fix: update external username on idp if auto update is enabled (#7048)

* fix: update external username on idp if auto update is enabled * update errors package
2025-08-11 21:17:32 +00:00 · 2023-12-08 19:22:07 +02:00
parent f680dd934d
commit aa3c352ae7
7 changed files with 296 additions and 4 deletions
--- a/internal/command/user_idp_link.go
+++ b/internal/command/user_idp_link.go
@@ -160,6 +160,27 @@ func (c *Commands) MigrateUserIDP(ctx context.Context, userID, orgID, idpConfigI
 	return err
 }

+func (c *Commands) UpdateUserIDPLinkUsername(ctx context.Context, userID, orgID, idpConfigID, externalID, newUsername string) (err error) {
+	if userID == "" {
+		return zerrors.ThrowInvalidArgument(nil, "COMMAND-SFegz", "Errors.IDMissing")
+	}
+
+	writeModel, err := c.userIDPLinkWriteModelByID(ctx, userID, idpConfigID, externalID, orgID)
+	if err != nil {
+		return err
+	}
+	if writeModel.State != domain.UserIDPLinkStateActive {
+		return zerrors.ThrowPreconditionFailed(nil, "COMMAND-DGhre", "Errors.User.ExternalIDP.NotFound")
+	}
+	if writeModel.DisplayName == newUsername {
+		return nil
+	}
+
+	userAgg := UserAggregateFromWriteModel(&writeModel.WriteModel) //nolint:contextcheck
+	_, err = c.eventstore.Push(ctx, user.NewUserIDPExternalUsernameEvent(ctx, userAgg, idpConfigID, externalID, newUsername))
+	return err
+}
+
 func (c *Commands) userIDPLinkWriteModelByID(ctx context.Context, userID, idpConfigID, externalUserID, resourceOwner string) (writeModel *UserIDPLinkWriteModel, err error) {
 	ctx, span := tracing.NewSpan(ctx)
 	defer func() { span.EndWithError(err) }()
--- a/internal/command/user_idp_link_test.go
+++ b/internal/command/user_idp_link_test.go
@@ -937,3 +937,141 @@ func TestCommandSide_MigrateUserIDP(t *testing.T) {
 		})
 	}
 }
+
+func TestCommandSide_UpdateUserIDPLinkUsername(t *testing.T) {
+	type fields struct {
+		eventstore func(t *testing.T) *eventstore.Eventstore
+	}
+	type args struct {
+		ctx            context.Context
+		userID         string
+		orgID          string
+		idpConfigID    string
+		externalUserID string
+		newUsername    string
+	}
+	type res struct {
+		err error
+	}
+	tests := []struct {
+		name   string
+		fields fields
+		args   args
+		res    res
+	}{
+		{
+			name: "userid missing, invalid argument error",
+			fields: fields{
+				eventstore: expectEventstore(),
+			},
+			args: args{
+				ctx:            context.Background(),
+				userID:         "",
+				orgID:          "org1",
+				idpConfigID:    "idpConfig1",
+				externalUserID: "externalUserID",
+				newUsername:    "newUsername",
+			},
+			res: res{
+				err: zerrors.ThrowInvalidArgument(nil, "COMMAND-SFegz", "Errors.IDMissing"),
+			},
+		},
+		{
+			name: "idp link not active, precondition failed error",
+			fields: fields{
+				eventstore: expectEventstore(
+					expectFilter(
+						eventFromEventPusher(
+							user.NewUserIDPLinkAddedEvent(context.Background(),
+								&user.NewAggregate("user1", "org1").Aggregate,
+								"idpConfig1",
+								"displayName",
+								"externalUserID",
+							),
+						),
+					),
+				),
+			},
+			args: args{
+				ctx:            context.Background(),
+				userID:         "user1",
+				orgID:          "org1",
+				idpConfigID:    "idpConfig1",
+				externalUserID: "otherID",
+				newUsername:    "newUsername",
+			},
+			res: res{
+				err: zerrors.ThrowPreconditionFailed(nil, "COMMAND-DGhre", "Errors.User.ExternalIDP.NotFound"),
+			},
+		},
+		{
+			name: "external username not changed, ok",
+			fields: fields{
+				eventstore: expectEventstore(
+					expectFilter(
+						eventFromEventPusher(
+							user.NewUserIDPLinkAddedEvent(context.Background(),
+								&user.NewAggregate("user1", "org1").Aggregate,
+								"idpConfig1",
+								"displayName",
+								"externalUserID",
+							),
+						),
+					),
+				),
+			},
+			args: args{
+				ctx:            context.Background(),
+				userID:         "user1",
+				orgID:          "org1",
+				idpConfigID:    "idpConfig1",
+				externalUserID: "externalUserID",
+				newUsername:    "displayName",
+			},
+			res: res{},
+		},
+		{
+			name: "external username update, ok",
+			fields: fields{
+				eventstore: expectEventstore(
+					expectFilter(
+						eventFromEventPusher(
+							user.NewUserIDPLinkAddedEvent(context.Background(),
+								&user.NewAggregate("user1", "org1").Aggregate,
+								"idpConfig1",
+								"displayName",
+								"externalUserID",
+							),
+						),
+					),
+					expectPush(
+						user.NewUserIDPExternalUsernameEvent(context.Background(),
+							&user.NewAggregate("user1", "org1").Aggregate,
+							"idpConfig1",
+							"externalUserID",
+							"newUsername",
+						),
+					),
+				),
+			},
+			args: args{
+				ctx:            context.Background(),
+				userID:         "user1",
+				orgID:          "org1",
+				idpConfigID:    "idpConfig1",
+				externalUserID: "externalUserID",
+				newUsername:    "newUsername",
+			},
+			res: res{},
+		},
+	}
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			r := &Commands{
+				eventstore: tt.fields.eventstore(t),
+			}
+			err := r.UpdateUserIDPLinkUsername(tt.args.ctx, tt.args.userID, tt.args.orgID, tt.args.idpConfigID, tt.args.externalUserID, tt.args.newUsername)
+			assert.ErrorIs(t, err, tt.res.err)
+		})
+	}
+}