@verisoft/security-core 18.7.0 → 18.8.0

package/esm2022/lib/state/index.mjs

@@ -0,0 +1,5 @@
+export * from './actions';
+export * from './state';
+export * from './reducers';
+export * from './selectors';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoiaW5kZXguanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi8uLi8uLi9zcmMvbGlicy9zZWN1cml0eS9jb3JlL3NyYy9saWIvc3RhdGUvaW5kZXgudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsY0FBYyxXQUFXLENBQUM7QUFDMUIsY0FBYyxTQUFTLENBQUM7QUFDeEIsY0FBYyxZQUFZLENBQUM7QUFDM0IsY0FBYyxhQUFhLENBQUMiLCJzb3VyY2VzQ29udGVudCI6WyJleHBvcnQgKiBmcm9tICcuL2FjdGlvbnMnO1xyXG5leHBvcnQgKiBmcm9tICcuL3N0YXRlJztcclxuZXhwb3J0ICogZnJvbSAnLi9yZWR1Y2Vycyc7XHJcbmV4cG9ydCAqIGZyb20gJy4vc2VsZWN0b3JzJztcclxuIl19

package/esm2022/lib/state/reducers.mjs

@@ -0,0 +1,8 @@
+import { createReducer, on } from '@ngrx/store';
+import { setUser } from './actions';
+import { initialState } from './state';
+export const authReducer = createReducer(initialState, on(setUser, (state, action) => ({
+    ...state,
+    user: action.user
+})));
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoicmVkdWNlcnMuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi8uLi8uLi9zcmMvbGlicy9zZWN1cml0eS9jb3JlL3NyYy9saWIvc3RhdGUvcmVkdWNlcnMudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUEsT0FBTyxFQUFFLGFBQWEsRUFBRSxFQUFFLEVBQUUsTUFBTSxhQUFhLENBQUM7QUFDaEQsT0FBTyxFQUFFLE9BQU8sRUFBRSxNQUFNLFdBQVcsQ0FBQztBQUNwQyxPQUFPLEVBQUUsWUFBWSxFQUFFLE1BQU0sU0FBUyxDQUFDO0FBRXZDLE1BQU0sQ0FBQyxNQUFNLFdBQVcsR0FBRyxhQUFhLENBQ3RDLFlBQVksRUFDWixFQUFFLENBQUMsT0FBTyxFQUFFLENBQUMsS0FBSyxFQUFFLE1BQU0sRUFBRSxFQUFFLENBQUMsQ0FBQztJQUM5QixHQUFHLEtBQUs7SUFDUixJQUFJLEVBQUUsTUFBTSxDQUFDLElBQUk7Q0FDbEIsQ0FBQyxDQUFDLENBQ0osQ0FBQyIsInNvdXJjZXNDb250ZW50IjpbImltcG9ydCB7IGNyZWF0ZVJlZHVjZXIsIG9uIH0gZnJvbSAnQG5ncngvc3RvcmUnO1xyXG5pbXBvcnQgeyBzZXRVc2VyIH0gZnJvbSAnLi9hY3Rpb25zJztcclxuaW1wb3J0IHsgaW5pdGlhbFN0YXRlIH0gZnJvbSAnLi9zdGF0ZSc7XHJcblxyXG5leHBvcnQgY29uc3QgYXV0aFJlZHVjZXIgPSBjcmVhdGVSZWR1Y2VyKFxyXG4gIGluaXRpYWxTdGF0ZSxcclxuICBvbihzZXRVc2VyLCAoc3RhdGUsIGFjdGlvbikgPT4gKHtcclxuICAgIC4uLnN0YXRlLFxyXG4gICAgdXNlcjogYWN0aW9uLnVzZXJcclxuICB9KSlcclxuKTsiXX0=

package/esm2022/lib/state/selectors.mjs

@@ -0,0 +1,5 @@
+import { createSelector } from '@ngrx/store';
+import { SecurityFeature } from './feature';
+export const selectIsAuthenticated = createSelector(SecurityFeature.selectUser, (user) => !!user);
+export const selectUser = SecurityFeature.selectUser;
+//# sourceMappingURL=data:application/json;base64,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

package/esm2022/lib/state/state.mjs

@@ -0,0 +1,4 @@
+export const initialState = {
+    user: undefined,
+};
+//# sourceMappingURL=data:application/json;base64,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

package/esm2022/verisoft-security-core.mjs

@@ -0,0 +1,5 @@
+/**
+ * Generated bundle index. Do not edit.
+ */
+export * from './index';
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoidmVyaXNvZnQtc2VjdXJpdHktY29yZS5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbIi4uLy4uLy4uLy4uLy4uL3NyYy9saWJzL3NlY3VyaXR5L2NvcmUvc3JjL3Zlcmlzb2Z0LXNlY3VyaXR5LWNvcmUudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6IkFBQUE7O0dBRUc7QUFFSCxjQUFjLFNBQVMsQ0FBQyIsInNvdXJjZXNDb250ZW50IjpbIi8qKlxuICogR2VuZXJhdGVkIGJ1bmRsZSBpbmRleC4gRG8gbm90IGVkaXQuXG4gKi9cblxuZXhwb3J0ICogZnJvbSAnLi9pbmRleCc7XG4iXX0=

