@strapi/permissions 0.0.0-next.e9bb5ccdc459f4c6b6717a2d5d86359b7a47d47d → 0.0.0-next.ea6e3b80ab37f554da4f8bde08dbfe9b57400d31

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (32) hide show
  1. package/LICENSE +18 -3
  2. package/dist/domain/index.d.ts +3 -0
  3. package/dist/domain/index.d.ts.map +1 -0
  4. package/dist/domain/permission/index.d.ts +26 -0
  5. package/dist/domain/permission/index.d.ts.map +1 -0
  6. package/dist/engine/abilities/casl-ability.d.ts +12 -0
  7. package/dist/engine/abilities/casl-ability.d.ts.map +1 -0
  8. package/dist/engine/abilities/index.d.ts +2 -0
  9. package/dist/engine/abilities/index.d.ts.map +1 -0
  10. package/dist/engine/hooks.d.ts +55 -0
  11. package/dist/engine/hooks.d.ts.map +1 -0
  12. package/dist/engine/index.d.ts +28 -0
  13. package/dist/engine/index.d.ts.map +1 -0
  14. package/dist/index.d.ts +4 -0
  15. package/dist/index.d.ts.map +1 -0
  16. package/dist/index.js +297 -0
  17. package/dist/index.js.map +1 -0
  18. package/dist/index.mjs +275 -0
  19. package/dist/index.mjs.map +1 -0
  20. package/dist/types.d.ts +19 -0
  21. package/dist/types.d.ts.map +1 -0
  22. package/package.json +23 -7
  23. package/.eslintignore +0 -2
  24. package/.eslintrc.js +0 -4
  25. package/index.d.ts +0 -54
  26. package/lib/domain/index.js +0 -7
  27. package/lib/domain/permission/index.js +0 -68
  28. package/lib/engine/abilities/casl-ability.js +0 -57
  29. package/lib/engine/abilities/index.js +0 -7
  30. package/lib/engine/hooks.js +0 -97
  31. package/lib/engine/index.js +0 -209
  32. package/lib/index.js +0 -9
package/dist/index.mjs ADDED
@@ -0,0 +1,275 @@
1
+ import _, { cloneDeep, isArray, has, pick, isNil, isObject } from "lodash/fp";
2
+ import qs from "qs";
3
+ import { hooks } from "@strapi/utils";
4
+ import * as sift from "sift";
5
+ import { AbilityBuilder, Ability } from "@casl/ability";
6
+ const PERMISSION_FIELDS = ["action", "subject", "properties", "conditions"];
7
+ const sanitizePermissionFields = _.pick(PERMISSION_FIELDS);
8
+ const getDefaultPermission = () => ({
9
+ conditions: [],
10
+ properties: {},
11
+ subject: null
12
+ });
13
+ const create = _.pipe(_.pick(PERMISSION_FIELDS), _.merge(getDefaultPermission()));
14
+ const addCondition = _.curry((condition, permission) => {
15
+ const { conditions } = permission;
16
+ const newConditions = Array.isArray(conditions) ? _.uniq(conditions.concat(condition)) : [condition];
17
+ return _.set("conditions", newConditions, permission);
18
+ });
19
+ const getProperty = _.curry(
20
+ (property, permission) => _.get(`properties.${property}`, permission)
21
+ );
22
+ const index$3 = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
23
+ __proto__: null,
24
+ addCondition,
25
+ create,
26
+ getProperty,
27
+ sanitizePermissionFields
28
+ }, Symbol.toStringTag, { value: "Module" }));
29
+ const index$2 = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
30
+ __proto__: null,
31
+ permission: index$3
32
+ }, Symbol.toStringTag, { value: "Module" }));
33
+ const createEngineHooks = () => ({
34
+ "before-format::validate.permission": hooks.createAsyncBailHook(),
35
+ "format.permission": hooks.createAsyncSeriesWaterfallHook(),
36
+ "after-format::validate.permission": hooks.createAsyncBailHook(),
37
+ "before-evaluate.permission": hooks.createAsyncSeriesHook(),
38
+ "before-register.permission": hooks.createAsyncSeriesHook()
39
+ });
40
+ const createValidateContext = (permission) => ({
41
+ get permission() {
42
+ return cloneDeep(permission);
43
+ }
44
+ });
45
+ const createBeforeEvaluateContext = (permission) => ({
46
+ get permission() {
47
+ return cloneDeep(permission);
48
+ },
49
+ addCondition(condition) {
50
+ Object.assign(permission, addCondition(condition, permission));
51
+ return this;
52
+ }
53
+ });
54
+ const createWillRegisterContext = ({ permission, options }) => ({
55
+ ...options,
56
+ get permission() {
57
+ return cloneDeep(permission);
58
+ },
59
+ condition: {
60
+ and(rawConditionObject) {
61
+ if (!permission.condition) {
62
+ permission.condition = { $and: [] };
63
+ }
64
+ if (isArray(permission.condition.$and)) {
65
+ permission.condition.$and.push(rawConditionObject);
66
+ }
67
+ return this;
68
+ },
69
+ or(rawConditionObject) {
70
+ if (!permission.condition) {
71
+ permission.condition = { $and: [] };
72
+ }
73
+ if (isArray(permission.condition.$and)) {
74
+ const orClause = permission.condition.$and.find(has("$or"));
75
+ if (orClause) {
76
+ orClause.$or.push(rawConditionObject);
