@sudobility/entity_service 1.0.1

package/dist/helpers/PermissionHelper.cjs

@@ -0,0 +1,197 @@
+"use strict";
+/**
+ * @fileoverview Entity Permission Helper Class
+ * @description Permission checking for entity operations
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionHelper = void 0;
+const drizzle_orm_1 = require("drizzle-orm");
+const types_1 = require("../types");
+/**
+ * Helper class for entity permission checks.
+ */
+class PermissionHelper {
+    constructor(config) {
+        this.config = config;
+    }
+    /**
+     * Get a user's role in an entity.
+     */
+    async getUserRole(entityId, userId) {
+        const results = await this.config.db
+            .select({ role: this.config.membersTable.role })
+            .from(this.config.membersTable)
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(this.config.membersTable.entity_id, entityId), (0, drizzle_orm_1.eq)(this.config.membersTable.user_id, userId)))
+            .limit(1);
+        if (results.length === 0) {
+            return null;
+        }
+        return results[0].role;
+    }
+    /**
+     * Get permissions for a role.
+     */
+    getPermissionsForRole(role) {
+        return types_1.ROLE_PERMISSIONS[role];
+    }
+    /**
+     * Get a user's permissions for an entity.
+     */
+    async getUserPermissions(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        if (!role) {
+            return null;
+        }
+        return this.getPermissionsForRole(role);
+    }
+    /**
+     * Check if user is a member of an entity.
+     */
+    async isMember(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        return role !== null;
+    }
+    /**
+     * Check if user is an admin of an entity.
+     */
+    async isAdmin(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        return role === types_1.EntityRole.ADMIN;
+    }
+    /**
+     * Check if user is the owner of an entity.
+     */
+    async isOwner(entityId, userId) {
+        const results = await this.config.db
+            .select({ ownerUserId: this.config.entitiesTable.owner_user_id })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (results.length === 0) {
+            return false;
+        }
+        return results[0].ownerUserId === userId;
+    }
+    /**
+     * Check if user can view an entity.
+     */
+    async canViewEntity(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewEntity ?? false;
+    }
+    /**
+     * Check if user can edit an entity.
+     */
+    async canEditEntity(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canEditEntity ?? false;
+    }
+    /**
+     * Check if user can delete an entity.
+     */
+    async canDeleteEntity(entityId, userId) {
+        // First check if it's a personal entity (cannot be deleted)
+        const entity = await this.config.db
+            .select({ entityType: this.config.entitiesTable.entity_type })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (entity.length === 0) {
+            return false;
+        }
+        if (entity[0].entityType === types_1.EntityType.PERSONAL) {
+            return false;
+        }
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canDeleteEntity ?? false;
+    }
+    /**
+     * Check if user can manage members.
+     */
+    async canManageMembers(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageMembers ?? false;
+    }
+    /**
+     * Check if user can invite members.
+     */
+    async canInviteMembers(entityId, userId) {
+        // Check if it's a personal entity (no invitations allowed)
+        const entity = await this.config.db
+            .select({ entityType: this.config.entitiesTable.entity_type })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (entity.length === 0) {
+            return false;
+        }
+        if (entity[0].entityType === types_1.EntityType.PERSONAL) {
+            return false;
+        }
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canInviteMembers ?? false;
+    }
+    /**
+     * Check if user can create projects.
+     */
+    async canCreateProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canCreateProjects ?? false;
+    }
+    /**
+     * Check if user can manage projects.
+     */
+    async canManageProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageProjects ?? false;
+    }
+    /**
+     * Check if user can view projects.
+     */
+    async canViewProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewProjects ?? false;
+    }
+    /**
+     * Check if user can manage API keys.
+     */
+    async canManageApiKeys(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageApiKeys ?? false;
+    }
+    /**
+     * Check if user can view API keys.
+     */
+    async canViewApiKeys(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewApiKeys ?? false;
+    }
+    /**
+     * Assert that a user has a specific permission.
+     * Throws an error if the user lacks the permission.
+     */
+    async assertPermission(entityId, userId, permission, errorMessage) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        if (!permissions) {
+            throw new Error(errorMessage ?? 'User is not a member of this entity');
+        }
+        if (!permissions[permission]) {
+            throw new Error(errorMessage ?? `User lacks permission: ${String(permission)}`);
+        }
+    }
+    /**
+     * Get the minimum role required for a permission.
+     */
+    getMinimumRoleForPermission(permission) {
+        // Check from lowest to highest privilege
+        const roles = [types_1.EntityRole.VIEWER, types_1.EntityRole.MANAGER, types_1.EntityRole.ADMIN];
+        for (const role of roles) {
+            if (types_1.ROLE_PERMISSIONS[role][permission]) {
+                return role;
+            }
+        }
+        return null;
+    }
+}
+exports.PermissionHelper = PermissionHelper;
+//# sourceMappingURL=PermissionHelper.js.map

