permissions-contractx 1.0.2 → 1.2.0

package/dist/services/contractx-validation.service.d.ts

@@ -36,41 +36,122 @@ export declare class ContractXValidationService {
     /**
      * Validate a single role
      */
-    validateSingleRole(role: string): RoleValidationResult;
-    validateRoles(roles: string[]): RoleValidationResult;
-    validateSinglePermission(permission: string): PermissionValidationResult;
-    validatePermissions(permissions: string[]): PermissionValidationResult;
+    validateSingleRole(role: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        roleInfo?: undefined;
+    } | {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        roleInfo: {
+            name: string;
+            description: string;
+            type: import("../constants/contractx-roles.constants").ContractXRoleType;
+            scope: import("../constants/contractx-roles.constants").ContractXRoleScope;
+            level: number;
+            tenant: string;
+            isSystem: boolean;
+        };
+    };
+    validateRoles(roles: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        metadata?: undefined;
+    } | {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        metadata: {
+            roleInfos: any[];
+            tenantCount: number;
+        };
+    };
+    validateSinglePermission(permission: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        permissionInfo: any[];
+    };
+    validatePermissions(permissions: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        permissionInfo: any[];
+        metadata?: undefined;
+    } | {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        permissionInfo: any[];
+        metadata: {
+            moduleCount: number;
+            actionCount: number;
+            modules: any[];
+            actions: any[];
+        };
+    };
     /**
      * Validate a complete user (roles + permissions)
      */
-    validateUser(roles: string[], permissions: string[]): UserValidationResult;
+    validateUser(roles: any, permissions: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+        userInfo: {
+            hasValidRoles: boolean;
+            hasValidPermissions: boolean;
+            roleCount: number;
+            permissionCount: number;
+            tenant: string;
+            accessLevel: number;
+        };
+        metadata: {
+            roleValidation: {
+                roleInfos: any[];
+                tenantCount: number;
+            };
+            permissionValidation: {
+                moduleCount: number;
+                actionCount: number;
+                modules: any[];
+                actions: any[];
+            };
+        };
+    };
     /**
      * Get expected permissions for a set of roles (based on ODS matrix)
      */
-    private getExpectedPermissionsForRoles;
+    getExpectedPermissionsForRoles(roles: any): unknown[];
     /**
      * Check if user has specific module access
      */
-    checkModuleAccess(permissions: string[], module: string, action: string): boolean;
+    checkModuleAccess(permissions: any, module: any, action: any): any;
     /**
      * Check if user has any access to a module
      */
-    checkAnyModuleAccess(permissions: string[], module: string): boolean;
+    checkAnyModuleAccess(permissions: any, module: any): any;
     /**
      * Get all modules the user has access to
      */
-    getUserModules(permissions: string[]): string[];
+    getUserModules(permissions: any): unknown[];
     /**
      * Get user's effective permissions (roles + explicit permissions)
      */
-    getEffectivePermissions(roles: string[], permissions: string[]): string[];
+    getEffectivePermissions(roles: any, permissions: any): any[];
     /**
      * Parse ODS permission string (e.g., "c,r,u,d,s,f") into permission array
      */
-    parseOdsString(odsString: string, module: string): string[];
+    parseOdsString(odsString: any, module: any): any;
     /**
      * Validate JWT payload structure
      */
-    validateJwtPayload(payload: any): ValidationResult;
+    validateJwtPayload(payload: any): {
+        isValid: boolean;
+        errors: any[];
+        warnings: any[];
+    };
 }
 //# sourceMappingURL=contractx-validation.service.d.ts.map

