@tomei/sso 0.60.4-dev.10 → 0.60.4-dev.11

package/coverage/test-report.xml

@@ -1,129 +1,129 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<testExecutions version="1">
-  <file path="C:\Work\sso\__tests__\unit\components\login-user\login.spec.ts">
-    <testCase name="LoginUser init should initialize LoginUser with valid userId" duration="5"/>
-    <testCase name="LoginUser init should throw an error when user is not found" duration="20"/>
-    <testCase name="LoginUser checkSession should throw an error if session expired" duration="20"/>
-    <testCase name="LoginUser checkSession should refresh the session duration if session is valid" duration="2"/>
-    <testCase name="LoginUser shouldReleaseLock should return true if autoReleaseYN is &quot;Y&quot; and time difference is greater than minuteToAutoRelease" duration="2"/>
-    <testCase name="LoginUser shouldReleaseLock should return false if autoReleaseYN is &quot;Y&quot; and time difference is less than or equal to minuteToAutoRelease" duration="1"/>
-    <testCase name="LoginUser shouldReleaseLock should return false if autoReleaseYN is &quot;N&quot;" duration="1"/>
-    <testCase name="LoginUser releaseLock should release the lock for a user" duration="1"/>
-    <testCase name="LoginUser checkUserInfoDuplicated should throw an error if duplicate user info is found" duration="1"/>
-    <testCase name="LoginUser checkUserInfoDuplicated should not throw an error if duplicate user info is not found" duration="0"/>
-    <testCase name="LoginUser generateDefaultPassword should generate a default password with the specified length" duration="2"/>
-    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one capital letter" duration="1"/>
-    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one number" duration="1"/>
-    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one special character" duration="1"/>
-    <testCase name="LoginUser generateDefaultPassword should generate a default password without any non-acceptable characters" duration="1"/>
-    <testCase name="LoginUser setPassword should set the password for the user" duration="159"/>
-    <testCase name="LoginUser setPassword should throw an error if the password does not meet the security requirements" duration="13"/>
-    <testCase name="LoginUser create should create a new user record" duration="5"/>
-    <testCase name="LoginUser create should throw an error if user dont have the privilege to create new user" duration="2"/>
-    <testCase name="LoginUser create should throw an error if user email is missing" duration="2"/>
-    <testCase name="LoginUser incrementFailedLoginAttemptCount should increment FailedLoginAttemptCount and update user status" duration="1"/>
-    <testCase name="LoginUser incrementFailedLoginAttemptCount should throw an error if maxFailedLoginAttempts or autoReleaseYN is missing" duration="1"/>
-    <testCase name="LoginUser incrementFailedLoginAttemptCount should lock the user account if the failed login attempts exceed the maximum allowed" duration="1"/>
-    <testCase name="LoginUser incrementFailedLoginAttemptCount should permanently lock the user account if the failed login attempts exceed the maximum allowed and autoReleaseYN is N" duration="1"/>
-    <testCase name="LoginUser combineSystemAccess should combine user and group system access and remove duplicates" duration="1"/>
-    <testCase name="LoginUser checkPrivileges should return true if user has the specified privilege" duration="1"/>
-    <testCase name="LoginUser checkPrivileges should return false if user does not have the specified privilege" duration="1"/>
-    <testCase name="LoginUser checkPrivileges should throw an error if ObjectId is not set" duration="1"/>
-    <testCase name="LoginUser getObjectPrivileges should return an array of privileges" duration="1"/>
-    <testCase name="LoginUser getObjectPrivileges should throw an error if an exception occurs" duration="1"/>
-    <testCase name="LoginUser getUserPersonalPrivileges should return an array of privileges" duration="2"/>
-    <testCase name="LoginUser getUserPersonalPrivileges should throw an error if an error occurs" duration="1"/>
-    <testCase name="LoginUser getInheritedSystemAccess should return group system access with its parent group system access if applicable" duration="3"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\system\system.spec.ts">
-    <testCase name="System init should initialize a system when SystemCode is provided" duration="3"/>
-    <testCase name="System init should throw an error when SystemCode is not found" duration="8"/>
