@saltsquareio/nestjs-backend-platform 0.0.1

package/dist/core/ai/summarization/summarization.service.js

@@ -0,0 +1,66 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var SummarizationService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SummarizationService = void 0;
+const common_1 = require("@nestjs/common");
+const ai_service_1 = require("../ai.service");
+const ai_options_1 = require("../ai.options");
+const DEFAULT_TARGET_TOKENS = 1000;
+const DEFAULT_THRESHOLD = 50;
+let SummarizationService = SummarizationService_1 = class SummarizationService {
+    constructor(aiService, options) {
+        this.aiService = aiService;
+        this.options = options;
+        this.logger = new common_1.Logger(SummarizationService_1.name);
+    }
+    shouldSummarize(messages, threshold) {
+        const limit = threshold ?? this.options.summarization?.threshold ?? DEFAULT_THRESHOLD;
+        return messages.length > limit;
+    }
+    async summarize(messages, config) {
+        const targetTokens = config?.targetTokens ??
+            this.options.summarization?.targetTokens ??
+            DEFAULT_TARGET_TOKENS;
+        const systemPrompt = this.options.summarization?.systemPrompt ?? ai_options_1.DEFAULT_SUMMARIZATION_PROMPT;
+        const transcript = messages
+            .map((m) => `${m.role === 'assistant' ? 'Assistant' : 'User'}: ${m.content}`)
+            .join('\n\n');
+        const result = await this.aiService.invokeText({
+            template: `${systemPrompt}\nLength target: about ${targetTokens} tokens.`,
+            templateSlug: 'summarization',
+            model: this.options.summarization?.model ??
+                this.options.defaultModel ??
+                ai_options_1.ECHO_MODEL,
+            messages: [{ role: 'user', content: transcript }],
+            userId: config?.userId,
+        });
+        if (!result.success) {
+            this.logger.warn(`Summarization failed: ${result.error}`);
+            return null;
+        }
+        return result.output || null;
+    }
+    getMessageWindow(messages, windowSize = 25) {
+        return messages.slice(-windowSize);
+    }
+};
+exports.SummarizationService = SummarizationService;
+exports.SummarizationService = SummarizationService = SummarizationService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Inject)((0, common_1.forwardRef)(() => ai_service_1.AiService))),
+    __param(1, (0, common_1.Inject)(ai_options_1.AI_MODULE_OPTIONS)),
+    __metadata("design:paramtypes", [ai_service_1.AiService, Object])
+], SummarizationService);
+//# sourceMappingURL=summarization.service.js.map

package/dist/core/ai/summarization/summarization.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"summarization.service.js","sourceRoot":"","sources":["../../../../src/core/ai/summarization/summarization.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAwE;AACxE,8CAA0C;AAC1C,8CAKuB;AAGvB,MAAM,qBAAqB,GAAG,IAAI,CAAC;AACnC,MAAM,iBAAiB,GAAG,EAAE,CAAC;AAGtB,IAAM,oBAAoB,4BAA1B,MAAM,oBAAoB;IAG/B,YAEE,SAAqC,EACV,OAAyC;QADnD,cAAS,GAAT,SAAS,CAAW;QACO,YAAO,GAAP,OAAO,CAAiB;QALrD,WAAM,GAAG,IAAI,eAAM,CAAC,sBAAoB,CAAC,IAAI,CAAC,CAAC;IAM7D,CAAC;IAEJ,eAAe,CACb,QAAkD,EAClD,SAAkB;QAElB,MAAM,KAAK,GACT,SAAS,IAAI,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,SAAS,IAAI,iBAAiB,CAAC;QAC1E,OAAO,QAAQ,CAAC,MAAM,GAAG,KAAK,CAAC;IACjC,CAAC;IAED,KAAK,CAAC,SAAS,CACb,QAAkD,EAClD,MAA4B;QAE5B,MAAM,YAAY,GAChB,MAAM,EAAE,YAAY;YACpB,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY;YACxC,qBAAqB,CAAC;QACxB,MAAM,YAAY,GAChB,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,YAAY,IAAI,yCAA4B,CAAC;QAE3E,MAAM,UAAU,GAAG,QAAQ;aACxB,GAAG,CACF,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,OAAO,EAAE,CACxE;aACA,IAAI,CAAC,MAAM,CAAC,CAAC;QAEhB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC;YAC7C,QAAQ,EAAE,GAAG,YAAY,0BAA0B,YAAY,UAAU;YACzE,YAAY,EAAE,eAAe;YAC7B,KAAK,EACH,IAAI,CAAC,OAAO,CAAC,aAAa,EAAE,KAAK;gBACjC,IAAI,CAAC,OAAO,CAAC,YAAY;gBACzB,uBAAU;YACZ,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,CAAC;YACjD,MAAM,EAAE,MAAM,EAAE,MAAM;SACvB,CAAC,CAAC;QAEH,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,yBAAyB,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;YAC1D,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,MAAM,CAAC,MAAM,IAAI,IAAI,CAAC;IAC/B,CAAC;IAED,gBAAgB,CACd,QAAkD,EAClD,UAAU,GAAG,EAAE;QAEf,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC,UAAU,CAAC,CAAC;IACrC,CAAC;CACF,CAAA;AA3DY,oDAAoB;+BAApB,oBAAoB;IADhC,IAAA,mBAAU,GAAE;IAKR,WAAA,IAAA,eAAM,EAAC,IAAA,mBAAU,EAAC,GAAG,EAAE,CAAC,sBAAS,CAAC,CAAC,CAAA;IAEnC,WAAA,IAAA,eAAM,EAAC,8BAAiB,CAAC,CAAA;qCADE,sBAAS;GAL5B,oBAAoB,CA2DhC"}