package/dist/helpers/PermissionHelper.d.ts

@@ -0,0 +1,86 @@
+/**
+ * @fileoverview Entity Permission Helper Class
+ * @description Permission checking for entity operations
+ */
+import { EntityRole, type EntityPermissions, type EntityHelperConfig } from '../types';
+/**
+ * Helper class for entity permission checks.
+ */
+export declare class PermissionHelper {
+    private readonly config;
+    constructor(config: EntityHelperConfig);
+    /**
+     * Get a user's role in an entity.
+     */
+    getUserRole(entityId: string, userId: string): Promise<EntityRole | null>;
+    /**
+     * Get permissions for a role.
+     */
+    getPermissionsForRole(role: EntityRole): EntityPermissions;
+    /**
+     * Get a user's permissions for an entity.
+     */
+    getUserPermissions(entityId: string, userId: string): Promise<EntityPermissions | null>;
+    /**
+     * Check if user is a member of an entity.
+     */
+    isMember(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user is an admin of an entity.
+     */
+    isAdmin(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user is the owner of an entity.
+     */
+    isOwner(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can view an entity.
+     */
+    canViewEntity(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can edit an entity.
+     */
+    canEditEntity(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can delete an entity.
+     */
+    canDeleteEntity(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can manage members.
+     */
+    canManageMembers(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can invite members.
+     */
+    canInviteMembers(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can create projects.
+     */
+    canCreateProjects(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can manage projects.
+     */
+    canManageProjects(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can view projects.
+     */
+    canViewProjects(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can manage API keys.
+     */
+    canManageApiKeys(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Check if user can view API keys.
+     */
+    canViewApiKeys(entityId: string, userId: string): Promise<boolean>;
+    /**
+     * Assert that a user has a specific permission.
+     * Throws an error if the user lacks the permission.
+     */
+    assertPermission(entityId: string, userId: string, permission: keyof EntityPermissions, errorMessage?: string): Promise<void>;
+    /**
+     * Get the minimum role required for a permission.
+     */
+    getMinimumRoleForPermission(permission: keyof EntityPermissions): EntityRole | null;
+}
+//# sourceMappingURL=PermissionHelper.d.ts.map

package/dist/helpers/PermissionHelper.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"PermissionHelper.d.ts","sourceRoot":"","sources":["../../src/helpers/PermissionHelper.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAGH,OAAO,EACL,UAAU,EAGV,KAAK,iBAAiB,EACtB,KAAK,kBAAkB,EACxB,MAAM,UAAU,CAAC;AAElB;;GAEG;AACH,qBAAa,gBAAgB;IACf,OAAO,CAAC,QAAQ,CAAC,MAAM;gBAAN,MAAM,EAAE,kBAAkB;IAEvD;;OAEG;IACG,WAAW,CACf,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IAmB7B;;OAEG;IACH,qBAAqB,CAAC,IAAI,EAAE,UAAU,GAAG,iBAAiB;IAI1D;;OAEG;IACG,kBAAkB,CACtB,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC;IAQpC;;OAEG;IACG,QAAQ,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKlE;;OAEG;IACG,OAAO,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKjE;;OAEG;IACG,OAAO,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAcjE;;OAEG;IACG,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKvE;;OAEG;IACG,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKvE;;OAEG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAoBzE;;OAEG;IACG,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAK1E;;OAEG;IACG,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAoB1E;;OAEG;IACG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAK3E;;OAEG;IACG,iBAAiB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAK3E;;OAEG;IACG,eAAe,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKzE;;OAEG;IACG,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAK1E;;OAEG;IACG,cAAc,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAKxE;;;OAGG;IACG,gBAAgB,CACpB,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EACd,UAAU,EAAE,MAAM,iBAAiB,EACnC,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CAAC,IAAI,CAAC;IAchB;;OAEG;IACH,2BAA2B,CACzB,UAAU,EAAE,MAAM,iBAAiB,GAClC,UAAU,GAAG,IAAI;CAYrB"}

