z.ZodString>;
+    numericIp: z.ZodOptional<z.ZodBigInt>;
+    numericIpMaskMin: z.ZodOptional<z.ZodBigInt>;
+    numericIpMaskMax: z.ZodOptional<z.ZodBigInt>;
+}, "strip", z.ZodTypeAny, {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+}, {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+}>;
+export declare const userScopeInput: z.ZodEffects<z.ZodIntersection<z.ZodIntersection<z.ZodObject<{}, "strip", z.ZodTypeAny, {}, {}>, z.ZodEffects<z.ZodObject<{
+    ip: z.ZodOptional<z.ZodString>;
+    ipMask: z.ZodOptional<z.ZodString>;
+    numericIp: z.ZodOptional<z.ZodBigInt>;
+    numericIpMaskMin: z.ZodOptional<z.ZodBigInt>;
+    numericIpMaskMax: z.ZodOptional<z.ZodBigInt>;
+}, "strip", z.ZodTypeAny, {
+    ip?: string | undefined;
+    ipMask?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+}, {
+    ip?: string | undefined;
+    ipMask?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+}>, UserIp, {
+    ip?: string | undefined;
+    ipMask?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+}>>, z.ZodEffects<z.ZodObject<{
+    userAgent: z.ZodOptional<z.ZodString>;
+    userId: z.ZodOptional<z.ZodString>;
+    ja4Hash: z.ZodOptional<z.ZodString>;
+    headersHash: z.ZodOptional<z.ZodString>;
+    userAgentHash: z.ZodOptional<z.ZodString>;
+    headHash: z.ZodOptional<z.ZodString>;
+    coords: z.ZodOptional<z.ZodString>;
+    countryCode: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    userAgent?: string | undefined;
+}, {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    userAgent?: string | undefined;
+}>, UserAttributes, {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    userAgent?: string | undefined;
+}>>, UserScopeInput, {} & {
+    ip?: string | undefined;
+    ipMask?: string | undefined;
+    numericIp?: bigint | undefined;
+    numericIpMaskMin?: bigint | undefined;
+    numericIpMaskMax?: bigint | undefined;
+} & {
+    userAgentHash?: string | undefined;
+    userId?: string | undefined;
+    ja4Hash?: string | undefined;
+    headersHash?: string | undefined;
+    headHash?: string | undefined;
+    coords?: string | undefined;
+    countryCode?: string | undefined;
+    userAgent?: string | undefined;
+}>;
+//# sourceMappingURL=userScopeInput.d.ts.map

package/dist/ruleInput/userScopeInput.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"userScopeInput.d.ts","sourceRoot":"","sources":["../../src/ruleInput/userScopeInput.ts"],"names":[],"mappings":"AAkBA,OAAO,EAAgB,CAAC,EAAE,MAAM,KAAK,CAAC;AACtC,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,EAAa,MAAM,iBAAiB,CAAC;AACzE,OAAO,KAAK,EAAE,oBAAoB,EAAE,YAAY,EAAE,MAAM,uBAAuB,CAAC;AAEhF,MAAM,MAAM,mBAAmB,GAAG,cAAc,GAAG,oBAAoB,CAAC;AAgCxE,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,YAAY,CAAC;AAsChD,MAAM,MAAM,cAAc,GAAG,mBAAmB,GAAG,WAAW,CAAC;AAE/D,eAAO,MAAM,eAAe;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAGgC,CAAC;AAE7D,eAAO,MAAM,cAAc;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAQzB,CAAC"}

package/dist/ruleInput/userScopeInput.js

@@ -7,7 +7,10 @@ const userAttributesSchema = z.object({
   userId: z.coerce.string().optional(),
   ja4Hash: z.coerce.string().optional(),
   headersHash: z.coerce.string().optional(),
-  userAgentHash: z.coerce.string().optional()
+  userAgentHash: z.coerce.string().optional(),
+  headHash: z.coerce.string().optional(),
+  coords: z.coerce.string().optional(),
+  countryCode: z.coerce.string().optional()
 });
 const userAttributesInput = z.object({
   ...userAttributesSchema.shape,

