npm - rbac - Versions diffs - 4.0.2 → 6.0.0 - Mend

rbac 4.0.2 → 6.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (42) hide show

package/HISTORY.md +21 -3
package/LICENSE +21 -0
package/README.md +43 -104
package/dist/Base.js +31 -65
package/dist/Base.js.map +1 -0
package/dist/Memory.js +139 -0
package/dist/Memory.js.map +1 -0
package/dist/Permission.js +99 -137
package/dist/Permission.js.map +1 -0
package/dist/RBAC.js +420 -798
package/dist/RBAC.js.map +1 -0
package/dist/Role.js +67 -142
package/dist/Role.js.map +1 -0
package/dist/Storage.js +160 -0
package/dist/Storage.js.map +1 -0
package/dist/index.js +45 -35
package/dist/index.js.map +1 -0
package/package.json +22 -45
package/.babelrc +0 -9
package/.eslintignore +0 -7
package/.eslintrc +0 -5
package/.npmignore +0 -4
package/.travis.yml +0 -14
package/__tests__/role.spec.js +0 -410
package/controllers/express.js +0 -72
package/coverage/clover.xml +0 -526
package/coverage/coverage-final.json +0 -9
package/coverage/lcov-report/base.css +0 -212
package/coverage/lcov-report/index.html +0 -106
package/coverage/lcov-report/prettify.css +0 -1
package/coverage/lcov-report/prettify.js +0 -1
package/coverage/lcov-report/sort-arrow-sprite.png +0 -0
package/coverage/lcov-report/sorter.js +0 -158
package/coverage/lcov-report/tests/index.html +0 -93
package/coverage/lcov-report/tests/role.spec.js.html +0 -1316
package/coverage/lcov.info +0 -1115
package/dist/storages/Memory.js +0 -219
package/dist/storages/Mongoose.js +0 -303
package/dist/storages/index.js +0 -300
package/example/simple.js +0 -25
package/gulpfile.js +0 -16
package/jsdocConfig.js +0 -20

package/dist/RBAC.js CHANGED Viewed

@@ -1,34 +1,43 @@
-'use strict';
+"use strict";
 Object.defineProperty(exports, "__esModule", {
   value: true
 });
+exports.default = void 0;
+var _Base = _interopRequireDefault(require("./Base"));
+var _Role = _interopRequireDefault(require("./Role"));
+var _Permission = _interopRequireDefault(require("./Permission"));
+var _Storage = _interopRequireDefault(require("./Storage"));
+var _Memory = _interopRequireDefault(require("./Memory"));
+function _interopRequireDefault(e) { return e && e.__esModule ? e : { default: e }; }
+function isPlainObject(value) {
+  if (typeof value !== 'object' || value === null) return false;
+  const proto = Object.getPrototypeOf(value);
+  return proto === Object.prototype || proto === null;
+}
+const DEFAULT_OPTIONS = {
+  permissions: {},
+  roles: [],
+  grant: {},
+  delimiter: '_'
+};
+class RBAC {
+  /**
+   * Convert Array of permissions to permission name
+   * @function getPermissionNames
+   * @memberof RBAC
+   * @param  {Array} permissions List of array items of permission names. It contan action and resource
+   * @param  {string} delimiter
+   * @return {string[]}
+   * @static
+   */
+  static getPermissionNames(permissions, delimiter) {
+    if (!delimiter) {
+      throw new Error('Delimiter is not defined');
+    }
+    return permissions.map(permission => _Permission.default.createName(permission[0], permission[1], delimiter));
+  }
-var _createClass = function () { function defineProperties(target, props) { for (var i = 0; i < props.length; i++) { var descriptor = props[i]; descriptor.enumerable = descriptor.enumerable || false; descriptor.configurable = true; if ("value" in descriptor) descriptor.writable = true; Object.defineProperty(target, descriptor.key, descriptor); } } return function (Constructor, protoProps, staticProps) { if (protoProps) defineProperties(Constructor.prototype, protoProps); if (staticProps) defineProperties(Constructor, staticProps); return Constructor; }; }();
-var _isPlainObject = require('lodash/isPlainObject');
-var _isPlainObject2 = _interopRequireDefault(_isPlainObject);
-var _async = require('async');
-var _Role = require('./Role');
-var _Role2 = _interopRequireDefault(_Role);
-var _Permission = require('./Permission');
-var _Permission2 = _interopRequireDefault(_Permission);
-var _Memory = require('./storages/Memory');
-var _Memory2 = _interopRequireDefault(_Memory);
-function _interopRequireDefault(obj) { return obj && obj.__esModule ? obj : { default: obj }; }
-function _classCallCheck(instance, Constructor) { if (!(instance instanceof Constructor)) { throw new TypeError("Cannot call a class as a function"); } }
-var RBAC = function () {
   /**
    * RBAC constructor
    * @constructor RBAC
@@ -37,828 +46,441 @@ var RBAC = function () {
    * @param  {Array}    [options.roles]            List of role names (String)
    * @param  {Object}   [options.permissions]      List of permissions
    * @param  {Object}   [options.grants]           List of grants
-   * @param  {Function} [callback]         Callback function
    */
-  function RBAC() {
-    var _this = this;
