npm - arkos - Versions diffs - 1.3.1-beta → 1.3.2-beta - Mend

arkos 1.3.1-beta → 1.3.2-beta

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (256) hide show

package/dist/esm/modules/auth/auth.service.js CHANGED Viewed

@@ -1 +1,219 @@
-"use strict";import l from"jsonwebtoken";import h from"bcryptjs";import m from"../error-handler/utils/catch-async.js";import c from"../error-handler/utils/app-error.js";import{callNext as y}from"../base/base.middlewares.js";import{getArkosConfig as n}from"../../server.js";import d from"../../utils/arkos-env.js";import{getPrismaInstance as p}from"../../utils/helpers/prisma.helpers.js";import{appModules as T,getModuleComponents as P}from"../../utils/dynamic-loader.js";import{kebabCase as w}from"../../exports/utils/index.js";import{invaliAuthTokenError as g,loginRequiredError as E}from"./utils/auth-error-objects.js";import k from"./utils/services/auth-action.service.js";export class AuthService{constructor(){this.actionsPerResource={},this.authenticate=m(async(e,t,r)=>{if(!n()?.authentication){r();return}e.user=await this.getAuthenticatedUser(e),r()})}signJwtToken(e,t,r){const{authentication:s}=n();if(process.env.NODE_ENV==="production"&&!process.env.JWT_SECRET&&!s?.jwt?.secret)throw new c("Missing JWT secret on production!",500,{},"MissingJWTOnProduction");return r=r||s?.jwt?.secret||process.env.JWT_SECRET||d.JWT_SECRET,t=t||s?.jwt?.expiresIn||process.env.JWT_EXPIRES_IN||d.JWT_EXPIRES_IN,l.sign({id:e},r,{expiresIn:t})}isPasswordHashed(e){return!Number.isNaN(h.getRounds(e)*1)}async isCorrectPassword(e,t){return await h.compare(e,t)}async hashPassword(e){return await h.hash(e,12)}isPasswordStrong(e){return(n()?.authentication?.passwordValidation?.regex||/^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).+$/).test(e)}userChangedPasswordAfter(e,t){if(e.passwordChangedAt){const r=parseInt(String(e.passwordChangedAt.getTime()/1e3),10);return t<r}return!1}async verifyJwtToken(e,t){const{authentication:r}=n();if(process.env.NODE_ENV==="production"&&!process.env.JWT_SECRET&&!r?.jwt?.secret)throw new c("Missing JWT secret!",500);return t=t||r?.jwt?.secret||process.env.JWT_SECRET||d.JWT_SECRET,new Promise((s,o)=>{l.verify(e,t,(i,a)=>{i?o(i):s(a)})})}checkStaticAccessControl(e,t,r){if(!e?.role&&!e.roles)throw Error("Validation Error: In order to use static authentication user needs at least role field or roles for multiple roles.");let s=[];return Array.isArray(r)?s=r:r[t]&&(s=Array.isArray(r[t])?r[t]:r[t].roles),!!(Array.isArray(e?.roles)?e.roles:[e.role]).some(i=>s.includes(i))}async checkDynamicAccessControl(e,t,r){return!!await p().userRole.findFirst({where:{userId:e,role:{permissions:{some:{resource:r,action:t}}}},select:{id:!0}})}handleAccessControl(e,t,r){return k.add(e,t,r),m(async(s,o,i)=>{if(s.user){const a=s.user,f=n();if(a.isSuperUser){i();return}const u=new c("You do not have permission to perfom this action",403,{},"NotEnoughPermissions");if(f?.authentication?.mode==="dynamic"){if(!await this.checkDynamicAccessControl(a.id,e,t))return i(u)}else if(f?.authentication?.mode==="static"&&(!r||!this.checkStaticAccessControl(a,e,r)))return i(u)}i()})}async getAuthenticatedUser(e){if(!n()?.authentication)return null;const r=p();let s;if(e?.headers?.authorization&&e?.headers?.authorization.startsWith("Bearer")?s=e?.headers?.authorization.split(" ")[1]:e?.cookies?.arkos_access_token!=="no-token"&&e.cookies&&(s=e?.cookies?.arkos_access_token),!s)throw E;let o;try{o=await this.verifyJwtToken(s)}catch{throw g}if(!o?.id)throw g;const i=await r.user.findUnique({where:{id:String(o.id)}});if(!i)throw new c("The user belonging to this token does no longer exists",401,{},"UserNoLongerExists");if(this.userChangedPasswordAfter(i,o.iat)&&!e.path?.includes?.("logout"))throw new c("User recently changed password! Please log in again.",401,{},"PasswordChanged");return e.accessToken=s,i}handleAuthenticationControl(e,t){if(t&&typeof t=="object"){if(t[e]===!1)return y;if(t[e]===!0)return this.authenticate}else return this.authenticate;return this.authenticate}permission(e,t,r){if(new Error().stack?.includes("node_modules/express/lib/router/index.js"))throw new Error("authService.permission() should be called during application initialization level.");return k.add(e,t,r),async o=>{const i=n();if(!i?.authentication)throw Error("Validation Error: Trying to use authService.permission without setting up authentication.");if(!o)throw E;return o.isSuperUser?!0:i?.authentication?.mode==="dynamic"?await this.checkDynamicAccessControl(o?.id,e,t):i?.authentication?.mode==="static"?(!r&&T.includes(w(t))&&(r=P(w(t))?.authConfigs?.accessControl),!!r&&this.checkStaticAccessControl(o,e,r)):!1}}}const S=new AuthService;export default S;
+import jwt from "jsonwebtoken";
+import bcrypt from "bcryptjs";
+import catchAsync from "../error-handler/utils/catch-async.js";
+import AppError from "../error-handler/utils/app-error.js";
+import { callNext } from "../base/base.middlewares.js";
+import { getArkosConfig } from "../../server.js";
+import arkosEnv from "../../utils/arkos-env.js";
+import { getPrismaInstance } from "../../utils/helpers/prisma.helpers.js";
+import { appModules, getModuleComponents } from "../../utils/dynamic-loader.js";
+import { kebabCase } from "../../exports/utils/index.js";
+import { invaliAuthTokenError, loginRequiredError, } from "./utils/auth-error-objects.js";
+import authActionService from "./utils/services/auth-action.service.js";
+export class AuthService {
+    constructor() {
+        this.actionsPerResource = {};
+        this.authenticate = catchAsync(async (req, _, next) => {
+            const arkosConfig = getArkosConfig();
+            if (!arkosConfig?.authentication) {
+                next();
+                return;
+            }
+            req.user = (await this.getAuthenticatedUser(req));
+            next();
+        });
+    }
+    signJwtToken(id, expiresIn, secret) {
+        const { authentication: configs } = getArkosConfig();
+        if (process.env.NODE_ENV === "production" &&
+            !process.env.JWT_SECRET &&
+            !configs?.jwt?.secret)
+            throw new AppError("Missing JWT secret on production!", 500, {}, "MissingJWTOnProduction");
+        secret =
+            secret ||
+                configs?.jwt?.secret ||