package/dist/ruleInput/userScopeInput.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"userScopeInput.js","sourceRoot":"","sources":["../../src/ruleInput/userScopeInput.ts"],"names":[],"mappings":"AAcA,OAAO,MAAM,MAAM,aAAa,CAAC;AAEjC,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AACtC,OAAO,EAAgB,CAAC,EAAE,MAAM,KAAK,CAAC;AAMtC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAErC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACpC,OAAO,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACrC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACzC,aAAa,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3C,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACtC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACpC,WAAW,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACP,CAAmC,CAAC;AAEvE,MAAM,mBAAmB,GAAG,CAAC;KAC3B,MAAM,CAAC;IACP,GAAG,oBAAoB,CAAC,KAAK;IAC7B,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACA,CAAC;KACxC,SAAS,CAAC,CAAC,mBAAwC,EAAkB,EAAE;IAEvE,MAAM,EAAE,SAAS,EAAE,GAAG,SAAS,EAAE,GAAG,mBAAmB,CAAC;IAExD,IAAI,QAAQ,KAAK,OAAO,SAAS,EAAE,CAAC;QACnC,SAAS,CAAC,aAAa,GAAG,aAAa,CAAC,SAAS,CAAC,CAAC;IACpD,CAAC;IAED,OAAO,SAAS,CAAC;AAClB,CAAC,CAAC,CAAC;AAEJ,MAAM,aAAa,GAAG,CAAC,SAAiB,EAAU,EAAE,CACnD,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAI7D,MAAM,YAAY,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7B,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACvC,gBAAgB,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9C,gBAAgB,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACpB,CAA2B,CAAC;AAEvD,MAAM,WAAW,GAAG,CAAC;KACnB,MAAM,CAAC;IACP,GAAG,YAAY,CAAC,KAAK;IACrB,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACzB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACE,CAAC;KAChC,SAAS,CAAC,CAAC,WAAwB,EAAU,EAAE;IAE/C,MAAM,EAAE,EAAE,EAAE,MAAM,EAAE,GAAG,aAAa,EAAE,GAAG,WAAW,CAAC;IAErD,IAAI,QAAQ,KAAK,OAAO,EAAE,EAAE,CAAC;QAC5B,aAAa,CAAC,SAAS,GAAG,YAAY,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;IACrD,CAAC;IAGD,IAAI,QAAQ,KAAK,OAAO,MAAM,EAAE,CAAC;QAGhC,MAAM,QAAQ,GAAG,IAAI,QAAQ,CAAC,MAAM,CAAC,CAAC;QAGtC,aAAa,CAAC,gBAAgB,GAAG,QAAQ,CAAC,YAAY,EAAE,CAAC,MAAM,EAAE,CAAC;QAGlE,aAAa,CAAC,gBAAgB,GAAG,QAAQ,CAAC,UAAU,EAAE,CAAC,MAAM,EAAE,CAAC;IACjE,CAAC;IAED,OAAO,aAAa,CAAC;AACtB,CAAC,CAAC,CAAC;AAIJ,MAAM,CAAC,MAAM,eAAe,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,GAAG,YAAY,CAAC,KAAK;IACrB,GAAG,oBAAoB,CAAC,KAAK;CACA,CAA8B,CAAC;AAE7D,MAAM,CAAC,MAAM,cAAc,GAAG,CAAC;KAC7B,MAAM,CAAC,EAAE,CAAC;KAEV,GAAG,CAAC,WAAW,CAAC;KAChB,GAAG,CAAC,mBAAmB,CAAC;KACxB,SAAS,CAET,CAAC,cAAc,EAAkB,EAAE,CAAC,cAAc,CAClD,CAAC"}

package/dist/ruleRecord.d.ts

@@ -0,0 +1,18 @@
+import type { AccessPolicy, PolicyScope, UserAttributes } from "#policy/rule.js";
+export type UserAttributesRecord = Omit<UserAttributes, "userAgentHash"> & {
+    userAgent?: string;
+};
+export declare const userAttributesRecordFields: ["userId", "ja4Hash", "headersHash", "userAgent", "headHash", "coords", "countryCode"];
+export type UserIpRecord = {
+    ip?: string;
+    ipMask?: string;
+};
+export declare const userIpRecordFields: ["ip", "ipMask"];
+export type UserScopeRecord = UserAttributesRecord & UserIpRecord;
+export declare const userScopeRecordFields: ["userId", "ja4Hash", "headersHash", "userAgent", "headHash", "coords", "countryCode", "ip", "ipMask"];
+export type UserScopeRecordField = (typeof userScopeRecordFields)[number];
+export type AccessRuleRecord = AccessPolicy & PolicyScope & UserScopeRecord & {
+    ruleGroupId?: string;
+};
+export declare const getUserScopeRecordFromAccessRuleRecord: (ruleRecord: AccessRuleRecord) => UserScopeRecord;
+//# sourceMappingURL=ruleRecord.d.ts.map

