permissions-contractx 1.0.2 → 1.1.0

package/dist/services/user-context.service.js

@@ -16,8 +16,70 @@ exports.UserContextService = void 0;
 const common_1 = require("@nestjs/common");
 const core_1 = require("@nestjs/core");
 const contractx_roles_constants_1 = require("../constants/contractx-roles.constants");
+function coerceStringOrNumber(...vals) {
+    for (const v of vals) {
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+        if (typeof v === 'number')
+            return v;
+    }
+    return '';
+}
+function coerceString(...vals) {
+    for (const v of vals)
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+    return '';
+}
+function coerceStringArray(...vals) {
+    for (const v of vals) {
+        if (Array.isArray(v)) {
+            const arr = v.filter((x) => typeof x === 'string');
+            if (arr.length > 0)
+                return arr;
+        }
+        if (typeof v === 'string' && v.length > 0)
+            return [v];
+    }
+    return [];
+}
+function coerceOptionalString(...vals) {
+    for (const v of vals)
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+    return undefined;
+}
+function coerceOptionalNumber(v) {
+    return typeof v === 'number' ? v : undefined;
+}
+function normalizeToPayload(raw) {
+    return {
+        sub: coerceStringOrNumber(raw.sub, raw.id, raw.user_id),
+        role: coerceStringArray(raw.role, raw.roles),
+        permissions: coerceStringArray(raw.permissions),
+        permissionsView: Array.isArray(raw.permissionsView)
+            ? raw.permissionsView.filter((x) => typeof x === 'string')
+            : undefined,
+        fullName: coerceString(raw.fullName, raw.full_name, raw.username),
+        email: coerceOptionalString(raw.email),
+        clientId: coerceStringArray(raw.clientId, raw.client_id),
+        providerId: coerceOptionalString(raw.providerId),
+        tenantContext: (() => {
+            const t = raw.tenantContext;
+            return t === 'client' || t === 'provider' || t === 'system' ? t : undefined;
+        })(),
+        key_client: coerceStringArray(raw.key_client),
+        sessionId: coerceOptionalString(raw.sessionId, raw.session_id),
+        iat: coerceOptionalNumber(raw.iat),
+        exp: coerceOptionalNumber(raw.exp),
+        iss: coerceOptionalString(raw.iss),
+        aud: coerceOptionalString(raw.aud),
+    };
+}
 let UserContextService = class UserContextService {
     constructor(request) {
+        this.user = null;
+        this.autoInitialized = false;
         this.request = request;
         this.user = null;
         this.autoInitialized = false;
@@ -40,31 +102,7 @@ let UserContextService = class UserContextService {
         // Try to get user from request.user (populated by JWT middleware)
         if (this.request?.user) {
             try {
-                // Handle different user object formats
-                const requestUser = this.request.user;
-                // Convert to JwtPayload format
-                const payload = {
-                    sub: requestUser.sub || requestUser.id || requestUser.user_id,
-                    role: requestUser.role || requestUser.roles || [],
-                    permissions: requestUser.permissions || [],
-                    fullName: requestUser.fullName || requestUser.full_name || requestUser.username || '',
-                    email: requestUser.email,
-                    clientId: Array.isArray(requestUser.clientId)
-                        ? requestUser.clientId[0]
-                        : (requestUser.clientId || requestUser.client_id),
-                    sessionId: requestUser.sessionId || requestUser.session_id,
-                    iat: requestUser.iat,
-                    exp: requestUser.exp,
