@zenstackhq/runtime 3.0.0-beta.5 → 3.0.0-beta.6

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@zenstackhq/runtime",
-  "version": "3.0.0-beta.5",
+  "version": "3.0.0-beta.6",
   "description": "ZenStack Runtime",
   "type": "module",
   "keywords": [],
@@ -65,7 +65,7 @@
     "ulid": "^3.0.0",
     "uuid": "^11.0.5",
     "zod-validation-error": "^4.0.1",
-    "@zenstackhq/common-helpers": "3.0.0-beta.5"
+    "@zenstackhq/common-helpers": "3.0.0-beta.6"
   },
   "peerDependencies": {
     "better-sqlite3": "^12.2.0",
@@ -87,12 +87,12 @@
     "@types/toposort": "^2.0.7",
     "tsx": "^4.19.2",
     "zod": "~3.25.0",
-    "@zenstackhq/eslint-config": "3.0.0-beta.5",
-    "@zenstackhq/language": "3.0.0-beta.5",
-    "@zenstackhq/testtools": "3.0.0-beta.5",
-    "@zenstackhq/sdk": "3.0.0-beta.5",
-    "@zenstackhq/vitest-config": "3.0.0-beta.5",
-    "@zenstackhq/typescript-config": "3.0.0-beta.5"
+    "@zenstackhq/eslint-config": "3.0.0-beta.6",
+    "@zenstackhq/sdk": "3.0.0-beta.6",
+    "@zenstackhq/language": "3.0.0-beta.6",
+    "@zenstackhq/testtools": "3.0.0-beta.6",
+    "@zenstackhq/vitest-config": "3.0.0-beta.6",
+    "@zenstackhq/typescript-config": "3.0.0-beta.6"
   },
   "scripts": {
     "build": "tsc --project tsconfig.build.json --noEmit && tsup-node && pnpm test:generate",

package/dist/plugins/policy/plugin.zmodel

@@ -1,43 +0,0 @@
-/**
- * Defines an access policy that allows a set of operations when the given condition is true.
- *
- * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
- * @param condition: a boolean expression that controls if the operation should be allowed.
- */
-attribute @@allow(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)
-
-/**
- * Defines an access policy that allows the annotated field to be read or updated.
- * You can pass a third argument as `true` to make it override the model-level policies.
- *
- * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
- * @param condition: a boolean expression that controls if the operation should be allowed.
- * @param override: a boolean value that controls if the field-level policy should override the model-level policy.
- */
-attribute @allow(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean, _ override: Boolean?)
-
-/**
- * Defines an access policy that denies a set of operations when the given condition is true.
- *
- * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
- * @param condition: a boolean expression that controls if the operation should be denied.
- */
-attribute @@deny(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)
-
-/**
- * Defines an access policy that denies the annotated field to be read or updated.
- *
- * @param operation: comma-separated list of "create", "read", "update", "delete". Use "all" to denote all operations.
- * @param condition: a boolean expression that controls if the operation should be denied.
- */
-attribute @deny(_ operation: String @@@completionHint(["'create'", "'read'", "'update'", "'delete'", "'all'"]), _ condition: Boolean)
-
-/**
- * Checks if the current user can perform the given operation on the given field.
- *
- * @param field: The field to check access for
- * @param operation: The operation to check access for. Can be "read", "create", "update", or "delete". If the operation is not provided,
- * it defaults the operation of the containing policy rule.
- */
-function check(field: Any, operation: String?): Boolean {
-} @@@expressionContext([AccessPolicy])