package/dist/helpers/PermissionHelper.js

@@ -0,0 +1,197 @@
+"use strict";
+/**
+ * @fileoverview Entity Permission Helper Class
+ * @description Permission checking for entity operations
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionHelper = void 0;
+const drizzle_orm_1 = require("drizzle-orm");
+const types_1 = require("../types");
+/**
+ * Helper class for entity permission checks.
+ */
+class PermissionHelper {
+    constructor(config) {
+        this.config = config;
+    }
+    /**
+     * Get a user's role in an entity.
+     */
+    async getUserRole(entityId, userId) {
+        const results = await this.config.db
+            .select({ role: this.config.membersTable.role })
+            .from(this.config.membersTable)
+            .where((0, drizzle_orm_1.and)((0, drizzle_orm_1.eq)(this.config.membersTable.entity_id, entityId), (0, drizzle_orm_1.eq)(this.config.membersTable.user_id, userId)))
+            .limit(1);
+        if (results.length === 0) {
+            return null;
+        }
+        return results[0].role;
+    }
+    /**
+     * Get permissions for a role.
+     */
+    getPermissionsForRole(role) {
+        return types_1.ROLE_PERMISSIONS[role];
+    }
+    /**
+     * Get a user's permissions for an entity.
+     */
+    async getUserPermissions(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        if (!role) {
+            return null;
+        }
+        return this.getPermissionsForRole(role);
+    }
+    /**
+     * Check if user is a member of an entity.
+     */
+    async isMember(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        return role !== null;
+    }
+    /**
+     * Check if user is an admin of an entity.
+     */
+    async isAdmin(entityId, userId) {
+        const role = await this.getUserRole(entityId, userId);
+        return role === types_1.EntityRole.ADMIN;
+    }
+    /**
+     * Check if user is the owner of an entity.
+     */
+    async isOwner(entityId, userId) {
+        const results = await this.config.db
+            .select({ ownerUserId: this.config.entitiesTable.owner_user_id })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (results.length === 0) {
+            return false;
+        }
+        return results[0].ownerUserId === userId;
+    }
+    /**
+     * Check if user can view an entity.
+     */
+    async canViewEntity(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewEntity ?? false;
+    }
+    /**
+     * Check if user can edit an entity.
+     */
+    async canEditEntity(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canEditEntity ?? false;
+    }
+    /**
+     * Check if user can delete an entity.
+     */
+    async canDeleteEntity(entityId, userId) {
+        // First check if it's a personal entity (cannot be deleted)
+        const entity = await this.config.db
+            .select({ entityType: this.config.entitiesTable.entity_type })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (entity.length === 0) {
+            return false;
+        }
+        if (entity[0].entityType === types_1.EntityType.PERSONAL) {
+            return false;
+        }
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canDeleteEntity ?? false;
+    }
+    /**
+     * Check if user can manage members.
+     */
+    async canManageMembers(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageMembers ?? false;
+    }
+    /**
+     * Check if user can invite members.
+     */
+    async canInviteMembers(entityId, userId) {
+        // Check if it's a personal entity (no invitations allowed)
+        const entity = await this.config.db
+            .select({ entityType: this.config.entitiesTable.entity_type })
+            .from(this.config.entitiesTable)
+            .where((0, drizzle_orm_1.eq)(this.config.entitiesTable.id, entityId))
+            .limit(1);
+        if (entity.length === 0) {
+            return false;
+        }
+        if (entity[0].entityType === types_1.EntityType.PERSONAL) {
+            return false;
+        }
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canInviteMembers ?? false;
+    }
+    /**
+     * Check if user can create projects.
+     */
+    async canCreateProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canCreateProjects ?? false;
+    }
+    /**
+     * Check if user can manage projects.
+     */
+    async canManageProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageProjects ?? false;
+    }
+    /**
+     * Check if user can view projects.
+     */
+    async canViewProjects(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewProjects ?? false;
+    }
+    /**
+     * Check if user can manage API keys.
+     */
+    async canManageApiKeys(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canManageApiKeys ?? false;
+    }
+    /**
+     * Check if user can view API keys.
+     */
+    async canViewApiKeys(entityId, userId) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        return permissions?.canViewApiKeys ?? false;
+    }
+    /**
+     * Assert that a user has a specific permission.
+     * Throws an error if the user lacks the permission.
+     */
+    async assertPermission(entityId, userId, permission, errorMessage) {
+        const permissions = await this.getUserPermissions(entityId, userId);
+        if (!permissions) {
+            throw new Error(errorMessage ?? 'User is not a member of this entity');
+        }
+        if (!permissions[permission]) {
+            throw new Error(errorMessage ?? `User lacks permission: ${String(permission)}`);
+        }
+    }
+    /**
+     * Get the minimum role required for a permission.
+     */
+    getMinimumRoleForPermission(permission) {
+        // Check from lowest to highest privilege
+        const roles = [types_1.EntityRole.VIEWER, types_1.EntityRole.MANAGER, types_1.EntityRole.ADMIN];
+        for (const role of roles) {
+            if (types_1.ROLE_PERMISSIONS[role][permission]) {
+                return role;
+            }
+        }
+        return null;
+    }
+}
+exports.PermissionHelper = PermissionHelper;
+//# sourceMappingURL=PermissionHelper.js.map

