npm - arkos - Versions diffs - 1.3.2-canary.3 → 1.3.3-beta - Mend

arkos 1.3.2-canary.3 → 1.3.3-beta

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (301) hide show

package/dist/cjs/modules/auth/auth.service.js CHANGED Viewed

@@ -1 +1,226 @@
-"use strict";var __importDefault=this&&this.__importDefault||function(a){return a&&a.__esModule?a:{default:a}};Object.defineProperty(exports,"__esModule",{value:!0}),exports.AuthService=void 0;const jsonwebtoken_1=__importDefault(require("jsonwebtoken")),bcryptjs_1=__importDefault(require("bcryptjs")),catch_async_1=__importDefault(require("../error-handler/utils/catch-async")),app_error_1=__importDefault(require("../error-handler/utils/app-error")),base_middlewares_1=require("../base/base.middlewares"),server_1=require("../../server"),arkos_env_1=__importDefault(require("../../utils/arkos-env")),prisma_helpers_1=require("../../utils/helpers/prisma.helpers"),dynamic_loader_1=require("../../utils/dynamic-loader"),utils_1=require("../../exports/utils"),auth_error_objects_1=require("./utils/auth-error-objects"),auth_action_service_1=__importDefault(require("./utils/services/auth-action.service"));class AuthService{constructor(){this.actionsPerResource={},this.authenticate=(0,catch_async_1.default)(async(e,t,r)=>{if(!(0,server_1.getArkosConfig)()?.authentication){r();return}e.user=await this.getAuthenticatedUser(e),r()})}signJwtToken(e,t,r){const{authentication:s}=(0,server_1.getArkosConfig)();if(process.env.NODE_ENV==="production"&&!process.env.JWT_SECRET&&!s?.jwt?.secret)throw new app_error_1.default("Missing JWT secret on production!",500,{},"MissingJWTOnProduction");return r=r||s?.jwt?.secret||process.env.JWT_SECRET||arkos_env_1.default.JWT_SECRET,t=t||s?.jwt?.expiresIn||process.env.JWT_EXPIRES_IN||arkos_env_1.default.JWT_EXPIRES_IN,jsonwebtoken_1.default.sign({id:e},r,{expiresIn:t})}isPasswordHashed(e){return!Number.isNaN(bcryptjs_1.default.getRounds(e)*1)}async isCorrectPassword(e,t){return await bcryptjs_1.default.compare(e,t)}async hashPassword(e){return await bcryptjs_1.default.hash(e,12)}isPasswordStrong(e){return((0,server_1.getArkosConfig)()?.authentication?.passwordValidation?.regex||/^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).+$/).test(e)}userChangedPasswordAfter(e,t){if(e.passwordChangedAt){const r=parseInt(String(e.passwordChangedAt.getTime()/1e3),10);return t<r}return!1}async verifyJwtToken(e,t){const{authentication:r}=(0,server_1.getArkosConfig)();if(process.env.NODE_ENV==="production"&&!process.env.JWT_SECRET&&!r?.jwt?.secret)throw new app_error_1.default("Missing JWT secret!",500);return t=t||r?.jwt?.secret||process.env.JWT_SECRET||arkos_env_1.default.JWT_SECRET,new Promise((s,o)=>{jsonwebtoken_1.default.verify(e,t,(i,n)=>{i?o(i):s(n)})})}checkStaticAccessControl(e,t,r){if(!e?.role&&!e.roles)throw Error("Validation Error: In order to use static authentication user needs at least role field or roles for multiple roles.");let s=[];return Array.isArray(r)?s=r:r[t]&&(s=Array.isArray(r[t])?r[t]:r[t].roles),!!(Array.isArray(e?.roles)?e.roles:[e.role]).some(i=>s.includes(i))}async checkDynamicAccessControl(e,t,r){return!!await(0,prisma_helpers_1.getPrismaInstance)().userRole.findFirst({where:{userId:e,role:{permissions:{some:{resource:r,action:t}}}},select:{id:!0}})}handleAccessControl(e,t,r){return auth_action_service_1.default.add(e,t,r),(0,catch_async_1.default)(async(s,o,i)=>{if(s.user){const n=s.user,c=(0,server_1.getArkosConfig)();if(n.isSuperUser){i();return}const u=new app_error_1.default("You do not have permission to perfom this action",403,{},"NotEnoughPermissions");if(c?.authentication?.mode==="dynamic"){if(!await this.checkDynamicAccessControl(n.id,e,t))return i(u)}else if(c?.authentication?.mode==="static"&&(!r||!this.checkStaticAccessControl(n,e,r)))return i(u)}i()})}async getAuthenticatedUser(e){if(!(0,server_1.getArkosConfig)()?.authentication)return null;const r=(0,prisma_helpers_1.getPrismaInstance)();let s;if(e?.headers?.authorization&&e?.headers?.authorization.startsWith("Bearer")?s=e?.headers?.authorization.split(" ")[1]:e?.cookies?.arkos_access_token!=="no-token"&&e.cookies&&(s=e?.cookies?.arkos_access_token),!s)throw auth_error_objects_1.loginRequiredError;let o;try{o=await this.verifyJwtToken(s)}catch{throw auth_error_objects_1.invaliAuthTokenError}if(!o?.id)throw auth_error_objects_1.invaliAuthTokenError;const i=await r.user.findUnique({where:{id:String(o.id)}});if(!i)throw new app_error_1.default("The user belonging to this token does no longer exists",401,{},"UserNoLongerExists");if(this.userChangedPasswordAfter(i,o.iat)&&!e.path?.includes?.("logout"))throw new app_error_1.default("User recently changed password! Please log in again.",401,{},"PasswordChanged");return e.accessToken=s,i}handleAuthenticationControl(e,t){if(t&&typeof t=="object"){if(t[e]===!1)return base_middlewares_1.callNext;if(t[e]===!0)return this.authenticate}else return this.authenticate;return this.authenticate}permission(e,t,r){if(new Error().stack?.includes("node_modules/express/lib/router/index.js"))throw new Error("authService.permission() should be called during application initialization level.");return auth_action_service_1.default.add(e,t,r),async o=>{const i=(0,server_1.getArkosConfig)();if(!i?.authentication)throw Error("Validation Error: Trying to use authService.permission without setting up authentication.");if(!o)throw auth_error_objects_1.loginRequiredError;return o.isSuperUser?!0:i?.authentication?.mode==="dynamic"?await this.checkDynamicAccessControl(o?.id,e,t):i?.authentication?.mode==="static"?(!r&&dynamic_loader_1.appModules.includes((0,utils_1.kebabCase)(t))&&(r=(0,dynamic_loader_1.getModuleComponents)((0,utils_1.kebabCase)(t))?.authConfigs?.accessControl),!!r&&this.checkStaticAccessControl(o,e,r)):!1}}}exports.AuthService=AuthService;const authService=new AuthService;exports.default=authService;
