@vita-mojo/auth 1.0.13 → 1.0.14

package/package.json

@@ -1,10 +1,11 @@
 {
   "name": "@vita-mojo/auth",
-  "version": "1.0.13",
+  "version": "1.0.14",
   "peerDependencies": {
     "@nestjs/common": ">=8 <= 9",
     "@nestjs/core": ">=8 <= 9",
     "reflect-metadata": "^0.1.13",
+    "@vita-mojo/types": "1.0.18",
     "tslib": "2.4.1"
   },
   "dependencies": {

package/src/decorators/index.d.ts

@@ -1,2 +1 @@
-export { createPermissionResourceDecorator } from './permission-resource.decorator';
 export { Permissions } from './permissions.decorator';

package/src/decorators/index.js

@@ -1,8 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.Permissions = exports.createPermissionResourceDecorator = void 0;
-var permission_resource_decorator_1 = require("./permission-resource.decorator");
-Object.defineProperty(exports, "createPermissionResourceDecorator", { enumerable: true, get: function () { return permission_resource_decorator_1.createPermissionResourceDecorator; } });
+exports.Permissions = void 0;
 var permissions_decorator_1 = require("./permissions.decorator");
 Object.defineProperty(exports, "Permissions", { enumerable: true, get: function () { return permissions_decorator_1.Permissions; } });
 //# sourceMappingURL=index.js.map

package/src/decorators/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/auth/src/decorators/index.ts"],"names":[],"mappings":";;;AAAA,iFAAoF;AAA3E,kJAAA,iCAAiC,OAAA;AAC1C,iEAAsD;AAA7C,oHAAA,WAAW,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/auth/src/decorators/index.ts"],"names":[],"mappings":";;;AAAA,iEAAsD;AAA7C,oHAAA,WAAW,OAAA"}

package/src/guards/index.d.ts

@@ -1,2 +1 @@
-export { AuthPermissionsGuard } from './auth-permissions.guard';
 export { PermissionsGuard } from './permissions.guard';

package/src/guards/index.js

@@ -1,8 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.PermissionsGuard = exports.AuthPermissionsGuard = void 0;
-var auth_permissions_guard_1 = require("./auth-permissions.guard");
-Object.defineProperty(exports, "AuthPermissionsGuard", { enumerable: true, get: function () { return auth_permissions_guard_1.AuthPermissionsGuard; } });
+exports.PermissionsGuard = void 0;
 var permissions_guard_1 = require("./permissions.guard");
 Object.defineProperty(exports, "PermissionsGuard", { enumerable: true, get: function () { return permissions_guard_1.PermissionsGuard; } });
 //# sourceMappingURL=index.js.map

package/src/guards/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/auth/src/guards/index.ts"],"names":[],"mappings":";;;AAAA,mEAAgE;AAAvD,8HAAA,oBAAoB,OAAA;AAC7B,yDAAuD;AAA9C,qHAAA,gBAAgB,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/auth/src/guards/index.ts"],"names":[],"mappings":";;;AAAA,yDAAuD;AAA9C,qHAAA,gBAAgB,OAAA"}

package/src/index.d.ts

@@ -1,4 +1,5 @@
 export * from './auth';
 export * from './decorators';
 export * from './guards';
+export * from './permissions-checker';
 export * from './types';

package/src/index.js

@@ -4,5 +4,6 @@ const tslib_1 = require("tslib");
 tslib_1.__exportStar(require("./auth"), exports);
 tslib_1.__exportStar(require("./decorators"), exports);
 tslib_1.__exportStar(require("./guards"), exports);
+tslib_1.__exportStar(require("./permissions-checker"), exports);
 tslib_1.__exportStar(require("./types"), exports);
 //# sourceMappingURL=index.js.map

package/src/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../packages/auth/src/index.ts"],"names":[],"mappings":";;;AAAA,iDAAuB;AACvB,uDAA6B;AAC7B,mDAAyB;AACzB,kDAAwB"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../packages/auth/src/index.ts"],"names":[],"mappings":";;;AAAA,iDAAuB;AACvB,uDAA6B;AAC7B,mDAAyB;AACzB,gEAAsC;AACtC,kDAAwB"}