package/dist/ruleRecord.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleRecord.d.ts","sourceRoot":"","sources":["../src/ruleRecord.ts"],"names":[],"mappings":"AAcA,OAAO,KAAK,EACX,YAAY,EACZ,WAAW,EACX,cAAc,EACd,MAAM,iBAAiB,CAAC;AAEzB,MAAM,MAAM,oBAAoB,GAAG,IAAI,CAAC,cAAc,EAAE,eAAe,CAAC,GAAG;IAC1E,SAAS,CAAC,EAAE,MAAM,CAAC;CACnB,CAAC;AAEF,eAAO,MAAM,0BAA0B,wFAQY,CAAC;AAEpD,MAAM,MAAM,YAAY,GAAG;IAE1B,EAAE,CAAC,EAAE,MAAM,CAAC;IAEZ,MAAM,CAAC,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,eAAO,MAAM,kBAAkB,kBAGY,CAAC;AAE5C,MAAM,MAAM,eAAe,GAAG,oBAAoB,GAAG,YAAY,CAAC;AAElE,eAAO,MAAM,qBAAqB,wGAGY,CAAC;AAE/C,MAAM,MAAM,oBAAoB,GAAG,CAAC,OAAO,qBAAqB,CAAC,CAAC,MAAM,CAAC,CAAC;AAE1E,MAAM,MAAM,gBAAgB,GAAG,YAAY,GAC1C,WAAW,GACX,eAAe,GAAG;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACrB,CAAC;AAEH,eAAO,MAAM,sCAAsC,eACtC,gBAAgB,KAC1B,eAKD,CAAC"}

package/dist/ruleRecord.js

@@ -2,7 +2,10 @@ const userAttributesRecordFields = [
   "userId",
   "ja4Hash",
   "headersHash",
-  "userAgent"
+  "userAgent",
+  "headHash",
+  "coords",
+  "countryCode"
 ];
 const userIpRecordFields = [
   "ip",

package/dist/ruleRecord.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleRecord.js","sourceRoot":"","sources":["../src/ruleRecord.ts"],"names":[],"mappings":"AAwBA,MAAM,CAAC,MAAM,0BAA0B,GAAG;IACzC,QAAQ;IACR,SAAS;IACT,aAAa;IACb,WAAW;IACX,UAAU;IACV,QAAQ;IACR,aAAa;CACqC,CAAC;AASpD,MAAM,CAAC,MAAM,kBAAkB,GAAG;IACjC,IAAI;IACJ,QAAQ;CACkC,CAAC;AAI5C,MAAM,CAAC,MAAM,qBAAqB,GAAG;IACpC,GAAG,0BAA0B;IAC7B,GAAG,kBAAkB;CACwB,CAAC;AAU/C,MAAM,CAAC,MAAM,sCAAsC,GAAG,CACrD,UAA4B,EACV,EAAE,CACpB,MAAM,CAAC,WAAW,CACjB,qBAAqB;KACnB,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,KAAK,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC;KAC1C,MAAM,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,KAAK,KAAK,SAAS,CAAC,CAC5C,CAAC"}

package/dist/rulesStorage.d.ts

@@ -0,0 +1,30 @@
+import type { AccessRule, PolicyScope, UserScope } from "#policy/rule.js";
+export declare enum FilterScopeMatch {
+    Exact = "exact",
+    Greedy = "greedy"
+}
+export type AccessRulesFilter = {
+    policyScope?: PolicyScope;
+    policyScopeMatch?: FilterScopeMatch;
+    userScope?: UserScope;
+    userScopeMatch?: FilterScopeMatch;
+    groupId?: string;
+};
+export type AccessRuleEntry = {
+    rule: AccessRule;
+    expiresUnixTimestamp?: number;
+};
+export type AccessRulesReader = {
+    fetchRules(ruleIds: string[]): Promise<AccessRuleEntry[]>;
+    getMissingRuleIds(ruleIds: string[]): Promise<string[]>;
+    findRules(filter: AccessRulesFilter, matchingFieldsOnly?: boolean, skipEmptyUserScopes?: boolean): Promise<AccessRule[]>;
+    findRuleIds(filter: AccessRulesFilter, matchingFieldsOnly?: boolean): Promise<string[]>;
+    fetchAllRuleIds(batchHandler: (ruleIds: string[]) => Promise<void>): Promise<void>;
+};
+export type AccessRulesWriter = {
+    insertRules(ruleEntries: AccessRuleEntry[]): Promise<string[]>;
+    deleteRules(ruleIds: string[]): Promise<void>;
+    deleteAllRules(): Promise<number>;
+};
+export type AccessRulesStorage = AccessRulesReader & AccessRulesWriter;
+//# sourceMappingURL=rulesStorage.d.ts.map

