2021-11-23 10:31:23 +01:00
|
|
|
package projection
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
2022-11-30 17:01:17 +01:00
|
|
|
"strings"
|
|
|
|
|
|
|
|
|
|
sq "github.com/Masterminds/squirrel"
|
2021-11-23 10:31:23 +01:00
|
|
|
|
2022-04-27 01:01:45 +02:00
|
|
|
"github.com/zitadel/zitadel/internal/errors"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/eventstore"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/eventstore/handler"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/eventstore/handler/crdb"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/repository/instance"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/repository/org"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/repository/policy"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/repository/user"
|
2021-11-23 10:31:23 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
const (
|
2022-11-30 17:01:17 +01:00
|
|
|
LoginNameTableAlias = "login_names2"
|
|
|
|
|
LoginNameProjectionTable = "projections." + LoginNameTableAlias
|
2021-11-23 10:31:23 +01:00
|
|
|
LoginNameUserProjectionTable = LoginNameProjectionTable + "_" + loginNameUserSuffix
|
|
|
|
|
LoginNamePolicyProjectionTable = LoginNameProjectionTable + "_" + loginNamePolicySuffix
|
|
|
|
|
LoginNameDomainProjectionTable = LoginNameProjectionTable + "_" + loginNameDomainSuffix
|
2022-03-23 09:02:39 +01:00
|
|
|
|
2022-11-30 17:01:17 +01:00
|
|
|
LoginNameCol = "login_name"
|
|
|
|
|
LoginNameUserCol = "user_id"
|
|
|
|
|
LoginNameIsPrimaryCol = "is_primary"
|
|
|
|
|
LoginNameInstanceIDCol = "instance_id"
|
|
|
|
|
LoginNameOwnerRemovedUserCol = "user_owner_removed"
|
|
|
|
|
LoginNameOwnerRemovedPolicyCol = "policy_owner_removed"
|
|
|
|
|
LoginNameOwnerRemovedDomainCol = "domain_owner_removed"
|
|
|
|
|
|
|
|
|
|
usersAlias = "users"
|
|
|
|
|
policyCustomAlias = "policy_custom"
|
|
|
|
|
policyDefaultAlias = "policy_default"
|
|
|
|
|
policyUsersAlias = "policy_users"
|
|
|
|
|
domainsAlias = "domains"
|
|
|
|
|
domainAlias = "domain"
|
2022-03-23 09:02:39 +01:00
|
|
|
|
|
|
|
|
loginNameUserSuffix = "users"
|
|
|
|
|
LoginNameUserIDCol = "id"
|
|
|
|
|
LoginNameUserUserNameCol = "user_name"
|
|
|
|
|
LoginNameUserResourceOwnerCol = "resource_owner"
|
|
|
|
|
LoginNameUserInstanceIDCol = "instance_id"
|
2022-11-30 17:01:17 +01:00
|
|
|
LoginNameUserOwnerRemovedCol = "owner_removed"
|
2022-03-23 09:02:39 +01:00
|
|
|
|
|
|
|
|
loginNameDomainSuffix = "domains"
|
|
|
|
|
LoginNameDomainNameCol = "name"
|
|
|
|
|
LoginNameDomainIsPrimaryCol = "is_primary"
|
|
|
|
|
LoginNameDomainResourceOwnerCol = "resource_owner"
|
|
|
|
|
LoginNameDomainInstanceIDCol = "instance_id"
|
2022-11-30 17:01:17 +01:00
|
|
|
LoginNameDomainOwnerRemovedCol = "owner_removed"
|
2022-03-23 09:02:39 +01:00
|
|
|
|
|
|
|
|
