zitadel/internal/repository/user/personal_access_token.go

package user

import (
	"context"
	"time"

	"github.com/zitadel/zitadel/internal/eventstore"
	"github.com/zitadel/zitadel/internal/zerrors"
)

const (
	personalAccessTokenEventPrefix = userEventTypePrefix + "pat."
	PersonalAccessTokenAddedType   = personalAccessTokenEventPrefix + "added"
	PersonalAccessTokenRemovedType = personalAccessTokenEventPrefix + "removed"
)

type PersonalAccessTokenAddedEvent struct {
	eventstore.BaseEvent `json:"-"`

	TokenID    string    `json:"tokenId"`
	Expiration time.Time `json:"expiration"`
	Scopes     []string  `json:"scopes"`
}

func (e *PersonalAccessTokenAddedEvent) Payload() interface{} {
	return e
}

func (e *PersonalAccessTokenAddedEvent) UniqueConstraints() []*eventstore.UniqueConstraint {
	return nil
}

func NewPersonalAccessTokenAddedEvent(
	ctx context.Context,
	aggregate *eventstore.Aggregate,
	tokenID string,
	expiration time.Time,
	scopes []string,
) *PersonalAccessTokenAddedEvent {
	return &PersonalAccessTokenAddedEvent{
		BaseEvent: *eventstore.NewBaseEventForPush(
			ctx,
			aggregate,
			PersonalAccessTokenAddedType,
		),
		TokenID:    tokenID,
		Expiration: expiration,
		Scopes:     scopes,
	}
}

func PersonalAccessTokenAddedEventMapper(event eventstore.Event) (eventstore.Event, error) {
	tokenAdded := &PersonalAccessTokenAddedEvent{
		BaseEvent: *eventstore.BaseEventFromRepo(event),
	}
	err := event.Unmarshal(tokenAdded)
	if err != nil {
		return nil, zerrors.ThrowInternal(err, "USER-Dbges", "unable to unmarshal token added")
	}

	return tokenAdded, nil
}

type PersonalAccessTokenRemovedEvent struct {
	eventstore.BaseEvent `json:"-"`

	TokenID string `json:"tokenId"`
}

func (e *PersonalAccessTokenRemovedEvent) Payload() interface{} {
	return e
}

func (e *PersonalAccessTokenRemovedEvent) UniqueConstraints() []*eventstore.UniqueConstraint {
	return nil
}

func NewPersonalAccessTokenRemovedEvent(
	ctx context.Context,
	aggregate *eventstore.Aggregate,
	tokenID string,
) *PersonalAccessTokenRemovedEvent {
	return &PersonalAccessTokenRemovedEvent{
		BaseEvent: *eventstore.NewBaseEventForPush(
			ctx,
			aggregate,
			PersonalAccessTokenRemovedType,
		),
		TokenID: tokenID,
	}
}

func PersonalAccessTokenRemovedEventMapper(event eventstore.Event) (eventstore.Event, error) {
	tokenRemoved := &PersonalAccessTokenRemovedEvent{
		BaseEvent: *eventstore.BaseEventFromRepo(event),
	}
	err := event.Unmarshal(tokenRemoved)
	if err != nil {
		return nil, zerrors.ThrowInternal(err, "USER-Dbneg", "unable to unmarshal token removed")
	}

	return tokenRemoved, nil
}