zitadel/internal/command/user_membership.go

package command

import (
	"context"

	"github.com/zitadel/zitadel/internal/eventstore"
	"github.com/zitadel/zitadel/internal/repository/instance"
	"github.com/zitadel/zitadel/internal/repository/org"
	"github.com/zitadel/zitadel/internal/repository/project"
)

type CascadingMembership struct {
	UserID        string
	ResourceOwner string

	IAM          *CascadingIAMMembership
	Org          *CascadingOrgMembership
	Project      *CascadingProjectMembership
	ProjectGrant *CascadingProjectGrantMembership
}

type CascadingIAMMembership struct {
	IAMID string
}

type CascadingOrgMembership struct {
	OrgID string
}

type CascadingProjectMembership struct {
	ProjectID string
}

type CascadingProjectGrantMembership struct {
	ProjectID string
	GrantID   string
}

func (c *Commands) removeUserMemberships(ctx context.Context, memberships []*CascadingMembership) (_ []eventstore.Command, err error) {
	events := make([]eventstore.Command, 0)
	for _, membership := range memberships {
		if membership.IAM != nil {
			iamAgg := instance.NewAggregate(membership.IAM.IAMID)
			removeEvent := c.removeInstanceMember(ctx, &iamAgg.Aggregate, membership.UserID, true)
			events = append(events, removeEvent)
		} else if membership.Org != nil {
			orgAgg := org.NewAggregate(membership.Org.OrgID)
			removeEvent := c.removeOrgMember(ctx, &orgAgg.Aggregate, membership.UserID, true)
			events = append(events, removeEvent)
		} else if membership.Project != nil {
			projectAgg := project.NewAggregate(membership.Project.ProjectID, membership.ResourceOwner)
			removeEvent := c.removeProjectMember(ctx, &projectAgg.Aggregate, membership.UserID, true)
			events = append(events, removeEvent)
		} else if membership.ProjectGrant != nil {
			projectAgg := project.NewAggregate(membership.ProjectGrant.ProjectID, membership.ResourceOwner)
			removeEvent := c.removeProjectGrantMember(ctx, &projectAgg.Aggregate, membership.UserID, membership.ProjectGrant.GrantID, true)
			events = append(events, removeEvent)
		}
	}
	return events, nil
}
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`package command`

			`import (`
			`"context"`

chore(v2): move to new org (#3499) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-04-26 23:01:45 +00:00			`"github.com/zitadel/zitadel/internal/eventstore"`
			`"github.com/zitadel/zitadel/internal/repository/instance"`
			`"github.com/zitadel/zitadel/internal/repository/org"`
			`"github.com/zitadel/zitadel/internal/repository/project"`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`)`

fix(notify): notify user in projection (#3889) * start implement notify user in projection * fix(stmt): add copy to multi stmt * use projections for notify users * feat: notifications from projections * feat: notifications from projections * cleanup * pre-release * fix tests * fix types * fix command * fix queryNotifyUser * fix: build version * fix: HumanPasswordlessInitCodeSent Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-07-06 12:09:49 +00:00			`type CascadingMembership struct {`
			`UserID string`
			`ResourceOwner string`

			`IAM *CascadingIAMMembership`
			`Org *CascadingOrgMembership`
			`Project *CascadingProjectMembership`
			`ProjectGrant *CascadingProjectGrantMembership`
			`}`

			`type CascadingIAMMembership struct {`
			`IAMID string`
			`}`

			`type CascadingOrgMembership struct {`
			`OrgID string`
			`}`

			`type CascadingProjectMembership struct {`
			`ProjectID string`
			`}`

			`type CascadingProjectGrantMembership struct {`
			`ProjectID string`
			`GrantID string`
			`}`