package/dist/services/contractx-validation.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"contractx-validation.service.d.ts","sourceRoot":"","sources":["../../src/services/contractx-validation.service.ts"],"names":[],"mappings":"AAkBA,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;IAC5D,QAAQ,CAAC,EAAE;QACT,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,KAAK,EAAE,MAAM,CAAC;QACd,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,OAAO,CAAC;KACnB,CAAC;CACH;AAED,MAAM,WAAW,0BAA2B,SAAQ,gBAAgB;IAClE,cAAc,CAAC,EAAE;QACf,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,OAAO,CAAC;KAClB,EAAE,CAAC;CACL;AAED,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;IAC5D,QAAQ,CAAC,EAAE;QACT,aAAa,EAAE,OAAO,CAAC;QACvB,mBAAmB,EAAE,OAAO,CAAC;QAC7B,SAAS,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,MAAM,EAAE,QAAQ,GAAG,QAAQ,GAAG,UAAU,GAAG,OAAO,CAAC;QACnD,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED,qBACa,0BAA0B;IAErC;;OAEG;IACH,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,oBAAoB;IAuCtD,aAAa,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,oBAAoB;IA4CpD,wBAAwB,CAAC,UAAU,EAAE,MAAM,GAAG,0BAA0B;IA8CxE,mBAAmB,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,0BAA0B;IA2CtE;;OAEG;IACH,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE,WAAW,EAAE,MAAM,EAAE,GAAG,oBAAoB;IAuE1E;;OAEG;IACH,OAAO,CAAC,8BAA8B;IAkBtC;;OAEG;IACH,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAIjF;;OAEG;IACH,oBAAoB,CAAC,WAAW,EAAE,MAAM,EAAE,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAIpE;;OAEG;IACH,cAAc,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;IAa/C;;OAEG;IACH,uBAAuB,CAAC,KAAK,EAAE,MAAM,EAAE,EAAE,WAAW,EAAE,MAAM,EAAE,GAAG,MAAM,EAAE;IAMzE;;OAEG;IACH,cAAc,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE;IAK3D;;OAEG;IACH,kBAAkB,CAAC,OAAO,EAAE,GAAG,GAAG,gBAAgB;CAwCnD"}
+{"version":3,"file":"contractx-validation.service.d.ts","sourceRoot":"","sources":["../../src/services/contractx-validation.service.ts"],"names":[],"mappings":"AAKA,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAChC;AACD,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;IAC5D,QAAQ,CAAC,EAAE;QACT,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,MAAM,CAAC;QACpB,IAAI,EAAE,MAAM,CAAC;QACb,KAAK,EAAE,MAAM,CAAC;QACd,KAAK,EAAE,MAAM,CAAC;QACd,MAAM,EAAE,MAAM,CAAC;QACf,QAAQ,EAAE,OAAO,CAAC;KACnB,CAAC;CACH;AACD,MAAM,WAAW,0BAA2B,SAAQ,gBAAgB;IAClE,cAAc,CAAC,EAAE;QACf,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,OAAO,CAAC;KAClB,EAAE,CAAC;CACL;AACD,MAAM,WAAW,oBAAqB,SAAQ,gBAAgB;IAC5D,QAAQ,CAAC,EAAE;QACT,aAAa,EAAE,OAAO,CAAC;QACvB,mBAAmB,EAAE,OAAO,CAAC;QAC7B,SAAS,EAAE,MAAM,CAAC;QAClB,eAAe,EAAE,MAAM,CAAC;QACxB,MAAM,EAAE,QAAQ,GAAG,QAAQ,GAAG,UAAU,GAAG,OAAO,CAAC;QACnD,WAAW,EAAE,MAAM,CAAC;KACrB,CAAC;CACH;AAED,qBACa,0BAA0B;IACnC;;OAEG;IACH,kBAAkB,CAAC,IAAI,KAAA;;;;;;;;;;;;;;;;;;;IAiCvB,aAAa,CAAC,KAAK,KAAA;;;;;;;;;;;;;;IAoCnB,wBAAwB,CAAC,UAAU,KAAA;;;;;;IAqCnC,mBAAmB,CAAC,WAAW,KAAA;;;;;;;;;;;;;;;;;;IAoC/B;;OAEG;IACH,YAAY,CAAC,KAAK,KAAA,EAAE,WAAW,KAAA;;;;;;;;;;;;;;;;;;;;;;;;;IA4D/B;;OAEG;IACH,8BAA8B,CAAC,KAAK,KAAA;IAcpC;;OAEG;IACH,iBAAiB,CAAC,WAAW,KAAA,EAAE,MAAM,KAAA,EAAE,MAAM,KAAA;IAG7C;;OAEG;IACH,oBAAoB,CAAC,WAAW,KAAA,EAAE,MAAM,KAAA;IAGxC;;OAEG;IACH,cAAc,CAAC,WAAW,KAAA;IAU1B;;OAEG;IACH,uBAAuB,CAAC,KAAK,KAAA,EAAE,WAAW,KAAA;IAK1C;;OAEG;IACH,cAAc,CAAC,SAAS,KAAA,EAAE,MAAM,KAAA;IAIhC;;OAEG;IACH,kBAAkB,CAAC,OAAO,KAAA;;;;;CAoC7B"}

