fix: rename iam to instance (#3345)

* fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename iam command side to instance * fix: rename orgiampolicy to domain policy * fix: merge conflicts * fix: protos * fix: md files * implement deprecated org iam policy again Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-11 21:27:42 +00:00 · 2022-03-24 17:21:34 +01:00
parent 504fe5b761
commit 9d4f296c62
274 changed files with 12073 additions and 11853 deletions
--- a/internal/repository/instance/secret_generator.go
+++ b/internal/repository/instance/secret_generator.go
@@ -0,0 +1,228 @@
+package instance
+
+import (
+	"context"
+	"encoding/json"
+	"time"
+
+	"github.com/caos/zitadel/internal/domain"
+	"github.com/caos/zitadel/internal/errors"
+	"github.com/caos/zitadel/internal/eventstore"
+	"github.com/caos/zitadel/internal/eventstore/repository"
+)
+
+const (
+	UniqueSecretGeneratorType       = "secret_generator"
+	secretGeneratorPrefix           = "secret.generator."
+	SecretGeneratorAddedEventType   = instanceEventTypePrefix + secretGeneratorPrefix + "added"
+	SecretGeneratorChangedEventType = instanceEventTypePrefix + secretGeneratorPrefix + "changed"
+	SecretGeneratorRemovedEventType = instanceEventTypePrefix + secretGeneratorPrefix + "removed"
+)
+
+func NewAddSecretGeneratorTypeUniqueConstraint(generatorType domain.SecretGeneratorType) *eventstore.EventUniqueConstraint {
+	return eventstore.NewAddEventUniqueConstraint(
+		UniqueSecretGeneratorType,
+		string(generatorType),
+		"Errors.SecretGenerator.AlreadyExists")
+}
+
+func NewRemoveSecretGeneratorTypeUniqueConstraint(generatorType domain.SecretGeneratorType) *eventstore.EventUniqueConstraint {
+	return eventstore.NewRemoveEventUniqueConstraint(
+		UniqueSecretGeneratorType,
+		string(generatorType))
+}
+
+type SecretGeneratorAddedEvent struct {
+	eventstore.BaseEvent `json:"-"`
+
+	GeneratorType       domain.SecretGeneratorType `json:"generatorType"`
+	Length              uint                       `json:"length,omitempty"`
+	Expiry              time.Duration              `json:"expiry,omitempty"`
+	IncludeLowerLetters bool                       `json:"includeLowerLetters,omitempty"`
+	IncludeUpperLetters bool                       `json:"includeUpperLetters,omitempty"`
+	IncludeDigits       bool                       `json:"includeDigits,omitempty"`
+	IncludeSymbols      bool                       `json:"includeSymbols,omitempty"`
+}
+
+func NewSecretGeneratorAddedEvent(
+	ctx context.Context,
+	aggregate *eventstore.Aggregate,
+	generatorType domain.SecretGeneratorType,
+	length uint,
+	expiry time.Duration,
+	includeLowerLetters,
+	includeUpperLetters,
+	includeDigits,
+	includeSymbols bool,
+) *SecretGeneratorAddedEvent {
+	return &SecretGeneratorAddedEvent{
+		BaseEvent: *eventstore.NewBaseEventForPush(
+			ctx,
+			aggregate,
+			SecretGeneratorAddedEventType,
+		),
+		GeneratorType:       generatorType,
+		Length:              length,
+		Expiry:              expiry,
+		IncludeLowerLetters: includeLowerLetters,
+		IncludeUpperLetters: includeUpperLetters,
+		IncludeDigits:       includeDigits,
+		IncludeSymbols:      includeSymbols,
+	}
+}
+
+func (e *SecretGeneratorAddedEvent) Data() interface{} {
+	return e
+}
+
+func (e *SecretGeneratorAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
+	return []*eventstore.EventUniqueConstraint{NewAddSecretGeneratorTypeUniqueConstraint(e.GeneratorType)}
+}
+
+func SecretGeneratorAddedEventMapper(event *repository.Event) (eventstore.Event, error) {
+	secretGeneratorAdded := &SecretGeneratorAddedEvent{
+		BaseEvent: *eventstore.BaseEventFromRepo(event),
+	}
+	err := json.Unmarshal(event.Data, secretGeneratorAdded)
+	if err != nil {
+		return nil, errors.ThrowInternal(err, "IAM-en9f4", "unable to unmarshal secret generator added")
+	}
+
+	return secretGeneratorAdded, nil
+}
+
+type SecretGeneratorChangedEvent struct {
+	eventstore.BaseEvent `json:"-"`
+