package/dist/core/ai/template/template.service.d.ts

@@ -0,0 +1,14 @@
+import { Repository } from 'typeorm';
+import { PromptTemplate } from '../entities/prompt-template.entity';
+export declare class TemplateService {
+    private readonly templateRepository;
+    private readonly logger;
+    private readonly cache;
+    constructor(templateRepository: Repository<PromptTemplate>);
+    resolve(templateOrId: string): Promise<string>;
+    substitute(template: string, vars: Record<string, string>): string;
+    resolveSlug(templateOrId: string): string | undefined;
+    private isInlineTemplate;
+    private getFromCache;
+    private setCache;
+}

package/dist/core/ai/template/template.service.js

@@ -0,0 +1,88 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var TemplateService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TemplateService = void 0;
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const typeorm_2 = require("typeorm");
+const prompt_template_entity_1 = require("../entities/prompt-template.entity");
+const CACHE_TTL_MS = 5 * 60 * 1000;
+const MAX_CACHE_SIZE = 50;
+let TemplateService = TemplateService_1 = class TemplateService {
+    constructor(templateRepository) {
+        this.templateRepository = templateRepository;
+        this.logger = new common_1.Logger(TemplateService_1.name);
+        this.cache = new Map();
+    }
+    async resolve(templateOrId) {
+        if (this.isInlineTemplate(templateOrId)) {
+            return templateOrId;
+        }
+        const cached = this.getFromCache(templateOrId);
+        if (cached !== undefined) {
+            return cached;
+        }
+        try {
+            const entry = await this.templateRepository.findOne({
+                where: { slug: templateOrId, isActive: true },
+            });
+            if (entry) {
+                this.setCache(templateOrId, entry.template);
+                return entry.template;
+            }
+        }
+        catch (error) {
+            this.logger.warn(`Failed to resolve template slug "${templateOrId}": ${error instanceof Error ? error.message : String(error)}`);
+        }
+        return templateOrId;
+    }
+    substitute(template, vars) {
+        return Object.entries(vars).reduce((acc, [key, value]) => {
+            const pattern = new RegExp(`\\{\\{${key}\\}\\}`, 'g');
+            return acc.replace(pattern, value);
+        }, template);
+    }
+    resolveSlug(templateOrId) {
+        return this.isInlineTemplate(templateOrId) ? undefined : templateOrId;
+    }
+    isInlineTemplate(input) {
+        return input.includes('{{') || input.includes(' ') || input.length > 100;
+    }
+    getFromCache(slug) {
+        const entry = this.cache.get(slug);
+        if (!entry)
+            return undefined;
+        if (Date.now() > entry.expiresAt) {
+            this.cache.delete(slug);
+            return undefined;
+        }
+        return entry.value;
+    }
+    setCache(slug, value) {
+        if (this.cache.size >= MAX_CACHE_SIZE) {
+            const firstKey = this.cache.keys().next().value;
+            if (firstKey)
+                this.cache.delete(firstKey);
+        }
+        this.cache.set(slug, { value, expiresAt: Date.now() + CACHE_TTL_MS });
+    }
+};
+exports.TemplateService = TemplateService;
+exports.TemplateService = TemplateService = TemplateService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, typeorm_1.InjectRepository)(prompt_template_entity_1.PromptTemplate)),
+    __metadata("design:paramtypes", [typeorm_2.Repository])
+], TemplateService);
+//# sourceMappingURL=template.service.js.map

