ecrs-auth-core 1.0.0 → 1.0.4

package/dist/auth.module.d.ts

@@ -1,6 +1,5 @@
 import { DynamicModule } from '@nestjs/common';
+import { AuthCoreOptions } from './interfaces/auth-core-options.interface';
 export declare class AuthCoreModule {
-    static register(options: {
-        moduleId: number;
-    }): DynamicModule;
+    static register(options: AuthCoreOptions): DynamicModule;
 }

package/dist/auth.module.js

@@ -10,11 +10,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthCoreModule = void 0;
 // src/auth.module.ts
 const common_1 = require("@nestjs/common");
+const jwt_1 = require("@nestjs/jwt");
 const auth_service_1 = require("./auth.service");
 const jwt_strategy_1 = require("./jwt/jwt.strategy");
 const jwt_guard_1 = require("./jwt/jwt.guard");
 const auth_controller_1 = require("./auth.controller");
-const jwt_1 = require("@nestjs/jwt");
 const module_guard_1 = require("./guards/module.guard");
 const roles_guard_1 = require("./guards/roles.guard");
 const feature_guard_1 = require("./guards/feature.guard");
@@ -34,7 +34,7 @@ let AuthCoreModule = AuthCoreModule_1 = class AuthCoreModule {
                 route_guard_1.RouteGuard,
                 permission_guard_1.PermissionGuard,
                 {
-                    provide: 'MODULE_CONFIG',
+                    provide: 'AUTH_CORE_OPTIONS',
                     useValue: options,
                 },
             ],
@@ -47,7 +47,7 @@ let AuthCoreModule = AuthCoreModule_1 = class AuthCoreModule {
                 roles_guard_1.RolesGuard,
                 feature_guard_1.FeatureGuard,
                 route_guard_1.RouteGuard,
-                permission_guard_1.PermissionGuard
+                permission_guard_1.PermissionGuard,
             ],
             imports: [
                 jwt_1.JwtModule.register({
@@ -60,5 +60,6 @@ let AuthCoreModule = AuthCoreModule_1 = class AuthCoreModule {
 };
 exports.AuthCoreModule = AuthCoreModule;
 exports.AuthCoreModule = AuthCoreModule = AuthCoreModule_1 = __decorate([
+    (0, common_1.Global)(),
     (0, common_1.Module)({})
 ], AuthCoreModule);

package/dist/auth.service.d.ts

@@ -1,23 +1,21 @@
 import { JwtService } from "@nestjs/jwt";
-import { Repository } from "typeorm";
+import { AuthCoreOptions } from "./interfaces/auth-core-options.interface";
 import { User } from "./entities/user.entity";
-import { UserModuleAccess } from "./entities/user-module-access.entity";
-import { UserFeatureAccess } from "./entities/user-feature-access.entity";
-import { Feature } from "./entities/feature.entity";
-import { ModuleRoute } from "./entities/module-route.entity";
-import { ModuleScreenPermission } from "./entities/module-screen-permission.entity";
+export type RoutePermissionSet = {
+    view?: boolean;
+    create?: boolean;
+    update?: boolean;
+    delete?: boolean;
+    import?: boolean;
+    export?: boolean;
+};
 export declare class AuthService {
     private jwtService;
-    private readonly userRepo;
+    private readonly options;
     private readonly config;
-    private readonly moduleAccessRepo;
-    private readonly featureAccessRepo;
-    private readonly featureRepo;
-    private readonly screenPermissionRepo;
-    private readonly routeRepo;
-    constructor(jwtService: JwtService, userRepo: Repository<User>, config: {
+    constructor(jwtService: JwtService, options: AuthCoreOptions, config: {
         moduleId: number;
-    }, moduleAccessRepo: Repository<UserModuleAccess>, featureAccessRepo: Repository<UserFeatureAccess>, featureRepo: Repository<Feature>, screenPermissionRepo: Repository<ModuleScreenPermission>, routeRepo: Repository<ModuleRoute>);
+    });
     validateUser(email: string, password: string): Promise<User | null>;
     login(user: User): Promise<{
         access_token: string;

