@spinajs/rbac-http 2.0.46 → 2.0.51

package/package.json

@@ -1,63 +1,66 @@
-{
-  "name": "@spinajs/rbac-http",
-  "version": "2.0.46",
-  "description": "HTTP API for user session & permissions",
-  "main": "lib/index.js",
-  "private": false,
-  "scripts": {
-    "build": "npm run clean && npm run compile",
-    "compile": "tsc -p tsconfig.build.json",
-    "clean": "",
-    "test": "ts-mocha -p tsconfig.json test/**/*.test.ts",
-    "coverage": "nyc npm run test",
-    "build-docs": "rimraf docs && typedoc --options typedoc.json src/",
-    "prepare": "npm run build",
-    "format": "prettier --write \"src/**/*.ts\"",
-    "lint": "eslint -c .eslintrc.js --ext .ts src --fix",
-    "prepublishOnly": "npm test && npm run lint",
-    "preversion": "npm run lint",
-    "version": "npm run format && git add -A src",
-    "postversion": "git push && git push --tags"
-  },
-  "files": [
-    "lib/**/*"
-  ],
-  "types": "lib",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/spinajs/main.git"
-  },
-  "keywords": [
-    "spinajs",
-    "rbac"
-  ],
-  "author": "SpinaJS <spinajs@coderush.pl> (https://github.com/spinajs/main)",
-  "license": "MIT",
-  "bugs": {
-    "url": "https://github.com/spinajs/main/issues"
-  },
-  "homepage": "https://github.com/spinajs/main#readme",
-  "dependencies": {
-    "@spinajs/configuration": "^2.0.46",
-    "@spinajs/di": "^2.0.46",
-    "@spinajs/exceptions": "^2.0.39",
-    "@spinajs/http": "^2.0.46",
-    "@spinajs/log": "^2.0.46",
-    "@spinajs/orm": "^2.0.46",
-    "@spinajs/orm-http": "^2.0.46",
-    "@spinajs/rbac": "^2.0.46",
-    "@spinajs/reflection": "^2.0.46",
-    "accesscontrol": "^2.2.1",
-    "luxon": "^3.2.1",
-    "qrcode": "^1.5.1",
-    "speakeasy": "^2.0.0",
-    "uuid": "^8.3.2"
-  },
-  "devDependencies": {
-    "@spinajs/orm-sqlite": "^2.0.46",
-    "@types/qrcode": "^1.4.2",
-    "@types/speakeasy": "^2.0.7",
-    "@types/uuid": "^8.3.3"
-  },
-  "gitHead": "bd560afd6c9a156071102cc6b4f36115b5498e9d"
-}
+{
+  "name": "@spinajs/rbac-http",
+  "version": "2.0.51",
+  "description": "HTTP API for user session & permissions",
+  "exports": "./lib/index.js",
+  "type": "module",
+  "private": false,
+  "engines": {
+    "node": ">=16.11"
+  },
+  "scripts": {
+    "build": "npm run clean && npm run compile",
+    "compile": "tsc -b tsconfig.json",
+    "rimraf": "./node_modules/rimraf/bin.js",
+    "clean": "rimraf lib/ && rimraf tsconfig.tsbuildinfo",
+    "test": "ts-mocha -p tsconfig.json test/**/*.test.ts",
+    "coverage": "nyc npm run test",
+    "build-docs": "rimraf docs && typedoc --options typedoc.json src/",
+    "format": "prettier --write \"src/**/*.ts\"",
+    "lint": "eslint -c .eslintrc.cjs --ext .ts src --fix",
+    "preversion": "npm run lint",
+    "version": "npm run format && git add -A src"
+    
+  },
+  "files": [
+    "lib/**/*"
+  ],
+  "types": "lib",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/spinajs/main.git"
+  },
+  "keywords": [
+    "spinajs",
+    "rbac"
+  ],
+  "author": "SpinaJS <spinajs@coderush.pl> (https://github.com/spinajs/main)",
+  "license": "MIT",
+  "bugs": {
+    "url": "https://github.com/spinajs/main/issues"
+  },
+  "homepage": "https://github.com/spinajs/main#readme",
+  "dependencies": {
+    "@spinajs/configuration": "^2.0.46",
+    "@spinajs/di": "^2.0.46",
+    "@spinajs/exceptions": "^2.0.39",
+    "@spinajs/http": "^2.0.46",
+    "@spinajs/log": "^2.0.46",
+    "@spinajs/orm": "^2.0.46",
+    "@spinajs/orm-http": "^2.0.46",
+    "@spinajs/rbac": "^2.0.46",
+    "@spinajs/reflection": "^2.0.46",
+    "accesscontrol": "^2.2.1",
+    "luxon": "^3.2.1",
+    "qrcode": "^1.5.1",
+    "speakeasy": "^2.0.0",
+    "uuid": "^9.0.0"
+  },
+  "devDependencies": {
+    "@spinajs/orm-sqlite": "^2.0.46",
+    "@types/qrcode": "^1.5.0",
+    "@types/speakeasy": "^2.0.7",
+    "@types/uuid": "^9.0.0"
+  },
+  "gitHead": "002dc553b0ffffd72193d0121ac425a4083bc9ee"
+}

