@stratal/framework 0.0.1

package/dist/rbac/services/casbin.service.js

@@ -0,0 +1,174 @@
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+import { inject } from 'tsyringe';
+import { Transient, DI_TOKENS } from 'stratal/di';
+import { RBAC_TOKENS } from '../tokens';
+import { CasbinEnforcerService } from './casbin-enforcer.service';
+/**
+ * CasbinService
+ *
+ * Request-scoped service that provides the full Casbin RBAC API.
+ * Uses AuthContext to get the current user.
+ */
+let CasbinService = class CasbinService {
+    context;
+    enforcerService;
+    constructor(context, enforcerService) {
+        this.context = context;
+        this.enforcerService = enforcerService;
+    }
+    async getEnforcer() {
+        return this.enforcerService.getEnforcer();
+    }
+    // ==================== USER-ROLE MANAGEMENT ====================
+    async addRoleForUser(userId, role) {
+        const enforcer = await this.getEnforcer();
+        const added = await enforcer.addRoleForUser(userId, role);
+        if (added)
+            await enforcer.savePolicy();
+        return added;
+    }
+    async deleteRoleForUser(userId, role) {
+        const enforcer = await this.getEnforcer();
+        const deleted = await enforcer.deleteRoleForUser(userId, role);
+        if (deleted)
+            await enforcer.savePolicy();
+        return deleted;
+    }
+    async deleteRolesForUser(userId) {
+        const enforcer = await this.getEnforcer();
+        const deleted = await enforcer.deleteRolesForUser(userId);
+        if (deleted)
+            await enforcer.savePolicy();
+        return deleted;
+    }
+    async getRolesForUser(userId) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.getRolesForUser(userId);
+    }
+    async getImplicitRolesForUser(userId) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.getImplicitRolesForUser(userId);
+    }
+    async getUsersForRole(role) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.getUsersForRole(role);
+    }
+    async getImplicitUsersForRole(role) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.getImplicitUsersForRole(role);
+    }
+    async hasRoleForUser(userId, role) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.hasRoleForUser(userId, role);
+    }
+    // ==================== ROLE HIERARCHY MANAGEMENT ====================
+    async addRoleInheritance(childRole, parentRole) {
+        const enforcer = await this.getEnforcer();
+        const added = await enforcer.addGroupingPolicy(childRole, parentRole);
+        if (added)
+            await enforcer.savePolicy();
+        return added;
+    }
+    async deleteRoleInheritance(childRole, parentRole) {
+        const enforcer = await this.getEnforcer();
+        const deleted = await enforcer.removeGroupingPolicy(childRole, parentRole);
+        if (deleted)
+            await enforcer.savePolicy();
+        return deleted;
+    }
+    // ==================== USER/ROLE DELETION ====================
+    async deleteUser(userId) {
+        const enforcer = await this.getEnforcer();
+        const deleted = await enforcer.deleteUser(userId);
+        if (deleted)
+            await enforcer.savePolicy();
+        return deleted;
+    }
+    async deleteRole(role) {
+        const enforcer = await this.getEnforcer();
+        const deleted = await enforcer.deleteRole(role);
+        if (deleted)
+            await enforcer.savePolicy();
+        return deleted;
+    }
+    // ==================== CONVENIENCE METHODS ====================
+    async getCurrentUserRoles() {
+        const userId = this.context.getUserId();
+        if (!userId)
+            return [];
+        return this.getImplicitRolesForUser(userId);
+    }
+    async currentUserHasRole(role) {
+        const roles = await this.getCurrentUserRoles();
+        return roles.includes(role);
+    }
+    async setRolesForUser(userId, roles) {
+        const enforcer = await this.getEnforcer();
+        await enforcer.deleteRolesForUser(userId);
+        for (const role of roles) {
+            await enforcer.addRoleForUser(userId, role);
+        }
+        await enforcer.savePolicy();
+    }
+    // ==================== PERMISSION CHECKING ====================
+    async hasPermission(userId, scope, action) {
+        const enforcer = await this.getEnforcer();
+        return enforcer.enforce(userId, scope, action);
+    }
+    async currentUserHasPermission(scope, action) {
+        const userId = this.context.getUserId();
+        if (!userId)
+            return false;
+        return this.hasPermission(userId, scope, action);
+    }
+    async hasAnyPermission(userId, scopes, action) {
+        const enforcer = await this.getEnforcer();
+        const requests = scopes.map(scope => [userId, scope, action]);
+        const results = await enforcer.batchEnforce(requests);
+        return results.some(allowed => allowed);
+    }
+    async currentUserHasAnyPermission(scopes, action) {
+        const userId = this.context.getUserId();
+        if (!userId)
+            return false;
+        return this.hasAnyPermission(userId, scopes, action);
+    }
+    // ==================== CASBIN.JS FRONTEND SUPPORT ====================
+    async getPermissionsForUserAsCasbinJs(userId) {
+        const enforcer = await this.getEnforcer();
+        const permissions = await enforcer.getImplicitPermissionsForUser(userId);
+        const result = {};
+        for (const [_role, resource, action] of permissions) {
+            result[action] ??= [];
+            if (!result[action].includes(resource)) {
+                result[action].push(resource);
+            }
+        }
+        return result;
+    }
+    async getCurrentUserPermissionsAsCasbinJs() {
+        const userId = this.context.getUserId();
+        if (!userId)
+            return {};
+        return this.getPermissionsForUserAsCasbinJs(userId);
+    }
+};
+CasbinService = __decorate([
+    Transient(RBAC_TOKENS.CasbinService),
+    __param(0, inject(DI_TOKENS.AuthContext)),
+    __param(1, inject(CasbinEnforcerService)),
+    __metadata("design:paramtypes", [Function, CasbinEnforcerService])
+], CasbinService);
+export { CasbinService };
+//# sourceMappingURL=casbin.service.js.map