77
+ } else {
78
+ permission.condition.$and.push({ $or: [rawConditionObject] });
79
+ }
80
+ }
81
+ return this;
82
+ }
83
+ }
84
+ });
85
+ const allowedOperations = [
86
+ "$or",
87
+ "$and",
88
+ "$eq",
89
+ "$ne",
90
+ "$in",
91
+ "$nin",
92
+ "$lt",
93
+ "$lte",
94
+ "$gt",
95
+ "$gte",
96
+ "$exists",
97
+ "$elemMatch"
98
+ ];
99
+ const operations = pick(allowedOperations, sift);
100
+ const conditionsMatcher = (conditions) => {
101
+ return sift.createQueryTester(conditions, { operations });
102
+ };
103
+ const buildParametrizedAction = ({ name, params }) => {
104
+ return `${name}?${qs.stringify(params)}`;
105
+ };
106
+ const caslAbilityBuilder = () => {
107
+ const { can, build, ...rest } = new AbilityBuilder(Ability);
108
+ return {
109
+ can(permission) {
110
+ const { action, subject, properties = {}, condition } = permission;
111
+ const { fields } = properties;
112
+ const caslAction = typeof action === "string" ? action : buildParametrizedAction(action);
113
+ return can(
114
+ caslAction,
115
+ isNil(subject) ? "all" : subject,
116
+ fields,
117
+ isObject(condition) ? condition : void 0
118
+ );
119
+ },
120
+ buildParametrizedAction({ name, params }) {
121
+ return `${name}?${qs.stringify(params)}`;
122
+ },
123
+ build() {
124
+ const ability = build({ conditionsMatcher });
125
+ function decorateCan(originalCan) {
126
+ return function(...args) {
127
+ const [action, ...rest2] = args;
128
+ const caslAction = typeof action === "string" ? action : buildParametrizedAction(action);
129
+ return originalCan.apply(ability, [caslAction, ...rest2]);
130
+ };
131
+ }
132
+ ability.can = decorateCan(ability.can);
133
+ return ability;
134
+ },
135
+ ...rest
136
+ };
137
+ };
138
+ const index$1 = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
139
+ __proto__: null,
140
+ caslAbilityBuilder
141
+ }, Symbol.toStringTag, { value: "Module" }));
142
+ const createEngineState = () => {
143
+ const hooks2 = createEngineHooks();
144
+ return { hooks: hooks2 };
145
+ };
146
+ const newEngine = (params) => {
147
+ const { providers, abilityBuilderFactory = caslAbilityBuilder } = params;
148
+ const state = createEngineState();
149
+ const runValidationHook = async (hook, context) => state.hooks[hook].call(context);
150
+ const evaluate = async (params2) => {
151
+ const { options, register } = params2;
152
+ const preFormatValidation = await runValidationHook(
153
+ "before-format::validate.permission",
154
+ createBeforeEvaluateContext(params2.permission)
155
+ );
156
+ if (preFormatValidation === false) {
157
+ return;
158
+ }
159
+ const permission = await state.hooks["format.permission"].call(
160
+ params2.permission
161
+ );
162
+ const afterFormatValidation = await runValidationHook(
163
+ "after-format::validate.permission",
164
+ createValidateContext(permission)
165
+ );
166
+ if (afterFormatValidation === false) {
167
+ return;
168
+ }
169
+ await state.hooks["before-evaluate.permission"].call(createBeforeEvaluateContext(permission));
170
+ const {
171
+ action: actionName,
172
+ subject,
173
+ properties,
174
+ conditions = [],
175
+ actionParameters = {}
176
+ } = permission;
177
+ let action = actionName;
178
+ if (actionParameters && Object.keys(actionParameters).length > 0) {
179
+ action = `${actionName}?${qs.stringify(actionParameters)}`;
180
+ }
181
+ if (conditions.length === 0) {
182
+ return register({ action, subject, properties });
183
+ }
184
+ const resolveConditions = _.map(providers.condition.get);
185
+ const removeInvalidConditions = _.filter(
186
+ (condition) => _.isFunction(condition.handler)
187
+ );
188
+ const evaluateConditions = (conditions2) => {
189
+ return Promise.all(
190
+ conditions2.map(async (condition) => ({
191
+ condition,
192
+ result: await condition.handler(
193
+ _.merge(options, { permission: _.cloneDeep(permission) })
194
+ )
195
+ }))
196
+ );
197
+ };
198
+ const removeInvalidResults = _.filter(
199
+ ({ result }) => _.isBoolean(result) || _.isObject(result)
200
+ );
201
+ const evaluatedConditions = await Promise.resolve(conditions).then(resolveConditions).then(removeInvalidConditions).then(evaluateConditions).then(removeInvalidResults);
202
+ const resultPropEq = _.propEq("result");
203
+ const pickResults = _.map(_.prop("result"));
204
+ if (evaluatedConditions.every(resultPropEq(false))) {
205
+ return;
206
+ }
207
+ if (_.isEmpty(evaluatedConditions) || evaluatedConditions.some(resultPropEq(true))) {
208
+ return register({ action, subject, properties });