loginNamePolicySuffix = "policies"
|
|
|
|
|
LoginNamePoliciesMustBeDomainCol = "must_be_domain"
|
|
|
|
|
LoginNamePoliciesIsDefaultCol = "is_default"
|
|
|
|
|
LoginNamePoliciesResourceOwnerCol = "resource_owner"
|
|
|
|
|
LoginNamePoliciesInstanceIDCol = "instance_id"
|
2022-11-30 17:01:17 +01:00
|
|
|
LoginNamePoliciesOwnerRemovedCol = "owner_removed"
|
2021-11-23 10:31:23 +01:00
|
|
|
)
|
|
|
|
|
|
2022-03-23 09:02:39 +01:00
|
|
|
var (
|
2022-11-30 17:01:17 +01:00
|
|
|
policyUsers = sq.Select(
|
|
|
|
|
alias(
|
|
|
|
|
col(usersAlias, LoginNameUserIDCol),
|
|
|
|
|
LoginNameUserCol,
|
|
|
|
|
),
|
|
|
|
|
col(usersAlias, LoginNameUserUserNameCol),
|
|
|
|
|
col(usersAlias, LoginNameUserInstanceIDCol),
|
|
|
|
|
col(usersAlias, LoginNameUserResourceOwnerCol),
|
|
|
|
|
alias(
|
|
|
|
|
coalesce(col(policyCustomAlias, LoginNamePoliciesMustBeDomainCol), col(policyDefaultAlias, LoginNamePoliciesMustBeDomainCol)),
|
|
|
|
|
LoginNamePoliciesMustBeDomainCol,
|
|
|
|
|
),
|
|
|
|
|
alias(col(usersAlias, LoginNameUserOwnerRemovedCol),
|
|
|
|
|
LoginNameOwnerRemovedUserCol),
|
|
|
|
|
alias(coalesce(col(policyCustomAlias, LoginNamePoliciesOwnerRemovedCol), "false"),
|
|
|
|
|
LoginNameOwnerRemovedPolicyCol),
|
|
|
|
|
).From(alias(LoginNameUserProjectionTable, usersAlias)).
|
|
|
|
|
LeftJoin(
|
|
|
|
|
leftJoin(LoginNamePolicyProjectionTable, policyCustomAlias,
|
|
|
|
|
eq(col(policyCustomAlias, LoginNamePoliciesResourceOwnerCol), col(usersAlias, LoginNameUserResourceOwnerCol)),
|
|
|
|
|
eq(col(policyCustomAlias, LoginNamePoliciesInstanceIDCol), col(usersAlias, LoginNameUserInstanceIDCol)),
|
|
|
|
|
),
|
|
|
|
|
).
|
|
|
|
|
LeftJoin(
|
|
|
|
|
leftJoin(LoginNamePolicyProjectionTable, policyDefaultAlias,
|
|
|
|
|
eq(col(policyDefaultAlias, LoginNamePoliciesIsDefaultCol), "true"),
|
|
|
|
|
eq(col(policyDefaultAlias, LoginNamePoliciesInstanceIDCol), col(usersAlias, LoginNameUserInstanceIDCol)),
|
|
|
|
|
),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
loginNamesTable = sq.Select(
|
|
|
|
|
col(policyUsersAlias, LoginNameUserCol),
|
|
|
|
|
col(policyUsersAlias, LoginNameUserUserNameCol),
|
|
|
|
|
col(policyUsersAlias, LoginNameUserResourceOwnerCol),
|
|
|
|
|
alias(col(policyUsersAlias, LoginNameUserInstanceIDCol),
|
|
|
|
|
LoginNameInstanceIDCol),
|
|
|
|
|
col(policyUsersAlias, LoginNamePoliciesMustBeDomainCol),
|
|
|
|
|
alias(col(domainsAlias, LoginNameDomainNameCol),
|
|
|
|
|
domainAlias),
|
|
|
|
|
col(domainsAlias, LoginNameDomainIsPrimaryCol),
|
|
|
|
|
col(policyUsersAlias, LoginNameOwnerRemovedUserCol),
|
|
|
|
|
col(policyUsersAlias, LoginNameOwnerRemovedPolicyCol),
|
|
|
|
|
alias(coalesce(col(domainsAlias, LoginNameDomainOwnerRemovedCol), "false"),
|
|
|
|
|
LoginNameOwnerRemovedDomainCol),
|
|
|
|
|
).FromSelect(policyUsers, policyUsersAlias).