package/fesm2022/verisoft-security-core.mjs

@@ -0,0 +1,382 @@
+import * as i0 from '@angular/core';
+import { Injectable, inject, NgModule, InjectionToken, APP_INITIALIZER, Directive, Input } from '@angular/core';
+import { map, switchMap, of, from, firstValueFrom, distinctUntilChanged } from 'rxjs';
+import * as i1 from '@ngrx/store';
+import { createAction, props, createReducer, on, createFeature, createSelector, StoreModule } from '@ngrx/store';
+import { Router } from '@angular/router';
+
+function hasRequiredPermission(user, permission) {
+    return hasItems(user?.permissions, permission);
+}
+function hasRequiredRole(user, role) {
+    return hasItems(user?.roles, role);
+}
+function hasItems(userItems, neededItems) {
+    if (!neededItems || !neededItems.length) {
+        return true;
+    }
+    if (!userItems || !userItems.length) {
+        return false;
+    }
+    const userItemsSet = new Set(userItems);
+    if (Array.isArray(neededItems)) {
+        return neededItems.some((item) => hasItems(userItems, item));
+    }
+    if (neededItems.includes(',')) {
+        const splitItems = neededItems.split(',').map((i) => i.trim());
+        return splitItems.every((i) => userItemsSet.has(i));
+    }
+    return userItemsSet.has(neededItems);
+}
+function convertJWTToUser(base64Token) {
+    if (!base64Token) {
+        return undefined;
+    }
+    try {
+        const parts = base64Token.split('.');
+        if (parts.length < 2) {
+            return undefined;
+        }
+        const payload = decodeJwtPayload(parts[1]);
+        const userName = payload['unique_name'] ?? payload['nameid'];
+        if (!userName) {
+            return undefined;
+        }
+        const user = {
+            userName,
+            userId: payload['nameid'],
+            email: payload['email'],
+            displayName: payload['name'],
+            roles: convertToArray(payload, 'role'),
+            permissions: convertToArray(payload, 'permission'),
+        };
+        return user;
+    }
+    catch (error) {
+        return undefined;
+    }
+}
+function decodeJwtPayload(jwt) {
+    const base64 = jwt.replace(/-/g, '+').replace(/_/g, '/');
+    const jsonPayload = decodeURIComponent(atob(base64)
+        .split('')
+        .map(c => '%' + c.charCodeAt(0).toString(16).padStart(2, '0'))
+        .join(''));
+    return JSON.parse(jsonPayload);
+}
+function convertToArray(item, propertyName) {
+    const rawValue = item[propertyName];
+    if (!rawValue) {
+        return undefined;
+    }
+    if (Array.isArray(rawValue)) {
+        return rawValue;
+    }
+    return [rawValue];
+}
+
+const setUser = createAction('[Auth] Set User', props());
+
+const initialState = {
+    user: undefined,
+};
+
+const authReducer = createReducer(initialState, on(setUser, (state, action) => ({
+    ...state,
+    user: action.user
+})));
+
+const SECURITY_FEATURE_NAME = 'SECURITY';
+const SecurityFeature = createFeature({
+    name: SECURITY_FEATURE_NAME,
+    reducer: authReducer
+});
+
+const selectIsAuthenticated = createSelector(SecurityFeature.selectUser, (user) => !!user);
+const selectUser = SecurityFeature.selectUser;
+
+class AuthContextService {
+    store;
+    user$;
+    isAuthenticated$;
+    constructor(store) {
+        this.store = store;
+        this.user$ = this.store.select(selectUser);
+        this.isAuthenticated$ = this.store.select(selectIsAuthenticated);
+    }
+    setUser(user) {
+        this.store.dispatch(setUser({ user }));
+    }
+    hasRequiredPermission(requiredPermissions) {
+        return this.user$.pipe(map((user) => hasRequiredPermission(user, requiredPermissions)));
+    }
+    hasRequiredRole(requiredPermissions) {
+        return this.user$.pipe(map((user) => hasRequiredRole(user, requiredPermissions)));
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthContextService, deps: [{ token: i1.Store }], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthContextService, providedIn: 'root' });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthContextService, decorators: [{
+            type: Injectable,
+            args: [{
+                    providedIn: 'root',
+                }]
+        }], ctorParameters: () => [{ type: i1.Store }] });
+
+class AuthGuard {
+    config = inject(SECURITY_CONFIG);
+    router = inject(Router);
+    authContext = inject(AuthContextService);
+    canActivate(route) {
+        return this.checkPermissionsAndRolesAndNavigate(route, this.config.notAuthorizedPage);
+    }
+    canActivateChild(childRoute) {
+        return this.checkPermissionsAndRolesAndNavigate(childRoute, this.config.notAuthorizedPage);
+    }
+    checkPermissionsAndRolesAndNavigate(route, notAuthorizedUrl) {
+        const requiredPermissions = route.data['permissions'];
+        const requiredRoles = route.data['roles'];
+        return this.authContext.user$.pipe(map((user) => user &&
+            (!requiredPermissions ||
+                hasRequiredPermission(user, requiredPermissions)) &&
+            (!requiredRoles || hasRequiredPermission(user, requiredRoles))), switchMap((hasPermission) => {
+            if (!hasPermission && notAuthorizedUrl) {
+                return of(this.router.parseUrl(notAuthorizedUrl));
+            }
+            return of(!!hasPermission);
+        }));
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthGuard, deps: [], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthGuard, providedIn: 'root' });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: AuthGuard, decorators: [{
+            type: Injectable,
+            args: [{
+                    providedIn: 'root',
+                }]
+        }] });
+
+function provideSecurity(config = undefined) {
+    const securityConfig = {
+        tokenStorageKey: 'APP_TOKEN',
+        notAuthorizedPage: '/not-authorized',
+        ...(config ?? {}),
+    };
+    return [
+        AuthGuard,
+        SECURITY_INITIALIZER_PROVIDER,
+        { provide: SECURITY_CONTEXT_TOKEN_PROVIDER, useClass: LocalStorageTokenProvider },
+        { provide: SECURITY_CONFIG, useValue: securityConfig },
+    ];
+}
+class SecurityModule {
+    static forRoot(config) {
+        return {
+            ngModule: SecurityModule,
+            providers: [...provideSecurity(config)],
+        };
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SecurityModule, deps: [], target: i0.ɵɵFactoryTarget.NgModule });
+    static ɵmod = i0.ɵɵngDeclareNgModule({ minVersion: "14.0.0", version: "18.2.8", ngImport: i0, type: SecurityModule, imports: [i1.StoreFeatureModule] });
+    static ɵinj = i0.ɵɵngDeclareInjector({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SecurityModule, imports: [StoreModule.forFeature(SecurityFeature)] });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SecurityModule, decorators: [{
+            type: NgModule,
+            args: [{
+                    imports: [StoreModule.forFeature(SecurityFeature)],
+                }]
+        }] });
+const SECURITY_CONTEXT_TOKEN_PROVIDER = new InjectionToken('SECURITY_CONTEXT_TOKEN_PROVIDER');
+const SECURITY_CONFIG = new InjectionToken('SECURITY_CONFIG');
+const SECURITY_INITIALIZER_PROVIDER = {
+    provide: APP_INITIALIZER,
+    useFactory: securityInitializerFactory,
+    deps: [SECURITY_CONTEXT_TOKEN_PROVIDER, AuthContextService, SECURITY_CONFIG, Router],
+    multi: true,
+};
+
+class LocalStorageTokenProvider {
+    config = inject(SECURITY_CONFIG);
+    getToken() {
+        const token = localStorage.getItem(this.config.tokenStorageKey);
+        return of(token ?? undefined);
+    }
+    setToken(token) {
+        localStorage.setItem(this.config.tokenStorageKey, token);
+    }
+    removeToken() {
+        localStorage.clear();
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LocalStorageTokenProvider, deps: [], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LocalStorageTokenProvider });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LocalStorageTokenProvider, decorators: [{
+            type: Injectable
+        }] });
+
+function securityInitializerFactory(tokenProvider, authService, config, router) {
+    const initializationFn = tokenProvider.getToken().pipe(switchMap((token) => {
+        const user = convertJWTToUser(token);
+        if (config.loginPage && !user) {
+            return from(router.navigate([config.loginPage]));
+        }
+        authService.setUser(user);
+        return of({});
+    }));
+    return () => firstValueFrom(initializationFn);
+}
+
+class SessionStorageTokenProvider {
+    config = inject(SECURITY_CONFIG);
+    getToken() {
+        const token = sessionStorage.getItem(this.config.tokenStorageKey);
+        return of(token ?? undefined);
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SessionStorageTokenProvider, deps: [], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SessionStorageTokenProvider });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: SessionStorageTokenProvider, decorators: [{
+            type: Injectable
+        }] });
+
+class LoginService {
+    config = inject(SECURITY_CONFIG);
+    tokenProvider = inject(SECURITY_CONTEXT_TOKEN_PROVIDER);
+    authService = inject(AuthContextService);
+    router = inject(Router);
+    login(token) {
+        if (token) {
+            this.tokenProvider.setToken(token);
+            this.authService.setUser(convertJWTToUser(token));
+        }
+        else {
+            this.router.navigate([this.config.loginPage]);
+        }
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LoginService, deps: [], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LoginService });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LoginService, decorators: [{
+            type: Injectable
+        }] });
+
+class LogoutService {
+    tokenProvider = inject(SECURITY_CONTEXT_TOKEN_PROVIDER);
+    authService = inject(AuthContextService);
+    logout() {
+        this.tokenProvider.removeToken();
+        this.authService.setUser(undefined);
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LogoutService, deps: [], target: i0.ɵɵFactoryTarget.Injectable });
+    static ɵprov = i0.ɵɵngDeclareInjectable({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LogoutService });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: LogoutService, decorators: [{
+            type: Injectable
+        }] });
+
+class HasPermissionDirective {
+    templateRef;
+    viewContainer;
+    authContext;
+    requiredPermissions = '';
+    sub;
+    constructor(templateRef, viewContainer, authContext) {
+        this.templateRef = templateRef;
+        this.viewContainer = viewContainer;
+        this.authContext = authContext;
+    }
+    set hasPermission(value) {
+        this.requiredPermissions = value;
+        this.updateView();
+    }
+    ngOnDestroy() {
+        this.unregister();
+    }
+    unregister() {
+        this.sub?.unsubscribe();
+    }
+    updateView() {
+        this.unregister();
+        if (this.requiredPermissions || this.requiredPermissions.length) {
+            this.sub = this.authContext
+                .hasRequiredPermission(this.requiredPermissions)
+                .pipe(distinctUntilChanged())
+                .subscribe((hasPerm) => {
+                if (hasPerm) {
+                    this.viewContainer.createEmbeddedView(this.templateRef);
+                }
+                else {
+                    this.viewContainer.clear();
+                }
+            });
+        }
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: HasPermissionDirective, deps: [{ token: i0.TemplateRef }, { token: i0.ViewContainerRef }, { token: AuthContextService }], target: i0.ɵɵFactoryTarget.Directive });
+    static ɵdir = i0.ɵɵngDeclareDirective({ minVersion: "14.0.0", version: "18.2.8", type: HasPermissionDirective, isStandalone: true, selector: "[hasPermission]", inputs: { hasPermission: "hasPermission" }, ngImport: i0 });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: HasPermissionDirective, decorators: [{
+            type: Directive,
+            args: [{
+                    standalone: true,
+                    selector: '[hasPermission]',
+                }]
+        }], ctorParameters: () => [{ type: i0.TemplateRef }, { type: i0.ViewContainerRef }, { type: AuthContextService }], propDecorators: { hasPermission: [{
+                type: Input
+            }] } });
+
+class HasRoleDirective {
+    templateRef;
+    viewContainer;
+    authContext;
+    requiredRoles;
+    sub;
+    constructor(templateRef, viewContainer, authContext) {
+        this.templateRef = templateRef;
+        this.viewContainer = viewContainer;
+        this.authContext = authContext;
+    }
+    set hasRole(value) {
+        this.requiredRoles = value;
+        this.updateView();
+    }
+    ngOnDestroy() {
+        this.unregister();
+    }
+    unregister() {
+        this.sub?.unsubscribe();
+    }
+    updateView() {
+        this.unregister();
+        if (this.requiredRoles || this.requiredRoles?.length) {
+            this.sub = this.authContext
+                .hasRequiredRole(this.requiredRoles)
+                .pipe(distinctUntilChanged())
+                .subscribe((hasRole) => {
+                if (hasRole) {
+                    this.viewContainer.createEmbeddedView(this.templateRef);
+                }
+                else {
+                    this.viewContainer.clear();
+                }
+            });
+        }
+    }
+    static ɵfac = i0.ɵɵngDeclareFactory({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: HasRoleDirective, deps: [{ token: i0.TemplateRef }, { token: i0.ViewContainerRef }, { token: AuthContextService }], target: i0.ɵɵFactoryTarget.Directive });
+    static ɵdir = i0.ɵɵngDeclareDirective({ minVersion: "14.0.0", version: "18.2.8", type: HasRoleDirective, isStandalone: true, selector: "[hasRole]", inputs: { hasRole: "hasRole" }, ngImport: i0 });
+}
+i0.ɵɵngDeclareClassMetadata({ minVersion: "12.0.0", version: "18.2.8", ngImport: i0, type: HasRoleDirective, decorators: [{
+            type: Directive,
+            args: [{
+                    standalone: true,
+                    selector: '[hasRole]',
+                }]
+        }], ctorParameters: () => [{ type: i0.TemplateRef }, { type: i0.ViewContainerRef }, { type: AuthContextService }], propDecorators: { hasRole: [{
+                type: Input
+            }] } });
+
+/**
+ * Generated bundle index. Do not edit.
+ */
+
+export { AuthContextService, AuthGuard, HasPermissionDirective, HasRoleDirective, LocalStorageTokenProvider, LoginService, LogoutService, SECURITY_CONFIG, SECURITY_CONTEXT_TOKEN_PROVIDER, SECURITY_INITIALIZER_PROVIDER, SecurityModule, SessionStorageTokenProvider, authReducer, convertJWTToUser, decodeJwtPayload, hasRequiredPermission, hasRequiredRole, initialState, provideSecurity, securityInitializerFactory, selectIsAuthenticated, selectUser, setUser };
+//# sourceMappingURL=verisoft-security-core.mjs.map