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AuthService = void 0;
+const jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
+const bcryptjs_1 = __importDefault(require("bcryptjs"));
+const catch_async_1 = __importDefault(require("../error-handler/utils/catch-async"));
+const app_error_1 = __importDefault(require("../error-handler/utils/app-error"));
+const base_middlewares_1 = require("../base/base.middlewares");
+const server_1 = require("../../server");
+const arkos_env_1 = __importDefault(require("../../utils/arkos-env"));
+const prisma_helpers_1 = require("../../utils/helpers/prisma.helpers");
+const dynamic_loader_1 = require("../../utils/dynamic-loader");
+const utils_1 = require("../../exports/utils");
+const auth_error_objects_1 = require("./utils/auth-error-objects");
+const auth_action_service_1 = __importDefault(require("./utils/services/auth-action.service"));
+class AuthService {
+    constructor() {
+        this.actionsPerResource = {};
+        this.authenticate = (0, catch_async_1.default)(async (req, _, next) => {
+            const arkosConfig = (0, server_1.getArkosConfig)();
+            if (!arkosConfig?.authentication) {
+                next();
+                return;
+            }
+            req.user = (await this.getAuthenticatedUser(req));
+            next();
+        });
+    }
+    signJwtToken(id, expiresIn, secret) {
+        const { authentication: configs } = (0, server_1.getArkosConfig)();
+        if (process.env.NODE_ENV === "production" &&
+            !process.env.JWT_SECRET &&
+            !configs?.jwt?.secret)
+            throw new app_error_1.default("Missing JWT secret on production!", 500, {}, "MissingJWTOnProduction");
+        secret =
+            secret ||
+                configs?.jwt?.secret ||
+                process.env.JWT_SECRET ||
+                arkos_env_1.default.JWT_SECRET;
+        expiresIn = (expiresIn ||
+            configs?.jwt?.expiresIn ||
+            process.env.JWT_EXPIRES_IN ||
+            arkos_env_1.default.JWT_EXPIRES_IN);
+        return jsonwebtoken_1.default.sign({ id }, secret, {
+            expiresIn: expiresIn,
+        });
+    }
+    isPasswordHashed(password) {
+        return !Number.isNaN(bcryptjs_1.default.getRounds(password) * 1);
+    }
+    async isCorrectPassword(candidatePassword, userPassword) {
+        return await bcryptjs_1.default.compare(candidatePassword, userPassword);
+    }
+    async hashPassword(password) {
+        return await bcryptjs_1.default.hash(password, 12);
+    }
+    isPasswordStrong(password) {
+        const initAuthConfigs = (0, server_1.getArkosConfig)()?.authentication;
+        const strongPasswordRegex = initAuthConfigs?.passwordValidation?.regex ||
+            /^(?=.*[A-Z])(?=.*[a-z])(?=.*\d).+$/;
+        return strongPasswordRegex.test(password);
+    }
+    userChangedPasswordAfter(user, JWTTimestamp) {
+        if (user.passwordChangedAt) {
+            const convertedTimestamp = parseInt(String(user.passwordChangedAt.getTime() / 1000), 10);
+            return JWTTimestamp < convertedTimestamp;
+        }
+        return false;
+    }
+    async verifyJwtToken(token, secret) {
+        const { authentication: configs } = (0, server_1.getArkosConfig)();
+        if (process.env.NODE_ENV === "production" &&
+            !process.env.JWT_SECRET &&
+            !configs?.jwt?.secret)
+            throw new app_error_1.default("Missing JWT secret!", 500);
+        secret =
+            secret ||
+                configs?.jwt?.secret ||
+                process.env.JWT_SECRET ||
+                arkos_env_1.default.JWT_SECRET;
+        return new Promise((resolve, reject) => {
+            jsonwebtoken_1.default.verify(token, secret, (err, decoded) => {
+                if (err)
+                    reject(err);
+                else
+                    resolve(decoded);
+            });
+        });
+    }
+    checkStaticAccessControl(user, action, accessControl) {
+        if (!user?.role && !user.roles)
+            throw Error("Validation Error: In order to use static authentication user needs at least role field or roles for multiple roles.");
+        let authorizedRoles = [];
+        if (Array.isArray(accessControl))
+            authorizedRoles = accessControl;
+        else if (accessControl[action])
+            authorizedRoles = Array.isArray(accessControl[action])
+                ? accessControl[action]
+                : accessControl[action].roles;
+        const userRoles = Array.isArray(user?.roles) ? user.roles : [user.role];
+        return !!userRoles.some((role) => authorizedRoles.includes(role));
