piper-utils 1.1.66 → 1.1.68

package/bin/main.js

@@ -95,6 +95,267 @@ async function assertCanWriteBookBusiness(access,businessId,{getPartnerById}={})
  */
 async function assertCanWriteOwnBusiness(access,businessId,{getPartnerById}={}){if(!access)throw _errorCodes.errorList.unauthorized;if("global"===access.level)return;if("partner"===access.level){if(await(0,_accessContext.ensurePartnerScope)(access,{getPartnerById}),!access.partnerBusinessId)throw{..._errorCodes.errorList.partnerNotConfigured};if(businessId!==access.partnerBusinessId)throw _errorCodes.errorList.unauthorized;return}throw _errorCodes.errorList.unauthorized},exports.stampOwnBusinessId=async function stampOwnBusinessId(access,body,{getPartnerById}={}){if(!access||"partner"!==access.level)return;if(body.businessId)return;await(0,_accessContext.ensurePartnerScope)(access,{getPartnerById}),body.businessId=access.partnerBusinessId}
 /***/;var _lodash=function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}(__webpack_require__(825)),_accessContext=__webpack_require__(62),_errorCodes=__webpack_require__(953)},
+/***/179(__unused_webpack_module,exports,__webpack_require__){Object.defineProperty(exports,"__esModule",{value:!0}),exports.attachAudit=attachAudit,exports.auditMe=auditMe,exports.auditModels=void 0,exports.bindAuditRequest=
+/**
+ * Bind per-request audit context for one or more models. Call this **once at
+ * the top of each route handler** that mutates an audited model.
+ *
+ * Resolves the acting user from the JWT claims on the event
+ * (via {@link getCurrentUser}) and reads the company `auditEnabled` flag from
+ * the `custom:SET` claim (via {@link getCompanySettings}). If the company has
+ * `auditEnabled: false` then no rows will be written for the bound models on
+ * this request.
+ *
+ * Audit is **off by default** for any model that has not been bound this
+ * request — a route that omits this call writes no audit rows.
+ *
+ * @example
+ * // src/customer/customerRoutes.js
+ * export async function updateCustomer(event) {
+ *     checkModule('customer', event);
+ *     const businessId = checkWriteAccess(event);
+ *     bindAuditRequest(event, businessId, [Customer]);
+ *     // ...mutate Customer here; rows are written automatically by hooks
+ * }
+ *
+ * @example
+ * // Bind several models in one call when a handler touches more than one
+ * bindAuditRequest(event, businessId, [Order, Payment, Receivable]);
+ *
+ * @param {import('aws-lambda').APIGatewayProxyEvent} event API Gateway event
+ *   with `requestContext.authorizer.claims` (must include `email` and
+ *   optionally `custom:UID`, `custom:SET`)
+ * @param {string|number} businessId business id this request acts on; stamped
+ *   onto every audit row written for the bound models
+ * @param {Array<import('sequelize').ModelStatic<any>>} models Sequelize models
+ *   to enable audit on for the duration of this request
+ * @returns {void}
+ * @see {@link bindAuditRequestForUser} - the equivalent for non-JWT contexts
+ *   (webhooks, integration crons, Cognito triggers)
+ * @see {@link attachAudit} - one-time setup that creates the audit table
+ */
+function bindAuditRequest(event,businessId,models){const user=(0,_requestResponse.getCurrentUser)(event),auditEnabled=!!((0,_accessRightsUtils.getCompanySettings)(event)||{}).auditEnabled;_lodash.default.forEach(models,model=>{
+// Lazily ensure the audit table model + hooks are wired in this Lambda
+// process. `attachAudit` is idempotent — first call registers, subsequent
+// calls are no-ops. The returned sync() promise is intentionally not
+// awaited; the table is expected to already exist from the migration
+// Lambda, and the synchronous registration is what the request needs.
