mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 03:24:26 +00:00
095ec21678
* chore(proto): update versions
* change protoc plugin
* some cleanups
* define api for setting emails in new api
* implement user.SetEmail
* move SetEmail buisiness logic into command
* resuse newCryptoCode
* command: add ChangeEmail unit tests
Not complete, was not able to mock the generator.
* Revert "resuse newCryptoCode"
This reverts commit c89e90ae35.
* undo change to crypto code generators
* command: use a generator so we can test properly
* command: reorganise ChangeEmail
improve test coverage
* implement VerifyEmail
including unit tests
* add URL template tests
* proto: change context to object
* remove old auth option
* remove old auth option
* fix linting errors
run gci on modified files
* add permission checks and fix some errors
* comments
* comments
---------
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Tim Möhlmann <tim+github@zitadel.com>
90 lines
2.6 KiB
Go
90 lines
2.6 KiB
Go
package eventstore
|
|
|
|
import (
|
|
"context"
|
|
|
|
"github.com/zitadel/zitadel/internal/api/authz"
|
|
"github.com/zitadel/zitadel/internal/query"
|
|
"github.com/zitadel/zitadel/internal/telemetry/tracing"
|
|
)
|
|
|
|
type UserMembershipRepo struct {
|
|
Queries *query.Queries
|
|
}
|
|
|
|
func (repo *UserMembershipRepo) SearchMyMemberships(ctx context.Context, orgID string) (_ []*authz.Membership, err error) {
|
|
ctx, span := tracing.NewSpan(ctx)
|
|
defer func() { span.EndWithError(err) }()
|
|
memberships, err := repo.searchUserMemberships(ctx, orgID)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return userMembershipsToMemberships(memberships), nil
|
|
}
|
|
|
|
func (repo *UserMembershipRepo) searchUserMemberships(ctx context.Context, orgID string) (_ []*query.Membership, err error) {
|
|
ctx, span := tracing.NewSpan(ctx)
|
|
defer func() { span.EndWithError(err) }()
|
|
ctxData := authz.GetCtxData(ctx)
|
|
userIDQuery, err := query.NewMembershipUserIDQuery(ctxData.UserID)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
orgIDsQuery, err := query.NewMembershipResourceOwnersSearchQuery(orgID, authz.GetInstance(ctx).InstanceID())
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
grantedIDQuery, err := query.NewMembershipGrantedOrgIDSearchQuery(orgID)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
memberships, err := repo.Queries.Memberships(ctx, &query.MembershipSearchQuery{
|
|
Queries: []query.SearchQuery{userIDQuery, query.Or(orgIDsQuery, grantedIDQuery)},
|
|
}, false)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
return memberships.Memberships, nil
|
|
}
|
|
|
|
func userMembershipToMembership(membership *query.Membership) *authz.Membership {
|
|
if membership.IAM != nil {
|
|
return &authz.Membership{
|
|
MemberType: authz.MemberTypeIam,
|
|
AggregateID: membership.IAM.IAMID,
|
|
ObjectID: membership.IAM.IAMID,
|
|
Roles: membership.Roles,
|
|
}
|
|
}
|
|
if membership.Org != nil {
|
|
return &authz.Membership{
|
|
MemberType: authz.MemberTypeOrganisation,
|
|
AggregateID: membership.Org.OrgID,
|
|
ObjectID: membership.Org.OrgID,
|
|
Roles: membership.Roles,
|
|
}
|
|
}
|
|
if membership.Project != nil {
|
|
return &authz.Membership{
|
|
MemberType: authz.MemberTypeProject,
|
|
AggregateID: membership.Project.ProjectID,
|
|
ObjectID: membership.Project.ProjectID,
|
|
Roles: membership.Roles,
|
|
}
|
|
}
|
|
return &authz.Membership{
|
|
MemberType: authz.MemberTypeProjectGrant,
|
|
AggregateID: membership.ProjectGrant.ProjectID,
|
|
ObjectID: membership.ProjectGrant.GrantID,
|
|
Roles: membership.Roles,
|
|
}
|
|
}
|
|
|
|
func userMembershipsToMemberships(memberships []*query.Membership) []*authz.Membership {
|
|
result := make([]*authz.Membership, len(memberships))
|
|
for i, m := range memberships {
|
|
result[i] = userMembershipToMembership(m)
|
|
}
|
|
return result
|
|
}
|