+    }
+    async checkDynamicAccessControl(userId, action, resource) {
+        const prisma = (0, prisma_helpers_1.getPrismaInstance)();
+        return !!(await prisma.userRole.findFirst({
+            where: {
+                userId,
+                role: {
+                    permissions: {
+                        some: {
+                            resource,
+                            action,
+                        },
+                    },
+                },
+            },
+            select: { id: true },
+        }));
+    }
+    handleAccessControl(action, resource, accessControl) {
+        auth_action_service_1.default.add(action, resource, accessControl);
+        return (0, catch_async_1.default)(async (req, _, next) => {
+            if (req.user) {
+                const user = req.user;
+                const configs = (0, server_1.getArkosConfig)();
+                if (user.isSuperUser) {
+                    next();
+                    return;
+                }
+                const notEnoughPermissionsError = new app_error_1.default("You do not have permission to perfom this action", 403, {}, "NotEnoughPermissions");
+                if (configs?.authentication?.mode === "dynamic") {
+                    const hasPermission = await this.checkDynamicAccessControl(user.id, action, resource);
+                    if (!hasPermission)
+                        return next(notEnoughPermissionsError);
+                }
+                else if (configs?.authentication?.mode === "static") {
+                    if (!accessControl)
+                        return next(notEnoughPermissionsError);
+                    const hasPermission = this.checkStaticAccessControl(user, action, accessControl);
+                    if (!hasPermission)
+                        return next(notEnoughPermissionsError);
+                }
+            }
+            next();
+        });
+    }
+    async getAuthenticatedUser(req) {
+        const arkosConfig = (0, server_1.getArkosConfig)();
+        if (!arkosConfig?.authentication)
+            return null;
+        const prisma = (0, prisma_helpers_1.getPrismaInstance)();
+        let token;
+        if (req?.headers?.authorization &&
+            req?.headers?.authorization.startsWith("Bearer")) {
+            token = req?.headers?.authorization.split(" ")[1];
+        }
+        else if (req?.cookies?.arkos_access_token !== "no-token" && req.cookies) {
+            token = req?.cookies?.arkos_access_token;
+        }
+        if (!token)
+            throw auth_error_objects_1.loginRequiredError;
+        let decoded;
+        try {
+            decoded = await this.verifyJwtToken(token);
+        }
+        catch (err) {
+            throw auth_error_objects_1.invaliAuthTokenError;
+        }
+        if (!decoded?.id)
+            throw auth_error_objects_1.invaliAuthTokenError;
+        const user = await prisma.user.findUnique({
+            where: { id: String(decoded.id) },
+        });
+        if (!user)
+            throw new app_error_1.default("The user belonging to this token does no longer exists", 401, {}, "UserNoLongerExists");
+        if (this.userChangedPasswordAfter(user, decoded.iat) &&
+            !req.path?.includes?.("logout"))
+            throw new app_error_1.default("User recently changed password! Please log in again.", 401, {}, "PasswordChanged");
+        req.accessToken = token;
+        return user;
+    }
+    handleAuthenticationControl(action, authenticationControl) {
+        if (authenticationControl && typeof authenticationControl === "object") {
+            if (authenticationControl[action] === false)
+                return base_middlewares_1.callNext;
+            else if (authenticationControl[action] === true)
+                return this.authenticate;
+        }
+        else
+            return this.authenticate;
+        return this.authenticate;
+    }
+    permission(action, resource, accessControl) {
+        const stack = new Error().stack;
+        if (stack?.includes("node_modules/express/lib/router/index.js"))
+            throw new Error("authService.permission() should be called during application initialization level.");
+        auth_action_service_1.default.add(action, resource, accessControl);
+        return async (user) => {
+            const configs = (0, server_1.getArkosConfig)();
+            if (!configs?.authentication)
+                throw Error("Validation Error: Trying to use authService.permission without setting up authentication.");
+            if (!user)
+                throw auth_error_objects_1.loginRequiredError;
+            if (user.isSuperUser)
+                return true;
+            if (configs?.authentication?.mode === "dynamic") {
+                return await this.checkDynamicAccessControl(user?.id, action, resource);
+            }
+            else if (configs?.authentication?.mode === "static") {
+                if (!accessControl && dynamic_loader_1.appModules.includes((0, utils_1.kebabCase)(resource)))
+                    accessControl = (0, dynamic_loader_1.getModuleComponents)((0, utils_1.kebabCase)(resource))?.authConfigs
+                        ?.accessControl;