-    <testCase name="System init should initialize a new system when SystemCode is not provided" duration="1"/>
-    <testCase name="System createSystem should create a new system" duration="4"/>
-    <testCase name="System createSystem should throw an error when user does not have permission" duration="1"/>
-    <testCase name="System createSystem should throw an error when SystemCode is missing" duration="1"/>
-    <testCase name="System createSystem should throw an error when Name is missing" duration="1"/>
-    <testCase name="System createSystem should throw an error when Description is missing" duration="1"/>
-    <testCase name="System createSystem should throw an error when failed to create system" duration="5"/>
-    <testCase name="System setSystemCode should set the SystemCode when there is no duplicate" duration="1"/>
-    <testCase name="System setSystemCode should throw an error when SystemCode already exists" duration="1"/>
-    <testCase name="System setSystemCode should throw an error when failed to check duplicate SystemCode" duration="1"/>
-    <testCase name="System findAll should find all systems based on filter" duration="2"/>
-    <testCase name="System findAll should find all systems without pagination when page and rows are not provided" duration="1"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\group-object-privilege\group-object-privilege.spec.ts">
-    <testCase name="GroupObjectPrivilege should create an instance of GroupObjectPrivilege" duration="2"/>
-    <testCase name="GroupObjectPrivilege should have the correct TableName" duration="0"/>
-    <testCase name="GroupObjectPrivilege should have the correct properties" duration="1"/>
-    <testCase name="GroupObjectPrivilege init should return an instance of GroupObjectPrivilege when GroupObjectPrivilegeId is provided" duration="2"/>
-    <testCase name="GroupObjectPrivilege init should throw an error when GroupObjectPrivilegeId is provided but no GroupObjectPrivilege is found" duration="3"/>
-    <testCase name="GroupObjectPrivilege init should return a new instance of GroupObjectPrivilege when GroupObjectPrivilegeId is not provided" duration="3"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\group-system-access\group-system-access.spec.ts">
-    <testCase name="GroupSystemAccess should create a new GroupSystemAccess instance" duration="2"/>
-    <testCase name="GroupSystemAccess init should initialize GroupSystemAccess without GroupSystemAccessId" duration="2"/>
-    <testCase name="GroupSystemAccess init should initialize GroupSystemAccess with GroupSystemAccessId" duration="3"/>
-    <testCase name="GroupSystemAccess init should throw an error if GroupSystemAccessId is not found" duration="5"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\group\group.spec.ts">
-    <testCase name="Group should initialize a group with valid GroupCode" duration="4"/>
-    <testCase name="Group should throw an error when initializing a group with invalid GroupCode" duration="5"/>
-    <testCase name="Group should throw an error when initializing a group with an error" duration="2"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\group-reporting-user\group-reporting-user.spec.ts">
-    <testCase name="GroupReportingUser init should initialize GroupReportingUser without GroupReportingUserId" duration="3"/>
-    <testCase name="GroupReportingUser init should initialize GroupReportingUser with valid GroupReportingUserId" duration="2"/>
-    <testCase name="GroupReportingUser init should throw ClassError when GroupReportingUser is not found" duration="8"/>
-    <testCase name="GroupReportingUser init should throw ClassError when failed to initialize GroupReportingUser" duration="1"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\system-privilege\system-privilege.spec.ts">
-    <testCase name="SystemPrivilege constructor should create a new SystemPrivilege instance" duration="2"/>
-    <testCase name="SystemPrivilege init should initialize SystemPrivilege without PrivilegeCode" duration="1"/>
-    <testCase name="SystemPrivilege init should initialize SystemPrivilege with PrivilegeCode" duration="2"/>
-    <testCase name="SystemPrivilege init should throw an error if PrivilegeCode is not found" duration="4"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\user-group\user-group.spec.ts">
-    <testCase name="UserGroup constructor should create a new UserGroup instance" duration="3"/>
-    <testCase name="UserGroup init should initialize UserGroup with valid UserGroupId" duration="2"/>