package/dist/helpers/PermissionHelper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"PermissionHelper.js","sourceRoot":"","sources":["../../src/helpers/PermissionHelper.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,6CAAsC;AACtC,oCAMkB;AAElB;;GAEG;AACH,MAAa,gBAAgB;IAC3B,YAA6B,MAA0B;QAA1B,WAAM,GAAN,MAAM,CAAoB;IAAG,CAAC;IAE3D;;OAEG;IACH,KAAK,CAAC,WAAW,CACf,QAAgB,EAChB,MAAc;QAEd,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE;aACjC,MAAM,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC;aAC/C,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC;aAC9B,KAAK,CACJ,IAAA,iBAAG,EACD,IAAA,gBAAE,EAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,SAAS,EAAE,QAAQ,CAAC,EAChD,IAAA,gBAAE,EAAC,IAAI,CAAC,MAAM,CAAC,YAAY,CAAC,OAAO,EAAE,MAAM,CAAC,CAC7C,CACF;aACA,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO,OAAO,CAAC,CAAC,CAAC,CAAC,IAAkB,CAAC;IACvC,CAAC;IAED;;OAEG;IACH,qBAAqB,CAAC,IAAgB;QACpC,OAAO,wBAAgB,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,kBAAkB,CACtB,QAAgB,EAChB,MAAc;QAEd,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACtD,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC;QACd,CAAC;QACD,OAAO,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ,CAAC,QAAgB,EAAE,MAAc;QAC7C,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACtD,OAAO,IAAI,KAAK,IAAI,CAAC;IACvB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,QAAgB,EAAE,MAAc;QAC5C,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACtD,OAAO,IAAI,KAAK,kBAAU,CAAC,KAAK,CAAC;IACnC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,QAAgB,EAAE,MAAc;QAC5C,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE;aACjC,MAAM,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,aAAa,EAAE,CAAC;aAChE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC/B,KAAK,CAAC,IAAA,gBAAE,EAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;aACjD,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,OAAO,CAAC,CAAC,CAAC,CAAC,WAAW,KAAK,MAAM,CAAC;IAC3C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,MAAc;QAClD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,aAAa,IAAI,KAAK,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,MAAc;QAClD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,aAAa,IAAI,KAAK,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,QAAgB,EAAE,MAAc;QACpD,4DAA4D;QAC5D,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE;aAChC,MAAM,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,WAAW,EAAE,CAAC;aAC7D,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC/B,KAAK,CAAC,IAAA,gBAAE,EAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;aACjD,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,UAAU,KAAK,kBAAU,CAAC,QAAQ,EAAE,CAAC;YACjD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,eAAe,IAAI,KAAK,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,QAAgB,EAAE,MAAc;QACrD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,gBAAgB,IAAI,KAAK,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,QAAgB,EAAE,MAAc;QACrD,2DAA2D;QAC3D,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,MAAM,CAAC,EAAE;aAChC,MAAM,CAAC,EAAE,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,WAAW,EAAE,CAAC;aAC7D,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC;aAC/B,KAAK,CAAC,IAAA,gBAAE,EAAC,IAAI,CAAC,MAAM,CAAC,aAAa,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;aACjD,KAAK,CAAC,CAAC,CAAC,CAAC;QAEZ,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,IAAI,MAAM,CAAC,CAAC,CAAC,CAAC,UAAU,KAAK,kBAAU,CAAC,QAAQ,EAAE,CAAC;YACjD,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,gBAAgB,IAAI,KAAK,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,QAAgB,EAAE,MAAc;QACtD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,iBAAiB,IAAI,KAAK,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,iBAAiB,CAAC,QAAgB,EAAE,MAAc;QACtD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,iBAAiB,IAAI,KAAK,CAAC;IACjD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,eAAe,CAAC,QAAgB,EAAE,MAAc;QACpD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,eAAe,IAAI,KAAK,CAAC;IAC/C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,QAAgB,EAAE,MAAc;QACrD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,gBAAgB,IAAI,KAAK,CAAC;IAChD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc,CAAC,QAAgB,EAAE,MAAc;QACnD,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpE,OAAO,WAAW,EAAE,cAAc,IAAI,KAAK,CAAC;IAC9C,CAAC;IAED;;;OAGG;IACH,KAAK,CAAC,gBAAgB,CACpB,QAAgB,EAChB,MAAc,EACd,UAAmC,EACnC,YAAqB;QAErB,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,kBAAkB,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAEpE,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,IAAI,KAAK,CAAC,YAAY,IAAI,qCAAqC,CAAC,CAAC;QACzE,CAAC;QAED,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,EAAE,CAAC;YAC7B,MAAM,IAAI,KAAK,CACb,YAAY,IAAI,0BAA0B,MAAM,CAAC,UAAU,CAAC,EAAE,CAC/D,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,2BAA2B,CACzB,UAAmC;QAEnC,yCAAyC;QACzC,MAAM,KAAK,GAAG,CAAC,kBAAU,CAAC,MAAM,EAAE,kBAAU,CAAC,OAAO,EAAE,kBAAU,CAAC,KAAK,CAAC,CAAC;QAExE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,wBAAgB,CAAC,IAAI,CAAC,CAAC,UAAU,CAAC,EAAE,CAAC;gBACvC,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;CACF;AAxOD,4CAwOC"}