+                process.env.JWT_SECRET ||
+                arkosEnv.JWT_SECRET;
+        expiresIn = (expiresIn ||
+            configs?.jwt?.expiresIn ||
+            process.env.JWT_EXPIRES_IN ||
+            arkosEnv.JWT_EXPIRES_IN);
+        return jwt.sign({ id }, secret, {
+            expiresIn: expiresIn,
+        });
+    }
+    isPasswordHashed(password) {
+        return !Number.isNaN(bcrypt.getRounds(password) * 1);
+    }
+    async isCorrectPassword(candidatePassword, userPassword) {
+        return await bcrypt.compare(candidatePassword, userPassword);
+    }
+    async hashPassword(password) {
+        return await bcrypt.hash(password, 12);
+    }
+    isPasswordStrong(password) {
+        const initAuthConfigs = getArkosConfig()?.authentication;
+        const strongPasswordRegex = initAuthConfigs?.passwordValidation?.regex ||
+            /^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).+$/;
+        return strongPasswordRegex.test(password);
+    }
+    userChangedPasswordAfter(user, JWTTimestamp) {
+        if (user.passwordChangedAt) {
+            const convertedTimestamp = parseInt(String(user.passwordChangedAt.getTime() / 1000), 10);
+            return JWTTimestamp < convertedTimestamp;
+        }
+        return false;
+    }
+    async verifyJwtToken(token, secret) {
+        const { authentication: configs } = getArkosConfig();
+        if (process.env.NODE_ENV === "production" &&
+            !process.env.JWT_SECRET &&
+            !configs?.jwt?.secret)
+            throw new AppError("Missing JWT secret!", 500);
+        secret =
+            secret ||
+                configs?.jwt?.secret ||
+                process.env.JWT_SECRET ||
+                arkosEnv.JWT_SECRET;
+        return new Promise((resolve, reject) => {
+            jwt.verify(token, secret, (err, decoded) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve(decoded);
+            });
+        });
+    }
+    checkStaticAccessControl(user, action, accessControl) {
+        if (!user?.role && !user.roles)
+            throw Error("Validation Error: In order to use static authentication user needs at least role field or roles for multiple roles.");
+        let authorizedRoles = [];
+        if (Array.isArray(accessControl))
+            authorizedRoles = accessControl;
+        else if (accessControl[action])
+            authorizedRoles = Array.isArray(accessControl[action])
+                ? accessControl[action]
+                : accessControl[action].roles;
+        const userRoles = Array.isArray(user?.roles) ? user.roles : [user.role];
+        return !!userRoles.some((role) => authorizedRoles.includes(role));
+    }
+    async checkDynamicAccessControl(userId, action, resource) {
+        const prisma = getPrismaInstance();
+        return !!(await prisma.userRole.findFirst({
+            where: {
+                userId,
+                role: {
+                    permissions: {
+                        some: {
+                            resource,
+                            action,
+                        },
+                    },
+                },
+            },
+            select: { id: true },
+        }));
+    }
+    handleAccessControl(action, resource, accessControl) {
+        authActionService.add(action, resource, accessControl);
+        return catchAsync(async (req, _, next) => {
+            if (req.user) {
+                const user = req.user;
+                const configs = getArkosConfig();
+                if (user.isSuperUser) {
+                    next();
+                    return;
+                }
+                const notEnoughPermissionsError = new AppError("You do not have permission to perfom this action", 403, {}, "NotEnoughPermissions");
+                if (configs?.authentication?.mode === "dynamic") {
+                    const hasPermission = await this.checkDynamicAccessControl(user.id, action, resource);
+                    if (!hasPermission)
+                        return next(notEnoughPermissionsError);
+                }
+                else if (configs?.authentication?.mode === "static") {
+                    if (!accessControl)
+                        return next(notEnoughPermissionsError);
+                    const hasPermission = this.checkStaticAccessControl(user, action, accessControl);
+                    if (!hasPermission)
+                        return next(notEnoughPermissionsError);
+                }
+            }
+            next();
+        });
+    }
+    async getAuthenticatedUser(req) {
+        const arkosConfig = getArkosConfig();
+        if (!arkosConfig?.authentication)
+            return null;
+        const prisma = getPrismaInstance();
+        let token;
+        if (req?.headers?.authorization &&
+            req?.headers?.authorization.startsWith("Bearer")) {
+            token = req?.headers?.authorization.split(" ")[1];
+        }
+        else if (req?.cookies?.arkos_access_token !== "no-token" && req.cookies) {
+            token = req?.cookies?.arkos_access_token;
+        }
+        if (!token)
+            throw loginRequiredError;
+        let decoded;
+        try {
+            decoded = await this.verifyJwtToken(token);
+        }
+        catch (err) {
+            throw invaliAuthTokenError;
+        }
+        if (!decoded?.id)
+            throw invaliAuthTokenError;
+        const user = await prisma.user.findUnique({
+            where: { id: String(decoded.id) },
+        });
+        if (!user)
+            throw new AppError("The user belonging to this token does no longer exists", 401, {}, "UserNoLongerExists");
+        if (this.userChangedPasswordAfter(user, decoded.iat) &&
+            !req.path?.includes?.("logout"))
+            throw new AppError("User recently changed password! Please log in again.", 401, {}, "PasswordChanged");
+        req.accessToken = token;
+        return user;
+    }
+    handleAuthenticationControl(action, authenticationControl) {
+        if (authenticationControl && typeof authenticationControl === "object") {
+            if (authenticationControl[action] === false)
+                return callNext;
+            else if (authenticationControl[action] === true)
+                return this.authenticate;