			`func (c Commands) removeUserMemberships(ctx context.Context, memberships []CascadingMembership) (_ []eventstore.Command, err error) {`
refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter (#2907) 2022-01-03 08:19:07 +00:00			`events := make([]eventstore.Command, 0)`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`for _, membership := range memberships {`
fix: use query side for requests (#2818) * refactor(domain): add user type * fix(projections): start with login names * fix(login_policy): correct handling of user domain claimed event * fix(projections): add members * refactor: simplify member projections * add migration for members * add metadata to member projections * refactor: login name projection * fix: set correct suffixes on login name projections * test(projections): login name reduces * fix: correct cols in reduce member * test(projections): org, iam, project members * member additional cols and conds as opt, add project grant members * fix(migration): members * fix(migration): correct database name * migration version * migs * better naming for member cond and col * split project and project grant members * prepare member columns * feat(queries): membership query * test(queries): membership prepare * fix(queries): multiple projections for latest sequence * fix(api): use query for membership queries in auth and management * feat: org member queries * fix(api): use query for iam member calls * fix(queries): org members * fix(queries): project members * fix(queries): project grant members * refactor: remove unsued methods in repo-interfaces * start * fix(query): membership * fix(auth): list my project orgs * fix(query): member queries and user avatar column * refactor(auth): MyProjectOrgs * fix(queries): member and membership stmts * fix user test * fix(management): use query for project (-grant) members * fix(admin): use query for member calls * fix(api): add domain to org mapping * remove old idp * membership * refactor: remove old files * idp * refactor: use query for idps and idp user links * refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter * gloabl org check for org roles Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-01-13 07:58:14 +00:00			`if membership.IAM != nil {`
feat: Instance commands (#3385) * fix: add events for domain * fix: add/remove domain command side * fix: add/remove domain command side * fix: add/remove domain query side * fix: create instance * fix: merge v2 * fix: instance domain * fix: instance domain * fix: instance domain * fix: instance domain * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from writemodels * fix: remove domain.IAMID from api * fix: remove domain.IAMID * fix: remove domain.IAMID * fix: add instance domain queries * fix: fix after merge * Update auth_request.go * fix keypair * remove unused code * feat: read instance id from context * feat: remove unused code * feat: use instance id from context * some fixes Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-04-05 05:58:09 +00:00			`iamAgg := instance.NewAggregate(membership.IAM.IAMID)`
fix: rename iam to instance (#3345) * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename orgiampolicy to domain policy * fix: merge conflicts * fix: protos * fix: md files * implement deprecated org iam policy again Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-03-24 16:21:34 +00:00			`removeEvent := c.removeInstanceMember(ctx, &iamAgg.Aggregate, membership.UserID, true)`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`events = append(events, removeEvent)`
fix: use query side for requests (#2818) * refactor(domain): add user type * fix(projections): start with login names * fix(login_policy): correct handling of user domain claimed event * fix(projections): add members * refactor: simplify member projections * add migration for members * add metadata to member projections * refactor: login name projection * fix: set correct suffixes on login name projections * test(projections): login name reduces * fix: correct cols in reduce member * test(projections): org, iam, project members * member additional cols and conds as opt, add project grant members * fix(migration): members * fix(migration): correct database name * migration version * migs * better naming for member cond and col * split project and project grant members * prepare member columns * feat(queries): membership query * test(queries): membership prepare * fix(queries): multiple projections for latest sequence * fix(api): use query for membership queries in auth and management * feat: org member queries * fix(api): use query for iam member calls * fix(queries): org members * fix(queries): project members * fix(queries): project grant members * refactor: remove unsued methods in repo-interfaces * start * fix(query): membership * fix(auth): list my project orgs * fix(query): member queries and user avatar column * refactor(auth): MyProjectOrgs * fix(queries): member and membership stmts * fix user test * fix(management): use query for project (-grant) members * fix(admin): use query for member calls * fix(api): add domain to org mapping * remove old idp * membership * refactor: remove old files * idp * refactor: use query for idps and idp user links * refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter * gloabl org check for org roles Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-01-13 07:58:14 +00:00			`} else if membership.Org != nil {`
