@tmlmobilidade/types 20251103.1255.55 → 20251202.1817.5

package/dist/permissions/index.d.ts

@@ -0,0 +1,268 @@
+import { z } from 'zod';
+export declare const PermissionSchema: z.ZodDiscriminatedUnion<"scope", [z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "toggle_lock", "update"]>;
+    scope: z.ZodLiteral<"agencies">;
+}, "strip", z.ZodTypeAny, {
+    scope: "agencies";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+}, {
+    scope: "agencies";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "toggle_lock", "update"]>;
+    scope: z.ZodLiteral<"alerts_scheduled">;
+}, "strip", z.ZodTypeAny, {
+    scope: "alerts_scheduled";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+}, {
+    scope: "alerts_scheduled";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "toggle_lock", "update"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        agency_ids: string[];
+    }, {
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"alerts_realtime">;
+}, "strip", z.ZodTypeAny, {
+    scope: "alerts_realtime";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources: {
+        agency_ids: string[];
+    };
+}, {
+    scope: "alerts_realtime";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources?: {
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>, z.ZodObject<{
+    action: z.ZodEnum<["acceptance_change_status", "acceptance_justify", "acceptance_lock", "acceptance_read", "analsys_lock", "analysis_lock", "analysis_read", "analysis_reprocess", "analysis_update", "audit_lock", "audit_read", "audit_update"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        agency_ids: string[];
+    }, {
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"rides">;
+}, "strip", z.ZodTypeAny, {
+    scope: "rides";
+    action: "acceptance_change_status" | "acceptance_justify" | "acceptance_lock" | "acceptance_read" | "analsys_lock" | "analysis_lock" | "analysis_read" | "analysis_reprocess" | "analysis_update" | "audit_lock" | "audit_read" | "audit_update";
+    resources: {
+        agency_ids: string[];
+    };
+}, {
+    scope: "rides";
+    action: "acceptance_change_status" | "acceptance_justify" | "acceptance_lock" | "acceptance_read" | "analsys_lock" | "analysis_lock" | "analysis_read" | "analysis_reprocess" | "analysis_update" | "audit_lock" | "audit_read" | "audit_update";
+    resources?: {
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>, z.ZodObject<{
+    action: z.ZodEnum<["read"]>;
+    scope: z.ZodLiteral<"sams">;
+}, "strip", z.ZodTypeAny, {
+    scope: "sams";
+    action: "read";
+}, {
+    scope: "sams";
+    action: "read";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "read", "request_approval"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        agency_ids: string[];
+    }, {
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"gtfs_validations">;
+}, "strip", z.ZodTypeAny, {
+    scope: "gtfs_validations";
+    action: "create" | "read" | "request_approval";
+    resources: {
+        agency_ids: string[];
+    };
+}, {
+    scope: "gtfs_validations";
+    action: "create" | "read" | "request_approval";
+    resources?: {
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>, z.ZodObject<{
+    action: z.ZodEnum<["read_links", "read_wiki"]>;
+    scope: z.ZodLiteral<"home">;
+}, "strip", z.ZodTypeAny, {
+    scope: "home";
+    action: "read_links" | "read_wiki";
+}, {
+    scope: "home";
+    action: "read_links" | "read_wiki";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"organizations">;
+}, "strip", z.ZodTypeAny, {
+    scope: "organizations";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "organizations";
+    action: "create" | "update" | "delete" | "read";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["read"]>;
+    scope: z.ZodLiteral<"performance">;
+}, "strip", z.ZodTypeAny, {
+    scope: "performance";
+    action: "read";
+}, {
+    scope: "performance";
+    action: "read";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "read_controller", "read_pcgi_legacy", "toggle_lock", "update", "update_controller", "update_feed_info_dates", "update_gtfs_plan", "update_pcgi_legacy"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        agency_ids: string[];
+    }, {
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"plans">;
+}, "strip", z.ZodTypeAny, {
+    scope: "plans";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock" | "read_controller" | "read_pcgi_legacy" | "update_controller" | "update_feed_info_dates" | "update_gtfs_plan" | "update_pcgi_legacy";
+    resources: {
+        agency_ids: string[];
+    };
+}, {
+    scope: "plans";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock" | "read_controller" | "read_pcgi_legacy" | "update_controller" | "update_feed_info_dates" | "update_gtfs_plan" | "update_pcgi_legacy";
+    resources?: {
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"roles">;