-                    iss: requestUser.iss,
-                    aud: requestUser.aud,
-                };
-                // Copy any additional properties
-                Object.keys(requestUser).forEach(key => {
-                    if (!(key in payload)) {
-                        payload[key] = requestUser[key];
-                    }
-                });
-                this.user = payload;
+                this.user = normalizeToPayload(this.request.user);
                 return;
             }
             catch (error) {
@@ -74,25 +112,7 @@ let UserContextService = class UserContextService {
         // Fallback: try to get user from request.tenant (if populated by custom middleware)
         if (this.request?.tenant) {
             try {
-                const tenant = this.request.tenant;
-                const payload = {
-                    sub: tenant.user_id || tenant.sub || tenant.id,
-                    role: tenant.roles || [tenant.role].filter(Boolean),
-                    permissions: tenant.permissions || [],
-                    fullName: tenant.fullName || tenant.full_name || tenant.username || '',
-                    email: tenant.email,
-                    clientId: Array.isArray(tenant.clientId)
-                        ? tenant.clientId[0]
-                        : (tenant.clientId || tenant.client_id),
-                    sessionId: tenant.sessionId || tenant.session_id,
-                };
-                // Copy additional properties
-                Object.keys(tenant).forEach(key => {
-                    if (!(key in payload)) {
-                        payload[key] = tenant[key];
-                    }
-                });
-                this.user = payload;
+                this.user = normalizeToPayload(this.request.tenant);
                 return;
             }
             catch (error) {
@@ -312,3 +332,4 @@ exports.UserContextService = UserContextService = __decorate([
     __param(0, (0, common_1.Inject)(core_1.REQUEST)),
     __metadata("design:paramtypes", [Object])
 ], UserContextService);
+;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "permissions-contractx",
-  "version": "1.0.2",
+  "version": "1.1.0",
   "description": "Enterprise-grade authentication and authorization package for NestJS microservices with role-based and permission-based access control",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -36,14 +36,6 @@
   ],
   "author": "ContractX Development Team",
   "license": "MIT",
-  "homepage": "https://github.com/your-org/permissions-contractx#readme",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/your-org/permissions-contractx.git"
-  },
-  "bugs": {
-    "url": "https://github.com/your-org/permissions-contractx/issues"
-  },
   "engines": {
     "node": ">=16.0.0",
     "npm": ">=7.0.0"
@@ -53,30 +45,19 @@
     "@nestjs/config": "^4.0.2",
     "@nestjs/core": "^11.1.6",
     "@nestjs/jwt": "^11.0.0",
+    "express": "^5.0.0",
     "jsonwebtoken": "^9.0.0",
     "reflect-metadata": "^0.1.13",
     "rxjs": "^7.0.0"
   },
   "devDependencies": {
     "@nestjs/platform-express": "^11.1.6",
-    "@nestjs/testing": "^11.1.6",
     "@types/express": "^5.0.3",
-    "@types/jest": "^25.1.0",
-    "@types/jsonwebtoken": "^9.0.0",
+    "@types/jest": "^30.0.0",
     "@types/node": "^20.0.0",
-    "@types/supertest": "^2.0.12",
-    "@typescript-eslint/eslint-plugin": "^8.43.0",
-    "@typescript-eslint/parser": "^8.43.0",
-    "eslint": "^9.35.0",
-    "jest": "^30.1.3",
+    "jest": "^30.4.2",
     "rimraf": "^5.0.0",
-    "supertest": "^6.3.0",
-    "ts-jest": "^28.0.5",
-    "ts-node": "^10.9.0",
+    "ts-jest": "^29.4.11",
     "typescript": "^5.0.0"
-  },
-  "directories": {
-    "example": "examples",
-    "test": "test"
   }
 }