package/dist/services/contractx-validation.service.js

@@ -320,3 +320,4 @@ exports.ContractXValidationService = ContractXValidationService;
 exports.ContractXValidationService = ContractXValidationService = __decorate([
     (0, common_1.Injectable)()
 ], ContractXValidationService);
+;

package/dist/services/index.d.ts

@@ -1,6 +1,4 @@
 export * from './user-context.service';
 export * from './contractx-validation.service';
 export * from './contractx-authorization.service';
-export { ValidationResult, RoleValidationResult, PermissionValidationResult, UserValidationResult, } from './contractx-validation.service';
-export { AuthorizationContext, AuthorizationResult, AccessMatrix, } from './contractx-authorization.service';
 //# sourceMappingURL=index.d.ts.map

package/dist/services/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AACA,cAAc,wBAAwB,CAAC;AACvC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,mCAAmC,CAAC;AAGlD,OAAO,EACL,gBAAgB,EAChB,oBAAoB,EACpB,0BAA0B,EAC1B,oBAAoB,GACrB,MAAM,gCAAgC,CAAC;AAExC,OAAO,EACL,oBAAoB,EACpB,mBAAmB,EACnB,YAAY,GACb,MAAM,mCAAmC,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/services/index.ts"],"names":[],"mappings":"AACA,cAAc,wBAAwB,CAAC;AACvC,cAAc,gCAAgC,CAAC;AAC/C,cAAc,mCAAmC,CAAC"}

package/dist/services/index.js

@@ -18,3 +18,5 @@ Object.defineProperty(exports, "__esModule", { value: true });
 __exportStar(require("./user-context.service"), exports);
 __exportStar(require("./contractx-validation.service"), exports);
 __exportStar(require("./contractx-authorization.service"), exports);
+// NOTA[reconstrucción]: contractx-document-compliance.service NO se exporta (huérfano en el
+// tarball original — compilado pero ausente de services/index y del index raíz). Ver clasificación "ajeno".

