@strapi/admin 4.14.2 → 4.14.3

package/dist/server/services/content-type.d.ts

@@ -0,0 +1,51 @@
+/**
+ * Creates an array of paths to the fields and nested fields, without path nodes
+ * @param {string} model model used to get the nested fields
+ * @param {Object} options
+ * @param {string} options.prefix prefix to add to the path
+ * @param {number} options.nestingLevel level of nesting to achieve
+ * @param {object} options.components components where components attributes can be found
+ * @param {object} options.requiredOnly only returns required nestedFields
+ * @param {object} options.existingFields fields that are already selected, meaning that some sub-fields may be required
+ * @returns {array<string>}
+ * @param model
+ */
+declare const getNestedFields: (model: any, { prefix, nestingLevel, components, requiredOnly, existingFields }: {
+    prefix?: string | undefined;
+    nestingLevel?: number | undefined;
+    components?: {} | undefined;
+    requiredOnly?: boolean | undefined;
+    existingFields?: never[] | undefined;
+}) => any;
+/**
+ * Creates an array of paths to the fields and nested fields, with path nodes
+ * @param {string} model model used to get the nested fields
+ * @param {Object} options
+ * @param {string} options.prefix prefix to add to the path
+ * @param {number} options.nestingLevel level of nesting to achieve
+ * @param {object} options.components components where components attributes can be found
+ * @returns {array<string>}
+ */
+declare const getNestedFieldsWithIntermediate: (model: any, { prefix, nestingLevel, components }: {
+    prefix?: string | undefined;
+    nestingLevel?: number | undefined;
+    components?: {} | undefined;
+}) => any;
+/**
+ * Creates an array of permissions with the "properties.fields" attribute filled
+ * @param {array} actions array of actions
+ * @param {object} options
+ * @param {number} options.nestingLevel level of nesting
+ * @param {array} options.restrictedSubjects subjectsId to ignore
+ * @returns {Permission[]}
+ */
+declare const getPermissionsWithNestedFields: (actions: any[], { nestingLevel, restrictedSubjects }?: any) => any;
+/**
+ * Cleans permissions' fields (add required ones, remove the non-existing ones)
+ * @param {Permission[]} permissions array of existing permissions in db
+ * @param {object} options
+ * @param {number} options.nestingLevel level of nesting
+ * @returns {Permission[]}
+ */
+declare const cleanPermissionFields: (permissions: any, { nestingLevel }?: any) => any;
+export { getNestedFields, getPermissionsWithNestedFields, cleanPermissionFields, getNestedFieldsWithIntermediate, };