package/dist/core/ai/template/template.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"template.service.js","sourceRoot":"","sources":["../../../../src/core/ai/template/template.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAoD;AACpD,6CAAmD;AACnD,qCAAqC;AACrC,+EAAoE;AAOpE,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC;AACnC,MAAM,cAAc,GAAG,EAAE,CAAC;AAQnB,IAAM,eAAe,uBAArB,MAAM,eAAe;IAI1B,YAEE,kBAA+D;QAA9C,uBAAkB,GAAlB,kBAAkB,CAA4B;QALhD,WAAM,GAAG,IAAI,eAAM,CAAC,iBAAe,CAAC,IAAI,CAAC,CAAC;QAC1C,UAAK,GAAG,IAAI,GAAG,EAAsB,CAAC;IAKpD,CAAC;IAEJ,KAAK,CAAC,OAAO,CAAC,YAAoB;QAChC,IAAI,IAAI,CAAC,gBAAgB,CAAC,YAAY,CAAC,EAAE,CAAC;YACxC,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,MAAM,MAAM,GAAG,IAAI,CAAC,YAAY,CAAC,YAAY,CAAC,CAAC;QAC/C,IAAI,MAAM,KAAK,SAAS,EAAE,CAAC;YACzB,OAAO,MAAM,CAAC;QAChB,CAAC;QAED,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC;gBAClD,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,QAAQ,EAAE,IAAI,EAAE;aAC9C,CAAC,CAAC;YACH,IAAI,KAAK,EAAE,CAAC;gBACV,IAAI,CAAC,QAAQ,CAAC,YAAY,EAAE,KAAK,CAAC,QAAQ,CAAC,CAAC;gBAC5C,OAAO,KAAK,CAAC,QAAQ,CAAC;YACxB,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,IAAI,CAAC,MAAM,CAAC,IAAI,CACd,oCAAoC,YAAY,MAAM,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CAC/G,CAAC;QACJ,CAAC;QAED,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,UAAU,CAAC,QAAgB,EAAE,IAA4B;QACvD,OAAO,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE;YACvD,MAAM,OAAO,GAAG,IAAI,MAAM,CAAC,SAAS,GAAG,QAAQ,EAAE,GAAG,CAAC,CAAC;YACtD,OAAO,GAAG,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;QACrC,CAAC,EAAE,QAAQ,CAAC,CAAC;IACf,CAAC;IAED,WAAW,CAAC,YAAoB;QAC9B,OAAO,IAAI,CAAC,gBAAgB,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,YAAY,CAAC;IACxE,CAAC;IAEO,gBAAgB,CAAC,KAAa;QACpC,OAAO,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG,CAAC;IAC3E,CAAC;IAEO,YAAY,CAAC,IAAY;QAC/B,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACnC,IAAI,CAAC,KAAK;YAAE,OAAO,SAAS,CAAC;QAC7B,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,SAAS,EAAE,CAAC;YACjC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;YACxB,OAAO,SAAS,CAAC;QACnB,CAAC;QACD,OAAO,KAAK,CAAC,KAAK,CAAC;IACrB,CAAC;IAEO,QAAQ,CAAC,IAAY,EAAE,KAAa;QAC1C,IAAI,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,cAAc,EAAE,CAAC;YACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAA2B,CAAC;YACtE,IAAI,QAAQ;gBAAE,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC5C,CAAC;QACD,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,KAAK,EAAE,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,YAAY,EAAE,CAAC,CAAC;IACxE,CAAC;CACF,CAAA;AApEY,0CAAe;0BAAf,eAAe;IAD3B,IAAA,mBAAU,GAAE;IAMR,WAAA,IAAA,0BAAgB,EAAC,uCAAc,CAAC,CAAA;qCACI,oBAAU;GANtC,eAAe,CAoE3B"}

package/dist/core/audit-log/audit-log.entity.d.ts

@@ -0,0 +1,13 @@
+export declare class AuditLogEntry {
+    id: string;
+    ts: Date;
+    actorId: string | null;
+    actorRole: string | null;
+    action: string;
+    resourceType: string | null;
+    resourceId: string | null;
+    ip: string | null;
+    userAgent: string | null;
+    status: number | null;
+    metadata: Record<string, unknown> | null;
+}