209
+ }
210
+ const results = pickResults(evaluatedConditions).filter(_.isObject);
211
+ if (_.isEmpty(results)) {
212
+ return register({ action, subject, properties });
213
+ }
214
+ return register({
215
+ action,
216
+ subject,
217
+ properties,
218
+ condition: { $and: [{ $or: results }] }
219
+ });
220
+ };
221
+ return {
222
+ get hooks() {
223
+ return state.hooks;
224
+ },
225
+ /**
226
+ * Create a register function that wraps a `can` function
227
+ * used to register a permission in the ability builder
228
+ */
229
+ createRegisterFunction(can, options) {
230
+ return async (permission) => {
231
+ const hookContext = createWillRegisterContext({ options, permission });
232
+ await state.hooks["before-register.permission"].call(hookContext);
233
+ return can(permission);
234
+ };
235
+ },
236
+ /**
237
+ * Register a new handler for a given hook
238
+ */
239
+ on(hook, handler) {
240
+ const validHooks = Object.keys(state.hooks);
241
+ const isValidHook = validHooks.includes(hook);
242
+ if (!isValidHook) {
243
+ throw new Error(
244
+ `Invalid hook supplied when trying to register an handler to the permission engine. Got "${hook}" but expected one of ${validHooks.join(
245
+ ", "
246
+ )}`
247
+ );
248
+ }
249
+ state.hooks[hook].register(handler);
250
+ return this;
251
+ },
252
+ /**
253
+ * Generate an ability based on the instance's
254
+ * ability builder and the given permissions
255
+ */
256
+ async generateAbility(permissions, options = {}) {
257
+ const { can, build } = abilityBuilderFactory();
258
+ for (const permission of permissions) {
259
+ const register = this.createRegisterFunction(can, options);
260
+ await evaluate({ permission, options, register });
261
+ }
262
+ return build();
263
+ }
264
+ };
265
+ };
266
+ const index = /* @__PURE__ */ Object.freeze(/* @__PURE__ */ Object.defineProperty({
267
+ __proto__: null,
268
+ abilities: index$1,
269
+ new: newEngine
270
+ }, Symbol.toStringTag, { value: "Module" }));
271
+ export {
272
+ index$2 as domain,
273
+ index as engine
274
+ };
275
+ //# sourceMappingURL=index.mjs.map
package/dist/index.mjs.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"index.mjs","sources":["../src/domain/permission/index.ts","../src/engine/hooks.ts","../src/engine/abilities/casl-ability.ts","../src/engine/index.ts"],"sourcesContent":["import _ from 'lodash/fp';\n\nconst PERMISSION_FIELDS = ['action', 'subject', 'properties', 'conditions'] as const;\n\nconst sanitizePermissionFields = _.pick(PERMISSION_FIELDS);\n\nexport interface Permission {\n action: string;\n actionParameters?: Record<string, unknown>;\n subject?: string | object | null;\n properties?: Record<string, any>;\n conditions?: string[];\n}\n\n/**\n * Creates a permission with default values for optional properties\n */\nconst getDefaultPermission = (): Pick<Permission, 'conditions' | 'properties' | 'subject'> => ({\n conditions: [],\n properties: {},\n subject: null,\n});\n\n/**\n * Create a new permission based on given attributes\n *\n * @param {object} attributes\n */\nconst create = _.pipe(_.pick(PERMISSION_FIELDS), _.merge(getDefaultPermission()));\n\n/**\n * Add a condition to a permission\n */\nconst addCondition = _.curry((condition: string, permission: Permission): Permission => {\n const { conditions } = permission;\n\n const newConditions = Array.isArray(conditions)\n ? _.uniq(conditions.concat(condition))\n : [condition];\n\n return _.set('conditions', newConditions, permission);\n});\n\n/**\n * Gets a property or a part of a property from a permission.\n */\nconst getProperty = _.curry(\n <T extends keyof Permission['properties']>(\n property: T,\n permission: Permission\n ): Permission['properties'][T] => _.get(`properties.${property}`, permission)\n);\n\nexport { create, sanitizePermissionFields, addCondition, getProperty };\n","import { cloneDeep, has, isArray } from 'lodash/fp';\nimport { hooks } from '@strapi/utils';\n\nimport * as domain from '../domain';\nimport type { Permission } from '../domain/permission';\nimport type { PermissionRule } from '../types';\n\nexport interface PermissionEngineHooks {\n 'before-format::validate.permission': ReturnType<typeof hooks.createAsyncBailHook>;\n 'format.permission': ReturnType<typeof hooks.createAsyncSeriesWaterfallHook>;\n 'after-format::validate.permission': ReturnType<typeof hooks.createAsyncBailHook>;\n 'before-evaluate.permission': ReturnType<typeof hooks.createAsyncSeriesHook>;\n 