ecrs-auth-core 1.0.0

package/dist/entities/module.entity.js

@@ -0,0 +1,44 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Module = void 0;
+// src/entities/module.entity.ts
+const typeorm_1 = require("typeorm");
+let Module = class Module {
+};
+exports.Module = Module;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)(),
+    __metadata("design:type", Number)
+], Module.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'module_name', length: 100, unique: true }),
+    __metadata("design:type", String)
+], Module.prototype, "moduleName", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'module_description', length: 255, nullable: true }),
+    __metadata("design:type", String)
+], Module.prototype, "moduleDescription", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'smallint', default: 1 }),
+    __metadata("design:type", Number)
+], Module.prototype, "status", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'created_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], Module.prototype, "createdAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'updated_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], Module.prototype, "updatedAt", void 0);
+exports.Module = Module = __decorate([
+    (0, typeorm_1.Entity)({ name: 'tbl_c_modules' })
+], Module);

package/dist/entities/role.entity.d.ts

@@ -0,0 +1,6 @@
+export declare class Role {
+    id: number;
+    roleName: string;
+    roleDescription?: string;
+    isActive: boolean;
+}

package/dist/entities/role.entity.js

@@ -0,0 +1,36 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Role = void 0;
+// src/entities/role.entity.ts
+const typeorm_1 = require("typeorm");
+let Role = class Role {
+};
+exports.Role = Role;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)(),
+    __metadata("design:type", Number)
+], Role.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'role_name', length: 100, unique: true }),
+    __metadata("design:type", String)
+], Role.prototype, "roleName", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'role_description', length: 255, nullable: true }),
+    __metadata("design:type", String)
+], Role.prototype, "roleDescription", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'is_active', default: true }),
+    __metadata("design:type", Boolean)
+], Role.prototype, "isActive", void 0);
+exports.Role = Role = __decorate([
+    (0, typeorm_1.Entity)({ name: 'tbl_c_master_roles' })
+], Role);

package/dist/entities/user-feature-access.entity.d.ts

@@ -0,0 +1,19 @@
+export declare class UserFeatureAccess {
+    id: number;
+    userId: number;
+    moduleId: number;
+    featureId: number;
+    accessLevel: string;
+    canView: boolean;
+    canCreate: boolean;
+    canModify: boolean;
+    canDelete: boolean;
+    canImport: boolean;
+    canExport: boolean;
+    status: number;
+    createdAt: Date;
+    updatedAt: Date;
+    createdBy: number;
+    updatedBy?: number;
+    isDeleted: number;
+}

package/dist/entities/user-feature-access.entity.js

@@ -0,0 +1,88 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserFeatureAccess = void 0;
+// src/entities/user-feature-access.entity.ts
+const typeorm_1 = require("typeorm");
+let UserFeatureAccess = class UserFeatureAccess {
+};
+exports.UserFeatureAccess = UserFeatureAccess;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)(),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'user_id' }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "userId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'module_id' }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "moduleId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'feature_id' }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "featureId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'access_level', default: 'view' }),
+    __metadata("design:type", String)
+], UserFeatureAccess.prototype, "accessLevel", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_view', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canView", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_create', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canCreate", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_modify', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canModify", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_delete', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canDelete", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_import', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canImport", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'can_export', default: false }),
+    __metadata("design:type", Boolean)
+], UserFeatureAccess.prototype, "canExport", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'smallint', default: 1 }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "status", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'created_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], UserFeatureAccess.prototype, "createdAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'updated_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], UserFeatureAccess.prototype, "updatedAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'created_by' }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "createdBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'updated_by', nullable: true }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "updatedBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'is_deleted', type: 'smallint', default: 0 }),
+    __metadata("design:type", Number)
+], UserFeatureAccess.prototype, "isDeleted", void 0);
+exports.UserFeatureAccess = UserFeatureAccess = __decorate([
+    (0, typeorm_1.Entity)({ name: 'tbl_c_user_feature_access' })
+], UserFeatureAccess);

package/dist/entities/user-module-access.entity.d.ts

@@ -0,0 +1,12 @@
+export declare class UserModuleAccess {
+    id: number;
+    userId: number;
+    moduleId: number;
+    accessLevel: string;
+    status: number;
+    createdAt: Date;
+    updatedAt: Date;
+    createdBy: number;
+    updatedBy?: number;
+    isDeleted: number;
+}

package/dist/entities/user-module-access.entity.js

@@ -0,0 +1,60 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserModuleAccess = void 0;
+// src/entities/user-module-access.entity.ts
+const typeorm_1 = require("typeorm");
+let UserModuleAccess = class UserModuleAccess {
+};
+exports.UserModuleAccess = UserModuleAccess;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)(),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'user_id' }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "userId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'module_id' }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "moduleId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'access_level', default: 'view' }),
+    __metadata("design:type", String)
+], UserModuleAccess.prototype, "accessLevel", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'smallint', default: 1 }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "status", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'created_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], UserModuleAccess.prototype, "createdAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'updated_at', type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], UserModuleAccess.prototype, "updatedAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'created_by' }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "createdBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'updated_by', nullable: true }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "updatedBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ name: 'is_deleted', type: 'smallint', default: 0 }),
+    __metadata("design:type", Number)
+], UserModuleAccess.prototype, "isDeleted", void 0);
+exports.UserModuleAccess = UserModuleAccess = __decorate([
+    (0, typeorm_1.Entity)({ name: 'tbl_c_user_module_access' })
+], UserModuleAccess);