package/dist/rbac/services/casbin.service.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"casbin.service.js","sourceRoot":"","sources":["../../../src/rbac/services/casbin.service.ts"],"names":[],"mappings":";;;;;;;;;;;;AACA,OAAO,EAAE,MAAM,EAAE,MAAM,UAAU,CAAA;AACjC,OAAO,EAAE,SAAS,EAAE,SAAS,EAAE,MAAM,YAAY,CAAA;AAEjD,OAAO,EAAE,WAAW,EAAE,MAAM,WAAW,CAAA;AACvC,OAAO,EAAE,qBAAqB,EAAE,MAAM,2BAA2B,CAAA;AAEjE;;;;;GAKG;AAEI,IAAM,aAAa,GAAnB,MAAM,aAAa;IAGH;IAEA;IAJrB,YAEqB,OAAoB,EAEpB,eAAsC;QAFtC,YAAO,GAAP,OAAO,CAAa;QAEpB,oBAAe,GAAf,eAAe,CAAuB;IACxD,CAAC;IAEM,KAAK,CAAC,WAAW;QACzB,OAAO,IAAI,CAAC,eAAe,CAAC,WAAW,EAAE,CAAA;IAC3C,CAAC;IAED,iEAAiE;IAEjE,KAAK,CAAC,cAAc,CAAC,MAAc,EAAE,IAAY;QAC/C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;QACzD,IAAI,KAAK;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACtC,OAAO,KAAK,CAAA;IACd,CAAC;IAED,KAAK,CAAC,iBAAiB,CAAC,MAAc,EAAE,IAAY;QAClD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,iBAAiB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;QAC9D,IAAI,OAAO;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACxC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,MAAc;QACrC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAA;QACzD,IAAI,OAAO;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACxC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAc;QAClC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,eAAe,CAAC,MAAM,CAAC,CAAA;IACzC,CAAC;IAED,KAAK,CAAC,uBAAuB,CAAC,MAAc;QAC1C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAA;IACjD,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,IAAY;QAChC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,eAAe,CAAC,IAAI,CAAC,CAAA;IACvC,CAAC;IAED,KAAK,CAAC,uBAAuB,CAAC,IAAY;QACxC,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAA;IAC/C,CAAC;IAED,KAAK,CAAC,cAAc,CAAC,MAAc,EAAE,IAAY;QAC/C,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;IAC9C,CAAC;IAED,sEAAsE;IAEtE,KAAK,CAAC,kBAAkB,CAAC,SAAiB,EAAE,UAAkB;QAC5D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,iBAAiB,CAAC,SAAS,EAAE,UAAU,CAAC,CAAA;QACrE,IAAI,KAAK;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACtC,OAAO,KAAK,CAAA;IACd,CAAC;IAED,KAAK,CAAC,qBAAqB,CAAC,SAAiB,EAAE,UAAkB;QAC/D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,oBAAoB,CAAC,SAAS,EAAE,UAAU,CAAC,CAAA;QAC1E,IAAI,OAAO;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACxC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,+DAA+D;IAE/D,KAAK,CAAC,UAAU,CAAC,MAAc;QAC7B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,UAAU,CAAC,MAAM,CAAC,CAAA;QACjD,IAAI,OAAO;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACxC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,IAAY;QAC3B,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,UAAU,CAAC,IAAI,CAAC,CAAA;QAC/C,IAAI