'before-register.permission': ReturnType<typeof hooks.createAsyncSeriesHook>;\n}\n\nexport type HookName = keyof PermissionEngineHooks;\n\n/**\n * Create a hook map used by the permission Engine\n */\nconst createEngineHooks = (): PermissionEngineHooks => ({\n 'before-format::validate.permission': hooks.createAsyncBailHook(),\n 'format.permission': hooks.createAsyncSeriesWaterfallHook(),\n 'after-format::validate.permission': hooks.createAsyncBailHook(),\n 'before-evaluate.permission': hooks.createAsyncSeriesHook(),\n 'before-register.permission': hooks.createAsyncSeriesHook(),\n});\n\n/**\n * Create a context from a domain {@link Permission} used by the validate hooks\n */\nconst createValidateContext = (permission: Permission) => ({\n get permission(): Readonly<Permission> {\n return cloneDeep(permission);\n },\n});\n\n/**\n * Create a context from a domain {@link Permission} used by the before valuate hook\n */\nconst createBeforeEvaluateContext = (permission: Permission) => ({\n get permission(): Readonly<Permission> {\n return cloneDeep(permission);\n },\n\n addCondition(condition: string) {\n Object.assign(permission, domain.permission.addCondition(condition, permission));\n\n return this;\n },\n});\n\ninterface WillRegisterContextParams {\n permission: PermissionRule;\n options: Record<string, unknown>;\n}\n\n/**\n * Create a context from a casl Permission & some options\n * @param caslPermission\n */\nconst createWillRegisterContext = ({ permission, options }: WillRegisterContextParams) => ({\n ...options,\n\n get permission() {\n return cloneDeep(permission);\n },\n\n condition: {\n and(rawConditionObject: unknown) {\n if (!permission.condition) {\n permission.condition = { $and: [] };\n }\n\n if (isArray(permission.condition.$and)) {\n permission.condition.$and.push(rawConditionObject);\n }\n\n return this;\n },\n\n or(rawConditionObject: unknown) {\n if (!permission.condition) {\n permission.condition = { $and: [] };\n }\n\n if (isArray(permission.condition.$and)) {\n const orClause = permission.condition.$and.find(has('$or'));\n\n if (orClause) {\n orClause.$or.push(rawConditionObject);\n } else {\n permission.condition.$and.push({ $or: [rawConditionObject] });\n }\n }\n\n return this;\n },\n },\n});\n\nexport {\n createEngineHooks,\n createValidateContext,\n createBeforeEvaluateContext,\n createWillRegisterContext,\n};\n","import * as sift from 'sift';\nimport qs from 'qs';\nimport { AbilityBuilder, Ability } from '@casl/ability';\nimport { pick, isNil, isObject } from 'lodash/fp';\nimport type { ParametrizedAction, PermissionRule } from '../../types';\n\nexport interface CustomAbilityBuilder {\n can(permission: PermissionRule): ReturnType<AbilityBuilder<Ability>['can']>;\n buildParametrizedAction: (parametrizedAction: ParametrizedAction) => string;\n build(): Ability;\n}\n\nconst allowedOperations = [\n '$or',\n '$and',\n '$eq',\n '$ne',\n '$in',\n '$nin',\n '$lt',\n '$lte',\n '$gt',\n '$gte',\n '$exists',\n '$elemMatch',\n] as const;\n\nconst operations = pick(allowedOperations, sift);\n\nconst conditionsMatcher = (conditions: unknown) => {\n return sift.createQueryTester(conditions, { operations });\n};\n\nconst buildParametrizedAction = ({ name, params }: ParametrizedAction) => {\n return `${name}?${qs.stringify(params)}`;\n};\n\n/**\n * Casl Ability Builder.\n */\nexport const caslAbilityBuilder = (): CustomAbilityBuilder => {\n const { can, build, ...rest } = new AbilityBuilder(Ability);\n\n return {\n can(permission: PermissionRule) {\n const { action, subject, properties = {}, condition } = permission;\n const { fields } = properties;\n\n const caslAction = typeof action === 'string' ? action : buildParametrizedAction(action);\n\n return can(\n caslAction,\n isNil(subject) ? 'all' : subject,\n fields,\n isObject(condition) ? condition : undefined\n );\n },\n\n buildParametrizedAction({ name, params }: ParametrizedAction) {\n return `${name}?