mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 11:34:26 +00:00
320ddfa46d
* feat: add/ remove external idps * feat: external idp add /remove * fix: auth proto * fix: handle login * feat: loginpolicy on authrequest * feat: idp providers on login * feat: link external idp * fix: check login policy on check username * feat: add mapping fields for idp config * feat: use user org id if existing * feat: use user org id if existing * feat: register external user * feat: register external user * feat: user linking * feat: user linking * feat: design external login * feat: design external login * fix: tests * fix: regenerate login design * feat: next step test linking process * feat: next step test linking process * feat: cascade remove external idps on user * fix: tests * fix: tests * feat: external idp requsts on users * fix: generate protos * feat: login styles * feat: login styles * fix: link user * fix: register user on specifig org * fix: user linking * fix: register external, linking auto * fix: remove unnecessary request from proto * fix: tests * fix: new oidc package * fix: migration version * fix: policy permissions * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/static/i18n/en.yaml Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/handler/renderer.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/ui/login/handler/renderer.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: pr requests * Update internal/ui/login/handler/link_users_handler.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: pr requests * fix: pr requests * fix: pr requests * fix: login name size * fix: profile image light * fix: colors * fix: pr requests * fix: remove redirect uri validator * fix: remove redirect uri validator Co-authored-by: Livio Amstutz <livio.a@gmail.com>
629 lines
21 KiB
Go
629 lines
21 KiB
Go
package management
|
|
|
|
import (
|
|
"encoding/json"
|
|
"github.com/caos/logging"
|
|
"github.com/caos/zitadel/internal/model"
|
|
"github.com/golang/protobuf/ptypes"
|
|
"golang.org/x/text/language"
|
|
"google.golang.org/protobuf/encoding/protojson"
|
|
"google.golang.org/protobuf/types/known/structpb"
|
|
|
|
"github.com/caos/zitadel/internal/eventstore/models"
|
|
usr_model "github.com/caos/zitadel/internal/user/model"
|
|
"github.com/caos/zitadel/pkg/grpc/management"
|
|
"github.com/caos/zitadel/pkg/grpc/message"
|
|
)
|
|
|
|
func userFromModel(user *usr_model.User) *management.UserResponse {
|
|
creationDate, err := ptypes.TimestampProto(user.CreationDate)
|
|
logging.Log("GRPC-8duwe").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(user.ChangeDate)
|
|
logging.Log("GRPC-ckoe3d").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
userResp := &management.UserResponse{
|
|
Id: user.AggregateID,
|
|
State: userStateFromModel(user.State),
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: user.Sequence,
|
|
UserName: user.UserName,
|
|
}
|
|
|
|
if user.Machine != nil {
|
|
userResp.User = &management.UserResponse_Machine{Machine: machineFromModel(user.Machine)}
|
|
}
|
|
if user.Human != nil {
|
|
userResp.User = &management.UserResponse_Human{Human: humanFromModel(user.Human)}
|
|
}
|
|
|
|
return userResp
|
|
}
|
|
|
|
func userCreateToModel(user *management.CreateUserRequest) *usr_model.User {
|
|
var human *usr_model.Human
|
|
var machine *usr_model.Machine
|
|
|
|
if h := user.GetHuman(); h != nil {
|
|
human = humanCreateToModel(h)
|
|
}
|
|
if m := user.GetMachine(); m != nil {
|
|
machine = machineCreateToModel(m)
|
|
}
|
|
|
|
return &usr_model.User{
|
|
UserName: user.UserName,
|
|
Human: human,
|
|
Machine: machine,
|
|
}
|
|
}
|
|
|
|
func passwordRequestToModel(r *management.PasswordRequest) *usr_model.Password {
|
|
return &usr_model.Password{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: r.Id},
