npm - opal-security - Versions diffs - 3.1.1-beta.4600715 → 3.1.1-beta.4ab1987 - Mend

opal-security 3.1.1-beta.4600715 → 3.1.1-beta.4ab1987

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

package/README.md CHANGED Viewed

@@ -22,7 +22,7 @@ $ npm install -g opal-security
 $ opal COMMAND
 running command...
 $ opal (--version)
-opal-security/3.1.1-beta.4600715 linux-x64 node-v20.19.1
+opal-security/3.1.1-beta.4ab1987 linux-x64 node-v20.19.1
 $ opal --help [COMMAND]
 USAGE
   $ opal COMMAND
@@ -101,7 +101,7 @@ EXAMPLES
   $ opal aws:identity
 ```
-_See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/aws/identity.ts)_
+_See code: [src/commands/aws/identity.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/aws/identity.ts)_
 ## `opal clear-auth-provider`
@@ -121,7 +121,7 @@ EXAMPLES
   $ opal clear-auth-provider
 ```
-_See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/clear-auth-provider.ts)_
+_See code: [src/commands/clear-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/clear-auth-provider.ts)_
 ## `opal curl-example`
@@ -138,7 +138,7 @@ DESCRIPTION
   Prints out an example cURL command containing the parameters the CLI uses to query the Opal server.
 ```
-_See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/curl-example.ts)_
+_See code: [src/commands/curl-example.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/curl-example.ts)_
 ## `opal groups get`
@@ -159,7 +159,7 @@ EXAMPLES
   $ opal groups:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
 ```
-_See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/groups/get.ts)_
+_See code: [src/commands/groups/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/groups/get.ts)_
 ## `opal help [COMMANDS]`
@@ -209,7 +209,7 @@ EXAMPLES
   $ opal iam-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --profileName "custom-profile"
 ```
-_See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/iam-roles/start.ts)_
+_See code: [src/commands/iam-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/iam-roles/start.ts)_
 ## `opal kube-roles start`
@@ -240,7 +240,7 @@ EXAMPLES
   $ opal kube-roles:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId "arn:aws:iam::712234975475:role/acme-eks-cluster-admin-role"
 ```
-_See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/kube-roles/start.ts)_
+_See code: [src/commands/kube-roles/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/kube-roles/start.ts)_
 ## `opal login`
@@ -261,7 +261,7 @@ EXAMPLES
   $ opal login
 ```
-_See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/login.ts)_
+_See code: [src/commands/login.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/login.ts)_
 ## `opal logout`
@@ -281,7 +281,7 @@ EXAMPLES
   $ opal logout
 ```
-_See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/logout.ts)_
+_See code: [src/commands/logout.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/logout.ts)_
 ## `opal postgres-instances start`
@@ -318,7 +318,7 @@ EXAMPLES
   $ opal postgres-instances:start --id 51f7176b-0464-4a6f-8369-e951e187b398 --accessLevelRemoteId fullaccess --action view
 ```
-_See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/postgres-instances/start.ts)_
+_See code: [src/commands/postgres-instances/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/postgres-instances/start.ts)_
 ## `opal resources get`
@@ -339,7 +339,7 @@ EXAMPLES
   $ opal resources:get --id 54052a3e-5375-4392-aeaf-0c6c44c131d4
 ```
-_See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/resources/get.ts)_
+_See code: [src/commands/resources/get.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/resources/get.ts)_
 ## `opal set-auth-provider`
@@ -365,7 +365,7 @@ EXAMPLES
   $ opal set-auth-provider --clientID 1234asdf --issuerUrl https://auth.example.com
 ```
-_See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/set-auth-provider.ts)_
+_See code: [src/commands/set-auth-provider.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/set-auth-provider.ts)_
 ## `opal set-custom-header`
@@ -386,7 +386,7 @@ EXAMPLES
   $ opal set-custom-header --header 'cf-access-token: $TOKEN'
 ```
-_See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/set-custom-header.ts)_
+_See code: [src/commands/set-custom-header.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/set-custom-header.ts)_
 ## `opal set-token`
@@ -406,7 +406,7 @@ EXAMPLES
   $ opal set-token
 ```
-_See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/set-token.ts)_
+_See code: [src/commands/set-token.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/set-token.ts)_
 ## `opal set-url [URL]`
@@ -430,7 +430,7 @@ EXAMPLES
   $ opal set-url
 ```
-_See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/set-url.ts)_
+_See code: [src/commands/set-url.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/set-url.ts)_
 ## `opal ssh copyFrom`
@@ -461,7 +461,7 @@ EXAMPLES
   $ opal ssh:copyFrom --src instance/dir --dest my/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
-_See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/ssh/copyFrom.ts)_