+	GeneratorType       domain.SecretGeneratorType `json:"generatorType"`
+	Length              *uint                      `json:"length,omitempty"`
+	Expiry              *time.Duration             `json:"expiry,omitempty"`
+	IncludeLowerLetters *bool                      `json:"includeLowerLetters,omitempty"`
+	IncludeUpperLetters *bool                      `json:"includeUpperLetters,omitempty"`
+	IncludeDigits       *bool                      `json:"includeDigits,omitempty"`
+	IncludeSymbols      *bool                      `json:"includeSymbols,omitempty"`
+}
+
+func (e *SecretGeneratorChangedEvent) Data() interface{} {
+	return e
+}
+
+func (e *SecretGeneratorChangedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
+	return nil
+}
+
+func NewSecretGeneratorChangeEvent(
+	ctx context.Context,
+	aggregate *eventstore.Aggregate,
+	generatorType domain.SecretGeneratorType,
+	changes []SecretGeneratorChanges,
+) (*SecretGeneratorChangedEvent, error) {
+	if len(changes) == 0 {
+		return nil, errors.ThrowPreconditionFailed(nil, "IAM-j2jfw", "Errors.NoChangesFound")
+	}
+	changeEvent := &SecretGeneratorChangedEvent{
+		BaseEvent: *eventstore.NewBaseEventForPush(
+			ctx,
+			aggregate,
+			SecretGeneratorChangedEventType,
+		),
+		GeneratorType: generatorType,
+	}
+	for _, change := range changes {
+		change(changeEvent)
+	}
+	return changeEvent, nil
+}
+
+type SecretGeneratorChanges func(event *SecretGeneratorChangedEvent)
+
+func ChangeSecretGeneratorLength(length uint) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.Length = &length
+	}
+}
+
+func ChangeSecretGeneratorExpiry(expiry time.Duration) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.Expiry = &expiry
+	}
+}
+
+func ChangeSecretGeneratorIncludeLowerLetters(includeLowerLetters bool) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.IncludeLowerLetters = &includeLowerLetters
+	}
+}
+
+func ChangeSecretGeneratorIncludeUpperLetters(includeUpperLetters bool) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.IncludeUpperLetters = &includeUpperLetters
+	}
+}
+
+func ChangeSecretGeneratorIncludeDigits(includeDigits bool) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.IncludeDigits = &includeDigits
+	}
+}
+
+func ChangeSecretGeneratorIncludeSymbols(includeSymbols bool) func(event *SecretGeneratorChangedEvent) {
+	return func(e *SecretGeneratorChangedEvent) {
+		e.IncludeDigits = &includeSymbols
+	}
+}
+
+func SecretGeneratorChangedEventMapper(event *repository.Event) (eventstore.Event, error) {
+	e := &SecretGeneratorChangedEvent{
+		BaseEvent: *eventstore.BaseEventFromRepo(event),
+	}
+
+	err := json.Unmarshal(event.Data, e)
+	if err != nil {
+		return nil, errors.ThrowInternal(err, "IAM-2m09e", "unable to unmarshal secret generator changed")
+	}
+
+	return e, nil
+}
+
+type SecretGeneratorRemovedEvent struct {
+	eventstore.BaseEvent `json:"-"`
+
+	GeneratorType domain.SecretGeneratorType `json:"generatorType"`
+}
+
+func (e *SecretGeneratorRemovedEvent) Data() interface{} {
+	return e
+}
+
+func (e *SecretGeneratorRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
+	return []*eventstore.EventUniqueConstraint{NewRemoveSecretGeneratorTypeUniqueConstraint(e.GeneratorType)}
+}
+
+func NewSecretGeneratorRemovedEvent(
+	ctx context.Context,
+	aggregate *eventstore.Aggregate,
+	generatorType domain.SecretGeneratorType,
+) *SecretGeneratorRemovedEvent {
+	return &SecretGeneratorRemovedEvent{
+		BaseEvent: *eventstore.NewBaseEventForPush(
+			ctx,
+			aggregate,
+			SecretGeneratorRemovedEventType,
+		),
+		GeneratorType: generatorType,
+	}
+}
+
+func SecretGeneratorRemovedEventMapper(event *repository.Event) (eventstore.Event, error) {
+	e := &SecretGeneratorRemovedEvent{
+		BaseEvent: *eventstore.BaseEventFromRepo(event),
+	}
+
+	err := json.Unmarshal(event.Data, e)
+	if err != nil {
+		return nil, errors.ThrowInternal(err, "IAM-m09ke", "unable to unmarshal secret generator removed")
+	}
+
+	return e, nil
+}