@zenstackhq/runtime 2.15.1 → 3.0.0-alpha.0

package/enhancements/edge/password.d.ts

@@ -1,7 +0,0 @@
-import { InternalEnhancementOptions } from './create-enhancement';
-/**
- * Gets an enhanced Prisma client that supports `@password` attribute.
- *
- * @private
- */
-export declare function withPassword<DbClient extends object = any>(prisma: DbClient, options: InternalEnhancementOptions): DbClient;

package/enhancements/edge/password.js

@@ -1,64 +0,0 @@
-"use strict";
-/* eslint-disable @typescript-eslint/no-explicit-any */
-/* eslint-disable @typescript-eslint/no-unused-vars */
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.withPassword = withPassword;
-const constants_1 = require("../../constants");
-const cross_1 = require("../../cross");
-const proxy_1 = require("./proxy");
-/**
- * Gets an enhanced Prisma client that supports `@password` attribute.
- *
- * @private
- */
-function withPassword(prisma, options) {
-    return (0, proxy_1.makeProxy)(prisma, options.modelMeta, (_prisma, model) => new PasswordHandler(_prisma, model, options), 'password');
-}
-// eslint-disable-next-line @typescript-eslint/no-var-requires
-const hashFunc = typeof EdgeRuntime === 'string' ? require('bcryptjs').hashSync : require('bcryptjs').hash;
-class PasswordHandler extends proxy_1.DefaultPrismaProxyHandler {
-    constructor(prisma, model, options) {
-        super(prisma, model, options);
-    }
-    // base override
-    preprocessArgs(action, args) {
-        return __awaiter(this, void 0, void 0, function* () {
-            if (args && constants_1.ACTIONS_WITH_WRITE_PAYLOAD.includes(action)) {
-                yield this.preprocessWritePayload(this.model, action, args);
-            }
-            return args;
-        });
-    }
-    preprocessWritePayload(model, action, args) {
-        return __awaiter(this, void 0, void 0, function* () {
-            const visitor = new cross_1.NestedWriteVisitor(this.options.modelMeta, {
-                field: (field, _action, data, context) => __awaiter(this, void 0, void 0, function* () {
-                    var _a, _b, _c;
-                    const pwdAttr = (_a = field.attributes) === null || _a === void 0 ? void 0 : _a.find((attr) => attr.name === '@password');
-                    if (pwdAttr && field.type === 'String') {
-                        // hash password value
-                        let salt = (_b = pwdAttr.args.find((arg) => arg.name === 'salt')) === null || _b === void 0 ? void 0 : _b.value;
-                        if (!salt) {
-                            salt = (_c = pwdAttr.args.find((arg) => arg.name === 'saltLength')) === null || _c === void 0 ? void 0 : _c.value;
-                        }
-                        if (!salt) {
-                            salt = constants_1.DEFAULT_PASSWORD_SALT_LENGTH;
-                        }
-                        context.parent[field.name] = yield hashFunc(data, salt);
-                    }
-                }),
-            });
-            yield visitor.visit(model, action, args);
-        });
-    }
-}
-//# sourceMappingURL=password.js.map

package/enhancements/edge/password.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"password.js","sourceRoot":"","sources":["../../../src/enhancements/edge/password.ts"],"names":[],"mappings":";AAAA,uDAAuD;AACvD,sDAAsD;;;;;;;;;;;AAatD,oCAUC;AArBD,+CAA2F;AAC3F,uCAA6E;AAG7E,mCAAmF;AAEnF;;;;GAIG;AACH,SAAgB,YAAY,CACxB,MAAgB,EAChB,OAAmC;IAEnC,OAAO,IAAA,iBAAS,EACZ,MAAM,EACN,OAAO,CAAC,SAAS,EACjB,CAAC,OAAO,EAAE,KAAK,EAAE,EAAE,CAAC,IAAI,eAAe,CAAC,OAA2B,EAAE,KAAK,EAAE,OAAO,CAAC,EACpF,UAAU,CACb,CAAC;AACN,CAAC;AAOD,8DAA8D;AAC9D,MAAM,QAAQ,GAAG,OAAO,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,IAAI,CAAC;AAE3G,MAAM,eAAgB,SAAQ,iCAAyB;IACnD,YAAY,MAAwB,EAAE,KAAa,EAAE,OAAmC;QACpF,KAAK,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,CAAC,CAAC;IAClC,CAAC;IAED,gBAAgB;IACA,cAAc,CAAC,MAA0B,EAAE,IAAS;;YAChE,IAAI,IAAI,IAAI,sCAA0B,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBACtD,MAAM,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,KAAK,EAAE,MAA+B,EAAE,IAAI,CAAC,CAAC;YACzF,CAAC;YACD,OAAO,IAAI,CAAC;QAChB,CAAC;KAAA;IAEa,sBAAsB,CAAC,KAAa,EAAE,MAA6B,EAAE,IAAS;;YACxF,MAAM,OAAO,GAAG,IAAI,0BAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE;gBAC3D,KAAK,EAAE,CAAO,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE;;oBAC3C,MAAM,OAAO,GAAG,MAAA,KAAK,CAAC,UAAU,0CAAE,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,KAAK,WAAW,CAAC,CAAC;oBAC5E,IAAI,OAAO,IAAI,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;wBACrC,sBAAsB;wBACtB,IAAI,IAAI,GAAgC,MAAA,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,KAAK,MAAM,CAAC,0CACjF,KAAe,CAAC;wBACtB,IAAI,CAAC,IAAI,EAAE,CAAC;4BACR,IAAI,GAAG,MAAA,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,KAAK,YAAY,CAAC,0CAAE,KAAe,CAAC;wBAClF,CAAC;wBACD,IAAI,CAAC,IAAI,EAAE,CAAC;4BACR,IAAI,GAAG,wCAA4B,CAAC;wBACxC,CAAC;wBACD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;oBAC5D,CAAC;gBACL,CAAC,CAAA;aACJ,CAAC,CAAC;YAEH,MAAM,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,MAAM,EAAE,IAAI,CAAC,CAAC;QAC7C,CAAC;KAAA;CACJ"}