-    <testCase name="UserGroup init should throw ClassError when UserGroupId is not found" duration="5"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\user-object-privilege\user-object-privilege.spec.ts">
-    <testCase name="UserObjectPrivilege constructor should create a new UserObjectPrivilege instance" duration="2"/>
-    <testCase name="UserObjectPrivilege init should initialize UserObjectPrivilege with valid ObjectPrivilegeId" duration="5"/>
-    <testCase name="UserObjectPrivilege init should throw ClassError when ObjectPrivilegeId is not found" duration="4"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\group-privilege\group-privilege.spec.ts">
-    <testCase name="GroupPrivilege should initialize with GroupPrivilegeAttr" duration="6"/>
-    <testCase name="GroupPrivilege should throw ClassError when GroupPrivilegeAttr is not found" duration="4"/>
-    <testCase name="GroupPrivilege should initialize with default values" duration="1"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\user-system-access\user-system-access.spec.ts">
-    <testCase name="UserSystemAccess constructor should create a new UserSystemAccess instance" duration="2"/>
-    <testCase name="UserSystemAccess init should initialize UserSystemAccess with valid UserSystemAccessId" duration="2"/>
-    <testCase name="UserSystemAccess init should throw ClassError when UserSystemAccessId is not found" duration="1"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\user-privilege\user-privilege.spec.ts">
-    <testCase name="UserPrivilege constructor should create a new UserPrivilege instance" duration="2"/>
-    <testCase name="UserPrivilege init should initialize UserPrivilege with valid UserPrivilegeId" duration="2"/>
-    <testCase name="UserPrivilege init should throw ClassError when UserPrivilegeId is not found" duration="4"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\session\session.service.spec.ts">
-    <testCase name="session.service should return session service when instansiated" duration="2"/>
-    <testCase name="session.service should able to write session data" duration="3"/>
-    <testCase name="session.service should able to refresh session data" duration="3"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\system-privilege\system-privilage.spec.ts">
-    <testCase name="SystemPrivilege should be true" duration="2"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\password-hash\password-hash.service.spec.ts">
-    <testCase name="password-hash.service should return hash password" duration="2"/>
-    <testCase name="password-hash.service should return true when verify password" duration="1"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\redis-client\redis.service.spec.ts">
-    <testCase name="redis.service should return redis service when instansiated" duration="1"/>
-    <testCase name="redis.service should able to write and read redis" duration="2"/>
-  </file>
-  <file path="C:\Work\sso\__tests__\unit\components\login-user\l.spec.ts">
-    <testCase name="SystemPrivilege should be true" duration="1"/>
-  </file>
+<?xml version="1.0" encoding="UTF-8"?>
+<testExecutions version="1">
+  <file path="C:\Work\sso\__tests__\unit\components\login-user\login.spec.ts">
+    <testCase name="LoginUser init should initialize LoginUser with valid userId" duration="5"/>
+    <testCase name="LoginUser init should throw an error when user is not found" duration="20"/>
+    <testCase name="LoginUser checkSession should throw an error if session expired" duration="20"/>
+    <testCase name="LoginUser checkSession should refresh the session duration if session is valid" duration="2"/>
+    <testCase name="LoginUser shouldReleaseLock should return true if autoReleaseYN is &quot;Y&quot; and time difference is greater than minuteToAutoRelease" duration="2"/>
+    <testCase name="LoginUser shouldReleaseLock should return false if autoReleaseYN is &quot;Y&quot; and time difference is less than or equal to minuteToAutoRelease" duration="1"/>
+    <testCase name="LoginUser shouldReleaseLock should return false if autoReleaseYN is &quot;N&quot;" duration="1"/>
+    <testCase name="LoginUser releaseLock should release the lock for a user" duration="1"/>
+    <testCase name="LoginUser checkUserInfoDuplicated should throw an error if duplicate user info is found" duration="1"/>
+    <testCase name="LoginUser checkUserInfoDuplicated should not throw an error if duplicate user info is not found" duration="0"/>
+    <testCase name="LoginUser generateDefaultPassword should generate a default password with the specified length" duration="2"/>
+    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one capital letter" duration="1"/>