package/dist/entities/user.entity.d.ts

@@ -0,0 +1,24 @@
+export declare class User {
+    id: number;
+    firstName: string;
+    lastName: string;
+    mobileNo: number;
+    email: string;
+    password: string;
+    status: number;
+    userImage: string;
+    roleId: number;
+    parentId: number;
+    notificationToken: string;
+    apiToken: string;
+    deviceDetails: string;
+    otpNumber: number;
+    isOtpVerified: number;
+    moduleId: number;
+    createdBy: number;
+    updatedBy: number;
+    deletedBy: number;
+    createdAt: Date;
+    updatedAt: Date;
+    deletedAt: Date;
+}

package/dist/entities/user.entity.js

@@ -0,0 +1,108 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.User = void 0;
+// src/entities/user.entity.ts
+const typeorm_1 = require("typeorm");
+let User = class User {
+};
+exports.User = User;
+__decorate([
+    (0, typeorm_1.PrimaryGeneratedColumn)(),
+    __metadata("design:type", Number)
+], User.prototype, "id", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 64 }),
+    __metadata("design:type", String)
+], User.prototype, "firstName", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 64 }),
+    __metadata("design:type", String)
+], User.prototype, "lastName", void 0);
+__decorate([
+    (0, typeorm_1.Column)('bigint'),
+    __metadata("design:type", Number)
+], User.prototype, "mobileNo", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 250, unique: true }),
+    __metadata("design:type", String)
+], User.prototype, "email", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 200 }),
+    __metadata("design:type", String)
+], User.prototype, "password", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'smallint', default: 1 }),
+    __metadata("design:type", Number)
+], User.prototype, "status", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 250, nullable: true }),
+    __metadata("design:type", String)
+], User.prototype, "userImage", void 0);
+__decorate([
+    (0, typeorm_1.Column)(),
+    __metadata("design:type", Number)
+], User.prototype, "roleId", void 0);
+__decorate([
+    (0, typeorm_1.Column)(),
+    __metadata("design:type", Number)
+], User.prototype, "parentId", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'text', nullable: true }),
+    __metadata("design:type", String)
+], User.prototype, "notificationToken", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 500, nullable: true }),
+    __metadata("design:type", String)
+], User.prototype, "apiToken", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ length: 500, nullable: true }),
+    __metadata("design:type", String)
+], User.prototype, "deviceDetails", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'int', nullable: true }),
+    __metadata("design:type", Number)
+], User.prototype, "otpNumber", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'smallint', nullable: true }),
+    __metadata("design:type", Number)
+], User.prototype, "isOtpVerified", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ nullable: true }),
+    __metadata("design:type", Number)
+], User.prototype, "moduleId", void 0);
+__decorate([
+    (0, typeorm_1.Column)(),
+    __metadata("design:type", Number)
+], User.prototype, "createdBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ nullable: true }),
+    __metadata("design:type", Number)
+], User.prototype, "updatedBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ nullable: true }),
+    __metadata("design:type", Number)
+], User.prototype, "deletedBy", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'timestamp', default: () => 'CURRENT_TIMESTAMP' }),
+    __metadata("design:type", Date)
+], User.prototype, "createdAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'timestamp', nullable: true }),
+    __metadata("design:type", Date)
+], User.prototype, "updatedAt", void 0);
+__decorate([
+    (0, typeorm_1.Column)({ type: 'timestamp', nullable: true }),
+    __metadata("design:type", Date)
+], User.prototype, "deletedAt", void 0);
+exports.User = User = __decorate([
+    (0, typeorm_1.Entity)({ name: 'tbl_users' })
+], User);

package/dist/guards/feature.guard.d.ts

@@ -0,0 +1,7 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class FeatureGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+}

package/dist/guards/feature.guard.js

@@ -0,0 +1,34 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.FeatureGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+let FeatureGuard = class FeatureGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const permission = this.reflector.get('feature_permission', context.getHandler());
+        const feature = this.reflector.get('feature_name', context.getHandler());
+        if (!permission || !feature)
+            return true;
+        const { user } = context.switchToHttp().getRequest();
+        const userFeatures = user?.permissions?.features || {};
+        const featurePermissions = userFeatures[feature] || [];
+        return featurePermissions.includes(permission);
+    }
+};
+exports.FeatureGuard = FeatureGuard;
+exports.FeatureGuard = FeatureGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], FeatureGuard);