+_See code: [src/commands/ssh/copyFrom.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/ssh/copyFrom.ts)_
 ## `opal ssh copyTo`
@@ -492,7 +492,7 @@ EXAMPLES
   $ opal ssh:copyTo --src my/dir --dest instance/dir --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
-_See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/ssh/copyTo.ts)_
+_See code: [src/commands/ssh/copyTo.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/ssh/copyTo.ts)_
 ## `opal ssh start`
@@ -519,7 +519,7 @@ EXAMPLES
   $ opal ssh:start --id 51f7176b-0464-4a6f-8369-e951e187b398
 ```
-_See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4600715/src/commands/ssh/start.ts)_
+_See code: [src/commands/ssh/start.ts](https://github.com/opalsecurity/opal-cli/blob/v3.1.1-beta.4ab1987/src/commands/ssh/start.ts)_
 ## `opal version`

package/lib/graphql/gql.d.ts CHANGED Viewed

@@ -18,7 +18,8 @@ type Documents = {
     "\nquery CheckAuthSessionQuery {\n  organizationSettings {\n    ... on OrganizationSettingsResult {\n      settings {\n        id\n      }\n    }\n  }\n}\n": typeof types.CheckAuthSessionQueryDocument;
     '\n  query GetRequestableAppsQuery($searchQuery: String) {\n    appsV2(\n      filters: {\n        access: REQUESTABLE\n        searchQuery: $searchQuery\n      }\n    ) @connection(key: "paginated-app-dropdown") {\n      edges {\n        node {\n          id\n          displayName\n          ... on Connection {\n            connectionType\n          }\n          ... on Resource {\n            resourceType\n          }\n        }\n      }\n      pageInfo {\n        hasNextPage\n        hasPreviousPage\n        startCursor\n        endCursor\n      }\n    }\n  }\n  ': typeof types.GetRequestableAppsQueryDocument;
     "\n  query PaginatedEntityDropdown(\n  $id: UUID!\n  $searchQuery: String\n) {\n  app(id: $id) {\n    __typename\n    ... on App {\n      id\n      items(\n        input: {\n          access: REQUESTABLE\n          searchQuery: $searchQuery\n          includeOnlyRequestable: true\n        }\n      ) {\n        items {\n          key\n          resource {\n            id\n            name\n          }\n          group {\n            id\n            name\n          }\n        }\n        cursor\n      }\n    }\n    ... on AppNotFoundError {\n      message\n    }\n  }\n}\n": typeof types.PaginatedEntityDropdownDocument;
-    "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          __typename\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n": typeof types.ResourceAccessLevelsDocument;
+    "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n": typeof types.ResourceAccessLevelsDocument;
+    "\nquery GroupAccessLevels($groupId: GroupId!) {\n  groupAccessLevels(\n    input: { groupId: $groupId }\n  ) {\n    ... on GroupAccessLevelsResult {\n      groupId\n      accessLevels {\n        ... on GroupAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n      }\n    }\n  }\n}\n": typeof types.GroupAccessLevelsDocument;
     "\n  query RequestDefaults(\n    $requestedResources: [RequestConfigurationResourceInput!]!\n    $requestedGroups: [RequestConfigurationGroupInput!]!\n    ) {\n    requestDefaults(input: {\n      requestedResources: $requestedResources,\n      requestedGroups: $requestedGroups,\n      }\n    ) {\n      durationOptions {\n        durationInMinutes\n        label\n      }\n      recommendedDurationInMinutes\n      defaultDurationInMinutes\n      maxDurationInMinutes\n      requireSupportTicket\n      reasonOptional\n      requesterIsAdmin\n    }\n  }": typeof types.RequestDefaultsDocument;
 };
 declare const documents: Documents;
@@ -62,7 +63,11 @@ export declare function graphql(source: "\n  query PaginatedEntityDropdown(\n  $
 /**
  * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
  */
-export declare function graphql(source: "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          __typename\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n"): (typeof documents)["\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          __typename\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n"];
+export declare function graphql(source: "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n"): (typeof documents)["\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n"];
+/**
+ * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
+ */
+export declare function graphql(source: "\nquery GroupAccessLevels($groupId: GroupId!) {\n  groupAccessLevels(\n    input: { groupId: $groupId }\n  ) {\n    ... on GroupAccessLevelsResult {\n      groupId\n      accessLevels {\n        ... on GroupAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n      }\n    }\n  }\n}\n"): (typeof documents)["\nquery GroupAccessLevels($groupId: GroupId!) {\n  groupAccessLevels(\n    input: { groupId: $groupId }\n  ) {\n    ... on GroupAccessLevelsResult {\n      groupId\n      accessLevels {\n        ... on GroupAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n      }\n    }\n  }\n}\n"];
 /**
  * The graphql function is used to parse GraphQL queries into a document that can be used by GraphQL clients.