${qs.stringify(params)}`;\n },\n\n build() {\n const ability = build({ conditionsMatcher });\n\n function decorateCan(originalCan: Ability['can']) {\n return function (...args: Parameters<Ability['can']>) {\n const [action, ...rest] = args;\n const caslAction = typeof action === 'string' ? action : buildParametrizedAction(action);\n\n // Call the original `can` method\n return originalCan.apply(ability, [caslAction, ...rest]);\n };\n }\n\n ability.can = decorateCan(ability.can);\n return ability;\n },\n\n ...rest,\n };\n};\n","import _ from 'lodash/fp';\nimport qs from 'qs';\nimport { Ability } from '@casl/ability';\nimport { providerFactory } from '@strapi/utils';\n\nimport {\n createEngineHooks,\n createWillRegisterContext,\n createBeforeEvaluateContext,\n createValidateContext,\n} from './hooks';\nimport type { PermissionEngineHooks, HookName } from './hooks';\n\nimport * as abilities from './abilities';\nimport { Permission } from '../domain/permission';\nimport type { PermissionRule } from '../types';\n\nexport { abilities };\n\ntype Provider = Omit<ReturnType<typeof providerFactory>, 'register'> & {\n register(...args: unknown[]): Promise<Provider> | Provider;\n};\n\ntype ActionProvider = Provider;\ntype ConditionProvider = Provider;\n\nexport interface Engine {\n hooks: PermissionEngineHooks;\n on(hook: HookName, handler: (...args: any[]) => any): Engine;\n generateAbility(permissions: Permission[], options?: object): Promise<Ability>;\n createRegisterFunction(\n can: (permission: PermissionRule) => unknown,\n options: Record<string, unknown>\n ): (permission: PermissionRule) => Promise<unknown>;\n}\n\nexport interface EngineParams {\n providers: { action: ActionProvider; condition: ConditionProvider };\n abilityBuilderFactory?(): abilities.CustomAbilityBuilder;\n}\n\ninterface EvaluateParams {\n options: Record<string, unknown>;\n register: (permission: PermissionRule) => Promise<unknown>;\n permission: Permission;\n}\n\ninterface Condition {\n name: string;\n handler(...params: unknown[]): boolean | object;\n}\n\n/**\n * Create a default state object for the engine\n */\nconst createEngineState = () => {\n const hooks = createEngineHooks();\n\n return { hooks };\n};\n\nconst newEngine = (params: EngineParams): Engine => {\n const { providers, abilityBuilderFactory = abilities.caslAbilityBuilder } = params;\n\n const state = createEngineState();\n\n const runValidationHook = async (hook: HookName, context: unknown) =>\n state.hooks[hook].call(context);\n\n /**\n * Evaluate a permission using local and registered behaviors (using hooks).\n * Validate, format (add condition, etc...), evaluate (evaluate conditions) and register a permission\n */\n const evaluate = async (params: EvaluateParams) => {\n const { options, register } = params;\n\n const preFormatValidation = await runValidationHook(\n 'before-format::validate.permission',\n createBeforeEvaluateContext(params.permission)\n );\n\n if (preFormatValidation === false) {\n return;\n }\n\n const permission = (await state.hooks['format.permission'].call(\n params.permission\n )) as Permission;\n\n const afterFormatValidation = await runValidationHook(\n 'after-format::validate.permission',\n createValidateContext(permission)\n );\n\n if (afterFormatValidation === false) {\n return;\n }\n\n await state.hooks['before-evaluate.permission'].call(createBeforeEvaluateContext(permission));\n\n const {\n action: actionName,\n subject,\n properties,\n conditions = [],\n actionParameters = {},\n } = permission;\n\n let action = actionName;\n\n if (actionParameters && Object.keys(actionParameters).length > 0) {\n action = `${actionName}?${qs.stringify(actionParameters)}`;\n }\n\n if (conditions.length === 0) {\n return register({ action, subject, properties });\n }\n\n const resolveConditions = _.map(providers.condition.get);\n\n const removeInvalidConditions = _.filter((condition: Condition) =>\n _.isFunction(condition.handler)\n );\n\n const evaluateConditions = (conditions: Condition[]) => {\n return Promise.all(\n conditions.map(async (condition) => ({\n condition,\n result: await condition.handler(\n _.merge(options, { permission: _.cloneDeep(permission) })\n ),\n }))\n );\n };\n\n const removeInvalidResults = _.filter(\n ({ result }) => _.isBoolean(result) || _.isObject(result)\n );\n\n const evaluatedConditions = await Promise.resolve(conditions)\n .then(resolveConditions)\n .then(removeInvalidConditions)\n .then(evaluateConditions)\n .then(removeInvalidResults);\n\n const resultPropEq = _.propEq('result');\n const pickResults = _.map(_.prop('result'));\n\n if (evaluatedConditions.every(resultPropEq(false))) {\n return;\n }\n\n if (_.isEmpty(evaluatedConditions) || evaluatedConditions.some(resultPropEq(true))) {\n return register({ action, subject, properties });\n }\n\n const results = pickResults(evaluatedConditions).filter(_.isObject);\n\n if (_.isEmpty(results)) {\n return register({ action, subject, properties });\n }\n\n return register({\n action,\n subject,\n properties,\n condition: { $and: [{ $or: results }] },\n });\n };\n\n