-    var options = arguments.length > 0 && arguments[0] !== undefined ? arguments[0] : {};
-    var callback = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : function () {};
-    _classCallCheck(this, RBAC);
-    options.storage = options.storage || new _Memory2.default();
-    this._options = options;
-    this.storage.rbac = this;
-    var permissions = options.permissions || {};
-    var roles = options.roles || [];
-    var grants = options.grants || {};
-    this.create(roles, permissions, grants, function (err) {
-      if (err) {
-        return callback(err);
-      }
-      return callback(null, _this);
-    });
+  constructor(options) {
+    this.options = {
+      ...DEFAULT_OPTIONS,
+      ...options
+    };
+    this.storage = this.options.storage || new _Memory.default();
+    this.storage.useRBAC(this);
+  }
+  async init() {
+    const {
+      roles,
+      permissions,
+      grants
+    } = this.options;
+    return this.create(roles, permissions, grants);
   }
   /**
-   * The RBAC's options.
-   * @member RBAC#options {Object}
+   * Get instance of Role or Permission by his name
+   * @method RBAC#get
+   * @param {String} name Name of item
    */
+  async get(name) {
+    return this.storage.get(name);
+  }
-  _createClass(RBAC, [{
-    key: 'add',
-    /**
-     * Register role or permission to actual RBAC instance
-     * @method RBAC#add
-     * @param  {Role|Permission}     item Instance of Base
-     * @param  {Function} cb   Callback function
-     * @return {RBAC}          Return actual instance
-     */
-    value: function add(item, cb) {
-      if (!item) {
-        return cb(new Error('Item is undefined'));
-      }
-      if (item.rbac !== this) {
-        return cb(new Error('Item is associated to another RBAC instance'));
-      }
-      this.storage.add(item, cb);
-      return this;
+  /**
+   * Register role or permission to actual RBAC instance
+   * @method RBAC#add
+   * @param {Base} item Instance of Base
+   */
+  async add(item) {
+    if (!item) {
+      throw new Error('Item is undefined');
     }
-    /**
-     * Get instance of Role or Permission by his name
-     * @method RBAC#get
-     * @param  {String}   name  Name of item
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'get',
-    value: function get(name, cb) {
-      this.storage.get(name, cb);
-      return this;
+    if (item.rbac !== this) {
+      throw new Error('Item is associated to another RBAC instance');
     }
+    return this.storage.add(item);
+  }
-    /**
-     * Remove role or permission from RBAC
-     * @method RBAC#remove
-     * @param  {Role|Permission} item Instance of role or permission
-     * @param  {Function}        cb   Callback function
-     * @return {RBAC}                 Current instance
-     */
-  }, {
-    key: 'remove',
-    value: function remove(item, cb) {
-      if (!item) {
-        return cb(new Error('Item is undefined'));
-      }
-      if (item.rbac !== this) {
-        return cb(new Error('Item is associated to another RBAC instance'));
-      }
-      this.storage.remove(item, cb);
-      return this;
+  /**
+   * Remove role or permission from RBAC
+   * @method RBAC#remove
+   * @param {Base} item Instance of role or permission
+   */
+  async remove(item) {
+    if (!item) {
+      throw new Error('Item is undefined');
     }
-    /**
-     * Remove role or permission from RBAC
-     * @method RBAC#removeByName
-     * @param  {String}   name Name of role or permission
-     * @param  {Function} cb   Callback function
-     * @return {RBAC}          Current instance
-     */
-  }, {
-    key: 'removeByName',
-    value: function removeByName(name, cb) {
-      this.get(name, function (err, item) {
-        if (err) {
-          return cb(err);
-        }
-        if (!item) {
-          return cb(null, false);
-        }
-        item.remove(cb);
-      });
-      return this;
+    if (item.rbac !== this) {
+      throw new Error('Item is associated to another RBAC instance');
     }
+    return this.storage.remove(item);
+  }
-    /**
-     * Grant permission or role to the role
-     * @method RBAC#grant
-     * @param  {Role}            role  Instance of the role
-     * @param  {Role|Permission} child Instance of the role or permission
-     * @param  {Function}        cb    Callback function
-     * @return {RBAC}                  Current instance
-     */
-  }, {
-    key: 'grant',
-    value: function grant(role, child, cb) {
-      if (!role || !child) {
-        return cb(new Error('One of item is undefined'));
-      }
-      if (role.rbac !== this || child.rbac !== this) {
-        return cb(new Error('Item is associated to another RBAC instance'));
-      }
-      if (!RBAC.isRole(role)) {
