zitadel/internal/authz/repository/eventsourcing/eventstore/user_membership.go

package eventstore

import (
	"context"

	"github.com/caos/zitadel/internal/api/authz"
	"github.com/caos/zitadel/internal/authz/repository/eventsourcing/view"
	"github.com/caos/zitadel/internal/domain"
	user_model "github.com/caos/zitadel/internal/user/model"
	user_view_model "github.com/caos/zitadel/internal/user/repository/view/model"
)

type UserMembershipRepo struct {
	View *view.View
}

func (repo *UserMembershipRepo) Health() error {
	return repo.View.Health()
}

func (repo *UserMembershipRepo) SearchMyMemberships(ctx context.Context) ([]*authz.Membership, error) {
	memberships, err := repo.searchUserMemberships(ctx)
	if err != nil {
		return nil, err
	}
	return userMembershipsToMemberships(memberships), nil
}

func (repo *UserMembershipRepo) searchUserMemberships(ctx context.Context) ([]*user_view_model.UserMembershipView, error) {
	ctxData := authz.GetCtxData(ctx)
	instance := authz.GetInstance(ctx)
	orgMemberships, orgCount, err := repo.View.SearchUserMemberships(&user_model.UserMembershipSearchRequest{
		Queries: []*user_model.UserMembershipSearchQuery{
			{
				Key:    user_model.UserMembershipSearchKeyUserID,
				Method: domain.SearchMethodEquals,
				Value:  ctxData.UserID,
			},
			{
				Key:    user_model.UserMembershipSearchKeyResourceOwner,
				Method: domain.SearchMethodEquals,
				Value:  ctxData.OrgID,
			},
			{
				Key:    user_model.UserMembershipSearchKeyInstanceID,
				Method: domain.SearchMethodEquals,
				Value:  instance.InstanceID(),
			},
		},
	})
	if err != nil {
		return nil, err
	}
	iamMemberships, iamCount, err := repo.View.SearchUserMemberships(&user_model.UserMembershipSearchRequest{
		Queries: []*user_model.UserMembershipSearchQuery{
			{
				Key:    user_model.UserMembershipSearchKeyUserID,
				Method: domain.SearchMethodEquals,
				Value:  ctxData.UserID,
			},
			{
				Key:    user_model.UserMembershipSearchKeyAggregateID,
				Method: domain.SearchMethodEquals,
				Value:  instance.InstanceID(),
			},
			{
				Key:    user_model.UserMembershipSearchKeyInstanceID,
				Method: domain.SearchMethodEquals,
				Value:  instance.InstanceID(),
			},
		},
	})
	if err != nil {
		return nil, err
	}
	if orgCount == 0 && iamCount == 0 {
		return []*user_view_model.UserMembershipView{}, nil
	}
	return append(orgMemberships, iamMemberships...), nil
}

func userMembershipToMembership(membership *user_view_model.UserMembershipView) *authz.Membership {
	return &authz.Membership{
		MemberType:  authz.MemberType(membership.MemberType),
		AggregateID: membership.AggregateID,
		ObjectID:    membership.ObjectID,
		Roles:       membership.Roles,
	}
}

func userMembershipsToMemberships(memberships []*user_view_model.UserMembershipView) []*authz.Membership {
	result := make([]*authz.Membership, len(memberships))
	for i, m := range memberships {
		result[i] = userMembershipToMembership(m)
	}
	return result
}
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`package eventstore`

			`import (`
			`"context"`

			`"github.com/caos/zitadel/internal/api/authz"`
			`"github.com/caos/zitadel/internal/authz/repository/eventsourcing/view"`
			`"github.com/caos/zitadel/internal/domain"`
			`user_model "github.com/caos/zitadel/internal/user/model"`
			`user_view_model "github.com/caos/zitadel/internal/user/repository/view/model"`
			`)`

			`type UserMembershipRepo struct {`
			`View *view.View`
			`}`

			`func (repo *UserMembershipRepo) Health() error {`
			`return repo.View.Health()`
			`}`

			`func (repo UserMembershipRepo) SearchMyMemberships(ctx context.Context) ([]authz.Membership, error) {`
			`memberships, err := repo.searchUserMemberships(ctx)`
			`if err != nil {`
			`return nil, err`
			`}`
			`return userMembershipsToMemberships(memberships), nil`
			`}`