package/dist/core/audit-log/audit-log.entity.js

@@ -0,0 +1,72 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuditLogEntry = void 0;
+const typeorm_1 = require("typeorm");
+let AuditLogEntry = class AuditLogEntry {
+};
+exports.AuditLogEntry = AuditLogEntry;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)('uuid'),
+    __metadata("design:type", String)
+], AuditLogEntry.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.CreateDateColumn)({ name: 'ts', type: 'timestamptz' }),
+    __metadata("design:type", Date)
+], AuditLogEntry.prototype, "ts", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'actor_id', type: 'varchar', length: 255, nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "actorId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'actor_role', type: 'varchar', length: 32, nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "actorRole", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'varchar', length: 64 }),
+    __metadata("design:type", String)
+], AuditLogEntry.prototype, "action", void 0);
+__decorate([
+    (0, typeorm_1.Column)({
+        name: 'resource_type',
+        type: 'varchar',
+        length: 64,
+        nullable: true,
+    }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "resourceType", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'resource_id', type: 'varchar', length: 255, nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "resourceId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'inet', nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "ip", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'user_agent', type: 'text', nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "userAgent", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'int', nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "status", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'jsonb', nullable: true }),
+    __metadata("design:type", Object)
+], AuditLogEntry.prototype, "metadata", void 0);
+exports.AuditLogEntry = AuditLogEntry = __decorate([
+    (0, typeorm_1.Entity)({ name: 'audit_log' }),
+    (0, typeorm_1.Index)('ix_audit_log_actor_ts', ['actorId', 'ts']),
+    (0, typeorm_1.Index)('ix_audit_log_resource_ts', ['resourceType', 'resourceId', 'ts']),
+    (0, typeorm_1.Index)('ix_audit_log_action_ts', ['action', 'ts'])
+], AuditLogEntry);
+//# sourceMappingURL=audit-log.entity.js.map

package/dist/core/audit-log/audit-log.entity.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-log.entity.js","sourceRoot":"","sources":["../../../src/core/audit-log/audit-log.entity.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,qCAMiB;AAMV,IAAM,aAAa,GAAnB,MAAM,aAAa;CAsCzB,CAAA;AAtCY,sCAAa;AAExB;IADC,IAAA,gCAAsB,EAAC,MAAM,CAAC;;yCACpB;AAGX;IADC,IAAA,0BAAgB,EAAC,EAAE,IAAI,EAAE,IAAI,EAAE,IAAI,EAAE,aAAa,EAAE,CAAC;8BAClD,IAAI;yCAAC;AAGT;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;8CACpD;AAGvB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;gDACnD;AAGzB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;;6CACzB;AAQf;IANC,IAAA,gBAAM,EAAC;QACN,IAAI,EAAE,eAAe;QACrB,IAAI,EAAE,SAAS;QACf,MAAM,EAAE,EAAE;QACV,QAAQ,EAAE,IAAI;KACf,CAAC;;mDAC0B;AAG5B;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,aAAa,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;iDACpD;AAG1B;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;yCACvB;AAGlB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,YAAY,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;gDACpC;AAGzB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;6CAClB;AAGtB;IADC,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC;;+CACD;wBArC9B,aAAa;IAJzB,IAAA,gBAAM,EAAC,EAAE,IAAI,EAAE,WAAW,EAAE,CAAC;IAC7B,IAAA,eAAK,EAAC,uBAAuB,EAAE,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC;IACjD,IAAA,eAAK,EAAC,0BAA0B,EAAE,CAAC,cAAc,EAAE,YAAY,EAAE,IAAI,CAAC,CAAC;IACvE,IAAA,eAAK,EAAC,wBAAwB,EAAE,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;GACrC,aAAa,CAsCzB"}

package/dist/core/audit-log/audit-log.module.d.ts

@@ -0,0 +1,2 @@
+export declare class AuditLogModule {
+}

package/dist/core/audit-log/audit-log.module.js

@@ -0,0 +1,25 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuditLogModule = void 0;
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const audit_log_entity_1 = require("./audit-log.entity");
+const audit_log_service_1 = require("./audit-log.service");
+let AuditLogModule = class AuditLogModule {
+};
+exports.AuditLogModule = AuditLogModule;
+exports.AuditLogModule = AuditLogModule = __decorate([
+    (0, common_1.Global)(),
+    (0, common_1.Module)({
+        imports: [typeorm_1.TypeOrmModule.forFeature([audit_log_entity_1.AuditLogEntry])],
+        providers: [audit_log_service_1.AuditLogService],
+        exports: [audit_log_service_1.AuditLogService],
+    })
+], AuditLogModule);
+//# sourceMappingURL=audit-log.module.js.map