  */

package/lib/graphql/gql.js CHANGED Viewed

@@ -10,7 +10,8 @@ const documents = {
     "\nquery CheckAuthSessionQuery {\n  organizationSettings {\n    ... on OrganizationSettingsResult {\n      settings {\n        id\n      }\n    }\n  }\n}\n": types.CheckAuthSessionQueryDocument,
     '\n  query GetRequestableAppsQuery($searchQuery: String) {\n    appsV2(\n      filters: {\n        access: REQUESTABLE\n        searchQuery: $searchQuery\n      }\n    ) @connection(key: "paginated-app-dropdown") {\n      edges {\n        node {\n          id\n          displayName\n          ... on Connection {\n            connectionType\n          }\n          ... on Resource {\n            resourceType\n          }\n        }\n      }\n      pageInfo {\n        hasNextPage\n        hasPreviousPage\n        startCursor\n        endCursor\n      }\n    }\n  }\n  ': types.GetRequestableAppsQueryDocument,
     "\n  query PaginatedEntityDropdown(\n  $id: UUID!\n  $searchQuery: String\n) {\n  app(id: $id) {\n    __typename\n    ... on App {\n      id\n      items(\n        input: {\n          access: REQUESTABLE\n          searchQuery: $searchQuery\n          includeOnlyRequestable: true\n        }\n      ) {\n        items {\n          key\n          resource {\n            id\n            name\n          }\n          group {\n            id\n            name\n          }\n        }\n        cursor\n      }\n    }\n    ... on AppNotFoundError {\n      message\n    }\n  }\n}\n": types.PaginatedEntityDropdownDocument,
-    "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          __typename\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n": types.ResourceAccessLevelsDocument,
+    "\n  query ResourceAccessLevels($resourceId: ResourceId!) {\n    accessLevels(input: {\n      resourceId: $resourceId,\n      onlyMine: false,\n    }) {\n      __typename\n      ... on ResourceAccessLevelsResult {\n        accessLevels {\n          ... on ResourceAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n        }\n      }\n      ... on ResourceNotFoundError {\n        message\n      }\n    }\n  }\n": types.ResourceAccessLevelsDocument,
+    "\nquery GroupAccessLevels($groupId: GroupId!) {\n  groupAccessLevels(\n    input: { groupId: $groupId }\n  ) {\n    ... on GroupAccessLevelsResult {\n      groupId\n      accessLevels {\n        ... on GroupAccessLevel {\n            accessLevelName\n            accessLevelRemoteId\n          }\n      }\n    }\n  }\n}\n": types.GroupAccessLevelsDocument,
     "\n  query RequestDefaults(\n    $requestedResources: [RequestConfigurationResourceInput!]!\n    $requestedGroups: [RequestConfigurationGroupInput!]!\n    ) {\n    requestDefaults(input: {\n      requestedResources: $requestedResources,\n      requestedGroups: $requestedGroups,\n      }\n    ) {\n      durationOptions {\n        durationInMinutes\n        label\n      }\n      recommendedDurationInMinutes\n      defaultDurationInMinutes\n      maxDurationInMinutes\n      requireSupportTicket\n      reasonOptional\n      requesterIsAdmin\n    }\n  }": types.RequestDefaultsDocument,
 };
 function graphql(source) {

package/lib/graphql/graphql.d.ts CHANGED Viewed

@@ -11629,7 +11629,7 @@ export type ResourceAccessLevelsQuery = {
     accessLevels: {
         __typename: "ResourceAccessLevelsResult";
         accessLevels: Array<{
-            __typename: "ResourceAccessLevel";
+            __typename?: "ResourceAccessLevel";
             accessLevelName: string;
             accessLevelRemoteId: string;
         }>;
@@ -11638,6 +11638,23 @@ export type ResourceAccessLevelsQuery = {
         message: string;
     };
 };
+export type GroupAccessLevelsQueryVariables = Exact<{
+    groupId: Scalars["GroupId"]["input"];
+}>;
+export type GroupAccessLevelsQuery = {
+    __typename?: "Query";
+    groupAccessLevels: {
+        __typename?: "GroupAccessLevelsResult";
+        groupId: string;
+        accessLevels?: Array<{
+            __typename?: "GroupAccessLevel";
+            accessLevelName: string;
+            accessLevelRemoteId: string;
+        }> | null;
+    } | {
+        __typename?: "GroupNotFoundError";
+    };
+};
 export type RequestDefaultsQueryVariables = Exact<{
     requestedResources: Array<RequestConfigurationResourceInput> | RequestConfigurationResourceInput;
     requestedGroups: Array<RequestConfigurationGroupInput> | RequestConfigurationGroupInput;
@@ -11666,4 +11683,5 @@ export declare const CheckAuthSessionQueryDocument: DocumentNode<CheckAuthSessio
 export declare const GetRequestableAppsQueryDocument: DocumentNode<GetRequestableAppsQueryQuery, GetRequestableAppsQueryQueryVariables>;
 export declare const PaginatedEntityDropdownDocument: DocumentNode<PaginatedEntityDropdownQuery, PaginatedEntityDropdownQueryVariables>;
 export declare const ResourceAccessLevelsDocument: DocumentNode<ResourceAccessLevelsQuery, ResourceAccessLevelsQueryVariables>;
