UNPKG

alepha

Version:

Alepha is a convention-driven TypeScript framework for building robust, end-to-end type-safe applications, from serverless APIs to full-stack React apps.

github.com/feunard/alepha

feunard/alepha

87 lines (86 loc) 3.51 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
import * as _alepha_core1 from "alepha"; import { Alepha } from "alepha"; import { JwtProvider, Permission, SecurityProvider, UserAccount, UserAccountToken } from "alepha/security"; import { FetchOptions } from "alepha/server"; import * as _alepha_logger0 from "alepha/logger"; //#region src/providers/ServerSecurityProvider.d.ts declare class ServerSecurityProvider { protected readonly log: _alepha_logger0.Logger; protected readonly securityProvider: SecurityProvider; protected readonly jwtProvider: JwtProvider; protected readonly alepha: Alepha; protected readonly onConfigure: _alepha_core1.HookDescriptor<"configure">; protected readonly onActionRequest: _alepha_core1.HookDescriptor<"action:onRequest">; protected readonly onRequest: _alepha_core1.HookDescriptor<"server:onRequest">; protected check(user: UserAccountToken, secure: ServerRouteSecure): void; /** * Get the user account token for a local action call. * There are three possible sources for the user: * - `options.user`: the user passed in the options * - `"system"`: the system user from the state (you MUST set state `server.security.system.user`) * - `"context"`: the user from the request context (you MUST be in an HTTP request context) * * Priority order: `options.user` > `"system"` > `"context"`. * * In testing environment, if no user is provided, a test user is created based on the SecurityProvider's roles. */ protected createUserFromLocalFunctionContext(options: { user?: UserAccountToken | "system" | "context"; }, permission?: Permission): UserAccountToken; protected createTestUser(): UserAccountToken; protected readonly onClientRequest: _alepha_core1.HookDescriptor<"client:onRequest">; } type ServerRouteSecure = { realm?: string; }; //#endregion //#region src/index.d.ts declare module "alepha" { interface State { /** * Real (or fake) user account, used for internal actions. * * If you define this, you assume that all actions are executed by this user by default. * > To force a different user, you need to pass it explicitly in the options. */ "server.security.system.user"?: UserAccountToken; user?: UserAccount; } } declare module "alepha/server" { interface ServerRequest<TConfig> { user?: UserAccountToken; } interface ServerActionRequest<TConfig> { user: UserAccountToken; } interface ServerRoute { /** * If true, the route will be protected by the security provider. * All actions are secure by default, but you can disable it for specific actions. */ secure?: boolean | ServerRouteSecure; } interface ClientRequestOptions extends FetchOptions { /** * Forward user from the previous request. * If "system", use system user. @see {ServerSecurityProvider.localSystemUser} * If "context", use the user from the current context (e.g. request). * * @default "system" if provided, else "context" if available. */ user?: UserAccountToken | "system" | "context"; } } /** * Plugin for Alepha Server that provides security features. Based on the Alepha Security module. * * By default, all $action will be guarded by a permission check. * * @see {@link ServerSecurityProvider} * @module alepha.server.security */ declare const AlephaServerSecurity: _alepha_core1.Service<_alepha_core1.Module<{}>>; //#endregion export { AlephaServerSecurity, ServerRouteSecure, ServerSecurityProvider }; //# sourceMappingURL=index.d.ts.map