package/dist/core/audit-log/audit-log.module.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-log.module.js","sourceRoot":"","sources":["../../../src/core/audit-log/audit-log.module.ts"],"names":[],"mappings":";;;;;;;;;AAAA,2CAAgD;AAChD,6CAAgD;AAChD,yDAAmD;AACnD,2DAAsD;AAQ/C,IAAM,cAAc,GAApB,MAAM,cAAc;CAAG,CAAA;AAAjB,wCAAc;yBAAd,cAAc;IAN1B,IAAA,eAAM,GAAE;IACR,IAAA,eAAM,EAAC;QACN,OAAO,EAAE,CAAC,uBAAa,CAAC,UAAU,CAAC,CAAC,gCAAa,CAAC,CAAC,CAAC;QACpD,SAAS,EAAE,CAAC,mCAAe,CAAC;QAC5B,OAAO,EAAE,CAAC,mCAAe,CAAC;KAC3B,CAAC;GACW,cAAc,CAAG"}

package/dist/core/audit-log/audit-log.service.d.ts

@@ -0,0 +1,20 @@
+import { Repository } from 'typeorm';
+import { AuditLogEntry } from './audit-log.entity';
+export interface AuditLogEvent {
+    action: string;
+    actorId?: string | null;
+    actorRole?: string | null;
+    resourceType?: string | null;
+    resourceId?: string | null;
+    ip?: string | null;
+    userAgent?: string | null;
+    status?: number | null;
+    metadata?: Record<string, unknown> | null;
+}
+export declare class AuditLogService {
+    private readonly repository;
+    private readonly logger;
+    constructor(repository: Repository<AuditLogEntry>);
+    record(event: AuditLogEvent): void;
+    private persist;
+}

package/dist/core/audit-log/audit-log.service.js

@@ -0,0 +1,59 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+var AuditLogService_1;
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuditLogService = void 0;
+const common_1 = require("@nestjs/common");
+const typeorm_1 = require("@nestjs/typeorm");
+const typeorm_2 = require("typeorm");
+const audit_log_entity_1 = require("./audit-log.entity");
+let AuditLogService = AuditLogService_1 = class AuditLogService {
+    constructor(repository) {
+        this.repository = repository;
+        this.logger = new common_1.Logger(AuditLogService_1.name);
+    }
+    record(event) {
+        void this.persist(event);
+    }
+    async persist(event) {
+        try {
+            const entry = this.repository.create({
+                action: event.action,
+                actorId: event.actorId ?? null,
+                actorRole: event.actorRole ?? null,
+                resourceType: event.resourceType ?? null,
+                resourceId: event.resourceId ?? null,
+                ip: event.ip ?? null,
+                userAgent: event.userAgent ?? null,
+                status: event.status ?? null,
+                metadata: event.metadata ?? null,
+            });
+            await this.repository.save(entry);
+        }
+        catch (err) {
+            this.logger.warn({
+                action: event.action,
+                actorId: event.actorId,
+                error: err instanceof Error ? err.message : String(err),
+            }, 'Failed to persist audit log entry');
+        }
+    }
+};
+exports.AuditLogService = AuditLogService;
+exports.AuditLogService = AuditLogService = AuditLogService_1 = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, typeorm_1.InjectRepository)(audit_log_entity_1.AuditLogEntry)),
+    __metadata("design:paramtypes", [typeorm_2.Repository])
+], AuditLogService);
+//# sourceMappingURL=audit-log.service.js.map