,OAAO;YAAE,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;QACxC,OAAO,OAAO,CAAA;IAChB,CAAC;IAED,gEAAgE;IAEhE,KAAK,CAAC,mBAAmB;QACvB,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAA;QACvC,IAAI,CAAC,MAAM;YAAE,OAAO,EAAE,CAAA;QACtB,OAAO,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC,CAAA;IAC7C,CAAC;IAED,KAAK,CAAC,kBAAkB,CAAC,IAAY;QACnC,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,mBAAmB,EAAE,CAAA;QAC9C,OAAO,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAA;IAC7B,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAAc,EAAE,KAAe;QACnD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,QAAQ,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAA;QACzC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,QAAQ,CAAC,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;QAC7C,CAAC;QACD,MAAM,QAAQ,CAAC,UAAU,EAAE,CAAA;IAC7B,CAAC;IAED,gEAAgE;IAEhE,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,KAAa,EAAE,MAAc;QAC/D,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,OAAO,QAAQ,CAAC,OAAO,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,CAAA;IAChD,CAAC;IAED,KAAK,CAAC,wBAAwB,CAAC,KAAa,EAAE,MAAc;QAC1D,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAA;QACvC,IAAI,CAAC,MAAM;YAAE,OAAO,KAAK,CAAA;QACzB,OAAO,IAAI,CAAC,aAAa,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,CAAA;IAClD,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,MAAc,EAAE,MAAgB,EAAE,MAAc;QACrE,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,CAAC,CAAC,CAAA;QAC7D,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAA;QACrD,OAAO,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,OAAO,CAAC,CAAA;IACzC,CAAC;IAED,KAAK,CAAC,2BAA2B,CAAC,MAAgB,EAAE,MAAc;QAChE,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAA;QACvC,IAAI,CAAC,MAAM;YAAE,OAAO,KAAK,CAAA;QACzB,OAAO,IAAI,CAAC,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAA;IACtD,CAAC;IAED,uEAAuE;IAEvE,KAAK,CAAC,+BAA+B,CAAC,MAAc;QAClD,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,EAAE,CAAA;QACzC,MAAM,WAAW,GAAG,MAAM,QAAQ,CAAC,6BAA6B,CAAC,MAAM,CAAC,CAAA;QAExE,MAAM,MAAM,GAA6B,EAAE,CAAA;QAC3C,KAAK,MAAM,CAAC,KAAK,EAAE,QAAQ,EAAE,MAAM,CAAC,IAAI,WAAW,EAAE,CAAC;YACpD,MAAM,CAAC,MAAM,CAAC,KAAK,EAAE,CAAA;YACrB,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACvC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAA;YAC/B,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAA;IACf,CAAC;IAED,KAAK,CAAC,mCAAmC;QACvC,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,CAAA;QACvC,IAAI,CAAC,MAAM;YAAE,OAAO,EAAE,CAAA;QACtB,OAAO,IAAI,CAAC,+BAA+B,CAAC,MAAM,CAAC,CAAA;IACrD,CAAC;CACF,CAAA;AAlKY,aAAa;IADzB,SAAS,CAAC,WAAW,CAAC,aAAa,CAAC;IAGhC,WAAA,MAAM,CAAC,SAAS,CAAC,WAAW,CAAC,CAAA;IAE7B,WAAA,MAAM,CAAC,qBAAqB,CAAC,CAAA;+CACM,qBAAqB;GALhD,aAAa,CAkKzB"}