+                return (!!accessControl &&
+                    this.checkStaticAccessControl(user, action, accessControl));
+            }
+            return false;
+        };
+    }
+}
+exports.AuthService = AuthService;
+const authService = new AuthService();
+exports.default = authService;
+//# sourceMappingURL=auth.service.js.map

package/dist/cjs/modules/auth/utils/auth-error-objects.js CHANGED Viewed

@@ -1 +1,10 @@
-"use strict";var __importDefault=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(exports,"__esModule",{value:!0}),exports.invaliAuthTokenError=exports.loginRequiredError=void 0;const app_error_1=__importDefault(require("../../error-handler/utils/app-error"));exports.loginRequiredError=new app_error_1.default("You are not logged in! please log in to get access",401,{},"LoginRequired"),exports.invaliAuthTokenError=new app_error_1.default("Your auth token is invalid, please login again.",401,{},"InvalidAuthToken");
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.invaliAuthTokenError = exports.loginRequiredError = void 0;
+const app_error_1 = __importDefault(require("../../error-handler/utils/app-error"));
+exports.loginRequiredError = new app_error_1.default("You are not logged in! please log in to get access", 401, {}, "LoginRequired");
+exports.invaliAuthTokenError = new app_error_1.default("Your auth token is invalid, please login again.", 401, {}, "InvalidAuthToken");
+//# sourceMappingURL=auth-error-objects.js.map

package/dist/cjs/modules/auth/utils/helpers/auth.controller.helpers.js CHANGED Viewed

@@ -1 +1,83 @@
-"use strict";var __importDefault=this&&this.__importDefault||function(e){return e&&e.__esModule?e:{default:e}};Object.defineProperty(exports,"__esModule",{value:!0}),exports.getNestedValue=exports.createPrismaWhereClause=exports.determineUsernameField=void 0,exports.toMs=toMs;const server_1=require("../../../../server"),app_error_1=__importDefault(require("../../../error-handler/utils/app-error")),determineUsernameField=e=>{const s=(0,server_1.getArkosConfig)()?.authentication;if(e.query?.usernameField&&typeof e.query?.usernameField=="string"&&s?.login?.allowedUsernames?.includes?.(e.query.usernameField))return e.query.usernameField;if(e.query?.usernameField)throw new app_error_1.default("Invalid usernameField parameter, it is not allowed!",400);return s?.login?.allowedUsernames?.[0]||"username"};exports.determineUsernameField=determineUsernameField;const createPrismaWhereClause=(e,s)=>{if(!e)return{};const r=e.split("."),t={};if(r.length===1)return t[r[0]]=s,t;let n=t;for(let i=0;i<r.length-1;i++){const a=r[i];n[a]={},n=n[a]}return n[r[r.length-1]]=s,t};exports.createPrismaWhereClause=createPrismaWhereClause;const getNestedValue=(e,s)=>{if(!e||!s)return;const r=s.split("."),t=r[r.length-1];if(t in e)return e[t]};exports.getNestedValue=getNestedValue;function normalizeDuration(e){return e.toLowerCase().replace(/years?|yr|year/g,"y").replace(/minutes?|min/g,"m").replace(/seconds?|sec|secs/g,"s").replace(/hours?|hr/g,"h").replace(/days?/g,"d").replace(/weeks?/g,"w").replace(/milliseconds?/g,"ms")}function toMs(e){if(typeof e=="number")return e*1e3;const s=normalizeDuration(e.trim()),r=/^(\d+(?:\.\d+)?)(ms|s|m|h|d|w|y)$/i,t=s.match(r);if(!t)throw new Error(`Invalid time format: ${e}`);const n=parseFloat(t[1]),i=t[2].toLowerCase();return n*{ms:1,s:1e3,m:6e4,h:36e5,d:864e5,w:6048e5,y:315576e5}[i]}
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getNestedValue = exports.createPrismaWhereClause = exports.determineUsernameField = void 0;
+exports.toMs = toMs;
+const server_1 = require("../../../../server");
+const app_error_1 = __importDefault(require("../../../error-handler/utils/app-error"));
+const determineUsernameField = (req) => {
+    const authConfigs = (0, server_1.getArkosConfig)()?.authentication;
+    if (req.query?.usernameField &&
+        typeof req.query?.usernameField === "string" &&
+        authConfigs?.login?.allowedUsernames?.includes?.(req.query.usernameField))
+        return req.query.usernameField;
+    else if (req.query?.usernameField)
+        throw new app_error_1.default("Invalid usernameField parameter, it is not allowed!", 400);
+    return authConfigs?.login?.allowedUsernames?.[0] || "username";
+};
+exports.determineUsernameField = determineUsernameField;
+const createPrismaWhereClause = (path, value) => {
+    if (!path)
+        return {};
+    const parts = path.split(".");
+    const whereClause = {};
+    if (parts.length === 1) {
+        whereClause[parts[0]] = value;
+        return whereClause;
+    }
+    let current = whereClause;
+    for (let i = 0; i < parts.length - 1; i++) {
+        const part = parts[i];
+        current[part] = {};
+        current = current[part];
+    }
+    current[parts[parts.length - 1]] = value;
+    return whereClause;
+};
+exports.createPrismaWhereClause = createPrismaWhereClause;
+const getNestedValue = (obj, path) => {
+    if (!obj || !path)
+        return undefined;
+    const properties = path.split(".");
+    const lastProperty = properties[properties.length - 1];
+    if (lastProperty in obj) {
+        return obj[lastProperty];
+    }
+    return undefined;
+};
+exports.getNestedValue = getNestedValue;
+function normalizeDuration(input) {