package/dist/helpers/index.cjs

@@ -0,0 +1,15 @@
+"use strict";
+/**
+ * @fileoverview Helper Exports
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionHelper = exports.InvitationHelper = exports.EntityMemberHelper = exports.EntityHelper = void 0;
+var EntityHelper_1 = require("./EntityHelper");
+Object.defineProperty(exports, "EntityHelper", { enumerable: true, get: function () { return EntityHelper_1.EntityHelper; } });
+var EntityMemberHelper_1 = require("./EntityMemberHelper");
+Object.defineProperty(exports, "EntityMemberHelper", { enumerable: true, get: function () { return EntityMemberHelper_1.EntityMemberHelper; } });
+var InvitationHelper_1 = require("./InvitationHelper");
+Object.defineProperty(exports, "InvitationHelper", { enumerable: true, get: function () { return InvitationHelper_1.InvitationHelper; } });
+var PermissionHelper_1 = require("./PermissionHelper");
+Object.defineProperty(exports, "PermissionHelper", { enumerable: true, get: function () { return PermissionHelper_1.PermissionHelper; } });
+//# sourceMappingURL=index.js.map

package/dist/helpers/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * @fileoverview Helper Exports
+ */
+export { EntityHelper } from './EntityHelper';
+export { EntityMemberHelper } from './EntityMemberHelper';
+export { InvitationHelper } from './InvitationHelper';
+export { PermissionHelper } from './PermissionHelper';
+//# sourceMappingURL=index.d.ts.map

package/dist/helpers/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/helpers/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,kBAAkB,EAAE,MAAM,sBAAsB,CAAC;AAC1D,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AACtD,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC"}