+    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one number" duration="1"/>
+    <testCase name="LoginUser generateDefaultPassword should generate a default password with at least one special character" duration="1"/>
+    <testCase name="LoginUser generateDefaultPassword should generate a default password without any non-acceptable characters" duration="1"/>
+    <testCase name="LoginUser setPassword should set the password for the user" duration="159"/>
+    <testCase name="LoginUser setPassword should throw an error if the password does not meet the security requirements" duration="13"/>
+    <testCase name="LoginUser create should create a new user record" duration="5"/>
+    <testCase name="LoginUser create should throw an error if user dont have the privilege to create new user" duration="2"/>
+    <testCase name="LoginUser create should throw an error if user email is missing" duration="2"/>
+    <testCase name="LoginUser incrementFailedLoginAttemptCount should increment FailedLoginAttemptCount and update user status" duration="1"/>
+    <testCase name="LoginUser incrementFailedLoginAttemptCount should throw an error if maxFailedLoginAttempts or autoReleaseYN is missing" duration="1"/>
+    <testCase name="LoginUser incrementFailedLoginAttemptCount should lock the user account if the failed login attempts exceed the maximum allowed" duration="1"/>
+    <testCase name="LoginUser incrementFailedLoginAttemptCount should permanently lock the user account if the failed login attempts exceed the maximum allowed and autoReleaseYN is N" duration="1"/>
+    <testCase name="LoginUser combineSystemAccess should combine user and group system access and remove duplicates" duration="1"/>
+    <testCase name="LoginUser checkPrivileges should return true if user has the specified privilege" duration="1"/>
+    <testCase name="LoginUser checkPrivileges should return false if user does not have the specified privilege" duration="1"/>
+    <testCase name="LoginUser checkPrivileges should throw an error if ObjectId is not set" duration="1"/>
+    <testCase name="LoginUser getObjectPrivileges should return an array of privileges" duration="1"/>
+    <testCase name="LoginUser getObjectPrivileges should throw an error if an exception occurs" duration="1"/>
+    <testCase name="LoginUser getUserPersonalPrivileges should return an array of privileges" duration="2"/>
+    <testCase name="LoginUser getUserPersonalPrivileges should throw an error if an error occurs" duration="1"/>
+    <testCase name="LoginUser getInheritedSystemAccess should return group system access with its parent group system access if applicable" duration="3"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\system\system.spec.ts">
+    <testCase name="System init should initialize a system when SystemCode is provided" duration="3"/>
+    <testCase name="System init should throw an error when SystemCode is not found" duration="8"/>
+    <testCase name="System init should initialize a new system when SystemCode is not provided" duration="1"/>
+    <testCase name="System createSystem should create a new system" duration="4"/>
+    <testCase name="System createSystem should throw an error when user does not have permission" duration="1"/>
+    <testCase name="System createSystem should throw an error when SystemCode is missing" duration="1"/>
+    <testCase name="System createSystem should throw an error when Name is missing" duration="1"/>
+    <testCase name="System createSystem should throw an error when Description is missing" duration="1"/>
+    <testCase name="System createSystem should throw an error when failed to create system" duration="5"/>
+    <testCase name="System setSystemCode should set the SystemCode when there is no duplicate" duration="1"/>
+    <testCase name="System setSystemCode should throw an error when SystemCode already exists" duration="1"/>
+    <testCase name="System setSystemCode should throw an error when failed to check duplicate SystemCode" duration="1"/>
+    <testCase name="System findAll should find all systems based on filter" duration="2"/>
+    <testCase name="System findAll should find all systems without pagination when page and rows are not provided" duration="1"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\group-object-privilege\group-object-privilege.spec.ts">
+    <testCase name="GroupObjectPrivilege should create an instance of GroupObjectPrivilege" duration="2"/>
+    <testCase name="GroupObjectPrivilege should have the correct TableName" duration="0"/>