package/dist/server/services/content-type.js

@@ -0,0 +1,158 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getNestedFieldsWithIntermediate = exports.cleanPermissionFields = exports.getPermissionsWithNestedFields = exports.getNestedFields = void 0;
+const lodash_1 = __importDefault(require("lodash"));
+const fp_1 = require("lodash/fp");
+const utils_1 = require("@strapi/utils");
+const utils_2 = require("../utils");
+const action_1 = __importDefault(require("../domain/action"));
+const permission_1 = __importDefault(require("../domain/permission"));
+/**
+ * Creates an array of paths to the fields and nested fields, without path nodes
+ * @param {string} model model used to get the nested fields
+ * @param {Object} options
+ * @param {string} options.prefix prefix to add to the path
+ * @param {number} options.nestingLevel level of nesting to achieve
+ * @param {object} options.components components where components attributes can be found
+ * @param {object} options.requiredOnly only returns required nestedFields
+ * @param {object} options.existingFields fields that are already selected, meaning that some sub-fields may be required
+ * @returns {array<string>}
+ * @param model
+ */
+const getNestedFields = (model, { prefix = '', nestingLevel = 15, components = {}, requiredOnly = false, existingFields = [] }) => {
+    if (nestingLevel === 0) {
+        return prefix ? [prefix] : [];
+    }
+    const nonAuthorizableFields = utils_1.contentTypes.getNonVisibleAttributes(model);
+    return lodash_1.default.reduce(model.attributes, (fields, attr, key) => {
+        if (nonAuthorizableFields.includes(key))
+            return fields;
+        const fieldPath = prefix ? `${prefix}.${key}` : key;
+        const shouldBeIncluded = !requiredOnly || attr.required === true;
+        const insideExistingFields = existingFields && existingFields.some((0, fp_1.startsWith)(fieldPath));
+        if (attr.type === 'component') {
+            if (shouldBeIncluded || insideExistingFields) {
+                // @ts-expect-error
+                const compoFields = getNestedFields(components[attr.component], {
+                    nestingLevel: nestingLevel - 1,
+                    prefix: fieldPath,
+                    components,
+                    requiredOnly,
+                    existingFields,
+                });
+                if (compoFields.length === 0 && shouldBeIncluded) {
+                    return fields.concat(fieldPath);
+                }
+                return fields.concat(compoFields);
+            }
+            return fields;
+        }
+        if (shouldBeIncluded) {
+            return fields.concat(fieldPath);
+        }
+        return fields;
+    }, []);
+};
+exports.getNestedFields = getNestedFields;
+/**
+ * Creates an array of paths to the fields and nested fields, with path nodes
+ * @param {string} model model used to get the nested fields
+ * @param {Object} options
+ * @param {string} options.prefix prefix to add to the path
+ * @param {number} options.nestingLevel level of nesting to achieve
+ * @param {object} options.components components where components attributes can be found
+ * @returns {array<string>}
+ */
+const getNestedFieldsWithIntermediate = (model, { prefix = '', nestingLevel = 15, components = {} }) => {
+    if (nestingLevel === 0) {
+        return [];
+    }
+    const nonAuthorizableFields = utils_1.contentTypes.getNonVisibleAttributes(model);
+    return lodash_1.default.reduce(model.attributes, (fields, attr, key) => {
+        if (nonAuthorizableFields.includes(key))
+            return fields;
+        const fieldPath = prefix ? `${prefix}.${key}` : key;
+        fields.push(fieldPath);
+        if (attr.type === 'component') {
+            // @ts-expect-error
+            const compoFields = getNestedFieldsWithIntermediate(components[attr.component], {
+                nestingLevel: nestingLevel - 1,
+                prefix: fieldPath,
+                components,
+            });
+            fields.push(...compoFields);
+        }
+        return fields;
+    }, []);
+};
+exports.getNestedFieldsWithIntermediate = getNestedFieldsWithIntermediate;
+/**
+ * Creates an array of permissions with the "properties.fields" attribute filled
+ * @param {array} actions array of actions
+ * @param {object} options
+ * @param {number} options.nestingLevel level of nesting
+ * @param {array} options.restrictedSubjects subjectsId to ignore
+ * @returns {Permission[]}
+ */
+const getPermissionsWithNestedFields = (actions, { nestingLevel, restrictedSubjects = [] } = {}) => {
+    return actions.reduce((permissions, action) => {
+        const validSubjects = action.subjects.filter((subject) => !restrictedSubjects.includes(subject));
+        // Create a Permission for each subject (content-type uid) within the action
+        for (const subject of validSubjects) {
+            const fields = action_1.default.appliesToProperty('fields', action)
+                ? getNestedFields(strapi.contentTypes[subject], {
+                    components: strapi.components,
+                    nestingLevel,
+                })
+                : undefined;
+            const permission = permission_1.default.create({
+                action: action.actionId,
+                subject,
+                properties: { fields },
+            });
+            permissions.push(permission);
+        }
+        return permissions;
+    }, []);
+};
+exports.getPermissionsWithNestedFields = getPermissionsWithNestedFields;
+/**
+ * Cleans permissions' fields (add required ones, remove the non-existing ones)
+ * @param {Permission[]} permissions array of existing permissions in db
+ * @param {object} options
+ * @param {number} options.nestingLevel level of nesting
+ * @returns {Permission[]}
+ */
+const cleanPermissionFields = (permissions, { nestingLevel } = {}) => {
+    const { actionProvider } = (0, utils_2.getService)('permission');
+    return permissions.map((permission) => {
+        const { action: actionId, subject, properties: { fields }, } = permission;
+        const action = actionProvider.get(actionId);
+        // todo see if it's possible to check property on action + subject (async)
+        if (!action_1.default.appliesToProperty('fields', action)) {
+            return permission_1.default.deleteProperty('fields', permission);
+        }
+        if (!subject || !strapi.contentTypes[subject]) {
+            return permission;
+        }
+        const possibleFields = getNestedFieldsWithIntermediate(strapi.contentTypes[subject], {
+            components: strapi.components,
+            nestingLevel,
+        });
+        const requiredFields = getNestedFields(strapi.contentTypes[subject], {
+            components: strapi.components,
+            requiredOnly: true,
+            nestingLevel,
+            existingFields: fields,
+        });
+        // @ts-expect-error
+        const badNestedFields = (0, fp_1.uniq)([...(0, fp_1.intersection)(fields, possibleFields), ...requiredFields]);
+        const newFields = badNestedFields.filter((field) => !badNestedFields.some((0, fp_1.startsWith)(`${field}.`)));
+        return permission_1.default.setProperty('fields', newFields, permission);
+    }, []);
+};
+exports.cleanPermissionFields = cleanPermissionFields;
+//# sourceMappingURL=content-type.js.map

