plac-micro-common 1.2.0 → 1.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (15) hide show
  1. package/dist/http/constants/index.d.ts +1 -0
  2. package/dist/http/constants/index.js +4 -0
  3. package/dist/http/decorators/index.d.ts +1 -0
  4. package/dist/http/decorators/index.js +1 -0
  5. package/dist/http/decorators/require_permission.decorator.d.ts +1 -0
  6. package/dist/http/decorators/require_permission.decorator.js +7 -0
  7. package/dist/http/guards/index.d.ts +1 -0
  8. package/dist/http/guards/index.js +1 -0
  9. package/dist/http/guards/jwt_auth.guard.js +2 -0
  10. package/dist/http/guards/permission.guard.d.ts +7 -0
  11. package/dist/http/guards/permission.guard.js +46 -0
  12. package/dist/types/auth.type.d.ts +2 -0
  13. package/dist/types/permission.type.d.ts +14 -6
  14. package/dist/types/permission.type.js +15 -8
  15. package/package.json +1 -1
package/dist/http/constants/index.d.ts ADDED
@@ -0,0 +1 @@
1
+ export declare const REQUIRE_PERMISSIONS_KEY = "require_permissions";
package/dist/http/constants/index.js ADDED
@@ -0,0 +1,4 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.REQUIRE_PERMISSIONS_KEY = void 0;
4
+ exports.REQUIRE_PERMISSIONS_KEY = "require_permissions";
package/dist/http/decorators/index.d.ts CHANGED
@@ -1,3 +1,4 @@
1
1
  export * from "./client_ctx.decorator";
2
2
  export * from "./current_app.decorator";
3
3
  export * from "./current_app_client.decorator";
4
+ export * from "./require_permission.decorator";
package/dist/http/decorators/index.js CHANGED
@@ -17,3 +17,4 @@ Object.defineProperty(exports, "__esModule", { value: true });
17
17
  __exportStar(require("./client_ctx.decorator"), exports);
18
18
  __exportStar(require("./current_app.decorator"), exports);
19
19
  __exportStar(require("./current_app_client.decorator"), exports);
20
+ __exportStar(require("./require_permission.decorator"), exports);
package/dist/http/decorators/require_permission.decorator.d.ts ADDED
@@ -0,0 +1 @@
1
+ export declare const RequirePermissions: (...permissions: string[]) => import("@nestjs/common").CustomDecorator<string>;
package/dist/http/decorators/require_permission.decorator.js ADDED
@@ -0,0 +1,7 @@
1
+ "use strict";
2
+ Object.defineProperty(exports, "__esModule", { value: true });
3
+ exports.RequirePermissions = void 0;
4
+ const common_1 = require("@nestjs/common");
5
+ const constants_1 = require("../constants");
6
+ const RequirePermissions = (...permissions) => (0, common_1.SetMetadata)(constants_1.REQUIRE_PERMISSIONS_KEY, permissions);
7
+ exports.RequirePermissions = RequirePermissions;
package/dist/http/guards/index.d.ts CHANGED
@@ -1 +1,2 @@
1
1
  export * from "./jwt_auth.guard";
2
+ export * from "./permission.guard";
package/dist/http/guards/index.js CHANGED
@@ -15,3 +15,4 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
15
15
  };
16
16
  Object.defineProperty(exports, "__esModule", { value: true });
17
17
  __exportStar(require("./jwt_auth.guard"), exports);
18
+ __exportStar(require("./permission.guard"), exports);
package/dist/http/guards/jwt_auth.guard.js CHANGED
@@ -33,6 +33,8 @@ let JwtAuthGuard = class JwtAuthGuard {
33
33
  req.current_user = authPayload.user;
34
34
  req.current_app = authPayload.app;
35
35
  req.current_app_client = authPayload.app_client;
36
+ req.current_roles = authPayload.roles ?? [];
37
+ req.current_permissions = authPayload.permissions ?? [];
36
38
  return true;
37
39
  }
38
40
  };
package/dist/http/guards/permission.guard.d.ts ADDED
@@ -0,0 +1,7 @@
1
+ import { CanActivate, ExecutionContext } from "@nestjs/common";
2
+ import { Reflector } from "@nestjs/core";
3
+ export declare class PermissionsGuard implements CanActivate {
4
+ private readonly reflector;
5
+ constructor(reflector: Reflector);
6
+ canActivate(context: ExecutionContext): boolean;
7
+ }
package/dist/http/guards/permission.guard.js ADDED
@@ -0,0 +1,46 @@
1
+ "use strict";
2
+ var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
3
+ var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
4
+ if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
5
+ else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
6
+ return c > 3 && r && Object.defineProperty(target, key, r), r;
7
+ };
8
+ var __metadata = (this && this.__metadata) || function (k, v) {