+        }
+        else
+            return this.authenticate;
+        return this.authenticate;
+    }
+    permission(action, resource, accessControl) {
+        const stack = new Error().stack;
+        if (stack?.includes("node_modules/express/lib/router/index.js"))
+            throw new Error("authService.permission() should be called during application initialization level.");
+        authActionService.add(action, resource, accessControl);
+        return async (user) => {
+            const configs = getArkosConfig();
+            if (!configs?.authentication)
+                throw Error("Validation Error: Trying to use authService.permission without setting up authentication.");
+            if (!user)
+                throw loginRequiredError;
+            if (user.isSuperUser)
+                return true;
+            if (configs?.authentication?.mode === "dynamic") {
+                return await this.checkDynamicAccessControl(user?.id, action, resource);
+            }
+            else if (configs?.authentication?.mode === "static") {
+                if (!accessControl && appModules.includes(kebabCase(resource)))
+                    accessControl = getModuleComponents(kebabCase(resource))?.authConfigs
+                        ?.accessControl;
+                return (!!accessControl &&
+                    this.checkStaticAccessControl(user, action, accessControl));
+            }
+            return false;
+        };
+    }
+}
+const authService = new AuthService();
+export default authService;
+//# sourceMappingURL=auth.service.js.map

package/dist/esm/modules/auth/utils/auth-error-objects.js CHANGED Viewed

@@ -1 +1,4 @@
-"use strict";import o from"../../error-handler/utils/app-error.js";export const loginRequiredError=new o("You are not logged in! please log in to get access",401,{},"LoginRequired"),invaliAuthTokenError=new o("Your auth token is invalid, please login again.",401,{},"InvalidAuthToken");
+import AppError from "../../error-handler/utils/app-error.js";
+export const loginRequiredError = new AppError("You are not logged in! please log in to get access", 401, {}, "LoginRequired");
+export const invaliAuthTokenError = new AppError("Your auth token is invalid, please login again.", 401, {}, "InvalidAuthToken");
+//# sourceMappingURL=auth-error-objects.js.map

package/dist/esm/modules/auth/utils/helpers/auth.controller.helpers.js CHANGED Viewed

@@ -1 +1,73 @@
-"use strict";import{getArkosConfig as l}from"../../../../server.js";import a from"../../../error-handler/utils/app-error.js";export const determineUsernameField=e=>{const n=l()?.authentication;if(e.query?.usernameField&&typeof e.query?.usernameField=="string"&&n?.login?.allowedUsernames?.includes?.(e.query.usernameField))return e.query.usernameField;if(e.query?.usernameField)throw new a("Invalid usernameField parameter, it is not allowed!",400);return n?.login?.allowedUsernames?.[0]||"username"},createPrismaWhereClause=(e,n)=>{if(!e)return{};const r=e.split("."),t={};if(r.length===1)return t[r[0]]=n,t;let s=t;for(let o=0;o<r.length-1;o++){const i=r[o];s[i]={},s=s[i]}return s[r[r.length-1]]=n,t},getNestedValue=(e,n)=>{if(!e||!n)return;const r=n.split("."),t=r[r.length-1];if(t in e)return e[t]};function u(e){return e.toLowerCase().replace(/years?|yr|year/g,"y").replace(/minutes?|min/g,"m").replace(/seconds?|sec|secs/g,"s").replace(/hours?|hr/g,"h").replace(/days?/g,"d").replace(/weeks?/g,"w").replace(/milliseconds?/g,"ms")}export function toMs(e){if(typeof e=="number")return e*1e3;const n=u(e.trim()),r=/^(\d+(?:\.\d+)?)(ms|s|m|h|d|w|y)$/i,t=n.match(r);if(!t)throw new Error(`Invalid time format: ${e}`);const s=parseFloat(t[1]),o=t[2].toLowerCase();return s*{ms:1,s:1e3,m:6e4,h:36e5,d:864e5,w:6048e5,y:315576e5}[o]}
+import { getArkosConfig } from "../../../../server.js";
+import AppError from "../../../error-handler/utils/app-error.js";
+export const determineUsernameField = (req) => {
+    const authConfigs = getArkosConfig()?.authentication;
+    if (req.query?.usernameField &&
+        typeof req.query?.usernameField === "string" &&
+        authConfigs?.login?.allowedUsernames?.includes?.(req.query.usernameField))
+        return req.query.usernameField;
+    else if (req.query?.usernameField)
+        throw new AppError("Invalid usernameField parameter, it is not allowed!", 400);
+    return authConfigs?.login?.allowedUsernames?.[0] || "username";
+};
+export const createPrismaWhereClause = (path, value) => {
+    if (!path)
+        return {};
+    const parts = path.split(".");
+    const whereClause = {};
+    if (parts.length === 1) {
+        whereClause[parts[0]] = value;
+        return whereClause;
+    }
+    let current = whereClause;
+    for (let i = 0; i < parts.length - 1; i++) {
+        const part = parts[i];
+        current[part] = {};
+        current = current[part];
+    }
+    current[parts[parts.length - 1]] = value;
+    return whereClause;
+};
+export const getNestedValue = (obj, path) => {
+    if (!obj || !path)
+        return undefined;
+    const properties = path.split(".");
+    const lastProperty = properties[properties.length - 1];
+    if (lastProperty in obj) {
+        return obj[lastProperty];
+    }
+    return undefined;
+};
+function normalizeDuration(input) {
+    return input
+        .toLowerCase()
+        .replace(/years?|yr|year/g, "y")
+        .replace(/minutes?|min/g, "m")
+        .replace(/seconds?|sec|secs/g, "s")
+        .replace(/hours?|hr/g, "h")
+        .replace(/days?/g, "d")
+        .replace(/weeks?/g, "w")
+        .replace(/milliseconds?/g, "ms");
+}
+export function toMs(input) {
+    if (typeof input === "number")
+        return input * 1000;
+    const normalizedInput = normalizeDuration(input.trim());
+    const regex = /^(\d+(?:\.\d+)?)(ms|s|m|h|d|w|y)$/i;
+    const match = normalizedInput.match(regex);
+    if (!match)
+        throw new Error(`Invalid time format: ${input}`);
+    const value = parseFloat(match[1]);
+    const unit = match[2].toLowerCase();
+    const multipliers = {
+        ms: 1,
+        s: 1000,
+        m: 60000,
+        h: 3600000,
+        d: 86400000,
+        w: 604800000,
+        y: 31557600000,
+    };
+    return value * multipliers[unit];
+}