+const attachPromise=attachAudit(model);attachPromise&&"function"==typeof attachPromise.catch&&attachPromise.catch(err=>console.error("attachAudit sync failed for",model.name,err)),modelOptions[model.name]={user,businessId,auditEnabled}})}
+/**
+ * Bind per-request audit context for **system-driven flows** that do not carry
+ * an API Gateway JWT — for example, payment-gateway webhooks, integration
+ * crons (QuickBooks/Inbox/etc.), Cognito triggers, or batch jobs.
+ *
+ * Use {@link bindAuditRequest} instead whenever you have a JWT-authenticated
+ * API event; that path automatically resolves the user and the company's
+ * `auditEnabled` flag from claims.
+ *
+ * @example
+ * // payment webhook from the gateway — no JWT, but we still want audit
+ * import { systemUser } from '../user/user.js';
+ *
+ * export async function webhook(event) {
+ *     const businessId = event.queryStringParameters.businessId;
+ *     bindAuditRequestForUser(systemUser, businessId, [Order, Payment]);
+ *     // ...mutate Order/Payment; audit rows are written by hooks
+ * }
+ *
+ * @example
+ * // turn audit OFF explicitly for a system flow that should not be audited
+ * bindAuditRequestForUser(systemUser, businessId, [Order], { auditEnabled: false });
+ *
+ * @param {{ username: string, id?: number }} user identity stamped onto each
+ *   audit row's `changedByUser` field. Conventionally the `systemUser`
+ *   constant exported from your service's user model
+ * @param {string|number} businessId business id this flow is acting on
+ * @param {Array<import('sequelize').ModelStatic<any>>} models Sequelize models
+ *   to enable audit on
+ * @param {{ auditEnabled?: boolean }} [opts] when `auditEnabled` is `false`,
+ *   binds context but suppresses writes; defaults to `true`
+ * @returns {void}
+ * @see {@link bindAuditRequest} - the JWT-driven equivalent for API handlers
+ */,exports.bindAuditRequestForUser=function bindAuditRequestForUser(user,businessId,models,opts={}){const auditEnabled=!1!==opts.auditEnabled;_lodash.default.forEach(models,model=>{
+// See bindAuditRequest for why this is here.
+const attachPromise=attachAudit(model);attachPromise&&"function"==typeof attachPromise.catch&&attachPromise.catch(err=>console.error("attachAudit sync failed for",model.name,err)),modelOptions[model.name]={user,businessId,auditEnabled}})}
+/**
+ * Get the `<ModelName>Audit` Sequelize model that {@link attachAudit} created
+ * for a parent model. Returns `undefined` if audit was never attached.
+ *
+ * @example
+ * const audits = await findAll(getAuditModel(Customer), filter);
+ *
+ * @param {import('sequelize').ModelStatic<any>} model parent Sequelize model
+ * @returns {import('sequelize').ModelStatic<any> | undefined} the audit model,
+ *   or `undefined` if {@link attachAudit} has not been called for this model
+ * @see {@link getAuditFilter} - companion filter builder for history queries
+ */,exports.decrementWithAudit=
+/**
+ * Decrement an integer field on a Sequelize instance and write a matching
+ * audit row in the same call. Useful for inventory adjustments and other
+ * counter-style fields where Sequelize's plain `model.decrement()` would
+ * bypass the `afterUpdate` hook.
+ *
+ * The acting user and businessId come from whatever
+ * {@link bindAuditRequest} / {@link bindAuditRequestForUser} was called for
+ * this request. If audit is disabled for the model, the decrement still
+ * happens but no audit row is written.