+}, "strip", z.ZodTypeAny, {
+    scope: "roles";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "roles";
+    action: "create" | "update" | "delete" | "read";
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "toggle_lock", "update"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+        municipality_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        municipality_ids: string[];
+        agency_ids: string[];
+    }, {
+        municipality_ids?: string[] | undefined;
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"stops">;
+}, "strip", z.ZodTypeAny, {
+    scope: "stops";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources: {
+        municipality_ids: string[];
+        agency_ids: string[];
+    };
+}, {
+    scope: "stops";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources?: {
+        municipality_ids?: string[] | undefined;
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>, z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"users">;
+}, "strip", z.ZodTypeAny, {
+    scope: "users";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "users";
+    action: "create" | "update" | "delete" | "read";
+}>]>;
+export type Permission = z.infer<typeof PermissionSchema>;
+export type ActionsOf<S extends Permission['scope']> = Extract<Permission, {
+    scope: S;
+}>['action'];
+export type PermissionCatalogType = {
+    [S in Permission['scope']]: {
+        actions: {
+            [A in ActionsOf<S>]: A;
+        };
+        scope: S;
+    };
+};
+/**
+ * Arguments for hasPermissionResource function.
+ * @param T The type of the resource.
+ */
+export interface HasPermissionResourceArgs {
+    action: string;
+    permissions: Permission[];
+    resource_key: string;
+    scope: string;
+    value: unknown;
+}
+/**
+ * PermissionCatalog provides a structured catalog of all available permissions
+ * in the system, categorized by scope and their respective actions.
+ * Use it to reference required permissions in components and services.
+ */
+export declare class PermissionCatalog {
+    static readonly ALLOW_ALL_FLAG = "allow_all";
+    /**
+     * Generates the complete permission catalog by extracting
+     * scopes and actions from the defined PermissionSchema.
+     * @return A catalog object mapping scopes to their actions.
+     */
+    static get all(): PermissionCatalogType;
+    /**
+     * Get a specific permission from a full list by scope and action.
+     * @param permissionEntries The full list of permissions of the user.
+     * @param scope The resource scope of the permission to filter by.
+     * @param action The action of the permission to filter by.
+     * @returns The filtered Permission object or undefined if not found.
+     */
+    static get<S extends Permission['scope']>(permissionEntries: Permission[], scope: S, action: ActionsOf<S>): Extract<Permission, {
+        action: ActionsOf<S>;
+        scope: S;
+    }> | undefined;
+    /**
+     * Check if a list of permission entries has the requested scope/action pair.
+     * @param permissionEntries The list of permission entries to check against.
+     * @param scope The required scope to check.
+     * @param action The required action to check.
+     * @returns The permission object or undefined if not found.
+     */
+    static hasPermission<S extends Permission['scope']>(permissionEntries: Permission[], scope: S, action: ActionsOf<S>): boolean;
+    /**
+     * Check if a permission exists in a list of permissions, with additional check for a given resource value.
+     * If a `value` exists in a `resource` of a User `permissions` object that
+     * matches the given `action` and `scope`. For example, if you want to check if
+     * a user has access to a specific `agency_id`, you set `value=43` and `resource_key='agency_ids'`.
+     * If the provided `permissions` object contains the value `43` inside the `scope='plans'`,
+     * `action='create'` and `resource_key='agency_ids'` the function will return true.
+     * @param permissions The list of permissions (from a user or request).
+     * @param value The permission value to check against.
+     * @param resource_key The key of the resource.
+     * @param scope The scope of the permission.
+     * @param action The action of the permission.
+     * @returns The permission.
+     */
+    static hasPermissionResource({ action, permissions, resource_key, scope, value }: HasPermissionResourceArgs): boolean;
+    /**
+     * Sanitizes a list of permissions by removing any entries
+     * that do not correspond to valid scopes and actions
+     * defined in the PermissionCatalog.
+     * @param existingEntries Array of Permission objects to sanitize.
+     * @return A cleaned array containing only valid permissions.
+     */
+    static sanitize(existingEntries: Permission[]): Permission[];
+}