package/dist/services/user-context.service.d.ts

@@ -1,12 +1,7 @@
-import { JwtPayload } from '../interfaces';
-/**
- * Request-scoped service to manage current user context
- * Provides convenient methods to access user information and check permissions
- */
-interface RequestWithUser {
-    user?: any;
+import { AuthenticatedRequest, JwtPayload } from '../interfaces';
+type RequestWithUser = AuthenticatedRequest & {
     tenant?: any;
-}
+};
 export declare class UserContextService {
     private readonly request;
     private user;
@@ -16,40 +11,40 @@ export declare class UserContextService {
      * Set the current user context
      * This is typically called by the authentication guard
      */
-    setUser(user: JwtPayload): void;
+    setUser(user: any): void;
     /**
      * Auto-initialize user from request if not manually set
      */
-    private tryAutoInitialize;
+    tryAutoInitialize(): void;
     /**
      * Get the current authenticated user
      */
-    getUser(): JwtPayload | null;
+    getUser(): JwtPayload;
     /**
      * Get the current user's ID
      */
-    getUserId(): string | null;
+    getUserId(): string;
     /**
      * Get the current user's full name
      */
-    getUserFullName(): string | null;
+    getUserFullName(): string;
     /**
      * Get the current user's email
      */
-    getUserEmail(): string | null;
+    getUserEmail(): string;
     /**
      * Get the current user's client ID
      */
-    getClientId(): string | null;
+    getClientId(): string;
     /**
      * Get the tenant key (key_client) for multi-tenant operations
      * Tries multiple sources: user.key_client, user.clientId, tenant.key_client
      */
-    getTenantKey(): string | null;
+    getTenantKey(): any;
     /**
      * Get the current user's session ID
      */
-    getSessionId(): string | null;
+    getSessionId(): string;
     /**
      * Get all user roles
      */
@@ -61,27 +56,27 @@ export declare class UserContextService {
     /**
      * Check if user has a specific role
      */
-    hasRole(role: string): boolean;
+    hasRole(role: any): boolean;
     /**
      * Check if user has any of the specified roles
      */
-    hasAnyRole(roles: readonly string[] | string[]): boolean;
+    hasAnyRole(roles: any): any;
     /**
      * Check if user has all of the specified roles
      */
-    hasAllRoles(roles: readonly string[] | string[]): boolean;
+    hasAllRoles(roles: any): any;
     /**
      * Check if user has a specific permission
      */
-    hasPermission(permission: string): boolean;
+    hasPermission(permission: any): boolean;
     /**
      * Check if user has any of the specified permissions
      */
-    hasAnyPermission(permissions: string[]): boolean;
+    hasAnyPermission(permissions: any): any;
     /**
      * Check if user has all of the specified permissions
      */
-    hasAllPermissions(permissions: string[]): boolean;
+    hasAllPermissions(permissions: any): any;
     /**
      * Check if user is authenticated
      */
@@ -93,38 +88,38 @@ export declare class UserContextService {
     /**
      * Check if user has admin privileges (superadmin or contract admin)
      */
-    isAdmin(): boolean;
+    isAdmin(): any;
     /**
      * Check if user has client-side role
      */
-    isClientUser(): boolean;
+    isClientUser(): any;
     /**
      * Check if user has provider-side role
      */
-    isProviderUser(): boolean;
+    isProviderUser(): any;
     /**
      * Check if user can access a specific module based on permissions
      */
-    canAccessModule(module: string): boolean;
+    canAccessModule(module: any): boolean;
     /**
      * Get user's permissions for a specific module
      */
-    getModulePermissions(module: string): string[];
+    getModulePermissions(module: any): string[];
     /**
      * Check if user can perform a specific action on a module
      */
-    canPerformAction(module: string, action: string): boolean;
+    canPerformAction(module: any, action: any): boolean;
     /**
      * Get user summary for logging/debugging
      */
     getUserSummary(): {
-        id: string | null;
-        name: string | null;
-        email: string | null;
+        id: string;
+        name: string;
+        email: string;
         roles: string[];
         permissionCount: number;
-        isAdmin: boolean;
-        clientId: string | null;
+        isAdmin: any;
+        clientId: string;
     };
 }
 export {};

