feat: insert roles and permissions in session

packages/user/src/supertokens/recipes/config/session/createNewSession.ts

@@ -1,5 +1,12 @@
 import getUserService from "../../../../lib/getUserService";
+import RoleService from "../../../../model/roles/service";
 
+import type {
+  Role,
+  RoleCreateInput,
+  RoleUpdateInput,
+  User,
+} from "../../../../types";
 import type { FastifyError, FastifyInstance } from "fastify";
 import type { SessionRequest } from "supertokens-node/framework/fastify";
 import type { RecipeInterface } from "supertokens-node/recipe/session/types";
@@ -17,19 +24,43 @@ const createNewSession = (
     const request = input.userContext._default.request
       .request as SessionRequest;
 
-    const originalResponse = await originalImplementation.createNewSession(
-      input
+    const userService = getUserService(
+      request.config,
+      request.slonik,
+      request.dbSchema
     );
 
-    const userId = originalResponse.getUserId();
+    const user = (await userService.findById(input.userId)) as User;
 
-    const userService = getUserService(
+    const roleService = new RoleService<Role, RoleCreateInput, RoleUpdateInput>(
       request.config,
       request.slonik,
       request.dbSchema
     );
 
-    const user = await userService.findById(userId);
+    const roles = await roleService.list(undefined, undefined, {
+      OR: user.roles.map(({ role }) => ({
+        key: "role",
+        operator: "eq",
+        value: role,
+      })),
+    });
+
+    input.accessTokenPayload = {
+      ...input.accessTokenPayload,
+      "st-role": {
+        v: roles.data.map(({ role }) => role),
+        t: Date.now(),
+      },
+      "st-perm": {
+        v: [...new Set(roles.data.flatMap(({ permissions }) => permissions))],
+        t: Date.now(),
+      },
+    };
+
+    const originalResponse = await originalImplementation.createNewSession(
+      input
+    );
 
     if (user?.disabled) {
       await originalResponse.revokeSession();