|
|
|
|
|
LeftJoin(
|
|
|
|
|
leftJoin(LoginNameDomainProjectionTable, domainsAlias,
|
|
|
|
|
col(policyUsersAlias, LoginNamePoliciesMustBeDomainCol),
|
|
|
|
|
eq(col(policyUsersAlias, LoginNameUserResourceOwnerCol), col(domainsAlias, LoginNameDomainResourceOwnerCol)),
|
|
|
|
|
eq(col(policyUsersAlias, LoginNamePoliciesInstanceIDCol), col(domainsAlias, LoginNameDomainInstanceIDCol)),
|
|
|
|
|
),
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
viewStmt, _ = sq.Select(
|
|
|
|
|
LoginNameUserCol,
|
|
|
|
|
alias(
|
|
|
|
|
whenThenElse(
|
|
|
|
|
LoginNamePoliciesMustBeDomainCol,
|
|
|
|
|
concat(LoginNameUserUserNameCol, "'@'", domainAlias),
|
|
|
|
|
LoginNameUserUserNameCol),
|
|
|
|
|
LoginNameCol),
|
|
|
|
|
alias(coalesce(LoginNameDomainIsPrimaryCol, "true"),
|
|
|
|
|
LoginNameIsPrimaryCol),
|
|
|
|
|
LoginNameInstanceIDCol,
|
|
|
|
|
LoginNameOwnerRemovedUserCol,
|
|
|
|
|
LoginNameOwnerRemovedPolicyCol,
|
|
|
|
|
LoginNameOwnerRemovedDomainCol,
|
|
|
|
|
).FromSelect(loginNamesTable, LoginNameTableAlias).MustSql()
|
2022-03-23 09:02:39 +01:00
|
|
|
)
|
|
|
|
|
|
2022-11-30 17:01:17 +01:00
|
|
|
func col(table, name string) string {
|
|
|
|
|
return table + "." + name
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func alias(col, alias string) string {
|
|
|
|
|
return col + " AS " + alias
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func coalesce(values ...string) string {
|
|
|
|
|
str := "COALESCE("
|
|
|
|
|
for i, value := range values {
|
|
|
|
|
if i > 0 {
|
|
|
|
|
str += ", "
|
|
|
|
|
}
|
|
|
|
|
str += value
|
|
|
|
|
}
|
|
|
|
|
str += ")"
|
|
|
|
|
return str
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func eq(first, second string) string {
|
|
|
|
|
return first + " = " + second
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func leftJoin(table, alias, on string, and ...string) string {
|
|
|
|
|
st := table + " " + alias + " ON " + on
|
|
|
|
|
for _, a := range and {
|
|
|
|
|
st += " AND " + a
|
|
|
|
|
}
|
|
|
|
|
return st
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func concat(strs ...string) string {
|
|
|
|
|
return "CONCAT(" + strings.Join(strs, ", ") + ")"
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func whenThenElse(when, then, el string) string {
|
|
|
|
|
return "(CASE WHEN " + when + " THEN " + then + " ELSE " + el + " END)"
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
type loginNameProjection struct {
|
2022-03-23 09:02:39 +01:00
|
|
|
crdb.StatementHandler
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func newLoginNameProjection(ctx context.Context, config crdb.StatementHandlerConfig) *loginNameProjection {
|
|
|
|
|
p := new(loginNameProjection)
|
2021-11-23 10:31:23 +01:00
|
|
|
config.ProjectionName = LoginNameProjectionTable
|
|
|
|
|
config.Reducers = p.reducers()
|
2022-03-23 09:02:39 +01:00
|
|
|
config.InitCheck = crdb.NewViewCheck(
|
|
|
|
|
viewStmt,
|
|
|
|
|
crdb.NewSuffixedTable([]*crdb.Column{
|
|
|
|
|
crdb.NewColumn(LoginNameUserIDCol, crdb.ColumnTypeText),
|
|
|
|
|
crdb.NewColumn(LoginNameUserUserNameCol, crdb.ColumnTypeText),
|
|
|
|
|
crdb.NewColumn(LoginNameUserResourceOwnerCol, crdb.ColumnTypeText),
|
|
|
|
|
crdb.NewColumn(LoginNameUserInstanceIDCol, crdb.ColumnTypeText),
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.NewColumn(LoginNameUserOwnerRemovedCol, crdb.ColumnTypeBool, crdb.Default(false)),
|
2022-03-23 09:02:39 +01:00
|
|
|
},
|
|
|
|
|