package/dist/helpers/index.js

@@ -0,0 +1,15 @@
+"use strict";
+/**
+ * @fileoverview Helper Exports
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionHelper = exports.InvitationHelper = exports.EntityMemberHelper = exports.EntityHelper = void 0;
+var EntityHelper_1 = require("./EntityHelper");
+Object.defineProperty(exports, "EntityHelper", { enumerable: true, get: function () { return EntityHelper_1.EntityHelper; } });
+var EntityMemberHelper_1 = require("./EntityMemberHelper");
+Object.defineProperty(exports, "EntityMemberHelper", { enumerable: true, get: function () { return EntityMemberHelper_1.EntityMemberHelper; } });
+var InvitationHelper_1 = require("./InvitationHelper");
+Object.defineProperty(exports, "InvitationHelper", { enumerable: true, get: function () { return InvitationHelper_1.InvitationHelper; } });
+var PermissionHelper_1 = require("./PermissionHelper");
+Object.defineProperty(exports, "PermissionHelper", { enumerable: true, get: function () { return PermissionHelper_1.PermissionHelper; } });
+//# sourceMappingURL=index.js.map

package/dist/helpers/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/helpers/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEH,+CAA8C;AAArC,4GAAA,YAAY,OAAA;AACrB,2DAA0D;AAAjD,wHAAA,kBAAkB,OAAA;AAC3B,uDAAsD;AAA7C,oHAAA,gBAAgB,OAAA;AACzB,uDAAsD;AAA7C,oHAAA,gBAAgB,OAAA"}

