zitadel/internal/query/changes.go

package query

import (
	"context"
	"time"

	"github.com/zitadel/logging"

	"github.com/zitadel/zitadel/internal/errors"
	"github.com/zitadel/zitadel/internal/eventstore"
	"github.com/zitadel/zitadel/internal/repository/org"
	"github.com/zitadel/zitadel/internal/repository/project"
	"github.com/zitadel/zitadel/internal/repository/user"
	"github.com/zitadel/zitadel/internal/telemetry/tracing"
)

type Changes struct {
	Changes []*Change
}

type Change struct {
	ChangeDate            time.Time
	EventType             string
	Sequence              uint64
	ResourceOwner         string
	ModifierId            string
	ModifierName          string
	ModifierLoginName     string
	ModifierResourceOwner string
	ModifierAvatarKey     string
}

func (q *Queries) OrgChanges(ctx context.Context, orgID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ *Changes, err error) {
	ctx, span := tracing.NewSpan(ctx)
	defer func() { span.EndWithError(err) }()

	query := func(query *eventstore.SearchQuery) {
		query.AggregateTypes(org.AggregateType).
			AggregateIDs(orgID)
	}
	return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)

}

func (q *Queries) ProjectChanges(ctx context.Context, projectID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ *Changes, err error) {
	ctx, span := tracing.NewSpan(ctx)
	defer func() { span.EndWithError(err) }()

	query := func(query *eventstore.SearchQuery) {
		query.AggregateTypes(project.AggregateType).
			AggregateIDs(projectID)
	}
	return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)
}

func (q *Queries) ProjectGrantChanges(ctx context.Context, projectID, grantID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ *Changes, err error) {
	ctx, span := tracing.NewSpan(ctx)
	defer func() { span.EndWithError(err) }()

	query := func(query *eventstore.SearchQuery) {
		query.AggregateTypes(project.AggregateType).
			AggregateIDs(projectID).
			EventData(map[string]interface{}{
				"grantId": grantID,
			})
	}
	return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)
}

func (q *Queries) ApplicationChanges(ctx context.Context, projectID, appID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ *Changes, err error) {
	ctx, span := tracing.NewSpan(ctx)
	defer func() { span.EndWithError(err) }()

	query := func(query *eventstore.SearchQuery) {
		query.AggregateTypes(project.AggregateType).
			AggregateIDs(projectID).
			EventData(map[string]interface{}{
				"appId": appID,
			})
	}
	return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)
}

func (q *Queries) UserChanges(ctx context.Context, userID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ *Changes, err error) {
	ctx, span := tracing.NewSpan(ctx)
	defer func() { span.EndWithError(err) }()

	query := func(query *eventstore.SearchQuery) {
		query.AggregateTypes(user.AggregateType).
			AggregateIDs(userID)
	}
	return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)
}

func (q *Queries) changes(ctx context.Context, query func(query *eventstore.SearchQuery), lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (*Changes, error) {
	builder := eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent).Limit(limit).AllowTimeTravel()
	if !sortAscending {
		builder.OrderDesc()
	}
	search := builder.AddQuery().SequenceGreater(lastSequence) //always use greater (less is done automatically by sorting desc)
	query(search)

	events, err := q.eventstore.Filter(ctx, builder)
	if err != nil {
		logging.Log("QUERY-ZRffs").WithError(err).Warn("eventstore unavailable")
		return nil, errors.ThrowInternal(err, "QUERY-328b1", "Errors.Internal")
	}
	if len(events) == 0 {
		return nil, errors.ThrowNotFound(nil, "QUERY-FpQqK", "Errors.Changes.NotFound")
	}
	changes := make([]*Change, 0, len(events))
	for _, event := range events {
		if auditLogRetention != 0 && event.CreationDate().Before(time.Now().Add(-auditLogRetention)) {
			continue
		}
		change := &Change{
			ChangeDate:        event.CreationDate(),
			EventType:         string(event.Type()),
			Sequence:          event.Sequence(),
			ResourceOwner:     event.Aggregate().ResourceOwner,
			ModifierId:        event.EditorUser(),
			ModifierName:      event.EditorUser(),
			ModifierLoginName: event.EditorUser(),
		}
		editor, _ := q.GetUserByID(ctx, false, change.ModifierId, false)
		if editor != nil {
			change.ModifierLoginName = editor.PreferredLoginName
			change.ModifierResourceOwner = editor.ResourceOwner
			if editor.Human != nil {
				change.ModifierName = editor.Human.DisplayName
				change.ModifierAvatarKey = editor.Human.AvatarKey
			}
			if editor.Machine != nil {
				change.ModifierName = editor.Machine.Name
			}
		}
		changes = append(changes, change)
	}
	if len(changes) == 0 {
		return nil, errors.ThrowPreconditionFailed(nil, "QUERY-DEGS2", "Errors.Changes.AuditRetention")
	}
	return &Changes{
		Changes: changes,
	}, nil
}
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`package query`

