2023-11-22 09:29:38 +00:00
|
|
|
package query
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"database/sql"
|
|
|
|
|
"errors"
|
|
|
|
|
"time"
|
|
|
|
|
|
|
|
|
|
sq "github.com/Masterminds/squirrel"
|
2023-12-05 11:12:01 +00:00
|
|
|
"golang.org/x/text/language"
|
2023-11-22 09:29:38 +00:00
|
|
|
|
|
|
|
|
"github.com/zitadel/zitadel/internal/api/authz"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/api/call"
|
2023-12-05 11:12:01 +00:00
|
|
|
"github.com/zitadel/zitadel/internal/database"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/domain"
|
2023-11-22 09:29:38 +00:00
|
|
|
"github.com/zitadel/zitadel/internal/query/projection"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/telemetry/tracing"
|
2023-12-08 14:30:55 +00:00
|
|
|
zitade_errors "github.com/zitadel/zitadel/internal/zerrors"
|
2023-11-22 09:29:38 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
var (
|
|
|
|
|
restrictionsTable = table{
|
|
|
|
|
name: projection.RestrictionsProjectionTable,
|
|
|
|
|
instanceIDCol: projection.RestrictionsColumnInstanceID,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnAggregateID = Column{
|
|
|
|
|
name: projection.RestrictionsColumnAggregateID,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnCreationDate = Column{
|
|
|
|
|
name: projection.RestrictionsColumnCreationDate,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnChangeDate = Column{
|
|
|
|
|
name: projection.RestrictionsColumnChangeDate,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnResourceOwner = Column{
|
|
|
|
|
name: projection.RestrictionsColumnResourceOwner,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnInstanceID = Column{
|
|
|
|
|
name: projection.RestrictionsColumnInstanceID,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
|
|
|
|
RestrictionsColumnSequence = Column{
|
|
|
|
|
name: projection.RestrictionsColumnSequence,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
2023-12-05 11:12:01 +00:00
|
|
|
RestrictionsColumnDisallowPublicOrgRegistration = Column{
|
2023-11-22 09:29:38 +00:00
|
|
|
name: projection.RestrictionsColumnDisallowPublicOrgRegistration,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
2023-12-05 11:12:01 +00:00
|
|
|
RestrictionsColumnAllowedLanguages = Column{
|
|
|
|
|
name: projection.RestrictionsColumnAllowedLanguages,
|
|
|
|
|
table: restrictionsTable,
|
|
|
|
|
}
|
2023-11-22 09:29:38 +00:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type Restrictions struct {
|
|
|
|
|
AggregateID string
|
|
|
|
|
CreationDate time.Time
|
|
|
|
|
ChangeDate time.Time
|
|
|
|
|
ResourceOwner string
|
|
|
|
|
Sequence uint64
|
|
|
|
|
|
|
|
|
|
DisallowPublicOrgRegistration bool
|
2023-12-05 11:12:01 +00:00
|
|
|
AllowedLanguages []language.Tag
|
2023-11-22 09:29:38 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (q *Queries) GetInstanceRestrictions(ctx context.Context) (restrictions Restrictions, err error) {
|
|
|
|
|
ctx, span := tracing.NewSpan(ctx)
|
|
|
|
|
defer func() { span.EndWithError(err) }()
|
|
|
|
|
|
|
|
|
|
stmt, scan := prepareRestrictionsQuery(ctx, q.client)
|
|
|
|
|
instanceID := authz.GetInstance(ctx).InstanceID()
|
|
|
|
|
query, args, err := stmt.Where(sq.Eq{
|
|
|
|
|
RestrictionsColumnInstanceID.identifier(): instanceID,
|
|
|
|
|
RestrictionsColumnResourceOwner.identifier(): instanceID,
|
|
|
|
|
}).ToSql()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return restrictions, zitade_errors.ThrowInternal(err, "QUERY-XnLMQ", "Errors.Query.SQLStatment")
|
|
|
|
|
}
|
|
|
|
|
err = q.client.QueryRowContext(ctx, func(row *sql.Row) error {
|
|
|
|
|
restrictions, err = scan(row)
|
|
|
|
|
return err
|
|
|
|
|
}, query, args...)
|
|
|
|
|
if errors.Is(err, sql.ErrNoRows) {
|
|
|
|
|
// not found is not an error
|
|
|
|
|
err = nil
|
|
|
|
|
}
|
|
|
|
|
return restrictions, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func prepareRestrictionsQuery(ctx context.Context, db prepareDatabase) (sq.SelectBuilder, func(*sql.Row) (Restrictions, error)) {
|
|
|
|
|
return sq.Select(
|
|
|
|
|
RestrictionsColumnAggregateID.identifier(),
|
|
|
|
|
RestrictionsColumnCreationDate.identifier(),
|
|
|
|
|
RestrictionsColumnChangeDate.identifier(),
|
|
|
|
|
RestrictionsColumnResourceOwner.identifier(),
|
|
|
|
|
RestrictionsColumnSequence.identifier(),
|
2023-12-05 11:12:01 +00:00
|
|
|
RestrictionsColumnDisallowPublicOrgRegistration.identifier(),
|
|
|
|
|
RestrictionsColumnAllowedLanguages.identifier(),
|
2023-11-22 09:29:38 +00:00
|
|
|
).
|
|
|
|
|
From(restrictionsTable.identifier() + db.Timetravel(call.Took(ctx))).
|
|
|
|
|
PlaceholderFormat(sq.Dollar),
|
|
|
|
|
func(row *sql.Row) (restrictions Restrictions, err error) {
|
2023-12-05 11:12:01 +00:00
|
|
|
allowedLanguages := database.TextArray[string](make([]string, 0))
|
|
|
|
|
disallowPublicOrgRegistration := sql.NullBool{}
|
|
|
|
|
err = row.Scan(
|
2023-11-22 09:29:38 +00:00
|
|
|
&restrictions.AggregateID,
|
|
|
|
|
&restrictions.CreationDate,
|
|
|
|
|
&restrictions.ChangeDate,
|
|
|
|
|
&restrictions.ResourceOwner,
|
|
|
|
|
&restrictions.Sequence,
|
2023-12-05 11:12:01 +00:00
|
|
|
&disallowPublicOrgRegistration,
|
|
|
|
|
&allowedLanguages,
|
2023-11-22 09:29:38 +00:00
|
|
|
)
|
2023-12-05 11:12:01 +00:00
|
|
|
restrictions.DisallowPublicOrgRegistration = disallowPublicOrgRegistration.Bool
|
|
|
|
|
restrictions.AllowedLanguages = domain.StringsToLanguages(allowedLanguages)
|
|
|
|
|
return restrictions, err
|
2023-11-22 09:29:38 +00:00
|
|
|
}
|
|
|
|
|
}
|