package/dist/server/services/content-type.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"content-type.js","sourceRoot":"","sources":["../../../server/src/services/content-type.ts"],"names":[],"mappings":";;;;;;AAAA,oDAAuB;AACvB,kCAA2D;AAC3D,yCAAkE;AAClE,oCAAsC;AACtC,8DAA4C;AAC5C,sEAAoD;AAEpD;;;;;;;;;;;GAWG;AACH,MAAM,eAAe,GAAG,CACtB,KAAU,EACV,EAAE,MAAM,GAAG,EAAE,EAAE,YAAY,GAAG,EAAE,EAAE,UAAU,GAAG,EAAE,EAAE,YAAY,GAAG,KAAK,EAAE,cAAc,GAAG,EAAE,EAAE,EACzF,EAAE;IACP,IAAI,YAAY,KAAK,CAAC,EAAE;QACtB,OAAO,MAAM,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;KAC/B;IAED,MAAM,qBAAqB,GAAG,oBAAiB,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC;IAE/E,OAAO,gBAAC,CAAC,MAAM,CACb,KAAK,CAAC,UAAU,EAChB,CAAC,MAAW,EAAE,IAAS,EAAE,GAAQ,EAAE,EAAE;QACnC,IAAI,qBAAqB,CAAC,QAAQ,CAAC,GAAG,CAAC;YAAE,OAAO,MAAM,CAAC;QAEvD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,IAAI,GAAG,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC;QACpD,MAAM,gBAAgB,GAAG,CAAC,YAAY,IAAI,IAAI,CAAC,QAAQ,KAAK,IAAI,CAAC;QACjE,MAAM,oBAAoB,GAAG,cAAc,IAAI,cAAc,CAAC,IAAI,CAAC,IAAA,eAAU,EAAC,SAAS,CAAC,CAAC,CAAC;QAE1F,IAAI,IAAI,CAAC,IAAI,KAAK,WAAW,EAAE;YAC7B,IAAI,gBAAgB,IAAI,oBAAoB,EAAE;gBAC5C,mBAAmB;gBACnB,MAAM,WAAW,GAAG,eAAe,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE;oBAC9D,YAAY,EAAE,YAAY,GAAG,CAAC;oBAC9B,MAAM,EAAE,SAAS;oBACjB,UAAU;oBACV,YAAY;oBACZ,cAAc;iBACf,CAAC,CAAC;gBAEH,IAAI,WAAW,CAAC,MAAM,KAAK,CAAC,IAAI,gBAAgB,EAAE;oBAChD,OAAO,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;iBACjC;gBAED,OAAO,MAAM,CAAC,MAAM,CAAC,WAAW,CAAC,CAAC;aACnC;YACD,OAAO,MAAM,CAAC;SACf;QAED,IAAI,gBAAgB,EAAE;YACpB,OAAO,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;SACjC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC,EACD,EAAE,CACH,CAAC;AACJ,CAAC,CAAC;AA0IA,0CAAe;AAxIjB;;;;;;;;GAQG;AAEH,MAAM,+BAA+B,GAAG,CACtC,KAAU,EACV,EAAE,MAAM,GAAG,EAAE,EAAE,YAAY,GAAG,EAAE,EAAE,UAAU,GAAG,EAAE,EAAE,EACnD,EAAE;IACF,IAAI,YAAY,KAAK,CAAC,EAAE;QACtB,OAAO,EAAE,CAAC;KACX;IAED,MAAM,qBAAqB,GAAG,oBAAiB,CAAC,uBAAuB,CAAC,KAAK,CAAC,CAAC;IAE/E,OAAO,gBAAC,CAAC,MAAM,CACb,KAAK,CAAC,UAAU,EAChB,CAAC,MAAW,EAAE,IAAS,EAAE,GAAQ,EAAE,EAAE;QACnC,IAAI,qBAAqB,CAAC,QAAQ,CAAC,GAAG,CAAC;YAAE,OAAO,MAAM,CAAC;QAEvD,MAAM,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,IAAI,GAAG,EAAE,CAAC,CAAC,CAAC,GAAG,CAAC;QACpD,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QAEvB,IAAI,IAAI,CAAC,IAAI,KAAK,WAAW,EAAE;YAC7B,mBAAmB;YACnB,MAAM,WAAW,GAAG,+BAA+B,CAAC,UAAU,CAAC,IAAI,CAAC,SAAS,CAAC,EAAE;gBAC9E,YAAY,EAAE,YAAY,GAAG,CAAC;gBAC9B,MAAM,EAAE,SAAS;gBACjB,UAAU;aACX,CAAC,CAAC;YAEH,MAAM,CAAC,IAAI,CAAC,GAAG,WAAW,CAAC,CAAC;SAC7B;QAED,OAAO,MAAM,CAAC;IAChB,CAAC,EACD,EAAE,CACH,CAAC;AACJ,CAAC,CAAC;AAgGA,0EAA+B;AA9FjC;;;;;;;GAOG;AACH,MAAM,8BAA8B,GAAG,CACrC,OAAc,EACd,EAAE,YAAY,EAAE,kBAAkB,GAAG,EAAE,KAAK,EAAS,EACrD,EAAE;IACF,OAAO,OAAO,CAAC,MAAM,CAAC,CAAC,WAAW,EAAE,MAAM,EAAE,EAAE;QAC5C,MAAM,aAAa,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAC1C,CAAC,OAAY,EAAE,EAAE,CAAC,CAAC,kBAAkB,CAAC,QAAQ,CAAC,OAAO,CAAC,CACxD,CAAC;QAEF,4EAA4E;QAC5E,KAAK,MAAM,OAAO,IAAI,aAAa,EAAE;YACnC,MAAM,MAAM,GAAG,gBAAY,CAAC,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC;gBAC7D,CAAC,CAAC,eAAe,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE;oBAC5C,UAAU,EAAE,MAAM,CAAC,UAAU;oBAC7B,YAAY;iBACb,CAAC;gBACJ,CAAC,CAAC,SAAS,CAAC;YAEd,MAAM,UAAU,GAAG,oBAAgB,CAAC,MAAM,CAAC;gBACzC,MAAM,EAAE,MAAM,CAAC,QAAQ;gBACvB,OAAO;gBACP,UAAU,EAAE,EAAE,MAAM,EAAE;aACvB,CAAC,CAAC;YAEH,WAAW,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;SAC9B;QAED,OAAO,WAAW,CAAC;IACrB,CAAC,EAAE,EAAE,CAAC,CAAC;AACT,CAAC,CAAC;AAuDA,wEAA8B;AArDhC;;;;;;GAMG;AACH,MAAM,qBAAqB,GAAG,CAAC,WAAgB,EAAE,EAAE,YAAY,KAAK,EAAS,EAAE,EAAE;IAC/E,MAAM,EAAE,cAAc,EAAE,GAAG,IAAA,kBAAU,EAAC,YAAY,CAAC,CAAC;IAEpD,OAAO,WAAW,CAAC,GAAG,CAAC,CAAC,UAAe,EAAE,EAAE;QACzC,MAAM,EACJ,MAAM,EAAE,QAAQ,EAChB,OAAO,EACP,UAAU,EAAE,EAAE,MAAM,EAAE,GACvB,GAAG,UAAU,CAAC;QAEf,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAQ,CAAC;QAEnD,0EAA0E;QAC1E,IAAI,CAAC,gBAAY,CAAC,iBAAiB,CAAC,QAAQ,EAAE,MAAM,CAAC,EAAE;YACrD,OAAO,oBAAgB,CAAC,cAAc,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;SAC9D;QAED,IAAI,CAAC,OAAO,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE;YAC7C,OAAO,UAAU,CAAC;SACnB;QAED,MAAM,cAAc,GAAG,+BAA+B,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE;YACnF,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,YAAY;SACb,CAAC,CAAC;QAEH,MAAM,cAAc,GAAG,eAAe,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE;YACnE,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,YAAY,EAAE,IAAI;YAClB,YAAY;YACZ,cAAc,EAAE,MAAM;SACvB,CAAC,CAAC;QAEH,mBAAmB;QACnB,MAAM,eAAe,GAAG,IAAA,SAAI,EAAC,CAAC,GAAG,IAAA,iBAAY,EAAC,MAAM,EAAE,cAAc,CAAC,EAAE,GAAG,cAAc,CAAC,CAAC,CAAC;QAE3F,MAAM,SAAS,GAAG,eAAe,CAAC,MAAM,CACtC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC,eAAe,CAAC,IAAI,CAAC,IAAA,eAAU,EAAC,GAAG,KAAK,GAAG,CAAC,CAAC,CAC1D,CAAC;QAEF,OAAO,oBAAgB,CAAC,WAAW,CAAC,QAAQ,EAAE,SAAS,EAAE,UAAU,CAAC,CAAC;IACvE,CAAC,EAAE,EAAE,CAAC,CAAC;AACT,CAAC,CAAC;AAKA,sDAAqB"}