+export declare const GroupAccessLevelsDocument: DocumentNode<GroupAccessLevelsQuery, GroupAccessLevelsQueryVariables>;
 export declare const RequestDefaultsDocument: DocumentNode<RequestDefaultsQuery, RequestDefaultsQueryVariables>;

package/lib/graphql/graphql.js CHANGED Viewed

@@ -2,7 +2,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.GroupUserSource = exports.GroupUserSortByField = exports.GroupType = exports.GroupResourceSource = exports.GroupBindingsSortByField = exports.GroupBindingSuggestionsSortByField = exports.GeneralSettingType = exports.FiltersMatchMode = exports.FilterRule = exports.FactorType = exports.EventType = exports.EventSeverity = exports.ErrorNotificationSettingType = exports.EntityType = exports.ConnectionValidationStatus = exports.ConnectionValidationSeverity = exports.ConnectionType = exports.BundlesSortByField = exports.BundleItemsSortByField = exports.AuthType = exports.AuthSessionStatus = exports.AuthFlowType = exports.AssociatedItemsSortByField = exports.AssignmentsSortByField = exports.AppsSortByField = exports.AppType = exports.AppItemsSortByField = exports.AppCategory = exports.ApiAuthType = exports.ApiAccessLevel = exports.AldwinRole = exports.AccessType = exports.AccessRuleStatus = exports.AccessReviewUserWarningType = exports.AccessReviewType = exports.AccessReviewTab = exports.AccessReviewSummaryStatus = exports.AccessReviewStatus = exports.AccessReviewReviewerAssignmentPolicy = exports.AccessReviewItemsSortByField = exports.AccessReviewItemStatus = exports.AccessReviewItemOutcome = exports.AccessReviewGroupResourceVisibilityPolicy = exports.AccessReviewGroupItemKind = exports.AccessReviewEndUserView = exports.AccessReviewAssignedStatus = exports.AccessReviewAction = exports.AccessOption = exports.AccessChangeType = exports.AwsIdentityCenterImportSetting = void 0;
 exports.TagsSortByField = exports.TagFilterMatchMode = exports.SyncType = exports.SyncTaskStatus = exports.SubEventsSortByField = exports.StringFormatType = exports.SortDirection = exports.ServiceType = exports.SearchType = exports.RolePermissionTargetType = exports.RolePermission = exports.RoleAssignmentsSortByField = exports.RoleAssignmentSource = exports.RiskLevel = exports.ReviewerUserStatus = exports.ReviewerAction = exports.ReviewStageOperator = exports.ResourceUserSource = exports.ResourceUserSortByField = exports.ResourceType = exports.RequestsSortByField = exports.RequestType = exports.RequestTemplateCustomFieldType = exports.RequestStatus = exports.RequestMessageLevel = exports.RequestMessageCode = exports.RequestApprovalType = exports.RecommendationsSubscoreType = exports.RecommendationsMetricType = exports.RecommendationsFeedbackType = exports.RecommendationsEntityType = exports.PubsubPublishMessageType = exports.PubsubPublishMessageStatusCode = exports.PubsubPublishConnectionType = exports.ProvisionSource = exports.PropagationTaskType = exports.PropagationStatusCode = exports.OwnersSortByField = exports.OrganizationType = exports.OidcProviderType = exports.NotificationType = exports.MessageChannelType = exports.MfaProvider = exports.IntegrationType = exports.ImportSetting = exports.IdpConnectionUserAttributeUseAs = exports.IdpConnectionType = exports.IdentityCategory = exports.HrIdpStatus = exports.HealthStatus = void 0;
-exports.RequestDefaultsDocument = exports.ResourceAccessLevelsDocument = exports.PaginatedEntityDropdownDocument = exports.GetRequestableAppsQueryDocument = exports.CheckAuthSessionQueryDocument = exports.GetRequestsDocument = exports.GetRequestDocument = exports.GetGroupDocument = exports.RequestDecisionLevel = exports.WebhookPubsubPublishConnectionAuthType = exports.WebhookPubsubPublishConnectionApiKeyLocation = exports.Visibility = exports.VerifyFactorStatus = exports.UsersSortByField = exports.UserProductRole = exports.UserErrorType = exports.UsageAttributionType = exports.UiSource = exports.TimePeriod = exports.TimeBucket = exports.ThirdPartyProvider = exports.TaskTrigger = void 0;
+exports.RequestDefaultsDocument = exports.GroupAccessLevelsDocument = exports.ResourceAccessLevelsDocument = exports.PaginatedEntityDropdownDocument = exports.GetRequestableAppsQueryDocument = exports.CheckAuthSessionQueryDocument = exports.GetRequestsDocument = exports.GetRequestDocument = exports.GetGroupDocument = exports.RequestDecisionLevel = exports.WebhookPubsubPublishConnectionAuthType = exports.WebhookPubsubPublishConnectionApiKeyLocation = exports.Visibility = exports.VerifyFactorStatus = exports.UsersSortByField = exports.UserProductRole = exports.UserErrorType = exports.UsageAttributionType = exports.UiSource = exports.TimePeriod = exports.TimeBucket = exports.ThirdPartyProvider = exports.TaskTrigger = void 0;
 var AwsIdentityCenterImportSetting;
 (function (AwsIdentityCenterImportSetting) {
     AwsIdentityCenterImportSetting["All"] = "ALL";