-        return cb(new Error('Role is not instance of Role'));
-      }
-      this.storage.grant(role, child, cb);
-      return this;
+  /**
+   * Remove role or permission from RBAC
+   * @method RBAC#removeByName
+   * @param {String} name Name of role or permission
+   */
+  async removeByName(name) {
+    const item = await this.get(name);
+    if (!item) {
+      return true;
     }
+    return item.remove();
+  }
-    /**
-     * Revoke permission or role from the role
-     * @method RBAC#revoke
-     * @param  {Role}            role   Instance of the role
-     * @param  {Role|Permission} child  Instance of the role or permission
-     * @param  {Function}        cb     Callback function
-     * @return {RBAC}                   Current instance
-     */
-  }, {
-    key: 'revoke',
-    value: function revoke(role, child, cb) {
-      if (!role || !child) {
-        return cb(new Error('One of item is undefined'));
-      }
-      if (role.rbac !== this || child.rbac !== this) {
-        return cb(new Error('Item is associated to another RBAC instance'));
-      }
-      this.storage.revoke(role, child, cb);
-      return this;
+  /**
+   * Grant permission or role to the role
+   * @method RBAC#grant
+   * @param {Role} role Instance of the role
+   * @param {Base} child Instance of the role or permission
+   */
+  async grant(role, child) {
+    if (!role || !child) {
+      throw new Error('One of item is undefined');
     }
-    /**
-     * Revoke permission or role from the role by names
-     * @method RBAC#revokeByName
-     * @param  {String}   roleName  Instance of the role
-     * @param  {String}   childName Instance of the role or permission
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}               Current instance
-     */
-  }, {
-    key: 'revokeByName',
-    value: function revokeByName(roleName, childName, cb) {
-      var _this2 = this;
-      (0, _async.parallel)({
-        role: function role(callback) {
-          return _this2.get(roleName, callback);
-        },
-        child: function child(callback) {
-          return _this2.get(childName, callback);
-        }
-      }, function (err, results) {
-        if (err) {
-          return cb(err);
-        }
-        _this2.revoke(results.role, results.child, cb);
-      });
-      return this;
+    if (role.rbac !== this || child.rbac !== this) {
+      throw new Error('Item is associated to another RBAC instance');
     }
-    /**
-     * Grant permission or role from the role by names
-     * @method RBAC#grantByName
-     * @param  {String}   roleName  Instance of the role
-     * @param  {String}   childName Instance of the role or permission
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}               Current instance
-     */
-  }, {
-    key: 'grantByName',
-    value: function grantByName(roleName, childName, cb) {
-      var _this3 = this;
-      (0, _async.parallel)({
-        role: function role(callback) {
-          return _this3.get(roleName, callback);
-        },
-        child: function child(callback) {
-          return _this3.get(childName, callback);
-        }
-      }, function (err, results) {
-        if (err) {
-          return cb(err);
-        }
-        _this3.grant(results.role, results.child, cb);
-      });
-      return this;
+    if (!(role instanceof _Role.default)) {
+      throw new Error('Role is not instance of Role');
     }
+    return this.storage.grant(role, child);
+  }
-    /**
-     * Create a new role assigned to actual instance of RBAC
-     * @method RBAC#createRole
-     * @param  {String}  roleName Name of new Role
-     * @param  {Boolean} [add=true]    True if you need to add it to the storage
-     * @return {Role}    Instance of the Role
-     */
-  }, {
-    key: 'createRole',
-    value: function createRole(roleName, add, cb) {
-      return new _Role2.default(this, roleName, add, cb);
+  /**
+   * Revoke permission or role from the role
+   * @method RBAC#revoke
+   * @param {Role} role Instance of the role
+   * @param {Base} child Instance of the role or permission
+   */
+  async revoke(role, child) {
+    if (!role || !child) {
+      throw new Error('One of item is undefined');
     }
-    /**
-     * Create a new permission assigned to actual instance of RBAC
-     * @method RBAC#createPermission
-     * @param  {String} action   Name of action
-     * @param  {String} resource Name of resource
-     * @param  {Boolean} [add=true]   True if you need to add it to the storage
-     * @param  {Function} cb     Callback function
-     * @return {Permission}      Instance of the Permission
-     */
-  }, {
-    key: 'createPermission',
-    value: function createPermission(action, resource, add, cb) {
