2024-09-20 09:14:51 +02:00
|
|
|
package command
|
|
|
|
|
|
|
|
|
|
import (
|
2024-09-25 19:58:26 +02:00
|
|
|
"context"
|
|
|
|
|
|
|
|
|
|
"github.com/zitadel/zitadel/internal/api/authz"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/domain"
|
2024-09-20 09:14:51 +02:00
|
|
|
"github.com/zitadel/zitadel/internal/eventstore"
|
|
|
|
|
"github.com/zitadel/zitadel/internal/repository/user/authenticator"
|
2024-09-25 19:58:26 +02:00
|
|
|
"github.com/zitadel/zitadel/internal/zerrors"
|
2024-09-20 09:14:51 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type UsernameV3WriteModel struct {
|
|
|
|
|
eventstore.WriteModel
|
2024-09-23 17:32:24 +02:00
|
|
|
UserID string
|
2024-09-20 09:14:51 +02:00
|
|
|
Username string
|
|
|
|
|
IsOrgSpecific bool
|
2024-09-25 19:58:26 +02:00
|
|
|
|
|
|
|
|
checkPermission domain.PermissionCheck
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) GetWriteModel() *eventstore.WriteModel {
|
|
|
|
|
return &wm.WriteModel
|
2024-09-20 09:14:51 +02:00
|
|
|
}
|
|
|
|
|
|
2024-09-25 19:58:26 +02:00
|
|
|
func NewUsernameV3WriteModel(resourceOwner, userID, id string, checkPermission domain.PermissionCheck) *UsernameV3WriteModel {
|
2024-09-20 09:14:51 +02:00
|
|
|
return &UsernameV3WriteModel{
|
|
|
|
|
WriteModel: eventstore.WriteModel{
|
2024-09-24 20:42:20 +02:00
|
|
|
AggregateID: id,
|
2024-09-20 09:14:51 +02:00
|
|
|
ResourceOwner: resourceOwner,
|
|
|
|
|
},
|
2024-09-25 19:58:26 +02:00
|
|
|
UserID: userID,
|
|
|
|
|
checkPermission: checkPermission,
|
2024-09-20 09:14:51 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) Reduce() error {
|
|
|
|
|
for _, event := range wm.Events {
|
|
|
|
|
switch e := event.(type) {
|
|
|
|
|
case *authenticator.UsernameCreatedEvent:
|
2024-09-24 20:42:20 +02:00
|
|
|
if e.UserID != wm.UserID {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2024-09-23 17:32:24 +02:00
|
|
|
wm.UserID = e.UserID
|
2024-09-20 09:14:51 +02:00
|
|
|
wm.Username = e.Username
|
|
|
|
|
wm.IsOrgSpecific = e.IsOrgSpecific
|
|
|
|
|
case *authenticator.UsernameDeletedEvent:
|
2024-09-23 17:32:24 +02:00
|
|
|
wm.UserID = ""
|
2024-09-20 09:14:51 +02:00
|
|
|
wm.Username = ""
|
|
|
|
|
wm.IsOrgSpecific = false
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return wm.WriteModel.Reduce()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) Query() *eventstore.SearchQueryBuilder {
|
|
|
|
|
return eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent).
|
|
|
|
|
ResourceOwner(wm.ResourceOwner).
|
|
|
|
|
AddQuery().
|
2024-09-24 20:42:20 +02:00
|
|
|
AggregateTypes(authenticator.AggregateType).
|
2024-09-20 09:14:51 +02:00
|
|
|
AggregateIDs(wm.AggregateID).
|
|
|
|
|
EventTypes(
|
|
|
|
|
authenticator.UsernameCreatedType,
|
|
|
|
|
authenticator.UsernameDeletedType,
|
|
|
|
|
).Builder()
|
|
|
|
|
}
|
2024-09-25 19:58:26 +02:00
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) checkPermissionWrite(ctx context.Context) error {
|
|
|
|
|
if wm.UserID == authz.GetCtxData(ctx).UserID {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
if err := wm.checkPermission(ctx, domain.PermissionUserWrite, wm.ResourceOwner, wm.UserID); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) NewCreate(
|
|
|
|
|
ctx context.Context,
|
|
|
|
|
isOrgSpecific bool,
|
|
|
|
|
username string,
|
|
|
|
|
) ([]eventstore.Command, error) {
|
|
|
|
|
if err := wm.NotExists(); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
if err := wm.checkPermissionWrite(ctx); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
return []eventstore.Command{
|
|
|
|
|
authenticator.NewUsernameCreatedEvent(ctx,
|
|
|
|
|
AuthenticatorAggregateFromWriteModel(wm.GetWriteModel()),
|
|
|
|
|
wm.UserID,
|
|
|
|
|
isOrgSpecific,
|
|
|
|
|
username,
|
|
|
|
|
),
|
|
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) NewDelete(ctx context.Context) ([]eventstore.Command, error) {
|
|
|
|
|
if err := wm.Exists(); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
if err := wm.checkPermissionWrite(ctx); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
return []eventstore.Command{
|
|
|
|
|
authenticator.NewUsernameDeletedEvent(ctx,
|
|
|
|
|
AuthenticatorAggregateFromWriteModel(wm.GetWriteModel()),
|
|
|
|
|
wm.IsOrgSpecific,
|
|
|
|
|
wm.Username,
|
|
|
|
|
),
|
|
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) Exists() error {
|
|
|
|
|
if wm.Username == "" {
|
2024-10-01 17:21:44 +02:00
|
|
|
return zerrors.ThrowNotFound(nil, "COMMAND-uEii8L6Awp", "Errors.User.NotFound")
|
2024-09-25 19:58:26 +02:00
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (wm *UsernameV3WriteModel) NotExists() error {
|
|
|
|
|
if err := wm.Exists(); err != nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
2024-10-01 17:21:44 +02:00
|
|
|
return zerrors.ThrowAlreadyExists(nil, "COMMAND-rK7ZTzEEGU", "Errors.User.AlreadyExists")
|
2024-09-25 19:58:26 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func AuthenticatorAggregateFromWriteModel(wm *eventstore.WriteModel) *eventstore.Aggregate {
|
|
|
|
|
return &eventstore.Aggregate{
|
|
|
|
|
ID: wm.AggregateID,
|
|
|
|
|
Type: authenticator.AggregateType,
|
|
|
|
|
ResourceOwner: wm.ResourceOwner,
|
|
|
|
|
InstanceID: wm.InstanceID,
|
|
|
|
|
Version: authenticator.AggregateVersion,
|
|
|
|
|
}
|
|
|
|
|
}
|