package/enhancements/edge/policy/check-utils.d.ts

@@ -1,5 +0,0 @@
-import { ModelMeta } from '..';
-import type { DbClientContract } from '../../../types';
-import { PermissionCheckArgs } from '../types';
-import { PolicyUtil } from './policy-utils';
-export declare function checkPermission(_model: string, _args: PermissionCheckArgs, _modelMeta: ModelMeta, _policyUtils: PolicyUtil, _prisma: DbClientContract, _prismaModule: any): Promise<boolean>;

package/enhancements/edge/policy/check-utils.js

@@ -1,20 +0,0 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkPermission = checkPermission;
-function checkPermission(_model, _args, _modelMeta, _policyUtils, _prisma, 
-// eslint-disable-next-line @typescript-eslint/no-explicit-any
-_prismaModule) {
-    return __awaiter(this, void 0, void 0, function* () {
-        throw new Error('`check()` API is not supported on edge runtime');
-    });
-}
-//# sourceMappingURL=check-utils.js.map

package/enhancements/edge/policy/check-utils.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"check-utils.js","sourceRoot":"","sources":["../../../../src/enhancements/edge/policy/check-utils.ts"],"names":[],"mappings":";;;;;;;;;;;AAKA,0CAUC;AAVD,SAAsB,eAAe,CACjC,MAAc,EACd,KAA0B,EAC1B,UAAqB,EACrB,YAAwB,EACxB,OAAyB;AACzB,8DAA8D;AAC9D,aAAkB;;QAElB,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;IACtE,CAAC;CAAA"}

package/enhancements/edge/policy/handler.d.ts

@@ -1,100 +0,0 @@
-import { EnhancementContext, type DbClientContract } from '../../../types';
-import type { InternalEnhancementOptions } from '../create-enhancement';
-import { PrismaProxyHandler } from '../proxy';
-import type { PermissionCheckArgs } from '../types';
-/**
- * Prisma proxy handler for injecting access policy check.
- */
-export declare class PolicyProxyHandler<DbClient extends DbClientContract> implements PrismaProxyHandler {
-    private readonly prisma;
-    private readonly options;
-    private readonly context?;
-    private readonly logger;
-    private readonly policyUtils;
-    private readonly model;
-    private readonly modelMeta;
-    private readonly prismaModule;
-    private readonly queryUtils;
-    constructor(prisma: DbClient, model: string, options: InternalEnhancementOptions, context?: EnhancementContext | undefined);
-    private get modelClient();
-    findUnique(args: any): Promise<any>;
-    findUniqueOrThrow(args: any): Promise<any>;
-    findFirst(args?: any): Promise<any>;
-    findFirstOrThrow(args: any): Promise<any>;
-    findMany(args?: any): Promise<unknown[]>;
-    private findWithFluent;
-    private doFind;
-    create(args: any): Promise<unknown>;
-    private doCreate;
-    private hasNestedCreateOrConnect;
-    private validateCreateInputSchema;
-    createMany(args: {
-        data: any;
-        skipDuplicates?: boolean;
-    }): Promise<{
-        count: number;
-    }>;
-    createManyAndReturn(args: {
-        data: any;
-        select?: any;
-        skipDuplicates?: boolean;
-    }): Promise<unknown[]>;
-    /**
-     * Preprocess the payload of `createMany` and `createManyAndReturn` and update in place if needed.
-     * @returns `true` if the operation should be converted to regular `create`s; false otherwise.
-     */
-    private preprocessCreateManyPayload;
-    private hasRelationFieldsInPayload;
-    private validateCreateInput;
-    private doCreateMany;
-    private hasDuplicatedUniqueConstraint;
-    update(args: any): Promise<unknown>;
-    private doUpdate;
-    private calculatePostUpdateIds;
-    private overrideForeignKeyFields;
-    private validateUpdateInputSchema;
-    updateMany(args: any): Promise<any>;
-    updateManyAndReturn(args: any): Promise<unknown[]>;
-    private doUpdateMany;
-    upsert(args: any): Promise<unknown>;
-    delete(args: any): Promise<unknown>;
-    deleteMany(args: any): Promise<{
-        count: number;
-    }>;
-    aggregate(args: any): Promise<any>;
-    groupBy(args: any): Promise<any>;
-    count(args: any): Promise<any>;
-    subscribe(args: any): Promise<{
-        [Symbol.asyncIterator]: () => {
-            next: () => Promise<{
-                done: any;
-                value: any;
-            }>;
-            return: () => any;
-            throw: () => any;
-        };
-    }>;
-    stream(args: any): Promise<{
-        [Symbol.asyncIterator]: () => {
-            next: () => Promise<{
-                done: any;
-                value: any;
-            }>;
-            return: () => any;
-            throw: () => any;
-        };
-    }>;
-    private handleSubscribeStream;
-    /**
-     * Checks if the given operation is possibly allowed by the policy, without querying the database.
-     * @param operation The CRUD operation.
-     * @param fieldValues Extra field value filters to be combined with the policy constraints.
-     */
-    check(args: PermissionCheckArgs): Promise<boolean>;
-    private get shouldLogQuery();
-    private runPostWriteChecks;
-    private requireBackLink;
-    private mergeToParent;
-    private removeFromParent;
-    private buildIdFilterWithEntityChecker;
-}