package/dist/rulesStorage.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"rulesStorage.d.ts","sourceRoot":"","sources":["../src/rulesStorage.ts"],"names":[],"mappings":"AAcA,OAAO,KAAK,EAAE,UAAU,EAAE,WAAW,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAE1E,oBAAY,gBAAgB;IAC3B,KAAK,UAAU;IACf,MAAM,WAAW;CACjB;AAED,MAAM,MAAM,iBAAiB,GAAG;IAC/B,WAAW,CAAC,EAAE,WAAW,CAAC;IAK1B,gBAAgB,CAAC,EAAE,gBAAgB,CAAC;IACpC,SAAS,CAAC,EAAE,SAAS,CAAC;IAKtB,cAAc,CAAC,EAAE,gBAAgB,CAAC;IAClC,OAAO,CAAC,EAAE,MAAM,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,eAAe,GAAG;IAC7B,IAAI,EAAE,UAAU,CAAC;IACjB,oBAAoB,CAAC,EAAE,MAAM,CAAC;CAC9B,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC/B,UAAU,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,eAAe,EAAE,CAAC,CAAC;IAE1D,iBAAiB,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAExD,SAAS,CACR,MAAM,EAAE,iBAAiB,EACzB,kBAAkB,CAAC,EAAE,OAAO,EAC5B,mBAAmB,CAAC,EAAE,OAAO,GAC3B,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC;IAEzB,WAAW,CACV,MAAM,EAAE,iBAAiB,EACzB,kBAAkB,CAAC,EAAE,OAAO,GAC1B,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAErB,eAAe,CACd,YAAY,EAAE,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,OAAO,CAAC,IAAI,CAAC,GAChD,OAAO,CAAC,IAAI,CAAC,CAAC;CACjB,CAAC;AAEF,MAAM,MAAM,iBAAiB,GAAG;IAC/B,WAAW,CAAC,WAAW,EAAE,eAAe,EAAE,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;IAE/D,WAAW,CAAC,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC;IAE9C,cAAc,IAAI,OAAO,CAAC,MAAM,CAAC,CAAC;CAClC,CAAC;AAEF,MAAM,MAAM,kBAAkB,GAAG,iBAAiB,GAAG,iBAAiB,CAAC"}

package/dist/rulesStorage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rulesStorage.js","sourceRoot":"","sources":["../src/rulesStorage.ts"],"names":[],"mappings":"AAgBA,MAAM,CAAN,IAAY,gBAGX;AAHD,WAAY,gBAAgB;IAC3B,mCAAe,CAAA;IACf,qCAAiB,CAAA;AAClB,CAAC,EAHW,gBAAgB,KAAhB,gBAAgB,QAG3B"}

package/dist/tests/insertRulesEndpoint.unit.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=insertRulesEndpoint.unit.test.d.ts.map

package/dist/tests/insertRulesEndpoint.unit.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"insertRulesEndpoint.unit.test.d.ts","sourceRoot":"","sources":["../../src/tests/insertRulesEndpoint.unit.test.ts"],"names":[],"mappings":""}