+ *
+ * @example
+ * // release inventory on order release
+ * await decrementWithAudit('inventory', inventoryEntry, 'quantity', {
+ *     by: item.quantity,
+ *     transaction: t
+ * });
+ *
+ * @param {string} modelName name of the parent model (e.g. `'inventory'`)
+ * @param {import('sequelize').Model} model the Sequelize instance to mutate
+ * @param {string} field the integer/decimal field to decrement
+ * @param {{ by?: number, transaction?: import('sequelize').Transaction }} args
+ *   passed straight through to Sequelize's `decrement()`; transaction is also
+ *   propagated to the audit write
+ * @returns {Promise<import('sequelize').Model>} the updated instance (with
+ *   `_changed` set on it so internal hooks can observe the change)
+ * @see {@link incrementWithAudit} - the +1 counterpart
+ */
+async function decrementWithAudit(modelName,model,field,args){const r=await model.decrement(field,args);r._changed=[field];const options={};args.transaction&&(options.transaction=args.transaction);return await auditMe(modelName)(r,options),r}
+/**
+ * Increment an integer field on a Sequelize instance and write a matching
+ * audit row in the same call. The mirror of {@link decrementWithAudit}.
+ *
+ * @example
+ * // restock from a receivable
+ * await incrementWithAudit('inventory', inventoryEntry, 'quantity', {
+ *     by: item.quantity,
+ *     transaction: t
+ * });
+ *
+ * @param {string} modelName name of the parent model (e.g. `'inventory'`)
+ * @param {import('sequelize').Model} model the Sequelize instance to mutate
+ * @param {string} field the integer/decimal field to increment
+ * @param {{ by?: number, transaction?: import('sequelize').Transaction }} args
+ *   passed straight through to Sequelize's `increment()`; transaction is also
+ *   propagated to the audit write
+ * @returns {Promise<import('sequelize').Model>} the updated instance
+ * @see {@link decrementWithAudit} - the -1 counterpart
+ */,exports.getAuditFilter=
+/**
+ * Build a Sequelize `findAll`-style filter for an audit-history query, scoped
+ * to the businesses the caller is allowed to read (resolved from
+ * {@link accessRightsUtils}).
+ *
+ * The returned filter joins the parent model so callers can render `oldValue`
+ * → `newValue` rows in the UI alongside the parent record.
+ *
+ * @example
+ * // GET /customer/{id}/audit
+ * export async function getCustomerAudit(event) {
+ *     bindAuditRequest(event, userDefaultBid(event), [Customer]);
+ *     const filter = getAuditFilter(Customer, event.pathParameters.id, {
+ *         event,
+ *         offset: 0,
+ *         limit: 10
+ *     });
+ *     const audits = await findAll(getAuditModel(Customer), filter);
+ *     return success(audits);
+ * }
+ *
+ * @param {import('sequelize').ModelStatic<any>} modelToFilter the parent model
+ *   whose history is being fetched
+ * @param {string|number} id parent record id
+ * @param {{ event: import('aws-lambda').APIGatewayProxyEvent, offset?: number, limit?: number }} options
+ *   `event` is required (drives business-id scoping); `offset` and `limit`
+ *   are pagination passthroughs
+ * @returns {{ where: Object, include: Array<{ model: Object }>, order: Array, offset?: number, limit?: number }}
+ *   a Sequelize `findAll`-compatible filter
+ * @see {@link getAuditModel} - call to get the audit model to query against
+ */
+function getAuditFilter(modelToFilter,id,options){const filter={where:{businessId:(0,_accessRightsUtils.accessRightsUtils)(options.event)},include:[{model:modelToFilter}],order:[["createdAt","DESC"]]};return filter.where[modelToFilter.name+"Id"]=id,{...filter,...options}},exports.getAuditModel=function getAuditModel(model){return auditModels[model.name]},exports.incrementWithAudit=async function incrementWithAudit(modelName,model,field,args){const r=await model.increment(field,args);r._changed=[field];const options={};args.transaction&&(options.transaction=args.transaction);return await auditMe(modelName)(r,options),r}
+/***/,exports.modelOptions=void 0;var _lodash=_interopRequireDefault(__webpack_require__(825)),_bluebird=_interopRequireDefault(__webpack_require__(564)),_requestResponse=__webpack_require__(859),_accessRightsUtils=__webpack_require__(673);function _interopRequireDefault(e){return e&&e.__esModule?e:{default:e}}
+/**
+ * @file Audit logging for Sequelize models. Each parent model gets a sibling
+ * `<ModelName>Audit` table that records every field-level change made through
+ * Sequelize hooks (afterCreate / afterUpsert / afterUpdate / afterDestroy).