-      return new _Permission2.default(this, action, resource, add, cb);
+    if (role.rbac !== this || child.rbac !== this) {
+      throw new Error('Item is associated to another RBAC instance');
     }
+    return this.storage.revoke(role, child);
+  }
-    /**
-     * Callback returns true if role or permission exists
-     * @method RBAC#exists
-     * @param  {String}   name  Name of item
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'exists',
-    value: function exists(name, cb) {
-      this.storage.exists(name, cb);
-      return this;
-    }
+  /**
+   * Revoke permission or role from the role by names
+   * @method RBAC#revokeByName
+   * @param {String} roleName Instance of the role
+   * @param {String} childName Instance of the role or permission
+   */
+  async revokeByName(roleName, childName) {
+    const [role, child] = await Promise.all([this.get(roleName), this.get(childName)]);
+    return this.revoke(role, child);
+  }
-    /**
-     * Callback returns true if role exists
-     * @method RBAC#existsRole
-     * @param  {String}   name  Name of item
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'existsRole',
-    value: function existsRole(name, cb) {
-      this.storage.existsRole(name, cb);
-      return this;
-    }
+  /**
+   * Grant permission or role from the role by names
+   * @method RBAC#grantByName
+   * @param {String} roleName Instance of the role
+   * @param {String} childName Instance of the role or permission
+   */
+  async grantByName(roleName, childName) {
+    const [role, child] = await Promise.all([this.get(roleName), this.get(childName)]);
+    return this.grant(role, child);
+  }
-    /**
-     * Callback returns true if permission exists
-     * @method RBAC#existsPermission
-     * @param  {String}   action  Name of action
-     * @param  {String}   resource  Name of resource
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'existsPermission',
-    value: function existsPermission(action, resource, cb) {
-      this.storage.existsPermission(action, resource, cb);
-      return this;
+  /**
+   * Create a new role assigned to actual instance of RBAC
+   * @method RBAC#createRole
+   * @param {String} roleName Name of new Role
+   * @param {Boolean} [add] True if you need to add it to the storage
+   * @return {Role} Instance of the Role
+   */
+  async createRole(roleName, add) {
+    const role = new _Role.default(this, roleName);
+    if (add) {
+      await role.add();
     }
+    return role;
+  }
-    /**
-     * Return instance of Role by his name
-     * @method RBAC#getRole
-     * @param  {String}   name  Name of role
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'getRole',
-    value: function getRole(name, cb) {
-      this.storage.getRole(name, cb);
-      return this;
+  /**
+   * Create a new permission assigned to actual instance of RBAC
+   * @method RBAC#createPermission
+   * @param {String} action Name of action
+   * @param {String} resource Name of resource
+   * @param {Boolean} [add] True if you need to add it to the storage
+   * @return {Permission} Instance of the Permission
+   */
+  async createPermission(action, resource, add) {
+    const permission = new _Permission.default(this, action, resource);
+    if (add) {
+      await permission.add();
     }
+    return permission;
+  }
-    /**
-     * Return all instances of Role
-     * @method RBAC#getRoles
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'getRoles',
-    value: function getRoles(cb) {
-      this.storage.getRoles(cb);
-      return this;
-    }
+  /**
+   * Callback returns true if role or permission exists
+   * @method RBAC#exists
+   * @param {String} name Name of item
+   */
+  async exists(name) {
+    return this.storage.exists(name);
+  }
-    /**
-     * Return instance of Permission by his action and resource
-     * @method RBAC#getPermission
-     * @param  {String} action    Name of action
-     * @param  {String} resource  Name of resource
-     * @param  {Function} cb      Callback function
-     * @return {RBAC}             Return instance of actual RBAC
-     */
-  }, {
-    key: 'getPermission',
-    value: function getPermission(action, resource, cb) {
-      this.storage.getPermission(action, resource, cb);
-      return this;
-    }
+  /**
+   * Callback returns true if role exists
+   * @method RBAC#existsRole
+   * @param {String} name Name of item
+   */
+  async existsRole(name) {
+    return this.storage.existsRole(name);
+  }
-    /**
-     * Return instance of Permission by his name
-     * @method RBAC#getPermission
-     * @param  {String} name      Name of permission
-     * @param  {Function} cb      Callback function
-     * @return {RBAC}             Return instance of actual RBAC
-     */