package/src/permissions-checker/index.d.ts

@@ -0,0 +1 @@
+export { PermissionsChecker } from './permissions-checker';

package/src/permissions-checker/index.js

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionsChecker = void 0;
+var permissions_checker_1 = require("./permissions-checker");
+Object.defineProperty(exports, "PermissionsChecker", { enumerable: true, get: function () { return permissions_checker_1.PermissionsChecker; } });
+//# sourceMappingURL=index.js.map

package/src/permissions-checker/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../../packages/auth/src/permissions-checker/index.ts"],"names":[],"mappings":";;;AAAA,6DAA2D;AAAlD,yHAAA,kBAAkB,OAAA"}

package/src/permissions-checker/permissions-checker.d.ts

@@ -0,0 +1,12 @@
+import { type ExecutionContext } from '@nestjs/common';
+import type { Reflector } from '@nestjs/core';
+import { User } from '@vita-mojo/types';
+import { PermissionDefinition, PermissionsMap } from '../types';
+export declare class PermissionsChecker {
+    static permissionsMap: PermissionsMap;
+    static registerPermissions(permissionList: readonly PermissionDefinition[]): void;
+    static getPermissionResource(reflector: Reflector, context: ExecutionContext): string;
+    static createPlainPermissionResource(namespace: string): (resource?: string) => string;
+    static createPermissionResource(namespace: string): (resource?: string) => import("@nestjs/common").CustomDecorator<string>;
+    static check(user: User, resource: string): boolean;
+}

package/src/permissions-checker/permissions-checker.js

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionsChecker = void 0;
+const common_1 = require("@nestjs/common");
+class PermissionsChecker {
+    static registerPermissions(permissionList) {
+        PermissionsChecker.permissionsMap = permissionList.reduce((accumulator, current) => {
+            accumulator[current.resource
+                ? `${current.namespace}__${current.resource}`
+                : current.namespace] = current;
+            return accumulator;
+        }, {});
+    }
+    static getPermissionResource(reflector, context) {
+        const classResource = reflector.get('permissionResource', context.getClass());
+        const methodResource = reflector.get('permissionResource', context.getHandler());
+        return methodResource || classResource;
+    }
+    static createPlainPermissionResource(namespace) {
+        return (resource) => resource ? `${namespace}__${resource}` : namespace;
+    }
+    static createPermissionResource(namespace) {
+        return (resource) => (0, common_1.SetMetadata)('permissionResource', PermissionsChecker.createPlainPermissionResource(namespace)(resource));
+    }
+    static check(user, resource) {
+        var _a, _b;
+        if (!user || !PermissionsChecker.permissionsMap)
+            return false;
+        if (!resource)
+            return true;
+        const permissionsMap = PermissionsChecker.permissionsMap;
+        if (!permissionsMap[resource])
+            return false;
+        if (((_a = user.role) === null || _a === void 0 ? void 0 : _a.slug) === 'service-account')
+            return true;
+        if (!permissionsMap[resource].permission ||
+            permissionsMap[resource].permission === '*')
+            return true;
+        if (!((_b = user.role) === null || _b === void 0 ? void 0 : _b.permissions))
+            return false;
+        return user.role.permissions.includes(permissionsMap[resource].permission);
+    }
+}
+exports.PermissionsChecker = PermissionsChecker;
+//# sourceMappingURL=permissions-checker.js.map