package/fesm2022/verisoft-security-core.mjs.map

@@ -0,0 +1 @@
+{"version":3,"file":"verisoft-security-core.mjs","sources":["../../../../../src/libs/security/core/src/lib/models/functions.ts","../../../../../src/libs/security/core/src/lib/state/actions.ts","../../../../../src/libs/security/core/src/lib/state/state.ts","../../../../../src/libs/security/core/src/lib/state/reducers.ts","../../../../../src/libs/security/core/src/lib/state/feature.ts","../../../../../src/libs/security/core/src/lib/state/selectors.ts","../../../../../src/libs/security/core/src/lib/services/auth-context.service.ts","../../../../../src/libs/security/core/src/lib/guards/auth.guard.ts","../../../../../src/libs/security/core/src/lib/provider.ts","../../../../../src/libs/security/core/src/lib/services/local-storage-token-provider.ts","../../../../../src/libs/security/core/src/lib/services/security-initializer.ts","../../../../../src/libs/security/core/src/lib/services/session-token-provider.ts","../../../../../src/libs/security/core/src/lib/services/login.service.ts","../../../../../src/libs/security/core/src/lib/services/logout.service.ts","../../../../../src/libs/security/core/src/lib/directives/has-permission.directive.ts","../../../../../src/libs/security/core/src/lib/directives/has-role.directive.ts","../../../../../src/libs/security/core/src/verisoft-security-core.ts"],"sourcesContent":["import { AuthenticatedUser } from './authenticated-user.model';\r\n\r\nexport function hasRequiredPermission(\r\n  user: AuthenticatedUser | undefined,\r\n  permission: string | string[]\r\n): boolean {\r\n  return hasItems(user?.permissions, permission);\r\n}\r\n\r\nexport function hasRequiredRole(\r\n  user: AuthenticatedUser | undefined,\r\n  role: string | string[]\r\n): boolean {\r\n  return hasItems(user?.roles, role);\r\n}\r\n\r\nfunction hasItems(\r\n  userItems: string[] | undefined,\r\n  neededItems: string | string[]\r\n): boolean {\r\n  if (!neededItems || !neededItems.length) {\r\n    return true;\r\n  }\r\n\r\n  if (!userItems || !userItems.length) {\r\n    return false;\r\n  }\r\n\r\n  const userItemsSet = new Set(userItems);\r\n  if (Array.isArray(neededItems)) {\r\n    return neededItems.some((item) => hasItems(userItems, item));\r\n  }\r\n\r\n  if (neededItems.includes(',')) {\r\n    const splitItems = neededItems.split(',').map((i) => i.trim());\r\n    return splitItems.every((i) => userItemsSet.has(i));\r\n  }\r\n\r\n  return userItemsSet.has(neededItems);\r\n}\r\n\r\nexport function convertJWTToUser(\r\n  base64Token?: string\r\n): AuthenticatedUser | undefined {\r\n  if (!base64Token) {\r\n    return undefined;\r\n  }\r\n\r\n  try {\r\n    const parts = base64Token.split('.');\r\n    if (parts.length < 2) {\r\n      return undefined;\r\n    }\r\n    const payload = decodeJwtPayload(parts[1]);\r\n\r\n    const userName = payload['unique_name'] ?? payload['nameid'];\r\n    if (!userName) {\r\n      return undefined;\r\n    }\r\n\r\n    const user: AuthenticatedUser = {\r\n      userName,\r\n      userId: payload['nameid'],\r\n      email: payload['email'],\r\n      displayName: payload['name'],\r\n      roles: convertToArray(payload, 'role'),\r\n      permissions: convertToArray(payload, 'permission'),\r\n    };\r\n\r\n    return user;\r\n  } catch (error) {\r\n    return undefined;\r\n  }\r\n}\r\n\r\nexport function decodeJwtPayload(jwt: string): any {\r\n  const base64 = jwt.replace(/-/g, '+').replace(/_/g, '/');\r\n\r\n  const jsonPayload = decodeURIComponent(\r\n    atob(base64)\r\n      .split('')\r\n      .map(c => '%' + c.charCodeAt(0).toString(16).padStart(2, '0'))\r\n      .join('')\r\n  );\r\n\r\n  return JSON.parse(jsonPayload);\r\n}\r\n\r\nfunction convertToArray(\r\n  item: { [key: string]: string | string[] },\r\n  propertyName: string\r\n): string[] | undefined {\r\n  const rawValue = item[propertyName];\r\n  if (!rawValue) {\r\n    return undefined;\r\n  }\r\n\r\n  if (Array.isArray(rawValue)) {\r\n    return rawValue;\r\n  }\r\n\r\n  return [rawValue];\r\n}\r\n","import { createAction, props } from '@ngrx/store';\r\nimport { AuthenticatedUser } from '../models';\r\n\r\nexport const setUser = createAction(\r\n  '[Auth] Set User',\r\n  props<{ user: AuthenticatedUser | undefined }>()\r\n);\r\n","import { AuthenticatedUser } from '../models';\r\n\r\nexport interface AuthState {\r\n  user: AuthenticatedUser | undefined;\r\n}\r\n\r\nexport const initialState: AuthState = {\r\n  user: undefined,\r\n};\r\n","import { createReducer, on } from '@ngrx/store';\r\nimport { setUser } from './actions';\r\nimport { initialState } from './state';\r\n\r\nexport const authReducer = createReducer(\r\n  initialState,\r\n  on(setUser, (state, action) => ({\r\n    ...state,\r\n    user: action.user\r\n  }))\r\n);","import { createFeature } from \"@ngrx/store\"\r\nimport { authReducer } from \"./reducers\"\r\n\r\nexport const SECURITY_FEATURE_NAME = 'SECURITY';\r\n\r\nexport const SecurityFeature = createFeature({\r\n    name: SECURITY_FEATURE_NAME,\r\n    reducer: authReducer\r\n});\r\n\r\n","import { createSelector } from '@ngrx/store';\r\nimport { SecurityFeature } from './feature';\r\n\r\nexport const selectIsAuthenticated = createSelector(\r\n  SecurityFeature.selectUser,\r\n  (user) => !!user\r\n);\r\n\r\nexport const selectUser = SecurityFeature.selectUser;","import { Injectable } from '@angular/core';\r\nimport { Store } from '@ngrx/store';\r\nimport { map, Observable } from 'rxjs';\r\nimport { AuthenticatedUser } from '../models';\r\nimport { hasRequiredPermission, hasRequiredRole } from '../models/functions';\r\nimport { setUser } from '../state/actions';\r\nimport { selectIsAuthenticated, selectUser } from '../state/selectors';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class AuthContextService {\r\n  user$: Observable<AuthenticatedUser | undefined>;\r\n  isAuthenticated$: Observable<boolean>;\r\n\r\n  constructor(private store: Store) {\r\n    this.user$ = this.store.select(selectUser);\r\n    this.isAuthenticated$ = this.store.select(selectIsAuthenticated);\r\n  }\r\n\r\n  setUser(user: AuthenticatedUser | undefined): void {\r\n    this.store.dispatch(setUser({ user }));\r\n  }\r\n\r\n  hasRequiredPermission(\r\n    requiredPermissions: string | string[]\r\n  ): Observable<boolean> {\r\n    return this.user$.pipe(\r\n      map((user) => hasRequiredPermission(user, requiredPermissions))\r\n    );\r\n  }\r\n\r\n  hasRequiredRole(requiredPermissions: string | string[]): Observable<boolean> {\r\n    return this.user$.pipe(\r\n      map((user) => hasRequiredRole(user, requiredPermissions))\r\n    );\r\n  }\r\n}\r\n","import { inject, Injectable } from '@angular/core';\r\nimport {\r\n  ActivatedRouteSnapshot,\r\n  CanActivate,\r\n  CanActivateChild,\r\n  Router,\r\n  UrlTree,\r\n} from '@angular/router';\r\nimport { map, Observable, of, switchMap } from 'rxjs';\r\nimport { SecurityConfig } from '../models';\r\nimport { hasRequiredPermission } from '../models/functions';\r\nimport { SECURITY_CONFIG } from '../provider';\r\nimport { AuthContextService } from '../services';\r\n\r\n@Injectable({\r\n  providedIn: 'root',\r\n})\r\nexport class AuthGuard implements CanActivate, CanActivateChild {\r\n  private config = inject<SecurityConfig>(SECURITY_CONFIG);\r\n  private router = inject(Router);\r\n  private authContext = inject(AuthContextService);\r\n\r\n  canActivate(route: ActivatedRouteSnapshot): Observable<boolean | UrlTree> {\r\n    return this.checkPermissionsAndRolesAndNavigate(route, this.config.notAuthorizedPage);\r\n  }\r\n\r\n  canActivateChild(\r\n    childRoute: ActivatedRouteSnapshot\r\n  ): Observable<boolean | UrlTree> {\r\n    return this.checkPermissionsAndRolesAndNavigate(childRoute, this.config.notAuthorizedPage);\r\n  }\r\n\r\n  private checkPermissionsAndRolesAndNavigate(\r\n    route: ActivatedRouteSnapshot,\r\n    notAuthorizedUrl: string | undefined\r\n  ): Observable<boolean | UrlTree> {\r\n    const requiredPermissions = route.data['permissions'] as | string | string[] | undefined;\r\n    const requiredRoles = route.data['roles'] as string | string[] | undefined;\r\n\r\n    return this.authContext.user$.pipe(\r\n      map(\r\n        (user) => user &&\r\n          (!requiredPermissions ||\r\n            hasRequiredPermission(user, requiredPermissions)) &&\r\n          (!requiredRoles || hasRequiredPermission(user, requiredRoles))\r\n      ),\r\n      switchMap((hasPermission) => {\r\n        if (!hasPermission && notAuthorizedUrl) {\r\n          return of(this.router.parseUrl(notAuthorizedUrl));\r\n        }\r\n        return of(!!hasPermission);\r\n      })\r\n    );\r\n  }\r\n}\r\n","import {\r\n  APP_INITIALIZER,\r\n  InjectionToken,\r\n  ModuleWithProviders,\r\n  NgModule,\r\n  Provider,\r\n} from '@angular/core';\r\nimport { Router } from '@angular/router';\r\nimport { StoreModule } from '@ngrx/store';\r\nimport { AuthGuard } from './guards';\r\nimport { SecurityConfig } from './models';\r\nimport {\r\n  AuthContextService,\r\n  LocalStorageTokenProvider,\r\n  securityInitializerFactory,\r\n} from './services';\r\nimport { SecurityFeature } from './state/feature';\r\n\r\nexport function provideSecurity(\r\n  config: Partial<SecurityConfig> | undefined = undefined\r\n): Provider[] {\r\n  const securityConfig: SecurityConfig = {\r\n    tokenStorageKey: 'APP_TOKEN',\r\n    notAuthorizedPage: '/not-authorized',\r\n    ...(config ?? {}),\r\n  };\r\n  return [\r\n    AuthGuard,\r\n    SECURITY_INITIALIZER_PROVIDER,\r\n    { provide: SECURITY_CONTEXT_TOKEN_PROVIDER, useClass: LocalStorageTokenProvider },\r\n    { provide: SECURITY_CONFIG, useValue: securityConfig },\r\n  ];\r\n}\r\n\r\n@NgModule({\r\n  imports: [StoreModule.forFeature(SecurityFeature)],\r\n})\r\nexport class SecurityModule {\r\n  static forRoot(\r\n    config?: Partial<SecurityConfig>\r\n  ): ModuleWithProviders<SecurityModule> {\r\n    return {\r\n      ngModule: SecurityModule,\r\n      providers: [...provideSecurity(config)],\r\n    };\r\n  }\r\n}\r\n\r\nexport const SECURITY_CONTEXT_TOKEN_PROVIDER = new InjectionToken('SECURITY_CONTEXT_TOKEN_PROVIDER');\r\n\r\nexport const SECURITY_CONFIG = new InjectionToken('SECURITY_CONFIG');\r\n\r\nexport const SECURITY_INITIALIZER_PROVIDER: Provider = {\r\n  provide: APP_INITIALIZER,\r\n  useFactory: securityInitializerFactory,\r\n  deps: [SECURITY_CONTEXT_TOKEN_PROVIDER, AuthContextService, SECURITY_CONFIG, Router],\r\n  multi: true,\r\n};\r\n","import { inject, Injectable } from '@angular/core';\nimport { Observable, of } from 'rxjs';\nimport { SecurityConfig } from '../models';\nimport { SECURITY_CONFIG } from '../provider';\nimport { TokenProvider } from './token-provider';\n\n@Injectable()\nexport class LocalStorageTokenProvider implements TokenProvider {\n  private config = inject<SecurityConfig>(SECURITY_CONFIG);\n\n  getToken(): Observable<string | undefined> {\n    const token = localStorage.getItem(this.config.tokenStorageKey);\n    return of(token ?? undefined);\n  }\n\n  setToken(token: string): void {\n    localStorage.setItem(this.config.tokenStorageKey, token);\n  }\n\n  removeToken(): void {\n    localStorage.clear();\n  }\n}\n","import { Router } from '@angular/router';\r\nimport { firstValueFrom, from, of, switchMap } from 'rxjs';\r\nimport { convertJWTToUser, SecurityConfig } from '../models';\r\nimport { AuthContextService } from './auth-context.service';\r\nimport { TokenProvider } from './token-provider';\r\n\r\nexport function securityInitializerFactory(\r\n  tokenProvider: TokenProvider,\r\n  authService: AuthContextService,\r\n  config: SecurityConfig,\r\n  router: Router\r\n): () => Promise<unknown> {\r\n  const initializationFn = tokenProvider.getToken().pipe(\r\n    switchMap((token) => {\r\n      const user = convertJWTToUser(token);\r\n      if (config.loginPage && !user) {\r\n        return from(router.navigate([config.loginPage]));\r\n      }\r\n\r\n      authService.setUser(user);\r\n      