package/dist/server/services/index.d.ts

@@ -0,0 +1,61 @@
+import * as user from './user';
+import * as token from './token';
+import * as role from './role';
+import * as permission from './permission';
+import * as passport from './passport';
+import * as metrics from './metrics';
+import * as contentType from './content-type';
+import * as condition from './condition';
+import * as auth from './auth';
+import * as action from './action';
+import * as apiToken from './api-token';
+import * as transfer from './transfer';
+import * as projectSettings from './project-settings';
+declare const _default: {
+    user: typeof user;
+    token: typeof token;
+    role: typeof role;
+    permission: typeof permission;
+    passport: typeof passport;
+    metrics: typeof metrics;
+    'content-type': typeof contentType;
+    constants: {
+        CONTENT_TYPE_SECTION: string;
+        SUPER_ADMIN_CODE: string;
+        EDITOR_CODE: string;
+        AUTHOR_CODE: string;
+        READ_ACTION: string;
+        CREATE_ACTION: string;
+        UPDATE_ACTION: string;
+        DELETE_ACTION: string;
+        PUBLISH_ACTION: string;
+        API_TOKEN_TYPE: {
+            READ_ONLY: string;
+            FULL_ACCESS: string;
+            CUSTOM: string;
+        };
+        API_TOKEN_LIFESPANS: {
+            UNLIMITED: null;
+            DAYS_7: number;
+            DAYS_30: number;
+            DAYS_90: number;
+        };
+        TRANSFER_TOKEN_TYPE: {
+            PUSH: string;
+            PULL: string;
+        };
+        TRANSFER_TOKEN_LIFESPANS: {
+            UNLIMITED: null;
+            DAYS_7: number;
+            DAYS_30: number;
+            DAYS_90: number;
+        };
+    };
+    condition: typeof condition;
+    auth: typeof auth;
+    action: typeof action;
+    'api-token': typeof apiToken;
+    transfer: typeof transfer;
+    'project-settings': typeof projectSettings;
+};
+export default _default;

package/dist/server/services/index.js

@@ -0,0 +1,57 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || function (mod) {
+    if (mod && mod.__esModule) return mod;
+    var result = {};
+    if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
+    __setModuleDefault(result, mod);
+    return result;
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const user = __importStar(require("./user"));
+const token = __importStar(require("./token"));
+const role = __importStar(require("./role"));
+const permission = __importStar(require("./permission"));
+const passport = __importStar(require("./passport"));
+const metrics = __importStar(require("./metrics"));
+const contentType = __importStar(require("./content-type"));
+const constants = __importStar(require("./constants"));
+const condition = __importStar(require("./condition"));
+const auth = __importStar(require("./auth"));
+const action = __importStar(require("./action"));
+const apiToken = __importStar(require("./api-token"));
+const transfer = __importStar(require("./transfer"));
+const projectSettings = __importStar(require("./project-settings"));
+// TODO: TS - Export services one by one as this export is cjs
+exports.default = {
+    user,
+    token,
+    role,
+    permission,
+    passport,
+    metrics,
+    'content-type': contentType,
+    constants,
+    condition,
+    auth,
+    action,
+    'api-token': apiToken,
+    transfer,
+    'project-settings': projectSettings,
+};
+//# sourceMappingURL=index.js.map

package/dist/server/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../server/src/services/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;AAAA,6CAA+B;AAC/B,+CAAiC;AACjC,6CAA+B;AAC/B,yDAA2C;AAC3C,qDAAuC;AACvC,mDAAqC;AACrC,4DAA8C;AAC9C,uDAAyC;AACzC,uDAAyC;AACzC,6CAA+B;AAC/B,iDAAmC;AACnC,sDAAwC;AACxC,qDAAuC;AACvC,oEAAsD;AAEtD,8DAA8D;AAC9D,kBAAe;IACb,IAAI;IACJ,KAAK;IACL,IAAI;IACJ,UAAU;IACV,QAAQ;IACR,OAAO;IACP,cAAc,EAAE,WAAW;IAC3B,SAAS;IACT,SAAS;IACT,IAAI;IACJ,MAAM;IACN,WAAW,EAAE,QAAQ;IACrB,QAAQ;IACR,kBAAkB,EAAE,eAAe;CACpC,CAAC"}

package/dist/server/services/metrics.d.ts

@@ -0,0 +1,7 @@
+import type { Strapi } from '@strapi/types';
+declare const sendDidInviteUser: () => Promise<void>;
+declare const sendDidUpdateRolePermissions: () => Promise<void>;
+declare const sendDidChangeInterfaceLanguage: () => Promise<void>;
+declare const sendUpdateProjectInformation: () => Promise<void>;
+declare const startCron: (strapi: Strapi) => void;
+export { sendDidInviteUser, sendDidUpdateRolePermissions, sendDidChangeInterfaceLanguage, sendUpdateProjectInformation, startCron, };