package/dist/tests/insertRulesEndpoint.unit.test.js

@@ -0,0 +1,57 @@
+import { describe, expect, it, vi } from "vitest";
+import { InsertRulesEndpoint } from "#policy/api/write/insertRules.js";
+import { AccessPolicyType } from "#policy/rule.js";
+const makeMockLogger = () => ({
+    trace: vi.fn(),
+    debug: vi.fn(),
+    info: vi.fn(),
+    warn: vi.fn(),
+    error: vi.fn(),
+    fatal: vi.fn(),
+    log: vi.fn(),
+    setLogLevel: vi.fn(),
+    getLogLevel: vi.fn().mockReturnValue("info"),
+    with: vi.fn().mockReturnThis(),
+    getScope: vi.fn().mockReturnValue("test"),
+    getPretty: vi.fn().mockReturnValue(false),
+    setPretty: vi.fn(),
+    getPrintStack: vi.fn().mockReturnValue(false),
+    setPrintStack: vi.fn(),
+    getFormat: vi.fn().mockReturnValue("json"),
+    setFormat: vi.fn(),
+});
+const makeWriter = () => ({
+    insertRules: vi.fn().mockResolvedValue(["rule-1", "rule-2"]),
+    deleteRules: vi.fn().mockResolvedValue(undefined),
+    deleteAllRules: vi.fn().mockResolvedValue(0),
+});
+const sampleArgs = [
+    {
+        accessPolicy: { type: AccessPolicyType.Block },
+        userScopes: [{ userId: "user-1" }, { userId: "user-2" }],
+    },
+];
+describe("InsertRulesEndpoint logger selection", () => {
+    it("uses the per-request logger when one is provided to processRequest", async () => {
+        const ctorLogger = makeMockLogger();
+        const requestLogger = makeMockLogger();
+        const endpoint = new InsertRulesEndpoint(makeWriter(), ctorLogger);
+        await endpoint.processRequest(sampleArgs, requestLogger);
+        await new Promise((r) => setImmediate(r));
+        expect(requestLogger.info).toHaveBeenCalled();
+        const calls = requestLogger.info.mock.calls;
+        const msgs = calls.map(([fn]) => fn().msg);
+        expect(msgs).toContain("Endpoint inserted access rules");
+        expect(ctorLogger.info).not.toHaveBeenCalled();
+    });
+    it("falls back to the constructor logger when no request logger is provided", async () => {
+        const ctorLogger = makeMockLogger();
+        const endpoint = new InsertRulesEndpoint(makeWriter(), ctorLogger);
+        await endpoint.processRequest(sampleArgs);
+        await new Promise((r) => setImmediate(r));
+        expect(ctorLogger.info).toHaveBeenCalled();
+        const msgs = ctorLogger.info.mock.calls.map(([fn]) => fn().msg);
+        expect(msgs).toContain("Endpoint inserted access rules");
+    });
+});
+//# sourceMappingURL=insertRulesEndpoint.unit.test.js.map

package/dist/tests/insertRulesEndpoint.unit.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"insertRulesEndpoint.unit.test.js","sourceRoot":"","sources":["../../src/tests/insertRulesEndpoint.unit.test.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAClD,OAAO,EAAE,mBAAmB,EAAE,MAAM,kCAAkC,CAAC;AACvE,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AAGnD,MAAM,cAAc,GAAG,GAAW,EAAE,CACnC,CAAC;IACA,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;IACd,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;IACd,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE;IACb,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE;IACb,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;IACd,KAAK,EAAE,EAAE,CAAC,EAAE,EAAE;IACd,GAAG,EAAE,EAAE,CAAC,EAAE,EAAE;IACZ,WAAW,EAAE,EAAE,CAAC,EAAE,EAAE;IACpB,WAAW,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;IAC5C,IAAI,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,cAAc,EAAE;IAC9B,QAAQ,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;IACzC,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,KAAK,CAAC;IACzC,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;IAClB,aAAa,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,KAAK,CAAC;IAC7C,aAAa,EAAE,EAAE,CAAC,EAAE,EAAE;IACtB,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,MAAM,CAAC;IAC1C,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE;CAClB,CAAkB,CAAC;AAErB,MAAM,UAAU,GAAG,GAAsB,EAAE,CAAC,CAAC;IAC5C,WAAW,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC5D,WAAW,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,SAAS,CAAC;IACjD,cAAc,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,iBAAiB,CAAC,CAAC,CAAC;CAC5C,CAAC,CAAC;AAEH,MAAM,UAAU,GAAG;IAClB;QACC,YAAY,EAAE,EAAE,IAAI,EAAE,gBAAgB,CAAC,KAAK,EAAE;QAC9C,UAAU,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;KACxD;CACD,CAAC;AAEF,QAAQ,CAAC,sCAAsC,EAAE,GAAG,EAAE;IACrD,EAAE,CAAC,oEAAoE,EAAE,KAAK,IAAI,EAAE;QACnF,MAAM,UAAU,GAAG,cAAc,EAAE,CAAC;QACpC,MAAM,aAAa,GAAG,cAAc,EAAE,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAI,mBAAmB,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAC;QAKnE,MAAM,QAAQ,CAAC,cAAc,CAAC,UAAU,EAAE,aAAa,CAAC,CAAC;QACzD,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1C,MAAM,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,gBAAgB,EAAE,CAAC;QAC9C,MAAM,KAAK,GAAI,aAAa,CAAC,IAAiC,CAAC,IAAI,CAAC,KAAK,CAAC;QAC1E,MAAM,IAAI,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAE,EAA4B,EAAE,CAAC,GAAG,CAAC,CAAC;QACtE,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,gCAAgC,CAAC,CAAC;QAGzD,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;IAChD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yEAAyE,EAAE,KAAK,IAAI,EAAE;QACxF,MAAM,UAAU,GAAG,cAAc,EAAE,CAAC;QACpC,MAAM,QAAQ,GAAG,IAAI,mBAAmB,CAAC,UAAU,EAAE,EAAE,UAAU,CAAC,CAAC;QAEnE,MAAM,QAAQ,CAAC,cAAc,CAAC,UAAU,CAAC,CAAC;QAC1C,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,CAAC;QAE1C,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,gBAAgB,EAAE,CAAC;QAC3C,MAAM,IAAI,GAAI,UAAU,CAAC,IAAiC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CACxE,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAE,EAA4B,EAAE,CAAC,GAAG,CAC7C,CAAC;QACF,MAAM,CAAC,IAAI,CAAC,CAAC,SAAS,CAAC,gCAAgC,CAAC,CAAC;IAC1D,CAAC,CAAC,CAAC;AACJ,CAAC,CAAC,CAAC"}

