feat: new user auth api (#1168)

* fix: correct selectors for extended writemodel * fix: no previous checks in eventstore * start check previous * feat: auth user commands * feat: auth user commands * feat: auth user commands * feat: otp * feat: corrections from pr merge * feat: webauthn * feat: comment old webauthn * feat: refactor user, human, machine * feat: webauth command side * feat: command and query side in login * feat: fix user writemodel append events * fix: remove creation dates on command side * fix: remove previous sequence * previous sequence * fix: external idps * Update internal/api/grpc/management/user.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/v2/command/user_human_email.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: pr changes * fix: phone verification Co-authored-by: adlerhurst <silvan.reusser@gmail.com> Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-12 01:27:32 +00:00 · 2021-01-15 09:32:59 +01:00
parent e5731b0d3b
commit 959530ddad
74 changed files with 1554 additions and 1519 deletions
--- a/internal/api/grpc/management/user.go
+++ b/internal/api/grpc/management/user.go
@@ -52,43 +52,39 @@ func (s *Server) IsUserUnique(ctx context.Context, request *management.UniqueUse
 }

 func (s *Server) CreateUser(ctx context.Context, in *management.CreateUserRequest) (*management.UserResponse, error) {
-	user, err := s.command.AddUser(ctx, authz.GetCtxData(ctx).OrgID, userCreateToDomain(in))
+	human, machine := userCreateToDomain(in)
+	if human != nil {
+		h, err := s.command.AddHuman(ctx, authz.GetCtxData(ctx).OrgID, human)
+		if err != nil {
+			return nil, err
+		}
+		return userHumanFromDomain(h), nil
+	}
+	m, err := s.command.AddMachine(ctx, authz.GetCtxData(ctx).OrgID, machine)
 	if err != nil {
 		return nil, err
 	}
-	return userFromDomain(user), nil
+	return userMachineFromDomain(m), nil
 }

-func (s *Server) DeactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
-	user, err := s.command.DeactivateUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
-	if err != nil {
-		return nil, err
-	}
-	return userFromDomain(user), nil
+func (s *Server) DeactivateUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
+	err := s.command.DeactivateUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
+	return &empty.Empty{}, err
 }

-func (s *Server) ReactivateUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
-	user, err := s.command.ReactivateUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
-	if err != nil {
-		return nil, err
-	}
-	return userFromDomain(user), nil
+func (s *Server) ReactivateUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
+	err := s.command.ReactivateUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
+	return &empty.Empty{}, err
 }

-func (s *Server) LockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
-	user, err := s.command.LockUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
-	if err != nil {
-		return nil, err
-	}
-	return userFromDomain(user), nil
+func (s *Server) LockUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
+	err := s.command.LockUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
+	return &empty.Empty{}, err
 }

-func (s *Server) UnlockUser(ctx context.Context, in *management.UserID) (*management.UserResponse, error) {
-	user, err := s.command.UnlockUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
-	if err != nil {
-		return nil, err
-	}
-	return userFromDomain(user), nil
+func (s *Server) UnlockUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {
+	err := s.command.UnlockUser(ctx, in.Id, authz.GetCtxData(ctx).OrgID)
+	return &empty.Empty{}, err
 }

 func (s *Server) DeleteUser(ctx context.Context, in *management.UserID) (*empty.Empty, error) {