+//# sourceMappingURL=auth.controller.helpers.js.map

package/dist/esm/modules/auth/utils/services/auth-action.service.js CHANGED Viewed

@@ -1 +1,90 @@
-"use strict";import{kebabCase as s}from"../../../../exports/utils/index.js";import{capitalize as o}from"../../../../utils/helpers/text.helpers.js";class a{constructor(){this.authActions=[{roles:[],action:"View",resource:"auth-action",name:"View auth action",description:"Viewm an auth action",errorMessage:"You do not have permission to perform this operation"}]}add(e,r,t){if(!this.getOne(e,r)){const i=this.transformAccessControlToValidAuthAction(e,r,t);this.authActions.push(i)}}getAll(){return this.authActions}getOne(e,r){return this.authActions.find(t=>t.action===e&&t.resource===r)}transformAccessControlToValidAuthAction(e,r,t){const i={roles:t&&(Array.isArray(t)?t:typeof t=="string"?[t]:Array.isArray(t?.[e]||{})?t[e]:t[e]?.roles)||[],action:e,resource:r,name:`${e} ${r}`,description:`${o(s(e).replace(/-/g," "))} ${o(s(r).replace(/-/g," "))}`,errorMessage:"You do not have permission to perform this operation"};if(!t||Array.isArray(t))return i;const n=t[e];if(n){if(Array.isArray(n))return i;if(typeof n=="object")return{...i,name:n.name||i.name,description:n?.description||i.description,errorMessage:n?.errorMessage||i.errorMessage}}return i}getUniqueActions(){return[...new Set(this.authActions.map(e=>e.action))]}getUniqueResources(){return[...new Set(this.authActions.map(e=>e.resource))]}getByResource(e){return this.authActions.find(r=>r.resource===e)}getByAction(e){return this.authActions.filter(r=>r.action===e)}exists(e,r){return!!this.getOne(e,r)}}const u=new a;export default u;
+import { kebabCase } from "../../../../exports/utils/index.js";
+import { capitalize } from "../../../../utils/helpers/text.helpers.js";
+class AuthActionService {
+    constructor() {
+        this.authActions = [
+            {
+                roles: [],
+                action: "View",
+                resource: "auth-action",
+                name: "View auth action",
+                description: "Viewm an auth action",
+                errorMessage: "You do not have permission to perform this operation",
+            },
+        ];
+    }
+    add(action, resource, accessControl) {
+        if (!this.getOne(action, resource)) {
+            const transformedAction = this.transformAccessControlToValidAuthAction(action, resource, accessControl);
+            this.authActions.push(transformedAction);
+        }
+    }
+    getAll() {
+        return this.authActions;
+    }
+    getOne(action, resource) {
+        return this.authActions.find((authAction) => authAction.action === action && authAction.resource === resource);
+    }
+    transformAccessControlToValidAuthAction(action, resource, accessControl) {
+        const baseAuthAction = {
+            roles: (accessControl &&
+                (Array.isArray(accessControl)
+                    ? accessControl
+                    : typeof accessControl === "string"
+                        ? [accessControl]
+                        : Array.isArray(accessControl?.[action] || {})
+                            ? accessControl[action]
+                            : accessControl[action]
+                                ?.roles)) ||
+                [],
+            action,
+            resource,
+            name: `${capitalize(kebabCase(action).replace(/-/g, " "))} ${capitalize(kebabCase(resource).replace(/-/g, " "))}`,
+            description: `${capitalize(kebabCase(action).replace(/-/g, " "))} ${capitalize(kebabCase(resource).replace(/-/g, " "))}`,
+            errorMessage: `You do not have permission to perform this operation`,
+        };
+        if (!accessControl) {
+            return baseAuthAction;
+        }
+        if (Array.isArray(accessControl)) {
+            return baseAuthAction;
+        }
+        const actionRule = accessControl[action];
+        if (actionRule) {
+            if (Array.isArray(actionRule)) {
+                return baseAuthAction;
+            }
+            else if (typeof actionRule === "object") {
+                return {
+                    ...baseAuthAction,
+                    name: actionRule.name || baseAuthAction.name,
+                    description: actionRule?.description || baseAuthAction.description,
+                    errorMessage: actionRule?.errorMessage || baseAuthAction.errorMessage,
+                };
+            }
+        }
+        return baseAuthAction;
+    }
+    getUniqueActions() {
+        return [
+            ...new Set(this.authActions.map((authAction) => authAction.action)),
+        ];
+    }
+    getUniqueResources() {
+        return [
+            ...new Set(this.authActions.map((authAction) => authAction.resource)),
+        ];
+    }
+    getByResource(resource) {
+        return this.authActions.filter((authAction) => authAction.resource === resource);
+    }
+    getByAction(action) {
+        return this.authActions.filter((authAction) => authAction.action === action);
+    }
+    exists(action, resource) {
+        return !!this.getOne(action, resource);
+    }
+}
+const authActionService = new AuthActionService();
+export default authActionService;
+//# sourceMappingURL=auth-action.service.js.map

package/dist/esm/modules/auth/utils/services/auth-action.service.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"auth-action.service.js","sourceRoot":"","sources":["../../../../../../src/modules/auth/utils/services/auth-action.