package/dist/rbac/services/index.d.ts

@@ -0,0 +1,3 @@
+export * from './casbin-enforcer.service';
+export * from './casbin.service';
+//# sourceMappingURL=index.d.ts.map

package/dist/rbac/services/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/rbac/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,2BAA2B,CAAA;AACzC,cAAc,kBAAkB,CAAA"}

package/dist/rbac/services/index.js

@@ -0,0 +1,3 @@
+export * from './casbin-enforcer.service';
+export * from './casbin.service';
+//# sourceMappingURL=index.js.map

package/dist/rbac/services/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/rbac/services/index.ts"],"names":[],"mappings":"AAAA,cAAc,2BAA2B,CAAA;AACzC,cAAc,kBAAkB,CAAA"}

package/dist/rbac/tokens.d.ts

@@ -0,0 +1,10 @@
+/**
+ * RBAC DI Tokens
+ */
+export declare const RBAC_TOKENS: {
+    /** Request-scoped Casbin service with auto context resolution */
+    readonly CasbinService: symbol;
+    /** RBAC module options (model, policies, hierarchy) */
+    readonly Options: symbol;
+};
+//# sourceMappingURL=tokens.d.ts.map

package/dist/rbac/tokens.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokens.d.ts","sourceRoot":"","sources":["../../src/rbac/tokens.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,eAAO,MAAM,WAAW;IACtB,iEAAiE;;IAEjE,uDAAuD;;CAE/C,CAAA"}

package/dist/rbac/tokens.js

@@ -0,0 +1,10 @@
+/**
+ * RBAC DI Tokens
+ */
+export const RBAC_TOKENS = {
+    /** Request-scoped Casbin service with auto context resolution */
+    CasbinService: Symbol.for('CasbinService'),
+    /** RBAC module options (model, policies, hierarchy) */
+    Options: Symbol.for('RbacModuleOptions'),
+};
+//# sourceMappingURL=tokens.js.map

package/dist/rbac/tokens.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"tokens.js","sourceRoot":"","sources":["../../src/rbac/tokens.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,CAAC,MAAM,WAAW,GAAG;IACzB,iEAAiE;IACjE,aAAa,EAAE,MAAM,CAAC,GAAG,CAAC,eAAe,CAAC;IAC1C,uDAAuD;IACvD,OAAO,EAAE,MAAM,CAAC,GAAG,CAAC,mBAAmB,CAAC;CAChC,CAAA"}

package/dist/rbac/types.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Configuration options for the RBAC module
+ */
+export interface RbacModuleOptions {
+    /** Casbin PERM model string */
+    model: string;
+    /** Default policies: [role, resource, action][] */
+    defaultPolicies?: readonly (readonly [string, string, string])[];
+    /** Role hierarchy: [childRole, parentRole][] */
+    roleHierarchy?: readonly (readonly [string, string])[];
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/rbac/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/rbac/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,+BAA+B;IAC/B,KAAK,EAAE,MAAM,CAAA;IACb,mDAAmD;IACnD,eAAe,CAAC,EAAE,SAAS,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE,CAAA;IAChE,gDAAgD;IAChD,aAAa,CAAC,EAAE,SAAS,CAAC,SAAS,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,EAAE,CAAA;CACvD"}