crdb.NewPrimaryKey(LoginNameUserInstanceIDCol, LoginNameUserIDCol),
|
|
|
|
|
loginNameUserSuffix,
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.WithIndex(crdb.NewIndex("resource_owner", []string{LoginNameUserResourceOwnerCol})),
|
|
|
|
|
crdb.WithIndex(crdb.NewIndex("owner_removed", []string{LoginNameUserOwnerRemovedCol})),
|
2022-03-23 09:02:39 +01:00
|
|
|
),
|
|
|
|
|
crdb.NewSuffixedTable([]*crdb.Column{
|
|
|
|
|
crdb.NewColumn(LoginNameDomainNameCol, crdb.ColumnTypeText),
|
2022-03-29 11:53:19 +02:00
|
|
|
crdb.NewColumn(LoginNameDomainIsPrimaryCol, crdb.ColumnTypeBool, crdb.Default(false)),
|
2022-03-23 09:02:39 +01:00
|
|
|
crdb.NewColumn(LoginNameDomainResourceOwnerCol, crdb.ColumnTypeText),
|
|
|
|
|
crdb.NewColumn(LoginNameDomainInstanceIDCol, crdb.ColumnTypeText),
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.NewColumn(LoginNameDomainOwnerRemovedCol, crdb.ColumnTypeBool, crdb.Default(false)),
|
2022-03-23 09:02:39 +01:00
|
|
|
},
|
|
|
|
|
crdb.NewPrimaryKey(LoginNameDomainInstanceIDCol, LoginNameDomainResourceOwnerCol, LoginNameDomainNameCol),
|
|
|
|
|
loginNameDomainSuffix,
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.WithIndex(crdb.NewIndex("owner_removed", []string{LoginNameDomainOwnerRemovedCol})),
|
2022-03-23 09:02:39 +01:00
|
|
|
),
|
|
|
|
|
crdb.NewSuffixedTable([]*crdb.Column{
|
|
|
|
|
crdb.NewColumn(LoginNamePoliciesMustBeDomainCol, crdb.ColumnTypeBool),
|
|
|
|
|
crdb.NewColumn(LoginNamePoliciesIsDefaultCol, crdb.ColumnTypeBool),
|
|
|
|
|
crdb.NewColumn(LoginNamePoliciesResourceOwnerCol, crdb.ColumnTypeText),
|
|
|
|
|
crdb.NewColumn(LoginNamePoliciesInstanceIDCol, crdb.ColumnTypeText),
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.NewColumn(LoginNamePoliciesOwnerRemovedCol, crdb.ColumnTypeBool, crdb.Default(false)),
|
2022-03-23 09:02:39 +01:00
|
|
|
},
|
|
|
|
|
crdb.NewPrimaryKey(LoginNamePoliciesInstanceIDCol, LoginNamePoliciesResourceOwnerCol),
|
|
|
|
|
loginNamePolicySuffix,
|
2022-11-30 17:01:17 +01:00
|
|
|
crdb.WithIndex(crdb.NewIndex("is_default", []string{LoginNamePoliciesResourceOwnerCol, LoginNamePoliciesIsDefaultCol})),
|
|
|
|
|
crdb.WithIndex(crdb.NewIndex("owner_removed", []string{LoginNamePoliciesOwnerRemovedCol})),
|
2022-03-23 09:02:39 +01:00
|
|
|
),
|
|
|
|
|
)
|
2021-11-23 10:31:23 +01:00
|
|
|
p.StatementHandler = crdb.NewStatementHandler(ctx, config)
|
|
|
|
|
return p
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reducers() []handler.AggregateReducer {
|
2021-11-23 10:31:23 +01:00
|
|
|
return []handler.AggregateReducer{
|
|
|
|
|
{
|
|
|
|
|
Aggregate: user.AggregateType,
|
|
|
|
|
EventRedusers: []handler.EventReducer{
|
2021-12-16 14:25:38 +01:00
|
|
|
{
|
|
|
|
|
Event: user.UserV1AddedType,
|
|
|
|
|
Reduce: p.reduceUserCreated,
|
|
|
|
|
},
|
2021-11-23 10:31:23 +01:00
|
|
|
{
|
|
|
|
|
Event: user.HumanAddedType,
|
|
|
|
|
Reduce: p.reduceUserCreated,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: user.HumanRegisteredType,
|
|
|
|
|
Reduce: p.reduceUserCreated,
|
|
|
|
|
},
|
2021-12-16 14:25:38 +01:00
|
|
|
{
|
|
|
|
|
Event: user.UserV1RegisteredType,
|
|
|
|
|
Reduce: p.reduceUserCreated,
|
|
|
|
|
},
|
2021-11-23 10:31:23 +01:00
|
|
|
{
|
|
|
|
|
Event: user.MachineAddedEventType,
|
|
|
|
|
Reduce: p.reduceUserCreated,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: user.UserRemovedType,
|
|
|
|
|
Reduce: p.reduceUserRemoved,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: user.UserUserNameChangedType,
