UNPKG

@mamoorali295/rbac

Version:

Complete RBAC (Role-Based Access Control) system for Node.js with Express middleware, NestJS integration, GraphQL support, MongoDB & PostgreSQL support, modern admin dashboard, TypeScript support, and dynamic permission management

github.com/sheikh295/rbac

sheikh295/rbac

207 lines (206 loc) 7.81 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
"use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; var __param = (this && this.__param) || function (paramIndex, decorator) { return function (target, key) { decorator(target, key, paramIndex); } }; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); exports.RbacService = void 0; const common_1 = require("@nestjs/common"); const core_1 = require("../core"); /** * NestJS service that provides RBAC functionality. * Wraps the main RBAC system methods for use in NestJS applications. * * @example * ```typescript * @Injectable() * export class UserService { * constructor(private rbacService: RbacService) {} * * async createUser(userData: CreateUserDto) { * // Create user in your main database * const user = await this.userRepository.create(userData); * * // Register user in RBAC system * await this.rbacService.registerUser(user.id, { * name: user.name, * email: user.email * }); * * return user; * } * * async assignRole(userId: string, roleName: string) { * await this.rbacService.assignRole(userId, roleName); * } * * async checkUserPermissions(userId: string, feature: string) { * return await this.rbacService.getFeaturePermissions(userId, feature); * } * } * ``` */ let RbacService = class RbacService { constructor(config, initialized) { this.config = config; this.initialized = initialized; } /** * Manually register a user in the RBAC system. * Useful for programmatic user registration outside of HTTP requests. * * @param user_id - Unique identifier for the user * @param userData - User data object * @returns Promise that resolves when user is registered * @throws Error if user already exists or registration fails * * @example * ```typescript * await this.rbacService.registerUser('user123', { * name: 'John Doe', * email: 'john@example.com' * }); * ``` */ registerUser(user_id, userData) { return __awaiter(this, void 0, void 0, function* () { return yield core_1.CoreRBAC.registerUserManual(user_id, userData); }); } /** * Update user information in the RBAC system. * * @param user_id - Unique identifier for the user * @param userData - User data to update * @returns Promise that resolves when user is updated * @throws Error if user is not found * * @example * ```typescript * await this.rbacService.updateUser('user123', { * name: 'John Smith', * email: 'johnsmith@example.com' * }); * ``` */ updateUser(user_id, userData) { return __awaiter(this, void 0, void 0, function* () { return yield core_1.CoreRBAC.updateUser(user_id, userData); }); } /** * Assign a role to a user in the RBAC system. * * @param user_id - Unique identifier for the user * @param roleName - Name of the role to assign * @returns Promise that resolves when role is assigned * @throws Error if user or role is not found * * @example * ```typescript * await this.rbacService.assignRole('user123', 'admin'); * ``` */ assignRole(user_id, roleName) { return __awaiter(this, void 0, void 0, function* () { return yield core_1.CoreRBAC.assignRole(user_id, roleName); }); } /** * Get the role name assigned to a user. * * @param user_id - Unique identifier for the user * @returns Promise that resolves to the role name or null if no role assigned * * @example * ```typescript * const role = await this.rbacService.getUserRole('user123'); * console.log(role); // 'admin' or null * ``` */ getUserRole(user_id) { return __awaiter(this, void 0, void 0, function* () { return yield core_1.CoreRBAC.getUserRole(user_id); }); } /** * Get all permissions a user has for a specific feature. * * @param user_id - Unique identifier for the user * @param featureName - Name of the feature to check permissions for * @returns Promise that resolves to an array of permission names * * @example * ```typescript * const permissions = await this.rbacService.getFeaturePermissions('user123', 'billing'); * console.log(permissions); // ['read', 'create', 'update'] * ``` */ getFeaturePermissions(user_id, featureName) { return __awaiter(this, void 0, void 0, function* () { return yield core_1.CoreRBAC.getFeaturePermissions(user_id, featureName); }); } /** * Check if a user has a specific permission for a feature. * * @param user_id - Unique identifier for the user * @param feature - Feature name * @param permission - Permission name * @returns Promise that resolves to boolean indicating if user has permission * * @example * ```typescript * const canDelete = await this.rbacService.hasPermission('user123', 'billing', 'delete'); * if (canDelete) { * // User can delete billing records * } * ``` */ hasPermission(user_id, feature, permission) { return __awaiter(this, void 0, void 0, function* () { const permissions = yield this.getFeaturePermissions(user_id, feature); return permissions.includes(permission); }); } /** * Get access to the underlying RBAC controllers for advanced operations. * * @returns Object containing controller instances * * @example * ```typescript * const { userRole, feature } = this.rbacService.getControllers(); * const allRoles = await userRole.getAllRoles(); * const allFeatures = await feature.getAllFeatures(); * ``` */ getControllers() { // Note: Controllers are Express-specific, not available in NestJS-only mode throw new Error('Controllers are not available in NestJS-only mode. Use the service methods instead.'); } }; exports.RbacService = RbacService; exports.RbacService = RbacService = __decorate([ (0, common_1.Injectable)(), __param(0, (0, common_1.Inject)('RBAC_CONFIG')), __param(1, (0, common_1.Inject)('RBAC_INITIALIZED')), __metadata("design:paramtypes", [Object, Boolean]) ], RbacService);