return {\n get hooks() {\n return state.hooks;\n },\n\n /**\n * Create a register function that wraps a `can` function\n * used to register a permission in the ability builder\n */\n createRegisterFunction(can, options: Record<string, unknown>) {\n return async (permission: PermissionRule) => {\n const hookContext = createWillRegisterContext({ options, permission });\n\n await state.hooks['before-register.permission'].call(hookContext);\n\n return can(permission);\n };\n },\n\n /**\n * Register a new handler for a given hook\n */\n on(hook, handler) {\n const validHooks = Object.keys(state.hooks);\n const isValidHook = validHooks.includes(hook);\n\n if (!isValidHook) {\n throw new Error(\n `Invalid hook supplied when trying to register an handler to the permission engine. Got \"${hook}\" but expected one of ${validHooks.join(\n ', '\n )}`\n );\n }\n\n state.hooks[hook].register(handler);\n\n return this;\n },\n\n /**\n * Generate an ability based on the instance's\n * ability builder and the given permissions\n */\n async generateAbility(permissions, options: Record<string, unknown> = {}) {\n const { can, build } = abilityBuilderFactory();\n\n for (const permission of permissions) {\n const register = this.createRegisterFunction(can, options);\n\n await evaluate({ permission, options, register });\n }\n\n return build();\n },\n };\n};\n\nexport { newEngine as new };\n"],"names":["domain.permission.addCondition","rest","hooks","abilities.caslAbilityBuilder","params","conditions"],"mappings":";;;;;AAEA,MAAM,oBAAoB,CAAC,UAAU,WAAW,cAAc,YAAY;AAE1E,MAAM,2BAA2B,EAAE,KAAK,iBAAiB;AAazD,MAAM,uBAAuB,OAAkE;AAAA,EAC7F,YAAY,CAAC;AAAA,EACb,YAAY,CAAC;AAAA,EACb,SAAS;AACX;AAOA,MAAM,SAAS,EAAE,KAAK,EAAE,KAAK,iBAAiB,GAAG,EAAE,MAAM,qBAAqB,CAAC,CAAC;AAKhF,MAAM,eAAe,EAAE,MAAM,CAAC,WAAmB,eAAuC;AAChF,QAAA,EAAE,WAAe,IAAA;AAEvB,QAAM,gBAAgB,MAAM,QAAQ,UAAU,IAC1C,EAAE,KAAK,WAAW,OAAO,SAAS,CAAC,IACnC,CAAC,SAAS;AAEd,SAAO,EAAE,IAAI,cAAc,eAAe,UAAU;AACtD,CAAC;AAKD,MAAM,cAAc,EAAE;AAAA,EACpB,CACE,UACA,eACgC,EAAE,IAAI,cAAc,QAAQ,IAAI,UAAU;AAC9E;;;;;;;;;;;;AC/BA,MAAM,oBAAoB,OAA8B;AAAA,EACtD,sCAAsC,MAAM,oBAAoB;AAAA,EAChE,qBAAqB,MAAM,+BAA+B;AAAA,EAC1D,qCAAqC,MAAM,oBAAoB;AAAA,EAC/D,8BAA8B,MAAM,sBAAsB;AAAA,EAC1D,8BAA8B,MAAM,sBAAsB;AAC5D;AAKA,MAAM,wBAAwB,CAAC,gBAA4B;AAAA,EACzD,IAAI,aAAmC;AACrC,WAAO,UAAU,UAAU;AAAA,EAC7B;AACF;AAKA,MAAM,8BAA8B,CAAC,gBAA4B;AAAA,EAC/D,IAAI,aAAmC;AACrC,WAAO,UAAU,UAAU;AAAA,EAC7B;AAAA,EAEA,aAAa,WAAmB;AAC9B,WAAO,OAAO,YAAYA,aAA+B,WAAW,UAAU,CAAC;AAExE,WAAA;AAAA,EACT;AACF;AAWA,MAAM,4BAA4B,CAAC,EAAE,YAAY,eAA0C;AAAA,EACzF,GAAG;AAAA,EAEH,IAAI,aAAa;AACf,WAAO,UAAU,UAAU;AAAA,EAC7B;AAAA,EAEA,WAAW;AAAA,IACT,IAAI,oBAA6B;AAC3B,UAAA,CAAC,WAAW,WAAW;AACzB,mBAAW,YAAY,EAAE,MAAM,CAAG,EAAA;AAAA,MACpC;AAEA,UAAI,QAAQ,WAAW,UAAU,IAAI,GAAG;AAC3B,mBAAA,UAAU,KAAK,KAAK,kBAAkB;AAAA,MACnD;AAEO,aAAA;AAAA,IACT;AAAA,IAEA,GAAG,oBAA6B;AAC1B,UAAA,CAAC,WAAW,WAAW;AACzB,mBAAW,YAAY,EAAE,MAAM,CAAG,EAAA;AAAA,MACpC;AAEA,UAAI,QAAQ,WAAW,UAAU,IAAI,GAAG;AACtC,cAAM,WAAW,WAAW,UAAU,KAAK,KAAK,IAAI,KAAK,CAAC;AAE1D,YAAI,UAAU;AACH,mBAAA,IAAI,KAAK,kBAAkB;AAAA,QAAA,OAC/B;AACM,qBAAA,UAAU,KAAK,KAAK,EAAE,KAAK,CAAC,kBAAkB,GAAG;AAAA,QAC9D;AAAA,MACF;AAEO,aAAA;AAAA,IACT;AAAA,EACF;AACF;ACvFA,MAAM,oBAAoB;AAAA,EACxB;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AAAA,EACA;AACF;AAEA,MAAM,aAAa,KAAK,mBAAmB,IAAI;AAE/C,MAAM,oBAAoB,CAAC,eAAwB;AACjD,SAAO,KAAK,kBAAkB,YAAY,EAAE,WAAY,CAAA;AAC1D;AAEA,MAAM,0BAA0B,CAAC,EAAE,MAAM,aAAiC;AACxE,SAAO,GAAG,IAAI,IAAI,GAAG,UAAU,MAAM,CAAC;AACxC;AAKO,MAAM,qBAAqB,MAA4B;AACtD,QAAA,EAAE,KAAK,OAAO,GAAG,SAAS,IAAI,eAAe,OAAO;AAEnD,SAAA;AAAA,IACL,IAAI,YAA4B;AAC9B,YAAM,EAAE,QAAQ,SAAS,aAAa,CAAA,GAAI,UAAc,IAAA;AAClD,YAAA,EAAE,OAAW,IAAA;AAEnB,YAAM,aAAa,OAAO,WAAW,WAAW,SAAS,wBAAwB,MAAM;AAEhF,aAAA;AAAA,QACL;AAAA,QACA,MAAM,OAAO,IAAI,QAAQ;AAAA,QACzB;AAAA,QACA,SAAS,SAAS,IAAI,YAAY;AAAA,MAAA;AAAA,IAEtC;AAAA,IAEA,wBAAwB,EAAE,MAAM,UAA8B;AAC5D,aAAO,GAAG,IAAI,IAAI,GAAG,UAAU,MAAM,CAAC;AAAA,IACxC;AAAA,IAEA,QAAQ;AACN,YAAM,UAAU,MAAM,EAAE,kBAAmB,CAAA;AAE3C,eAAS,YAAY,aAA6B;AAChD,eAAO,YAAa,MAAkC;AACpD,gBAAM,CAAC,QAAQ,GAAGC,KAAI,IAAI;AAC1B,gBAAM,aAAa,OAAO,WAAW,WAAW,SAAS,wBAAwB,MAAM;AAGvF,iBAAO,YAAY,MAAM,SAAS,CAAC,YAAY,GAAGA,KAAI,CAAC;AAAA,QAAA;AAAA,MAE3D;AAEQ,cAAA,MAAM,YAAY,QAAQ,GAAG;AAC9B,aAAA;AAAA,IACT;AAAA,IAEA,GAAG;AAAA,EAAA;AAEP;;;;;AC1BA,MAAM,oBAAoB,MAAM;AAC9B,QAAMC,SAAQ;AAEd,SAAO,EAAE,OAAAA,OAAM;AACjB;AAEA,MAAM,YAAY,CAAC,WAAiC;AAClD,QAAM,EAAE,WAAW,wBAAwBC,uBAAiC;AAE5E,QAAM,QAAQ;AAER,QAAA,oBAAoB,OAAO,MAAgB,YAC/C,MAAM,MAAM,IAAI,EAAE,KAAK,OAAO;AAM1B,QAAA,WAAW,OAAOC,YAA2B;AAC3C,UAAA,EAAE,SAAS,SAAaA,