package/dist/core/audit-log/audit-log.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-log.service.js","sourceRoot":"","sources":["../../../src/core/audit-log/audit-log.service.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,2CAAoD;AACpD,6CAAmD;AACnD,qCAAqC;AACrC,yDAAmD;AAoB5C,IAAM,eAAe,uBAArB,MAAM,eAAe;IAG1B,YAEE,UAAsD;QAArC,eAAU,GAAV,UAAU,CAA2B;QAJvC,WAAM,GAAG,IAAI,eAAM,CAAC,iBAAe,CAAC,IAAI,CAAC,CAAC;IAKxD,CAAC;IAEJ,MAAM,CAAC,KAAoB;QACzB,KAAK,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;IAC3B,CAAC;IAEO,KAAK,CAAC,OAAO,CAAC,KAAoB;QACxC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;gBACnC,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,OAAO,EAAE,KAAK,CAAC,OAAO,IAAI,IAAI;gBAC9B,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,IAAI;gBAClC,YAAY,EAAE,KAAK,CAAC,YAAY,IAAI,IAAI;gBACxC,UAAU,EAAE,KAAK,CAAC,UAAU,IAAI,IAAI;gBACpC,EAAE,EAAE,KAAK,CAAC,EAAE,IAAI,IAAI;gBACpB,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,IAAI;gBAClC,MAAM,EAAE,KAAK,CAAC,MAAM,IAAI,IAAI;gBAC5B,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,IAAI;aACjC,CAAC,CAAC;YACH,MAAM,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QACpC,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,CAAC,MAAM,CAAC,IAAI,CACd;gBACE,MAAM,EAAE,KAAK,CAAC,MAAM;gBACpB,OAAO,EAAE,KAAK,CAAC,OAAO;gBACtB,KAAK,EAAE,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;aACxD,EACD,mCAAmC,CACpC,CAAC;QACJ,CAAC;IACH,CAAC;CACF,CAAA;AArCY,0CAAe;0BAAf,eAAe;IAD3B,IAAA,mBAAU,GAAE;IAKR,WAAA,IAAA,0BAAgB,EAAC,gCAAa,CAAC,CAAA;qCACH,oBAAU;GAL9B,eAAe,CAqC3B"}

package/dist/core/audit-log/index.d.ts

@@ -0,0 +1,6 @@
+import { AuditLogEntry } from './audit-log.entity';
+export { AuditLogModule } from './audit-log.module';
+export { AuditLogService } from './audit-log.service';
+export type { AuditLogEvent } from './audit-log.service';
+export { AuditLogEntry };
+export declare const AUDIT_LOG_ENTITIES: (typeof AuditLogEntry)[];

package/dist/core/audit-log/index.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AUDIT_LOG_ENTITIES = exports.AuditLogEntry = exports.AuditLogService = exports.AuditLogModule = void 0;
+const audit_log_entity_1 = require("./audit-log.entity");
+Object.defineProperty(exports, "AuditLogEntry", { enumerable: true, get: function () { return audit_log_entity_1.AuditLogEntry; } });
+var audit_log_module_1 = require("./audit-log.module");
+Object.defineProperty(exports, "AuditLogModule", { enumerable: true, get: function () { return audit_log_module_1.AuditLogModule; } });
+var audit_log_service_1 = require("./audit-log.service");
+Object.defineProperty(exports, "AuditLogService", { enumerable: true, get: function () { return audit_log_service_1.AuditLogService; } });
+exports.AUDIT_LOG_ENTITIES = [audit_log_entity_1.AuditLogEntry];
+//# sourceMappingURL=index.js.map

package/dist/core/audit-log/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/core/audit-log/index.ts"],"names":[],"mappings":";;;AAAA,yDAAmD;AAK1C,8FALA,gCAAa,OAKA;AAHtB,uDAAoD;AAA3C,kHAAA,cAAc,OAAA;AACvB,yDAAsD;AAA7C,oHAAA,eAAe,OAAA;AAIX,QAAA,kBAAkB,GAAG,CAAC,gCAAa,CAAC,CAAC"}

package/dist/core/auth/auth.provider.d.ts

@@ -0,0 +1,4 @@
+import { AuthorizationUser } from './types';
+export interface AuthProvider<TConfig> {
+    getUser(token: string, config: TConfig): Promise<AuthorizationUser>;
+}

package/dist/core/auth/auth.provider.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=auth.provider.js.map

package/dist/core/auth/auth.provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auth.provider.js","sourceRoot":"","sources":["../../../src/core/auth/auth.provider.ts"],"names":[],"mappings":""}

package/dist/core/auth/decorators.d.ts

@@ -0,0 +1,4 @@
+export declare const ROLES_KEY = "roles";
+export declare const Roles: (...roles: string[]) => import("@nestjs/common").CustomDecorator<string>;
+export declare const PUBLIC_KEY = "public";
+export declare const Public: () => import("@nestjs/common").CustomDecorator<string>;