package/lib/policies/AuthPolicy.d.ts

@@ -1,9 +0,0 @@
-import { BasePolicy, IController, IRoute, Request as sRequest } from '@spinajs/http';
-/**
- * Simple policy to only check if user is authorized ( do not check permissions for routes)
- * Usefull if we want to give acces for all logged users
- */
-export declare class AuthPolicy extends BasePolicy {
-    isEnabled(_action: IRoute, _instance: IController): boolean;
-    execute(req: sRequest): Promise<void>;
-}

package/lib/policies/AuthPolicy.js

@@ -1,23 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AuthPolicy = void 0;
-const http_1 = require("@spinajs/http");
-const exceptions_1 = require("@spinajs/exceptions");
-/**
- * Simple policy to only check if user is authorized ( do not check permissions for routes)
- * Usefull if we want to give acces for all logged users
- */
-class AuthPolicy extends http_1.BasePolicy {
-    isEnabled(_action, _instance) {
-        // acl is always on if set
-        return true;
-    }
-    async execute(req) {
-        if (!req.storage || !req.storage.user || !req.storage.session.Data.get('Authorized')) {
-            throw new exceptions_1.Forbidden('user not logged or session expired');
-        }
-        return Promise.resolve();
-    }
-}
-exports.AuthPolicy = AuthPolicy;
-//# sourceMappingURL=AuthPolicy.js.map

package/lib/policies/AuthPolicy.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"AuthPolicy.js","sourceRoot":"","sources":["../../src/policies/AuthPolicy.ts"],"names":[],"mappings":";;;AAAA,wCAAqF;AACrF,oDAAgD;AAEhD;;;GAGG;AACH,MAAa,UAAW,SAAQ,iBAAU;IACjC,SAAS,CAAC,OAAe,EAAE,SAAsB;QACtD,0BAA0B;QAC1B,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,OAAO,CAAC,GAAa;QAChC,IAAI,CAAC,GAAG,CAAC,OAAO,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE;YACpF,MAAM,IAAI,sBAAS,CAAC,oCAAoC,CAAC,CAAC;SAC3D;QAED,OAAO,OAAO,CAAC,OAAO,EAAE,CAAC;IAC3B,CAAC;CACF;AAbD,gCAaC"}

package/lib/policies.d.ts

@@ -1,12 +0,0 @@
-import { AccessControl, Permission } from 'accesscontrol';
-import { BasePolicy, IController, IRoute, Request as sRequest } from '@spinajs/http';
-import { User } from '@spinajs/rbac';
-export declare class RbacPolicy extends BasePolicy {
-    protected Ac: AccessControl;
-    constructor();
-    isEnabled(_action: IRoute, _instance: IController): boolean;
-    execute(req: sRequest, action: IRoute, instance: IController): Promise<void>;
-}
-export declare function checkRbacPermission(role: string | string[], resource: string, permission: string): Permission;
-export declare function checkUserPermission(user: User, resource: string, permission: string): Permission;
-export declare function checkRoutePermission(req: sRequest, resource: string, permission: string): Permission;