+    return input
+        .toLowerCase()
+        .replace(/years?|yr|year/g, "y")
+        .replace(/minutes?|min/g, "m")
+        .replace(/seconds?|sec|secs/g, "s")
+        .replace(/hours?|hr/g, "h")
+        .replace(/days?/g, "d")
+        .replace(/weeks?/g, "w")
+        .replace(/milliseconds?/g, "ms");
+}
+function toMs(input) {
+    if (typeof input === "number")
+        return input * 1000;
+    const normalizedInput = normalizeDuration(input.trim());
+    const regex = /^(\d+(?:\.\d+)?)(ms|s|m|h|d|w|y)$/i;
+    const match = normalizedInput.match(regex);
+    if (!match)
+        throw new Error(`Invalid time format: ${input}`);
+    const value = parseFloat(match[1]);
+    const unit = match[2].toLowerCase();
+    const multipliers = {
+        ms: 1,
+        s: 1000,
+        m: 60000,
+        h: 3600000,
+        d: 86400000,
+        w: 604800000,
+        y: 31557600000,
+    };
+    return value * multipliers[unit];
+}
+//# sourceMappingURL=auth.controller.helpers.js.map

package/dist/cjs/modules/auth/utils/services/auth-action.service.js CHANGED Viewed

@@ -1 +1,92 @@
-"use strict";Object.defineProperty(exports,"__esModule",{value:!0});const utils_1=require("../../../../exports/utils"),text_helpers_1=require("../../../../utils/helpers/text.helpers");class AuthActionService{constructor(){this.authActions=[{roles:[],action:"View",resource:"auth-action",name:"View auth action",description:"Viewm an auth action",errorMessage:"You do not have permission to perform this operation"}]}add(e,r,t){if(!this.getOne(e,r)){const i=this.transformAccessControlToValidAuthAction(e,r,t);this.authActions.push(i)}}getAll(){return this.authActions}getOne(e,r){return this.authActions.find(t=>t.action===e&&t.resource===r)}transformAccessControlToValidAuthAction(e,r,t){const i={roles:t&&(Array.isArray(t)?t:typeof t=="string"?[t]:Array.isArray(t?.[e]||{})?t[e]:t[e]?.roles)||[],action:e,resource:r,name:`${(0,text_helpers_1.capitalize)((0,utils_1.kebabCase)(e).replace(/-/g," "))} ${(0,text_helpers_1.capitalize)((0,utils_1.kebabCase)(r).replace(/-/g," "))}`,description:`${(0,text_helpers_1.capitalize)((0,utils_1.kebabCase)(e).replace(/-/g," "))} ${(0,text_helpers_1.capitalize)((0,utils_1.kebabCase)(r).replace(/-/g," "))}`,errorMessage:"You do not have permission to perform this operation"};if(!t||Array.isArray(t))return i;const s=t[e];if(s){if(Array.isArray(s))return i;if(typeof s=="object")return{...i,name:s.name||i.name,description:s?.description||i.description,errorMessage:s?.errorMessage||i.errorMessage}}return i}getUniqueActions(){return[...new Set(this.authActions.map(e=>e.action))]}getUniqueResources(){return[...new Set(this.authActions.map(e=>e.resource))]}getByResource(e){return this.authActions.filter(r=>r.resource===e)}getByAction(e){return this.authActions.filter(r=>r.action===e)}exists(e,r){return!!this.getOne(e,r)}}const authActionService=new AuthActionService;exports.default=authActionService;
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const utils_1 = require("../../../../exports/utils");
+const text_helpers_1 = require("../../../../utils/helpers/text.helpers");
+class AuthActionService {
+    constructor() {
+        this.authActions = [
+            {
+                roles: [],
+                action: "View",
+                resource: "auth-action",
+                name: "View auth action",
+                description: "Viewm an auth action",
+                errorMessage: "You do not have permission to perform this operation",
+            },
+        ];
+    }
+    add(action, resource, accessControl) {
+        if (!this.getOne(action, resource)) {
+            const transformedAction = this.transformAccessControlToValidAuthAction(action, resource, accessControl);
+            this.authActions.push(transformedAction);
+        }
+    }
+    getAll() {
+        return this.authActions;
+    }
+    getOne(action, resource) {
+        return this.authActions.find((authAction) => authAction.action === action && authAction.resource === resource);
+    }
+    transformAccessControlToValidAuthAction(action, resource, accessControl) {
+        const baseAuthAction = {
+            roles: (accessControl &&
+                (Array.isArray(accessControl)
+                    ? accessControl
+                    : typeof accessControl === "string"
+                        ? [accessControl]
+                        : Array.isArray(accessControl?.[action] || {})
+                            ? accessControl[action]
+                            : accessControl[action]
+                                ?.roles)) ||
+                [],
+            action,
+            resource,
+            name: `${(0, text_helpers_1.capitalize)((0, utils_1.kebabCase)(action).replace(/-/g, " "))} ${(0, text_helpers_1.capitalize)((0, utils_1.kebabCase)(resource).replace(/-/g, " "))}`,
+            description: `${(0, text_helpers_1.capitalize)((0, utils_1.kebabCase)(action).replace(/-/g, " "))} ${(0, text_helpers_1.capitalize)((0, utils_1.kebabCase)(resource).replace(/-/g, " "))}`,
+            errorMessage: `You do not have permission to perform this operation`,
+        };
+        if (!accessControl) {
+            return baseAuthAction;
+        }