+ *
+ * Typical wiring in a domain service:
+ *
+ * 1. At model `dbSetup` (one-time, at boot):
+ *    `await attachAudit(MyModel);`
+ *
+ * 2. At the top of each route handler that mutates the model:
+ *    `bindAuditRequest(event, businessId, [MyModel]);`
+ *
+ * 3. To list audit history for a record:
+ *    `const filter = getAuditFilter(MyModel, id, { event, offset, limit });`
+ *    `const audits = await findAll(getAuditModel(MyModel), filter);`
+ *
+ * Audit is **off by default** for any model whose request hasn't been bound —
+ * so cron lambdas, untouched endpoints, and unit tests will not write audit
+ * rows unless they explicitly opt in. The on/off switch comes from the
+ * `custom:SET.auditEnabled` JWT claim resolved by {@link getCompanySettings}.
+ *
+ * The user identity stamped on each row is read from the JWT via
+ * {@link getCurrentUser}; `changedByUser` stores `claims.email`. There is
+ * intentionally no foreign key back to a User table — domain services must
+ * not read across other services' databases.
+ */
+/**
+ * Registry of `<ModelName>Audit` Sequelize models, keyed by parent model name.
+ * Populated by {@link attachAudit}. Exported for tests; do not mutate from app code.
+ *
+ * @type {Object<string, import('sequelize').ModelStatic<any>>}
+ */const auditModels=exports.auditModels={},modelOptions=exports.modelOptions={},SENSITIVE_FIELDS_PATTERN=/"(token|password|secret|key|credential|auth|securityCode|cvv|pin|ssn)":\s*"[^"]*"/gi;
+/**
+ * Per-model per-request audit context, keyed by parent model name. Populated by
+ * {@link bindAuditRequest} or {@link bindAuditRequestForUser}. A model with no
+ * entry here (or with `auditEnabled === false`) will not write any audit rows.
+ * Exported for tests; do not mutate from app code.
+ *
+ * @type {Object<string, { user: { username: string, id?: number }, businessId: string|number, auditEnabled: boolean }>}
+ */
+/**
+ * Internal hook factory. Returns the async function that Sequelize invokes on
+ * each create/upsert/update/destroy. Reads its per-request state from
+ * {@link modelOptions}; emits zero rows when audit is disabled for the model.
+ *
+ * Sensitive fields inside JSON values (token, password, secret, key,
+ * credential, auth, securityCode, cvv, pin, ssn) are masked as
+ * `***************` before being persisted. String values longer than 255
+ * characters are truncated.
+ *
+ * Exported only so tests can drive the hook directly. Application code should
+ * never call this — use {@link attachAudit}.
+ *
+ * @param {string} modelName name of the parent Sequelize model
+ * @returns {(modelInfo: any, options: { type?: string, transaction?: import('sequelize').Transaction }) => Promise<void>}
+ *   the hook function Sequelize will call on each lifecycle event
+ */
+function auditMe(modelName){return async(modelInfo,options)=>{_lodash.default.isArray(modelInfo)&&(modelInfo=modelInfo[0]);const opts=modelOptions[modelName];if(!opts||!opts.auditEnabled)return;const auditModel=auditModels[modelName],writeAuditRow=async(field,type,valueOld,valueNew)=>{const data={field,type,valueOld:String(valueOld).substring(0,255),valueNew:String(valueNew).substring(0,255),businessId:opts.businessId,changedByUser:opts.user.username};data[modelName+"Id"]=modelInfo.dataValues.id;const newOptions={};return options.transaction&&(newOptions.transaction=options.transaction),auditModel.create(data,newOptions)},checkAudit=async(field,type="INITIAL",valueOld,valueNew)=>{if(!