package/dist/rbac/types.js

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=types.js.map

package/dist/rbac/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/rbac/types.ts"],"names":[],"mappings":""}

package/package.json

@@ -0,0 +1,118 @@
+{
+  "name": "@stratal/framework",
+  "version": "0.0.1",
+  "type": "module",
+  "license": "MIT",
+  "author": "Temitayo Fadojutimi",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/strataljs/stratal.git",
+    "directory": "packages/framework"
+  },
+  "publishConfig": {
+    "access": "public",
+    "provenance": false
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE"
+  ],
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "import": "./dist/index.js"
+    },
+    "./auth": {
+      "types": "./dist/auth/index.d.ts",
+      "import": "./dist/auth/index.js"
+    },
+    "./context": {
+      "types": "./dist/context/index.d.ts",
+      "import": "./dist/context/index.js"
+    },
+    "./database": {
+      "types": "./dist/database/index.d.ts",
+      "import": "./dist/database/index.js"
+    },
+    "./factory": {
+      "types": "./dist/factory/index.d.ts",
+      "import": "./dist/factory/index.js"
+    },
+    "./guards": {
+      "types": "./dist/guards/index.d.ts",
+      "import": "./dist/guards/index.js"
+    },
+    "./rbac": {
+      "types": "./dist/rbac/index.d.ts",
+      "import": "./dist/rbac/index.js"
+    }
+  },
+  "scripts": {
+    "build": "yarn prebuild && tsc -p tsconfig.build.json",
+    "clean": "rm -rf dist",
+    "prebuild": "yarn clean",
+    "generate": "zenstack generate --schema=test/schema.zmodel -o test/zenstack",
+    "generate:types": "wrangler types -c test/wrangler.jsonc",
+    "pretest": "yarn generate && yarn generate:types",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "test:e2e": "vitest run --project e2e",
+    "test:coverage": "vitest run --coverage",
+    "test:db": "docker compose -f test/docker-compose.yml up -d",
+    "typecheck": "yarn tsc --noEmit",
+    "lint": "npx eslint .",
+    "lint:fix": "npx eslint --fix ."
+  },
+  "dependencies": {
+    "postgres-array": "^3.0.4"
+  },
+  "peerDependencies": {
+    "@better-auth/core": "^1.0.0",
+    "@faker-js/faker": "^10.3.0",
+    "@zenstackhq/better-auth": "^3.0.0",
+    "@zenstackhq/orm": "^3.0.0",
+    "better-auth": "^1.4.9",
+    "casbin": "^5.41.0",
+    "pg": "^8.0.0",
+    "stratal": "0.0.4"
+  },
+  "peerDependenciesMeta": {
+    "@better-auth/core": {
+      "optional": true
+    },
+    "@faker-js/faker": {
+      "optional": true
+    },
+    "@zenstackhq/better-auth": {
+      "optional": true
+    },
+    "better-auth": {
+      "optional": true
+    },
+    "casbin": {
+      "optional": true
+    }
+  },
+  "devDependencies": {
+    "@better-auth/core": "^1.5.0",
+    "@cloudflare/vitest-pool-workers": "^0.12.18",
+    "@cloudflare/workers-types": "4.20260301.1",
+    "@faker-js/faker": "^10.3.0",
+    "@stratal/testing": "workspace:^",
+    "@types/node": "^22.19.13",
+    "@types/pg": "^8.18.0",
+    "@vitest/coverage-istanbul": "3.2.4",
+    "@zenstackhq/better-auth": "^3.4.1",
+    "@zenstackhq/cli": "^3.4.1",
+    "@zenstackhq/orm": "^3.4.1",
+    "better-auth": "^1.5.0",
+    "casbin": "^5.49.0",
+    "pg": "^8.19.0",
+    "reflect-metadata": "^0.2.2",
+    "stratal": "workspace:*",
+    "typescript": "^5.9.3",
+    "vitest": "~3.2.0",
+    "wrangler": "^4.69.0"
+  }
+}