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAC;AAKtD,OAAO,EAAE,UAAU,EAAE,MAAM,wCAAwC,CAAC;AAoBpE,MAAM,iBAAiB;IAAvB;QACE,gBAAW,GAAiB;YAC1B;gBACE,KAAK,EAAE,EAAE;gBACT,MAAM,EAAE,MAAM;gBACd,QAAQ,EAAE,aAAa;gBACvB,IAAI,EAAE,kBAAkB;gBACxB,WAAW,EAAE,sBAAsB;gBACnC,YAAY,EAAE,sDAAsD;aACrE;SACF,CAAC;IAyHJ,CAAC;IAvHC,GAAG,CAAC,MAAc,EAAE,QAAgB,EAAE,aAAmC;QACvE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC;YACnC,MAAM,iBAAiB,GAAG,IAAI,CAAC,uCAAuC,CACpE,MAAM,EACN,QAAQ,EACR,aAAa,CACd,CAAC;YACF,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,MAAM;QACJ,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,MAAM,CAAC,MAAc,EAAE,QAAgB;QACrC,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAC1B,CAAC,UAAU,EAAE,EAAE,CACb,UAAU,CAAC,MAAM,KAAK,MAAM,IAAI,UAAU,CAAC,QAAQ,KAAK,QAAQ,CACnE,CAAC;IACJ,CAAC;IAEO,uCAAuC,CAC7C,MAAc,EACd,QAAgB,EAChB,aAAmC;QAEnC,MAAM,cAAc,GAAe;YACjC,KAAK,EACH,CAAC,aAAa;gBACZ,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC;oBAC3B,CAAC,CAAC,aAAa;oBACf,CAAC,CAAC,OAAO,aAAa,KAAK,QAAQ;wBACjC,CAAC,CAAC,CAAC,aAAa,CAAC;wBACjB,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;4BAC5C,CAAC,CAAE,aAAa,CAAC,MAAM,CAAc;4BACrC,CAAC,CAAE,aAAa,CAAC,MAAM,CAA+B;gCAClD,EAAE,KAAK,CAAC,CAAC;gBACrB,EAAE;YACJ,MAAM;YACN,QAAQ;YACR,IAAI,EAAE,GAAG,MAAM,IAAI,QAAQ,EAAE;~~YAC7B~~,WAAW,EAAE,GAAG,UAAU,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,EAAE;YACxH,YAAY,EAAE,sDAAsD;SACrE,CAAC;QAGF,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO,cAAc,CAAC;QACxB,CAAC;QAGD,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;YACjC,OAAO,cAAc,CAAC;QACxB,CAAC;QAGD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;QAEzC,IAAI,UAAU,EAAE,CAAC;YACf,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;gBAE9B,OAAO,cAAc,CAAC;YACxB,CAAC;iBAAM,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;gBAE1C,OAAO;oBACL,GAAG,cAAc;oBACjB,IAAI,EAAE,UAAU,CAAC,IAAI,IAAI,cAAc,CAAC,IAAI;oBAC5C,WAAW,EAAE,UAAU,EAAE,WAAW,IAAI,cAAc,CAAC,WAAW;oBAClE,YAAY,EAAE,UAAU,EAAE,YAAY,IAAI,cAAc,CAAC,YAAY;iBACtE,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,cAAc,CAAC;IACxB,CAAC;IAKD,gBAAgB;QACd,OAAO;YACL,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;SACpE,CAAC;IACJ,CAAC;IAKD,kBAAkB;QAChB,OAAO;YACL,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;SACtE,CAAC;IACJ,CAAC;IAKD,aAAa,CAAC,QAAgB;QAC5B,OAAO,IAAI,CAAC,WAAW,CAAC,~~IAAI~~,~~CAC1B~~,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,QAAQ,KAAK,QAAQ,CACjD,CAAC;IACJ,CAAC;IAKD,WAAW,CAAC,MAAc;QACxB,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAC5B,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM,KAAK,MAAM,CAC7C,CAAC;IACJ,CAAC;IAKD,MAAM,CAAC,MAAc,EAAE,QAAgB;QACrC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IACzC,CAAC;CACF;AAED,MAAM,iBAAiB,GAAG,IAAI,iBAAiB,EAAE,CAAC;AAElD,eAAe,iBAAiB,CAAC","sourcesContent":["import { kebabCase } from \"../../../../exports/utils\";\nimport {\n AccessControlConfig,\n DetailedAccessControlRule,\n} from \"../../../../types/auth\";\nimport { capitalize } from \"../../../../utils/helpers/text.helpers\";\n\ninterface AuthAction {\n /** role name, e.g Admin, Manager /\n roles: string[];\n /* action name, e.g Create, View, Update, Download, Cancel /\n action: string;\n /* resource name, e.g user, user-role, product, author /\n resource: string;\n /* Human-readable name for this permission (optional) /\n name?: string;\n /* Detailed description of what this permission allows (optional) /\n description?: string;\n /* Detailed error message of what must be returned on forbidden response (optional)\n \n Note: not yet implemented\n /\n errorMessage?: string;\n}\n\nclass AuthActionService {\n authActions: AuthAction[] = [\n {\n roles: [],\n action: \"View\",\n resource: \"auth-action\",\n name: \"View auth action\",\n description: \"Viewm an auth action\",\n errorMessage: \"You do not have permission to perform this operation\",\n },\n ];\n\n add(action: string, resource: string, accessControl?: AccessControlConfig) {\n if (!this.getOne(action, resource)) {\n const transformedAction = this.transformAccessControlToValidAuthAction(\n action,\n resource,\n accessControl\n );\n this.authActions.push(transformedAction);\n }\n }\n\n getAll(): AuthAction[] {\n return this.authActions;\n }\n\n getOne(action: string, resource: string): AuthAction \| undefined {\n return this.authActions.find(\n (authAction) =>\n authAction.action === action && authAction.resource === resource\n );\n }\n\n private transformAccessControlToValidAuthAction(\n action: string,\n resource: string,\n accessControl?: AccessControlConfig\n ): AuthAction {\n const baseAuthAction: AuthAction = {\n roles:\n (accessControl &&\n (Array.isArray(accessControl)\n ? accessControl\n : typeof accessControl === \"string\"\n ? [accessControl]\n : Array.isArray(accessControl?.[action] \|\| {})\n ? (accessControl[action] as string[])\n : (accessControl[action] as DetailedAccessControlRule)\n ?.roles)) \|\|\n [],\n action,\n resource,\n name: `${action} ${resource}`,\n description: `${capitalize(kebabCase(action).replace(/-/g, \" \"))} ${capitalize(kebabCase(resource).replace(/-/g, \" \"))}`,\n errorMessage: `You do not have permission to perform this operation`,\n };\n\n // If accessControl is not provided, return the base action\n if (!accessControl) {\n return baseAuthAction;\n }\n\n // If accessControl is an array of roles, just return the base action\n if (Array.isArray(accessControl)) {\n return baseAuthAction;\n }\n\n // If accessControl is an object with specific rules\n const actionRule = accessControl[action];\n\n if (actionRule) {\n if (Array.isArray(actionRule)) {\n // If it's just an array of roles, keep the base action\n return baseAuthAction;\n } else if (typeof actionRule === \"object\") {\n // If it's a detailed rule object, use its metadata\n return {\n ...baseAuthAction,\n name: actionRule.name \|\| baseAuthAction.name,\n description: actionRule?.description \|\| baseAuthAction.description,\n errorMessage: actionRule?.errorMessage \|\| baseAuthAction.errorMessage,\n };\n }\n }\n\n return baseAuthAction;\n }\n\n /\n Get all unique actions across all auth actions\n /\n getUniqueActions(): string[] {\n return [\n ...new Set(this.authActions.map((authAction) => authAction.action)),\n ];\n }\n\n /\n Get all unique resources across all auth actions\n /\n getUniqueResources(): string[] {\n return [\n ...new Set(this.authActions.map((authAction) => authAction.resource)),\n ];\n }\n\n /\n Get all auth actions for a specific resource\n /\n getByResource(resource: string): AuthAction \| undefined {\n return this.authActions.~~find~~(\n (authAction) => authAction.resource === resource\n );\n }\n\n /\n Get all auth actions for a specific action\n /\n getByAction(action: string): AuthAction[] {\n return this.authActions.filter(\n (authAction) => authAction.action === action\n );\n }\n\n /\n Check if an auth action exists\n */\n exists(action: string, resource: string): boolean {\n return !!this.getOne(action, resource);\n }\n}\n\nconst authActionService = new AuthActionService();\n\nexport default authActionService;\n"]}
