response-standardizer 1.0.4 → 1.0.5

package/dist/index.d.ts

@@ -15,6 +15,6 @@ export declare const initKeycloak: (config: {
     service?: string;
     realm?: string;
 }) => Promise<void>;
-export declare const protect: (allowedRoles?: string[]) => (req: any, res: any, next: any) => void | ((req: any, res: any, next: any) => void);
+export declare const protect: (allowedRoles?: string[]) => (req: any, res: any, next: any) => void;
 export declare const RestResponse: RestResponseFunctions;
 export declare const RestMiddleware: RestMiddlewareFunctions;

package/dist/index.js

@@ -23,7 +23,7 @@ export const protect = (allowedRoles) => {
             const decoded = jwt.verify(token, KEYCLOAK_PUBLIC_KEY, { algorithms: ["RS256"] });
             req.user = decoded;
             if (allowedRoles)
-                return role(allowedRoles);
+                return role(req, res, next, allowedRoles);
             next();
         }
         catch (err) {
@@ -32,24 +32,22 @@ export const protect = (allowedRoles) => {
         }
     };
 };
-const role = (allowedRoles) => {
-    return (req, res, next) => {
-        const user = req.user;
-        if (!user) {
-            return RestResponse.unauthorized(req, res);
-        }
-        const realmRoles = (user?.realm_access?.roles ?? []).map((r) => r.toUpperCase());
-        const clientRoles = Object.values(user?.resource_access ?? {})
-            .flatMap((r) => r.roles ?? [])
-            .map((r) => r.toUpperCase());
-        const allowedUpper = allowedRoles.map(r => r.toUpperCase());
-        const allRoles = [...realmRoles, ...clientRoles];
-        const hasAccess = allowedUpper.some((role) => allRoles.includes(role));
-        if (!hasAccess) {
-            return RestResponse.accessDenied(req, res);
-        }
-        next();
-    };
+const role = (req, res, next, allowedRoles) => {
+    const user = req.user;
+    if (!user) {
+        return RestResponse.unauthorized(req, res);
+    }
+    const realmRoles = (user?.realm_access?.roles ?? []).map((r) => r.toUpperCase());
+    const clientRoles = Object.values(user?.resource_access ?? {})
+        .flatMap((r) => r.roles ?? [])
+        .map((r) => r.toUpperCase());
+    const allowedUpper = allowedRoles.map(r => r.toUpperCase());
+    const allRoles = [...realmRoles, ...clientRoles];
+    const hasAccess = allowedUpper.some((role) => allRoles.includes(role));
+    if (!hasAccess) {
+        return RestResponse.accessDenied(req, res);
+    }
+    next();
 };
 const success = (req, res, data, message = null) => {
     res.status(200).json({ data, message });

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "response-standardizer",
-  "version": "1.0.4",
+  "version": "1.0.5",
   "description": "Express middleware to standardize API responses",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",

package/src/index.ts

@@ -40,7 +40,7 @@ export const protect = (allowedRoles?: string[]) => {
             const decoded = jwt.verify(token, KEYCLOAK_PUBLIC_KEY, { algorithms: ["RS256"] });
             (req as any).user = decoded;
             if(allowedRoles)
-                return role(allowedRoles);
+                return role(req, res, next, allowedRoles);
             
             next();
         } catch (err) {
@@ -50,9 +50,8 @@ export const protect = (allowedRoles?: string[]) => {
     }
   
 }
-const role = (allowedRoles: string[]) => {
-  return (req: any, res: any, next: any) => {
-    const user = req.user;
+const role = (req: any, res: any, next: any, allowedRoles: string[]) => {
+  const user = req.user;
     if (!user) {
       return RestResponse.unauthorized(req, res);
     }
@@ -69,8 +68,6 @@ const role = (allowedRoles: string[]) => {
       return RestResponse.accessDenied(req, res)
     }
     next()
-  }
-  
 }
 const success = <T>(req: Request, res: Response, data: T, message: string | null = null) => {
     res.status(200).json({ data, message });