feat: check has project (#2206)

* feat: define org grant check on project * feat: has project check * feat: has project check * feat: check has project * feat: check has project * feat: add has project check to console * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/auth/repository/eventsourcing/eventstore/auth_request_test.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: add has project tests Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-11 19:07:30 +00:00 · 2021-08-18 10:49:04 +02:00
parent 0b3155b8ab
commit 0ab973b967
45 changed files with 732 additions and 190 deletions
--- a/internal/project/repository/eventsourcing/model/project.go
+++ b/internal/project/repository/eventsourcing/model/project.go
@@ -18,6 +18,7 @@ type Project struct {
 	Name                 string           `json:"name,omitempty"`
 	ProjectRoleAssertion bool             `json:"projectRoleAssertion,omitempty"`
 	ProjectRoleCheck     bool             `json:"projectRoleCheck,omitempty"`
+	HasProjectCheck      bool             `json:"hasProjectCheck,omitempty"`
 	State                int32            `json:"-"`
 	Members              []*ProjectMember `json:"-"`
 	Roles                []*ProjectRole   `json:"-"`
@@ -25,47 +26,6 @@ type Project struct {
 	Grants               []*ProjectGrant  `json:"-"`
 }

-func GetProject(projects []*Project, id string) (int, *Project) {
-	for i, p := range projects {
-		if p.AggregateID == id {
-			return i, p
-		}
-	}
-	return -1, nil
-}
-
-func (p *Project) Changes(changed *Project) map[string]interface{} {
-	changes := make(map[string]interface{}, 1)
-	if changed.Name != "" && p.Name != changed.Name {
-		changes["name"] = changed.Name
-	}
-	if p.ProjectRoleAssertion != changed.ProjectRoleAssertion {
-		changes["projectRoleAssertion"] = changed.ProjectRoleAssertion
-	}
-	if p.ProjectRoleCheck != changed.ProjectRoleCheck {
-		changes["projectRoleCheck"] = changed.ProjectRoleCheck
-	}
-	return changes
-}
-
-func ProjectFromModel(project *model.Project) *Project {
-	members := ProjectMembersFromModel(project.Members)
-	roles := ProjectRolesFromModel(project.Roles)
-	apps := AppsFromModel(project.Applications)
-	grants := GrantsFromModel(project.Grants)
-	return &Project{
-		ObjectRoot:           project.ObjectRoot,
-		Name:                 project.Name,
-		ProjectRoleAssertion: project.ProjectRoleAssertion,
-		ProjectRoleCheck:     project.ProjectRoleCheck,
-		State:                int32(project.State),
-		Members:              members,
-		Roles:                roles,
-		Applications:         apps,
-		Grants:               grants,
-	}
-}
-
 func ProjectToModel(project *Project) *model.Project {
 	members := ProjectMembersToModel(project.Members)
 	roles := ProjectRolesToModel(project.Roles)
--- a/internal/project/repository/eventsourcing/model/project_test.go
+++ b/internal/project/repository/eventsourcing/model/project_test.go
@@ -8,50 +8,6 @@ import (
 	"github.com/caos/zitadel/internal/project/model"
 )

-func TestProjectChanges(t *testing.T) {
-	type args struct {
-		existingProject *Project
-		newProject      *Project
-	}
-	type res struct {
-		changesLen int
-	}
-	tests := []struct {
-		name string
-		args args
-		res  res
-	}{
-		{
-			name: "project name changes",
-			args: args{
-				existingProject: &Project{Name: "Name"},
-				newProject:      &Project{Name: "NameChanged"},
-			},
-			res: res{
-				changesLen: 1,
-			},
-		},
-		{
-			name: "no changes",
-			args: args{
-				existingProject: &Project{Name: "Name"},
-				newProject:      &Project{Name: "Name"},
-			},
-			res: res{
-				changesLen: 0,
-			},
-		},
-	}
-	for _, tt := range tests {
-		t.Run(tt.name, func(t *testing.T) {
-			changes := tt.args.existingProject.Changes(tt.args.newProject)
-			if len(changes) != tt.res.changesLen {
-				t.Errorf("got wrong changes len: expected: %v, actual: %v ", tt.res.changesLen, len(changes))
-			}
-		})
-	}
-}
-
 func TestProjectFromEvents(t *testing.T) {
 	type args struct {
 		event   []*es_models.Event
--- a/internal/project/repository/view/model/application.go
+++ b/internal/project/repository/view/model/application.go
@@ -31,6 +31,7 @@ type ApplicationView struct {
 	State                int32     `json:"-" gorm:"column:app_state"`
 	ProjectRoleAssertion bool      `json:"projectRoleAssertion" gorm:"column:project_role_assertion"`
 	ProjectRoleCheck     bool      `json:"projectRoleCheck" gorm:"column:project_role_check"`
+	HasProjectCheck      bool      `json:"hasProjectCheck" gorm:"column:has_project_check"`