package/dist/index.cjs

@@ -0,0 +1,76 @@
+"use strict";
+/**
+ * @fileoverview Entity Service Library
+ * @description Shared backend library for multi-tenant entity/organization management
+ *
+ * @example
+ * ```typescript
+ * import {
+ *   createEntityHelpers,
+ *   createEntityContextMiddleware,
+ *   entities,
+ *   entityMembers,
+ *   entityInvitations,
+ * } from '@shapeshyft/entity-service';
+ *
+ * // Create helpers with your database config
+ * const helpers = createEntityHelpers({
+ *   db: drizzleDb,
+ *   entitiesTable: mySchema.entities,
+ *   membersTable: mySchema.entityMembers,
+ *   invitationsTable: mySchema.entityInvitations,
+ *   usersTable: mySchema.users,
+ * });
+ *
+ * // Use in your routes
+ * const entity = await helpers.entity.getOrCreatePersonalEntity(userId, email);
+ * const members = await helpers.members.getMembers(entityId);
+ * ```
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ROLE_PERMISSIONS = exports.InvitationStatus = exports.EntityRole = exports.EntityType = exports.rollbackEntityMigration = exports.runEntityMigration = exports.calculateInvitationExpiry = exports.validateSlug = exports.normalizeSlug = exports.generateInvitationToken = exports.generateEntitySlug = exports.createEntityHelpers = exports.createRequireRoleMiddleware = exports.createRequirePermissionMiddleware = exports.createEntityContextMiddleware = exports.PermissionHelper = exports.InvitationHelper = exports.EntityMemberHelper = exports.EntityHelper = exports.initEntityTables = exports.entityInvitations = exports.entityMembers = exports.entities = exports.createEntityInvitationsTablePublic = exports.createEntityInvitationsTable = exports.createEntityMembersTablePublic = exports.createEntityMembersTable = exports.createEntitiesTablePublic = exports.createEntitiesTable = void 0;
+// Schema exports
+var entities_1 = require("./schema/entities");
+// Table factory functions
+Object.defineProperty(exports, "createEntitiesTable", { enumerable: true, get: function () { return entities_1.createEntitiesTable; } });
+Object.defineProperty(exports, "createEntitiesTablePublic", { enumerable: true, get: function () { return entities_1.createEntitiesTablePublic; } });
+Object.defineProperty(exports, "createEntityMembersTable", { enumerable: true, get: function () { return entities_1.createEntityMembersTable; } });
+Object.defineProperty(exports, "createEntityMembersTablePublic", { enumerable: true, get: function () { return entities_1.createEntityMembersTablePublic; } });
+Object.defineProperty(exports, "createEntityInvitationsTable", { enumerable: true, get: function () { return entities_1.createEntityInvitationsTable; } });
+Object.defineProperty(exports, "createEntityInvitationsTablePublic", { enumerable: true, get: function () { return entities_1.createEntityInvitationsTablePublic; } });
+// Default tables (public schema)
+Object.defineProperty(exports, "entities", { enumerable: true, get: function () { return entities_1.entities; } });
+Object.defineProperty(exports, "entityMembers", { enumerable: true, get: function () { return entities_1.entityMembers; } });
+Object.defineProperty(exports, "entityInvitations", { enumerable: true, get: function () { return entities_1.entityInvitations; } });
+// Initialization
+Object.defineProperty(exports, "initEntityTables", { enumerable: true, get: function () { return entities_1.initEntityTables; } });
+// Helper exports
+var helpers_1 = require("./helpers");
+Object.defineProperty(exports, "EntityHelper", { enumerable: true, get: function () { return helpers_1.EntityHelper; } });
+Object.defineProperty(exports, "EntityMemberHelper", { enumerable: true, get: function () { return helpers_1.EntityMemberHelper; } });
+Object.defineProperty(exports, "InvitationHelper", { enumerable: true, get: function () { return helpers_1.InvitationHelper; } });
+Object.defineProperty(exports, "PermissionHelper", { enumerable: true, get: function () { return helpers_1.PermissionHelper; } });
+// Middleware exports
+var middleware_1 = require("./middleware");
+Object.defineProperty(exports, "createEntityContextMiddleware", { enumerable: true, get: function () { return middleware_1.createEntityContextMiddleware; } });
+Object.defineProperty(exports, "createRequirePermissionMiddleware", { enumerable: true, get: function () { return middleware_1.createRequirePermissionMiddleware; } });
+Object.defineProperty(exports, "createRequireRoleMiddleware", { enumerable: true, get: function () { return middleware_1.createRequireRoleMiddleware; } });
+Object.defineProperty(exports, "createEntityHelpers", { enumerable: true, get: function () { return middleware_1.createEntityHelpers; } });
+// Utility exports
+var utils_1 = require("./utils");
+Object.defineProperty(exports, "generateEntitySlug", { enumerable: true, get: function () { return utils_1.generateEntitySlug; } });
+Object.defineProperty(exports, "generateInvitationToken", { enumerable: true, get: function () { return utils_1.generateInvitationToken; } });
+Object.defineProperty(exports, "normalizeSlug", { enumerable: true, get: function () { return utils_1.normalizeSlug; } });
+Object.defineProperty(exports, "validateSlug", { enumerable: true, get: function () { return utils_1.validateSlug; } });
+Object.defineProperty(exports, "calculateInvitationExpiry", { enumerable: true, get: function () { return utils_1.calculateInvitationExpiry; } });
+// Migration exports
+var migrations_1 = require("./migrations");
+Object.defineProperty(exports, "runEntityMigration", { enumerable: true, get: function () { return migrations_1.runEntityMigration; } });
+Object.defineProperty(exports, "rollbackEntityMigration", { enumerable: true, get: function () { return migrations_1.rollbackEntityMigration; } });
+// Type exports (re-exported from @sudobility/types)
+var types_1 = require("./types");
+Object.defineProperty(exports, "EntityType", { enumerable: true, get: function () { return types_1.EntityType; } });
+Object.defineProperty(exports, "EntityRole", { enumerable: true, get: function () { return types_1.EntityRole; } });
+Object.defineProperty(exports, "InvitationStatus", { enumerable: true, get: function () { return types_1.InvitationStatus; } });
+Object.defineProperty(exports, "ROLE_PERMISSIONS", { enumerable: true, get: function () { return types_1.ROLE_PERMISSIONS; } });
+//# sourceMappingURL=index.js.map