IAAAA;AAE9B,UAAM,sBAAsB,MAAM;AAAA,MAChC;AAAA,MACA,4BAA4BA,QAAO,UAAU;AAAA,IAAA;AAG/C,QAAI,wBAAwB,OAAO;AACjC;AAAA,IACF;AAEA,UAAM,aAAc,MAAM,MAAM,MAAM,mBAAmB,EAAE;AAAA,MACzDA,QAAO;AAAA,IAAA;AAGT,UAAM,wBAAwB,MAAM;AAAA,MAClC;AAAA,MACA,sBAAsB,UAAU;AAAA,IAAA;AAGlC,QAAI,0BAA0B,OAAO;AACnC;AAAA,IACF;AAEA,UAAM,MAAM,MAAM,4BAA4B,EAAE,KAAK,4BAA4B,UAAU,CAAC;AAEtF,UAAA;AAAA,MACJ,QAAQ;AAAA,MACR;AAAA,MACA;AAAA,MACA,aAAa,CAAC;AAAA,MACd,mBAAmB,CAAC;AAAA,IAClB,IAAA;AAEJ,QAAI,SAAS;AAEb,QAAI,oBAAoB,OAAO,KAAK,gBAAgB,EAAE,SAAS,GAAG;AAChE,eAAS,GAAG,UAAU,IAAI,GAAG,UAAU,gBAAgB,CAAC;AAAA,IAC1D;AAEI,QAAA,WAAW,WAAW,GAAG;AAC3B,aAAO,SAAS,EAAE,QAAQ,SAAS,WAAY,CAAA;AAAA,IACjD;AAEA,UAAM,oBAAoB,EAAE,IAAI,UAAU,UAAU,GAAG;AAEvD,UAAM,0BAA0B,EAAE;AAAA,MAAO,CAAC,cACxC,EAAE,WAAW,UAAU,OAAO;AAAA,IAAA;AAG1B,UAAA,qBAAqB,CAACC,gBAA4B;AACtD,aAAO,QAAQ;AAAA,QACbA,YAAW,IAAI,OAAO,eAAe;AAAA,UACnC;AAAA,UACA,QAAQ,MAAM,UAAU;AAAA,YACtB,EAAE,MAAM,SAAS,EAAE,YAAY,EAAE,UAAU,UAAU,GAAG;AAAA,UAC1D;AAAA,QAAA,EACA;AAAA,MAAA;AAAA,IACJ;AAGF,UAAM,uBAAuB,EAAE;AAAA,MAC7B,CAAC,EAAE,OAAa,MAAA,EAAE,UAAU,MAAM,KAAK,EAAE,SAAS,MAAM;AAAA,IAAA;AAG1D,UAAM,sBAAsB,MAAM,QAAQ,QAAQ,UAAU,EACzD,KAAK,iBAAiB,EACtB,KAAK,uBAAuB,EAC5B,KAAK,kBAAkB,EACvB,KAAK,oBAAoB;AAEtB,UAAA,eAAe,EAAE,OAAO,QAAQ;AACtC,UAAM,cAAc,EAAE,IAAI,EAAE,KAAK,QAAQ,CAAC;AAE1C,QAAI,oBAAoB,MAAM,aAAa,KAAK,CAAC,GAAG;AAClD;AAAA,IACF;AAEI,QAAA,EAAE,QAAQ,mBAAmB,KAAK,oBAAoB,KAAK,aAAa,IAAI,CAAC,GAAG;AAClF,aAAO,SAAS,EAAE,QAAQ,SAAS,WAAY,CAAA;AAAA,IACjD;AAEA,UAAM,UAAU,YAAY,mBAAmB,EAAE,OAAO,EAAE,QAAQ;AAE9D,QAAA,EAAE,QAAQ,OAAO,GAAG;AACtB,aAAO,SAAS,EAAE,QAAQ,SAAS,WAAY,CAAA;AAAA,IACjD;AAEA,WAAO,SAAS;AAAA,MACd;AAAA,MACA;AAAA,MACA;AAAA,MACA,WAAW,EAAE,MAAM,CAAC,EAAE,KAAK,QAAS,CAAA,EAAE;AAAA,IAAA,CACvC;AAAA,EAAA;AAGI,SAAA;AAAA,IACL,IAAI,QAAQ;AACV,aAAO,MAAM;AAAA,IACf;AAAA;AAAA;AAAA;AAAA;AAAA,IAMA,uBAAuB,KAAK,SAAkC;AAC5D,aAAO,OAAO,eAA+B;AAC3C,cAAM,cAAc,0BAA0B,EAAE,SAAS,WAAY,CAAA;AAErE,cAAM,MAAM,MAAM,4BAA4B,EAAE,KAAK,WAAW;AAEhE,eAAO,IAAI,UAAU;AAAA,MAAA;AAAA,IAEzB;AAAA;AAAA;AAAA;AAAA,IAKA,GAAG,MAAM,SAAS;AAChB,YAAM,aAAa,OAAO,KAAK,MAAM,KAAK;AACpC,YAAA,cAAc,WAAW,SAAS,IAAI;AAE5C,UAAI,CAAC,aAAa;AAChB,cAAM,IAAI;AAAA,UACR,2FAA2F,IAAI,yBAAyB,WAAW;AAAA,YACjI;AAAA,UAAA,CACD;AAAA,QAAA;AAAA,MAEL;AAEA,YAAM,MAAM,IAAI,EAAE,SAAS,OAAO;AAE3B,aAAA;AAAA,IACT;AAAA;AAAA;AAAA;AAAA;AAAA,IAMA,MAAM,gBAAgB,aAAa,UAAmC,IAAI;AACxE,YAAM,EAAE,KAAK,MAAM,IAAI,sBAAsB;AAE7C,iBAAW,cAAc,aAAa;AACpC,cAAM,WAAW,KAAK,uBAAuB,KAAK,OAAO;AAEzD,cAAM,SAAS,EAAE,YAAY,SAAS,SAAU,CAAA;AAAA,MAClD;AAEA,aAAO,MAAM;AAAA,IACf;AAAA,EAAA;AAEJ;;;;;;"}
package/dist/types.d.ts ADDED
@@ -0,0 +1,19 @@
1
+ /**
2
+ * These were imported from `@strapi/types` but if we do that
3
+ * it becomes a circular dependency. This is the source of truth,
4
+ * they're re-exported from `@strapi/types` for convenience.
5
+ */
6
+ import type { Subject } from '@casl/ability';
7
+ export interface ParametrizedAction {
8
+ name: string;
9
+ params: Record<string, unknown>;
10
+ }
11
+ export interface PermissionRule {
12
+ action: string | ParametrizedAction;
13
+ subject?: Subject | null;
14
+ properties?: {
15
+ fields?: string[];
16
+ };
17
+ condition?: Record<string, unknown>;
18
+ }
19
+ //# sourceMappingURL=types.d.ts.map
package/dist/types.d.ts.map ADDED
@@ -0,0 +1 @@
1
+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AACH,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AAE7C,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AACD,MAAM,WAAW,cAAc;IAC7B,MAAM,EAAE,MAAM,GAAG,kBAAkB,CAAC;IACpC,OAAO,CAAC,EAAE,OAAO,GAAG,IAAI,CAAC;IACzB,UAAU,CAAC,EAAE;QACX,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;KACnB,CAAC;IACF,SAAS,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACrC"}
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@strapi/permissions",
3
- "version": "0.0.0-next.e9bb5ccdc459f4c6b6717a2d5d86359b7a47d47d",
3
+ "version": "0.0.0-next.ea6e3b80ab37f554da4f8bde08dbfe9b57400d31",
4
4
  "description": "Strapi's permission layer.",
5
5
  "repository": {
6
6
  "type": "git",
@@ -19,21 +19,37 @@
19
19
  "url": "https://strapi.io"
20
20
  }
21
21
  ],
22
- "main": "./lib/index.js",
22
+ "main": "./dist/index.js",
23
+ "module": "./dist/index.mjs",
24
+ "source": "./src/index.ts",
25
+ "types": "./dist/index.d.ts",
26
+ "files": [
27
+ "dist/"
28
+ ],
23
29
  "scripts": {
30
+ "build": "pack-up build",
31
+ "clean": "run -T rimraf ./dist",
32
+ "lint": "run -T eslint .",
33
+ "test:ts": "run -T tsc --noEmit",
24
34
  "test:unit": "run -T jest",
25
35
  "test:unit:watch": "run -T jest --watch",
26
- "lint": "run -T eslint ."