package/dist/guards/module.guard.d.ts

@@ -0,0 +1,8 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+export declare class ModuleGuard implements CanActivate {
+    private readonly config;
+    constructor(config: {
+        moduleId: number;
+    });
+    canActivate(context: ExecutionContext): boolean;
+}

package/dist/guards/module.guard.js

@@ -0,0 +1,36 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+var __param = (this && this.__param) || function (paramIndex, decorator) {
+    return function (target, key) { decorator(target, key, paramIndex); }
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.ModuleGuard = void 0;
+const common_1 = require("@nestjs/common");
+let ModuleGuard = class ModuleGuard {
+    constructor(config) {
+        this.config = config;
+    }
+    canActivate(context) {
+        const request = context.switchToHttp().getRequest();
+        const user = request.user;
+        // SuperAdmin can bypass module checks
+        const isSuperAdmin = user.roleId === 1;
+        if (isSuperAdmin)
+            return true;
+        return user.moduleId === this.config.moduleId;
+    }
+};
+exports.ModuleGuard = ModuleGuard;
+exports.ModuleGuard = ModuleGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __param(0, (0, common_1.Inject)('MODULE_CONFIG')),
+    __metadata("design:paramtypes", [Object])
+], ModuleGuard);

package/dist/guards/permission.guard.d.ts

@@ -0,0 +1,7 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class PermissionGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+}

package/dist/guards/permission.guard.js

@@ -0,0 +1,41 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PermissionGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+let PermissionGuard = class PermissionGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const permissionMeta = this.reflector.get('combined_permission', context.getHandler());
+        if (!permissionMeta)
+            return true;
+        const request = context.switchToHttp().getRequest();
+        const user = request.user;
+        const { type, permission, name } = permissionMeta;
+        if (type === 'feature') {
+            const perms = user?.permissions?.features?.[name] || [];
+            return perms.includes(permission);
+        }
+        if (type === 'route') {
+            const perms = user?.permissions?.routes?.[name] || [];
+            return perms.includes(permission);
+        }
+        return false;
+    }
+};
+exports.PermissionGuard = PermissionGuard;
+exports.PermissionGuard = PermissionGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], PermissionGuard);

package/dist/guards/roles.guard.d.ts

@@ -0,0 +1,7 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class RolesGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+}

package/dist/guards/roles.guard.js

@@ -0,0 +1,34 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RolesGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+let RolesGuard = class RolesGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const requiredRoles = this.reflector.getAllAndOverride('roles', [
+            context.getHandler(),
+            context.getClass(),
+        ]);
+        if (!requiredRoles || requiredRoles.length === 0)
+            return true;
+        const { user } = context.switchToHttp().getRequest();
+        return requiredRoles.includes(user.roleId?.toString());
+    }
+};
+exports.RolesGuard = RolesGuard;
+exports.RolesGuard = RolesGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], RolesGuard);

package/dist/guards/route.guard.d.ts

@@ -0,0 +1,7 @@
+import { CanActivate, ExecutionContext } from '@nestjs/common';
+import { Reflector } from '@nestjs/core';
+export declare class RouteGuard implements CanActivate {
+    private readonly reflector;
+    constructor(reflector: Reflector);
+    canActivate(context: ExecutionContext): boolean;
+}

package/dist/guards/route.guard.js

@@ -0,0 +1,34 @@
+"use strict";
+var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
+    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
+    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
+    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
+    return c > 3 && r && Object.defineProperty(target, key, r), r;
+};
+var __metadata = (this && this.__metadata) || function (k, v) {
+    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RouteGuard = void 0;
+const common_1 = require("@nestjs/common");
+const core_1 = require("@nestjs/core");
+let RouteGuard = class RouteGuard {
+    constructor(reflector) {
+        this.reflector = reflector;
+    }
+    canActivate(context) {
+        const permission = this.reflector.get('route_permission', context.getHandler());
+        const route = this.reflector.get('route_name', context.getHandler());
+        if (!permission || !route)
+            return true;
+        const request = context.switchToHttp().getRequest();
+        const user = request.user;
+        const routeAccess = user?.permissions?.routes?.[route] || [];
+        return routeAccess.includes(permission);
+    }
+};
+exports.RouteGuard = RouteGuard;
+exports.RouteGuard = RouteGuard = __decorate([
+    (0, common_1.Injectable)(),
+    __metadata("design:paramtypes", [core_1.Reflector])
+], RouteGuard);

package/dist/index.d.ts

@@ -0,0 +1,12 @@
+export * from './auth.module';
+export * from './auth.service';
+export * from './jwt/jwt.guard';
+export * from './jwt/jwt.strategy';
+export * from './guards/roles.guard';
+export * from './guards/module.guard';
+export * from './guards/feature.guard';
+export * from './decorators/current-user.decorator';
+export * from './guards/route.guard';
+export * from './decorators/route-permission.decorator';
+export * from './guards/permission.guard';
+export * from './decorators/has-permission.decorator';