mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-12 11:04:25 +00:00
56b916a2b0
* begin init checks for projections * first projection checks * debug notification providers with query fixes * more projections and first index * more projections * more projections * finish projections * fix tests (remove db name) * create tables in setup * fix logging / error handling * add tenant to views * rename tenant to instance_id * add instance_id to all projections * add instance_id to all queries * correct instance_id on projections * add instance_id to failed_events * use separate context for instance * implement features projection * implement features projection * remove unique constraint from setup when migration failed * add error to failed setup event * add instance_id to primary keys * fix IAM projection * remove old migrations folder * fix keysFromYAML test
153 lines
3.9 KiB
Go
153 lines
3.9 KiB
Go
package query
|
|
|
|
import (
|
|
"context"
|
|
"database/sql"
|
|
errs "errors"
|
|
"time"
|
|
|
|
sq "github.com/Masterminds/squirrel"
|
|
|
|
"github.com/caos/zitadel/internal/api/authz"
|
|
"github.com/caos/zitadel/internal/domain"
|
|
"github.com/caos/zitadel/internal/errors"
|
|
"github.com/caos/zitadel/internal/query/projection"
|
|
)
|
|
|
|
type PasswordAgePolicy struct {
|
|
ID string
|
|
Sequence uint64
|
|
CreationDate time.Time
|
|
ChangeDate time.Time
|
|
ResourceOwner string
|
|
State domain.PolicyState
|
|
|
|
ExpireWarnDays uint64
|
|
MaxAgeDays uint64
|
|
|
|
IsDefault bool
|
|
}
|
|
|
|
var (
|
|
passwordAgeTable = table{
|
|
name: projection.PasswordAgeTable,
|
|
}
|
|
PasswordAgeColID = Column{
|
|
name: projection.AgePolicyIDCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColSequence = Column{
|
|
name: projection.AgePolicySequenceCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColCreationDate = Column{
|
|
name: projection.AgePolicyCreationDateCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColChangeDate = Column{
|
|
name: projection.AgePolicyChangeDateCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColResourceOwner = Column{
|
|
name: projection.AgePolicyResourceOwnerCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColInstanceID = Column{
|
|
name: projection.AgePolicyInstanceIDCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColWarnDays = Column{
|
|
name: projection.AgePolicyExpireWarnDaysCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColMaxAge = Column{
|
|
name: projection.AgePolicyMaxAgeDaysCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColIsDefault = Column{
|
|
name: projection.AgePolicyIsDefaultCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
PasswordAgeColState = Column{
|
|
name: projection.AgePolicyStateCol,
|
|
table: passwordAgeTable,
|
|
}
|
|
)
|
|
|
|
func (q *Queries) PasswordAgePolicyByOrg(ctx context.Context, orgID string) (*PasswordAgePolicy, error) {
|
|
stmt, scan := preparePasswordAgePolicyQuery()
|
|
query, args, err := stmt.Where(
|
|
sq.And{
|
|
sq.Eq{
|
|
PasswordAgeColInstanceID.identifier(): authz.GetInstance(ctx).ID,
|
|
},
|
|
sq.Or{
|
|
sq.Eq{
|
|
PasswordAgeColID.identifier(): orgID,
|
|
},
|
|
sq.Eq{
|
|
PasswordAgeColID.identifier(): domain.IAMID,
|
|
},
|
|
},
|
|
}).
|
|
OrderBy(PasswordAgeColIsDefault.identifier()).
|
|
Limit(1).ToSql()
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "QUERY-SKR6X", "Errors.Query.SQLStatement")
|
|
}
|
|
|
|
row := q.client.QueryRowContext(ctx, query, args...)
|
|
return scan(row)
|
|
}
|
|
|
|
func (q *Queries) DefaultPasswordAgePolicy(ctx context.Context) (*PasswordAgePolicy, error) {
|
|
stmt, scan := preparePasswordAgePolicyQuery()
|
|
query, args, err := stmt.Where(sq.Eq{
|
|
PasswordAgeColID.identifier(): domain.IAMID,
|
|
}).
|
|
OrderBy(PasswordAgeColIsDefault.identifier()).
|
|
Limit(1).ToSql()
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "QUERY-mN0Ci", "Errors.Query.SQLStatement")
|
|
}
|
|
|
|
row := q.client.QueryRowContext(ctx, query, args...)
|
|
return scan(row)
|
|
}
|
|
|
|
func preparePasswordAgePolicyQuery() (sq.SelectBuilder, func(*sql.Row) (*PasswordAgePolicy, error)) {
|
|
return sq.Select(
|
|
PasswordAgeColID.identifier(),
|
|
PasswordAgeColSequence.identifier(),
|
|
PasswordAgeColCreationDate.identifier(),
|
|
PasswordAgeColChangeDate.identifier(),
|
|
PasswordAgeColResourceOwner.identifier(),
|
|
PasswordAgeColWarnDays.identifier(),
|
|
PasswordAgeColMaxAge.identifier(),
|
|
PasswordAgeColIsDefault.identifier(),
|
|
PasswordAgeColState.identifier(),
|
|
).
|
|
From(passwordAgeTable.identifier()).PlaceholderFormat(sq.Dollar),
|
|
func(row *sql.Row) (*PasswordAgePolicy, error) {
|
|
policy := new(PasswordAgePolicy)
|
|
err := row.Scan(
|
|
&policy.ID,
|
|
&policy.Sequence,
|
|
&policy.CreationDate,
|
|
&policy.ChangeDate,
|
|
&policy.ResourceOwner,
|
|
&policy.ExpireWarnDays,
|
|
&policy.MaxAgeDays,
|
|
&policy.IsDefault,
|
|
&policy.State,
|
|
)
|
|
if err != nil {
|
|
if errs.Is(err, sql.ErrNoRows) {
|
|
return nil, errors.ThrowNotFound(err, "QUERY-63mtI", "Errors.Org.PasswordComplexity.NotFound")
|
|
}
|
|
return nil, errors.ThrowInternal(err, "QUERY-uulCZ", "Errors.Internal")
|
|
}
|
|
return policy, nil
|
|
}
|
|
}
|