_lodash.default.isEqual(valueOld,valueNew)){if(_lodash.default.isString(valueOld)&&_lodash.default.isString(valueNew)&&(type="INSERT"),_lodash.default.isArray(valueOld)||_lodash.default.isArray(valueNew)){let oldString=JSON.stringify(valueOld||[]),newString=JSON.stringify(valueNew||[]);return oldString=oldString.replace(SENSITIVE_FIELDS_PATTERN,'"$1":"***************"').substring(0,255),newString=newString.replace(SENSITIVE_FIELDS_PATTERN,'"$1":"***************"').substring(0,255),writeAuditRow(field,"UPDATE",oldString,newString)}return _lodash.default.isObject(valueOld)||_lodash.default.isObject(valueNew)?(_lodash.default.forEach(valueOld,(valueSub,keySub)=>{checkAudit(field+" "+keySub,"DELETED",valueSub||"",(valueNew||{})[keySub]||"")}),void _lodash.default.forEach(valueNew,(valueSub,keySub)=>{checkAudit(field+" "+keySub,"INSERT",(valueOld||{})[keySub]||"",valueSub||"")})):writeAuditRow(field,type,valueOld,valueNew)}};return _bluebird.default.map([...modelInfo._changed],async field=>{const valueOld=modelInfo._previousDataValues[field]||"",valueNew=modelInfo.dataValues[field]||"";await checkAudit(field,options.type,valueOld,valueNew)})}}
+/**
+ * Define a sibling `<ModelName>Audit` table for the given Sequelize model and
+ * wire the four lifecycle hooks (`afterCreate`, `afterUpsert`, `afterUpdate`,
+ * `afterDestroy`) that record changes into it.
+ *
+ * Call this **once per model at boot time** from inside the model's
+ * `dbSetup()` function. It is idempotent — calling it again for a model that
+ * already has an audit table attached is a no-op.
+ *
+ * The audit table has no foreign key into any user table; the username of the
+ * person who made the change is stamped onto each row from the JWT (set by
+ * {@link bindAuditRequest}). This keeps the audit util portable across domain
+ * services that own different user models.
+ *
+ * @example
+ * // src/customer/customer.js
+ * Customer.dbSetup = async function () {
+ *     await attachAudit(Customer);
+ * };
+ *
+ * @param {import('sequelize').ModelStatic<any>} model the Sequelize model to audit
+ * @returns {Promise<void>} resolves when the audit table's `sync()` completes
+ * @see {@link bindAuditRequest} - per-request setup that turns audit on
+ * @see {@link getAuditModel} - retrieve the audit model from the parent
+ * @see {@link getAuditFilter} - build a filter for an audit history query
+ */async function attachAudit(model){if(auditModels[model.name])return;const auditModel=model.sequelize.define(model.name+"Audit",function getAuditSchema(model){const DataTypes=model.sequelize.Sequelize;return{field:{type:DataTypes.STRING,allowNull:!1},type:DataTypes.STRING,valueOld:DataTypes.STRING,valueNew:DataTypes.STRING,changedByUser:{type:DataTypes.STRING,allowNull:!1},businessId:{type:DataTypes.STRING,allowNull:!1}}}(model),{updatedAt:!1,freezeTableName:!0});return auditModel.belongsTo(model,{foreignKey:{allowNull:!0},onDelete:"SET NULL"}),auditModels[model.name]=auditModel,model.addHook("afterCreate",auditMe(model.name)),model.addHook("afterUpsert",auditMe(model.name)),model.addHook("afterUpdate",auditMe(model.name)),model.addHook("afterDestroy",auditMe(model.name)),auditModel.sync()}},
 /***/183(__unused_webpack_module,exports,__webpack_require__){Object.defineProperty(exports,"__esModule",{value:!0}),exports.watchBucket=
 /**
  * bucket watcher watches a s3 bucket and publishes events to a sns topic, this allows you to process files in s3 with a some transformer function
@@ -624,6 +885,6 @@ function createIncludes(event,objectFilters){const query=_lodash.default.get(eve
 /******/
 /************************************************************************/var __webpack_exports__={};
 // This entry needs to be wrapped in an IIFE because it uses a non-standard name for the exports (exports).
