nest-access-control
nest-access-control copied to clipboard
nestjsx
Role and Attribute based Access Control for Nestjs 🔐
Bumps [terser](https://github.com/terser/terser) from 4.6.13 to 4.8.1. Changelog Sourced from terser's changelog. v4.8.1 (backport) Security fix for RegExps that should not be evaluated (regexp DDOS) v4.8.0 Support for numeric separators (million...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
I am using the ```forRootAsync``` method to load roles dynamically from the database however I am getting an error. I am a newbie to Nestjs, so please let me know...
A user has the director role, he belongs to a company, he can also create and edit work groups that belong to that company. How can I get him to...
Bumps [minimist](https://github.com/substack/minimist) from 1.2.5 to 1.2.6. Commits 7efb22a 1.2.6 ef88b93 security notice for additional prototype pollution issue c2b9819 isConstructorOrProto adapted from PR bc8ecee test from prototype pollution PR See full...
In Access Control docs it says > Note that own requires you to also check for the actual possession and [here](https://github.com/onury/accesscontrol/issues/14#issuecomment-328316670) it shows how to do it, but I am...
``` import { RolesBuilder } from "nest-access-control"; import { Role } from "@prisma/client"; export const roles: RolesBuilder = new RolesBuilder(); roles .grant(Role.USER).createOwn('users').deleteOwn('users').readAny('users').updateOwn('users') .grant(Role.ADMIN).extend(Role.USER).updateAny('users').deleteAny('users'); ``` ``` @UseRoles({ possession: 'any', action: 'update',...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.14.6 to 1.14.9. Commits 13136e9 Release version 1.14.9 of the npm package. 2ec9b0b Keep headers when upgrading from HTTP to HTTPS. 5fc74dd Reduce nesting. 3d81dc3 Release version...
Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.1 to 2.6.7. Release notes Sourced from node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th...
Bumps [node-fetch](https://github.com/node-fetch/node-fetch) from 2.6.6 to 2.6.7. Release notes Sourced from node-fetch's releases. v2.6.7 Security patch release Recommended to upgrade, to not leak sensitive cookie and authentication header information to 3th...
Is it possible to define a simple RBAC system ('USER', 'EDITOR', 'ADMIN') and guarding the routes by user's role without having to define all permissions? Something like: ``` # app.roles.ts...