1	+ {"version":3,"file":"auth-action.service.js","sourceRoot":"","sources":["../../../../../../src/modules/auth/utils/services/auth-action.service.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,2BAA2B,CAAC;AAKtD,OAAO,EAAE,UAAU,EAAE,MAAM,wCAAwC,CAAC;AAoBpE,MAAM,iBAAiB;IAAvB;QACE,gBAAW,GAAiB;YAC1B;gBACE,KAAK,EAAE,EAAE;gBACT,MAAM,EAAE,MAAM;gBACd,QAAQ,EAAE,aAAa;gBACvB,IAAI,EAAE,kBAAkB;gBACxB,WAAW,EAAE,sBAAsB;gBACnC,YAAY,EAAE,sDAAsD;aACrE;SACF,CAAC;IAyHJ,CAAC;IAvHC,GAAG,CAAC,MAAc,EAAE,QAAgB,EAAE,aAAmC;QACvE,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,EAAE,CAAC;YACnC,MAAM,iBAAiB,GAAG,IAAI,CAAC,uCAAuC,CACpE,MAAM,EACN,QAAQ,EACR,aAAa,CACd,CAAC;YACF,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAED,MAAM;QACJ,OAAO,IAAI,CAAC,WAAW,CAAC;IAC1B,CAAC;IAED,MAAM,CAAC,MAAc,EAAE,QAAgB;QACrC,OAAO,IAAI,CAAC,WAAW,CAAC,IAAI,CAC1B,CAAC,UAAU,EAAE,EAAE,CACb,UAAU,CAAC,MAAM,KAAK,MAAM,IAAI,UAAU,CAAC,QAAQ,KAAK,QAAQ,CACnE,CAAC;IACJ,CAAC;IAEO,uCAAuC,CAC7C,MAAc,EACd,QAAgB,EAChB,aAAmC;QAEnC,MAAM,cAAc,GAAe;YACjC,KAAK,EACH,CAAC,aAAa;gBACZ,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC;oBAC3B,CAAC,CAAC,aAAa;oBACf,CAAC,CAAC,OAAO,aAAa,KAAK,QAAQ;wBACjC,CAAC,CAAC,CAAC,aAAa,CAAC;wBACjB,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,aAAa,EAAE,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;4BAC5C,CAAC,CAAE,aAAa,CAAC,MAAM,CAAc;4BACrC,CAAC,CAAE,aAAa,CAAC,MAAM,CAA+B;gCAClD,EAAE,KAAK,CAAC,CAAC;gBACrB,EAAE;YACJ,MAAM;YACN,QAAQ;YACR,IAAI,EAAE,GAAG,UAAU,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,EAAE;YACjH,WAAW,EAAE,GAAG,UAAU,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC,EAAE;YACxH,YAAY,EAAE,sDAAsD;SACrE,CAAC;QAGF,IAAI,CAAC,aAAa,EAAE,CAAC;YACnB,OAAO,cAAc,CAAC;QACxB,CAAC;QAGD,IAAI,KAAK,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;YACjC,OAAO,cAAc,CAAC;QACxB,CAAC;QAGD,MAAM,UAAU,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC;QAEzC,IAAI,UAAU,EAAE,CAAC;YACf,IAAI,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC;gBAE9B,OAAO,cAAc,CAAC;YACxB,CAAC;iBAAM,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;gBAE1C,OAAO;oBACL,GAAG,cAAc;oBACjB,IAAI,EAAE,UAAU,CAAC,IAAI,IAAI,cAAc,CAAC,IAAI;oBAC5C,WAAW,EAAE,UAAU,EAAE,WAAW,IAAI,cAAc,CAAC,WAAW;oBAClE,YAAY,EAAE,UAAU,EAAE,YAAY,IAAI,cAAc,CAAC,YAAY;iBACtE,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,cAAc,CAAC;IACxB,CAAC;IAKD,gBAAgB;QACd,OAAO;YACL,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC;SACpE,CAAC;IACJ,CAAC;IAKD,kBAAkB;QAChB,OAAO;YACL,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;SACtE,CAAC;IACJ,CAAC;IAKD,aAAa,CAAC,QAAgB;QAC5B,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAC5B,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,QAAQ,KAAK,QAAQ,CACjD,CAAC;IACJ,CAAC;IAKD,WAAW,CAAC,MAAc;QACxB,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,CAC5B,CAAC,UAAU,EAAE,EAAE,CAAC,UAAU,CAAC,MAAM,KAAK,MAAM,CAC7C,CAAC;IACJ,CAAC;IAKD,MAAM,CAAC,MAAc,EAAE,QAAgB;QACrC,OAAO,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC;IACzC,CAAC;CACF;AAED,MAAM,iBAAiB,GAAG,IAAI,iBAAiB,EAAE,CAAC;AAElD,eAAe,iBAAiB,CAAC","sourcesContent":["import { kebabCase } from \"../../../../exports/utils\";\nimport {\n AccessControlConfig,\n DetailedAccessControlRule,\n} from \"../../../../types/auth\";\nimport { capitalize } from \"../../../../utils/helpers/text.helpers\";\n\ninterface AuthAction {\n /** role name, e.g Admin, Manager /\n roles: string[];\n /* action name, e.g Create, View, Update, Download, Cancel /\n action: string;\n /* resource name, e.g user, user-role, product, author /\n resource: string;\n /* Human-readable name for this permission (optional) /\n name?: string;\n /* Detailed description of what this permission allows (optional) /\n description?: string;\n /* Detailed error message of what must be returned on forbidden response (optional)\n \n Note: not yet implemented\n /\n errorMessage?: string;\n}\n\nclass AuthActionService {\n authActions: AuthAction[] = [\n {\n roles: [],\n action: \"View\",\n resource: \"auth-action\",\n name: \"View auth action\",\n description: \"Viewm an auth action\",\n errorMessage: \"You do not have permission to perform this operation\",\n },\n ];\n\n add(action: string, resource: string, accessControl?: AccessControlConfig) {\n if (!this.getOne(action, resource)) {\n const transformedAction = this.transformAccessControlToValidAuthAction(\n action,\n resource,\n accessControl\n );\n this.authActions.push(transformedAction);\n }\n }\n\n getAll(): AuthAction[] {\n return this.authActions;\n }\n\n getOne(action: string, resource: string): AuthAction \| undefined {\n return this.authActions.find(\n (authAction) =>\n authAction.action === action && authAction.resource === resource\n );\n }\n\n private transformAccessControlToValidAuthAction(\n action: string,\n resource: string,\n accessControl?: AccessControlConfig\n ): AuthAction {\n const baseAuthAction: AuthAction = {\n roles:\n (accessControl &&\n (Array.isArray(accessControl)\n ? accessControl\n : typeof accessControl === \"string\"\n ? [accessControl]\n : Array.isArray(accessControl?.[action] \|\| {})\n ? (accessControl[action] as string[])\n : (accessControl[action] as DetailedAccessControlRule)\n ?.roles)) \|\|\n [],\n action,\n resource,\n name: `${capitalize(kebabCase(action).replace(/-/g, \" \"))} ${capitalize(kebabCase(resource).replace(/-/g, \" \"))}`,\n description: `${capitalize(kebabCase(action).replace(/-/g, \" \"))} ${capitalize(kebabCase(resource).replace(/-/g, \" \"))}`,\n errorMessage: `You do not have permission to perform this operation`,\n };\n\n // If accessControl is not provided, return the base action\n if (!accessControl) {\n return baseAuthAction;\n }\n\n // If accessControl is an array of roles, just return the base action\n if (Array.isArray(accessControl)) {\n return baseAuthAction;\n }\n\n // If accessControl is an object with specific rules\n const actionRule = accessControl[action];\n\n if (actionRule) {\n if (Array.isArray(actionRule)) {\n // If it's just an array of roles, keep the base action\n return baseAuthAction;\n } else if (typeof actionRule === \"object\") {\n // If it's a detailed rule object, use its metadata\n return {\n ...baseAuthAction,\n name: actionRule.name \|\| baseAuthAction.name,\n description: actionRule?.description \|\| baseAuthAction.description,\n errorMessage: actionRule?.errorMessage \|\| baseAuthAction.errorMessage,\n };\n }\n }\n\n return baseAuthAction;\n }\n\n /\n Get all unique actions across all auth actions\n /\n getUniqueActions(): string[] {\n return [\n ...new Set(this.authActions.map((authAction) => authAction.action)),\n ];\n }\n\n /\n Get all unique resources across all auth actions\n /\n getUniqueResources(): string[] {\n return [\n ...new Set(this.authActions.map((authAction) => authAction.resource)),\n ];\n }\n\n /\n Get all auth actions for a specific resource\n /\n getByResource(resource: string): AuthAction[] \| undefined {\n return this.authActions.filter(\n (authAction) => authAction.resource === resource\n );\n }\n\n /\n Get all auth actions for a specific action\n /\n getByAction(action: string): AuthAction[] {\n return this.authActions.filter(\n (authAction) => authAction.action === action\n );\n }\n\n /\n Check if an auth action exists\n */\n exists(action: string, resource: string): boolean {\n return !!this.getOne(action, resource);\n }\n}\n\nconst authActionService = new AuthActionService();\n\nexport default authActionService;\n"]}

package/dist/esm/modules/base/base.controller.js CHANGED Viewed

@@ -1 +1,165 @@
-"use strict";import i from"../error-handler/utils/catch-async.js";import l from"../../utils/features/api.features.js";import{BaseService as f}from"./base.service.js";import o from"../error-handler/utils/app-error.js";import{kebabCase as h,pascalCase as u}from"../../utils/helpers/change-case.helpers.js";import{getModuleComponents as y}from"../../utils/dynamic-loader.js";import w from"pluralize";import k from"../../utils/sheu.js";import O from"../../utils/prisma/prisma-schema-parser.js";export class BaseController{constructor(c){this.createOne=i(async(e,a,s)=>{const t=await this.service.createOne(e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(this.interceptors.afterCreateOne)return e.responseData={data:t},e.responseStatus=201,s();a.status(201).json({data:t})}),this.createMany=i(async(e,a,s)=>{const t=await this.service.createMany(e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return s(new o("Failed to create the resources. Please check your input.",400,{},"MissingRequestBody"));if(this.interceptors.afterCreateMany)return e.responseData={data:t},e.responseStatus=201,s();a.status(201).json({data:t})}),this.findMany=i(async(e,a,s)=>{const{filters:{where:t,...r}}=new l(e,this.modelName).filter().sort().limitFields().paginate(),[n,d]=await Promise.all([this.service.findMany(t,r,{user:e?.user,accessToken:e?.accessToken}),this.service.count(t,{user:e?.user,accessToken:e?.accessToken})]);if(this.interceptors.afterFindMany)return e.responseData={total:d,results:n.length,data:n},e.responseStatus=200,s();a.status(200).json({total:d,results:n.length,data:n})}),this.findOne=i(async(e,a,s)=>{const t=await this.service.findOne(e.params,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params&&e.params.id!=="me"?s(new o(`${u(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new o(`${u(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterFindOne)return e.responseData={data:t},e.responseStatus=200,s();a.status(200).json({data:t})}),this.updateOne=i(async(e,a,s)=>{const t=await this.service.updateOne(e.params,e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params?s(new o(`${u(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new o(`${u(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterUpdateOne)return e.responseData={data:t},e.responseStatus=200,s();a.status(200).json({data:t})}),this.updateMany=i(async(e,a,s)=>{if(!Object.keys(e.query).some(d=>d!=="prismaQueryOptions"))return s(new o("Filter criteria not provided for bulk update.",400,{},"MissingRequestQueryParameters"));e.query.filterMode=e.query?.filterMode||"AND";const{filters:{where:t,...r}}=new l(e,this.modelName).filter().sort();delete r.include;const n=await this.service.updateMany(t,e.body,r,{user:e?.user,accessToken:e?.accessToken});if(!n||n.count===0)return s(new o(`${w(u(String(this.modelName)))} not found`,404));if(this.interceptors.afterUpdateMany)return e.responseData={results:n.count,data:n},e.responseStatus=200,s();a.status(200).json({results:n.count,data:n})}),this.deleteOne=i(async(e,a,s)=>{const t=await this.service.deleteOne(e.params,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params?s(new o(`${u(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new o(`${u(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterDeleteOne)return e.additionalData={data:t},e.responseStatus=204,s();a.status(204).send()}),this.deleteMany=i(async(e,a,s)=>{if(!Object.keys(e.query).some(n=>n!=="prismaQueryOptions"))return s(new o("Filter criteria not provided for bulk deletion.",400,{},"MissingRequestQueryParameters"));e.query.filterMode=e.query?.filterMode||"AND";const{filters:{where:t}}=new l(e,this.modelName).filter().sort(),r=await this.service.deleteMany(t,{user:e?.user,accessToken:e?.accessToken});if(!r||r.count===0)return s(new o("No records found to delete",404,{},"NotFound"));if(this.interceptors.afterDeleteMany)return e.responseData={results:r.count,data:r},e.responseStatus=200,s();a.status(200).json({results:r.count,data:r})});const p=y(c);this.modelName=c,this.service=new f(c),this.interceptors=p?.interceptors||{}}}export const getAvailableResources=i(async(m,c)=>{k.warn("This route `/api/available-routes` will be deprecated from 1.4.0-beta, consider using /api/auth-actions instead."),c.status(200).json({data:[...O.getModelsAsArrayOfStrings().map(p=>h(p)),"file-upload"]})});
+import catchAsync from "../error-handler/utils/catch-async.js";
+import APIFeatures from "../../utils/features/api.features.js";
+import { BaseService } from "./base.service.js";
+import AppError from "../error-handler/utils/app-error.js";
+import { kebabCase, pascalCase } from "../../utils/helpers/change-case.helpers.js";
+import { getModuleComponents } from "../../utils/dynamic-loader.js";
+import pluralize from "pluralize";
+import sheu from "../../utils/sheu.js";
+import prismaSchemaParser from "../../utils/prisma/prisma-schema-parser.js";
+export class BaseController {
+    constructor(modelName) {
+        this.createOne = catchAsync(async (req, res, next) => {