-(()=>{var exports=__webpack_exports__;Object.defineProperty(exports,"__esModule",{value:!0}),exports.watchBucket=exports.userDefaultBid=exports.successHtml=exports.success=exports.stampOwnBusinessId=exports.scopeToPartnerBook=exports.scopeToOwnBusiness=exports.scopeToBookUnionOwn=exports.runMigrations=exports.resolveAccess=exports.requireTicketAccess=exports.requireSuper=exports.requireCrmAccess=exports.publishEvents=exports.parseEvent=exports.parseBody=exports.isSystemUser=exports.isSuperUser=exports.isPartnerUser=exports.handleFile=exports.getModuleInfo=exports.getEffectivePartnerId=exports.getDefaultBusinessIDInfo=exports.getCurrentUserNameFromCognitoEvent=exports.getCurrentUser=exports.getCompanySettings=exports.getBusinessesInfo=exports.getBelongsToPartnerId=exports.getAccessRightsInfo=exports.findAll=exports.failure=exports.ensurePartnerScope=exports.enrichEventWithPartnerAccess=exports.defaultFilters=exports.createSort=exports.createIncludes=exports.createFilters=exports.createAccessHelpers=exports.checkWriteAccess=exports.checkModule=exports.checkIsSuper=exports.assertCanWriteOwnBusiness=exports.assertCanWriteBookUnionOwn=exports.assertCanWriteBookBusiness=exports.accessRightsUtils=void 0;var _handleFile=__webpack_require__(876),_watchBucket=__webpack_require__(183),_publishEvents=__webpack_require__(864),_createIncludes=__webpack_require__(982),_createFilters=__webpack_require__(288),_createSort=__webpack_require__(835),_findAll=__webpack_require__(981),_accessRightsUtils=__webpack_require__(673),_requestResponse=__webpack_require__(859),_migrations=__webpack_require__(871),_defaultFilters=__webpack_require__(207),_accessContext=__webpack_require__(62),_accessGates=__webpack_require__(189),_accessScope=__webpack_require__(513),_accessWrites=__webpack_require__(165),_createAccessHelpers=__webpack_require__(539);exports.handleFile=_handleFile.handleFile,exports.watchBucket=_watchBucket.watchBucket,exports.publishEvents=_publishEvents.publishEvents,exports.createFilters=_createFilters.createFilters,exports.createIncludes=_createIncludes.createIncludes,exports.createSort=_createSort.createSort,exports.findAll=_findAll.findAll,exports.checkModule=_accessRightsUtils.checkModule,exports.checkIsSuper=_accessRightsUtils.checkIsSuper,exports.getAccessRightsInfo=_accessRightsUtils.getAccessRightsInfo,exports.getDefaultBusinessIDInfo=_accessRightsUtils.getDefaultBusinessIDInfo,exports.getModuleInfo=_accessRightsUtils.getModuleInfo,exports.failure=_requestResponse.failure,exports.success=_requestResponse.success,exports.runMigrations=_migrations.runMigrations,exports.getCurrentUser=_requestResponse.getCurrentUser,exports.successHtml=_requestResponse.successHtml,exports.getCurrentUserNameFromCognitoEvent=_requestResponse.getCurrentUserNameFromCognitoEvent,exports.defaultFilters=_defaultFilters.defaultFilters,exports.accessRightsUtils=_accessRightsUtils.accessRightsUtils,exports.parseBody=_requestResponse.parseBody,exports.parseEvent=_requestResponse.parseEvent,exports.getBusinessesInfo=_accessRightsUtils.getBusinessesInfo,exports.userDefaultBid=_accessRightsUtils.userDefaultBid,exports.checkWriteAccess=_accessRightsUtils.checkWriteAccess,exports.isSystemUser=_accessRightsUtils.isSystemUser,exports.isSuperUser=_accessRightsUtils.isSuperUser,exports.isPartnerUser=_accessRightsUtils.isPartnerUser,exports.getBelongsToPartnerId=_accessRightsUtils.getBelongsToPartnerId,exports.getEffectivePartnerId=_accessRightsUtils.getEffectivePartnerId,exports.enrichEventWithPartnerAccess=_accessRightsUtils.enrichEventWithPartnerAccess,exports.getCompanySettings=_accessRightsUtils.getCompanySettings,exports.resolveAccess=_accessContext.resolveAccess,exports.ensurePartnerScope=_accessContext.ensurePartnerScope,exports.requireCrmAccess=_accessGates.requireCrmAccess,exports.requireTicketAccess=_accessGates.requireTicketAccess,exports.requireSuper=_accessGates.requireSuper,exports.scopeToOwnBusiness=_accessScope.scopeToOwnBusiness,exports.scopeToPartnerBook=_accessScope.scopeToPartnerBook,exports.scopeToBookUnionOwn=_accessScope.scopeToBookUnionOwn,exports.assertCanWriteOwnBusiness=_accessWrites.assertCanWriteOwnBusiness,exports.assertCanWriteBookBusiness=_accessWrites.assertCanWriteBookBusiness,exports.assertCanWriteBookUnionOwn=_accessWrites.assertCanWriteBookUnionOwn,exports.stampOwnBusinessId=_accessWrites.stampOwnBusinessId,exports.createAccessHelpers=_createAccessHelpers.createAccessHelpers})();var __webpack_export_target__=exports;for(var __webpack_i__ in __webpack_exports__)__webpack_export_target__[__webpack_i__]=__webpack_exports__[__webpack_i__];__webpack_exports__.__esModule&&Object.defineProperty(__webpack_export_target__,"__esModule",{value:!0})
+(()=>{var exports=__webpack_exports__;Object.defineProperty(exports,"__esModule",{value:!0}),exports.watchBucket=exports.userDefaultBid=exports.successHtml=exports.success=exports.stampOwnBusinessId=exports.scopeToPartnerBook=exports.scopeToOwnBusiness=exports.scopeToBookUnionOwn=exports.runMigrations=exports.resolveAccess=exports.requireTicketAccess=exports.requireSuper=exports.requireCrmAccess=exports.publishEvents=exports.parseEvent=exports.parseBody=exports.isSystemUser=exports.isSuperUser=exports.isPartnerUser=exports.incrementWithAudit=exports.handleFile=exports.getModuleInfo=exports.getEffectivePartnerId=exports.getDefaultBusinessIDInfo=exports.getCurrentUserNameFromCognitoEvent=exports.getCurrentUser=exports.getCompanySettings=exports.getBusinessesInfo=exports.getBelongsToPartnerId=exports.getAuditModel=exports.getAuditFilter=exports.getAccessRightsInfo=exports.findAll=exports.failure=exports.ensurePartnerScope=exports.enrichEventWithPartnerAccess=exports.defaultFilters=exports.decrementWithAudit=exports.createSort=exports.createIncludes=exports.createFilters=exports.createAccessHelpers=exports.checkWriteAccess=exports.checkModule=exports.checkIsSuper=exports.bindAuditRequestForUser=exports.bindAuditRequest=exports.attachAudit=exports.assertCanWriteOwnBusiness=exports.assertCanWriteBookUnionOwn=exports.assertCanWriteBookBusiness=exports.accessRightsUtils=void 0;var _handleFile=__webpack_require__(876),_watchBucket=__webpack_require__(183),_publishEvents=__webpack_require__(864),_createIncludes=__webpack_require__(982),_createFilters=__webpack_require__(288),_createSort=__webpack_require__(835),_findAll=__webpack_require__(981),_accessRightsUtils=__webpack_require__(673),_requestResponse=__webpack_require__(859),_migrations=__webpack_require__(871),_defaultFilters=__webpack_require__(207),_accessContext=__webpack_require__(62),_accessGates=__webpack_require__(189),_accessScope=__webpack_require__(513),_accessWrites=__webpack_require