			`import (`
			`"context"`
			`"time"`

chore(v2): move to new org (#3499) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-04-26 23:01:45 +00:00			`"github.com/zitadel/logging"`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00
chore(v2): move to new org (#3499) * chore: move to new org * logging * fix: org rename caos -> zitadel Co-authored-by: adlerhurst <silvan.reusser@gmail.com> 2022-04-26 23:01:45 +00:00			`"github.com/zitadel/zitadel/internal/errors"`
fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`"github.com/zitadel/zitadel/internal/eventstore"`
			`"github.com/zitadel/zitadel/internal/repository/org"`
			`"github.com/zitadel/zitadel/internal/repository/project"`
			`"github.com/zitadel/zitadel/internal/repository/user"`
			`"github.com/zitadel/zitadel/internal/telemetry/tracing"`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`)`

			`type Changes struct {`
			`Changes []*Change`
			`}`

			`type Change struct {`
			`ChangeDate time.Time`
			`EventType string`
			`Sequence uint64`
			`ResourceOwner string`
			`ModifierId string`
			`ModifierName string`
			`ModifierLoginName string`
			`ModifierResourceOwner string`
			`ModifierAvatarKey string`
			`}`

fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`func (q Queries) OrgChanges(ctx context.Context, orgID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ Changes, err error) {`
			`ctx, span := tracing.NewSpan(ctx)`
			`defer func() { span.EndWithError(err) }()`

fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`query := func(query *eventstore.SearchQuery) {`
			`query.AggregateTypes(org.AggregateType).`
			`AggregateIDs(orgID)`
			`}`
			`return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)`

			`}`

fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`func (q Queries) ProjectChanges(ctx context.Context, projectID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ Changes, err error) {`
			`ctx, span := tracing.NewSpan(ctx)`
			`defer func() { span.EndWithError(err) }()`

fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`query := func(query *eventstore.SearchQuery) {`
			`query.AggregateTypes(project.AggregateType).`
			`AggregateIDs(projectID)`
			`}`
			`return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)`
			`}`

fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`func (q Queries) ProjectGrantChanges(ctx context.Context, projectID, grantID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ Changes, err error) {`
			`ctx, span := tracing.NewSpan(ctx)`
			`defer func() { span.EndWithError(err) }()`

fix: project grants (#4031) * fix: filter granted memberships correctly * fix: only show changes of granted project * Apply suggestions from code review Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com> * Update internal/query/user_membership.go Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com> Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com> 2022-07-27 07:55:44 +00:00			`query := func(query *eventstore.SearchQuery) {`
			`query.AggregateTypes(project.AggregateType).`
			`AggregateIDs(projectID).`
			`EventData(map[string]interface{}{`
			`"grantId": grantID,`
			`})`
			`}`
			`return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)`
			`}`

fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`func (q Queries) ApplicationChanges(ctx context.Context, projectID, appID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ Changes, err error) {`
			`ctx, span := tracing.NewSpan(ctx)`
			`defer func() { span.EndWithError(err) }()`

fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`query := func(query *eventstore.SearchQuery) {`
			`query.AggregateTypes(project.AggregateType).`
			`AggregateIDs(projectID).`
			`EventData(map[string]interface{}{`
			`"appId": appID,`
			`})`
			`}`
			`return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)`
			`}`

fix(query): add tracing for each method (#4777) * fix(query): add tracing for each method 2022-12-01 08:18:53 +00:00			`func (q Queries) UserChanges(ctx context.Context, userID string, lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (_ Changes, err error) {`
			`ctx, span := tracing.NewSpan(ctx)`
			`defer func() { span.EndWithError(err) }()`

fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`query := func(query *eventstore.SearchQuery) {`
			`query.AggregateTypes(user.AggregateType).`
			`AggregateIDs(userID)`
			`}`
			`return q.changes(ctx, query, lastSequence, limit, sortAscending, auditLogRetention)`
			`}`