package/dist/permissions/index.js

@@ -0,0 +1,149 @@
+/* eslint-disable @typescript-eslint/no-extraneous-class */
+/* * */
+import { AgenciesPermissionSchema } from './agencies.js';
+import { AlertsRealtimePermissionSchema, AlertsScheduledPermissionSchema } from './alerts.js';
+import { RidesPermissionSchema, SamsPermissionSchema } from './controller.js';
+import { GtfsValidationsPermissionSchema } from './gtfs-validations.js';
+import { HomePermissionSchema } from './home.js';
+import { OrganizationsPermissionSchema } from './organizations.js';
+import { PerformancePermissionSchema } from './performance.js';
+import { PlansPermissionSchema } from './plans.js';
+import { RolesPermissionSchema } from './roles.js';
+import { StopsPermissionSchema } from './stops.js';
+import { UsersPermissionSchema } from './users.js';
+import { z } from 'zod';
+/* * */
+export const PermissionSchema = z.discriminatedUnion('scope', [
+    AgenciesPermissionSchema,
+    AlertsScheduledPermissionSchema,
+    AlertsRealtimePermissionSchema,
+    RidesPermissionSchema,
+    SamsPermissionSchema,
+    GtfsValidationsPermissionSchema,
+    HomePermissionSchema,
+    OrganizationsPermissionSchema,
+    PerformancePermissionSchema,
+    PlansPermissionSchema,
+    RolesPermissionSchema,
+    StopsPermissionSchema,
+    UsersPermissionSchema,
+]);
+/**
+ * PermissionCatalog provides a structured catalog of all available permissions
+ * in the system, categorized by scope and their respective actions.
+ * Use it to reference required permissions in components and services.
+ */
+export class PermissionCatalog {
+    //
+    static ALLOW_ALL_FLAG = 'allow_all';
+    /**
+     * Generates the complete permission catalog by extracting
+     * scopes and actions from the defined PermissionSchema.
+     * @return A catalog object mapping scopes to their actions.
+     */
+    static get all() {
+        // Initialize catalog object
+        const catalog = {};
+        // Iterate over each schema option
+        for (const schemaOption of PermissionSchema.options) {
+            // Extract scope name and actions
+            const scopeName = schemaOption.shape.scope.value;
+            const actions = schemaOption.shape.action.options;
+            // Build catalog entry
+            catalog[scopeName] = {
+                actions: Object.fromEntries(actions.map((a) => [a, a])),
+                scope: scopeName,
+            };
+        }
+        // Return the completed catalog
+        return catalog;
+    }
+    /**
+     * Get a specific permission from a full list by scope and action.
+     * @param permissionEntries The full list of permissions of the user.
+     * @param scope The resource scope of the permission to filter by.
+     * @param action The action of the permission to filter by.
+     * @returns The filtered Permission object or undefined if not found.
+     */
+    static get(permissionEntries, scope, action) {
+        return permissionEntries.find((p) => p.scope === scope && p.action === action);
+    }
+    /**
+     * Check if a list of permission entries has the requested scope/action pair.
+     * @param permissionEntries The list of permission entries to check against.
+     * @param scope The required scope to check.
+     * @param action The required action to check.
+     * @returns The permission object or undefined if not found.
+     */
+    static hasPermission(permissionEntries, scope, action) {
+        return permissionEntries.find(p => p.scope === scope && p.action === action) !== undefined;
+    }
+    /**
+     * Check if a permission exists in a list of permissions, with additional check for a given resource value.
+     * If a `value` exists in a `resource` of a User `permissions` object that
+     * matches the given `action` and `scope`. For example, if you want to check if
+     * a user has access to a specific `agency_id`, you set `value=43` and `resource_key='agency_ids'`.
+     * If the provided `permissions` object contains the value `43` inside the `scope='plans'`,
+     * `action='create'` and `resource_key='agency_ids'` the function will return true.
+     * @param permissions The list of permissions (from a user or request).
+     * @param value The permission value to check against.
+     * @param resource_key The key of the resource.
+     * @param scope The scope of the permission.
+     * @param action The action of the permission.
+     * @returns The permission.
+     */
+    static hasPermissionResource({ action, permissions, resource_key, scope, value }) {
+        //
+        //
+        // Return false if no permissions
+        if (!permissions)
+            return false;
+        //
+        // Find the permission with the given action and scope
+        const foundPermission = permissions.find(p => p.action === action && p.scope === scope);
+        if (!foundPermission)
+            return false;
+        //
+        // Check if value exists in the permission.resources[resource_key]
+        const resourceValues = foundPermission['resources']?.[resource_key];
+        if (!resourceValues)
+            return false;
+        //
+        // If resourceValues is an Array, check if value is in the array
+        // or if it contains the ALLOW_ALL_FLAG.
+        if (Array.isArray(resourceValues) && resourceValues.includes(this.ALLOW_ALL_FLAG))
+            return true;
+        if (Array.isArray(resourceValues) && resourceValues.includes(value))
+            return true;
+        //
+        // If resourceValues is not an Array, check if it is equal to the requested value
+        if (resourceValues === value)
+            return true;
+        //
+        // Otherwise, return false
+        return false;
+        //
+    }
+    /**
+     * Sanitizes a list of permissions by removing any entries
+     * that do not correspond to valid scopes and actions
+     * defined in the PermissionCatalog.
+     * @param existingEntries Array of Permission objects to sanitize.
+     * @return A cleaned array containing only valid permissions.
+     */
+    static sanitize(existingEntries) {
+        // Create a new array to hold valid permissions
+        const cleanedPermissions = {};
+        // Iterate through each permission entry of the user
+        for (const permissionEntry of existingEntries) {
+            // Validate the permission entry
+            const validationResult = PermissionSchema.safeParse(permissionEntry);
+            if (!validationResult.success)
+                continue;
+            // Permission is valid; keep it
+            cleanedPermissions[`${permissionEntry.scope}:${permissionEntry.action}`] = permissionEntry;
+        }
+        // Return the cleaned permissions array
+        return Object.values(cleanedPermissions);
+    }
+}