+    <testCase name="GroupObjectPrivilege should have the correct properties" duration="1"/>
+    <testCase name="GroupObjectPrivilege init should return an instance of GroupObjectPrivilege when GroupObjectPrivilegeId is provided" duration="2"/>
+    <testCase name="GroupObjectPrivilege init should throw an error when GroupObjectPrivilegeId is provided but no GroupObjectPrivilege is found" duration="3"/>
+    <testCase name="GroupObjectPrivilege init should return a new instance of GroupObjectPrivilege when GroupObjectPrivilegeId is not provided" duration="3"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\group-system-access\group-system-access.spec.ts">
+    <testCase name="GroupSystemAccess should create a new GroupSystemAccess instance" duration="2"/>
+    <testCase name="GroupSystemAccess init should initialize GroupSystemAccess without GroupSystemAccessId" duration="2"/>
+    <testCase name="GroupSystemAccess init should initialize GroupSystemAccess with GroupSystemAccessId" duration="3"/>
+    <testCase name="GroupSystemAccess init should throw an error if GroupSystemAccessId is not found" duration="5"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\group\group.spec.ts">
+    <testCase name="Group should initialize a group with valid GroupCode" duration="4"/>
+    <testCase name="Group should throw an error when initializing a group with invalid GroupCode" duration="5"/>
+    <testCase name="Group should throw an error when initializing a group with an error" duration="2"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\group-reporting-user\group-reporting-user.spec.ts">
+    <testCase name="GroupReportingUser init should initialize GroupReportingUser without GroupReportingUserId" duration="3"/>
+    <testCase name="GroupReportingUser init should initialize GroupReportingUser with valid GroupReportingUserId" duration="2"/>
+    <testCase name="GroupReportingUser init should throw ClassError when GroupReportingUser is not found" duration="8"/>
+    <testCase name="GroupReportingUser init should throw ClassError when failed to initialize GroupReportingUser" duration="1"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\system-privilege\system-privilege.spec.ts">
+    <testCase name="SystemPrivilege constructor should create a new SystemPrivilege instance" duration="2"/>
+    <testCase name="SystemPrivilege init should initialize SystemPrivilege without PrivilegeCode" duration="1"/>
+    <testCase name="SystemPrivilege init should initialize SystemPrivilege with PrivilegeCode" duration="2"/>
+    <testCase name="SystemPrivilege init should throw an error if PrivilegeCode is not found" duration="4"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\user-group\user-group.spec.ts">
+    <testCase name="UserGroup constructor should create a new UserGroup instance" duration="3"/>
+    <testCase name="UserGroup init should initialize UserGroup with valid UserGroupId" duration="2"/>
+    <testCase name="UserGroup init should throw ClassError when UserGroupId is not found" duration="5"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\user-object-privilege\user-object-privilege.spec.ts">
+    <testCase name="UserObjectPrivilege constructor should create a new UserObjectPrivilege instance" duration="2"/>
+    <testCase name="UserObjectPrivilege init should initialize UserObjectPrivilege with valid ObjectPrivilegeId" duration="5"/>
+    <testCase name="UserObjectPrivilege init should throw ClassError when ObjectPrivilegeId is not found" duration="4"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\group-privilege\group-privilege.spec.ts">
+    <testCase name="GroupPrivilege should initialize with GroupPrivilegeAttr" duration="6"/>
+    <testCase name="GroupPrivilege should throw ClassError when GroupPrivilegeAttr is not found" duration="4"/>
+    <testCase name="GroupPrivilege should initialize with default values" duration="1"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\user-system-access\user-system-access.spec.ts">
+    <testCase name="UserSystemAccess constructor should create a new UserSystemAccess instance" duration="2"/>
+    <testCase name="UserSystemAccess init should initialize UserSystemAccess with valid UserSystemAccessId" duration="2"/>
+    <testCase name="UserSystemAccess init should throw ClassError when UserSystemAccessId is not found" duration="1"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\user-privilege\user-privilege.spec.ts">
+    <testCase name="UserPrivilege constructor should create a new UserPrivilege instance" duration="2"/>
+    <testCase name="UserPrivilege init should initialize UserPrivilege with valid UserPrivilegeId" duration="2"/>
