import express, { NextFunction } from "express";
import { Model } from "mongoose";
import { FernsRouterOptions, RESTMethod } from "./api";
import { User } from "./auth";
export type PermissionMethod<T> = (method: RESTMethod, user?: User, obj?: T) => boolean | Promise<boolean>;
export interface RESTPermissions<T> {
    create: PermissionMethod<T>[];
    list: PermissionMethod<T>[];
    read: PermissionMethod<T>[];
    update: PermissionMethod<T>[];
    delete: PermissionMethod<T>[];
}
export declare const OwnerQueryFilter: (user?: User) => {
    ownerId: string;
} | null;
export declare const Permissions: {
    IsAuthenticatedOrReadOnly: (method: RESTMethod, user?: User) => boolean;
    IsOwnerOrReadOnly: (method: RESTMethod, user?: User, obj?: any) => boolean;
    IsAny: () => boolean;
    IsOwner: (_method: RESTMethod, user?: User, obj?: any) => any;
    IsAdmin: (_method: RESTMethod, user?: User) => boolean;
    IsAuthenticated: (_method: RESTMethod, user?: User) => boolean;
};
export declare function checkPermissions<T>(method: RESTMethod, permissions: PermissionMethod<T>[], user?: User, obj?: T): Promise<boolean>;
export declare function permissionMiddleware<T>(baseModel: Model<T>, options: Pick<FernsRouterOptions<T>, "permissions" | "populatePaths" | "discriminatorKey">): (req: express.Request, _res: express.Response, next: NextFunction) => Promise<void>;