|
|
SecretString: r.Password,
|
|
}
|
|
}
|
|
|
|
func externalIDPSearchRequestToModel(request *management.ExternalIDPSearchRequest) *usr_model.ExternalIDPSearchRequest {
|
|
return &usr_model.ExternalIDPSearchRequest{
|
|
Limit: request.Limit,
|
|
Offset: request.Offset,
|
|
Queries: []*usr_model.ExternalIDPSearchQuery{{Key: usr_model.ExternalIDPSearchKeyUserID, Method: model.SearchMethodEquals, Value: request.UserId}},
|
|
}
|
|
}
|
|
|
|
func externalIDPRemoveToModel(idp *management.ExternalIDPRemoveRequest) *usr_model.ExternalIDP {
|
|
return &usr_model.ExternalIDP{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: idp.UserId},
|
|
IDPConfigID: idp.IdpConfigId,
|
|
UserID: idp.ExternalUserId,
|
|
}
|
|
}
|
|
|
|
func externalIDPSearchResponseFromModel(response *usr_model.ExternalIDPSearchResponse) *management.ExternalIDPSearchResponse {
|
|
viewTimestamp, err := ptypes.TimestampProto(response.Timestamp)
|
|
logging.Log("GRPC-3h8is").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.ExternalIDPSearchResponse{
|
|
Offset: response.Offset,
|
|
Limit: response.Limit,
|
|
TotalResult: response.TotalResult,
|
|
ProcessedSequence: response.Sequence,
|
|
ViewTimestamp: viewTimestamp,
|
|
Result: externalIDPViewsFromModel(response.Result),
|
|
}
|
|
}
|
|
|
|
func externalIDPViewsFromModel(externalIDPs []*usr_model.ExternalIDPView) []*management.ExternalIDPView {
|
|
converted := make([]*management.ExternalIDPView, len(externalIDPs))
|
|
for i, externalIDP := range externalIDPs {
|
|
converted[i] = externalIDPViewFromModel(externalIDP)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func externalIDPViewFromModel(externalIDP *usr_model.ExternalIDPView) *management.ExternalIDPView {
|
|
creationDate, err := ptypes.TimestampProto(externalIDP.CreationDate)
|
|
logging.Log("GRPC-Fdu8s").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(externalIDP.ChangeDate)
|
|
logging.Log("GRPC-Was7u").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.ExternalIDPView{
|
|
UserId: externalIDP.UserID,
|
|
IdpConfigId: externalIDP.IDPConfigID,
|
|
ExternalUserId: externalIDP.ExternalUserID,
|
|
ExternalUserDisplayName: externalIDP.UserDisplayName,
|
|
IdpName: externalIDP.IDPName,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
}
|
|
}
|
|
|
|
func userSearchRequestsToModel(project *management.UserSearchRequest) *usr_model.UserSearchRequest {
|
|
return &usr_model.UserSearchRequest{
|
|
Offset: project.Offset,
|
|
Limit: project.Limit,
|
|
Queries: userSearchQueriesToModel(project.Queries),
|
|
}
|
|
}
|
|
|
|
func userSearchQueriesToModel(queries []*management.UserSearchQuery) []*usr_model.UserSearchQuery {
|
|
converted := make([]*usr_model.UserSearchQuery, len(queries))
|
|
for i, q := range queries {
|
|
converted[i] = userSearchQueryToModel(q)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func userSearchQueryToModel(query *management.UserSearchQuery) *usr_model.UserSearchQuery {
|
|
return &usr_model.UserSearchQuery{
|
|
Key: userSearchKeyToModel(query.Key),
|
|
Method: searchMethodToModel(query.Method),
|
|
Value: query.Value,
|
|
}
|
|
}
|
|
|
|
func userSearchKeyToModel(key management.UserSearchKey) usr_model.UserSearchKey {
|
|
switch key {
|
|
case management.UserSearchKey_USERSEARCHKEY_USER_NAME:
|
|
return usr_model.UserSearchKeyUserName
|
|
case management.UserSearchKey_USERSEARCHKEY_FIRST_NAME:
|
|
return usr_model.UserSearchKeyFirstName
|
|
case management.UserSearchKey_USERSEARCHKEY_LAST_NAME:
|
|
return usr_model.UserSearchKeyLastName
|
|
case management.UserSearchKey_USERSEARCHKEY_NICK_NAME:
|
|
return usr_model.UserSearchKeyNickName
|
|
case management.UserSearchKey_USERSEARCHKEY_DISPLAY_NAME:
|
|
return usr_model.UserSearchKeyDisplayName
|
|