package/dist/server/services/metrics.js

@@ -0,0 +1,37 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.startCron = exports.sendUpdateProjectInformation = exports.sendDidChangeInterfaceLanguage = exports.sendDidUpdateRolePermissions = exports.sendDidInviteUser = void 0;
+const utils_1 = require("../utils");
+const sendDidInviteUser = async () => {
+    const numberOfUsers = await (0, utils_1.getService)('user').count();
+    const numberOfRoles = await (0, utils_1.getService)('role').count();
+    strapi.telemetry.send('didInviteUser', {
+        groupProperties: { numberOfRoles, numberOfUsers },
+    });
+};
+exports.sendDidInviteUser = sendDidInviteUser;
+const sendDidUpdateRolePermissions = async () => {
+    strapi.telemetry.send('didUpdateRolePermissions');
+};
+exports.sendDidUpdateRolePermissions = sendDidUpdateRolePermissions;
+const sendDidChangeInterfaceLanguage = async () => {
+    const languagesInUse = await (0, utils_1.getService)('user').getLanguagesInUse();
+    // This event is anonymous
+    strapi.telemetry.send('didChangeInterfaceLanguage', { userProperties: { languagesInUse } });
+};
+exports.sendDidChangeInterfaceLanguage = sendDidChangeInterfaceLanguage;
+const sendUpdateProjectInformation = async () => {
+    const numberOfActiveAdminUsers = await (0, utils_1.getService)('user').count({ isActive: true });
+    const numberOfAdminUsers = await (0, utils_1.getService)('user').count();
+    strapi.telemetry.send('didUpdateProjectInformation', {
+        groupProperties: { numberOfActiveAdminUsers, numberOfAdminUsers },
+    });
+};
+exports.sendUpdateProjectInformation = sendUpdateProjectInformation;
+const startCron = (strapi) => {
+    strapi.cron.add({
+        '0 0 0 * * *': () => sendUpdateProjectInformation(),
+    });
+};
+exports.startCron = startCron;
+//# sourceMappingURL=metrics.js.map

package/dist/server/services/metrics.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"metrics.js","sourceRoot":"","sources":["../../../server/src/services/metrics.ts"],"names":[],"mappings":";;;AACA,oCAAsC;AAEtC,MAAM,iBAAiB,GAAG,KAAK,IAAI,EAAE;IACnC,MAAM,aAAa,GAAG,MAAM,IAAA,kBAAU,EAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC;IACvD,MAAM,aAAa,GAAG,MAAM,IAAA,kBAAU,EAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC;IACvD,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,eAAe,EAAE;QACrC,eAAe,EAAE,EAAE,aAAa,EAAE,aAAa,EAAE;KAClD,CAAC,CAAC;AACL,CAAC,CAAC;AA4BA,8CAAiB;AA1BnB,MAAM,4BAA4B,GAAG,KAAK,IAAI,EAAE;IAC9C,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC;AACpD,CAAC,CAAC;AAyBA,oEAA4B;AAvB9B,MAAM,8BAA8B,GAAG,KAAK,IAAI,EAAE;IAChD,MAAM,cAAc,GAAG,MAAM,IAAA,kBAAU,EAAC,MAAM,CAAC,CAAC,iBAAiB,EAAE,CAAC;IACpE,0BAA0B;IAC1B,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,4BAA4B,EAAE,EAAE,cAAc,EAAE,EAAE,cAAc,EAAE,EAAE,CAAC,CAAC;AAC9F,CAAC,CAAC;AAoBA,wEAA8B;AAlBhC,MAAM,4BAA4B,GAAG,KAAK,IAAI,EAAE;IAC9C,MAAM,wBAAwB,GAAG,MAAM,IAAA,kBAAU,EAAC,MAAM,CAAC,CAAC,KAAK,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACpF,MAAM,kBAAkB,GAAG,MAAM,IAAA,kBAAU,EAAC,MAAM,CAAC,CAAC,KAAK,EAAE,CAAC;IAE5D,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,6BAA6B,EAAE;QACnD,eAAe,EAAE,EAAE,wBAAwB,EAAE,kBAAkB,EAAE;KAClE,CAAC,CAAC;AACL,CAAC,CAAC;AAYA,oEAA4B;AAV9B,MAAM,SAAS,GAAG,CAAC,MAAc,EAAE,EAAE;IACnC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC;QACd,aAAa,EAAE,GAAG,EAAE,CAAC,4BAA4B,EAAE;KACpD,CAAC,CAAC;AACL,CAAC,CAAC;AAOA,8BAAS"}

package/dist/server/services/passport/local-strategy.d.ts

@@ -0,0 +1,3 @@
+import type { Strapi } from '@strapi/types';
+declare const createLocalStrategy: (strapi: Strapi, middleware?: any) => any;
+export default createLocalStrategy;

package/dist/server/services/passport/local-strategy.js

@@ -0,0 +1,28 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const fp_1 = require("lodash/fp");
+// @ts-expect-error
+const passport_local_1 = require("passport-local");
+const createLocalStrategy = (strapi, middleware) => {
+    return new passport_local_1.Strategy({
+        usernameField: 'email',
+        passwordField: 'password',
+        session: false,
+    }, (email, password, done) => {
+        return (
+        // @ts-expect-error
+        strapi.admin.services.auth
+            .checkCredentials({ email: (0, fp_1.toLower)(email), password })
+            // @ts-expect-error
+            .then(async ([error, user, message]) => {
+            if (middleware) {
+                return middleware([error, user, message], done);
+            }
+            return done(error, user, message);
+        })
+            // @ts-expect-error
+            .catch((error) => done(error)));
+    });
+};
+exports.default = createLocalStrategy;
+//# sourceMappingURL=local-strategy.js.map