package/dist/core/auth/decorators.js

@@ -0,0 +1,11 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Public = exports.PUBLIC_KEY = exports.Roles = exports.ROLES_KEY = void 0;
+const common_1 = require("@nestjs/common");
+exports.ROLES_KEY = 'roles';
+const Roles = (...roles) => (0, common_1.SetMetadata)(exports.ROLES_KEY, roles);
+exports.Roles = Roles;
+exports.PUBLIC_KEY = 'public';
+const Public = () => (0, common_1.SetMetadata)(exports.PUBLIC_KEY, true);
+exports.Public = Public;
+//# sourceMappingURL=decorators.js.map

package/dist/core/auth/decorators.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"decorators.js","sourceRoot":"","sources":["../../../src/core/auth/decorators.ts"],"names":[],"mappings":";;;AAAA,2CAA6C;AAEhC,QAAA,SAAS,GAAG,OAAO,CAAC;AAC1B,MAAM,KAAK,GAAG,CAAC,GAAG,KAAe,EAAE,EAAE,CAAC,IAAA,oBAAW,EAAC,iBAAS,EAAE,KAAK,CAAC,CAAC;AAA9D,QAAA,KAAK,SAAyD;AAE9D,QAAA,UAAU,GAAG,QAAQ,CAAC;AAC5B,MAAM,MAAM,GAAG,GAAG,EAAE,CAAC,IAAA,oBAAW,EAAC,kBAAU,EAAE,IAAI,CAAC,CAAC;AAA7C,QAAA,MAAM,UAAuC"}

package/dist/core/auth/index.d.ts

@@ -0,0 +1,6 @@
+export * from './auth.provider';
+export * from './decorators';
+export * from './params';
+export * from './role.can-activate';
+export * from './types';
+export * from './utils';

package/dist/core/auth/index.js

@@ -0,0 +1,23 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./auth.provider"), exports);
+__exportStar(require("./decorators"), exports);
+__exportStar(require("./params"), exports);
+__exportStar(require("./role.can-activate"), exports);
+__exportStar(require("./types"), exports);
+__exportStar(require("./utils"), exports);
+//# sourceMappingURL=index.js.map

package/dist/core/auth/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/core/auth/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;AAAA,kDAAgC;AAChC,+CAA6B;AAC7B,2CAAyB;AACzB,sDAAoC;AACpC,0CAAwB;AACxB,0CAAwB"}

package/dist/core/auth/params.d.ts

@@ -0,0 +1,2 @@
+export declare const UserId: (...dataOrPipes: unknown[]) => ParameterDecorator;
+export declare const UserEmail: (...dataOrPipes: unknown[]) => ParameterDecorator;

package/dist/core/auth/params.js

@@ -0,0 +1,23 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserEmail = exports.UserId = void 0;
+const common_1 = require("@nestjs/common");
+exports.UserId = (0, common_1.createParamDecorator)((_, ctx) => {
+    const request = ctx
+        .switchToHttp()
+        .getRequest();
+    if (!request.user?.sub) {
+        throw new common_1.UnauthorizedException('User not authenticated');
+    }
+    return request.user.sub;
+});
+exports.UserEmail = (0, common_1.createParamDecorator)((_, ctx) => {
+    const request = ctx
+        .switchToHttp()
+        .getRequest();
+    if (!request.user?.email) {
+        throw new common_1.UnauthorizedException('User not authenticated');
+    }
+    return request.user.email;
+});
+//# sourceMappingURL=params.js.map

package/dist/core/auth/params.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"params.js","sourceRoot":"","sources":["../../../src/core/auth/params.ts"],"names":[],"mappings":";;;AAAA,2CAIwB;AAGX,QAAA,MAAM,GAAG,IAAA,6BAAoB,EACxC,CAAC,CAAU,EAAE,GAAqB,EAAU,EAAE;IAC5C,MAAM,OAAO,GAAG,GAAG;SAChB,YAAY,EAAE;SACd,UAAU,EAAgC,CAAC;IAC9C,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,EAAE,CAAC;QACvB,MAAM,IAAI,8BAAqB,CAAC,wBAAwB,CAAC,CAAC;IAC5D,CAAC;IACD,OAAO,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC;AAC1B,CAAC,CACF,CAAC;AAEW,QAAA,SAAS,GAAG,IAAA,6BAAoB,EAC3C,CAAC,CAAU,EAAE,GAAqB,EAAU,EAAE;IAC5C,MAAM,OAAO,GAAG,GAAG;SAChB,YAAY,EAAE;SACd,UAAU,EAAgC,CAAC;IAC9C,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,KAAK,EAAE,CAAC;QACzB,MAAM,IAAI,8BAAqB,CAAC,wBAAwB,CAAC,CAAC;IAC5D,CAAC;IACD,OAAO,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC;AAC5B,CAAC,CACF,CAAC"}