+        if (Array.isArray(accessControl)) {
+            return baseAuthAction;
+        }
+        const actionRule = accessControl[action];
+        if (actionRule) {
+            if (Array.isArray(actionRule)) {
+                return baseAuthAction;
+            }
+            else if (typeof actionRule === "object") {
+                return {
+                    ...baseAuthAction,
+                    name: actionRule.name || baseAuthAction.name,
+                    description: actionRule?.description || baseAuthAction.description,
+                    errorMessage: actionRule?.errorMessage || baseAuthAction.errorMessage,
+                };
+            }
+        }
+        return baseAuthAction;
+    }
+    getUniqueActions() {
+        return [
+            ...new Set(this.authActions.map((authAction) => authAction.action)),
+        ];
+    }
+    getUniqueResources() {
+        return [
+            ...new Set(this.authActions.map((authAction) => authAction.resource)),
+        ];
+    }
+    getByResource(resource) {
+        return this.authActions.filter((authAction) => authAction.resource === resource);
+    }
+    getByAction(action) {
+        return this.authActions.filter((authAction) => authAction.action === action);
+    }
+    exists(action, resource) {
+        return !!this.getOne(action, resource);
+    }
+}
+const authActionService = new AuthActionService();
+exports.default = authActionService;
+//# sourceMappingURL=auth-action.service.js.map

package/dist/cjs/modules/base/base.controller.js CHANGED Viewed

@@ -1 +1,210 @@
-"use strict";var __importDefault=this&&this.__importDefault||function(i){return i&&i.__esModule?i:{default:i}};Object.defineProperty(exports,"__esModule",{value:!0}),exports.getAvailableResources=exports.BaseController=void 0;const catch_async_1=__importDefault(require("../error-handler/utils/catch-async")),api_features_1=__importDefault(require("../../utils/features/api.features")),base_service_1=require("./base.service"),app_error_1=__importDefault(require("../error-handler/utils/app-error")),change_case_helpers_1=require("../../utils/helpers/change-case.helpers"),dynamic_loader_1=require("../../utils/dynamic-loader"),pluralize_1=__importDefault(require("pluralize")),sheu_1=__importDefault(require("../../utils/sheu")),prisma_schema_parser_1=__importDefault(require("../../utils/prisma/prisma-schema-parser"));class BaseController{constructor(o){this.createOne=(0,catch_async_1.default)(async(e,a,s)=>{const t=await this.service.createOne(e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(this.interceptors.afterCreateOne)return e.responseData={data:t},e.responseStatus=201,s();a.status(201).json({data:t})}),this.createMany=(0,catch_async_1.default)(async(e,a,s)=>{const t=await this.service.createMany(e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return s(new app_error_1.default("Failed to create the resources. Please check your input.",400,{},"MissingRequestBody"));if(this.interceptors.afterCreateMany)return e.responseData={data:t},e.responseStatus=201,s();a.status(201).json({data:t})}),this.findMany=(0,catch_async_1.default)(async(e,a,s)=>{const{filters:{where:t,...n}}=new api_features_1.default(e,this.modelName).filter().sort().limitFields().paginate(),[r,u]=await Promise.all([this.service.findMany(t,n,{user:e?.user,accessToken:e?.accessToken}),this.service.count(t,{user:e?.user,accessToken:e?.accessToken})]);if(this.interceptors.afterFindMany)return e.responseData={total:u,results:r.length,data:r},e.responseStatus=200,s();a.status(200).json({total:u,results:r.length,data:r})}),this.findOne=(0,catch_async_1.default)(async(e,a,s)=>{const t=await this.service.findOne(e.params,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params&&e.params.id!=="me"?s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterFindOne)return e.responseData={data:t},e.responseStatus=200,s();a.status(200).json({data:t})}),this.updateOne=(0,catch_async_1.default)(async(e,a,s)=>{const t=await this.service.updateOne(e.params,e.body,e.prismaQueryOptions,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params?s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterUpdateOne)return e.responseData={data:t},e.responseStatus=200,s();a.status(200).json({data:t})}),this.updateMany=(0,catch_async_1.default)(async(e,a,s)=>{if(!Object.keys(e.query).some(u=>u!=="prismaQueryOptions"))return s(new app_error_1.default("Filter criteria not provided for bulk update.",400,{},"MissingRequestQueryParameters"));e.query.filterMode=e.query?.filterMode||"AND";const{filters:{where:t,...n}}=new api_features_1.default(e,this.modelName).filter().sort();delete n.include;const r=await this.service.updateMany(t,e.body,n,{user:e?.user,accessToken:e?.accessToken});if(!r||r.count===0)return s(new app_error_1.default(`${(0,pluralize_1.default)((0,change_case_helpers_1.pascalCase)(String(this.modelName)))} not found`,404));if(this.interceptors.afterUpdateMany)return e.responseData={results:r.count,data:r},e.responseStatus=200,s();a.status(200).json({results:r.count,data:r})}),this.deleteOne=(0,catch_async_1.default)(async(e,a,s)=>{const t=await this.service.deleteOne(e.params,{user:e?.user,accessToken:e?.accessToken});if(!t)return Object.keys(e.params).length===1&&"id"in e.params?s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${e.params?.id} not found`,404,{},"NotFound")):s(new app_error_1.default(`${(0,change_case_helpers_1.pascalCase)(String(this.modelName))} not found`,404,{},"NotFound"));if(this.interceptors.afterDeleteOne)return e.additionalData={data:t},e.responseStatus=204,s();a.status(204).send()}),this.deleteMany=(0,catch_async_1.default)(async(e,a,s)=>{if(!Object.keys(e.query).some(r=>r!