package/dist/permissions/organizations.d.ts

@@ -0,0 +1,12 @@
+import { z } from 'zod';
+export declare const OrganizationsPermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"organizations">;
+}, "strip", z.ZodTypeAny, {
+    scope: "organizations";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "organizations";
+    action: "create" | "update" | "delete" | "read";
+}>;
+export type OrganizationsPermission = z.infer<typeof OrganizationsPermissionSchema>;

package/dist/permissions/organizations.js

@@ -0,0 +1,12 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const OrganizationsPermissionSchema = z.object({
+    action: z.enum([
+        'create',
+        'delete',
+        'read',
+        'update',
+    ]),
+    scope: z.literal('organizations'),
+});

package/dist/permissions/performance.d.ts

@@ -0,0 +1,12 @@
+import { z } from 'zod';
+export declare const PerformancePermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["read"]>;
+    scope: z.ZodLiteral<"performance">;
+}, "strip", z.ZodTypeAny, {
+    scope: "performance";
+    action: "read";
+}, {
+    scope: "performance";
+    action: "read";
+}>;
+export type PerformancePermission = z.infer<typeof PerformancePermissionSchema>;

package/dist/permissions/performance.js

@@ -0,0 +1,9 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const PerformancePermissionSchema = z.object({
+    action: z.enum([
+        'read',
+    ]),
+    scope: z.literal('performance'),
+});

package/dist/permissions/plans.d.ts

@@ -0,0 +1,25 @@
+import { z } from 'zod';
+export declare const PlansPermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "read_controller", "read_pcgi_legacy", "toggle_lock", "update", "update_controller", "update_feed_info_dates", "update_gtfs_plan", "update_pcgi_legacy"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        agency_ids: string[];
+    }, {
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"plans">;
+}, "strip", z.ZodTypeAny, {
+    scope: "plans";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock" | "read_controller" | "read_pcgi_legacy" | "update_controller" | "update_feed_info_dates" | "update_gtfs_plan" | "update_pcgi_legacy";
+    resources: {
+        agency_ids: string[];
+    };
+}, {
+    scope: "plans";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock" | "read_controller" | "read_pcgi_legacy" | "update_controller" | "update_feed_info_dates" | "update_gtfs_plan" | "update_pcgi_legacy";
+    resources?: {
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>;
+export type PlansPermission = z.infer<typeof PlansPermissionSchema>;

