mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-18 05:47:32 +00:00
ed547ee1d4
* chore(queries): test suite for prepare stmt funcs * test(queries): prepare project funcs * refactor: add comments * test: simlify expected sql, added possibility to add args to expected queries * test(queries): prepare funcs in org * chore(backend): correct modules * test(queries): org domain prepare funcs * test: correct name * refactor: file name * refactor: add table to login policy columns * chore(prepare_test): only add row to result if columns * test(queries): login policy prepare funcs * chore: add comments for configs * test(queries): prepare idp funcs * fix(queries): add table to password complexity policy cols * test(queries): password complexity policy prepare funcs * fix(queries): add table to password age policy cols * test(queries): password age policy prepare func * fix(queries): set cols on lockout policy * test(queries): lockout policy prepare funs * fix(queries): set table on privacy policy cols * test(queries): privacy policy prepare funcs * fix(queries): set table on org iam policy cols * fix(queries): correct table in org iam policy cols * test(queries): org iam policy prepare funcs
142 lines
3.6 KiB
Go
142 lines
3.6 KiB
Go
package query
|
|
|
|
import (
|
|
"context"
|
|
"database/sql"
|
|
errs "errors"
|
|
"time"
|
|
|
|
sq "github.com/Masterminds/squirrel"
|
|
"github.com/caos/zitadel/internal/domain"
|
|
"github.com/caos/zitadel/internal/errors"
|
|
"github.com/caos/zitadel/internal/query/projection"
|
|
)
|
|
|
|
type LockoutPolicy struct {
|
|
ID string
|
|
Sequence uint64
|
|
CreationDate time.Time
|
|
ChangeDate time.Time
|
|
ResourceOwner string
|
|
State domain.PolicyState
|
|
|
|
MaxPasswordAttempts uint64
|
|
ShowFailures bool
|
|
|
|
IsDefault bool
|
|
}
|
|
|
|
var (
|
|
lockoutTable = table{
|
|
name: projection.LockoutPolicyTable,
|
|
}
|
|
LockoutColID = Column{
|
|
name: projection.LockoutPolicyIDCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColSequence = Column{
|
|
name: projection.LockoutPolicySequenceCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColCreationDate = Column{
|
|
name: projection.LockoutPolicyCreationDateCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColChangeDate = Column{
|
|
name: projection.LockoutPolicyChangeDateCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColResourceOwner = Column{
|
|
name: projection.LockoutPolicyResourceOwnerCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColShowFailures = Column{
|
|
name: projection.LockoutPolicyShowLockOutFailuresCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColMaxPasswordAttempts = Column{
|
|
name: projection.LockoutPolicyMaxPasswordAttemptsCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColIsDefault = Column{
|
|
name: projection.LockoutPolicyIsDefaultCol,
|
|
table: lockoutTable,
|
|
}
|
|
LockoutColState = Column{
|
|
name: projection.LockoutPolicyStateCol,
|
|
table: lockoutTable,
|
|
}
|
|
)
|
|
|
|
func (q *Queries) LockoutPolicyByOrg(ctx context.Context, orgID string) (*LockoutPolicy, error) {
|
|
stmt, scan := prepareLockoutPolicyQuery()
|
|
query, args, err := stmt.Where(
|
|
sq.Or{
|
|
sq.Eq{
|
|
LockoutColID.identifier(): orgID,
|
|
},
|
|
sq.Eq{
|
|
LockoutColID.identifier(): q.iamID,
|
|
},
|
|
}).
|
|
OrderBy(LockoutColIsDefault.identifier()).
|
|
Limit(1).ToSql()
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "QUERY-SKR6X", "Errors.Query.SQLStatement")
|
|
}
|
|
|
|
row := q.client.QueryRowContext(ctx, query, args...)
|
|
return scan(row)
|
|
}
|
|
|
|
func (q *Queries) DefaultLockoutPolicy(ctx context.Context) (*LockoutPolicy, error) {
|
|
stmt, scan := prepareLockoutPolicyQuery()
|
|
query, args, err := stmt.Where(sq.Eq{
|
|
LockoutColID.identifier(): q.iamID,
|
|
}).
|
|
OrderBy(LockoutColIsDefault.identifier()).
|
|
Limit(1).ToSql()
|
|
if err != nil {
|
|
return nil, errors.ThrowInternal(err, "QUERY-mN0Ci", "Errors.Query.SQLStatement")
|
|
}
|
|
|
|
row := q.client.QueryRowContext(ctx, query, args...)
|
|
return scan(row)
|
|
}
|
|
|
|
func prepareLockoutPolicyQuery() (sq.SelectBuilder, func(*sql.Row) (*LockoutPolicy, error)) {
|
|
return sq.Select(
|
|
LockoutColID.identifier(),
|
|
LockoutColSequence.identifier(),
|
|
LockoutColCreationDate.identifier(),
|
|
LockoutColChangeDate.identifier(),
|
|
LockoutColResourceOwner.identifier(),
|
|
LockoutColShowFailures.identifier(),
|
|
LockoutColMaxPasswordAttempts.identifier(),
|
|
LockoutColIsDefault.identifier(),
|
|
LockoutColState.identifier(),
|
|
).
|
|
From(lockoutTable.identifier()).PlaceholderFormat(sq.Dollar),
|
|
func(row *sql.Row) (*LockoutPolicy, error) {
|
|
policy := new(LockoutPolicy)
|
|
err := row.Scan(
|
|
&policy.ID,
|
|
&policy.Sequence,
|
|
&policy.CreationDate,
|
|
&policy.ChangeDate,
|
|
&policy.ResourceOwner,
|
|
&policy.ShowFailures,
|
|
&policy.MaxPasswordAttempts,
|
|
&policy.IsDefault,
|
|
&policy.State,
|
|
)
|
|
if err != nil {
|
|
if errs.Is(err, sql.ErrNoRows) {
|
|
return nil, errors.ThrowNotFound(err, "QUERY-63mtI", "Errors.PasswordComplexityPolicy.NotFound")
|
|
}
|
|
return nil, errors.ThrowInternal(err, "QUERY-uulCZ", "Errors.Internal")
|
|
}
|
|
return policy, nil
|
|
}
|
|
}
|