=="prismaQueryOptions"))return s(new app_error_1.default("Filter criteria not provided for bulk deletion.",400,{},"MissingRequestQueryParameters"));e.query.filterMode=e.query?.filterMode||"AND";const{filters:{where:t}}=new api_features_1.default(e,this.modelName).filter().sort(),n=await this.service.deleteMany(t,{user:e?.user,accessToken:e?.accessToken});if(!n||n.count===0)return s(new app_error_1.default("No records found to delete",404,{},"NotFound"));if(this.interceptors.afterDeleteMany)return e.responseData={results:n.count,data:n},e.responseStatus=200,s();a.status(200).json({results:n.count,data:n})});const c=(0,dynamic_loader_1.getModuleComponents)(o);this.modelName=o,this.service=new base_service_1.BaseService(o),this.interceptors=c?.interceptors||{}}}exports.BaseController=BaseController,exports.getAvailableResources=(0,catch_async_1.default)(async(i,o)=>{sheu_1.default.warn("This route `/api/available-routes` will be deprecated from 1.4.0-beta, consider using /api/auth-actions instead."),o.status(200).json({data:[...prisma_schema_parser_1.default.getModelsAsArrayOfStrings().map(c=>(0,change_case_helpers_1.kebabCase)(c)),"file-upload"]})});
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAvailableResources = exports.BaseController = void 0;
+const catch_async_1 = __importDefault(require("../error-handler/utils/catch-async"));
+const base_service_1 = require("./base.service");
+const app_error_1 = __importDefault(require("../error-handler/utils/app-error"));
+const change_case_helpers_1 = require("../../utils/helpers/change-case.helpers");
+const dynamic_loader_1 = require("../../utils/dynamic-loader");
+const pluralize_1 = __importDefault(require("pluralize"));
+const sheu_1 = __importDefault(require("../../utils/sheu"));
+const prisma_schema_parser_1 = __importDefault(require("../../utils/prisma/prisma-schema-parser"));
+class BaseController {
+    constructor(modelName) {
+        this.createOne = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.createOne(req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (this.interceptors.afterCreateOne) {
+                req.responseData = { data };
+                res.locals.data = { data };
+                req.responseStatus = 201;
+                res.locals.status = 201;
+                return next();
+            }
+            res.status(201).json({ data });
+        });
+        this.createMany = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.createMany(req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data)
+                return next(new app_error_1.default("Failed to create the resources. Please check your input.", 400, { body: req.body }));
+            if (this.interceptors.afterCreateMany) {
+                req.responseData = { data };
+                res.locals.data = { data };
+                req.responseStatus = 201;
+                res.locals.status = 201;
+                return next();
+            }
+            res.status(201).json({ data });
+        });
+        this.findMany = (0, catch_async_1.default)(async (req, res, next) => {
+            const { where, ...queryOptions } = req.filters;
+            const [data, total] = (await Promise.all([
+                this.service.findMany(where, queryOptions, {
+                    user: req?.user,
+                    accessToken: req?.accessToken,
+                }),
+                this.service.count(where, {
+                    user: req?.user,
+                    accessToken: req?.accessToken,
+                }),
+            ]));
+            if (this.interceptors.afterFindMany) {
+                req.responseData = { total, results: data.length, data };
+                res.locals.data = { total, results: data.length, data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ total, results: data.length, data });
+        });
+        this.findOne = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.findOne(req.params, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 &&
+                    "id" in req.params &&
+                    req.params.id !== "me") {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterFindOne) {
+                req.responseData = { data };
+                res.locals.data = { data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ data });
+        });
+        this.updateOne = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.updateOne(req.params, req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 && "id" in req.params) {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterUpdateOne) {
+                req.responseData = { data };
+                res.locals.data = { data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ data });
+        });
+        this.updateMany = (0, catch_async_1.default)(async (req, res, next) => {