|
|
|
|
|
Reduce: p.reduceUserNameChanged,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
// changes the username of the user
|
|
|
|
|
// this event occures in orgs
|
|
|
|
|
// where policy.must_be_domain=false
|
|
|
|
|
Event: user.UserDomainClaimedType,
|
|
|
|
|
Reduce: p.reduceUserDomainClaimed,
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Aggregate: org.AggregateType,
|
|
|
|
|
EventRedusers: []handler.EventReducer{
|
|
|
|
|
{
|
2022-03-28 10:05:09 +02:00
|
|
|
Event: org.DomainPolicyAddedEventType,
|
2021-11-23 10:31:23 +01:00
|
|
|
Reduce: p.reduceOrgIAMPolicyAdded,
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-03-28 10:05:09 +02:00
|
|
|
Event: org.DomainPolicyChangedEventType,
|
2022-03-24 17:21:34 +01:00
|
|
|
Reduce: p.reduceDomainPolicyChanged,
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
{
|
2022-03-28 10:05:09 +02:00
|
|
|
Event: org.DomainPolicyRemovedEventType,
|
2022-03-24 17:21:34 +01:00
|
|
|
Reduce: p.reduceDomainPolicyRemoved,
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: org.OrgDomainPrimarySetEventType,
|
|
|
|
|
Reduce: p.reducePrimaryDomainSet,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: org.OrgDomainRemovedEventType,
|
|
|
|
|
Reduce: p.reduceDomainRemoved,
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
Event: org.OrgDomainVerifiedEventType,
|
|
|
|
|
Reduce: p.reduceDomainVerified,
|
|
|
|
|
},
|
2022-11-30 17:01:17 +01:00
|
|
|
{
|
|
|
|
|
Event: org.OrgRemovedEventType,
|
|
|
|
|
Reduce: p.reduceOwnerRemoved,
|
|
|
|
|
},
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-03-24 17:21:34 +01:00
|
|
|
Aggregate: instance.AggregateType,
|
2021-11-23 10:31:23 +01:00
|
|
|
EventRedusers: []handler.EventReducer{
|
|
|
|
|
{
|
2022-03-28 10:05:09 +02:00
|
|
|
Event: instance.DomainPolicyAddedEventType,
|
2021-11-23 10:31:23 +01:00
|
|
|
Reduce: p.reduceOrgIAMPolicyAdded,
|
|
|
|
|
},
|
|
|
|
|
{
|
2022-03-28 10:05:09 +02:00
|
|
|
Event: instance.DomainPolicyChangedEventType,
|
2022-03-24 17:21:34 +01:00
|
|
|
Reduce: p.reduceDomainPolicyChanged,
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
2022-10-20 13:36:52 +01:00
|
|
|
{
|
|
|
|
|
Event: instance.InstanceRemovedEventType,
|
2022-10-26 15:06:48 +02:00
|
|
|
Reduce: p.reduceInstanceRemoved,
|
2022-10-20 13:36:52 +01:00
|
|
|
},
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
},
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceUserCreated(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
var userName string
|
|
|
|
|
|
|
|
|
|
switch e := event.(type) {
|
|
|
|
|
case *user.HumanAddedEvent:
|
|
|
|
|
userName = e.UserName
|
|
|
|
|
case *user.HumanRegisteredEvent:
|
|
|
|
|
userName = e.UserName
|
|
|
|
|
case *user.MachineAddedEvent:
|
|
|
|
|
userName = e.UserName
|
|
|
|
|
default:
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-ayo69", "reduce.wrong.event.type %v", []eventstore.EventType{user.UserV1AddedType, user.HumanAddedType, user.UserV1RegisteredType, user.HumanRegisteredType, user.MachineAddedEventType})
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewCreateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameUserIDCol, event.Aggregate().ID),
|
|
|
|
|
handler.NewCol(LoginNameUserUserNameCol, userName),
|
|
|
|
|
handler.NewCol(LoginNameUserResourceOwnerCol, event.Aggregate().ResourceOwner),
|
2022-03-23 09:02:39 +01:00
|
|
|