-  }, {
-    key: 'getPermissionByName',
-    value: function getPermissionByName(name, cb) {
-      var data = _Permission2.default.decodeName(name);
-      this.storage.getPermission(data.action, data.resource, cb);
-      return this;
-    }
+  /**
+   * Callback returns true if permission exists
+   * @method RBAC#existsPermission
+   * @param {String} action Name of action
+   * @param {String} resource Name of resource
+   */
+  async existsPermission(action, resource) {
+    return this.storage.existsPermission(action, resource);
+  }
-    /**
-     * Return all instances of Permission
-     * @method RBAC#getPermissions
-     * @param  {Function} cb    Callback function
-     * @return {RBAC}           Return instance of actual RBAC
-     */
-  }, {
-    key: 'getPermissions',
-    value: function getPermissions(cb) {
-      this.storage.getPermissions(cb);
-      return this;
-    }
+  /**
+   * Return instance of Role by his name
+   * @method RBAC#getRole
+   * @param {String} name Name of role
+   */
+  async getRole(name) {
+    return this.storage.getRole(name);
+  }
-    /**
-     * Create multiple permissions in one step
-     * @method RBAC#createPermissions
-     * @param  {Object}   permissions Object of permissions
-     * @param  {Boolean} [add=true]   True if you need to add it to the storage
-     * @param  {Function} cb          Callbck function
-     * @return {RBAC}                 Instance of actual RBAC
-     */
-  }, {
-    key: 'createPermissions',
-    value: function createPermissions(resources, add, cb) {
-      var _this4 = this;
-      if (typeof add === 'function') {
-        return this.createPermissions(resources, true, add);
-      }
+  /**
+   * Return all instances of Role
+   * @method RBAC#getRoles
+   */
+  async getRoles() {
+    return this.storage.getRoles();
+  }
-      var tasks = {};
+  /**
+   * Return instance of Permission by his action and resource
+   * @method RBAC#getPermission
+   * @param {String} action Name of action
+   * @param {String} resource Name of resource
+   */
+  async getPermission(action, resource) {
+    return this.storage.getPermission(action, resource);
+  }
-      if (!(0, _isPlainObject2.default)(resources)) {
-        return cb(new Error('Resources is not a plain object'));
-      }
+  /**
+   * Return instance of Permission by his name
+   * @method RBAC#getPermission
+   * @param {String} name Name of permission
+   */
+  async getPermissionByName(name) {
+    const data = _Permission.default.decodeName(name, this.options.delimiter);
+    return this.storage.getPermission(data.action, data.resource);
+  }
-      Object.keys(resources).forEach(function (resource) {
-        resources[resource].forEach(function (action) {
-          var name = _Permission2.default.createName(action, resource);
-          tasks[name] = function (callback) {
-            return _this4.createPermission(action, resource, add, callback);
-          };
-        }, _this4);
-      }, this);
-      (0, _async.parallel)(tasks, cb);
-      return this;
-    }
+  /**
+   * Return all instances of Permission
+   * @method RBAC#getPermissions
+   */
+  async getPermissions() {
+    return this.storage.getPermissions();
+  }
-    /**
-     * Create multiple roles in one step assigned to actual instance of RBAC
-     * @method RBAC#createRoles
-     * @param  {Array}    roleNames  Array of role names
-     * @param  {Boolean} [add=true]   True if you need to add it to the storage
-     * @param  {Function} cb         Callback function
-     * @return {RBAC}                Current instance
-     */
-  }, {
-    key: 'createRoles',
-    value: function createRoles(roleNames, add, cb) {
-      var _this5 = this;
-      if (typeof add === 'function') {
-        return this.createRoles(roleNames, true, add);
-      }
+  /**
+   * Create multiple permissions in one step
+   * @method RBAC#createPermissions
+   * @param {Object} permissions Object of permissions
+   * @param {Boolean} [add=true] True if you need to add it to the storage
+   */
+  async createPermissions(resources, add = true) {
+    if (!isPlainObject(resources)) {
+      throw new Error('Resources is not a plain object');
+    }
+    const permissions = {};
+    await Promise.all(Object.keys(resources).map(async resource => {
+      const actions = resources[resource];
+      await Promise.all(actions.map(async action => {
+        const permission = await this.createPermission(action, resource, add);
+        permissions[permission.name] = permission;
+      }));
+    }));
+    return permissions;
+  }
-      var tasks = {};
+  /**
+   * Create multiple roles in one step assigned to actual instance of RBAC
+   * @method RBAC#createRoles
+   * @param {Array} roleNames Array of role names