package/dist/services/user-context.service.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"user-context.service.d.ts","sourceRoot":"","sources":["../../src/services/user-context.service.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAG3C;;;GAGG;AACH,UAAU,eAAe;IACvB,IAAI,CAAC,EAAE,GAAG,CAAC;IACX,MAAM,CAAC,EAAE,GAAG,CAAC;CACd;AAED,qBACa,kBAAkB;IAKV,OAAO,CAAC,QAAQ,CAAC,OAAO;IAJ3C,OAAO,CAAC,IAAI,CAA2B;IACvC,OAAO,CAAC,eAAe,CAAS;gBAGI,OAAO,EAAE,eAAe;IAG5D;;;OAGG;IACH,OAAO,CAAC,IAAI,EAAE,UAAU,GAAG,IAAI;IAI/B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA4EzB;;OAEG;IACH,OAAO,IAAI,UAAU,GAAG,IAAI;IAK5B;;OAEG;IACH,SAAS,IAAI,MAAM,GAAG,IAAI;IAM1B;;OAEG;IACH,eAAe,IAAI,MAAM,GAAG,IAAI;IAMhC;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,IAAI;IAM7B;;OAEG;IACH,WAAW,IAAI,MAAM,GAAG,IAAI;IAM5B;;;OAGG;IACH,YAAY,IAAI,MAAM,GAAG,IAAI;IAsC7B;;OAEG;IACH,YAAY,IAAI,MAAM,GAAG,IAAI;IAM7B;;OAEG;IACH,YAAY,IAAI,MAAM,EAAE;IAKxB;;OAEG;IACH,kBAAkB,IAAI,MAAM,EAAE;IAK9B;;OAEG;IACH,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO;IAI9B;;OAEG;IACH,UAAU,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,GAAG,MAAM,EAAE,GAAG,OAAO;IAKxD;;OAEG;IACH,WAAW,CAAC,KAAK,EAAE,SAAS,MAAM,EAAE,GAAG,MAAM,EAAE,GAAG,OAAO;IAKzD;;OAEG;IACH,aAAa,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO;IAI1C;;OAEG;IACH,gBAAgB,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,OAAO;IAKhD;;OAEG;IACH,iBAAiB,CAAC,WAAW,EAAE,MAAM,EAAE,GAAG,OAAO;IAKjD;;OAEG;IACH,eAAe,IAAI,OAAO;IAK1B;;OAEG;IACH,YAAY,IAAI,OAAO;IAIvB;;OAEG;IACH,OAAO,IAAI,OAAO;IAIlB;;OAEG;IACH,YAAY,IAAI,OAAO;IAIvB;;OAEG;IACH,cAAc,IAAI,OAAO;IAIzB;;OAEG;IACH,eAAe,CAAC,MAAM,EAAE,MAAM,GAAG,OAAO;IAOxC;;OAEG;IACH,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE;IAM9C;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,GAAG,OAAO;IAIzD;;OAEG;IACH,cAAc,IAAI;QAChB,EAAE,EAAE,MAAM,GAAG,IAAI,CAAC;QAClB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;QACpB,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;QACrB,KAAK,EAAE,MAAM,EAAE,CAAC;QAChB,eAAe,EAAE,MAAM,CAAC;QACxB,OAAO,EAAE,OAAO,CAAC;QACjB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;KACzB;CAWF"}
+{"version":3,"file":"user-context.service.d.ts","sourceRoot":"","sources":["../../src/services/user-context.service.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,oBAAoB,EAAE,UAAU,EAAE,MAAM,eAAe,CAAC;AAKjE,KAAK,eAAe,GAAG,oBAAoB,GAAG;IAAE,MAAM,CAAC,EAAE,GAAG,CAAA;CAAE,CAAC;AA4D/D,qBACa,kBAAkB;IAE3B,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAkB;IAC1C,OAAO,CAAC,IAAI,CAA2B;IACvC,OAAO,CAAC,eAAe,CAAS;gBAEH,OAAO,EAAE,eAAe;IAKrD;;;OAGG;IACH,OAAO,CAAC,IAAI,KAAA;IAGZ;;OAEG;IACH,iBAAiB;IA0BjB;;OAEG;IACH,OAAO;IAIP;;OAEG;IACH,SAAS;IAMT;;OAEG;IACH,eAAe;IAMf;;OAEG;IACH,YAAY;IAMZ;;OAEG;IACH,WAAW;IAMX;;;OAGG;IACH,YAAY;IA+BZ;;OAEG;IACH,YAAY;IAMZ;;OAEG;IACH,YAAY;IAIZ;;OAEG;IACH,kBAAkB;IAIlB;;OAEG;IACH,OAAO,CAAC,IAAI,KAAA;IAGZ;;OAEG;IACH,UAAU,CAAC,KAAK,KAAA;IAIhB;;OAEG;IACH,WAAW,CAAC,KAAK,KAAA;IAIjB;;OAEG;IACH,aAAa,CAAC,UAAU,KAAA;IAGxB;;OAEG;IACH,gBAAgB,CAAC,WAAW,KAAA;IAI5B;;OAEG;IACH,iBAAiB,CAAC,WAAW,KAAA;IAI7B;;OAEG;IACH,eAAe;IAIf;;OAEG;IACH,YAAY;IAGZ;;OAEG;IACH,OAAO;IAGP;;OAEG;IACH,YAAY;IAGZ;;OAEG;IACH,cAAc;IAGd;;OAEG;IACH,eAAe,CAAC,MAAM,KAAA;IAItB;;OAEG;IACH,oBAAoB,CAAC,MAAM,KAAA;IAG3B;;OAEG;IACH,gBAAgB,CAAC,MAAM,KAAA,EAAE,MAAM,KAAA;IAG/B;;OAEG;IACH,cAAc;;;;;;;;;CAWjB"}