package/dist/server/services/passport/local-strategy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"local-strategy.js","sourceRoot":"","sources":["../../../../server/src/services/passport/local-strategy.ts"],"names":[],"mappings":";;AAAA,kCAAoC;AACpC,mBAAmB;AACnB,mDAA2D;AAG3D,MAAM,mBAAmB,GAAG,CAAC,MAAc,EAAE,UAAgB,EAAE,EAAE;IAC/D,OAAO,IAAI,yBAAa,CACtB;QACE,aAAa,EAAE,OAAO;QACtB,aAAa,EAAE,UAAU;QACzB,OAAO,EAAE,KAAK;KACf,EACD,CAAC,KAAU,EAAE,QAAa,EAAE,IAAS,EAAE,EAAE;QACvC,OAAO;QACL,mBAAmB;QACnB,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI;aACvB,gBAAgB,CAAC,EAAE,KAAK,EAAE,IAAA,YAAO,EAAC,KAAK,CAAC,EAAE,QAAQ,EAAE,CAAC;YACtD,mBAAmB;aAClB,IAAI,CAAC,KAAK,EAAE,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,EAAE,EAAE;YACrC,IAAI,UAAU,EAAE;gBACd,OAAO,UAAU,CAAC,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,CAAC;aACjD;YAED,OAAO,IAAI,CAAC,KAAK,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QACpC,CAAC,CAAC;YACF,mBAAmB;aAClB,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CACjC,CAAC;IACJ,CAAC,CACF,CAAC;AACJ,CAAC,CAAC;AAEF,kBAAe,mBAAmB,CAAC"}

package/dist/server/services/passport.d.ts

@@ -0,0 +1,7 @@
+declare const authEventsMapper: {
+    onConnectionSuccess: string;
+    onConnectionError: string;
+};
+declare const getPassportStrategies: () => any[];
+declare const init: () => any;
+export { init, getPassportStrategies, authEventsMapper };

package/dist/server/services/passport.js

@@ -0,0 +1,40 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.authEventsMapper = exports.getPassportStrategies = exports.init = void 0;
+// @ts-expect-error
+const koa_passport_1 = __importDefault(require("koa-passport"));
+const fp_1 = require("lodash/fp");
+const local_strategy_1 = __importDefault(require("./passport/local-strategy"));
+const authEventsMapper = {
+    onConnectionSuccess: 'admin.auth.success',
+    onConnectionError: 'admin.auth.error',
+};
+exports.authEventsMapper = authEventsMapper;
+const valueIsFunctionType = ([, value]) => (0, fp_1.isFunction)(value);
+const keyIsValidEventName = ([key]) => {
+    return Object.keys(strapi.admin.services.passport.authEventsMapper).includes(key);
+};
+const getPassportStrategies = () => [(0, local_strategy_1.default)(strapi)];
+exports.getPassportStrategies = getPassportStrategies;
+const registerAuthEvents = () => {
+    const { events = {} } = strapi.config.get('admin.auth', {});
+    const { authEventsMapper } = strapi.admin.services.passport;
+    const eventList = Object.entries(events)
+        .filter(keyIsValidEventName)
+        .filter(valueIsFunctionType);
+    for (const [eventName, handler] of eventList) {
+        strapi.eventHub.on(authEventsMapper[eventName], handler);
+    }
+};
+const init = () => {
+    strapi.admin.services.passport
+        .getPassportStrategies()
+        .forEach((strategy) => koa_passport_1.default.use(strategy));
+    registerAuthEvents();
+    return koa_passport_1.default.initialize();
+};
+exports.init = init;
+//# sourceMappingURL=passport.js.map

package/dist/server/services/passport.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"passport.js","sourceRoot":"","sources":["../../../server/src/services/passport.ts"],"names":[],"mappings":";;;;;;AAAA,mBAAmB;AACnB,gEAAoC;AACpC,kCAAuC;AAEvC,+EAA4D;AAE5D,MAAM,gBAAgB,GAAG;IACvB,mBAAmB,EAAE,oBAAoB;IACzC,iBAAiB,EAAE,kBAAkB;CACtC,CAAC;AAgCoC,4CAAgB;AA9BtD,MAAM,mBAAmB,GAAG,CAAC,CAAC,EAAE,KAAK,CAAM,EAAE,EAAE,CAAC,IAAA,eAAU,EAAC,KAAK,CAAC,CAAC;AAClE,MAAM,mBAAmB,GAAG,CAAC,CAAC,GAAG,CAAM,EAAE,EAAE;IACzC,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;AACpF,CAAC,CAAC;AAEF,MAAM,qBAAqB,GAAG,GAAG,EAAE,CAAC,CAAC,IAAA,wBAAmB,EAAC,MAAM,CAAC,CAAC,CAAC;AAyBnD,sDAAqB;AAvBpC,MAAM,kBAAkB,GAAG,GAAG,EAAE;IAC9B,MAAM,EAAE,MAAM,GAAG,EAAE,EAAE,GAAG,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,EAAE,EAAE,CAAQ,CAAC;IACnE,MAAM,EAAE,gBAAgB,EAAE,GAAG,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,QAAQ,CAAC;IAE5D,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC;SACrC,MAAM,CAAC,mBAAmB,CAAC;SAC3B,MAAM,CAAC,mBAAmB,CAAQ,CAAC;IAEtC,KAAK,MAAM,CAAC,SAAS,EAAE,OAAO,CAAC,IAAI,SAAS,EAAE;QAC5C,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,gBAAgB,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC;KAC1D;AACH,CAAC,CAAC;AAEF,MAAM,IAAI,GAAG,GAAG,EAAE;IAChB,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,QAAQ;SAC3B,qBAAqB,EAAE;SACvB,OAAO,CAAC,CAAC,QAAa,EAAE,EAAE,CAAC,sBAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC;IAEtD,kBAAkB,EAAE,CAAC;IAErB,OAAO,sBAAQ,CAAC,UAAU,EAAE,CAAC;AAC/B,CAAC,CAAC;AAEO,oBAAI"}