handler.NewCol(LoginNameUserInstanceIDCol, event.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceUserRemoved(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*user.UserRemovedEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-QIe3C", "reduce.wrong.event.type %s", user.UserRemovedType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewDeleteStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameUserIDCol, e.Aggregate().ID),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameUserInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceUserNameChanged(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*user.UsernameChangedEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-QlwjC", "reduce.wrong.event.type %s", user.UserUserNameChangedType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewUpdateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameUserUserNameCol, e.UserName),
|
|
|
|
|
},
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameUserIDCol, e.Aggregate().ID),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameUserInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceUserDomainClaimed(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*user.DomainClaimedEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-AQMBY", "reduce.wrong.event.type %s", user.UserDomainClaimedType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewUpdateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameUserUserNameCol, e.UserName),
|
|
|
|
|
},
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameUserIDCol, e.Aggregate().ID),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameUserInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceOrgIAMPolicyAdded(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
var (
|
2022-03-24 17:21:34 +01:00
|
|
|
policyEvent *policy.DomainPolicyAddedEvent
|
2021-11-23 10:31:23 +01:00
|
|
|
isDefault bool
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
switch e := event.(type) {
|
2022-03-28 10:05:09 +02:00
|
|
|
case *org.DomainPolicyAddedEvent:
|
2022-03-24 17:21:34 +01:00
|
|
|
policyEvent = &e.DomainPolicyAddedEvent
|
2021-11-23 10:31:23 +01:00
|
|
|
isDefault = false
|
2022-03-28 10:05:09 +02:00
|
|
|
case *instance.DomainPolicyAddedEvent:
|
2022-03-24 17:21:34 +01:00
|
|
|
policyEvent = &e.DomainPolicyAddedEvent
|
2021-11-23 10:31:23 +01:00
|
|
|
isDefault = true
|
|
|
|
|
default:
|
2022-03-28 10:05:09 +02:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-yCV6S", "reduce.wrong.event.type %v", []eventstore.EventType{org.DomainPolicyAddedEventType, instance.DomainPolicyAddedEventType})
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewCreateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNamePoliciesMustBeDomainCol, policyEvent.UserLoginMustBeDomain),
|
|
|
|
|
handler.NewCol(LoginNamePoliciesIsDefaultCol, isDefault),
|
|
|
|
|
handler.NewCol(LoginNamePoliciesResourceOwnerCol, policyEvent.Aggregate().ResourceOwner),
|
2022-03-23 09:02:39 +01:00
|
|
|
handler.NewCol(LoginNamePoliciesInstanceIDCol, policyEvent.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNamePolicySuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceDomainPolicyChanged(event eventstore.Event) (*handler.Statement, error) {
|
2022-03-24 17:21:34 +01:00
|
|
|
var policyEvent *policy.DomainPolicyChangedEvent
|
2021-11-23 10:31:23 +01:00
|
|
|
|
|
|
|
|
switch e := event.(type) {
|
2022-03-28 10:05:09 +02:00
|
|
|
case *org.DomainPolicyChangedEvent:
|