package/dist/services/user-context.service.js

@@ -16,8 +16,70 @@ exports.UserContextService = void 0;
 const common_1 = require("@nestjs/common");
 const core_1 = require("@nestjs/core");
 const contractx_roles_constants_1 = require("../constants/contractx-roles.constants");
+function coerceStringOrNumber(...vals) {
+    for (const v of vals) {
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+        if (typeof v === 'number')
+            return v;
+    }
+    return '';
+}
+function coerceString(...vals) {
+    for (const v of vals)
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+    return '';
+}
+function coerceStringArray(...vals) {
+    for (const v of vals) {
+        if (Array.isArray(v)) {
+            const arr = v.filter((x) => typeof x === 'string');
+            if (arr.length > 0)
+                return arr;
+        }
+        if (typeof v === 'string' && v.length > 0)
+            return [v];
+    }
+    return [];
+}
+function coerceOptionalString(...vals) {
+    for (const v of vals)
+        if (typeof v === 'string' && v.length > 0)
+            return v;
+    return undefined;
+}
+function coerceOptionalNumber(v) {
+    return typeof v === 'number' ? v : undefined;
+}
+function normalizeToPayload(raw) {
+    return {
+        sub: coerceStringOrNumber(raw.sub, raw.id, raw.user_id),
+        role: coerceStringArray(raw.role, raw.roles),
+        permissions: coerceStringArray(raw.permissions),
+        permissionsView: Array.isArray(raw.permissionsView)
+            ? raw.permissionsView.filter((x) => typeof x === 'string')
+            : undefined,
+        fullName: coerceString(raw.fullName, raw.full_name, raw.username),
+        email: coerceOptionalString(raw.email),
+        clientId: coerceStringArray(raw.clientId, raw.client_id),
+        providerId: coerceOptionalString(raw.providerId),
+        tenantContext: (() => {
+            const t = raw.tenantContext;
+            return t === 'client' || t === 'provider' || t === 'system' ? t : undefined;
+        })(),
+        key_client: coerceStringArray(raw.key_client),
+        sessionId: coerceOptionalString(raw.sessionId, raw.session_id),
+        iat: coerceOptionalNumber(raw.iat),
+        exp: coerceOptionalNumber(raw.exp),
+        iss: coerceOptionalString(raw.iss),
+        aud: coerceOptionalString(raw.aud),
+    };
+}
 let UserContextService = class UserContextService {
     constructor(request) {
+        this.user = null;
+        this.autoInitialized = false;
         this.request = request;
         this.user = null;
         this.autoInitialized = false;
@@ -40,31 +102,7 @@ let UserContextService = class UserContextService {
         // Try to get user from request.user (populated by JWT middleware)
         if (this.request?.user) {
             try {
-                // Handle different user object formats
-                const requestUser = this.request.user;
-                // Convert to JwtPayload format
-                const payload = {
-                    sub: requestUser.sub || requestUser.id || requestUser.user_id,
-                    role: requestUser.role || requestUser.roles || [],
-                    permissions: requestUser.permissions || [],
-                    fullName: requestUser.fullName || requestUser.full_name || requestUser.username || '',
-                    email: requestUser.email,
-                    clientId: Array.isArray(requestUser.clientId)
-                        ? requestUser.clientId[0]
-                        : (requestUser.clientId || requestUser.client_id),
-                    sessionId: requestUser.sessionId || requestUser.session_id,
-                    iat: requestUser.iat,
-                    exp: requestUser.exp,
-                    iss: requestUser.iss,