package/dist/core/auth/role.can-activate.d.ts

@@ -0,0 +1,10 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+import { AuthorizationUser } from './types';
+export declare abstract class RoleCanActivate implements CanActivate {
+    private readonly reflector;
+    protected constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): Promise<boolean>;
+    private resolveUser;
+    abstract getUser(token: string): Promise<AuthorizationUser>;
+}

package/dist/core/auth/role.can-activate.js

@@ -0,0 +1,42 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RoleCanActivate = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+const utils_1 = require("./utils");
+let RoleCanActivate = class RoleCanActivate {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    async canActivate(context) {
+        if ((0, utils_1.isPublic)(context, this.reflector)) {
+            return true;
+        }
+        const request = context.switchToHttp().getRequest();
+        const user = await this.resolveUser(request.headers.authorization);
+        request.user = user;
+        (0, utils_1.validateRequiredRole)(context, this.reflector, user.role);
+        return true;
+    }
+    resolveUser(authHeader) {
+        if (!authHeader?.startsWith('Bearer ')) {
+            throw new common_1.UnauthorizedException();
+        }
+        return this.getUser(authHeader.slice('Bearer '.length));
+    }
+};
+exports.RoleCanActivate = RoleCanActivate;
+exports.RoleCanActivate = RoleCanActivate = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], RoleCanActivate);
+//# sourceMappingURL=role.can-activate.js.map

package/dist/core/auth/role.can-activate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"role.can-activate.js","sourceRoot":"","sources":["../../../src/core/auth/role.can-activate.ts"],"names":[],"mappings":";;;;;;;;;;;;AAAA,2CAKwB;AACxB,uCAAyC;AAEzC,mCAAyD;AAQlD,IAAe,eAAe,GAA9B,MAAe,eAAe;IACnC,YAAuC,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;IAAG,CAAC;IAE/D,KAAK,CAAC,WAAW,CAAC,OAAyB;QACzC,IAAI,IAAA,gBAAQ,EAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,CAAC;YACtC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAG7C,CAAC;QAEL,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC;QACnE,OAAO,CAAC,IAAI,GAAG,IAAI,CAAC;QAEpB,IAAA,4BAAoB,EAAC,OAAO,EAAE,IAAI,CAAC,SAAS,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;QAEzD,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,WAAW,CACjB,UAA8B;QAE9B,IAAI,CAAC,UAAU,EAAE,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,8BAAqB,EAAE,CAAC;QACpC,CAAC;QACD,OAAO,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;IAC1D,CAAC;CAGF,CAAA;AA/BqB,0CAAe;0BAAf,eAAe;IADpC,IAAA,mBAAU,GAAE;qCAEuC,gBAAS;GADvC,eAAe,CA+BpC"}

package/dist/core/auth/types.d.ts

@@ -0,0 +1,6 @@
+export interface AuthorizationUser {
+    sub: string;
+    email?: string;
+    role?: string;
+    [claim: string]: unknown;
+}

package/dist/core/auth/types.js

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/core/auth/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../../src/core/auth/types.ts"],"names":[],"mappings":""}

package/dist/core/auth/utils.d.ts

@@ -0,0 +1,4 @@
+import { ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare function isPublic(context: ExecutionContext, reflector: Reflector): boolean;
+export declare function validateRequiredRole(context: ExecutionContext, reflector: Reflector, role: string | undefined): void;

package/dist/core/auth/utils.js

@@ -0,0 +1,22 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.isPublic = isPublic;
+exports.validateRequiredRole = validateRequiredRole;
+const common_1 = require("@nestjs/common");
+const decorators_1 = require("./decorators");
+function isPublic(context, reflector) {
+    return reflector.getAllAndOverride(decorators_1.PUBLIC_KEY, [
+        context.getHandler(),
+        context.getClass(),
+    ]);
+}
+function validateRequiredRole(context, reflector, role) {
+    const requiredRoles = reflector.getAllAndOverride(decorators_1.ROLES_KEY, [
+        context.getHandler(),
+        context.getClass(),
+    ]);
+    if (requiredRoles && (!role || !requiredRoles.includes(role))) {
+        throw new common_1.ForbiddenException('Insufficient role');
+    }
+}
+//# sourceMappingURL=utils.js.map