package/src/permissions-checker/permissions-checker.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"permissions-checker.js","sourceRoot":"","sources":["../../../../../packages/auth/src/permissions-checker/permissions-checker.ts"],"names":[],"mappings":";;;AAAA,2CAAoE;AAMpE,MAAa,kBAAkB;IAG7B,MAAM,CAAC,mBAAmB,CAAC,cAA+C;QACxE,kBAAkB,CAAC,cAAc,GAAG,cAAc,CAAC,MAAM,CACvD,CAAC,WAAW,EAAE,OAAO,EAAE,EAAE;YACvB,WAAW,CACT,OAAO,CAAC,QAAQ;gBACd,CAAC,CAAC,GAAG,OAAO,CAAC,SAAS,KAAK,OAAO,CAAC,QAAQ,EAAE;gBAC7C,CAAC,CAAC,OAAO,CAAC,SAAS,CACtB,GAAG,OAAO,CAAC;YAEZ,OAAO,WAAW,CAAC;QACrB,CAAC,EACD,EAAE,CACH,CAAC;IACJ,CAAC;IAED,MAAM,CAAC,qBAAqB,CAC1B,SAAoB,EACpB,OAAyB;QAEzB,MAAM,aAAa,GAAG,SAAS,CAAC,GAAG,CACjC,oBAAoB,EACpB,OAAO,CAAC,QAAQ,EAAE,CACnB,CAAC;QACF,MAAM,cAAc,GAAG,SAAS,CAAC,GAAG,CAClC,oBAAoB,EACpB,OAAO,CAAC,UAAU,EAAE,CACrB,CAAC;QAEF,OAAO,cAAc,IAAI,aAAa,CAAC;IACzC,CAAC;IAED,MAAM,CAAC,6BAA6B,CAAC,SAAiB;QACpD,OAAO,CAAC,QAAiB,EAAE,EAAE,CAC3B,QAAQ,CAAC,CAAC,CAAC,GAAG,SAAS,KAAK,QAAQ,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IACvD,CAAC;IAED,MAAM,CAAC,wBAAwB,CAAC,SAAiB;QAC/C,OAAO,CAAC,QAAiB,EAAE,EAAE,CAC3B,IAAA,oBAAW,EACT,oBAAoB,EACpB,kBAAkB,CAAC,6BAA6B,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,CACtE,CAAC;IACN,CAAC;IAED,MAAM,CAAC,KAAK,CAAC,IAAU,EAAE,QAAgB;;QACvC,IAAI,CAAC,IAAI,IAAI,CAAC,kBAAkB,CAAC,cAAc;YAAE,OAAO,KAAK,CAAC;QAE9D,IAAI,CAAC,QAAQ;YAAE,OAAO,IAAI,CAAC;QAE3B,MAAM,cAAc,GAAG,kBAAkB,CAAC,cAAc,CAAC;QAEzD,IAAI,CAAC,cAAc,CAAC,QAAQ,CAAC;YAAE,OAAO,KAAK,CAAC;QAE5C,IAAI,CAAA,MAAA,IAAI,CAAC,IAAI,0CAAE,IAAI,MAAK,iBAAiB;YAAE,OAAO,IAAI,CAAC;QAEvD,IACE,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC,UAAU;YACpC,cAAc,CAAC,QAAQ,CAAC,CAAC,UAAU,KAAK,GAAG;YAE3C,OAAO,IAAI,CAAC;QAEd,IAAI,CAAC,CAAA,MAAA,IAAI,CAAC,IAAI,0CAAE,WAAW,CAAA;YAAE,OAAO,KAAK,CAAC;QAE1C,OAAO,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,QAAQ,CAAC,cAAc,CAAC,QAAQ,CAAC,CAAC,UAAU,CAAC,CAAC;IAC7E,CAAC;CACF;AApED,gDAoEC"}

package/src/decorators/permission-resource.decorator.d.ts

@@ -1 +0,0 @@
-export declare const createPermissionResourceDecorator: <T>(namespace: T) => <T_1>(resource?: T_1 | undefined) => import("@nestjs/common").CustomDecorator<string>;

package/src/decorators/permission-resource.decorator.js

@@ -1,7 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createPermissionResourceDecorator = void 0;
-const common_1 = require("@nestjs/common");
-const createPermissionResourceDecorator = (namespace) => (resource) => (0, common_1.SetMetadata)('permissionResource', resource ? `${namespace}__${resource}` : namespace);
-exports.createPermissionResourceDecorator = createPermissionResourceDecorator;
-//# sourceMappingURL=permission-resource.decorator.js.map