+            const data = await this.service.createOne(req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (this.interceptors.afterCreateOne) {
+                req.responseData = { data };
+                req.responseStatus = 201;
+                return next();
+            }
+            res.status(201).json({ data });
+        });
+        this.createMany = catchAsync(async (req, res, next) => {
+            const data = await this.service.createMany(req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data)
+                return next(new AppError("Failed to create the resources. Please check your input.", 400, {}, "MissingRequestBody"));
+            if (this.interceptors.afterCreateMany) {
+                req.responseData = { data };
+                req.responseStatus = 201;
+                return next();
+            }
+            res.status(201).json({ data });
+        });
+        this.findMany = catchAsync(async (req, res, next) => {
+            const { filters: { where, ...queryOptions }, } = new APIFeatures(req, this.modelName)
+                .filter()
+                .sort()
+                .limitFields()
+                .paginate();
+            const [data, total] = (await Promise.all([
+                this.service.findMany(where, queryOptions, {
+                    user: req?.user,
+                    accessToken: req?.accessToken,
+                }),
+                this.service.count(where, {
+                    user: req?.user,
+                    accessToken: req?.accessToken,
+                }),
+            ]));
+            if (this.interceptors.afterFindMany) {
+                req.responseData = { total, results: data.length, data };
+                req.responseStatus = 200;
+                return next();
+            }
+            res.status(200).json({ total, results: data.length, data });
+        });
+        this.findOne = catchAsync(async (req, res, next) => {
+            const data = await this.service.findOne(req.params, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 &&
+                    "id" in req.params &&
+                    req.params.id !== "me") {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterFindOne) {
+                req.responseData = { data };
+                req.responseStatus = 200;
+                return next();
+            }
+            res.status(200).json({ data });
+        });
+        this.updateOne = catchAsync(async (req, res, next) => {
+            const data = await this.service.updateOne(req.params, req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 && "id" in req.params) {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterUpdateOne) {
+                req.responseData = { data };
+                req.responseStatus = 200;
+                return next();
+            }
+            res.status(200).json({ data });
+        });
+        this.updateMany = catchAsync(async (req, res, next) => {
+            if (!Object.keys(req.query).some((key) => key !== "prismaQueryOptions")) {
+                return next(new AppError("Filter criteria not provided for bulk update.", 400, {}, "MissingRequestQueryParameters"));
+            }
+            req.query.filterMode = req.query?.filterMode || "AND";
+            const { filters: { where, ...queryOptions }, } = new APIFeatures(req, this.modelName).filter().sort();
+            delete queryOptions.include;
+            const data = (await this.service.updateMany(where, req.body, queryOptions, { user: req?.user, accessToken: req?.accessToken }));
+            if (!data || data.count === 0)
+                return next(new AppError(`${pluralize(pascalCase(String(this.modelName)))} not found`, 404));
+            if (this.interceptors.afterUpdateMany) {
+                req.responseData = { results: data.count, data };
+                req.responseStatus = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.count, data });
+        });
+        this.deleteOne = catchAsync(async (req, res, next) => {
+            const data = await this.service.deleteOne(req.params, {
+                user: req?.user,
+                accessToken: req?.accessToken,
+            });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 && "id" in req.params) {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new AppError(`${pascalCase(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterDeleteOne) {
+                req.additionalData = { data };
+                req.responseStatus = 204;
+                return next();
+            }
+            res.status(204).send();
+        });
+        this.deleteMany = catchAsync(async (req, res, next) => {
+            if (!Object.keys(req.query).some((key) => key !== "prismaQueryOptions")) {
+                return next(new AppError("Filter criteria not provided for bulk deletion.", 400, {}, "MissingRequestQueryParameters"));
+            }
+            req.query.filterMode = req.query?.filterMode || "AND";
+            const { filters: { where }, } = new APIFeatures(req, this.modelName).filter().sort();
+            const data = await this.service.deleteMany(where, {
+                user: req?.user,
+                accessToken: req?.accessToken,
+            });
+            if (!data || data.count === 0) {
+                return next(new AppError(`No records found to delete`, 404, {}, "NotFound"));
+            }
+            if (this.interceptors.afterDeleteMany) {
+                req.responseData = { results: data.count, data };
+                req.responseStatus = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.count, data });
+        });
+        const components = getModuleComponents(modelName);
+        this.modelName = modelName;
+        this.service = new BaseService(modelName);
+        this.interceptors = components?.interceptors || {};
+    }
+}
+export const getAvailableResources = catchAsync(async (_, res) => {
+    sheu.warn("This route `/api/available-routes` will be deprecated from 1.4.0-beta, consider using /api/auth-actions instead.");
+    res.status(200).json({
+        data: [
+            ...prismaSchemaParser
+                .getModelsAsArrayOfStrings()
+                .map((model) => kebabCase(model)),
+            "file-upload",
+        ],
+    });
+});
+//# sourceMappingURL=base.controller.js.map