+    <testCase name="UserPrivilege init should throw ClassError when UserPrivilegeId is not found" duration="4"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\session\session.service.spec.ts">
+    <testCase name="session.service should return session service when instansiated" duration="2"/>
+    <testCase name="session.service should able to write session data" duration="3"/>
+    <testCase name="session.service should able to refresh session data" duration="3"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\system-privilege\system-privilage.spec.ts">
+    <testCase name="SystemPrivilege should be true" duration="2"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\password-hash\password-hash.service.spec.ts">
+    <testCase name="password-hash.service should return hash password" duration="2"/>
+    <testCase name="password-hash.service should return true when verify password" duration="1"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\redis-client\redis.service.spec.ts">
+    <testCase name="redis.service should return redis service when instansiated" duration="1"/>
+    <testCase name="redis.service should able to write and read redis" duration="2"/>
+  </file>
+  <file path="C:\Work\sso\__tests__\unit\components\login-user\l.spec.ts">
+    <testCase name="SystemPrivilege should be true" duration="1"/>
+  </file>
 </testExecutions>

package/create-sso-user.sql

@@ -1,40 +1,40 @@
-
--- example to create sso-user
-CREATE USER 'sso_user'@'environment' IDENTIFIED BY 'password';
-
--- example to grant neccesary access to run migration
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_authorization_codes TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_bearer_tokens TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_building_types  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_buildings  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_cities TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_companies  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_countries TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_departments  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_grouproleprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemaccess  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_oauth_tokens  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_roles  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_sequelize_meta  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_staff_types  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_staffs  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_states  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_system_accesses  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemroleprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systems  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_updated_history  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_user_roles  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usergroup  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_users  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usersystemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usersystemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_UserUserGroup  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production._prisma_migrations  TO 'sso_user'@'localhost' WITH GRANT OPTION;
-
-
--- Grant user to create, alter, drop, references on the database (required for creating shadow tables)
+
+-- example to create sso-user
+CREATE USER 'sso_user'@'environment' IDENTIFIED BY 'password';
+
+-- example to grant neccesary access to run migration
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_authorization_codes TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_bearer_tokens TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_building_types  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_buildings  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_cities TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_companies  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_countries TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_departments  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_grouproleprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemaccess  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_groupsystemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_oauth_tokens  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_roles  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_sequelize_meta  