refactor: remove commandNew struct (#3465) * refactor: remove commandNew struct * requested fixes 2022-04-20 14:59:37 +00:00			`orgAgg := org.NewAggregate(membership.Org.OrgID)`
			`removeEvent := c.removeOrgMember(ctx, &orgAgg.Aggregate, membership.UserID, true)`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`events = append(events, removeEvent)`
fix: use query side for requests (#2818) * refactor(domain): add user type * fix(projections): start with login names * fix(login_policy): correct handling of user domain claimed event * fix(projections): add members * refactor: simplify member projections * add migration for members * add metadata to member projections * refactor: login name projection * fix: set correct suffixes on login name projections * test(projections): login name reduces * fix: correct cols in reduce member * test(projections): org, iam, project members * member additional cols and conds as opt, add project grant members * fix(migration): members * fix(migration): correct database name * migration version * migs * better naming for member cond and col * split project and project grant members * prepare member columns * feat(queries): membership query * test(queries): membership prepare * fix(queries): multiple projections for latest sequence * fix(api): use query for membership queries in auth and management * feat: org member queries * fix(api): use query for iam member calls * fix(queries): org members * fix(queries): project members * fix(queries): project grant members * refactor: remove unsued methods in repo-interfaces * start * fix(query): membership * fix(auth): list my project orgs * fix(query): member queries and user avatar column * refactor(auth): MyProjectOrgs * fix(queries): member and membership stmts * fix user test * fix(management): use query for project (-grant) members * fix(admin): use query for member calls * fix(api): add domain to org mapping * remove old idp * membership * refactor: remove old files * idp * refactor: use query for idps and idp user links * refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter * gloabl org check for org roles Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-01-13 07:58:14 +00:00			`} else if membership.Project != nil {`
			`projectAgg := project.NewAggregate(membership.Project.ProjectID, membership.ResourceOwner)`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`removeEvent := c.removeProjectMember(ctx, &projectAgg.Aggregate, membership.UserID, true)`
			`events = append(events, removeEvent)`
fix: use query side for requests (#2818) * refactor(domain): add user type * fix(projections): start with login names * fix(login_policy): correct handling of user domain claimed event * fix(projections): add members * refactor: simplify member projections * add migration for members * add metadata to member projections * refactor: login name projection * fix: set correct suffixes on login name projections * test(projections): login name reduces * fix: correct cols in reduce member * test(projections): org, iam, project members * member additional cols and conds as opt, add project grant members * fix(migration): members * fix(migration): correct database name * migration version * migs * better naming for member cond and col * split project and project grant members * prepare member columns * feat(queries): membership query * test(queries): membership prepare * fix(queries): multiple projections for latest sequence * fix(api): use query for membership queries in auth and management * feat: org member queries * fix(api): use query for iam member calls * fix(queries): org members * fix(queries): project members * fix(queries): project grant members * refactor: remove unsued methods in repo-interfaces * start * fix(query): membership * fix(auth): list my project orgs * fix(query): member queries and user avatar column * refactor(auth): MyProjectOrgs * fix(queries): member and membership stmts * fix user test * fix(management): use query for project (-grant) members * fix(admin): use query for member calls * fix(api): add domain to org mapping * remove old idp * membership * refactor: remove old files * idp * refactor: use query for idps and idp user links * refactor(eventstore): rename EventPusher to Command, EventReader to Event, PushEvents to Push and FilterEvents to Filter * gloabl org check for org roles Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2022-01-13 07:58:14 +00:00			`} else if membership.ProjectGrant != nil {`
			`projectAgg := project.NewAggregate(membership.ProjectGrant.ProjectID, membership.ResourceOwner)`
			`removeEvent := c.removeProjectGrantMember(ctx, &projectAgg.Aggregate, membership.UserID, membership.ProjectGrant.GrantID, true)`
fix: Remove user with cascading memberships (#1811) * fix: remove usermemberships on user remove * fix: text user remove with memberships * fix: translations * Update internal/iam/repository/eventsourcing/model/types.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: uncomment tests * fix: remove memberships if user removed Co-authored-by: Livio Amstutz <livio.a@gmail.com> 2021-06-07 05:20:47 +00:00			`events = append(events, removeEvent)`
			`}`
			`}`
			`return events, nil`
			`}`