package/dist/services/contractx-document-compliance.service.d.ts

@@ -1,85 +0,0 @@
-/**
- * ContractX Document Compliance Service
- * Validates permissions-contractx package compliance with PermisosRoles.odt document requirements
- */
-export interface ComplianceValidationResult {
-    isCompliant: boolean;
-    summary: {
-        totalRoles: number;
-        validatedRoles: number;
-        totalPermissions: number;
-        validatedPermissions: number;
-        compliantRoles: string[];
-        nonCompliantRoles: string[];
-    };
-    roleAnalysis: Array<{
-        role: string;
-        isCompliant: boolean;
-        expectedPermissions: string[];
-        actualPermissions: string[];
-        missingPermissions: string[];
-        extraPermissions: string[];
-        documentReference: string;
-    }>;
-    modulesCoverage: Array<{
-        module: string;
-        covered: boolean;
-        usedByRoles: string[];
-    }>;
-    warnings: string[];
-    errors: string[];
-}
-export interface DocumentRequirement {
-    role: string;
-    category: 'system' | 'client' | 'provider';
-    permissions: Record<string, string[]>;
-    restrictions: string[];
-}
-export declare class ContractXDocumentComplianceService {
-    private readonly logger;
-    /**
-     * Document-based role requirements extracted from PermisosRoles.odt
-     */
-    private readonly DOCUMENT_REQUIREMENTS;
-    /**
-     * Permission action mappings from document notation to system notation
-     */
-    private readonly ACTION_MAPPINGS;
-    /**
-     * Validates complete package compliance with PermisosRoles.odt document
-     */
-    validateDocumentCompliance(): Promise<ComplianceValidationResult>;
-    /**
-     * Validates a specific role against document requirements
-     */
-    private validateRoleCompliance;
-    /**
-     * Converts document requirements to permission strings
-     */
-    private convertRequirementsToPermissions;
-    /**
-     * Validates module coverage across all roles
-     */
-    private validateModulesCoverage;
-    /**
-     * Finds roles that use a specific module
-     */
-    private findRolesUsingModule;
-    /**
-     * Counts total validated permissions across all roles
-     */
-    private countValidatedPermissions;
-    /**
-     * Adds warnings for roles present in package but not in document
-     */
-    private addMissingRoleWarnings;
-    /**
-     * Gets the document section for a role
-     */
-    private getRoleSection;
-    /**
-     * Generates a compliance report summary
-     */
-    generateComplianceReport(validation: ComplianceValidationResult): string;
-}
-//# sourceMappingURL=contractx-document-compliance.service.d.ts.map

package/dist/services/contractx-document-compliance.service.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"contractx-document-compliance.service.d.ts","sourceRoot":"","sources":["../../src/services/contractx-document-compliance.service.ts"],"names":[],"mappings":"AAAA;;;GAGG;AASH,MAAM,WAAW,0BAA0B;IACzC,WAAW,EAAE,OAAO,CAAC;IACrB,OAAO,EAAE;QACP,UAAU,EAAE,MAAM,CAAC;QACnB,cAAc,EAAE,MAAM,CAAC;QACvB,gBAAgB,EAAE,MAAM,CAAC;QACzB,oBAAoB,EAAE,MAAM,CAAC;QAC7B,cAAc,EAAE,MAAM,EAAE,CAAC;QACzB,iBAAiB,EAAE,MAAM,EAAE,CAAC;KAC7B,CAAC;IACF,YAAY,EAAE,KAAK,CAAC;QAClB,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,OAAO,CAAC;QACrB,mBAAmB,EAAE,MAAM,EAAE,CAAC;QAC9B,iBAAiB,EAAE,MAAM,EAAE,CAAC;QAC5B,kBAAkB,EAAE,MAAM,EAAE,CAAC;QAC7B,gBAAgB,EAAE,MAAM,EAAE,CAAC;QAC3B,iBAAiB,EAAE,MAAM,CAAC;KAC3B,CAAC,CAAC;IACH,eAAe,EAAE,KAAK,CAAC;QACrB,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,OAAO,CAAC;QACjB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC,CAAC;IACH,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,GAAG,QAAQ,GAAG,UAAU,CAAC;IAC3C,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IACtC,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,qBACa,kCAAkC;IAC7C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAuD;IAE9E;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAwRpC;IAEF;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,eAAe,CAO9B;IAEF;;OAEG;IACG,0BAA0B,IAAI,OAAO,CAAC,0BAA0B,CAAC;IAuDvE;;OAEG;YACW,sBAAsB;IA+BpC;;OAEG;IACH,OAAO,CAAC,gCAAgC;IAexC;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAgB/B;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAY5B;;OAEG;IACH,OAAO,CAAC,yBAAyB;IAWjC;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAgB9B;;OAEG;IACH,OAAO,CAAC,cAAc;IA+BtB;;OAEG;IACH,wBAAwB,CAAC,UAAU,EAAE,0BAA0B,GAAG,MAAM;CA2DzE"}