package/dist/tests/policyInput.unit.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=policyInput.unit.test.d.ts.map

package/dist/tests/policyInput.unit.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"policyInput.unit.test.d.ts","sourceRoot":"","sources":["../../src/tests/policyInput.unit.test.ts"],"names":[],"mappings":""}

package/dist/tests/policyInput.unit.test.js

@@ -0,0 +1,116 @@
+import { CaptchaType } from "@prosopo/types";
+import { describe, expect, it } from "vitest";
+import { AccessPolicyType } from "#policy/rule.js";
+import { sanitizeAccessPolicy } from "#policy/ruleInput/policyInput.js";
+describe("sanitizeAccessPolicy", () => {
+    describe("block policies", () => {
+        it("should remove captchaType from block policies", () => {
+            const input = {
+                type: AccessPolicyType.Block,
+                captchaType: CaptchaType.image,
+                description: "test block policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Block,
+                description: "test block policy",
+            });
+            expect(result.captchaType).toBeUndefined();
+        });
+        it("should remove solvedImagesCount from block policies", () => {
+            const input = {
+                type: AccessPolicyType.Block,
+                solvedImagesCount: 5,
+                description: "test block policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Block,
+                description: "test block policy",
+            });
+            expect(result.solvedImagesCount).toBeUndefined();
+        });
+        it("should remove both captchaType and solvedImagesCount from block policies", () => {
+            const input = {
+                type: AccessPolicyType.Block,
+                captchaType: CaptchaType.image,
+                solvedImagesCount: 5,
+                description: "test block policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Block,
+                description: "test block policy",
+            });
+            expect(result.captchaType).toBeUndefined();
+            expect(result.solvedImagesCount).toBeUndefined();
+        });
+        it("should keep other fields in block policies", () => {
+            const input = {
+                type: AccessPolicyType.Block,
+                captchaType: CaptchaType.image,
+                solvedImagesCount: 5,
+                description: "test block policy",
+                imageThreshold: 0.5,
+                powDifficulty: 10,
+                unsolvedImagesCount: 3,
+                frictionlessScore: 100,
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Block,
+                description: "test block policy",
+                imageThreshold: 0.5,
+                powDifficulty: 10,
+                unsolvedImagesCount: 3,
+                frictionlessScore: 100,
+            });
+            expect(result.captchaType).toBeUndefined();
+            expect(result.solvedImagesCount).toBeUndefined();
+        });
+    });
+    describe("restrict policies", () => {
+        it("should keep captchaType in restrict policies", () => {
+            const input = {
+                type: AccessPolicyType.Restrict,
+                captchaType: CaptchaType.image,
+                description: "test restrict policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Restrict,
+                captchaType: CaptchaType.image,
+                description: "test restrict policy",
+            });
+        });
+        it("should keep solvedImagesCount in restrict policies", () => {
+            const input = {
+                type: AccessPolicyType.Restrict,
+                solvedImagesCount: 5,
+                description: "test restrict policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Restrict,
+                solvedImagesCount: 5,
+                description: "test restrict policy",
+            });
+        });
+        it("should keep both captchaType and solvedImagesCount in restrict policies", () => {
+            const input = {
+                type: AccessPolicyType.Restrict,
+                captchaType: CaptchaType.image,
+                solvedImagesCount: 5,
+                description: "test restrict policy",
+            };
+            const result = sanitizeAccessPolicy(input);
+            expect(result).toEqual({
+                type: AccessPolicyType.Restrict,
+                captchaType: CaptchaType.image,
+                solvedImagesCount: 5,
+                description: "test restrict policy",
+            });
+        });
+    });
+});
+//# sourceMappingURL=policyInput.unit.test.js.map