@@ -2667,10 +2667,6 @@ exports.ResourceAccessLevelsDocument = {
                                                 selectionSet: {
                                                     kind: "SelectionSet",
                                                     selections: [
-                                                        {
-                                                            kind: "Field",
-                                                            name: { kind: "Name", value: "__typename" },
-                                                        },
                                                         {
                                                             kind: "InlineFragment",
                                                             typeCondition: {
@@ -2730,6 +2726,119 @@ exports.ResourceAccessLevelsDocument = {
         },
     ],
 };
+exports.GroupAccessLevelsDocument = {
+    kind: "Document",
+    definitions: [
+        {
+            kind: "OperationDefinition",
+            operation: "query",
+            name: { kind: "Name", value: "GroupAccessLevels" },
+            variableDefinitions: [
+                {
+                    kind: "VariableDefinition",
+                    variable: {
+                        kind: "Variable",
+                        name: { kind: "Name", value: "groupId" },
+                    },
+                    type: {
+                        kind: "NonNullType",
+                        type: {
+                            kind: "NamedType",
+                            name: { kind: "Name", value: "GroupId" },
+                        },
+                    },
+                },
+            ],
+            selectionSet: {
+                kind: "SelectionSet",
+                selections: [
+                    {
+                        kind: "Field",
+                        name: { kind: "Name", value: "groupAccessLevels" },
+                        arguments: [
+                            {
+                                kind: "Argument",
+                                name: { kind: "Name", value: "input" },
+                                value: {
+                                    kind: "ObjectValue",
+                                    fields: [
+                                        {
+                                            kind: "ObjectField",
+                                            name: { kind: "Name", value: "groupId" },
+                                            value: {
+                                                kind: "Variable",
+                                                name: { kind: "Name", value: "groupId" },
+                                            },
+                                        },
+                                    ],
+                                },
+                            },
+                        ],
+                        selectionSet: {
+                            kind: "SelectionSet",
+                            selections: [
+                                {
+                                    kind: "InlineFragment",
+                                    typeCondition: {
+                                        kind: "NamedType",
+                                        name: { kind: "Name", value: "GroupAccessLevelsResult" },
+                                    },
+                                    selectionSet: {
+                                        kind: "SelectionSet",
+                                        selections: [
+                                            {
+                                                kind: "Field",
+                                                name: { kind: "Name", value: "groupId" },
+                                            },
+                                            {
+                                                kind: "Field",
+                                                name: { kind: "Name", value: "accessLevels" },
+                                                selectionSet: {
+                                                    kind: "SelectionSet",
+                                                    selections: [
+                                                        {
+                                                            kind: "InlineFragment",
+                                                            typeCondition: {
+                                                                kind: "NamedType",
+                                                                name: {
+                                                                    kind: "Name",
+                                                                    value: "GroupAccessLevel",
+                                                                },