package/lib/policies.js

@@ -1,57 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkRoutePermission = exports.checkUserPermission = exports.checkRbacPermission = exports.RbacPolicy = void 0;
-const http_1 = require("@spinajs/http");
-const exceptions_1 = require("@spinajs/exceptions");
-const decorators_1 = require("./decorators");
-const di_1 = require("@spinajs/di");
-class RbacPolicy extends http_1.BasePolicy {
-    constructor() {
-        super();
-        this.Ac = di_1.DI.get('AccessControl');
-    }
-    isEnabled(_action, _instance) {
-        // acl is always on if set
-        return true;
-    }
-    async execute(req, action, instance) {
-        var _a, _b;
-        const descriptor = Reflect.getMetadata(decorators_1.ACL_CONTROLLER_DESCRIPTOR, instance);
-        let permission = (_a = descriptor.Permission) !== null && _a !== void 0 ? _a : '';
-        // check if route has its own permission
-        if (descriptor.Routes.has(action.Method)) {
-            permission = (_b = descriptor.Routes.get(action.Method).Permission) !== null && _b !== void 0 ? _b : '';
-        }
-        if (!descriptor || !descriptor.Permission) {
-            throw new exceptions_1.Forbidden(`no route permission or resources assigned`);
-        }
-        if (!req.storage || !req.storage.user) {
-            throw new exceptions_1.Forbidden('user not logger or session expired');
-        }
-        if (!checkRoutePermission(req, descriptor.Resource, permission).granted) {
-            throw new exceptions_1.Forbidden(`role(s) ${req.storage.user.Role} does not have permission ${permission} for resource ${descriptor.Resource}`);
-        }
-    }
-}
-exports.RbacPolicy = RbacPolicy;
-function checkRbacPermission(role, resource, permission) {
-    const ac = di_1.DI.get('AccessControl');
-    return ac.can(role)[permission](resource);
-}
-exports.checkRbacPermission = checkRbacPermission;
-function checkUserPermission(user, resource, permission) {
-    const ac = di_1.DI.get('AccessControl');
-    if (!user) {
-        return null;
-    }
-    return ac.can(user.Role)[permission](resource);
-}
-exports.checkUserPermission = checkUserPermission;
-function checkRoutePermission(req, resource, permission) {
-    if (!req.storage || !req.storage.user) {
-        return null;
-    }
-    return checkUserPermission(req.storage.user, resource, permission);
-}
-exports.checkRoutePermission = checkRoutePermission;
-//# sourceMappingURL=policies.js.map

package/lib/policies.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"policies.js","sourceRoot":"","sources":["../src/policies.ts"],"names":[],"mappings":";;;AACA,wCAAqF;AACrF,oDAAgD;AAChD,6CAAyD;AAEzD,oCAAiC;AAGjC,MAAa,UAAW,SAAQ,iBAAU;IAGxC;QACE,KAAK,EAAE,CAAC;QAER,IAAI,CAAC,EAAE,GAAG,OAAE,CAAC,GAAG,CAAC,eAAe,CAAC,CAAC;IACpC,CAAC;IAEM,SAAS,CAAC,OAAe,EAAE,SAAsB;QACtD,0BAA0B;QAC1B,OAAO,IAAI,CAAC;IACd,CAAC;IAEM,KAAK,CAAC,OAAO,CAAC,GAAa,EAAE,MAAc,EAAE,QAAqB;;QACvE,MAAM,UAAU,GAAoB,OAAO,CAAC,WAAW,CAAC,sCAAyB,EAAE,QAAQ,CAAC,CAAC;QAC7F,IAAI,UAAU,GAAG,MAAA,UAAU,CAAC,UAAU,mCAAI,EAAE,CAAC;QAE7C,wCAAwC;QACxC,IAAI,UAAU,CAAC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE;YACxC,UAAU,GAAG,MAAA,UAAU,CAAC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,UAAU,mCAAI,EAAE,CAAC;SACpE;QAED,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,EAAE;YACzC,MAAM,IAAI,sBAAS,CAAC,2CAA2C,CAAC,CAAC;SAClE;QAED,IAAI,CAAC,GAAG,CAAC,OAAO,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE;YACrC,MAAM,IAAI,sBAAS,CAAC,oCAAoC,CAAC,CAAC;SAC3D;QAED,IAAI,CAAC,oBAAoB,CAAC,GAAG,EAAE,UAAU,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC,OAAO,EAAE;YACvE,MAAM,IAAI,sBAAS,CAAC,WAAW,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,6BAA6B,UAAU,iBAAiB,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;SACpI;IACH,CAAC;CACF;AAnCD,gCAmCC;AAED,SAAgB,mBAAmB,CAAC,IAAuB,EAAE,QAAgB,EAAE,UAAkB;IAC/F,MAAM,EAAE,GAAG,OAAE,CAAC,GAAG,CAAgB,eAAe,CAAC,CAAC;IAClD,OAAQ,EAAE,CAAC,GAAG,CAAC,IAAI,CAAS,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC;AACrD,CAAC;AAHD,kDAGC;AAED,SAAgB,mBAAmB,CAAC,IAAU,EAAE,QAAgB,EAAE,UAAkB;IAClF,MAAM,EAAE,GAAG,OAAE,CAAC,GAAG,CAAgB,eAAe,CAAC,CAAC;IAElD,IAAI,CAAC,IAAI,EAAE;QACT,OAAO,IAAI,CAAC;KACb;IAED,OAAQ,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAS,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC;AAC1D,CAAC;AARD,kDAQC;AAED,SAAgB,oBAAoB,CAAC,GAAa,EAAE,QAAgB,EAAE,UAAkB;IACtF,IAAI,CAAC,GAAG,CAAC,OAAO,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE;QACrC,OAAO,IAAI,CAAC;KACb;IAED,OAAO,mBAAmB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;AACrE,CAAC;AAND,oDAMC"}