package/dist/index.d.ts

@@ -0,0 +1,36 @@
+/**
+ * @fileoverview Entity Service Library
+ * @description Shared backend library for multi-tenant entity/organization management
+ *
+ * @example
+ * ```typescript
+ * import {
+ *   createEntityHelpers,
+ *   createEntityContextMiddleware,
+ *   entities,
+ *   entityMembers,
+ *   entityInvitations,
+ * } from '@shapeshyft/entity-service';
+ *
+ * // Create helpers with your database config
+ * const helpers = createEntityHelpers({
+ *   db: drizzleDb,
+ *   entitiesTable: mySchema.entities,
+ *   membersTable: mySchema.entityMembers,
+ *   invitationsTable: mySchema.entityInvitations,
+ *   usersTable: mySchema.users,
+ * });
+ *
+ * // Use in your routes
+ * const entity = await helpers.entity.getOrCreatePersonalEntity(userId, email);
+ * const members = await helpers.members.getMembers(entityId);
+ * ```
+ */
+export { createEntitiesTable, createEntitiesTablePublic, createEntityMembersTable, createEntityMembersTablePublic, createEntityInvitationsTable, createEntityInvitationsTablePublic, entities, entityMembers, entityInvitations, type EntityRecord, type NewEntityRecord, type EntityMemberRecord, type NewEntityMemberRecord, type EntityInvitationRecord, type NewEntityInvitationRecord, initEntityTables, } from './schema/entities';
+export { EntityHelper, EntityMemberHelper, InvitationHelper, PermissionHelper, } from './helpers';
+export { createEntityContextMiddleware, createRequirePermissionMiddleware, createRequireRoleMiddleware, createEntityHelpers, type EntityContext, type EntityContextMiddlewareOptions, } from './middleware';
+export { generateEntitySlug, generateInvitationToken, normalizeSlug, validateSlug, calculateInvitationExpiry, } from './utils';
+export { runEntityMigration, rollbackEntityMigration, type MigrationConfig, } from './migrations';
+export { EntityType, EntityRole, InvitationStatus, ROLE_PERMISSIONS, type Entity, type EntityWithRole, type EntityMember, type EntityMemberUser, type EntityInvitation, type EntityPermissions, type CreateEntityRequest, type UpdateEntityRequest, type InviteMemberRequest, type UpdateMemberRoleRequest, } from './types';
+export type { EntityHelperConfig, InvitationHelperConfig, EntityOperationResult, ListEntitiesOptions, ListMembersOptions, ListInvitationsOptions, } from './types';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;GA2BG;AAGH,OAAO,EAEL,mBAAmB,EACnB,yBAAyB,EACzB,wBAAwB,EACxB,8BAA8B,EAC9B,4BAA4B,EAC5B,kCAAkC,EAElC,QAAQ,EACR,aAAa,EACb,iBAAiB,EAEjB,KAAK,YAAY,EACjB,KAAK,eAAe,EACpB,KAAK,kBAAkB,EACvB,KAAK,qBAAqB,EAC1B,KAAK,sBAAsB,EAC3B,KAAK,yBAAyB,EAE9B,gBAAgB,GACjB,MAAM,mBAAmB,CAAC;AAG3B,OAAO,EACL,YAAY,EACZ,kBAAkB,EAClB,gBAAgB,EAChB,gBAAgB,GACjB,MAAM,WAAW,CAAC;AAGnB,OAAO,EACL,6BAA6B,EAC7B,iCAAiC,EACjC,2BAA2B,EAC3B,mBAAmB,EACnB,KAAK,aAAa,EAClB,KAAK,8BAA8B,GACpC,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,kBAAkB,EAClB,uBAAuB,EACvB,aAAa,EACb,YAAY,EACZ,yBAAyB,GAC1B,MAAM,SAAS,CAAC;AAGjB,OAAO,EACL,kBAAkB,EAClB,uBAAuB,EACvB,KAAK,eAAe,GACrB,MAAM,cAAc,CAAC;AAGtB,OAAO,EACL,UAAU,EACV,UAAU,EACV,gBAAgB,EAChB,gBAAgB,EAChB,KAAK,MAAM,EACX,KAAK,cAAc,EACnB,KAAK,YAAY,EACjB,KAAK,gBAAgB,EACrB,KAAK,gBAAgB,EACrB,KAAK,iBAAiB,EACtB,KAAK,mBAAmB,EACxB,KAAK,mBAAmB,EACxB,KAAK,mBAAmB,EACxB,KAAK,uBAAuB,GAC7B,MAAM,SAAS,CAAC;AAGjB,YAAY,EACV,kBAAkB,EAClB,sBAAsB,EACtB,qBAAqB,EACrB,mBAAmB,EACnB,kBAAkB,EAClB,sBAAsB,GACvB,MAAM,SAAS,CAAC"}