+                                                            },
+                                                            selectionSet: {
+                                                                kind: "SelectionSet",
+                                                                selections: [
+                                                                    {
+                                                                        kind: "Field",
+                                                                        name: {
+                                                                            kind: "Name",
+                                                                            value: "accessLevelName",
+                                                                        },
+                                                                    },
+                                                                    {
+                                                                        kind: "Field",
+                                                                        name: {
+                                                                            kind: "Name",
+                                                                            value: "accessLevelRemoteId",
+                                                                        },
+                                                                    },
+                                                                ],
+                                                            },
+                                                        },
+                                                    ],
+                                                },
+                                            },
+                                        ],
+                                    },
+                                },
+                            ],
+                        },
+                    },
+                ],
+            },
+        },
+    ],
+};
 exports.RequestDefaultsDocument = {
     kind: "Document",
     definitions: [

package/lib/lib/requests.d.ts CHANGED Viewed

@@ -7,6 +7,7 @@ interface AppNode {
 }
 interface AssetNode {
     assetName: string;
+    type: string;
     roles?: Record<string, RoleNode>;
 }
 interface RoleNode {

package/lib/lib/requests.js CHANGED Viewed

@@ -12,6 +12,7 @@ exports.submitFinalRequest = submitFinalRequest;
 const inquirer = require("inquirer");
 const graphql_1 = require("../graphql");
 inquirer.registerPrompt("autocomplete", require("inquirer-autocomplete-prompt"));
+const { AutoComplete } = require("enquirer");
 function createEmptyRequestMetadata() {
     // Initialize with empty defaults
     const requestDefaults = {
@@ -81,10 +82,11 @@ async function queryRequestableApps(cmd, client, input) {
             }
             const label = `${edge.node.displayName} (${type})`;
             return {
-                name: label,
+                message: label,
                 value: {
                     id: edge.node.id,
                     name: label,
+                    toString: () => label,
                 },
             };
         });
@@ -147,16 +149,17 @@ async function queryRequestableAssets(cmd, client, appId, input) {
         switch (resp.data.app.__typename) {
             case "App":
                 return (_d = (_c = (_b = (_a = resp.data) === null || _a === void 0 ? void 0 : _a.app) === null || _b === void 0 ? void 0 : _b.items) === null || _c === void 0 ? void 0 : _c.items) === null || _d === void 0 ? void 0 : _d.map((item) => {
-                    var _a, _b, _c, _d, _e, _f;
+                    var _a, _b, _c, _d, _e, _f, _g, _h;
                     const name = ((_a = item.resource) === null || _a === void 0 ? void 0 : _a.name) || ((_b = item.group) === null || _b === void 0 ? void 0 : _b.name);
                     const id = ((_c = item.resource) === null || _c === void 0 ? void 0 : _c.id) || ((_d = item.group) === null || _d === void 0 ? void 0 : _d.id);
                     const type = ((_e = item.resource) === null || _e === void 0 ? void 0 : _e.__typename) || ((_f = item.group) === null || _f === void 0 ? void 0 : _f.__typename);
                     const label = `${name} (${type})`;
                     return {
-                        name: label,
+                        message: label,
                         value: {
                             name: label,
                             id: id,
+                            type: ((_g = item.resource) === null || _g === void 0 ? void 0 : _g.__typename) || ((_h = item.group) === null || _h === void 0 ? void 0 : _h.__typename),
                         },
                     };
                 });
@@ -182,7 +185,6 @@ const RESOURCE_ROLES_QUERY = (0, graphql_1.graphql)(`
       __typename