			`func (repo UserMembershipRepo) searchUserMemberships(ctx context.Context) ([]user_view_model.UserMembershipView, error) {`
			`ctxData := authz.GetCtxData(ctx)`
feat: projections auto create their tables (#3324) * begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test 2022-03-23 08:02:39 +00:00			`instance := authz.GetInstance(ctx)`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`orgMemberships, orgCount, err := repo.View.SearchUserMemberships(&user_model.UserMembershipSearchRequest{`
			`Queries: []*user_model.UserMembershipSearchQuery{`
			`{`
			`Key: user_model.UserMembershipSearchKeyUserID,`
			`Method: domain.SearchMethodEquals,`
			`Value: ctxData.UserID,`
			`},`
			`{`
			`Key: user_model.UserMembershipSearchKeyResourceOwner,`
			`Method: domain.SearchMethodEquals,`
			`Value: ctxData.OrgID,`
			`},`
feat: projections auto create their tables (#3324) * begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test 2022-03-23 08:02:39 +00:00			`{`
			`Key: user_model.UserMembershipSearchKeyInstanceID,`
			`Method: domain.SearchMethodEquals,`
feat: handle instance from context (#3382) * commander * commander * selber! * move to packages * fix(errors): implement Is interface * test: command * test: commands * add init steps * setup tenant * add default step yaml * possibility to set password * merge v2 into v2-commander * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: search query builder can filter events in memory * fix: filters for add member * fix(setup): add `ExternalSecure` to config * chore: name iam to instance * fix: matching * remove unsued func * base url * base url * test(command): filter funcs * test: commands * fix: rename orgiampolicy to domain policy * start from init * commands * config * fix indexes and add constraints * fixes * fix: merge conflicts * fix: protos * fix: md files * setup * add deprecated org iam policy again * typo * fix search query * fix filter * Apply suggestions from code review * remove custom org from org setup * add todos for verification * change apps creation * simplify package structure * fix error * move preparation helper for tests * fix unique constraints * fix config mapping in setup * fix error handling in encryption_keys.go * fix projection config * fix query from old views to projection * fix setup of mgmt api * set iam project and fix instance projection * fix tokens view * fix steps.yaml and defaults.yaml * fix projections * change instance context to interface * instance interceptors and additional events in setup * cleanup * tests for interceptors * fix label policy * add todo * single api endpoint in environment.json Co-authored-by: adlerhurst <silvan.reusser@gmail.com> Co-authored-by: fabi <fabienne.gerschwiler@gmail.com> 2022-03-29 09:53:19 +00:00			`Value: instance.InstanceID(),`
feat: projections auto create their tables (#3324) * begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test 2022-03-23 08:02:39 +00:00			`},`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`},`
			`})`
			`if err != nil {`
			`return nil, err`
			`}`
			`iamMemberships, iamCount, err := repo.View.SearchUserMemberships(&user_model.UserMembershipSearchRequest{`
			`Queries: []*user_model.UserMembershipSearchQuery{`
			`{`
			`Key: user_model.UserMembershipSearchKeyUserID,`
			`Method: domain.SearchMethodEquals,`
			`Value: ctxData.UserID,`
			`},`
			`{`
			`Key: user_model.UserMembershipSearchKeyAggregateID,`
			`Method: domain.SearchMethodEquals,`
feat: Instance commands (#3385) * fix: add events for domain * fix: add/remove domain command side * fix: add/remove domain command side * fix: add/remove domain query side * fix: create instance * fix: merge v2 * fix: instance domain * fix: instance domain * fix: instance domain * fix: instance domain * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from api * fix: remove domain.IAMID * fix: remove domain.IAMID * fix: add instance domain queries * fix: fix after merge * Update auth_request.go * fix keypair * remove unused code * feat: read instance id from context * feat: remove unused code * feat: use instance id from context * some fixes Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-04-05 05:58:09 +00:00			`Value: instance.InstanceID(),`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`},`
feat: projections auto create their tables (#3324) * begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test 2022-03-23 08:02:39 +00:00			`{`
			`Key: user_model.UserMembershipSearchKeyInstanceID,`
			`Method: domain.SearchMethodEquals,`
feat: handle instance from context (#3382) * commander * commander * selber! * move to packages * fix(errors): implement Is interface * test: command * test: commands * add init steps * setup tenant * add default step yaml * possibility to set password * merge v2 into v2-commander * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: search query builder can filter events in memory * fix: filters for add member * fix(setup): add `ExternalSecure` to config * chore: name iam to instance * fix: matching * remove unsued func * base url * base url * test(command): filter funcs * test: commands * fix: rename orgiampolicy to domain policy * start from init * commands * config * fix indexes and add constraints * fixes * fix: merge conflicts * fix: protos * fix: md files * setup * add deprecated org iam policy again * typo * fix search query * fix filter * Apply suggestions from code review * remove custom org from org setup * add todos for verification * change apps creation * simplify package structure * fix error * move preparation helper for tests * fix unique constraints * fix config mapping in setup * fix error handling in encryption_keys.go * fix projection config * fix query from old views to projection * fix setup of mgmt api * set iam project and fix instance projection * fix tokens view * fix steps.yaml and defaults.yaml * fix projections * change instance context to interface * instance interceptors and additional events in setup * cleanup * tests for interceptors * fix label policy * add todo * single api endpoint in environment.json Co-authored-by: adlerhurst <silvan.reusser@gmail.com> Co-authored-by: fabi <fabienne.gerschwiler@gmail.com> 2022-03-29 09:53:19 +00:00			`Value: instance.InstanceID(),`
feat: projections auto create their tables (#3324) * begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test 2022-03-23 08:02:39 +00:00			`},`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`},`
			`})`
			`if err != nil {`
			`return nil, err`
			`}`
			`if orgCount == 0 && iamCount == 0 {`
			`return []*user_view_model.UserMembershipView{}, nil`
			`}`
			`return append(orgMemberships, iamMemberships...), nil`
			`}`

			`func userMembershipToMembership(membership user_view_model.UserMembershipView) authz.Membership {`
			`return &authz.Membership{`
			`MemberType: authz.MemberType(membership.MemberType),`
			`AggregateID: membership.AggregateID,`
			`ObjectID: membership.ObjectID,`
			`Roles: membership.Roles,`
			`}`
			`}`

			`func userMembershipsToMemberships(memberships []user_view_model.UserMembershipView) []authz.Membership {`
			`result := make([]*authz.Membership, len(memberships))`
			`for i, m := range memberships {`
			`result[i] = userMembershipToMembership(m)`
			`}`
			`return result`
			`}`