package/dist/permissions/plans.js

@@ -0,0 +1,22 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const PlansPermissionSchema = z.object({
+    action: z.enum([
+        'create',
+        'delete',
+        'read',
+        'read_controller',
+        'read_pcgi_legacy',
+        'toggle_lock',
+        'update',
+        'update_controller',
+        'update_feed_info_dates',
+        'update_gtfs_plan',
+        'update_pcgi_legacy',
+    ]),
+    resources: z.object({
+        agency_ids: z.array(z.string()).default([]),
+    }).default({}),
+    scope: z.literal('plans'),
+});

package/dist/permissions/roles.d.ts

@@ -0,0 +1,12 @@
+import { z } from 'zod';
+export declare const RolesPermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"roles">;
+}, "strip", z.ZodTypeAny, {
+    scope: "roles";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "roles";
+    action: "create" | "update" | "delete" | "read";
+}>;
+export type RolesPermission = z.infer<typeof RolesPermissionSchema>;

package/dist/permissions/roles.js

@@ -0,0 +1,12 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const RolesPermissionSchema = z.object({
+    action: z.enum([
+        'create',
+        'delete',
+        'read',
+        'update',
+    ]),
+    scope: z.literal('roles'),
+});

package/dist/permissions/stops.d.ts

@@ -0,0 +1,30 @@
+import { z } from 'zod';
+export declare const StopsPermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "toggle_lock", "update"]>;
+    resources: z.ZodDefault<z.ZodObject<{
+        agency_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+        municipality_ids: z.ZodDefault<z.ZodArray<z.ZodString, "many">>;
+    }, "strip", z.ZodTypeAny, {
+        municipality_ids: string[];
+        agency_ids: string[];
+    }, {
+        municipality_ids?: string[] | undefined;
+        agency_ids?: string[] | undefined;
+    }>>;
+    scope: z.ZodLiteral<"stops">;
+}, "strip", z.ZodTypeAny, {
+    scope: "stops";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources: {
+        municipality_ids: string[];
+        agency_ids: string[];
+    };
+}, {
+    scope: "stops";
+    action: "create" | "update" | "delete" | "read" | "toggle_lock";
+    resources?: {
+        municipality_ids?: string[] | undefined;
+        agency_ids?: string[] | undefined;
+    } | undefined;
+}>;
+export type StopsPermission = z.infer<typeof StopsPermissionSchema>;

package/dist/permissions/stops.js

@@ -0,0 +1,17 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const StopsPermissionSchema = z.object({
+    action: z.enum([
+        'create',
+        'delete',
+        'read',
+        'toggle_lock',
+        'update',
+    ]),
+    resources: z.object({
+        agency_ids: z.array(z.string()).default([]),
+        municipality_ids: z.array(z.string()).default([]),
+    }).default({}),
+    scope: z.literal('stops'),
+});

package/dist/permissions/users.d.ts

@@ -0,0 +1,12 @@
+import { z } from 'zod';
+export declare const UsersPermissionSchema: z.ZodObject<{
+    action: z.ZodEnum<["create", "delete", "read", "update"]>;
+    scope: z.ZodLiteral<"users">;
+}, "strip", z.ZodTypeAny, {
+    scope: "users";
+    action: "create" | "update" | "delete" | "read";
+}, {
+    scope: "users";
+    action: "create" | "update" | "delete" | "read";
+}>;
+export type UsersPermission = z.infer<typeof UsersPermissionSchema>;

package/dist/permissions/users.js

@@ -0,0 +1,12 @@
+/* * */
+import { z } from 'zod';
+/* * */
+export const UsersPermissionSchema = z.object({
+    action: z.enum([
+        'create',
+        'delete',
+        'read',
+        'update',
+    ]),
+    scope: z.literal('users'),
+});