package/dist/auth.service.js

@@ -46,31 +46,17 @@ var __param = (this && this.__param) || function (paramIndex, decorator) {
 };
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.AuthService = void 0;
-// src/auth.service.ts
 const common_1 = require("@nestjs/common");
 const jwt_1 = require("@nestjs/jwt");
-const typeorm_1 = require("typeorm");
-const typeorm_2 = require("@nestjs/typeorm");
 const bcrypt = __importStar(require("bcrypt"));
-const user_entity_1 = require("./entities/user.entity");
-const user_module_access_entity_1 = require("./entities/user-module-access.entity");
-const user_feature_access_entity_1 = require("./entities/user-feature-access.entity");
-const feature_entity_1 = require("./entities/feature.entity");
-const module_route_entity_1 = require("./entities/module-route.entity");
-const module_screen_permission_entity_1 = require("./entities/module-screen-permission.entity");
 let AuthService = class AuthService {
-    constructor(jwtService, userRepo, config, moduleAccessRepo, featureAccessRepo, featureRepo, screenPermissionRepo, routeRepo) {
+    constructor(jwtService, options, config) {
         this.jwtService = jwtService;
-        this.userRepo = userRepo;
+        this.options = options;
         this.config = config;
-        this.moduleAccessRepo = moduleAccessRepo;
-        this.featureAccessRepo = featureAccessRepo;
-        this.featureRepo = featureRepo;
-        this.screenPermissionRepo = screenPermissionRepo;
-        this.routeRepo = routeRepo;
     }
     async validateUser(email, password) {
-        const user = await this.userRepo.findOne({ where: { email } });
+        const user = await this.options.userRepo.findOne({ where: { email } });
         if (!user || user.moduleId !== this.config.moduleId)
             return null;
         const isValid = await bcrypt.compare(password, user.password);
@@ -90,48 +76,18 @@ let AuthService = class AuthService {
         };
     }
     async findUserById(id) {
-        return this.userRepo.findOne({ where: { id } });
+        return this.options.userRepo.findOne({ where: { id } });
     }
-    //   private async loadPermissions(userId: number): Promise<any> {
-    //     const featureAccessList = await this.featureAccessRepo.find({
-    //       where: { userId: userId, isDeleted: 0 },
-    //     });
-    //     const permissions: Record<string, string[]> = {};
-    //     for (const access of featureAccessList) {
-    //       const feature = await this.featureRepo.findOne({
-    //         where: { id: access.featureId },
-    //       });
-    //       if (!feature) continue;
-    //       const perms: string[] = [];
-    //       if (access.canView) perms.push("view");
-    //       if (access.canCreate) perms.push("create");
-    //       if (access.canModify) perms.push("update");
-    //       if (access.canDelete) perms.push("delete");
-    //       if (access.canImport) perms.push("import");
-    //       if (access.canExport) perms.push("export");
-    //       if (perms.length) {
-    //         permissions[feature.featureName] = perms;
-    //       }
-    //     }
-    //     const moduleAccess = await this.moduleAccessRepo.find({
-    //       where: { userId: userId, isDeleted: 0 },
-    //     });
-    //     const moduleIds = moduleAccess.map((m) => m.moduleId);
-    //     return {
-    //       features: permissions,
-    //       modules: moduleIds,
-    //     };
-    //   }
     async loadPermissions(userId) {
         // ---- Feature Permissions ----
-        const featureAccessList = await this.featureAccessRepo.find({
+        const featureAccessList = await this.options.featureAccessRepo.find({
             where: { userId, isDeleted: 0 },
         });
         const featurePermissions = {};
+        const allFeatures = await this.options.featureRepo.find();
+        const featureMap = new Map(allFeatures.map((f) => [f.id, f]));
         for (const access of featureAccessList) {
-            const feature = await this.featureRepo.findOne({
-                where: { id: access.featureId },
-            });
+            const feature = featureMap.get(access.featureId);
             if (!feature)
                 continue;
             const perms = [];
@@ -152,30 +108,23 @@ let AuthService = class AuthService {
             }
         }
         // ---- Module Access ----
-        const moduleAccess = await this.moduleAccessRepo.find({
+        const moduleAccess = await this.options.moduleAccessRepo.find({
             where: { userId, isDeleted: 0 },
         });
         const moduleIds = moduleAccess.map((m) => m.moduleId);
         // ---- Route Permissions ----
-        const screenPermissionsList = await this.screenPermissionRepo.find({
+        const screenPermissionsList = await this.options.screenPermissionRepo.find({
             where: { userId, isActive: true },
         });
         const routePermissions = {};
+        const allRoutes = await this.options.routeRepo.find();
+        const routeMap = new Map(allRoutes.map((r) => [r.id, r]));
         for (const screen of screenPermissionsList) {
-            const route = await this.routeRepo.findOne({
-                where: { id: screen.moduleRouteId },
-            });
+            const route = routeMap.get(screen.moduleRouteId);
             if (!route)
                 continue;
             const perms = [];
-            const permissionKeys = [
-                "view",
-                "create",
-                "update",
-                "delete",
-                "import",
-                "export",
-            ];
+            const permissionKeys = ["view", "create", "update", "delete", "import", "export"];
             for (const key of permissionKeys) {
                 if (screen.permissions?.[key]) {
                     perms.push(key);
@@ -195,17 +144,7 @@ let AuthService = class AuthService {
 exports.AuthService = AuthService;
 exports.AuthService = AuthService = __decorate([
     (0, common_1.Injectable)(),
-    __param(1, (0, typeorm_2.InjectRepository)(user_entity_1.User, "ecrs_main_connection")),
-    __param(2, (0, common_1.Inject)("MODULE_CONFIG")),
-    __param(3, (0, typeorm_2.InjectRepository)(user_module_access_entity_1.UserModuleAccess, "ecrs_main_connection")),
-    __param(4, (0, typeorm_2.InjectRepository)(user_feature_access_entity_1.UserFeatureAccess, "ecrs_main_connection")),
-    __param(5, (0, typeorm_2.InjectRepository)(feature_entity_1.Feature, "ecrs_main_connection")),
-    __param(6, (0, typeorm_2.InjectRepository)(module_screen_permission_entity_1.ModuleScreenPermission, "ecrs_main_connection")),
-    __param(7, (0, typeorm_2.InjectRepository)(module_route_entity_1.ModuleRoute, "ecrs_main_connection")),
-    __metadata("design:paramtypes", [jwt_1.JwtService,
-        typeorm_1.Repository, Object, typeorm_1.Repository,
-        typeorm_1.Repository,
-        typeorm_1.Repository,
-        typeorm_1.Repository,
-        typeorm_1.Repository])
+    __param(1, (0, common_1.Inject)('AUTH_CORE_OPTIONS')),
+    __param(2, (0, common_1.Inject)('MODULE_CONFIG')),
+    __metadata("design:paramtypes", [jwt_1.JwtService, Object, Object])
 ], AuthService);