+   * @param {Boolean} [add=true] True if you need to add it to the storage
+   */
+  async createRoles(roleNames, add = true) {
+    const roles = {};
+    await Promise.all(roleNames.map(async roleName => {
+      const role = await this.createRole(roleName, add);
+      roles[role.name] = role;
+    }));
+    return roles;
+  }
-      roleNames.forEach(function (roleName) {
-        tasks[roleName] = function (callback) {
-          return _this5.createRole(roleName, add, callback);
-        };
-      }, this);
+  /**
+   * Grant multiple items in one function
+   * @method RBAC#grants
+   * @param {Object} List of roles
+   */
+  async grants(roles) {
+    if (!isPlainObject(roles)) {
+      throw new Error('Grants is not a plain object');
+    }
+    await Promise.all(Object.keys(roles).map(async roleName => {
+      const grants = roles[roleName];
+      await Promise.all(grants.map(async grant => {
+        await this.grantByName(roleName, grant);
+      }));
+    }));
+  }
-      (0, _async.parallel)(tasks, cb);
-      return this;
-    }
+  /**
+   * Create multiple permissions and roles in one step
+   * @method RBAC#create
+   * @param {Object[]} roleNames List of role names
+   * @param {Object[]} permissionNames List of permission names
+   * @param {Object} [grants] List of grants
+   */
+  async create(roleNames, permissionNames, grantsData) {
+    const [permissions, roles] = await Promise.all([this.createPermissions(permissionNames), this.createRoles(roleNames)]);
+    if (grantsData) {
+      await this.grants(grantsData);
+    }
+    return {
+      permissions,
+      roles
+    };
+  }
-    /**
-     * Grant multiple items in one function
-     * @method RBAC#grants
-     * @param  {Object}       List of roles
-     * @param  {Function} cb  Callback function
-     * @return {RBAC}         Current instance
-     */
-  }, {
-    key: 'grants',
-    value: function grants(roles, cb) {
-      var _this6 = this;
-      if (!(0, _isPlainObject2.default)(roles)) {
-        return cb(new Error('Grants is not a plain object'));
+  /**
+   * Traverse hierarchy of roles.
+   * Callback function returns as second parameter item from hierarchy or null if we are on the end of hierarchy.
+   * @method RBAC#_traverseGrants
+   * @param {string} roleName  Name of role
+   * @param {Function} cb Callback function
+   * @private
+   */
+  async traverseGrants(roleName, cb, next = [roleName], used = {}) {
+    const actualRole = next.shift();
+    used[actualRole] = true;
+    const grants = await this.storage.getGrants(actualRole);
+    for (let i = 0; i < grants.length; i += 1) {
+      const item = grants[i];
+      const {
+        name
+      } = item;
+      if (item instanceof _Role.default && !used[name]) {
+        used[name] = true;
+        next.push(name);
       }
-      var tasks = [];
-      Object.keys(roles).forEach(function (role) {
-        roles[role].forEach(function (grant) {
-          tasks.push(function (callback) {
-            return _this6.grantByName(role, grant, callback);
-          });
-        }, _this6);
-      }, this);
-      (0, _async.parallel)(tasks, cb);
-      return this;
-    }
-    /**
-     * Create multiple permissions and roles in one step
-     * @method RBAC#create
-     * @param  {Array}   roleNames       List of role names
-     * @param  {Object}  permissionNames List of permission names
-     * @param  {Object}  [grants]        List of grants
-     * @param  {Array}   cb              Callback function
-     * @return {RBAC}                    Instance of actual RBAC
-     */
-  }, {
-    key: 'create',
-    value: function create(roleNames, permissionNames, grants, cb) {
-      var _this7 = this;
-      if (typeof grants === 'function') {
-        return this.create(roleNames, permissionNames, null, grants);
+      const result = await cb(item);
+      if (result !== undefined) {
+        return result;
       }
-      var tasks = {
-        permissions: function permissions(callback) {
-          return _this7.createPermissions(permissionNames, callback);
-        },
-        roles: function roles(callback) {
-          return _this7.createRoles(roleNames, callback);
-        }
-      };
-      (0, _async.parallel)(tasks, function (err, result) {
-        if (err || !grants) {
-          return cb(err, result);
-        }
-        // add grants to roles
-        _this7.grants(grants, function (err2) {
-          if (err2) {
-            return cb(err2);
-          }
-          cb(null, result);
-        });
-      });
-      return this;
-    }
-    /**
-     * Traverse hierarchy of roles.
-     * Callback function returns as second parameter item from hierarchy or null if we are on the end of hierarchy.