9
+ if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
10
+ };
11
+ Object.defineProperty(exports, "__esModule", { value: true });
12
+ exports.PermissionsGuard = void 0;
13
+ const common_1 = require("@nestjs/common");
14
+ const core_1 = require("@nestjs/core");
15
+ const constants_1 = require("../constants");
16
+ let PermissionsGuard = class PermissionsGuard {
17
+ constructor(reflector) {
18
+ this.reflector = reflector;
19
+ }
20
+ canActivate(context) {
21
+ const required = this.reflector.getAllAndOverride(constants_1.REQUIRE_PERMISSIONS_KEY, [context.getHandler(), context.getClass()]);
22
+ // No permissions required => allow
23
+ if (!required || required.length === 0)
24
+ return true;
25
+ const req = context.switchToHttp().getRequest();
26
+ // ✅ Your convention: permissions live on req.current_permissions
27
+ const perms = Array.isArray(req?.current_permissions)
28
+ ? req.current_permissions
29
+ : [];
30
+ if (!perms.length) {
31
+ // If JWT guard didn't run, or token had no permissions
32
+ throw new common_1.UnauthorizedException("Missing permissions in request");
33
+ }
34
+ // require ALL permissions by default
35
+ const hasAll = required.every((p) => perms.includes(p));
36
+ if (!hasAll) {
37
+ throw new common_1.ForbiddenException("Insufficient permissions");
38
+ }
39
+ return true;
40
+ }
41
+ };
42
+ exports.PermissionsGuard = PermissionsGuard;
43
+ exports.PermissionsGuard = PermissionsGuard = __decorate([
44
+ (0, common_1.Injectable)(),
45
+ __metadata("design:paramtypes", [core_1.Reflector])
46
+ ], PermissionsGuard);
package/dist/types/auth.type.d.ts CHANGED
@@ -37,4 +37,6 @@ export type AuthPayload = {
37
37
  user: CurrentUserInfo;
38
38
  app: CurrentAppInfo;
39
39
  app_client: CurrentAppClientInfo;
40
+ roles?: string[];
41
+ permissions?: string[];
40
42
  };
package/dist/types/permission.type.d.ts CHANGED
@@ -1,11 +1,19 @@
1
1
  export declare enum PermissionAction {
2
+ Approve = "approve",
2
3
  Create = "create",
4
+ Delete = "delete",
5
+ Export = "export",
3
6
  Read = "read",
4
- Update = "update",
5
- Delete = "delete"
7
+ Update = "update"
6
8
  }
7
- export declare enum PermissionResource {
8
- Permission = "permission",
9
- Quotation = "quotation",
10
- User = "user"
9
+ export declare const PermissionResource: {
10
+ readonly Permission: "permission";
11
+ readonly Quotation: "quotation";
12
+ readonly User: "user";
13
+ };
14
+ export type PermissionResource = (typeof PermissionResource)[keyof typeof PermissionResource];
15
+ export declare enum PermissionModule {
16
+ Admin = "admin",
17
+ Claim = "claim",
18
+ Policy = "policy"
11
19
  }
package/dist/types/permission.type.js CHANGED
@@ -1,16 +1,23 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
- exports.PermissionResource = exports.PermissionAction = void 0;
3
+ exports.PermissionModule = exports.PermissionResource = exports.PermissionAction = void 0;
4
4
  var PermissionAction;
5
5
  (function (PermissionAction) {
6
+ PermissionAction["Approve"] = "approve";
6
7
  PermissionAction["Create"] = "create";
8
+ PermissionAction["Delete"] = "delete";
9
+ PermissionAction["Export"] = "export";
7
10
  PermissionAction["Read"] = "read";
8
11
  PermissionAction["Update"] = "update";
9
- PermissionAction["Delete"] = "delete";
10
12
  })(PermissionAction || (exports.PermissionAction = PermissionAction = {}));
11
- var PermissionResource;
12
- (function (PermissionResource) {
13
- PermissionResource["Permission"] = "permission";
14
- PermissionResource["Quotation"] = "quotation";
15
- PermissionResource["User"] = "user";
16
- })(PermissionResource || (exports.PermissionResource = PermissionResource = {}));
13
+ exports.PermissionResource = {
14
+ Permission: "permission",
15
+ Quotation: "quotation",
16
+ User: "user",
17
+ };
18
+ var PermissionModule;
19
+ (function (PermissionModule) {
20
+ PermissionModule["Admin"] = "admin";
21
+ PermissionModule["Claim"] = "claim";
22
+ PermissionModule["Policy"] = "policy";
23
+ })(PermissionModule || (exports.PermissionModule = PermissionModule = {}));
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "plac-micro-common",
3
- "version": "1.2.0",
3
+ "version": "1.2.2",
4
4
  "types": "dist/index.d.ts",
5
5
  "main": "dist/index.js",
6
6
  "scripts": {