__(165),_createAccessHelpers=__webpack_require__(539),_audit=__webpack_require__(179);exports.handleFile=_handleFile.handleFile,exports.watchBucket=_watchBucket.watchBucket,exports.publishEvents=_publishEvents.publishEvents,exports.createFilters=_createFilters.createFilters,exports.createIncludes=_createIncludes.createIncludes,exports.createSort=_createSort.createSort,exports.findAll=_findAll.findAll,exports.checkModule=_accessRightsUtils.checkModule,exports.checkIsSuper=_accessRightsUtils.checkIsSuper,exports.getAccessRightsInfo=_accessRightsUtils.getAccessRightsInfo,exports.getDefaultBusinessIDInfo=_accessRightsUtils.getDefaultBusinessIDInfo,exports.getModuleInfo=_accessRightsUtils.getModuleInfo,exports.failure=_requestResponse.failure,exports.success=_requestResponse.success,exports.runMigrations=_migrations.runMigrations,exports.getCurrentUser=_requestResponse.getCurrentUser,exports.successHtml=_requestResponse.successHtml,exports.getCurrentUserNameFromCognitoEvent=_requestResponse.getCurrentUserNameFromCognitoEvent,exports.defaultFilters=_defaultFilters.defaultFilters,exports.accessRightsUtils=_accessRightsUtils.accessRightsUtils,exports.parseBody=_requestResponse.parseBody,exports.parseEvent=_requestResponse.parseEvent,exports.getBusinessesInfo=_accessRightsUtils.getBusinessesInfo,exports.userDefaultBid=_accessRightsUtils.userDefaultBid,exports.checkWriteAccess=_accessRightsUtils.checkWriteAccess,exports.isSystemUser=_accessRightsUtils.isSystemUser,exports.isSuperUser=_accessRightsUtils.isSuperUser,exports.isPartnerUser=_accessRightsUtils.isPartnerUser,exports.getBelongsToPartnerId=_accessRightsUtils.getBelongsToPartnerId,exports.getEffectivePartnerId=_accessRightsUtils.getEffectivePartnerId,exports.enrichEventWithPartnerAccess=_accessRightsUtils.enrichEventWithPartnerAccess,exports.getCompanySettings=_accessRightsUtils.getCompanySettings,exports.resolveAccess=_accessContext.resolveAccess,exports.ensurePartnerScope=_accessContext.ensurePartnerScope,exports.requireCrmAccess=_accessGates.requireCrmAccess,exports.requireTicketAccess=_accessGates.requireTicketAccess,exports.requireSuper=_accessGates.requireSuper,exports.scopeToOwnBusiness=_accessScope.scopeToOwnBusiness,exports.scopeToPartnerBook=_accessScope.scopeToPartnerBook,exports.scopeToBookUnionOwn=_accessScope.scopeToBookUnionOwn,exports.assertCanWriteOwnBusiness=_accessWrites.assertCanWriteOwnBusiness,exports.assertCanWriteBookBusiness=_accessWrites.assertCanWriteBookBusiness,exports.assertCanWriteBookUnionOwn=_accessWrites.assertCanWriteBookUnionOwn,exports.stampOwnBusinessId=_accessWrites.stampOwnBusinessId,exports.createAccessHelpers=_createAccessHelpers.createAccessHelpers,exports.attachAudit=_audit.attachAudit,exports.bindAuditRequest=_audit.bindAuditRequest,exports.bindAuditRequestForUser=_audit.bindAuditRequestForUser,exports.decrementWithAudit=_audit.decrementWithAudit,exports.getAuditFilter=_audit.getAuditFilter,exports.getAuditModel=_audit.getAuditModel,exports.incrementWithAudit=_audit.incrementWithAudit})();var __webpack_export_target__=exports;for(var __webpack_i__ in __webpack_exports__)__webpack_export_target__[__webpack_i__]=__webpack_exports__[__webpack_i__];__webpack_exports__.__esModule&&Object.defineProperty(__webpack_export_target__,"__esModule",{value:!0})
 /******/})();
 //# sourceMappingURL=main.js.map