return of({});\r\n    })\r\n  );\r\n\r\n  return () => firstValueFrom(initializationFn)\r\n}\r\n","import { inject, Injectable } from '@angular/core';\r\nimport { Observable, of } from 'rxjs';\r\nimport { SecurityConfig } from '../models';\r\nimport { SECURITY_CONFIG } from '../provider';\r\nimport { TokenProvider } from './token-provider';\r\n\r\n@Injectable()\r\nexport class SessionStorageTokenProvider implements TokenProvider {\r\n  private config = inject<SecurityConfig>(SECURITY_CONFIG);\r\n\r\n  getToken(): Observable<string | undefined> {\r\n    const token = sessionStorage.getItem(this.config.tokenStorageKey);\r\n    return of(token ?? undefined);\r\n  }\r\n}\r\n","import { inject, Injectable } from '@angular/core';\nimport { Router } from '@angular/router';\nimport { convertJWTToUser, SecurityConfig } from '../models';\nimport { SECURITY_CONFIG, SECURITY_CONTEXT_TOKEN_PROVIDER } from '../provider';\nimport { AuthContextService } from './auth-context.service';\nimport { LocalStorageTokenProvider } from './local-storage-token-provider';\n\n@Injectable()\nexport class LoginService {\n    private config = inject<SecurityConfig>(SECURITY_CONFIG);\n    private tokenProvider = inject<LocalStorageTokenProvider>(SECURITY_CONTEXT_TOKEN_PROVIDER);\n    private authService = inject(AuthContextService);\n    private router = inject(Router);\n\n    login(token?: string): void {\n        if (token) {\n            this.tokenProvider.setToken(token);\n            this.authService.setUser(convertJWTToUser(token));\n        } else {\n            this.router.navigate([this.config.loginPage]);\n        }\n    }\n}\n","import { inject, Injectable } from '@angular/core';\nimport { SECURITY_CONTEXT_TOKEN_PROVIDER } from '../provider';\nimport { AuthContextService } from './auth-context.service';\nimport { LocalStorageTokenProvider } from './local-storage-token-provider';\n\n@Injectable()\nexport class LogoutService {\n    private readonly tokenProvider = inject<LocalStorageTokenProvider>(SECURITY_CONTEXT_TOKEN_PROVIDER);\n    private readonly authService = inject(AuthContextService);\n\n    logout(): void {\n        this.tokenProvider.removeToken();\n        this.authService.setUser(undefined);\n    }\n}\n","import {\r\n  Directive,\r\n  Input,\r\n  TemplateRef,\r\n  ViewContainerRef,\r\n  OnDestroy,\r\n} from '@angular/core';\r\nimport { distinctUntilChanged, Subscription } from 'rxjs';\r\nimport { AuthContextService } from '../services';\r\n\r\n@Directive({\r\n  standalone: true,\r\n  selector: '[hasPermission]',\r\n})\r\nexport class HasPermissionDirective<T> implements OnDestroy {\r\n  private requiredPermissions: string | string[] = '';\r\n  private sub?: Subscription;\r\n\r\n  constructor(\r\n    private templateRef: TemplateRef<T>,\r\n    private viewContainer: ViewContainerRef,\r\n    private authContext: AuthContextService\r\n  ) {}\r\n\r\n  @Input()\r\n  set hasPermission(value: string | string[]) {\r\n    this.requiredPermissions = value;\r\n    this.updateView();\r\n  }\r\n\r\n  ngOnDestroy(): void {\r\n    this.unregister();\r\n  }\r\n\r\n  private unregister() {\r\n    this.sub?.unsubscribe();\r\n  }\r\n\r\n  private updateView(): void {\r\n    this.unregister();\r\n    if (this.requiredPermissions || this.requiredPermissions.length) {\r\n      this.sub = this.authContext\r\n        .hasRequiredPermission(this.requiredPermissions)\r\n        .pipe(distinctUntilChanged())\r\n        .subscribe((hasPerm) => {\r\n          if (hasPerm) {\r\n            this.viewContainer.createEmbeddedView(this.templateRef);\r\n          } else {\r\n            this.viewContainer.clear();\r\n          }\r\n        });\r\n    }\r\n  }\r\n}\r\n","import {\r\n  Directive,\r\n  Input,\r\n  TemplateRef,\r\n  ViewContainerRef,\r\n  OnDestroy,\r\n} from '@angular/core';\r\nimport { distinctUntilChanged, Subscription } from 'rxjs';\r\nimport { AuthContextService } from '../services';\r\n\r\n@Directive({\r\n  standalone: true,\r\n  selector: '[hasRole]',\r\n})\r\nexport class HasRoleDirective<T> implements OnDestroy {\r\n  private requiredRoles: string | string[] | undefined;\r\n  private sub?: Subscription;\r\n\r\n  constructor(\r\n    private templateRef: TemplateRef<T>,\r\n    private viewContainer: ViewContainerRef,\r\n    private authContext: AuthContextService\r\n  ) {}\r\n\r\n  @Input()\r\n  set hasRole(value: string | string[]) {\r\n    this.requiredRoles = value;\r\n    this.updateView();\r\n  }\r\n\r\n  ngOnDestroy(): void {\r\n    this.unregister();\r\n  }\r\n\r\n  private unregister() {\r\n    this.sub?.unsubscribe();\r\n  }\r\n\r\n  private updateView(): void {\r\n    this.unregister();\r\n    if (this.requiredRoles || this.requiredRoles?.length) {\r\n      this.sub = this.authContext\r\n        .hasRequiredRole(this.requiredRoles)\r\n        .pipe(distinctUntilChanged())\r\n        .subscribe((hasRole) => {\r\n          if (hasRole) {\r\n            this.viewContainer.createEmbeddedView(this.templateRef);\r\n          } else {\r\n            this.viewContainer.clear();\r\n          }\r\n        });\r\n    }\r\n  }\r\n}\r\n","/**\n * Generated bundle index. Do not edit.