feat: user v2 service query (#7095)

* feat: add query endpoints for user v2 api

* fix: correct integration tests

* fix: correct linting

* fix: correct linting

* fix: comment out permission check on user get and list

* fix: permission check on user v2 query

* fix: merge back origin/main

* fix: add search query in user emails

* fix: reset count for SearchUser if users are removed due to permissions

* fix: reset count for SearchUser if users are removed due to permissions

---------

Co-authored-by: Elio Bischof <elio@zitadel.com>

internal/integration/assert.go

@@ -13,6 +13,10 @@ type DetailsMsg interface {
 	GetDetails() *object.Details
 }
 
+type ListDetailsMsg interface {
+	GetDetails() *object.ListDetails
+}
+
 // AssertDetails asserts values in a message's object Details,
 // if the object Details in expected is a non-nil value.
 // It targets API v2 messages that have the `GetDetails()` method.
@@ -39,3 +43,17 @@ func AssertDetails[D DetailsMsg](t testing.TB, expected, actual D) {
 
 	assert.Equal(t, wantDetails.GetResourceOwner(), gotDetails.GetResourceOwner())
 }
+
+func AssertListDetails[D ListDetailsMsg](t testing.TB, expected, actual D) {
+	wantDetails, gotDetails := expected.GetDetails(), actual.GetDetails()
+	if wantDetails == nil {
+		assert.Nil(t, gotDetails)
+		return
+	}
+
+	gotCD := gotDetails.GetTimestamp().AsTime()
+	now := time.Now()
+	assert.WithinRange(t, gotCD, now.Add(-time.Minute), now.Add(time.Minute))
+
+	assert.Equal(t, wantDetails.GetTotalResult(), gotDetails.GetTotalResult())
+}

internal/integration/client.go

@@ -29,6 +29,7 @@ import (
 	mgmt "github.com/zitadel/zitadel/pkg/grpc/management"
 	object "github.com/zitadel/zitadel/pkg/grpc/object/v2beta"
 	oidc_pb "github.com/zitadel/zitadel/pkg/grpc/oidc/v2beta"
+	org "github.com/zitadel/zitadel/pkg/grpc/org/v2beta"
 	organisation "github.com/zitadel/zitadel/pkg/grpc/org/v2beta"
 	session "github.com/zitadel/zitadel/pkg/grpc/session/v2beta"
 	"github.com/zitadel/zitadel/pkg/grpc/system"
@@ -136,6 +137,63 @@ func (s *Tester) CreateHumanUser(ctx context.Context) *user.AddHumanUserResponse
 	return resp
 }
 
+func (s *Tester) CreateOrganization(ctx context.Context, name, adminEmail string) *org.AddOrganizationResponse {
+	resp, err := s.Client.OrgV2.AddOrganization(ctx, &org.AddOrganizationRequest{
+		Name: name,
+		Admins: []*org.AddOrganizationRequest_Admin{
+			{
+				UserType: &org.AddOrganizationRequest_Admin_Human{
+					Human: &user.AddHumanUserRequest{
+						Profile: &user.SetHumanProfile{
+							GivenName:  "firstname",
+							FamilyName: "lastname",
+						},
+						Email: &user.SetHumanEmail{
+							Email: adminEmail,
+							Verification: &user.SetHumanEmail_ReturnCode{
+								ReturnCode: &user.ReturnEmailVerificationCode{},
+							},
+						},
+					},
+				},
+			},
+		},
+	})
+	logging.OnError(err).Fatal("create org")
+	return resp
+}
+
+func (s *Tester) CreateHumanUserVerified(ctx context.Context, org, email string) *user.AddHumanUserResponse {
+	resp, err := s.Client.UserV2.AddHumanUser(ctx, &user.AddHumanUserRequest{
+		Organization: &object.Organization{
+			Org: &object.Organization_OrgId{
+				OrgId: org,
+			},
+		},
+		Profile: &user.SetHumanProfile{
+			GivenName:         "Mickey",
+			FamilyName:        "Mouse",
+			NickName:          gu.Ptr("Mickey"),
+			PreferredLanguage: gu.Ptr("nl"),
+			Gender:            gu.Ptr(user.Gender_GENDER_MALE),
+		},
+		Email: &user.SetHumanEmail{
+			Email: email,
+			Verification: &user.SetHumanEmail_IsVerified{
+				IsVerified: true,
+			},
+		},
+		Phone: &user.SetHumanPhone{
+			Phone: "+41791234567",
+			Verification: &user.SetHumanPhone_IsVerified{
+				IsVerified: true,
+			},
+		},
+	})
+	logging.OnError(err).Fatal("create human user")
+	return resp
+}
+
 func (s *Tester) CreateMachineUser(ctx context.Context) *mgmt.AddMachineUserResponse {
 	resp, err := s.Client.Mgmt.AddMachineUser(ctx, &mgmt.AddMachineUserRequest{
 		UserName:        fmt.Sprintf("%d@mouse.com", time.Now().UnixNano()),