npm - cojson - Versions diffs - 0.8.39 → 0.8.44 - Mend

cojson 0.8.39 → 0.8.44

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (42) hide show

package/.turbo/turbo-build.log +12 -0
package/CHANGELOG.md +14 -0
package/dist/native/coValueCore.js +22 -5
package/dist/native/coValueCore.js.map +1 -1
package/dist/native/coValues/coMap.js +98 -103
package/dist/native/coValues/coMap.js.map +1 -1
package/dist/native/coValues/coStream.js +17 -6
package/dist/native/coValues/coStream.js.map +1 -1
package/dist/native/coValues/group.js +127 -39
package/dist/native/coValues/group.js.map +1 -1
package/dist/native/exports.js +2 -0
package/dist/native/exports.js.map +1 -1
package/dist/native/localNode.js +5 -2
package/dist/native/localNode.js.map +1 -1
package/dist/native/permissions.js +77 -19
package/dist/native/permissions.js.map +1 -1
package/dist/web/coValueCore.js +22 -5
package/dist/web/coValueCore.js.map +1 -1
package/dist/web/coValues/coMap.js +98 -103
package/dist/web/coValues/coMap.js.map +1 -1
package/dist/web/coValues/coStream.js +17 -6
package/dist/web/coValues/coStream.js.map +1 -1
package/dist/web/coValues/group.js +127 -39
package/dist/web/coValues/group.js.map +1 -1
package/dist/web/exports.js +2 -0
package/dist/web/exports.js.map +1 -1
package/dist/web/localNode.js +5 -2
package/dist/web/localNode.js.map +1 -1
package/dist/web/permissions.js +77 -19
package/dist/web/permissions.js.map +1 -1
package/package.json +3 -5
package/src/coValueCore.ts +37 -9
package/src/coValues/coMap.ts +126 -127
package/src/coValues/coStream.ts +27 -10
package/src/coValues/group.ts +218 -50
package/src/exports.ts +2 -0
package/src/localNode.ts +5 -2
package/src/permissions.ts +105 -24
package/src/tests/coMap.test.ts +2 -2
package/src/tests/group.test.ts +332 -38
package/src/tests/permissions.test.ts +324 -0
package/src/tests/testUtils.ts +18 -13

package/src/tests/group.test.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { expect, test } from "vitest";
+import { describe, expect, test } from "vitest";
 import { RawCoList } from "../coValues/coList.js";
 import { RawCoMap } from "../coValues/coMap.js";
 import { RawCoStream } from "../coValues/coStream.js";
@@ -7,6 +7,7 @@ import { WasmCrypto } from "../crypto/WasmCrypto.js";
 import { LocalNode } from "../localNode.js";
 import {
   createThreeConnectedNodes,
+  createTwoConnectedNodes,
   loadCoValueOrFail,
   randomAnonymousAccountAndSessionID,
 } from "./testUtils.js";
@@ -59,33 +60,44 @@ test("Can create a FileStream in a group", () => {
 });
 test("Remove a member from a group where the admin role is inherited", async () => {
-  const { node1, node2, node3, node1ToNode2Peer, node2ToNode3Peer } =
-    createThreeConnectedNodes("server", "server", "server");
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
+    "server",
+    "server",
+    "server",
+  );
-  const group = node1.createGroup();
+  const group = node1.node.createGroup();
-  group.addMember(node2.account, "admin");
-  group.addMember(node3.account, "reader");
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node2.accountID),
+    "admin",
+  );
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
+  await group.core.waitForSync();
-  const groupOnNode2 = await loadCoValueOrFail(node2, group.id);
+  const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
   // The account of node2 create a child group and extend the initial group
   // This way the node1 account should become "admin" of the child group
   // by inheriting the admin role from the initial group
-  const childGroup = node2.createGroup();
+  const childGroup = node2.node.createGroup();
   childGroup.extend(groupOnNode2);
   const map = childGroup.createMap();
   map.set("test", "Available to everyone");
-  const mapOnNode3 = await loadCoValueOrFail(node3, map.id);
+  const mapOnNode3 = await loadCoValueOrFail(node3.node, map.id);
   // Check that the sync between node2 and node3 worked
   expect(mapOnNode3.get("test")).toEqual("Available to everyone");
   // The node1 account removes the reader from the group
   // The reader should be automatically kicked out of the child group
-  await group.removeMember(node3.account);
+  await group.removeMember(node3.node.account);
   await group.core.waitForSync();
@@ -97,26 +109,37 @@ test("Remove a member from a group where the admin role is inherited", async ()
   // Check that the value has not been updated on node3
   expect(mapOnNode3.get("test")).toEqual("Available to everyone");
-  const mapOnNode1 = await loadCoValueOrFail(node1, map.id);
+  const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
   expect(mapOnNode1.get("test")).toEqual("Hidden to node3");
 });
 test("An admin should be able to rotate the readKey on child groups and keep access to new coValues", async () => {
-  const { node1, node2, node3, node1ToNode2Peer, node2ToNode1Peer } =
-    createThreeConnectedNodes("server", "server", "server");
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
+    "server",
+    "server",
+    "server",
+  );
-  const group = node1.createGroup();
+  const group = node1.node.createGroup();
-  group.addMember(node2.account, "admin");
-  group.addMember(node3.account, "reader");
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node2.accountID),
+    "admin",
+  );
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
-  const groupOnNode2 = await loadCoValueOrFail(node2, group.id);
+  await group.core.waitForSync();