-                    aud: requestUser.aud,
-                };
-                // Copy any additional properties
-                Object.keys(requestUser).forEach(key => {
-                    if (!(key in payload)) {
-                        payload[key] = requestUser[key];
-                    }
-                });
-                this.user = payload;
+                this.user = normalizeToPayload(this.request.user);
                 return;
             }
             catch (error) {
@@ -74,25 +112,7 @@ let UserContextService = class UserContextService {
         // Fallback: try to get user from request.tenant (if populated by custom middleware)
         if (this.request?.tenant) {
             try {
-                const tenant = this.request.tenant;
-                const payload = {
-                    sub: tenant.user_id || tenant.sub || tenant.id,
-                    role: tenant.roles || [tenant.role].filter(Boolean),
-                    permissions: tenant.permissions || [],
-                    fullName: tenant.fullName || tenant.full_name || tenant.username || '',
-                    email: tenant.email,
-                    clientId: Array.isArray(tenant.clientId)
-                        ? tenant.clientId[0]
-                        : (tenant.clientId || tenant.client_id),
-                    sessionId: tenant.sessionId || tenant.session_id,
-                };
-                // Copy additional properties
-                Object.keys(tenant).forEach(key => {
-                    if (!(key in payload)) {
-                        payload[key] = tenant[key];
-                    }
-                });
-                this.user = payload;
+                this.user = normalizeToPayload(this.request.tenant);
                 return;
             }
             catch (error) {
@@ -312,3 +332,4 @@ exports.UserContextService = UserContextService = __decorate([
     __param(0, (0, common_1.Inject)(core_1.REQUEST)),
     __metadata("design:paramtypes", [Object])
 ], UserContextService);
+;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "permissions-contractx",
-  "version": "1.0.2",
+  "version": "1.2.0",
   "description": "Enterprise-grade authentication and authorization package for NestJS microservices with role-based and permission-based access control",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -36,14 +36,6 @@
   ],
   "author": "ContractX Development Team",
   "license": "MIT",
-  "homepage": "https://github.com/your-org/permissions-contractx#readme",
-  "repository": {
-    "type": "git",
-    "url": "git+https://github.com/your-org/permissions-contractx.git"
-  },
-  "bugs": {
-    "url": "https://github.com/your-org/permissions-contractx/issues"
-  },
   "engines": {
     "node": ">=16.0.0",
     "npm": ">=7.0.0"
@@ -53,30 +45,19 @@
     "@nestjs/config": "^4.0.2",
     "@nestjs/core": "^11.1.6",
     "@nestjs/jwt": "^11.0.0",
+    "express": "^5.0.0",
     "jsonwebtoken": "^9.0.0",
     "reflect-metadata": "^0.1.13",
     "rxjs": "^7.0.0"
   },
   "devDependencies": {
     "@nestjs/platform-express": "^11.1.6",
-    "@nestjs/testing": "^11.1.6",
     "@types/express": "^5.0.3",
-    "@types/jest": "^25.1.0",
-    "@types/jsonwebtoken": "^9.0.0",
+    "@types/jest": "^30.0.0",
     "@types/node": "^20.0.0",
-    "@types/supertest": "^2.0.12",
-    "@typescript-eslint/eslint-plugin": "^8.43.0",
-    "@typescript-eslint/parser": "^8.43.0",
-    "eslint": "^9.35.0",
-    "jest": "^30.1.3",
+    "jest": "^30.4.2",
     "rimraf": "^5.0.0",
-    "supertest": "^6.3.0",
-    "ts-jest": "^28.0.5",
-    "ts-node": "^10.9.0",
+    "ts-jest": "^29.4.11",
     "typescript": "^5.0.0"
-  },
-  "directories": {
-    "example": "examples",
-    "test": "test"
   }
 }

