import { organizationQueryKeys } from "@better-auth-ui/core/plugins" import { type DataTag, type QueryClient, queryOptions } from "@tanstack/react-query" import type { APIError } from "better-auth" import type { OrganizationAuthServer } from "../../../lib/auth-server" export type HasPermissionData< TAuth extends OrganizationAuthServer = OrganizationAuthServer > = Awaited> export type HasPermissionParams< TAuth extends OrganizationAuthServer = OrganizationAuthServer > = Parameters[0] /** * Query options factory for organization permission checks. * * @param auth - The Better Auth server instance. * @param userId - The signed-in user's ID. Used for cache partitioning so * the key matches the client-side `hasPermissionOptions` for SSR hydration. * @param params - Parameters forwarded to `auth.api.hasPermission`. */ export function hasPermissionOptions( auth: TAuth, userId: string, params: HasPermissionParams ) { type TData = HasPermissionData // Same logical payload as the client key (permissions ± organizationId): client // strips `fetchOptions`; server keeps that shape under `body`. const queryKey = organizationQueryKeys.permissions.has(userId, params?.body) const options = queryOptions({ queryKey, queryFn: () => auth.api.hasPermission(params) as Promise }) return options as typeof options & { queryKey: DataTag } } export const ensureHasPermission = ( queryClient: QueryClient, auth: TAuth, userId: string, params: HasPermissionParams ) => queryClient.ensureQueryData(hasPermissionOptions(auth, userId, params)) export const prefetchHasPermission = ( queryClient: QueryClient, auth: TAuth, userId: string, params: HasPermissionParams ) => queryClient.prefetchQuery(hasPermissionOptions(auth, userId, params)) export const fetchHasPermission = ( queryClient: QueryClient, auth: TAuth, userId: string, params: HasPermissionParams ) => queryClient.fetchQuery(hasPermissionOptions(auth, userId, params))