\n */\n\nexport * from './index';\n"],"names":["i1.AuthContextService"],"mappings":";;;;;;;AAEgB,SAAA,qBAAqB,CACnC,IAAmC,EACnC,UAA6B,EAAA;IAE7B,OAAO,QAAQ,CAAC,IAAI,EAAE,WAAW,EAAE,UAAU,CAAC,CAAC;AACjD,CAAC;AAEe,SAAA,eAAe,CAC7B,IAAmC,EACnC,IAAuB,EAAA;IAEvB,OAAO,QAAQ,CAAC,IAAI,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC;AACrC,CAAC;AAED,SAAS,QAAQ,CACf,SAA+B,EAC/B,WAA8B,EAAA;IAE9B,IAAI,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE;AACvC,QAAA,OAAO,IAAI,CAAC;KACb;IAED,IAAI,CAAC,SAAS,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE;AACnC,QAAA,OAAO,KAAK,CAAC;KACd;AAED,IAAA,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,CAAC;AACxC,IAAA,IAAI,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE;AAC9B,QAAA,OAAO,WAAW,CAAC,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC;KAC9D;AAED,IAAA,IAAI,WAAW,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE;QAC7B,MAAM,UAAU,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;AAC/D,QAAA,OAAO,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,KAAK,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;KACrD;AAED,IAAA,OAAO,YAAY,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;AACvC,CAAC;AAEK,SAAU,gBAAgB,CAC9B,WAAoB,EAAA;IAEpB,IAAI,CAAC,WAAW,EAAE;AAChB,QAAA,OAAO,SAAS,CAAC;KAClB;AAED,IAAA,IAAI;QACF,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;AACrC,QAAA,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE;AACpB,YAAA,OAAO,SAAS,CAAC;SAClB;QACD,MAAM,OAAO,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAE3C,MAAM,QAAQ,GAAG,OAAO,CAAC,aAAa,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC7D,IAAI,CAAC,QAAQ,EAAE;AACb,YAAA,OAAO,SAAS,CAAC;SAClB;AAED,QAAA,MAAM,IAAI,GAAsB;YAC9B,QAAQ;AACR,YAAA,MAAM,EAAE,OAAO,CAAC,QAAQ,CAAC;AACzB,YAAA,KAAK,EAAE,OAAO,CAAC,OAAO,CAAC;AACvB,YAAA,WAAW,EAAE,OAAO,CAAC,MAAM,CAAC;AAC5B,YAAA,KAAK,EAAE,cAAc,CAAC,OAAO,EAAE,MAAM,CAAC;AACtC,YAAA,WAAW,EAAE,cAAc,CAAC,OAAO,EAAE,YAAY,CAAC;SACnD,CAAC;AAEF,QAAA,OAAO,IAAI,CAAC;KACb;IAAC,OAAO,KAAK,EAAE;AACd,QAAA,OAAO,SAAS,CAAC;KAClB;AACH,CAAC;AAEK,SAAU,gBAAgB,CAAC,GAAW,EAAA;AAC1C,IAAA,MAAM,MAAM,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;AAEzD,IAAA,MAAM,WAAW,GAAG,kBAAkB,CACpC,IAAI,CAAC,MAAM,CAAC;SACT,KAAK,CAAC,EAAE,CAAC;SACT,GAAG,CAAC,CAAC,IAAI,GAAG,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;AAC7D,SAAA,IAAI,CAAC,EAAE,CAAC,CACZ,CAAC;AAEF,IAAA,OAAO,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;AACjC,CAAC;AAED,SAAS,cAAc,CACrB,IAA0C,EAC1C,YAAoB,EAAA;AAEpB,IAAA,MAAM,QAAQ,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC;IACpC,IAAI,CAAC,QAAQ,EAAE;AACb,QAAA,OAAO,SAAS,CAAC;KAClB;AAED,IAAA,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE;AAC3B,QAAA,OAAO,QAAQ,CAAC;KACjB;IAED,OAAO,CAAC,QAAQ,CAAC,CAAC;AACpB;;ACnGa,MAAA,OAAO,GAAG,YAAY,CACjC,iBAAiB,EACjB,KAAK,EAA2C;;ACCrC,MAAA,YAAY,GAAc;AACrC,IAAA,IAAI,EAAE,SAAS;;;ACHJ,MAAA,WAAW,GAAG,aAAa,CACtC,YAAY,EACZ,EAAE,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,MAAM,MAAM;AAC9B,IAAA,GAAG,KAAK;IACR,IAAI,EAAE,MAAM,CAAC,IAAI;CAClB,CAAC,CAAC;;ACNE,MAAM,qBAAqB,GAAG,UAAU,CAAC;AAEzC,MAAM,eAAe,GAAG,aAAa,CAAC;AACzC,IAAA,IAAI,EAAE,qBAAqB;AAC3B,IAAA,OAAO,EAAE,WAAW;AACvB,CAAA,CAAC;;ACLW,MAAA,qBAAqB,GAAG,cAAc,CACjD,eAAe,CAAC,UAAU,EAC1B,CAAC,IAAI,KAAK,CAAC,CAAC,IAAI,EAChB;AAEW,MAAA,UAAU,GAAG,eAAe,CAAC;;MCG7B,kBAAkB,CAAA;AAIT,IAAA,KAAA,CAAA;AAHpB,IAAA,KAAK,CAA4C;AACjD,IAAA,gBAAgB,CAAsB;AAEtC,IAAA,WAAA,CAAoB,KAAY,EAAA;QAAZ,IAAK,CAAA,KAAA,GAAL,KAAK,CAAO;QAC9B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;QAC3C,IAAI,CAAC,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,qBAAqB,CAAC,CAAC;KAClE;AAED,IAAA,OAAO,CAAC,IAAmC,EAAA;AACzC,QAAA,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;KACxC;AAED,IAAA,qBAAqB,CACnB,mBAAsC,EAAA;QAEtC,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CACpB,GAAG,CAAC,CAAC,IAAI,KAAK,qBAAqB,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC,CAChE,CAAC;KACH;AAED,IAAA,eAAe,CAAC,mBAAsC,EAAA;QACpD,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,CACpB,GAAG,CAAC,CAAC,IAAI,KAAK,eAAe,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC,CAC1D,CAAC;KACH;uGAzBU,kBAAkB,EAAA,IAAA,EAAA,CAAA,EAAA,KAAA,EAAA,EAAA,CAAA,KAAA,EAAA,CAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;AAAlB,IAAA,OAAA,KAAA,GAAA,EAAA,CAAA,qBAAA,CAAA,EAAA,UAAA,EAAA,QAAA,EAAA,OAAA,EAAA,QAAA,EAAA,QAAA,EAAA,EAAA,EAAA,IAAA,EAAA,kBAAkB,cAFjB,MAAM,EAAA,CAAA,CAAA;;2FAEP,kBAAkB,EAAA,UAAA,EAAA,CAAA;kBAH9B,UAAU;AAAC,YAAA,IAAA,EAAA,CAAA;AACV,oBAAA,UAAU,EAAE,MAAM;AACnB,iBAAA,CAAA;;;MCOY,SAAS,CAAA;AACZ,IAAA,MAAM,GAAG,MAAM,CAAiB,eAAe,CAAC,CAAC;AACjD,IAAA,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;AACxB,IAAA,WAAW,GAAG,MAAM,CAAC,kBAAkB,CAAC,CAAC;AAEjD,IAAA,WAAW,CAAC,KAA6B,EAAA;AACvC,QAAA,OAAO,IAAI,CAAC,mCAAmC,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;KACvF;AAED,IAAA,gBAAgB,CACd,UAAkC,EAAA;AAElC,QAAA,OAAO,IAAI,CAAC,mCAAmC,CAAC,UAAU,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;KAC5F;IAEO,mCAAmC,CACzC,KAA6B,EAC7B,gBAAoC,EAAA;QAEpC,MAAM,mBAAmB,GAAG,KAAK,CAAC,IAAI,CAAC,aAAa,CAAoC,CAAC;QACzF,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,CAAC,OAAO,CAAkC,CAAC;AAE3E,QAAA,OAAO,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,CAChC,GAAG,CACD,CAAC,IAAI,KAAK,IAAI;AACZ,aAAC,CAAC,mBAAmB;AACnB,gBAAA,qBAAqB,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC;AACnD,aAAC,CAAC,aAAa,IAAI,qBAAqB,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC,CACjE,EACD,SAAS,CAAC,CAAC,aAAa,KAAI;AAC1B,YAAA,IAAI,CAAC,aAAa,IAAI,gBAAgB,EAAE;gBACtC,OAAO,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,CAAC,CAAC,CAAC;aACnD;AACD,YAAA,OAAO,EAAE,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC;SAC5B,CAAC,CACH,CAAC;KACH;uGApCU,SAAS,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;AAAT,IAAA,OAAA,KAAA,GAAA,EAAA,CAAA,qBAAA,CAAA,EAAA,UAAA,EAAA,QAAA,EAAA,OAAA,EAAA,QAAA,EAAA,QAAA,EAAA,EAAA,EAAA,IAAA,EAAA,SAAS,cAFR,MAAM,EAAA,CAAA,CAAA;;2FAEP,SAAS,EAAA,UAAA,EAAA,CAAA;kBAHrB,UAAU;AAAC,YAAA,IAAA,EAAA,CAAA;AACV,oBAAA,UAAU,EAAE,MAAM;AACnB,iBAAA,CAAA;;;ACEe,SAAA,eAAe,CAC7B,MAAA,GAA8C,SAAS,EAAA;AAEvD,IAAA,MAAM,cAAc,GAAmB;AACrC,QAAA,eAAe,EAAE,WAAW;AAC5B,QAAA,iBAAiB,EAAE,iBAAiB;AACpC,QAAA,IAAI,MAAM,IAAI,EAAE,CAAC;KAClB,CAAC;IACF,OAAO;QACL,SAAS;QACT,6BAA6B;AAC7B,QAAA,EAAE,OAAO,EAAE,+BAA+B,EAAE,QAAQ,EAAE,yBAAyB,EAAE;AACjF,QAAA,EAAE,OAAO,EAAE,eAAe,EAAE,QAAQ,EAAE,cAAc,EAAE;KACvD,CAAC;AACJ,CAAC;MAKY,cAAc,CAAA;IACzB,OAAO,OAAO,CACZ,MAAgC,EAAA;QAEhC,OAAO;AACL,YAAA,QAAQ,EAAE,cAAc;AACxB,YAAA,SAAS,EAAE,CAAC,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC;SACxC,CAAC;KACH;uGARU,cAAc,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,QAAA,EAAA,CAAA,CAAA;wGAAd,cAAc,EAAA,OAAA,EAAA,CAAA,EAAA,CAAA,kBAAA,CAAA,EAAA,CAAA,CAAA;AAAd,IAAA,OAAA,IAAA,GAAA,EAAA,CAAA,mBAAA,CAAA,EAAA,UAAA,EAAA,QAAA,EAAA,OAAA,EAAA,QAAA,EAAA,QAAA,EAAA,EAAA,EAAA,IAAA,EAAA,cAAc,YAFf,WAAW,CAAC,UAAU,CAAC,eAAe,CAAC,CAAA,EAAA,CAAA,CAAA;;2FAEtC,cAAc,EAAA,UAAA,EAAA,CAAA;kBAH1B,QAAQ;AAAC,YAAA,IAAA,EAAA,CAAA;oBACR,OAAO,EAAE,CAAC,WAAW,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC;AACnD,iBAAA,CAAA;;MAYY,+BAA+B,GAAG,IAAI,cAAc,CAAC,iCAAiC,EAAE;MAExF,eAAe,GAAG,IAAI,cAAc,CAAC,iBAAiB,EAAE;AAExD,MAAA,6BAA6B,GAAa;AACrD,IAAA,OAAO,EAAE,eAAe;AACxB,IAAA,UAAU,EAAE,0BAA0B;IACtC,IAAI,EAAE,CAAC,+BAA+B,EAAE,kBAAkB,EAAE,eAAe,EAAE,MAAM,CAAC;AACpF,IAAA,KAAK,EAAE,IAAI;;;MCjDA,yBAAyB,CAAA;AAC5B,IAAA,MAAM,GAAG,MAAM,CAAiB,eAAe,CAAC,CAAC;IAEzD,QAAQ,GAAA;AACN,QAAA,MAAM,KAAK,GAAG,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;AAChE,QAAA,OAAO,EAAE,CAAC,KAAK,IAAI,SAAS,CAAC,CAAC;KAC/B;AAED,IAAA,QAAQ,CAAC,KAAa,EAAA;QACpB,YAAY,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;KAC1D;IAED,WAAW,GAAA;QACT,YAAY,CAAC,KAAK,EAAE,CAAC;KACtB;uGAdU,yBAAyB,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;2GAAzB,yBAAyB,EAAA,CAAA,CAAA;;2FAAzB,yBAAyB,EAAA,UAAA,EAAA,CAAA;kBADrC,UAAU;;;ACAL,SAAU,0BAA0B,CACxC,aAA4B,EAC5B,WAA+B,EAC/B,MAAsB,EACtB,MAAc,EAAA;AAEd,IAAA,MAAM,gBAAgB,GAAG,aAAa,CAAC,QAAQ,EAAE,CAAC,IAAI,CACpD,SAAS,CAAC,CAAC,KAAK,KAAI;AAClB,QAAA,MAAM,IAAI,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;AACrC,QAAA,IAAI,MAAM,CAAC,SAAS,IAAI,CAAC,IAAI,EAAE;AAC7B,YAAA,OAAO,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;SAClD;AAED,QAAA,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;AAC1B,QAAA,OAAO,EAAE,CAAC,EAAE,CAAC,CAAC;KACf,CAAC,CACH,CAAC;AAEF,IAAA,OAAO,MAAM,cAAc,CAAC,gBAAgB,CAAC,CAAA;AAC/C;;MClBa,2BAA2B,CAAA;AAC9B,IAAA,MAAM,GAAG,MAAM,CAAiB,eAAe,CAAC,CAAC;IAEzD,QAAQ,GAAA;AACN,QAAA,MAAM,KAAK,GAAG,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,eAAe,CAAC,CAAC;AAClE,QAAA,OAAO,EAAE,CAAC,KAAK,IAAI,SAAS,CAAC,CAAC;KAC/B;uGANU,2BAA2B,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;2GAA3B,2BAA2B,EAAA,CAAA,CAAA;;2FAA3B,2BAA2B,EAAA,UAAA,EAAA,CAAA;kBADvC,UAAU;;;MCEE,YAAY,CAAA;AACb,IAAA,MAAM,GAAG,MAAM,CAAiB,eAAe,CAAC,CAAC;AACjD,IAAA,aAAa,GAAG,MAAM,CAA4B,+BAA+B,CAAC,CAAC;AACnF,IAAA,WAAW,GAAG,MAAM,CAAC,kBAAkB,CAAC,CAAC;AACzC,IAAA,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;AAEhC,IAAA,KAAK,CAAC,KAAc,EAAA;QAChB,IAAI,KAAK,EAAE;AACP,YAAA,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YACnC,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,CAAC;SACrD;aAAM;AACH,YAAA,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC;SACjD;KACJ;uGAbQ,YAAY,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;2GAAZ,YAAY,EAAA,CAAA,CAAA;;2FAAZ,YAAY,EAAA,UAAA,EAAA,CAAA;kBADxB,UAAU;;;MCDE,aAAa,CAAA;AACL,IAAA,aAAa,GAAG,MAAM,CAA4B,+BAA+B,CAAC,CAAC;AACnF,IAAA,WAAW,GAAG,MAAM,CAAC,kBAAkB,CAAC,CAAC;IAE1D,MAAM,GAAA;AACF,QAAA,IAAI,CAAC,aAAa,CAAC,WAAW,EAAE,CAAC;AACjC,QAAA,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;KACvC;uGAPQ,aAAa,EAAA,IAAA,EAAA,EAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,UAAA,EAAA,CAAA,CAAA;2GAAb,aAAa,EAAA,CAAA,CAAA;;2FAAb,aAAa,EAAA,UAAA,EAAA,CAAA;kBADzB,UAAU;;;MCSE,sBAAsB,CAAA;AAKvB,IAAA,WAAA,CAAA;AACA,IAAA,aAAA,CAAA;AACA,IAAA,WAAA,CAAA;IANF,mBAAmB,GAAsB,EAAE,CAAC;AAC5C,IAAA,GAAG,CAAgB;AAE3B,IAAA,WAAA,CACU,WAA2B,EAC3B,aAA+B,EAC/B,WAA+B,EAAA;QAF/B,IAAW,CAAA,WAAA,GAAX,WAAW,CAAgB;QAC3B,IAAa,CAAA,aAAA,GAAb,aAAa,CAAkB;QAC/B,IAAW,CAAA,WAAA,GAAX,WAAW,CAAoB;KACrC;IAEJ,IACI,aAAa,CAAC,KAAwB,EAAA;AACxC,QAAA,IAAI,CAAC,mBAAmB,GAAG,KAAK,CAAC;QACjC,IAAI,CAAC,UAAU,EAAE,CAAC;KACnB;IAED,WAAW,GAAA;QACT,IAAI,CAAC,UAAU,EAAE,CAAC;KACnB;IAEO,UAAU,GAAA;AAChB,QAAA,IAAI,CAAC,GAAG,EAAE,WAAW,EAAE,CAAC;KACzB;IAEO,UAAU,GAAA;QAChB,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,mBAAmB,IAAI,IAAI,CAAC,mBAAmB,CAAC,MAAM,EAAE;AAC/D,YAAA,IAAI,CAAC,GAAG,GAAG,IAAI,CAAC,WAAW;AACxB,iBAAA,qBAAqB,CAAC,IAAI,CAAC,mBAAmB,CAAC;iBAC/C,IAAI,CAAC,oBAAoB,EAAE,CAAC;AAC5B,iBAAA,SAAS,CAAC,CAAC,OAAO,KAAI;gBACrB,IAAI,OAAO,EAAE;oBACX,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;iBACzD;qBAAM;AACL,oBAAA,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;iBAC5B;AACH,aAAC,CAAC,CAAC;SACN;KACF;uGAtCU,sBAAsB,EAAA,IAAA,EAAA,CAAA,EAAA,KAAA,EAAA,EAAA,CAAA,WAAA,EAAA,EAAA,EAAA,KAAA,EAAA,EAAA,CAAA,gBAAA,EAAA,EAAA,EAAA,KAAA,EAAAA,kBAAA,EAAA,CAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,SAAA,EAAA,CAAA,CAAA;2FAAtB,sBAAsB,EAAA,YAAA,EAAA,IAAA,EAAA,QAAA,EAAA,iBAAA,EAAA,MAAA,EAAA,EAAA,aAAA,EAAA,eAAA,EAAA,EAAA,QAAA,EAAA,EAAA,EAAA,CAAA,CAAA;;2FAAtB,sBAAsB,EAAA,UAAA,EAAA,CAAA;kBAJlC,SAAS;AAAC,YAAA,IAAA,EAAA,CAAA;AACT,oBAAA,UAAU,EAAE,IAAI;AAChB,oBAAA,QAAQ,EAAE,iBAAiB;AAC5B,iBAAA,CAAA;6IAYK,aAAa,EAAA,CAAA;sBADhB,KAAK;;;MCVK,gBAAgB,CAAA;AAKjB,IAAA,WAAA,CAAA;AACA,IAAA,aAAA,CAAA;AACA,IAAA,WAAA,CAAA;AANF,IAAA,aAAa,CAAgC;AAC7C,IAAA,GAAG,CAAgB;AAE3B,IAAA,WAAA,CACU,WAA2B,EAC3B,aAA+B,EAC/B,WAA+B,EAAA;QAF/B,IAAW,CAAA,WAAA,GAAX,WAAW,CAAgB;QAC3B,IAAa,CAAA,aAAA,GAAb,aAAa,CAAkB;QAC/B,IAAW,CAAA,WAAA,GAAX,WAAW,CAAoB;KACrC;IAEJ,IACI,OAAO,CAAC,KAAwB,EAAA;AAClC,QAAA,IAAI,CAAC,aAAa,GAAG,KAAK,CAAC;QAC3B,IAAI,CAAC,UAAU,EAAE,CAAC;KACnB;IAED,WAAW,GAAA;QACT,IAAI,CAAC,UAAU,EAAE,CAAC;KACnB;IAEO,UAAU,GAAA;AAChB,QAAA,IAAI,CAAC,GAAG,EAAE,WAAW,EAAE,CAAC;KACzB;IAEO,UAAU,GAAA;QAChB,IAAI,CAAC,UAAU,EAAE,CAAC;QAClB,IAAI,IAAI,CAAC,aAAa,IAAI,IAAI,CAAC,aAAa,EAAE,MAAM,EAAE;AACpD,YAAA,IAAI,CAAC,GAAG,GAAG,IAAI,CAAC,WAAW;AACxB,iBAAA,eAAe,CAAC,IAAI,CAAC,aAAa,CAAC;iBACnC,IAAI,CAAC,oBAAoB,EAAE,CAAC;AAC5B,iBAAA,SAAS,CAAC,CAAC,OAAO,KAAI;gBACrB,IAAI,OAAO,EAAE;oBACX,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;iBACzD;qBAAM;AACL,oBAAA,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,CAAC;iBAC5B;AACH,aAAC,CAAC,CAAC;SACN;KACF;uGAtCU,gBAAgB,EAAA,IAAA,EAAA,CAAA,EAAA,KAAA,EAAA,EAAA,CAAA,WAAA,EAAA,EAAA,EAAA,KAAA,EAAA,EAAA,CAAA,gBAAA,EAAA,EAAA,EAAA,KAAA,EAAAA,kBAAA,EAAA,CAAA,EAAA,MAAA,EAAA,EAAA,CAAA,eAAA,CAAA,SAAA,EAAA,CAAA,CAAA;2FAAhB,gBAAgB,EAAA,YAAA,EAAA,IAAA,EAAA,QAAA,EAAA,WAAA,EAAA,MAAA,EAAA,EAAA,OAAA,EAAA,SAAA,EAAA,EAAA,QAAA,EAAA,EAAA,EAAA,CAAA,CAAA;;2FAAhB,gBAAgB,EAAA,UAAA,EAAA,CAAA;kBAJ5B,SAAS;AAAC,YAAA,IAAA,EAAA,CAAA;AACT,oBAAA,UAAU,EAAE,IAAI;AAChB,oBAAA,QAAQ,EAAE,WAAW;AACtB,iBAAA,CAAA;6IAYK,OAAO,EAAA,CAAA;sBADV,KAAK;;;ACxBR;;AAEG;;;;"}