package/dist/index.d.ts

@@ -8,5 +8,3 @@ export * from './guards/feature.guard';
 export * from './decorators/current-user.decorator';
 export * from './guards/route.guard';
 export * from './decorators/route-permission.decorator';
-export * from './guards/permission.guard';
-export * from './decorators/has-permission.decorator';

package/dist/index.js

@@ -24,5 +24,3 @@ __exportStar(require("./guards/feature.guard"), exports);
 __exportStar(require("./decorators/current-user.decorator"), exports);
 __exportStar(require("./guards/route.guard"), exports);
 __exportStar(require("./decorators/route-permission.decorator"), exports);
-__exportStar(require("./guards/permission.guard"), exports);
-__exportStar(require("./decorators/has-permission.decorator"), exports);

package/dist/interfaces/auth-core-options.interface.d.ts

@@ -0,0 +1,19 @@
+import { Repository } from 'typeorm';
+import { User } from '../entities/user.entity';
+import { Role } from '../entities/role.entity';
+import { Module } from '../entities/module.entity';
+import { Feature } from '../entities/feature.entity';
+import { ModuleRoute } from '../entities/module-route.entity';
+import { UserFeatureAccess } from '../entities/user-feature-access.entity';
+import { UserModuleAccess } from '../entities/user-module-access.entity';
+import { ModuleScreenPermission } from '../entities/module-screen-permission.entity';
+export interface AuthCoreOptions {
+    userRepo: Repository<User>;
+    roleRepo: Repository<Role>;
+    moduleRepo: Repository<Module>;
+    featureRepo: Repository<Feature>;
+    routeRepo: Repository<ModuleRoute>;
+    featureAccessRepo: Repository<UserFeatureAccess>;
+    moduleAccessRepo: Repository<UserModuleAccess>;
+    screenPermissionRepo: Repository<ModuleScreenPermission>;
+}

package/dist/interfaces/auth-core-options.interface.js

@@ -0,0 +1,2 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "ecrs-auth-core",
-  "version": "1.0.0",
+  "version": "1.0.4",
   "description": "Centralized authentication and authorization module for ECRS apps",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -20,8 +20,8 @@
   "author": "Chetan Yadnik",
   "license": "MIT",
   "peerDependencies": {
-    "@nestjs/common": "^10.4.19",
-    "@nestjs/core": "^10.4.19",
+    "@nestjs/common": "^11.0.0",
+    "@nestjs/core": "^11.0.0",
     "@nestjs/passport": "^10.0.3",
     "bcrypt": "^5.1.1",
     "passport": "^0.6.0",