feat(clerk-js,types): Update system permission names (#1865)

* feat(clerk-js,types): Update system permission names

* chore(clerk-js,types): Add changeset

---------

Co-authored-by: panteliselef <[email protected]>

Author: mzhong9723

.changeset/fresh-news-cry.md

@@ -0,0 +1,6 @@
+---
+'@clerk/clerk-js': patch
+'@clerk/types': patch
+---
+
+Update default organization permissions with a `sys_` prefix as part of the entitlement. This changes makes it easy to distinguish between clerk reserved permissions and custom permissions created by developers.

packages/clerk-js/src/core/resources/Session.test.ts

@@ -73,7 +73,7 @@ describe('Session', () => {
         updated_at: new Date().getTime(),
       } as SessionJSON);
 
-      const isAuthorized = await session.isAuthorized({ permission: 'org:profile:delete' });
+      const isAuthorized = await session.isAuthorized({ permission: 'org:sys_profile:delete' });
 
       expect(isAuthorized).toBe(true);
     });
@@ -84,7 +84,7 @@ describe('Session', () => {
         id: 'session_1',
         object: 'session',
         user: createUser({
-          organization_memberships: [{ name: 'Org1', id: 'org1', permissions: ['org:memberships:read'] }],
+          organization_memberships: [{ name: 'Org1', id: 'org1', permissions: ['org:sys_memberships:read'] }],
         }),
         last_active_organization_id: 'org1',
         last_active_token: { object: 'token', jwt: mockJwt },
@@ -93,7 +93,7 @@ describe('Session', () => {
         updated_at: new Date().getTime(),
       } as SessionJSON);
 
-      const isAuthorized = await session.isAuthorized({ permission: 'org:profile:delete' });
+      const isAuthorized = await session.isAuthorized({ permission: 'org:sys_profile:delete' });
 
       expect(isAuthorized).toBe(false);
     });

packages/clerk-js/src/core/test/fixtures.ts

@@ -51,14 +51,14 @@ export const createOrganizationMembership = (params: OrgParams): OrganizationMem
     public_metadata: {},
     role: role || 'admin',
     permissions: permissions || [
-      'org:domains:delete',
-      'org:domains:manage',
-      'org:domains:read',
-      'org:memberships:delete',
-      'org:memberships:manage',
-      'org:memberships:read',
-      'org:profile:delete',
-      'org:profile:manage',
+      'org:sys_domains:delete',
+      'org:sys_domains:manage',
+      'org:sys_domains:read',
+      'org:sys_memberships:delete',
+      'org:sys_memberships:manage',
+      'org:sys_memberships:read',
+      'org:sys_profile:delete',
+      'org:sys_profile:manage',
     ],
     updated_at: new Date().getTime(),
   } as OrganizationMembershipJSON;

packages/types/src/organizationMembership.ts

@@ -43,14 +43,14 @@ export interface OrganizationMembershipResource extends ClerkResource {
 export type MembershipRole = 'admin' | 'basic_member' | 'guest_member';
 
 export type OrganizationPermission =
-  | 'org:domains:manage'
-  | 'org:domains:delete'
-  | 'org:profile:manage'
-  | 'org:profile:delete'
-  | 'org:memberships:read'
-  | 'org:memberships:manage'
-  | 'org:memberships:delete'
-  | 'org:domains:read';
+  | 'org:sys_domains:manage'
+  | 'org:sys_domains:delete'
+  | 'org:sys_profile:manage'
+  | 'org:sys_profile:delete'
+  | 'org:sys_memberships:read'
+  | 'org:sys_memberships:manage'
+  | 'org:sys_memberships:delete'
+  | 'org:sys_domains:read';
 
 export type UpdateOrganizationMembershipParams = {
   role: MembershipRole;