package/index.d.ts

@@ -0,0 +1 @@
+export * from './lib';

package/lib/directives/has-permission.directive.d.ts

@@ -0,0 +1,17 @@
+import { TemplateRef, ViewContainerRef, OnDestroy } from '@angular/core';
+import { AuthContextService } from '../services';
+import * as i0 from "@angular/core";
+export declare class HasPermissionDirective<T> implements OnDestroy {
+    private templateRef;
+    private viewContainer;
+    private authContext;
+    private requiredPermissions;
+    private sub?;
+    constructor(templateRef: TemplateRef<T>, viewContainer: ViewContainerRef, authContext: AuthContextService);
+    set hasPermission(value: string | string[]);
+    ngOnDestroy(): void;
+    private unregister;
+    private updateView;
+    static ɵfac: i0.ɵɵFactoryDeclaration<HasPermissionDirective<any>, never>;
+    static ɵdir: i0.ɵɵDirectiveDeclaration<HasPermissionDirective<any>, "[hasPermission]", never, { "hasPermission": { "alias": "hasPermission"; "required": false; }; }, {}, never, never, true, never>;
+}

package/lib/directives/has-role.directive.d.ts

@@ -0,0 +1,17 @@
+import { TemplateRef, ViewContainerRef, OnDestroy } from '@angular/core';
+import { AuthContextService } from '../services';
+import * as i0 from "@angular/core";
+export declare class HasRoleDirective<T> implements OnDestroy {
+    private templateRef;
+    private viewContainer;
+    private authContext;
+    private requiredRoles;
+    private sub?;
+    constructor(templateRef: TemplateRef<T>, viewContainer: ViewContainerRef, authContext: AuthContextService);
+    set hasRole(value: string | string[]);
+    ngOnDestroy(): void;
+    private unregister;
+    private updateView;
+    static ɵfac: i0.ɵɵFactoryDeclaration<HasRoleDirective<any>, never>;
+    static ɵdir: i0.ɵɵDirectiveDeclaration<HasRoleDirective<any>, "[hasRole]", never, { "hasRole": { "alias": "hasRole"; "required": false; }; }, {}, never, never, true, never>;
+}

package/{src/lib/directives/index.ts → lib/directives/index.d.ts}

@@ -1,2 +1,2 @@
-export * from './has-permission.directive';
-export * from './has-role.directive';
+export * from './has-permission.directive';
+export * from './has-role.directive';

package/lib/guards/auth.guard.d.ts

@@ -0,0 +1,13 @@
+import { ActivatedRouteSnapshot, CanActivate, CanActivateChild, UrlTree } from '@angular/router';
+import { Observable } from 'rxjs';
+import * as i0 from "@angular/core";
+export declare class AuthGuard implements CanActivate, CanActivateChild {
+    private config;
+    private router;
+    private authContext;
+    canActivate(route: ActivatedRouteSnapshot): Observable<boolean | UrlTree>;
+    canActivateChild(childRoute: ActivatedRouteSnapshot): Observable<boolean | UrlTree>;
+    private checkPermissionsAndRolesAndNavigate;
+    static ɵfac: i0.ɵɵFactoryDeclaration<AuthGuard, never>;
+    static ɵprov: i0.ɵɵInjectableDeclaration<AuthGuard>;
+}

package/{src/lib/guards/index.ts → lib/guards/index.d.ts}

@@ -1 +1 @@
-export * from './auth.guard';
+export * from './auth.guard';

package/{src/lib/index.ts → lib/index.d.ts}

@@ -1,6 +1,6 @@
-export * from './directives';
-export * from './guards';
-export * from './models';
-export * from './services';
-export * from './state';
-export * from './provider';
+export * from './directives';
+export * from './guards';
+export * from './models';
+export * from './services';
+export * from './state';
+export * from './provider';

package/{src/lib/models/authenticated-user.model.ts → lib/models/authenticated-user.model.d.ts}

@@ -1,8 +1,8 @@
-export interface AuthenticatedUser {
-    userId?: string;
-    userName: string;
-    email: string;
-    displayName?: string;
-    roles: string[] | undefined;
-    permissions: string[] | undefined;
-}
+export interface AuthenticatedUser {
+    userId?: string;
+    userName: string;
+    email: string;
+    displayName?: string;
+    roles: string[] | undefined;
+    permissions: string[] | undefined;
+}

package/{src/lib/models/config.model.ts → lib/models/config.model.d.ts}

@@ -1,9 +1,8 @@
-
-export interface SecurityConfig {
-    tokenStorageKey: string;
-    contextTokenStorageKey?: string;
-    loginPage?: string;
-    logoutPage?: string;
-    notAuthorizedPage?: string;
-    sendTokenHeader?: boolean;
-}
+export interface SecurityConfig {
+    tokenStorageKey: string;
+    contextTokenStorageKey?: string;
+    loginPage?: string;
+    logoutPage?: string;
+    notAuthorizedPage?: string;
+    sendTokenHeader?: boolean;
+}

package/lib/models/functions.d.ts

@@ -0,0 +1,5 @@
+import { AuthenticatedUser } from './authenticated-user.model';
+export declare function hasRequiredPermission(user: AuthenticatedUser | undefined, permission: string | string[]): boolean;
+export declare function hasRequiredRole(user: AuthenticatedUser | undefined, role: string | string[]): boolean;
+export declare function convertJWTToUser(base64Token?: string): AuthenticatedUser | undefined;
+export declare function decodeJwtPayload(jwt: string): any;

package/{src/lib/models/index.ts → lib/models/index.d.ts}

@@ -1,3 +1,3 @@
-export * from './authenticated-user.model';
-export * from './functions';
-export * from './config.model';
+export * from './authenticated-user.model';
+export * from './functions';
+export * from './config.model';

package/lib/provider.d.ts

@@ -0,0 +1,14 @@
+import { InjectionToken, ModuleWithProviders, Provider } from '@angular/core';
+import { SecurityConfig } from './models';
+import * as i0 from "@angular/core";
+import * as i1 from "@ngrx/store";
+export declare function provideSecurity(config?: Partial<SecurityConfig> | undefined): Provider[];
+export declare class SecurityModule {
+    static forRoot(config?: Partial<SecurityConfig>): ModuleWithProviders<SecurityModule>;
+    static ɵfac: i0.ɵɵFactoryDeclaration<SecurityModule, never>;
+    static ɵmod: i0.ɵɵNgModuleDeclaration<SecurityModule, never, [typeof i1.StoreFeatureModule], never>;
+    static ɵinj: i0.ɵɵInjectorDeclaration<SecurityModule>;
+}
+export declare const SECURITY_CONTEXT_TOKEN_PROVIDER: InjectionToken<unknown>;
+export declare const SECURITY_CONFIG: InjectionToken<unknown>;
+export declare const SECURITY_INITIALIZER_PROVIDER: Provider;