-     * @method RBAC#_traverseGrants
-     * @param  {String}   roleName  Name of role
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}               Return instance of actual RBAC
-     * @private
-     */
-  }, {
-    key: '_traverseGrants',
-    value: function _traverseGrants(roleName, cb) {
-      var _this8 = this;
-      var next = arguments.length > 2 && arguments[2] !== undefined ? arguments[2] : [roleName];
-      var used = arguments.length > 3 && arguments[3] !== undefined ? arguments[3] : {};
-      var actualRole = next.shift();
-      used[actualRole] = true;
-      this.storage.getGrants(actualRole, function (err) {
-        var items = arguments.length > 1 && arguments[1] !== undefined ? arguments[1] : [];
-        if (err) {
-          return cb(err);
-        }
-        for (var i = 0; i < items.length; i++) {
-          var item = items[i];
-          var name = item.name;
-          if (RBAC.isRole(item) && !used[name]) {
-            used[name] = true;
-            next.push(name);
-          }
-          if (cb(null, item) === false) {
-            return void 0;
-          }
-        }
-        if (next.length === 0) {
-          return cb(null, null);
-        }
-        _this8._traverseGrants(null, cb, next, used);
-      });
-      return this;
     }
-    /**
-     * Return true if role has allowed permission
-     * @method RBAC#can
-     * @param  {String}  roleName Name of role
-     * @param  {String}  action   Name of action
-     * @param  {String}  resource Name of resource
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}             Current instance
-     */
-  }, {
-    key: 'can',
-    value: function can(roleName, action, resource, cb) {
-      this._traverseGrants(roleName, function (err, item) {
-        // if there is a error
-        if (err) {
-          return cb(err);
-        }
-        // this is last item
-        if (!item) {
-          return cb(null, false);
-        }
-        if (RBAC.isPermission(item) && item.can(action, resource) === true) {
-          cb(null, true);
-          // end up actual traversing
-          return false;
-        }
-      });
-      return this;
-    }
-    /**
-     * Check if the role has any of the given permissions.
-     * @method RBAC#canAny
-     * @param  {String} roleName     Name of role
-     * @param  {Array}  permissions  Array (String action, String resource)
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}                Current instance
-     */
-  }, {
-    key: 'canAny',
-    value: function canAny(roleName, permissions, cb) {
-      // prepare the names of permissions
-      var permissionNames = RBAC.getPermissionNames(permissions);
-      // traverse hierarchy
-      this._traverseGrants(roleName, function (err, item) {
-        // if there is a error
-        if (err) {
-          return cb(err);
-        }
-        // this is last item
-        if (!item) {
-          return cb(null, false);
-        }
-        if (RBAC.isPermission(item) && permissionNames.indexOf(item.name) !== -1) {
-          cb(null, true);
-          // end up actual traversing
-          return false;
-        }
-      });
-      return this;
-    }
-    /**
-     * Check if the model has all of the given permissions.
-     * @method RBAC#canAll
-     * @param  {String} roleName     Name of role
-     * @param  {Array}  permissions  Array (String action, String resource)
-     * @param  {Function} cb        Callback function
-     * @return {RBAC}                Current instance
-     */
-  }, {
-    key: 'canAll',
-    value: function canAll(roleName, permissions, cb) {
-      // prepare the names of permissions
-      var permissionNames = RBAC.getPermissionNames(permissions);
-      var founded = {};
-      var foundedCount = 0;
-      // traverse hierarchy
-      this._traverseGrants(roleName, function (err, item) {
-        // if there is a error
-        if (err) {
-          return cb(err);
-        }
-        // this is last item
-        if (!item) {
-          return cb(null, false);
-        }
-        if (RBAC.isPermission(item) && permissionNames.indexOf(item.name) !== -1 && !founded[item.name]) {
-          founded[item.name] = true;
-          foundedCount++;
-          if (foundedCount === permissionNames.length) {
-            cb(null, true);
-            // end up actual traversing
-            return false;
-          }
-        }
-      });
-      return this;
+    if (next.length) {
+      return this.traverseGrants(null, cb, next, used);
     }
+  }
-    /**
-     * Return true if role has allowed permission
-     * @method RBAC#hasRole
-     * @param  {String}   roleName        Name of role
-     * @param  {String}   roleChildName   Name of child role
-     * @param  {Function} cb              Callback function
-     * @return {RBAC}                     Current instance
-     */
-  }, {
-    key: 'hasRole',
-    value: function hasRole(roleName, roleChildName, cb) {
-      if (roleName === roleChildName) {
-        cb(null, true);
-        return this;
+  /**
+   * Return true if role has allowed permission
+   * @method RBAC#can
+   * @param {string} roleName Name of role
+   * @param {string} action Name of action
+   * @param {string} resource Name of resource
+   * @return {boolean}
+   */
+  async can(roleName, action, resource) {
+    const can = await this.traverseGrants(roleName, item => {
+      if (item instanceof _Permission.default && item.can(action, resource)) {
+        return true;
       }
+    });
+    return can || false;
+  }
-      this._traverseGrants(roleName, function (err, item) {
-        // if there is a error
-        if (err) {
-          return cb(err);
-        }
-        // this is last item
-        if (!item) {
-          return cb(null, false);
-        }
-        if (RBAC.isRole(item) && item.name === roleChildName) {
-          cb(null, true);
-          // end up actual traversing
-          return false;
-        }
-      });
-      return this;
-    }
-    /**
-     * Return array of all permission assigned to role of RBAC
-     * @method RBAC#getScope
-     * @param  {String} roleName   Name of role
-     * @param  {Function} cb       Callback function
-     * @return {RBAC}              Current instance
-     */
-  }, {
-    key: 'getScope',
-    value: function getScope(roleName, cb) {
-      var scope = [];
-      // traverse hierarchy
-      this._traverseGrants(roleName, function (err, item) {
-        // if there is a error
-        if (err) {
-          return cb(err);
-        }
-        // this is last item
-        if (!item) {
-          return cb(null, scope);
-        }
+  /**
+   * Check if the role has any of the given permissions.