2022-03-24 17:21:34 +01:00
|
|
|
policyEvent = &e.DomainPolicyChangedEvent
|
2022-03-28 10:05:09 +02:00
|
|
|
case *instance.DomainPolicyChangedEvent:
|
2022-03-24 17:21:34 +01:00
|
|
|
policyEvent = &e.DomainPolicyChangedEvent
|
2021-11-23 10:31:23 +01:00
|
|
|
default:
|
2022-03-28 10:05:09 +02:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-ArFDd", "reduce.wrong.event.type %v", []eventstore.EventType{org.DomainPolicyChangedEventType, instance.DomainPolicyChangedEventType})
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if policyEvent.UserLoginMustBeDomain == nil {
|
|
|
|
|
return crdb.NewNoOpStatement(event), nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewUpdateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNamePoliciesMustBeDomainCol, *policyEvent.UserLoginMustBeDomain),
|
|
|
|
|
},
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNamePoliciesResourceOwnerCol, policyEvent.Aggregate().ResourceOwner),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNamePoliciesInstanceIDCol, policyEvent.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNamePolicySuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceDomainPolicyRemoved(event eventstore.Event) (*handler.Statement, error) {
|
2022-03-28 10:05:09 +02:00
|
|
|
e, ok := event.(*org.DomainPolicyRemovedEvent)
|
2021-11-23 10:31:23 +01:00
|
|
|
if !ok {
|
2022-03-28 10:05:09 +02:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-ysEeB", "reduce.wrong.event.type %s", org.DomainPolicyRemovedEventType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewDeleteStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNamePoliciesResourceOwnerCol, e.Aggregate().ResourceOwner),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNamePoliciesInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNamePolicySuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceDomainVerified(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*org.DomainVerifiedEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-weGAh", "reduce.wrong.event.type %s", org.OrgDomainVerifiedEventType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewCreateStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameDomainNameCol, e.Domain),
|
|
|
|
|
handler.NewCol(LoginNameDomainResourceOwnerCol, e.Aggregate().ResourceOwner),
|
2022-03-23 09:02:39 +01:00
|
|
|
handler.NewCol(LoginNameDomainInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reducePrimaryDomainSet(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*org.DomainPrimarySetEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-eOXPN", "reduce.wrong.event.type %s", org.OrgDomainPrimarySetEventType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewMultiStatement(
|
|
|
|
|
e,
|
|
|
|
|
crdb.AddUpdateStatement(
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameDomainIsPrimaryCol, false),
|
|
|
|
|
},
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameDomainResourceOwnerCol, e.Aggregate().ResourceOwner),
|
|
|
|
|
handler.NewCond(LoginNameDomainIsPrimaryCol, true),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameDomainInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
),
|
|
|
|
|
crdb.AddUpdateStatement(
|
|
|
|
|
[]handler.Column{
|
|
|
|
|
handler.NewCol(LoginNameDomainIsPrimaryCol, true),
|
|
|
|
|
},
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameDomainNameCol, e.Domain),
|
|
|
|
|