 	IsOIDC                     bool           `json:"-" gorm:"column:is_oidc"`
 	OIDCVersion                int32          `json:"oidcVersion" gorm:"column:oidc_version"`
@@ -234,6 +235,7 @@ func (a *ApplicationView) setProjectChanges(event *models.Event) error {
 	changes := struct {
 		ProjectRoleAssertion *bool `json:"projectRoleAssertion,omitempty"`
 		ProjectRoleCheck     *bool `json:"projectRoleCheck,omitempty"`
+		HasProjectCheck      *bool `json:"hasProjectCheck,omitempty"`
 	}{}
 	if err := json.Unmarshal(event.Data, &changes); err != nil {
 		logging.Log("EVEN-DFbfg").WithError(err).Error("could not unmarshal event data")
@@ -245,5 +247,8 @@ func (a *ApplicationView) setProjectChanges(event *models.Event) error {
 	if changes.ProjectRoleCheck != nil {
 		a.ProjectRoleCheck = *changes.ProjectRoleCheck
 	}
+	if changes.HasProjectCheck != nil {
+		a.HasProjectCheck = *changes.HasProjectCheck
+	}
 	return nil
 }
--- a/internal/project/repository/view/model/org_project_mapping.go
+++ b/internal/project/repository/view/model/org_project_mapping.go
@@ -0,0 +1,13 @@
+package model
+
+const (
+	OrgProjectMappingKeyProjectID      = "project_id"
+	OrgProjectMappingKeyOrgID          = "org_id"
+	OrgProjectMappingKeyProjectGrantID = "project_grant_id"
+)
+
+type OrgProjectMapping struct {
+	ProjectID      string `json:"-" gorm:"column:project_id;primary_key"`
+	OrgID          string `json:"-" gorm:"column:org_id;primary_key"`
+	ProjectGrantID string `json:"-" gorm:"column:project_grant_id;"`
+}
--- a/internal/project/repository/view/model/org_project_mapping_query.go
+++ b/internal/project/repository/view/model/org_project_mapping_query.go
@@ -0,0 +1,63 @@
+package model
+
+import (
+	"github.com/caos/zitadel/internal/domain"
+	proj_model "github.com/caos/zitadel/internal/project/model"
+	"github.com/caos/zitadel/internal/view/repository"
+)
+
+type OrgProjectMappingSearchRequest proj_model.OrgProjectMappingViewSearchRequest
+type OrgProjectMappingSearchQuery proj_model.OrgProjectMappingViewSearchQuery
+type OrgProjectMappingSearchKey proj_model.OrgProjectMappingViewSearchKey
+
+func (req OrgProjectMappingSearchRequest) GetLimit() uint64 {
+	return req.Limit
+}
+
+func (req OrgProjectMappingSearchRequest) GetOffset() uint64 {
+	return req.Offset
+}
+
+func (req OrgProjectMappingSearchRequest) GetSortingColumn() repository.ColumnKey {
+	if req.SortingColumn == proj_model.OrgProjectMappingSearchKeyUnspecified {
+		return nil
+	}
+	return OrgProjectMappingSearchKey(req.SortingColumn)
+}
+
+func (req OrgProjectMappingSearchRequest) GetAsc() bool {
+	return req.Asc
+}
+
+func (req OrgProjectMappingSearchRequest) GetQueries() []repository.SearchQuery {
+	result := make([]repository.SearchQuery, len(req.Queries))
+	for i, q := range req.Queries {
+		result[i] = OrgProjectMappingSearchQuery{Key: q.Key, Value: q.Value, Method: q.Method}
+	}
+	return result
+}
+
+func (req OrgProjectMappingSearchQuery) GetKey() repository.ColumnKey {
+	return OrgProjectMappingSearchKey(req.Key)
+}
+
+func (req OrgProjectMappingSearchQuery) GetMethod() domain.SearchMethod {
+	return req.Method
+}
+
+func (req OrgProjectMappingSearchQuery) GetValue() interface{} {
+	return req.Value
+}
+
+func (key OrgProjectMappingSearchKey) ToColumnName() string {
+	switch proj_model.OrgProjectMappingViewSearchKey(key) {
+	case proj_model.OrgProjectMappingSearchKeyOrgID:
+		return OrgProjectMappingKeyOrgID
+	case proj_model.OrgProjectMappingSearchKeyProjectID:
+		return OrgProjectMappingKeyProjectID
+	case proj_model.OrgProjectMappingSearchKeyProjectGrantID:
+		return OrgProjectMappingKeyProjectGrantID
+	default:
+		return ""
+	}
+}
--- a/internal/project/repository/view/model/project.go
+++ b/internal/project/repository/view/model/project.go
@@ -27,23 +27,10 @@ type ProjectView struct {
 	ResourceOwner        string    `json:"-" gorm:"column:resource_owner"`
 	ProjectRoleAssertion bool      `json:"projectRoleAssertion" gorm:"column:project_role_assertion"`
 	ProjectRoleCheck     bool      `json:"projectRoleCheck" gorm:"column:project_role_check"`
+	HasProjectCheck      bool      `json:"hasProjectCheck" gorm:"column:has_project_check"`
 	Sequence             uint64    `json:"-" gorm:"column:sequence"`
 }