package/src/decorators/permission-resource.decorator.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"permission-resource.decorator.js","sourceRoot":"","sources":["../../../../../packages/auth/src/decorators/permission-resource.decorator.ts"],"names":[],"mappings":";;;AAAA,2CAA6C;AAEtC,MAAM,iCAAiC,GAC5C,CAAI,SAAY,EAAE,EAAE,CACpB,CAAI,QAAY,EAAE,EAAE,CAClB,IAAA,oBAAW,EACT,oBAAoB,EACpB,QAAQ,CAAC,CAAC,CAAC,GAAG,SAAS,KAAK,QAAQ,EAAE,CAAC,CAAC,CAAC,SAAS,CACnD,CAAC;AANO,QAAA,iCAAiC,qCAMxC"}

package/src/guards/auth-permissions.guard.d.ts

@@ -1,11 +0,0 @@
-import { CanActivate, ExecutionContext } from '@nestjs/common';
-import { Reflector } from '@nestjs/core';
-import { PermissionDefinition, PermissionsMap } from '../types';
-export declare class AuthPermissionsGuard implements CanActivate {
-    private readonly reflector;
-    static permissionsMapInit: boolean;
-    static permissionsMap: PermissionsMap;
-    static setPermissionsMap(permissionList: readonly PermissionDefinition[]): void;
-    constructor(reflector: Reflector);
-    canActivate(context: ExecutionContext): boolean;
-}

package/src/guards/auth-permissions.guard.js

@@ -1,53 +0,0 @@
-"use strict";
-var AuthPermissionsGuard_1;
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.AuthPermissionsGuard = void 0;
-const tslib_1 = require("tslib");
-const common_1 = require("@nestjs/common");
-const core_1 = require("@nestjs/core");
-let AuthPermissionsGuard = AuthPermissionsGuard_1 = class AuthPermissionsGuard {
-    static setPermissionsMap(permissionList) {
-        if (AuthPermissionsGuard_1.permissionsMapInit)
-            return;
-        AuthPermissionsGuard_1.permissionsMap = permissionList.reduce((accumulator, current) => {
-            accumulator[current.resource
-                ? `${current.namespace}__${current.resource}`
-                : current.namespace] = current;
-            return accumulator;
-        }, {});
-        AuthPermissionsGuard_1.permissionsMapInit = true;
-    }
-    constructor(reflector) {
-        this.reflector = reflector;
-        if (!AuthPermissionsGuard_1.permissionsMapInit) {
-            throw new Error('Permissions were not initialised, use AuthPermissionsGuard.setPermissionsMap in the project bootstrap.');
-        }
-    }
-    canActivate(context) {
-        var _a, _b, _c, _d, _e, _f;
-        const classResource = this.reflector.get('permissionResource', context.getClass());
-        const methodResource = this.reflector.get('permissionResource', context.getHandler());
-        const request = context.switchToHttp().getRequest();
-        if (!request.res.locals.decodedToken ||
-            !request.res.locals.decodedToken.user) {
-            throw new common_1.UnauthorizedException();
-        }
-        const permissionsMap = AuthPermissionsGuard_1.permissionsMap;
-        if (!((_a = permissionsMap[classResource]) === null || _a === void 0 ? void 0 : _a.permission) &&
-            !((_b = permissionsMap[methodResource]) === null || _b === void 0 ? void 0 : _b.permission)) {
-            return true;
-        }
-        const user = request.res.locals.decodedToken.user;
-        if (((_c = user.role) === null || _c === void 0 ? void 0 : _c.slug) === 'service-account') {
-            return true;
-        }
-        return (_e = (_d = user === null || user === void 0 ? void 0 : user.role) === null || _d === void 0 ? void 0 : _d.permissions) === null || _e === void 0 ? void 0 : _e.includes((_f = permissionsMap[methodResource || classResource]) === null || _f === void 0 ? void 0 : _f.permission);
-    }
-};
-AuthPermissionsGuard.permissionsMapInit = false;
-AuthPermissionsGuard = AuthPermissionsGuard_1 = tslib_1.__decorate([
-    (0, common_1.Injectable)(),
-    tslib_1.__metadata("design:paramtypes", [core_1.Reflector])
-], AuthPermissionsGuard);
-exports.AuthPermissionsGuard = AuthPermissionsGuard;
-//# sourceMappingURL=auth-permissions.guard.js.map