36
+ "watch": "pack-up watch"
27
37
  },
28
38
  "dependencies": {
29
- "@casl/ability": "5.4.4",
30
- "@strapi/utils": "0.0.0-next.e9bb5ccdc459f4c6b6717a2d5d86359b7a47d47d",
39
+ "@casl/ability": "6.5.0",
40
+ "@strapi/utils": "0.0.0-next.ea6e3b80ab37f554da4f8bde08dbfe9b57400d31",
31
41
  "lodash": "4.17.21",
42
+ "qs": "6.11.1",
32
43
  "sift": "16.0.1"
33
44
  },
45
+ "devDependencies": {
46
+ "@strapi/pack-up": "5.0.0",
47
+ "eslint-config-custom": "0.0.0-next.ea6e3b80ab37f554da4f8bde08dbfe9b57400d31",
48
+ "tsconfig": "0.0.0-next.ea6e3b80ab37f554da4f8bde08dbfe9b57400d31"
49
+ },
34
50
  "engines": {
35
- "node": ">=14.19.1 <=18.x.x",
51
+ "node": ">=18.0.0 <=22.x.x",
36
52
  "npm": ">=6.0.0"
37
53
  },
38
- "gitHead": "e9bb5ccdc459f4c6b6717a2d5d86359b7a47d47d"
54
+ "gitHead": "ea6e3b80ab37f554da4f8bde08dbfe9b57400d31"
39
55
  }
package/.eslintignore DELETED
@@ -1,2 +0,0 @@
1
- node_modules/
2
- .eslintrc.js
package/.eslintrc.js DELETED
@@ -1,4 +0,0 @@
1
- module.exports = {
2
- root: true,
3
- extends: ['custom/back'],
4
- };
package/index.d.ts DELETED
@@ -1,54 +0,0 @@
1
- import { hooks, providerFactory } from '@strapi/utils';
2
-
3
- interface Permission {
4
- action: string;
5
- subject?: string | object | null;
6
- properties?: object;
7
- conditions?: string[];
8
- }
9
-
10
- type Provider = ReturnType<typeof providerFactory>;
11
-
12
- interface BaseAction {
13
- actionId: string;
14
- }
15
-
16
- interface BaseCondition {
17
- name: string;
18
- handler(...params: unknown[]): boolean | object;
19
- }
20
-
21
- interface ActionProvider<T extends Action = Action> extends Provider {}
22
- interface ConditionProvider<T extends Condition = Condition> extends Provider {}
23
-
24
- interface PermissionEngineHooks {
25
- 'before-format::validate.permission': ReturnType<typeof hooks.createAsyncBailHook>;
26
- 'format.permission': ReturnType<typeof hooks.createAsyncSeriesWaterfallHook>;
27
- 'after-format::validate.permission': ReturnType<typeof hooks.createAsyncBailHook>;
28
- 'before-evaluate.permission': ReturnType<typeof hooks.createAsyncSeriesHook>;
29
- 'before-register.permission': ReturnType<typeof hooks.createAsyncSeriesHook>;
30
- }
31
-
32
- type PermissionEngineHookName = keyof PermissionEngineHooks;
33
-
34
- interface PermissionEngine {
35
- hooks: object;
36
-
37
- on(hook: PermissionEngineHookName, handler: Function): PermissionEngine;
38
- generateAbility(permissions: Permission[], options?: object): Ability;
39
- createRegisterFunction(can: Function, options: object): Function;
40
- }
41
-
42
- interface BaseAbility {
43
- can: Function;
44
- }
45
-
46
- interface AbilityBuilder {
47
- can(permission: Permission): void | Promise<void>;
48
- build(): BaseAbility | Promise<BaseAbility>;
49
- }
50
-
51
- interface PermissionEngineParams {
52
- providers: { action: ActionProvider; condition: ConditionProvider };
53
- abilityBuilderFactory(): AbilityBuilder;
54
- }
package/lib/domain/index.js DELETED
@@ -1,7 +0,0 @@
1
- 'use strict';
2
-
3
- const permission = require('./permission');
4
-
5
- module.exports = {
6
- permission,
7
- };
package/lib/domain/permission/index.js DELETED
@@ -1,68 +0,0 @@
1
- 'use strict';
2
-
3
- const _ = require('lodash/fp');
4
-
5
- const PERMISSION_FIELDS = ['action', 'subject', 'properties', 'conditions'];
6
-
7
- const sanitizePermissionFields = _.pick(PERMISSION_FIELDS);
8
-
9
- /**
10
- * @typedef {import("../../..").Permission} Permission
11
- */
12
-
13
- /**
14
- * Creates a permission with default values for optional properties
15
- *
16
- * @return {Pick<Permission, 'conditions' | 'properties' | 'subject'>}
17
- */
18
- const getDefaultPermission = () => ({
19
- conditions: [],
20
- properties: {},
21
- subject: null,
22
- });
23
-
24
- /**
25
- * Create a new permission based on given attributes
26
- *
27
- * @param {object} attributes
28
- *
29
- * @return {Permission}
30
- */
31
- const create = _.pipe(_.pick(PERMISSION_FIELDS), _.merge(getDefaultPermission()));
32
-
33
- /**
34
- * Add a condition to a permission
35
- *
36
- * @param {string} condition The condition to add
37
- * @param {Permission} permission The permission on which we want to add the condition
38
- *
39
- * @return {Permission}
40
- */
41
- const addCondition = _.curry((condition, permission) => {
42
- const { conditions } = permission;
43
-
44
- const newConditions = Array.isArray(conditions)
45
- ? _.uniq(conditions.concat(condition))
46
- : [condition];
47
-
48
- return _.set('conditions', newConditions, permission);
49
- });
50
-
51
- /**
52
- * Gets a property or a part of a property from a permission.
53
- *
54
- * @function
55
- *
56
- * @param {string} property - The property to get
57
- * @param {Permission} permission - The permission on which we want to access the property
58
- *
59
- * @return {Permission}
60
- */
61
- const getProperty = _.curry((property, permission) => _.get(`properties.${property}`, permission));
62
-
63
- module.exports = {
64
- create,
65
- sanitizePermissionFields,
66
- addCondition,
67
- getProperty,
68
- };
package/lib/engine/abilities/casl-ability.js DELETED
@@ -1,57 +0,0 @@
1
- 'use strict';
2
-
3
- const sift = require('sift');
4
- const { AbilityBuilder, Ability } = require('@casl/ability');
5
- const { pick, isNil, isObject } = require('lodash/fp');
6
-
7
- const allowedOperations = [
8
- '$or',
9
- '$and',
10
- '$eq',
11
- '$ne',
12
- '$in',
13
- '$nin',
14
- '$lt',
15
- '$lte',
16
- '$gt',
17
- '$gte',
18
- '$exists',
19
- '$elemMatch',
20
- ];
21
-
22
- const operations = pick(allowedOperations, sift);
23
-
24
- const conditionsMatcher = (conditions) => {
25
- return sift.createQueryTester(conditions, { operations });
26
- };
27
-
28
- /**
29
- * Casl Ability Builder.
30
- */
31
- const caslAbilityBuilder = () => {
32
- const { can, build, ...rest } = new AbilityBuilder(Ability);
33
-
34
- return {
35
- can(permission) {
36
- const { action, subject, properties = {}, condition } = permission;
37
- const { fields } = properties;
38
-
39
- return can(
40
- action,
41
- isNil(subject) ? 'all' : subject,
42
- fields,
43
- isObject(condition) ? condition : undefined
44
- );
45
- },
46
-
47
- build() {
48
- return build({ conditionsMatcher });
49
- },
50
-
51
- ...rest,
52
- };
53
- };
54
-
55
- module.exports = {
56
- caslAbilityBuilder,
57
- };
package/lib/engine/abilities/index.js DELETED
@@ -1,7 +0,0 @@
1
- 'use strict';
2
-
3
- const { caslAbilityBuilder } = require('./casl-ability');
4
-
5
- module.exports = {
6
- caslAbilityBuilder,
7
- };