+   * @method RBAC#canAny
+   * @param  {string} roleName Name of role
+   * @param  {Object[]}  permissions Array (String action, String resource)
+   * @return {boolean}
+   */
+  async canAny(roleName, permissions) {
+    // prepare the names of permissions
+    const permissionNames = RBAC.getPermissionNames(permissions, this.options.delimiter);
+    // traverse hierarchy
+    const can = await this.traverseGrants(roleName, item => {
+      if (item instanceof _Permission.default && permissionNames.includes(item.name)) {
+        return true;
+      }
+      return undefined;
+    });
+    return can || false;
+  }
-        if (RBAC.isPermission(item) && scope.indexOf(item.name) === -1) {
-          scope.push(item.name);
+  /**
+   * Check if the model has all of the given permissions.
+   * @method RBAC#canAll
+   * @param {string} roleName Name of role
+   * @param {Object[]} permissions Array (String action, String resource)
+   * @return {boolean} Current instance
+   */
+  async canAll(roleName, permissions) {
+    // prepare the names of permissions
+    const permissionNames = RBAC.getPermissionNames(permissions, this.options.delimiter);
+    const founded = {};
+    let foundedCount = 0;
+    // traverse hierarchy
+    await this.traverseGrants(roleName, item => {
+      if (item instanceof _Permission.default && permissionNames.includes(item.name) && !founded[item.name]) {
+        founded[item.name] = true;
+        foundedCount += 1;
+        if (foundedCount === permissionNames.length) {
+          return true;
         }
-      });
-      return this;
-    }
-    /**
-     * Convert Array of permissions to permission name
-     * @function getPermissionNames
-     * @memberof RBAC
-     * @param  {Array} permissions List of array items of permission names. It contan action and resource
-     * @return {Array}             List of permission names
-     * @static
-     */
-  }, {
-    key: 'options',
-    get: function get() {
-      return this._options;
-    }
-    /**
-     * The RBAC's storage.
-     * @member RBAC#storage {Storage}
-     */
-  }, {
-    key: 'storage',
-    get: function get() {
-      return this.options.storage;
-    }
-  }], [{
-    key: 'getPermissionNames',
-    value: function getPermissionNames(permissions) {
-      var permissionNames = [];
-      for (var i = 0; i < permissions.length; i++) {
-        var permission = permissions[i];
-        permissionNames.push(_Permission2.default.createName(permission[0], permission[1]));
       }
+      return undefined;
+    });
+    return foundedCount === permissionNames.length;
+  }
-      return permissionNames;
-    }
-  }, {
-    key: 'isPermission',
-    value: function isPermission(item) {
-      return item instanceof _Permission2.default;
-    }
-  }, {
-    key: 'isRole',
-    value: function isRole(item) {
-      return item instanceof _Role2.default;
+  /**
+   * Return true if role has allowed permission
+   * @method RBAC#hasRole
+   * @param {String} roleName Name of role
+   * @param {String} roleChildName Name of child role
+   * @return {boolean}
+   */
+  async hasRole(roleName, roleChildName) {
+    if (roleName === roleChildName) {
+      return true;
     }
-  }]);
+    const has = await this.traverseGrants(roleName, item => {
+      if (item instanceof _Role.default && item.name === roleChildName) {
+        return true;
+      }
+      return undefined;
+    });
+    return has || false;
+  }
-  return RBAC;
-}();
+  /**
+   * Return array of all permission assigned to role of RBAC
+   * @method RBAC#getScope
+   * @param  {string} roleName   Name of role
+   * @return {string[]}
+   */
+  async getScope(roleName) {
+    const scope = [];
-exports.default = RBAC;
+    // traverse hierarchy
+    await this.traverseGrants(roleName, item => {
+      if (item instanceof _Permission.default && !scope.includes(item.name)) {
+        scope.push(item.name);
+      }
+    });
+    return scope;
+  }
+}
+exports.default = RBAC;
+//# sourceMappingURL=RBAC.js.map