package/src/guards/auth-permissions.guard.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"auth-permissions.guard.js","sourceRoot":"","sources":["../../../../../packages/auth/src/guards/auth-permissions.guard.ts"],"names":[],"mappings":";;;;;AAAA,2CAKwB;AACxB,uCAAyC;AAIzC,IACa,oBAAoB,4BADjC,MACa,oBAAoB;IAI/B,MAAM,CAAC,iBAAiB,CAAC,cAA+C;QACtE,IAAI,sBAAoB,CAAC,kBAAkB;YAAE,OAAO;QAEpD,sBAAoB,CAAC,cAAc,GAAG,cAAc,CAAC,MAAM,CACzD,CAAC,WAAW,EAAE,OAAO,EAAE,EAAE;YACvB,WAAW,CACT,OAAO,CAAC,QAAQ;gBACd,CAAC,CAAC,GAAG,OAAO,CAAC,SAAS,KAAK,OAAO,CAAC,QAAQ,EAAE;gBAC7C,CAAC,CAAC,OAAO,CAAC,SAAS,CACtB,GAAG,OAAO,CAAC;YAEZ,OAAO,WAAW,CAAC;QACrB,CAAC,EACD,EAAE,CACH,CAAC;QAEF,sBAAoB,CAAC,kBAAkB,GAAG,IAAI,CAAC;IACjD,CAAC;IAED,YAA6B,SAAoB;QAApB,cAAS,GAAT,SAAS,CAAW;QAC/C,IAAI,CAAC,sBAAoB,CAAC,kBAAkB,EAAE;YAC5C,MAAM,IAAI,KAAK,CACb,wGAAwG,CACzG,CAAC;SACH;IACH,CAAC;IAED,WAAW,CAAC,OAAyB;;QACnC,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CACtC,oBAAoB,EACpB,OAAO,CAAC,QAAQ,EAAE,CACnB,CAAC;QACF,MAAM,cAAc,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CACvC,oBAAoB,EACpB,OAAO,CAAC,UAAU,EAAE,CACrB,CAAC;QAEF,MAAM,OAAO,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QAEpD,IACE,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY;YAChC,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,EACrC;YACA,MAAM,IAAI,8BAAqB,EAAE,CAAC;SACnC;QAED,MAAM,cAAc,GAAG,sBAAoB,CAAC,cAAc,CAAC;QAE3D,IACE,CAAC,CAAA,MAAA,cAAc,CAAC,aAAa,CAAC,0CAAE,UAAU,CAAA;YAC1C,CAAC,CAAA,MAAA,cAAc,CAAC,cAAc,CAAC,0CAAE,UAAU,CAAA,EAC3C;YACA,OAAO,IAAI,CAAC;SACb;QAED,MAAM,IAAI,GAAG,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,YAAY,CAAC,IAAI,CAAC;QAElD,IAAI,CAAA,MAAA,IAAI,CAAC,IAAI,0CAAE,IAAI,MAAK,iBAAiB,EAAE;YACzC,OAAO,IAAI,CAAC;SACb;QAED,OAAO,MAAA,MAAA,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,IAAI,0CAAE,WAAW,0CAAE,QAAQ,CACtC,MAAA,cAAc,CAAC,cAAc,IAAI,aAAa,CAAC,0CAAE,UAAU,CAC5D,CAAC;IACJ,CAAC;;AAnEM,uCAAkB,GAAG,KAAK,AAAR,CAAS;AADvB,oBAAoB;IADhC,IAAA,mBAAU,GAAE;6CAwB6B,gBAAS;GAvBtC,oBAAoB,CAqEhC;AArEY,oDAAoB"}