       ... on ResourceAccessLevelsResult {
         accessLevels {
-          __typename
           ... on ResourceAccessLevel {
             accessLevelName
             accessLevelRemoteId
@@ -195,34 +197,82 @@ const RESOURCE_ROLES_QUERY = (0, graphql_1.graphql)(`
     }
   }
 `);
-async function queryResourceRoles(cmd, client, resourceId) {
-    var _a, _b, _c, _d, _e;
+const GROUP_ROLES_QUERY = (0, graphql_1.graphql)(`
+query GroupAccessLevels($groupId: GroupId!) {
+  groupAccessLevels(
+    input: { groupId: $groupId }
+  ) {
+    ... on GroupAccessLevelsResult {
+      groupId
+      accessLevels {
+        ... on GroupAccessLevel {
+            accessLevelName
+            accessLevelRemoteId
+          }
+      }
+    }
+  }
+}
+`);
+async function queryAssetRoles(cmd, client, assetType, assetId) {
+    var _a, _b, _c, _d, _e, _f, _g, _h;
     try {
-        const resp = await client.query({
-            query: RESOURCE_ROLES_QUERY,
-            variables: {
-                resourceId: resourceId,
-            },
-            fetchPolicy: "network-only", // to avoid caching
-        });
-        // no fall through doesn't consider process.exit();
-        let x;
-        switch (resp.data.accessLevels.__typename) {
-            case "ResourceAccessLevelsResult":
-                return (_c = (_b = (_a = resp.data) === null || _a === void 0 ? void 0 : _a.accessLevels) === null || _b === void 0 ? void 0 : _b.accessLevels) === null || _c === void 0 ? void 0 : _c.map((role) => {
-                    return {
-                        name: role.accessLevelName,
-                        value: {
-                            name: role.accessLevelName,
-                            id: role.accessLevelRemoteId,
-                        },
-                    };
+        switch (assetType) {
+            case "Resource": {
+                const resp = await client.query({
+                    query: RESOURCE_ROLES_QUERY,
+                    variables: {
+                        resourceId: assetId,
+                    },
+                    fetchPolicy: "network-only", // to avoid caching
                 });
-            case "ResourceNotFoundError":
-                x = cmd.error((_e = (_d = resp.data) === null || _d === void 0 ? void 0 : _d.accessLevels) === null || _e === void 0 ? void 0 : _e.message);
-                break;
-            default:
-                cmd.error(resp.error || "Unknown error occurred.");
+                // no fall through doesn't consider process.exit();
+                let x;
+                switch (resp.data.accessLevels.__typename) {
+                    case "ResourceAccessLevelsResult":
+                        return (_c = (_b = (_a = resp.data) === null || _a === void 0 ? void 0 : _a.accessLevels) === null || _b === void 0 ? void 0 : _b.accessLevels) === null || _c === void 0 ? void 0 : _c.map((role) => {
+                            return {
+                                name: role.accessLevelName,
+                                value: {
+                                    name: role.accessLevelName,
+                                    id: role.accessLevelRemoteId,
+                                },
+                            };
+                        });
+                    case "ResourceNotFoundError":
+                        x = cmd.error((_e = (_d = resp.data) === null || _d === void 0 ? void 0 : _d.accessLevels) === null || _e === void 0 ? void 0 : _e.message);
+                        break;
+                    default:
+                        cmd.error(resp.error || "Unknown error occurred.");
+                }
+                return;
+            }
+            case "Group": {
+                const resp = await client.query({
+                    query: GROUP_ROLES_QUERY,
+                    variables: {
+                        groupId: assetId,
+                    },
+                    fetchPolicy: "network-only", // to avoid caching
+                });
+                // no fall through doesn't consider process.exit();
+                let x;
+                switch (resp.data.groupAccessLevels.__typename) {
+                    case "GroupAccessLevelsResult":
+                        return (_h = (_g = (_f = resp.data) === null || _f === void 0 ? void 0 : _f.groupAccessLevels) === null || _g === void 0 ? void 0 : _g.accessLevels) === null || _h === void 0 ? void 0 : _h.map((role) => {
+                            return {
+                                name: role.accessLevelName,
+                                value: {
+                                    name: role.accessLevelName,
+                                    id: role.accessLevelRemoteId,
+                                },
+                            };
+                        });
+                    default:
+                        x = cmd.error(resp.error || "Unknown error occurred.");