			`func (q Queries) changes(ctx context.Context, query func(query eventstore.SearchQuery), lastSequence uint64, limit uint64, sortAscending bool, auditLogRetention time.Duration) (*Changes, error) {`
perf: query data `AS OF SYSTEM TIME` (#5231) Queries the data in the storage layser at the timestamp when the call hit the API layer 2023-02-27 21:36:43 +00:00			`builder := eventstore.NewSearchQueryBuilder(eventstore.ColumnsEvent).Limit(limit).AllowTimeTravel()`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`if !sortAscending {`
			`builder.OrderDesc()`
			`}`
			`search := builder.AddQuery().SequenceGreater(lastSequence) //always use greater (less is done automatically by sorting desc)`
			`query(search)`

			`events, err := q.eventstore.Filter(ctx, builder)`
			`if err != nil {`
			`logging.Log("QUERY-ZRffs").WithError(err).Warn("eventstore unavailable")`
			`return nil, errors.ThrowInternal(err, "QUERY-328b1", "Errors.Internal")`
			`}`
			`if len(events) == 0 {`
			`return nil, errors.ThrowNotFound(nil, "QUERY-FpQqK", "Errors.Changes.NotFound")`
			`}`
			`changes := make([]*Change, 0, len(events))`
			`for _, event := range events {`
feat: permit all features to every instance and organisation (#3566) 2022-05-02 09:18:17 +00:00			`if auditLogRetention != 0 && event.CreationDate().Before(time.Now().Add(-auditLogRetention)) {`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`continue`
			`}`
			`change := &Change{`
			`ChangeDate: event.CreationDate(),`
			`EventType: string(event.Type()),`
			`Sequence: event.Sequence(),`
			`ResourceOwner: event.Aggregate().ResourceOwner,`
			`ModifierId: event.EditorUser(),`
			`ModifierName: event.EditorUser(),`
			`ModifierLoginName: event.EditorUser(),`
			`}`
feat: remove org (#4148) * feat(command): remove org * refactor: imports, unused code, error handling * reduce org removed in action * add org deletion to projections * add org removal to projections * add org removal to projections * org removed projection * lint import * projections * fix: table names in tests * fix: table names in tests * logging * add org state * fix(domain): add Owner removed to object details * feat(ListQuery): add with owner removed * fix(org-delete): add bool to functions to select with owner removed * fix(org-delete): add bools to user grants with events to determine if dependencies lost owner * fix(org-delete): add unit tests for owner removed and org removed events * fix(org-delete): add handling of org remove for grants and members * fix(org-delete): correction of unit tests for owner removed * fix(org-delete): update projections, unit tests and get functions * fix(org-delete): add change date to authnkeys and owner removed to org metadata * fix(org-delete): include owner removed for login names * fix(org-delete): some column fixes in projections and build for queries with owner removed * indexes * fix(org-delete): include review changes * fix(org-delete): change user projection name after merge * fix(org-delete): include review changes for project grant where no project owner is necessary * fix(org-delete): include auth and adminapi tables with owner removed information * fix(org-delete): cleanup username and orgdomain uniqueconstraints when org is removed * fix(org-delete): add permissions for org.remove * remove unnecessary unique constraints * fix column order in primary keys * fix(org-delete): include review changes * fix(org-delete): add owner removed indexes and chang setup step to create tables * fix(org-delete): move PK order of instance_id and change added user_grant from review * fix(org-delete): no params for prepareUserQuery * change to step 6 * merge main * fix(org-delete): OldUserName rename to private * fix linting * cleanup * fix: remove org test * create prerelease * chore: delete org-delete as prerelease Co-authored-by: Stefan Benz <stefan@caos.ch> Co-authored-by: Livio Spring <livio.a@gmail.com> Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com> Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com> 2022-11-30 16:01:17 +00:00			`editor, _ := q.GetUserByID(ctx, false, change.ModifierId, false)`
fix: move activity log to queries and remove old code (#3096) * move changes to queries and remove old code * fix changes query * remove unused code * fix sorting * fix sorting * refactor and remove old code * remove accidental go.mod replace * add missing file * remove listDetail from ChangesResponse 2022-01-26 09:16:33 +00:00			`if editor != nil {`
			`change.ModifierLoginName = editor.PreferredLoginName`
			`change.ModifierResourceOwner = editor.ResourceOwner`
			`if editor.Human != nil {`
			`change.ModifierName = editor.Human.DisplayName`
			`change.ModifierAvatarKey = editor.Human.AvatarKey`
			`}`
			`if editor.Machine != nil {`
			`change.ModifierName = editor.Machine.Name`
			`}`
			`}`
			`changes = append(changes, change)`
			`}`
			`if len(changes) == 0 {`
			`return nil, errors.ThrowPreconditionFailed(nil, "QUERY-DEGS2", "Errors.Changes.AuditRetention")`
			`}`
			`return &Changes{`
			`Changes: changes,`
			`}, nil`
			`}`