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_staff_types  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_staffs  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_states  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_system_accesses  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systemroleprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_systems  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_updated_history  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_user_roles  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usergroup  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_users  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usersystemprivilege  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_usersystemrole  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production.sso_UserUserGroup  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+GRANT CREATE, ALTER, DROP, INSERT, UPDATE, DELETE, SELECT, REFERENCES on production._prisma_migrations  TO 'sso_user'@'localhost' WITH GRANT OPTION;
+
+
+-- Grant user to create, alter, drop, references on the database (required for creating shadow tables)
 GRANT CREATE, ALTER, DROP, REFERENCES ON shadow_database.* TO 'sso_user'@'localhost' WITH GRANT OPTION;

package/dist/__tests__/unit/components/group-privilege/group-privilege.test.d.ts

@@ -0,0 +1 @@
+export {};

package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js

@@ -0,0 +1,71 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const group_privilege_1 = require("../../../../src/components/group-privilege/group-privilege");
+const group_privilege_repository_1 = require("../../../../src/components/group-privilege/group-privilege.repository");
+const general_1 = require("@tomei/general");
+describe('GroupPrivilege', () => {
+    afterEach(() => {
+        jest.restoreAllMocks();
+    });
+    it('should initialize with GroupPrivilegeAttr', () => __awaiter(void 0, void 0, void 0, function* () {
+        const mockGroupPrivilegeAttr = {
+            GroupPrivilegeId: 1,
+            GroupCode: 'group1',
+            PrivilegeCode: 'privilege1',
+            Status: 'active',
+            CreatedAt: new Date(),
+            UpdatedAt: new Date(),
+            CreatedById: 1,
+            UpdatedById: 1,
+        };
+        const findOneMock = jest
+            .spyOn(group_privilege_repository_1.GroupPrivilegeRepository.prototype, 'findOne')
+            .mockResolvedValueOnce({ get: jest.fn().mockReturnValue(mockGroupPrivilegeAttr) });
+        const groupPrivilege = yield group_privilege_1.GroupPrivilege.init(null, 1);
+        expect(findOneMock).toBeCalledWith({
+            where: { GroupPrivilegeId: 1 },
+            transaction: null,
+        });
+        expect(groupPrivilege).toBeInstanceOf(group_privilege_1.GroupPrivilege);
+        expect(groupPrivilege.GroupPrivilegeId).toEqual(mockGroupPrivilegeAttr.GroupPrivilegeId);
+        expect(groupPrivilege.GroupCode).toEqual(mockGroupPrivilegeAttr.GroupCode);
+        expect(groupPrivilege.PrivilegeCode).toEqual(mockGroupPrivilegeAttr.PrivilegeCode);
+        expect(groupPrivilege.Status).toEqual(mockGroupPrivilegeAttr.Status);
+        expect(groupPrivilege.CreatedAt).toEqual(mockGroupPrivilegeAttr.CreatedAt);
+        expect(groupPrivilege.UpdatedAt).toEqual(mockGroupPrivilegeAttr.UpdatedAt);
+        expect(groupPrivilege.CreatedById).toEqual(mockGroupPrivilegeAttr.CreatedById);
+        expect(groupPrivilege.UpdatedById).toEqual(mockGroupPrivilegeAttr.UpdatedById);
+    }));
+    it('should throw ClassError when GroupPrivilegeAttr is not found', () => __awaiter(void 0, void 0, void 0, function* () {
+        const findOneMock = jest
+            .spyOn(group_privilege_repository_1.GroupPrivilegeRepository.prototype, 'findOne')
+            .mockResolvedValueOnce(null);
+        yield expect(group_privilege_1.GroupPrivilege.init(null, 1)).rejects.toThrow(general_1.ClassError);
+        expect(findOneMock).toBeCalledWith({
+            where: { GroupPrivilegeId: 1 },
+            transaction: null,
+        });
+    }));
+    it('should initialize with default values', () => __awaiter(void 0, void 0, void 0, function* () {
+        const groupPrivilege = yield group_privilege_1.GroupPrivilege.init();
+        expect(groupPrivilege).toBeInstanceOf(group_privilege_1.GroupPrivilege);
+        expect(groupPrivilege.GroupPrivilegeId).toBeUndefined();
+        expect(groupPrivilege.GroupCode).toBeUndefined();
+        expect(groupPrivilege.PrivilegeCode).toBeUndefined();
+        expect(groupPrivilege.Status).toBeUndefined();
