Add support for fetching permissions JWT claim. (#8)

mattgd · web-flow · commit b5f4bcb8c18a · 2024-07-15T10:34:56.000-04:00
diff --git a/src/interfaces.ts b/src/interfaces.ts
@@ -20,6 +20,7 @@ export interface UserInfo {
   sessionId: string;
   organizationId?: string;
   role?: string;
+  permissions?: string[];
   impersonator?: Impersonator;
   accessToken: string;
 }
@@ -35,6 +36,7 @@ export interface AccessToken {
   sid: string;
   org_id?: string;
   role?: string;
+  permissions?: string[];
 }
 
 export interface GetAuthURLOptions {
diff --git a/src/session.ts b/src/session.ts
@@ -99,13 +99,14 @@ async function withAuth(request: Request, { ensureSignedIn = false, debug = fals
     return { user: null };
   }
 
-  const { sid: sessionId, org_id: organizationId, role } = decodeJwt<AccessToken>(session.accessToken);
+  const { sid: sessionId, org_id: organizationId, role, permissions } = decodeJwt<AccessToken>(session.accessToken);
 
   return {
     sessionId,
     user: session.user,
     organizationId,
     role,
+    permissions,
     impersonator: session.impersonator,
     accessToken: session.accessToken,
   };

Original file line number	Diff line number	Diff line change
`@@ -20,6 +20,7 @@ export interface UserInfo {`
`20`	`20`	`sessionId: string;`
`21`	`21`	`organizationId?: string;`
`22`	`22`	`role?: string;`
	`23`	`+ permissions?: string[];`
`23`	`24`	`impersonator?: Impersonator;`
`24`	`25`	`accessToken: string;`
`25`	`26`	`}`
`@@ -35,6 +36,7 @@ export interface AccessToken {`
`35`	`36`	`sid: string;`
`36`	`37`	`org_id?: string;`
`37`	`38`	`role?: string;`
	`39`	`+ permissions?: string[];`
`38`	`40`	`}`
`39`	`41`
`40`	`42`	`export interface GetAuthURLOptions {`