-func ProjectFromModel(project *model.ProjectView) *ProjectView {
-	return &ProjectView{
-		ProjectID:            project.ProjectID,
-		Name:                 project.Name,
-		ChangeDate:           project.ChangeDate,
-		CreationDate:         project.CreationDate,
-		State:                int32(project.State),
-		ResourceOwner:        project.ResourceOwner,
-		ProjectRoleAssertion: project.ProjectRoleAssertion,
-		ProjectRoleCheck:     project.ProjectRoleCheck,
-		Sequence:             project.Sequence,
-	}
-}
-
 func ProjectToModel(project *ProjectView) *model.ProjectView {
 	return &model.ProjectView{
 		ProjectID:            project.ProjectID,
@@ -54,6 +41,7 @@ func ProjectToModel(project *ProjectView) *model.ProjectView {
 		ResourceOwner:        project.ResourceOwner,
 		ProjectRoleAssertion: project.ProjectRoleAssertion,
 		ProjectRoleCheck:     project.ProjectRoleCheck,
+		HasProjectCheck:      project.HasProjectCheck,
 		Sequence:             project.Sequence,
 	}
 }
--- a/internal/project/repository/view/org_project_mapping_view.go
+++ b/internal/project/repository/view/org_project_mapping_view.go
@@ -0,0 +1,51 @@
+package view
+
+import (
+	"github.com/jinzhu/gorm"
+
+	"github.com/caos/zitadel/internal/domain"
+	caos_errs "github.com/caos/zitadel/internal/errors"
+	proj_model "github.com/caos/zitadel/internal/project/model"
+	"github.com/caos/zitadel/internal/project/repository/view/model"
+	"github.com/caos/zitadel/internal/view/repository"
+)
+
+func OrgProjectMappingByIDs(db *gorm.DB, table, orgID, projectID string) (*model.OrgProjectMapping, error) {
+	orgProjectMapping := new(model.OrgProjectMapping)
+
+	projectIDQuery := model.OrgProjectMappingSearchQuery{Key: proj_model.OrgProjectMappingSearchKeyProjectID, Value: projectID, Method: domain.SearchMethodEquals}
+	orgIDQuery := model.OrgProjectMappingSearchQuery{Key: proj_model.OrgProjectMappingSearchKeyOrgID, Value: orgID, Method: domain.SearchMethodEquals}
+	query := repository.PrepareGetByQuery(table, projectIDQuery, orgIDQuery)
+	err := query(db, orgProjectMapping)
+	if caos_errs.IsNotFound(err) {
+		return nil, caos_errs.ThrowNotFound(nil, "VIEW-fn9fs", "Errors.OrgProjectMapping.NotExisting")
+	}
+	return orgProjectMapping, err
+}
+
+func PutOrgProjectMapping(db *gorm.DB, table string, grant *model.OrgProjectMapping) error {
+	save := repository.PrepareSave(table)
+	return save(db, grant)
+}
+
+func DeleteOrgProjectMapping(db *gorm.DB, table, orgID, projectID string) error {
+	projectIDSearch := repository.Key{Key: model.OrgProjectMappingSearchKey(proj_model.OrgProjectMappingSearchKeyProjectID), Value: projectID}
+	orgIDSearch := repository.Key{Key: model.OrgProjectMappingSearchKey(proj_model.OrgProjectMappingSearchKeyOrgID), Value: orgID}
+	delete := repository.PrepareDeleteByKeys(table, projectIDSearch, orgIDSearch)
+	return delete(db)
+}
+
+func DeleteOrgProjectMappingsByProjectID(db *gorm.DB, table, projectID string) error {
+	delete := repository.PrepareDeleteByKey(table, model.OrgProjectMappingSearchKey(proj_model.OrgProjectMappingSearchKeyProjectID), projectID)
+	return delete(db)
+}
+
+func DeleteOrgProjectMappingsByProjectGrantID(db *gorm.DB, table, projectGrantID string) error {
+	delete := repository.PrepareDeleteByKey(table, model.OrgProjectMappingSearchKey(proj_model.OrgProjectMappingSearchKeyProjectGrantID), projectGrantID)
+	return delete(db)
+}
+
+func DeleteOrgProjectMappingsByOrgID(db *gorm.DB, table, orgID string) error {
+	delete := repository.PrepareDeleteByKey(table, model.OrgProjectMappingSearchKey(proj_model.OrgProjectMappingSearchKeyOrgID), orgID)
+	return delete(db)
+}