+            if (!Object.keys(req.query).some((key) => key !== "prismaQueryOptions")) {
+                return next(new app_error_1.default("Filter criteria not provided for bulk update.", 400, {}, "MissingRequestQueryParameters"));
+            }
+            const { where, ...queryOptions } = req.filters;
+            delete queryOptions.include;
+            const data = (await this.service.updateMany(where, req.body, queryOptions, { user: req?.user, accessToken: req?.accessToken }));
+            if (!data || data.count === 0)
+                return next(new app_error_1.default(`${(0, pluralize_1.default)((0, change_case_helpers_1.pascalCase)(String(this.modelName)))} not found`, 404));
+            if (this.interceptors.afterUpdateMany) {
+                req.responseData = { results: data.count, data };
+                res.locals.data = { results: data.count, data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.count, data });
+        });
+        this.batchUpdate = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.batchUpdate(req.body, req.prismaQueryOptions, { user: req?.user, accessToken: req?.accessToken });
+            if (!data || data.length === 0)
+                return next(new app_error_1.default("Failed to update the resources. Please check your input.", 400, { body: req.body }));
+            if (this.interceptors.afterBatchUpdate) {
+                req.responseData = { results: data.length, data };
+                res.locals.data = { results: data.length, data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.length, data });
+        });
+        this.deleteOne = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.deleteOne(req.params, {
+                user: req?.user,
+                accessToken: req?.accessToken,
+            });
+            if (!data) {
+                if (Object.keys(req.params).length === 1 && "id" in req.params) {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} with ID ${req.params?.id} not found`, 404, {}, "NotFound"));
+                }
+                else {
+                    return next(new app_error_1.default(`${(0, change_case_helpers_1.pascalCase)(String(this.modelName))} not found`, 404, {}, "NotFound"));
+                }
+            }
+            if (this.interceptors.afterDeleteOne) {
+                req.additionalData = { data };
+                res.locals.additionalData = { data };
+                req.responseStatus = 204;
+                res.locals.status = 204;
+                return next();
+            }
+            res.status(204).send();
+        });
+        this.deleteMany = (0, catch_async_1.default)(async (req, res, next) => {
+            if (!Object.keys(req.query).some((key) => key !== "prismaQueryOptions")) {
+                return next(new app_error_1.default("Filter criteria not provided for bulk deletion.", 400, {}, "MissingRequestQueryParameters"));
+            }
+            const { where } = req.filters;
+            const data = await this.service.deleteMany(where, {
+                user: req?.user,
+                accessToken: req?.accessToken,
+            });
+            if (!data || data.count === 0) {
+                return next(new app_error_1.default(`No records found to delete`, 404, {}, "NotFound"));
+            }
+            if (this.interceptors.afterDeleteMany) {
+                req.responseData = { results: data.count, data };
+                res.locals.data = { results: data.count, data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.count, data });
+        });
+        this.batchDelete = (0, catch_async_1.default)(async (req, res, next) => {
+            const data = await this.service.batchDelete(req.body, {
+                user: req?.user,
+                accessToken: req?.accessToken,
+            });
+            if (!data || data.length === 0)
+                return next(new app_error_1.default("Failed to delete the resources. Please check your input.", 400, { body: req.body }));
+            if (this.interceptors.afterBatchDelete) {
+                req.responseData = { results: data.length, data };
+                res.locals.data = { results: data.length, data };
+                req.responseStatus = 200;
+                res.locals.status = 200;
+                return next();
+            }
+            res.status(200).json({ results: data.length, data });
+        });
+        const components = (0, dynamic_loader_1.getModuleComponents)(modelName);
+        this.modelName = modelName;
+        this.service = new base_service_1.BaseService(modelName);
+        this.interceptors = components?.interceptors || {};
+    }
+}
+exports.BaseController = BaseController;
+exports.getAvailableResources = (0, catch_async_1.default)(async (_, res) => {
+    sheu_1.default.warn("This route `/api/available-routes` will be deprecated from 1.4.0-beta, consider using /api/auth-actions instead.");
+    res.status(200).json({
+        data: [
+            ...prisma_schema_parser_1.default
+                .getModelsAsArrayOfStrings()
+                .map((model) => (0, change_case_helpers_1.kebabCase)(model)),
+            "file-upload",
+        ],
+    });
+});
+//# sourceMappingURL=base.controller.js.map