@zenstackhq/runtime 3.0.0-alpha.12 → 3.0.0-alpha.14

package/dist/plugins/policy/plugin.zmodel

@@ -0,0 +1,33 @@
+/**
+ * Defines an access policy that allows a set of operations when the given condition is true.
+ *
+ * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
+ * @param condition: a boolean expression that controls if the operation should be allowed.
+ */
+attribute @@allow(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)
+
+/**
+ * Defines an access policy that allows the annotated field to be read or updated.
+ * You can pass a third argument as `true` to make it override the model-level policies.
+ *
+ * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
+ * @param condition: a boolean expression that controls if the operation should be allowed.
+ * @param override: a boolean value that controls if the field-level policy should override the model-level policy.
+ */
+attribute @allow(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean, _ override: Boolean?)
+
+/**
+ * Defines an access policy that denies a set of operations when the given condition is true.
+ *
+ * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
+ * @param condition: a boolean expression that controls if the operation should be denied.
+ */
+attribute @@deny(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)
+
+/**
+ * Defines an access policy that denies the annotated field to be read or updated.
+ *
+ * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
+ * @param condition: a boolean expression that controls if the operation should be denied.
+ */
+attribute @deny(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zenstackhq/runtime",
-  "version": "3.0.0-alpha.12",
+  "version": "3.0.0-alpha.14",
   "description": "ZenStack Runtime",
   "type": "module",
   "keywords": [],
@@ -64,12 +64,12 @@
     "ts-pattern": "^5.7.1",
     "ulid": "^3.0.0",
     "uuid": "^11.0.5",
-    "zod": "^4.0.0",
-    "@zenstackhq/common-helpers": "3.0.0-alpha.12"
+    "@zenstackhq/common-helpers": "3.0.0-alpha.14"
   },
   "peerDependencies": {
     "better-sqlite3": "^11.8.1",
-    "pg": "^8.13.1"
+    "pg": "^8.13.1",
+    "zod": "^4.0.0"
   },
   "peerDependenciesMeta": {
     "better-sqlite3": {
@@ -83,18 +83,18 @@
     "@types/better-sqlite3": "^7.0.0",
     "@types/pg": "^8.0.0",
     "tsx": "^4.19.2",
-    "@zenstackhq/eslint-config": "3.0.0-alpha.12",
-    "@zenstackhq/testtools": "3.0.0-alpha.12",
-    "@zenstackhq/typescript-config": "3.0.0-alpha.12",
-    "@zenstackhq/language": "3.0.0-alpha.12",
-    "@zenstackhq/sdk": "3.0.0-alpha.12"
+    "@zenstackhq/eslint-config": "3.0.0-alpha.14",
+    "@zenstackhq/language": "3.0.0-alpha.14",
+    "@zenstackhq/sdk": "3.0.0-alpha.14",
+    "@zenstackhq/typescript-config": "3.0.0-alpha.14",
+    "@zenstackhq/testtools": "3.0.0-alpha.14"
   },
   "scripts": {
-    "build": "tsup-node",
+    "build": "tsup-node && pnpm test:generate",
     "watch": "tsup-node --watch",
     "lint": "eslint src --ext ts",
-    "test": "vitest run && pnpm test:generate && pnpm test:typecheck",
-    "test:generate": "tsx test/typing/generate.ts",
+    "test": "vitest run && pnpm test:typecheck",
+    "test:generate": "tsx test/scripts/generate.ts",
     "test:typecheck": "tsc --project tsconfig.test.json",
     "pack": "pnpm pack"
   }