npm - @react-protected/core - Versions diffs - 0.2.0 → 0.3.0 - Mend

@react-protected/core 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,11 @@
 # @react-protected/core
+## 0.3.0
+### Minor Changes
+- cb262d3: loader, action and middleware support
 ## 0.2.0
 ### Minor Changes

package/README.md CHANGED Viewed

@@ -1,22 +1,6 @@
 # @react-protected/core
-Framework-agnostic access-control logic. No dependency on React, a router, or a store.
----
-## Installation
-```bash
-npm install @react-protected/core
-```
-```bash
-yarn add @react-protected/core
-```
-```bash
-pnpm add @react-protected/core
-```
+Framework-agnostic access-control logic. No dependency on React, a router, or redirect policy.
 ## Usage
@@ -27,36 +11,20 @@ const guard = createGuard({
   getUser: () => store.getState().user,
   hasRole: (user, roles) => roles.some((role) => user.roles.includes(role)),
   hasPermission: (user, permissions) =>
-    permissions.every((p) => user.permissions.includes(p)),
+    permissions.every((permission) => user.permissions.includes(permission)),
 })
 const result = guard.check({ access: 'authenticated', roles: ['admin'] })
-if (result.allowed) {
-  // permit access
-} else {
-  // result.reason: 'unauthenticated' | 'forbidden'
+if (!result.allowed) {
+  // result.reason: 'unauthenticated' | 'authenticated' | 'forbidden'
 }
 ```
-### Implicit auth requirement
-When `roles` or `permissions` are set without an explicit `access` field, the route is treated as `'authenticated'` automatically:
-```ts
-guard.check({ roles: ['admin'] })
-// equivalent to: guard.check({ access: 'authenticated', roles: ['admin'] })
-```
-## Packages
-| Package | Description |
-| --- | --- |
-| `@react-protected/core` | This package — pure access-control logic |
-| `@react-protected/react` | React context, hooks, and `HasAccess` component |
-| `@react-protected/react-router` | Adapter for React Router |
+Supported access levels:
-## Documentation
+- `'public'`
+- `'authenticated'`
+- `'unauthenticated'`
-- [Core API](https://github.com/astakhovaskold/react-protected/blob/main/docs/en/api/core.md)
-- [Examples](https://github.com/astakhovaskold/react-protected/blob/main/docs/en/README.md)
+When `roles` or `permissions` are set without `access`, the guard treats the config as authenticated-only.

package/dist/index.cjs CHANGED Viewed

	@@ -1 +1 @@
1	- "use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});function u(r){const s={getUser:r.getUser,isAuthenticated:r.isAuthenticated??(e=>e!==null),hasRole:r.hasRole??(()=>!1),hasPermission:r.hasPermission??(()=>!1)};return{check:e=>{var a,l,n,i;const t=s.getUser(),o=s.isAuthenticated(t)~~;return((~~e.access??"public")==="authenticated"\|\|!!((a=e.roles)!=null&&a.length)\|\|!!((l=e.permissions)!=null&&l.length))&&!o?{allowed:!1,reason:"unauthenticated"}:(n=e.roles)!=null&&n.length&&t&&!s.hasRole(t,e.roles)?{allowed:!1,reason:"forbidden"}:(i=e.permissions)!=null&&i.length&&t&&!s.hasPermission(t,e.permissions)?{allowed:!1,reason:"forbidden"}:{allowed:!0}},options:s}}exports.createGuard=u;