+        expect(groupPrivilege.CreatedAt).toBeUndefined();
+        expect(groupPrivilege.UpdatedAt).toBeUndefined();
+        expect(groupPrivilege.CreatedById).toBeUndefined();
+        expect(groupPrivilege.UpdatedById).toBeUndefined();
+    }));
+});
+//# sourceMappingURL=group-privilege.test.js.map

package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"group-privilege.test.js","sourceRoot":"","sources":["../../../../../__tests__/unit/components/group-privilege/group-privilege.test.ts"],"names":[],"mappings":";;;;;;;;;;;AAAA,gGAA4F;AAC5F,sHAAiH;AACjH,4CAA4C;AAE5C,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;IAC9B,SAAS,CAAC,GAAG,EAAE;QACb,IAAI,CAAC,eAAe,EAAE,CAAC;IACzB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,2CAA2C,EAAE,GAAS,EAAE;QACzD,MAAM,sBAAsB,GAAG;YAC7B,gBAAgB,EAAE,CAAC;YACnB,SAAS,EAAE,QAAQ;YACnB,aAAa,EAAE,YAAY;YAC3B,MAAM,EAAE,QAAQ;YAChB,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,WAAW,EAAE,CAAC;YACd,WAAW,EAAE,CAAC;SACf,CAAC;QAEF,MAAM,WAAW,GAAG,IAAI;aACrB,KAAK,CAAC,qDAAwB,CAAC,SAAS,EAAE,SAAS,CAAC;aACpD,qBAAqB,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,EAAE,CAAC,eAAe,CAAC,sBAAsB,CAAC,EAAS,CAAC,CAAC;QAE5F,MAAM,cAAc,GAAG,MAAM,gCAAc,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QAE1D,MAAM,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC;YACjC,KAAK,EAAE,EAAE,gBAAgB,EAAE,CAAC,EAAE;YAC9B,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;QACH,MAAM,CAAC,cAAc,CAAC,CAAC,cAAc,CAAC,gCAAc,CAAC,CAAC;QACtD,MAAM,CAAC,cAAc,CAAC,gBAAgB,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,gBAAgB,CAAC,CAAC;QACzF,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC;QAC3E,MAAM,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,aAAa,CAAC,CAAC;QACnF,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,MAAM,CAAC,CAAC;QACrE,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC;QAC3E,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,SAAS,CAAC,CAAC;QAC3E,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC;QAC/E,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,OAAO,CAAC,sBAAsB,CAAC,WAAW,CAAC,CAAC;IACjF,CAAC,CAAA,CAAC,CAAC;IAEH,EAAE,CAAC,8DAA8D,EAAE,GAAS,EAAE;QAC5E,MAAM,WAAW,GAAG,IAAI;aACrB,KAAK,CAAC,qDAAwB,CAAC,SAAS,EAAE,SAAS,CAAC;aACpD,qBAAqB,CAAC,IAAI,CAAC,CAAC;QAE/B,MAAM,MAAM,CAAC,gCAAc,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,oBAAU,CAAC,CAAC;QAEvE,MAAM,CAAC,WAAW,CAAC,CAAC,cAAc,CAAC;YACjC,KAAK,EAAE,EAAE,gBAAgB,EAAE,CAAC,EAAE;YAC9B,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;IACL,CAAC,CAAA,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,GAAS,EAAE;QACrD,MAAM,cAAc,GAAG,MAAM,gCAAc,CAAC,IAAI,EAAE,CAAC;QAEnD,MAAM,CAAC,cAAc,CAAC,CAAC,cAAc,CAAC,gCAAc,CAAC,CAAC;QACtD,MAAM,CAAC,cAAc,CAAC,gBAAgB,CAAC,CAAC,aAAa,EAAE,CAAC;QACxD,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;QACjD,MAAM,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC,aAAa,EAAE,CAAC;QACrD,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,aAAa,EAAE,CAAC;QAC9C,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;QACjD,MAAM,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC,aAAa,EAAE,CAAC;QACjD,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,aAAa,EAAE,CAAC;QACnD,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,CAAC,aAAa,EAAE,CAAC;IACrD,CAAC,CAAA,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/unit/components/login-user/login-user.spec.js

@@ -0,0 +1,6 @@
+describe('LoginUser', () => {
+    it('should be true', () => {
+        expect(true).toBe(true);
+    });
+});
+//# sourceMappingURL=login-user.spec.js.map

package/dist/__tests__/unit/components/login-user/login-user.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"login-user.spec.js","sourceRoot":"","sources":["../../../../../__tests__/unit/components/login-user/login-user.spec.ts"],"names":[],"mappings":"AAuuBA,QAAQ,CAAC,WAAW,EAAE,GAAG,EAAE;IACvB,EAAE,CAAC,gBAAgB,EAAE,GAAG,EAAE;QACxB,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/src/components/login-user/user.js

@@ -1223,7 +1223,7 @@ class User extends general_1.UserBase {
                 transaction: dbTransaction,
             });
             let systemAccesses = dataSystemAccesses;
-            if (group.InheritParentPrivilegeYN === 'Y' && group.ParentGroupCode) {
+            if (group.InheritParentSystemAccessYN === 'Y' && group.ParentGroupCode) {
                 const GroupCode = group.ParentGroupCode;
                 const parentGroup = yield User._GroupRepo.findByPk(GroupCode, dbTransaction);
                 const dataParentSystemAccesses = yield User.getInheritedSystemAccess(dbTransaction, parentGroup);