+  const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
   // The account of node2 create a child group and extend the initial group
   // This way the node1 account should become "admin" of the child group
   // by inheriting the admin role from the initial group
-  const childGroup = node2.createGroup();
+  const childGroup = node2.node.createGroup();
   childGroup.extend(groupOnNode2);
   await childGroup.core.waitForSync();
@@ -124,78 +147,349 @@ test("An admin should be able to rotate the readKey on child groups and keep acc
   // The node1 account removes the reader from the group
   // In this case we want to ensure that node1 is still able to read new coValues
   // Even if some childs are not available when the readKey is rotated
-  await group.removeMember(node3.account);
+  await group.removeMember(node3.node.account);
   await group.core.waitForSync();
   const map = childGroup.createMap();
   map.set("test", "Available to node1");
-  const mapOnNode1 = await loadCoValueOrFail(node1, map.id);
+  const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
   expect(mapOnNode1.get("test")).toEqual("Available to node1");
 });
 test("An admin should be able to rotate the readKey on child groups even if it was unavailable when kicking out a member from a parent group", async () => {
-  const { node1, node2, node3, node1ToNode2Peer, node2ToNode1Peer } =
-    createThreeConnectedNodes("server", "server", "server");
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
+    "server",
+    "server",
+    "server",
+  );
+  const group = node1.node.createGroup();
-  const group = node1.createGroup();
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node2.accountID),
+    "admin",
+  );
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
-  group.addMember(node2.account, "admin");
-  group.addMember(node3.account, "reader");
+  await group.core.waitForSync();
-  const groupOnNode2 = await loadCoValueOrFail(node2, group.id);
+  const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
   // The account of node2 create a child group and extend the initial group
   // This way the node1 account should become "admin" of the child group
   // by inheriting the admin role from the initial group
-  const childGroup = node2.createGroup();
+  const childGroup = node2.node.createGroup();
   childGroup.extend(groupOnNode2);
   // The node1 account removes the reader from the group
   // In this case we want to ensure that node1 is still able to read new coValues
   // Even if some childs are not available when the readKey is rotated
-  await group.removeMember(node3.account);
+  await group.removeMember(node3.node.account);
   await group.core.waitForSync();
   const map = childGroup.createMap();
   map.set("test", "Available to node1");
-  const mapOnNode1 = await loadCoValueOrFail(node1, map.id);
+  const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
   expect(mapOnNode1.get("test")).toEqual("Available to node1");
 });
 test("An admin should be able to rotate the readKey on child groups even if it was unavailable when kicking out a member from a parent group (grandChild)", async () => {
-  const { node1, node2, node3, node1ToNode2Peer } = createThreeConnectedNodes(
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
     "server",
     "server",
     "server",
   );
-  const group = node1.createGroup();
+  const group = node1.node.createGroup();
-  group.addMember(node2.account, "admin");
-  group.addMember(node3.account, "reader");
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node2.accountID),
+    "admin",
+  );
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
-  const groupOnNode2 = await loadCoValueOrFail(node2, group.id);
+  await group.core.waitForSync();
+  const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
   // The account of node2 create a child group and extend the initial group
   // This way the node1 account should become "admin" of the child group
   // by inheriting the admin role from the initial group
-  const childGroup = node2.createGroup();
+  const childGroup = node2.node.createGroup();
   childGroup.extend(groupOnNode2);
-  const grandChildGroup = node2.createGroup();
+  const grandChildGroup = node2.node.createGroup();
   grandChildGroup.extend(childGroup);
   // The node1 account removes the reader from the group
   // In this case we want to ensure that node1 is still able to read new coValues
   // Even if some childs are not available when the readKey is rotated
-  await group.removeMember(node3.account);
+  await group.removeMember(node3.node.account);
   await group.core.waitForSync();
   const map = childGroup.createMap();
   map.set("test", "Available to node1");
-  const mapOnNode1 = await loadCoValueOrFail(node1, map.id);
+  const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
   expect(mapOnNode1.get("test")).toEqual("Available to node1");
 });
+test("A user add after a key rotation should have access to the old transactions", async () => {
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
+    "server",
+    "server",
+    "server",
+  );
+  const group = node1.node.createGroup();
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node2.accountID),
+    "writer",
+  );
+  await group.core.waitForSync();
+  const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
+  const map = groupOnNode2.createMap();
+  map.set("test", "Written from node2");
+  await map.core.waitForSync();