+                }
+                return;
+            }
         }
     }
     catch (error) {
@@ -273,18 +323,18 @@ async function queryRequestDefaults(cmd, client, requestedResources, requestedGr
 }
 // Helper functions
 async function selectRequestableItems(cmd, client, requestMap) {
-    const { App } = await inquirer.prompt([
-        {
-            name: "App",
-            message: "Select an app:",
-            type: "autocomplete",
-            source: async (answers, input) => {
-                var _a;
-                return (_a = (await queryRequestableApps(cmd, client, input))) !== null && _a !== void 0 ? _a : [];
-            },
-            pageSize: 15,
+    const initialChoices = (await queryRequestableApps(cmd, client, "")) || [];
+    const appPrompt = new AutoComplete({
+        name: "App",
+        message: "Select an app:",
+        limit: 15,
+        choices: initialChoices,
+        async suggest(input) {
+            const filteredChoices = await queryRequestableApps(cmd, client, input || "");
+            return filteredChoices || initialChoices;
         },
-    ]);
+    });
+    const App = await appPrompt.run();
     // Set the app in the requestMap and call choose assets step
     if (!(App.id in requestMap)) {
         requestMap[App.id] = {
@@ -295,13 +345,16 @@ async function selectRequestableItems(cmd, client, requestMap) {
     await chooseAssets(cmd, client, App.id, requestMap);
 }
 async function chooseAssets(cmd, client, appId, requestMap) {
-    var _a;
-    const { Assets } = await inquirer.prompt({
+    const initialChoices = queryRequestableAssets(cmd, client, appId, "") || [];
+    const assetPrompt = new AutoComplete({
         name: "Assets",
-        type: "checkbox",
-        pageSize: 15,
-        message: "Select one or more items:",
-        choices: (_a = (await queryRequestableAssets(cmd, client, appId, undefined))) !== null && _a !== void 0 ? _a : [],
+        message: "Select one or more assets:",
+        limit: 15,
+        multiple: true,
+        async choices(input) {
+            const filteredChoices = await queryRequestableAssets(cmd, client, appId, input);
+            return filteredChoices || initialChoices;
+        },
         validate: (answer) => {
             if (answer.length < 1) {
                 return "You must select at least one item.";
@@ -309,14 +362,16 @@ async function chooseAssets(cmd, client, appId, requestMap) {
             return true;
         },
     });
+    const Assets = await assetPrompt.run();
     const entry = requestMap[appId];
     for (const asset of Assets) {
         if (entry === undefined) {
-            throw new Error(`App ${appId} not found in requestMap`);
+            throw new Error(`Error formatting app ${appId} in request`);
         }
         if (!(asset.id in entry.assets)) {
             entry.assets[asset.id] = {
                 assetName: asset.name,
+                type: asset.type,
                 roles: {},
             };
         }
@@ -325,7 +380,9 @@ async function chooseAssets(cmd, client, appId, requestMap) {
 }
 async function chooseRoles(cmd, client, appId, assetId, requestMap) {
     var _a;
-    const resourceRoles = (_a = (await queryResourceRoles(cmd, client, assetId))) !== null && _a !== void 0 ? _a : [];
+    const entry = requestMap[appId];
+    const assetEntry = entry === null || entry === void 0 ? void 0 : entry.assets[assetId];
+    const resourceRoles = (_a = (await queryAssetRoles(cmd, client, assetEntry.type, assetId))) !== null && _a !== void 0 ? _a : [];
     if (resourceRoles !== undefined &&
         (resourceRoles.length === 0 ||
             (resourceRoles.length === 1 && resourceRoles[0].name === ""))) {
@@ -343,8 +400,6 @@ async function chooseRoles(cmd, client, appId, assetId, requestMap) {
             return true;
         },
     });
-    const entry = requestMap[appId];
-    const assetEntry = entry === null || entry === void 0 ? void 0 : entry.assets[assetId];
     if (entry === undefined || assetEntry === undefined) {
         throw new Error(`App ${appId} or Asset ${assetId} not found in requestMap`);
     }

package/oclif.manifest.json CHANGED Viewed

@@ -971,5 +971,5 @@
       ]
     }
   },
-  "version": "3.1.1-beta.4600715"
+  "version": "3.1.1-beta.4ab1987"
 }

package/package.json CHANGED Viewed

@@ -1,7 +1,7 @@
 {
   "name": "opal-security",
   "description": "Opal allows you to centrally manage access to all of your sensitive systems.",
-  "version": "3.1.1-beta.4600715",
+  "version": "3.1.1-beta.4ab1987",
   "author": "Stephen Cobbe",
   "bin": {
     "opal": "./bin/run"
@@ -16,6 +16,7 @@
     "argon2": "^0.40.1",
     "chalk": "^2.4.2",
     "cli-table3": "^0.6.5",
+    "enquirer": "^2.4.1",
     "graphql": "^15.5.0",
     "inquirer": "^8.2.6",
     "inquirer-autocomplete-prompt": "^2.0.1",