mirror of
https://github.com/zitadel/zitadel.git
synced 2025-01-07 23:57:42 +00:00
2bd255106a
* fix: org tests * fix: org tests * fix: user grant test * fix: user grant test * fix: project and project role test * fix: project grant test * fix: project grant test * fix: project member, grant member, app changed tests * fix: application tests * fix: application tests * fix: add oidc app test * fix: add oidc app test * fix: add api keys test * fix: iam policies * fix: iam and org member tests * fix: clock skew validation * revert crypto changes * fix: tests * fix project grant member commands Co-authored-by: Livio Amstutz <livio.a@gmail.com>
175 lines
4.4 KiB
Go
175 lines
4.4 KiB
Go
package project
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"fmt"
|
|
"github.com/caos/zitadel/internal/eventstore"
|
|
|
|
"github.com/caos/zitadel/internal/errors"
|
|
"github.com/caos/zitadel/internal/eventstore/repository"
|
|
"github.com/caos/zitadel/internal/repository/member"
|
|
)
|
|
|
|
var (
|
|
UniqueProjectGrantMemberType = "project_grant_member"
|
|
GrantMemberAddedType = grantEventTypePrefix + member.AddedEventType
|
|
GrantMemberChangedType = grantEventTypePrefix + member.ChangedEventType
|
|
GrantMemberRemovedType = grantEventTypePrefix + member.RemovedEventType
|
|
)
|
|
|
|
func NewAddProjectGrantMemberUniqueConstraint(projectID, userID, grantID string) *eventstore.EventUniqueConstraint {
|
|
return eventstore.NewAddEventUniqueConstraint(
|
|
UniqueProjectGrantMemberType,
|
|
fmt.Sprintf("%s:%s:%s", projectID, userID, grantID),
|
|
"Errors.Project.Member.AlreadyExists")
|
|
}
|
|
|
|
func NewRemoveProjectGrantMemberUniqueConstraint(projectID, userID, grantID string) *eventstore.EventUniqueConstraint {
|
|
return eventstore.NewRemoveEventUniqueConstraint(
|
|
UniqueProjectGrantMemberType,
|
|
fmt.Sprintf("%s:%s:%s", projectID, userID, grantID),
|
|
)
|
|
}
|
|
|
|
type GrantMemberAddedEvent struct {
|
|
eventstore.BaseEvent `json:"-"`
|
|
|
|
Roles []string `json:"roles"`
|
|
UserID string `json:"userId"`
|
|
GrantID string `json:"grantId"`
|
|
}
|
|
|
|
func (e *GrantMemberAddedEvent) Data() interface{} {
|
|
return e
|
|
}
|
|
|
|
func (e *GrantMemberAddedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
|
|
return []*eventstore.EventUniqueConstraint{NewAddProjectGrantMemberUniqueConstraint(e.Aggregate().ID, e.UserID, e.GrantID)}
|
|
}
|
|
|
|
func NewProjectGrantMemberAddedEvent(
|
|
ctx context.Context,
|
|
aggregate *eventstore.Aggregate,
|
|
userID,
|
|
grantID string,
|
|
roles ...string,
|
|
) *GrantMemberAddedEvent {
|
|
return &GrantMemberAddedEvent{
|
|
BaseEvent: *eventstore.NewBaseEventForPush(
|
|
ctx,
|
|
aggregate,
|
|
GrantMemberAddedType,
|
|
),
|
|
UserID: userID,
|
|
GrantID: grantID,
|
|
Roles: roles,
|
|
}
|
|
}
|
|
|
|
func GrantMemberAddedEventMapper(event *repository.Event) (eventstore.EventReader, error) {
|
|
e := &GrantMemberAddedEvent{
|
|
BaseEvent: *eventstore.BaseEventFromRepo(event),
|
|
}
|
|
|
|
err := json.Unmarshal(event.Data, e)
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "PROJECT-9f0sf", "unable to unmarshal label policy")
|
|
}
|
|
|
|
return e, nil
|
|
}
|
|
|
|
type GrantMemberChangedEvent struct {
|
|
eventstore.BaseEvent `json:"-"`
|
|
|
|
Roles []string `json:"roles"`
|
|
GrantID string `json:"grantId"`
|
|
UserID string `json:"userId"`
|
|
}
|
|
|
|
func (e *GrantMemberChangedEvent) Data() interface{} {
|
|
return e
|
|
}
|
|
|
|
func (e *GrantMemberChangedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
|
|
return nil
|
|
}
|
|
|
|
func NewProjectGrantMemberChangedEvent(
|
|
ctx context.Context,
|
|
aggregate *eventstore.Aggregate,
|
|
userID,
|
|
grantID string,
|
|
roles ...string,
|
|
) *GrantMemberChangedEvent {
|
|
return &GrantMemberChangedEvent{
|
|
BaseEvent: *eventstore.NewBaseEventForPush(
|
|
ctx,
|
|
aggregate,
|
|
GrantMemberAddedType,
|
|
),
|
|
UserID: userID,
|
|
GrantID: grantID,
|
|
Roles: roles,
|
|
}
|
|
}
|
|
|
|
func GrantMemberChangedEventMapper(event *repository.Event) (eventstore.EventReader, error) {
|
|
e := &GrantMemberChangedEvent{
|
|
BaseEvent: *eventstore.BaseEventFromRepo(event),
|
|
}
|
|
|
|
err := json.Unmarshal(event.Data, e)
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "PROJECT-39fi8", "unable to unmarshal label policy")
|
|
}
|
|
|
|
return e, nil
|
|
}
|
|
|
|
type GrantMemberRemovedEvent struct {
|
|
eventstore.BaseEvent `json:"-"`
|
|
|
|
UserID string `json:"userId"`
|
|
GrantID string `json:"grantId"`
|
|
}
|
|
|
|
func (e *GrantMemberRemovedEvent) Data() interface{} {
|
|
return e
|
|
}
|
|
|
|
func (e *GrantMemberRemovedEvent) UniqueConstraints() []*eventstore.EventUniqueConstraint {
|
|
return []*eventstore.EventUniqueConstraint{NewRemoveProjectGrantMemberUniqueConstraint(e.Aggregate().ID, e.UserID, e.GrantID)}
|
|
}
|
|
|
|
func NewProjectGrantMemberRemovedEvent(
|
|
ctx context.Context,
|
|
aggregate *eventstore.Aggregate,
|
|
userID,
|
|
grantID string,
|
|
) *GrantMemberRemovedEvent {
|
|
return &GrantMemberRemovedEvent{
|
|
BaseEvent: *eventstore.NewBaseEventForPush(
|
|
ctx,
|
|
aggregate,
|
|
GrantMemberRemovedType,
|
|
),
|
|
UserID: userID,
|
|
GrantID: grantID,
|
|
}
|
|
}
|
|
|
|
func GrantMemberRemovedEventMapper(event *repository.Event) (eventstore.EventReader, error) {
|
|
e := &GrantMemberRemovedEvent{
|
|
BaseEvent: *eventstore.BaseEventFromRepo(event),
|
|
}
|
|
|
|
err := json.Unmarshal(event.Data, e)
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "PROJECT-173fM", "unable to unmarshal label policy")
|
|
}
|
|
|
|
return e, nil
|
|
}
|