handler.NewCond(LoginNameDomainResourceOwnerCol, e.Aggregate().ResourceOwner),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameDomainInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
|
|
|
|
|
2022-06-14 07:51:00 +02:00
|
|
|
func (p *loginNameProjection) reduceDomainRemoved(event eventstore.Event) (*handler.Statement, error) {
|
2021-11-23 10:31:23 +01:00
|
|
|
e, ok := event.(*org.DomainRemovedEvent)
|
|
|
|
|
if !ok {
|
2022-03-23 09:02:39 +01:00
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-4RHYq", "reduce.wrong.event.type %s", org.OrgDomainRemovedEventType)
|
2021-11-23 10:31:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewDeleteStatement(
|
|
|
|
|
event,
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameDomainNameCol, e.Domain),
|
|
|
|
|
handler.NewCond(LoginNameDomainResourceOwnerCol, e.Aggregate().ResourceOwner),
|
2022-11-10 11:59:33 +01:00
|
|
|
handler.NewCond(LoginNameDomainInstanceIDCol, e.Aggregate().InstanceID),
|
2021-11-23 10:31:23 +01:00
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
2022-10-26 15:06:48 +02:00
|
|
|
|
|
|
|
|
func (p *loginNameProjection) reduceInstanceRemoved(event eventstore.Event) (*handler.Statement, error) {
|
|
|
|
|
e, ok := event.(*instance.InstanceRemovedEvent)
|
|
|
|
|
if !ok {
|
|
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-ASeg3", "reduce.wrong.event.type %s", instance.InstanceRemovedEventType)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewMultiStatement(
|
|
|
|
|
event,
|
|
|
|
|
crdb.AddDeleteStatement(
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameDomainInstanceIDCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
),
|
|
|
|
|
crdb.AddDeleteStatement(
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNamePoliciesInstanceIDCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNamePolicySuffix),
|
|
|
|
|
),
|
|
|
|
|
crdb.AddDeleteStatement(
|
|
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameUserInstanceIDCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
2022-11-30 17:01:17 +01:00
|
|
|
|
|
|
|
|
func (p *loginNameProjection) reduceOwnerRemoved(event eventstore.Event) (*handler.Statement, error) {
|
|
|
|
|
e, ok := event.(*org.OrgRemovedEvent)
|
|
|
|
|
if !ok {
|
|
|
|
|
return nil, errors.ThrowInvalidArgumentf(nil, "HANDL-px02mo", "reduce.wrong.event.type %s", org.OrgRemovedEventType)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return crdb.NewMultiStatement(
|
|
|
|
|
event,
|
2023-09-07 06:54:51 +02:00
|
|
|
crdb.AddDeleteStatement(
|
2022-11-30 17:01:17 +01:00
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameDomainInstanceIDCol, e.Aggregate().InstanceID),
|
|
|
|
|
handler.NewCond(LoginNameDomainResourceOwnerCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameDomainSuffix),
|
|
|
|
|
),
|
2023-09-07 06:54:51 +02:00
|
|
|
crdb.AddDeleteStatement(
|
2022-11-30 17:01:17 +01:00
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNamePoliciesInstanceIDCol, e.Aggregate().InstanceID),
|
|
|
|
|
handler.NewCond(LoginNamePoliciesResourceOwnerCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNamePolicySuffix),
|
|
|
|
|
),
|
2023-09-07 06:54:51 +02:00
|
|
|
crdb.AddDeleteStatement(
|
2022-11-30 17:01:17 +01:00
|
|
|
[]handler.Condition{
|
|
|
|
|
handler.NewCond(LoginNameUserInstanceIDCol, e.Aggregate().InstanceID),
|
|
|
|
|
handler.NewCond(LoginNameUserResourceOwnerCol, e.Aggregate().ID),
|
|
|
|
|
},
|
|
|
|
|
crdb.WithTableSuffix(loginNameUserSuffix),
|
|
|
|
|
),
|
|
|
|
|
), nil
|
|
|
|
|
}
|