1	+ "use strict";Object.defineProperty(exports,Symbol.toStringTag,{value:"Module"});function c(a){const s={getUser:a.getUser,isAuthenticated:a.isAuthenticated??(e=>e!==null),hasRole:a.hasRole??(()=>!1),hasPermission:a.hasPermission??(()=>!1)};return{check:e=>{var n,o,i,u;const t=s.getUser(),r=s.isAuthenticated(t),l=e.access??"public",d=l==="authenticated"\|\|!!((n=e.roles)!=null&&n.length)\|\|!!((o=e.permissions)!=null&&o.length);return l==="unauthenticated"?r?{allowed:!1,reason:"authenticated"}:{allowed:!0}:d&&!r?{allowed:!1,reason:"unauthenticated"}:(i=e.roles)!=null&&i.length&&t&&!s.hasRole(t,e.roles)?{allowed:!1,reason:"forbidden"}:(u=e.permissions)!=null&&u.length&&t&&!s.hasPermission(t,e.permissions)?{allowed:!1,reason:"forbidden"}:{allowed:!0}},options:s}}exports.createGuard=c;

package/dist/index.js CHANGED Viewed

@@ -1,16 +1,16 @@
-function d(r) {
+function c(a) {
   const s = {
-    getUser: r.getUser,
-    isAuthenticated: r.isAuthenticated ?? ((e) => e !== null),
-    hasRole: r.hasRole ?? (() => !1),
-    hasPermission: r.hasPermission ?? (() => !1)
+    getUser: a.getUser,
+    isAuthenticated: a.isAuthenticated ?? ((e) => e !== null),
+    hasRole: a.hasRole ?? (() => !1),
+    hasPermission: a.hasPermission ?? (() => !1)
   };
   return { check: (e) => {
-    var a, n, l, i;
-    const t = s.getUser(), o = s.isAuthenticated(t);
-    return ((e.access ?? "public") === "authenticated" || !!((a = e.roles) != null && a.length) || !!((n = e.permissions) != null && n.length)) && !o ? { allowed: !1, reason: "unauthenticated" } : (l = e.roles) != null && l.length && t && !s.hasRole(t, e.roles) ? { allowed: !1, reason: "forbidden" } : (i = e.permissions) != null && i.length && t && !s.hasPermission(t, e.permissions) ? { allowed: !1, reason: "forbidden" } : { allowed: !0 };
+    var l, o, i, u;
+    const t = s.getUser(), r = s.isAuthenticated(t), n = e.access ?? "public", h = n === "authenticated" || !!((l = e.roles) != null && l.length) || !!((o = e.permissions) != null && o.length);
+    return n === "unauthenticated" ? r ? { allowed: !1, reason: "authenticated" } : { allowed: !0 } : h && !r ? { allowed: !1, reason: "unauthenticated" } : (i = e.roles) != null && i.length && t && !s.hasRole(t, e.roles) ? { allowed: !1, reason: "forbidden" } : (u = e.permissions) != null && u.length && t && !s.hasPermission(t, e.permissions) ? { allowed: !1, reason: "forbidden" } : { allowed: !0 };
   }, options: s };
 }
 export {
-  d as createGuard
+  c as createGuard
 };

package/dist/types.d.ts CHANGED Viewed

@@ -1,13 +1,14 @@
 /**
  * Access level handled by the framework-agnostic guard.
  */
-export type AccessLevel = 'public' | 'authenticated';
+export type AccessLevel = 'public' | 'authenticated' | 'unauthenticated';
 /**
  * Access requirements consumed by `guard.check()` and adapter components.
  */
 export type AccessConfig = {
     /**
-     * Declares whether access is public or requires an authenticated user.
+     * Declares whether access is public, requires an authenticated user, or requires
+     * an unauthenticated user.
      * Defaults to `'public'` when omitted.
      */
     access?: AccessLevel;
@@ -32,6 +33,9 @@ export type AccessResult = {
 } | {
     allowed: false;
     reason: 'unauthenticated';
+} | {
+    allowed: false;
+    reason: 'authenticated';
 } | {
     allowed: false;
     reason: 'forbidden';

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@react-protected/core",
-  "version": "0.2.0",
+  "version": "0.3.0",
   "license": "MIT",
   "description": "Framework-agnostic route protection logic",
   "main": "./dist/index.cjs",