package/dist/services/contractx-document-compliance.service.d.ts

@@ -1,85 +0,0 @@
-/**
- * ContractX Document Compliance Service
- * Validates permissions-contractx package compliance with PermisosRoles.odt document requirements
- */
-export interface ComplianceValidationResult {
-    isCompliant: boolean;
-    summary: {
-        totalRoles: number;
-        validatedRoles: number;
-        totalPermissions: number;
-        validatedPermissions: number;
-        compliantRoles: string[];
-        nonCompliantRoles: string[];
-    };
-    roleAnalysis: Array<{
-        role: string;
-        isCompliant: boolean;
-        expectedPermissions: string[];
-        actualPermissions: string[];
-        missingPermissions: string[];
-        extraPermissions: string[];
-        documentReference: string;
-    }>;
-    modulesCoverage: Array<{
-        module: string;
-        covered: boolean;
-        usedByRoles: string[];
-    }>;
-    warnings: string[];
-    errors: string[];
-}
-export interface DocumentRequirement {
-    role: string;
-    category: 'system' | 'client' | 'provider';
-    permissions: Record<string, string[]>;
-    restrictions: string[];
-}
-export declare class ContractXDocumentComplianceService {
-    private readonly logger;
-    /**
-     * Document-based role requirements extracted from PermisosRoles.odt
-     */
-    private readonly DOCUMENT_REQUIREMENTS;
-    /**
-     * Permission action mappings from document notation to system notation
-     */
-    private readonly ACTION_MAPPINGS;
-    /**
-     * Validates complete package compliance with PermisosRoles.odt document
-     */
-    validateDocumentCompliance(): Promise<ComplianceValidationResult>;
-    /**
-     * Validates a specific role against document requirements
-     */
-    private validateRoleCompliance;
-    /**
-     * Converts document requirements to permission strings
-     */
-    private convertRequirementsToPermissions;
-    /**
-     * Validates module coverage across all roles
-     */
-    private validateModulesCoverage;
-    /**
-     * Finds roles that use a specific module
-     */
-    private findRolesUsingModule;
-    /**
-     * Counts total validated permissions across all roles
-     */
-    private countValidatedPermissions;
-    /**
-     * Adds warnings for roles present in package but not in document
-     */
-    private addMissingRoleWarnings;
-    /**
-     * Gets the document section for a role
-     */
-    private getRoleSection;
-    /**
-     * Generates a compliance report summary
-     */
-    generateComplianceReport(validation: ComplianceValidationResult): string;
-}
-//# sourceMappingURL=contractx-document-compliance.service.d.ts.map

package/dist/services/contractx-document-compliance.service.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"contractx-document-compliance.service.d.ts","sourceRoot":"","sources":["../../src/services/contractx-document-compliance.service.ts"],"names":[],"mappings":"AAAA;;;GAGG;AASH,MAAM,WAAW,0BAA0B;IACzC,WAAW,EAAE,OAAO,CAAC;IACrB,OAAO,EAAE;QACP,UAAU,EAAE,MAAM,CAAC;QACnB,cAAc,EAAE,MAAM,CAAC;QACvB,gBAAgB,EAAE,MAAM,CAAC;QACzB,oBAAoB,EAAE,MAAM,CAAC;QAC7B,cAAc,EAAE,MAAM,EAAE,CAAC;QACzB,iBAAiB,EAAE,MAAM,EAAE,CAAC;KAC7B,CAAC;IACF,YAAY,EAAE,KAAK,CAAC;QAClB,IAAI,EAAE,MAAM,CAAC;QACb,WAAW,EAAE,OAAO,CAAC;QACrB,mBAAmB,EAAE,MAAM,EAAE,CAAC;QAC9B,iBAAiB,EAAE,MAAM,EAAE,CAAC;QAC5B,kBAAkB,EAAE,MAAM,EAAE,CAAC;QAC7B,gBAAgB,EAAE,MAAM,EAAE,CAAC;QAC3B,iBAAiB,EAAE,MAAM,CAAC;KAC3B,CAAC,CAAC;IACH,eAAe,EAAE,KAAK,CAAC;QACrB,MAAM,EAAE,MAAM,CAAC;QACf,OAAO,EAAE,OAAO,CAAC;QACjB,WAAW,EAAE,MAAM,EAAE,CAAC;KACvB,CAAC,CAAC;IACH,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,MAAM,EAAE,MAAM,EAAE,CAAC;CAClB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,GAAG,QAAQ,GAAG,UAAU,CAAC;IAC3C,WAAW,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IACtC,YAAY,EAAE,MAAM,EAAE,CAAC;CACxB;AAED,qBACa,kCAAkC;IAC7C,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAuD;IAE9E;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,qBAAqB,CAwRpC;IAEF;;OAEG;IACH,OAAO,CAAC,QAAQ,CAAC,eAAe,CAO9B;IAEF;;OAEG;IACG,0BAA0B,IAAI,OAAO,CAAC,0BAA0B,CAAC;IAuDvE;;OAEG;YACW,sBAAsB;IA+BpC;;OAEG;IACH,OAAO,CAAC,gCAAgC;IAexC;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAgB/B;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAY5B;;OAEG;IACH,OAAO,CAAC,yBAAyB;IAWjC;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAgB9B;;OAEG;IACH,OAAO,CAAC,cAAc;IA+BtB;;OAEG;IACH,wBAAwB,CAAC,UAAU,EAAE,0BAA0B,GAAG,MAAM;CA2DzE"}