package/dist/server/services/permission/engine.d.ts

@@ -0,0 +1,15 @@
+/// <reference types="lodash" />
+declare const _default: (params: any) => {
+    readonly hooks: import("@strapi/permissions/dist/engine/hooks").PermissionEngineHooks;
+    /**
+     * Generate an ability based on the given user (using associated roles & permissions)
+     * @param user
+     * @returns {Promise<Ability>}
+     */
+    generateUserAbility(user: any): Promise<import("@casl/ability").Ability<import("@casl/ability").AbilityTuple, any>>;
+    /**
+     * Check many permissions based on an ability
+     */
+    checkMany: import("lodash").CurriedFunction2<any, any, any>;
+};
+export default _default;

package/dist/server/services/permission/engine.js

@@ -0,0 +1,67 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const fp_1 = require("lodash/fp");
+const permissions_1 = __importDefault(require("@strapi/permissions"));
+const index_1 = __importDefault(require("../../domain/permission/index"));
+const utils_1 = require("../../utils");
+exports.default = (params) => {
+    const { providers } = params;
+    const engine = permissions_1.default.engine
+        .new({ providers })
+        /**
+         * Validate the permission's action exists in the action registry
+         */
+        .on('before-format::validate.permission', ({ permission }) => {
+        const action = providers.action.get(permission.action);
+        // If the action isn't registered into the action provider, then ignore the permission
+        if (!action) {
+            strapi.log.debug(`Unknown action "${permission.action}" supplied when registering a new permission in engine`);
+            return false;
+        }
+    })
+        /**
+         * Remove invalid properties from the permission based on the action (applyToProperties)
+         */
+        .on('format.permission', (permission) => {
+        const action = providers.action.get(permission.action);
+        const properties = permission.properties || {};
+        // Only keep the properties allowed by the action (action.applyToProperties)
+        const propertiesName = Object.keys(properties);
+        const invalidProperties = (0, fp_1.difference)(propertiesName, action.applyToProperties || propertiesName);
+        const permissionWithSanitizedProperties = invalidProperties.reduce((property) => index_1.default.deleteProperty(property, permission), permission);
+        return permissionWithSanitizedProperties;
+    })
+        /**
+         * Ignore the permission if the fields property is an empty array (access to no field)
+         */
+        .on('after-format::validate.permission', ({ permission }) => {
+        const { fields } = permission.properties;
+        if ((0, fp_1.isArray)(fields) && (0, fp_1.isEmpty)(fields)) {
+            return false;
+        }
+    });
+    return {
+        get hooks() {
+            return engine.hooks;
+        },
+        /**
+         * Generate an ability based on the given user (using associated roles & permissions)
+         * @param user
+         * @returns {Promise<Ability>}
+         */
+        async generateUserAbility(user) {
+            const permissions = (await (0, utils_1.getService)('permission').findUserPermissions(user));
+            return engine.generateAbility(permissions, user);
+        },
+        /**
+         * Check many permissions based on an ability
+         */
+        checkMany: (0, fp_1.curry)((ability, permissions) => {
+            return permissions.map(({ action, subject, field }) => ability.can(action, subject, field));
+        }),
+    };
+};
+//# sourceMappingURL=engine.js.map

package/dist/server/services/permission/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../../../server/src/services/permission/engine.ts"],"names":[],"mappings":";;;;;AAAA,kCAAgE;AAChE,sEAA8C;AAE9C,0EAA6D;AAC7D,uCAAyC;AAEzC,kBAAe,CAAC,MAAW,EAAE,EAAE;IAC7B,MAAM,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC;IAE7B,MAAM,MAAM,GAAG,qBAAW,CAAC,MAAM;SAC9B,GAAG,CAAC,EAAE,SAAS,EAAE,CAAC;QACnB;;WAEG;SACF,EAAE,CAAC,oCAAoC,EAAE,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE;QAC3D,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;QAEvD,sFAAsF;QACtF,IAAI,CAAC,MAAM,EAAE;YACX,MAAM,CAAC,GAAG,CAAC,KAAK,CACd,mBAAmB,UAAU,CAAC,MAAM,wDAAwD,CAC7F,CAAC;YACF,OAAO,KAAK,CAAC;SACd;IACH,CAAC,CAAC;QAEF;;WAEG;SACF,EAAE,CAAC,mBAAmB,EAAE,CAAC,UAAU,EAAE,EAAE;QACtC,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;QACvD,MAAM,UAAU,GAAG,UAAU,CAAC,UAAU,IAAI,EAAE,CAAC;QAE/C,4EAA4E;QAC5E,MAAM,cAAc,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAC/C,MAAM,iBAAiB,GAAG,IAAA,eAAU,EAClC,cAAc,EACd,MAAM,CAAC,iBAAiB,IAAI,cAAc,CAC3C,CAAC;QAEF,MAAM,iCAAiC,GAAG,iBAAiB,CAAC,MAAM,CAChE,CAAC,QAAQ,EAAE,EAAE,CAAC,eAAgB,CAAC,cAAc,CAAC,QAAQ,EAAE,UAAU,CAAC,EACnE,UAAU,CACX,CAAC;QAEF,OAAO,iCAAiC,CAAC;IAC3C,CAAC,CAAC;QAEF;;WAEG;SACF,EAAE,CAAC,mCAAmC,EAAE,CAAC,EAAE,UAAU,EAAE,EAAE,EAAE;QAC1D,MAAM,EAAE,MAAM,EAAE,GAAG,UAAU,CAAC,UAAU,CAAC;QAEzC,IAAI,IAAA,YAAO,EAAC,MAAM,CAAC,IAAI,IAAA,YAAO,EAAC,MAAM,CAAC,EAAE;YACtC,OAAO,KAAK,CAAC;SACd;IACH,CAAC,CAAC,CAAC;IAEL,OAAO;QACL,IAAI,KAAK;YACP,OAAO,MAAM,CAAC,KAAK,CAAC;QACtB,CAAC;QAED;;;;WAIG;QACH,KAAK,CAAC,mBAAmB,CAAC,IAAS;YACjC,MAAM,WAAW,GAAG,CAAC,MAAM,IAAA,kBAAU,EAAC,YAAY,CAAC,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAQ,CAAC;YAEtF,OAAO,MAAM,CAAC,eAAe,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;QACnD,CAAC;QAED;;WAEG;QACH,SAAS,EAAE,IAAA,UAAK,EAAC,CAAC,OAAY,EAAE,WAAgB,EAAE,EAAE;YAClD,OAAO,WAAW,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAO,EAAE,EAAE,CACzD,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,CACpC,CAAC;QACJ,CAAC,CAAC;KACH,CAAC;AACJ,CAAC,CAAC"}