+  await group.removeMember(node3.node.account);
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
+  await group.core.waitForSync();
+  const mapOnNode3 = await loadCoValueOrFail(node3.node, map.id);
+  expect(mapOnNode3.get("test")).toEqual("Written from node2");
+});
+test("Invites should have access to the new keys", async () => {
+  const { node1, node2, node3 } = await createThreeConnectedNodes(
+    "server",
+    "server",
+    "server",
+  );
+  const group = node1.node.createGroup();
+  group.addMember(
+    await loadCoValueOrFail(node1.node, node3.accountID),
+    "reader",
+  );
+  const invite = group.createInvite("admin");
+  await group.removeMember(node3.node.account);
+  const map = group.createMap();
+  map.set("test", "Written from node1");
+  await map.core.waitForSync();
+  await node2.node.acceptInvite(group.id, invite);
+  const mapOnNode2 = await loadCoValueOrFail(node2.node, map.id);
+  expect(mapOnNode2.get("test")).toEqual("Written from node1");
+});
+describe("writeOnly", () => {
+  test("Admins can invite writeOnly members", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    const invite = group.createInvite("writeOnly");
+    await node2.node.acceptInvite(group.id, invite);
+    const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
+    expect(groupOnNode2.myRole()).toEqual("writeOnly");
+  });
+  test("writeOnly roles are not inherited", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    const childGroup = node1.node.createGroup();
+    childGroup.extend(group);
+    expect(childGroup.roleOf(node2.accountID)).toEqual(undefined);
+  });
+  test("writeOnly roles are not overridded by reader roles", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "reader",
+    );
+    const childGroup = node1.node.createGroup();
+    childGroup.extend(group);
+    childGroup.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    expect(childGroup.roleOf(node2.accountID)).toEqual("writeOnly");
+  });
+  test("writeOnly roles are overridded by writer roles", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writer",
+    );
+    const childGroup = node1.node.createGroup();
+    childGroup.extend(group);
+    childGroup.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    expect(childGroup.roleOf(node2.accountID)).toEqual("writer");
+  });
+  test("Edits by writeOnly members are visible to other members", async () => {
+    const { node1, node2, node3 } = await createThreeConnectedNodes(
+      "server",
+      "server",
+      "server",
+    );
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node3.accountID),
+      "reader",
+    );
+    await group.core.waitForSync();
+    const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
+    const map = groupOnNode2.createMap();
+    map.set("test", "Written from a writeOnly member");
+    expect(map.get("test")).toEqual("Written from a writeOnly member");
+    await map.core.waitForSync();
+    const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
+    expect(mapOnNode1.get("test")).toEqual("Written from a writeOnly member");
+    const mapOnNode3 = await loadCoValueOrFail(node3.node, map.id);
+    expect(mapOnNode3.get("test")).toEqual("Written from a writeOnly member");
+  });
+  test("Edits by other members are not visible to writeOnly members", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    const map = group.createMap();
+    map.set("test", "Written from the admin");
+    await map.core.waitForSync();
+    const mapOnNode2 = await loadCoValueOrFail(node2.node, map.id);
+    expect(mapOnNode2.get("test")).toEqual(undefined);
+  });
+  test("Write only member keys are rotated when a member is kicked out", async () => {
+    const { node1, node2, node3 } = await createThreeConnectedNodes(
+      "server",
+      "server",
+      "server",
+    );
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node3.accountID),
+      "reader",
+    );
+    await group.core.waitForSync();
+    const groupOnNode2 = await loadCoValueOrFail(node2.node, group.id);
+    const map = groupOnNode2.createMap();
+    map.set("test", "Written from a writeOnly member");
+    await map.core.waitForSync();
+    await group.removeMember(node3.node.account);
+    await group.core.waitForSync();
+    map.set("test", "Updated after key rotation");
+    await map.core.waitForSync();
+    const mapOnNode1 = await loadCoValueOrFail(node1.node, map.id);
+    expect(mapOnNode1.get("test")).toEqual("Updated after key rotation");
+    const mapOnNode3 = await loadCoValueOrFail(node3.node, map.id);
+    expect(mapOnNode3.get("test")).toEqual("Written from a writeOnly member");
+  });
+  test("inherited writer roles should work correctly", async () => {
+    const { node1, node2 } = await createTwoConnectedNodes("server", "server");
+    const group = node1.node.createGroup();
+    group.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writer",
+    );
+    const childGroup = node1.node.createGroup();
+    childGroup.extend(group);
+    childGroup.addMember(
+      await loadCoValueOrFail(node1.node, node2.accountID),
+      "writeOnly",
+    );
+    const map = childGroup.createMap();
+    map.set("test", "Written from the admin");
+    await map.core.waitForSync();
+    const mapOnNode2 = await loadCoValueOrFail(node2.node, map.id);
+    // The writer role should be able to see the edits from the admin
+    expect(mapOnNode2.get("test")).toEqual("Written from the admin");
+  });
+});