package/dist/tests/policyInput.unit.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"policyInput.unit.test.js","sourceRoot":"","sources":["../../src/tests/policyInput.unit.test.ts"],"names":[],"mappings":"AAcA,OAAO,EAAE,WAAW,EAAE,MAAM,gBAAgB,CAAC;AAC7C,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,EAAE,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,gBAAgB,EAAE,MAAM,iBAAiB,CAAC;AACnD,OAAO,EAAE,oBAAoB,EAAE,MAAM,kCAAkC,CAAC;AAExE,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;IACrC,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,+CAA+C,EAAE,GAAG,EAAE;YACxD,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,WAAW,EAAE,mBAAmB;aAChC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,mBAAmB;aAChC,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,aAAa,EAAE,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,GAAG,EAAE;YAC9D,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,mBAAmB;aAChC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,mBAAmB;aAChC,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,aAAa,EAAE,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0EAA0E,EAAE,GAAG,EAAE;YACnF,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,mBAAmB;aAChC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,mBAAmB;aAChC,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,aAAa,EAAE,CAAC;YAC3C,MAAM,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,aAAa,EAAE,CAAC;QAClD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACrD,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,mBAAmB;gBAChC,cAAc,EAAE,GAAG;gBACnB,aAAa,EAAE,EAAE;gBACjB,mBAAmB,EAAE,CAAC;gBACtB,iBAAiB,EAAE,GAAG;aACtB,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,KAAK;gBAC5B,WAAW,EAAE,mBAAmB;gBAChC,cAAc,EAAE,GAAG;gBACnB,aAAa,EAAE,EAAE;gBACjB,mBAAmB,EAAE,CAAC;gBACtB,iBAAiB,EAAE,GAAG;aACtB,CAAC,CAAC;YACH,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC,aAAa,EAAE,CAAC;YAC3C,MAAM,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC,aAAa,EAAE,CAAC;QAClD,CAAC,CAAC,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACvD,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,WAAW,EAAE,sBAAsB;aACnC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,WAAW,EAAE,sBAAsB;aACnC,CAAC,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,oDAAoD,EAAE,GAAG,EAAE;YAC7D,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,sBAAsB;aACnC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,sBAAsB;aACnC,CAAC,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yEAAyE,EAAE,GAAG,EAAE;YAClF,MAAM,KAAK,GAAG;gBACb,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,sBAAsB;aACnC,CAAC;YAEF,MAAM,MAAM,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC;YAE3C,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC;gBACtB,IAAI,EAAE,gBAAgB,CAAC,QAAQ;gBAC/B,WAAW,EAAE,WAAW,CAAC,KAAK;gBAC9B,iBAAiB,EAAE,CAAC;gBACpB,WAAW,EAAE,sBAAsB;aACnC,CAAC,CAAC;QACJ,CAAC,CAAC,CAAC;IACJ,CAAC,CAAC,CAAC;AACJ,CAAC,CAAC,CAAC"}

package/dist/tests/redis/reader/redisRulesQuery.unit.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=redisRulesQuery.unit.test.d.ts.map

package/dist/tests/redis/reader/redisRulesQuery.unit.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"redisRulesQuery.unit.test.d.ts","sourceRoot":"","sources":["../../../../src/tests/redis/reader/redisRulesQuery.unit.test.ts"],"names":[],"mappings":""}