package/dist/server/services/permission/permissions-manager/index.d.ts

@@ -0,0 +1,16 @@
+declare const _default: ({ ability, action, model }: any) => {
+    validateQuery: (data: any, options?: {}) => any;
+    validateInput: (data: any, options?: {}) => any;
+    sanitizeOutput: (data: any, options?: any) => any;
+    sanitizeInput: (data: any, options?: any) => any;
+    sanitizeQuery: (data: any, options?: any) => any;
+    ability: any;
+    action: any;
+    model: any;
+    isAllowed: any;
+    toSubject(target: any, subjectType?: any): any;
+    pickPermittedFieldsOf(data: any, options?: {}): any;
+    getQuery(queryAction?: any): any;
+    addPermissionsQueryTo(query: any, action: any): any;
+};
+export default _default;

package/dist/server/services/permission/permissions-manager/index.js

@@ -0,0 +1,48 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+/* eslint-disable @typescript-eslint/default-param-last */
+const _ = require("lodash");
+const fp_1 = require("lodash/fp");
+const ability_1 = require("@casl/ability");
+const sanitize_1 = __importDefault(require("./sanitize"));
+const validate_1 = __importDefault(require("./validate"));
+const query_builders_1 = require("./query-builders");
+exports.default = ({ ability, action, model }) => ({
+    ability,
+    action,
+    model,
+    get isAllowed() {
+        return this.ability.can(action, model);
+    },
+    toSubject(target, subjectType = model) {
+        return (0, ability_1.subject)(subjectType, target);
+    },
+    pickPermittedFieldsOf(data, options = {}) {
+        return this.sanitizeInput(data, options);
+    },
+    getQuery(queryAction = action) {
+        if (_.isUndefined(queryAction)) {
+            throw new Error('Action must be defined to build a permission query');
+        }
+        return (0, query_builders_1.buildStrapiQuery)((0, query_builders_1.buildCaslQuery)(ability, queryAction, model));
+    },
+    addPermissionsQueryTo(query = {}, action) {
+        const newQuery = (0, fp_1.cloneDeep)(query);
+        const permissionQuery = this.getQuery(action) ?? undefined;
+        if ((0, fp_1.isPlainObject)(query.filters)) {
+            newQuery.filters = permissionQuery
+                ? { $and: [query.filters, permissionQuery] }
+                : query.filters;
+        }
+        else {
+            newQuery.filters = permissionQuery;
+        }
+        return newQuery;
+    },
+    ...(0, sanitize_1.default)({ action, ability, model }),
+    ...(0, validate_1.default)({ action, ability, model }),
+});
+//# sourceMappingURL=index.js.map

package/dist/server/services/permission/permissions-manager/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../server/src/services/permission/permissions-manager/index.ts"],"names":[],"mappings":";;;;;AAAA,0DAA0D;AAC1D,4BAA6B;AAC7B,kCAAqD;AACrD,2CAAqD;AACrD,0DAA+C;AAC/C,0DAA+C;AAE/C,qDAAoE;AAEpE,kBAAe,CAAC,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAO,EAAE,EAAE,CAAC,CAAC;IACnD,OAAO;IACP,MAAM;IACN,KAAK;IAEL,IAAI,SAAS;QACX,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,EAAE,KAAK,CAAC,CAAC;IACzC,CAAC;IAED,SAAS,CAAC,MAAW,EAAE,WAAW,GAAG,KAAK;QACxC,OAAO,IAAA,iBAAS,EAAC,WAAW,EAAE,MAAM,CAAC,CAAC;IACxC,CAAC;IAED,qBAAqB,CAAC,IAAS,EAAE,OAAO,GAAG,EAAE;QAC3C,OAAO,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;IAC3C,CAAC;IAED,QAAQ,CAAC,WAAW,GAAG,MAAM;QAC3B,IAAI,CAAC,CAAC,WAAW,CAAC,WAAW,CAAC,EAAE;YAC9B,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;SACvE;QAED,OAAO,IAAA,iCAAgB,EAAC,IAAA,+BAAc,EAAC,OAAO,EAAE,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC;IACvE,CAAC;IAED,qBAAqB,CAAC,QAAQ,EAAS,EAAE,MAAW;QAClD,MAAM,QAAQ,GAAG,IAAA,cAAS,EAAC,KAAK,CAAC,CAAC;QAClC,MAAM,eAAe,GAAG,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC;QAE3D,IAAI,IAAA,kBAAa,EAAC,KAAK,CAAC,OAAO,CAAC,EAAE;YAChC,QAAQ,CAAC,OAAO,GAAG,eAAe;gBAChC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,KAAK,CAAC,OAAO,EAAE,eAAe,CAAC,EAAE;gBAC5C,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC;SACnB;aAAM;YACL,QAAQ,CAAC,OAAO,GAAG,eAAe,CAAC;SACpC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,GAAG,IAAA,kBAAqB,EAAC,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;IACpD,GAAG,IAAA,kBAAqB,EAAC,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;CACrD,CAAC,CAAC"}