case management.UserSearchKey_USERSEARCHKEY_EMAIL:
|
|
return usr_model.UserSearchKeyEmail
|
|
case management.UserSearchKey_USERSEARCHKEY_STATE:
|
|
return usr_model.UserSearchKeyState
|
|
case management.UserSearchKey_USERSEARCHKEY_TYPE:
|
|
return usr_model.UserSearchKeyType
|
|
default:
|
|
return usr_model.UserSearchKeyUnspecified
|
|
}
|
|
}
|
|
|
|
func userMembershipSearchRequestsToModel(request *management.UserMembershipSearchRequest) *usr_model.UserMembershipSearchRequest {
|
|
return &usr_model.UserMembershipSearchRequest{
|
|
Offset: request.Offset,
|
|
Limit: request.Limit,
|
|
Queries: userMembershipSearchQueriesToModel(request.Queries),
|
|
}
|
|
}
|
|
|
|
func userMembershipSearchQueriesToModel(queries []*management.UserMembershipSearchQuery) []*usr_model.UserMembershipSearchQuery {
|
|
converted := make([]*usr_model.UserMembershipSearchQuery, len(queries))
|
|
for i, q := range queries {
|
|
converted[i] = userMembershipSearchQueryToModel(q)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func userMembershipSearchQueryToModel(query *management.UserMembershipSearchQuery) *usr_model.UserMembershipSearchQuery {
|
|
return &usr_model.UserMembershipSearchQuery{
|
|
Key: userMembershipSearchKeyToModel(query.Key),
|
|
Method: searchMethodToModel(query.Method),
|
|
Value: query.Value,
|
|
}
|
|
}
|
|
|
|
func userMembershipSearchKeyToModel(key management.UserMembershipSearchKey) usr_model.UserMembershipSearchKey {
|
|
switch key {
|
|
case management.UserMembershipSearchKey_USERMEMBERSHIPSEARCHKEY_TYPE:
|
|
return usr_model.UserMembershipSearchKeyMemberType
|
|
case management.UserMembershipSearchKey_USERMEMBERSHIPSEARCHKEY_OBJECT_ID:
|
|
return usr_model.UserMembershipSearchKeyObjectID
|
|
default:
|
|
return usr_model.UserMembershipSearchKeyUnspecified
|
|
}
|
|
}
|
|
|
|
func profileFromModel(profile *usr_model.Profile) *management.UserProfile {
|
|
creationDate, err := ptypes.TimestampProto(profile.CreationDate)
|
|
logging.Log("GRPC-dkso3").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(profile.ChangeDate)
|
|
logging.Log("GRPC-ski8d").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserProfile{
|
|
Id: profile.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: profile.Sequence,
|
|
FirstName: profile.FirstName,
|
|
LastName: profile.LastName,
|
|
DisplayName: profile.DisplayName,
|
|
NickName: profile.NickName,
|
|
PreferredLanguage: profile.PreferredLanguage.String(),
|
|
Gender: genderFromModel(profile.Gender),
|
|
}
|
|
}
|
|
|
|
func profileViewFromModel(profile *usr_model.Profile) *management.UserProfileView {
|
|
creationDate, err := ptypes.TimestampProto(profile.CreationDate)
|
|
logging.Log("GRPC-sk8sk").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(profile.ChangeDate)
|
|
logging.Log("GRPC-s30Ks'").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserProfileView{
|
|
Id: profile.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: profile.Sequence,
|
|
FirstName: profile.FirstName,
|
|
LastName: profile.LastName,
|
|
DisplayName: profile.DisplayName,
|
|
NickName: profile.NickName,
|
|
PreferredLanguage: profile.PreferredLanguage.String(),
|
|
Gender: genderFromModel(profile.Gender),
|
|
LoginNames: profile.LoginNames,
|
|
PreferredLoginName: profile.PreferredLoginName,
|
|
}
|
|
}
|
|
|
|
func updateProfileToModel(u *management.UpdateUserProfileRequest) *usr_model.Profile {
|
|
preferredLanguage, err := language.Parse(u.PreferredLanguage)
|
|
logging.Log("GRPC-d8k2s").OnError(err).Debug("language malformed")
|
|
|
|
return &usr_model.Profile{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: u.Id},
|
|
FirstName: u.FirstName,
|
|
LastName: u.LastName,
|
|
NickName: u.NickName,
|
|
PreferredLanguage: preferredLanguage,
|
|
Gender: genderToModel(u.Gender),
|
|
}
|
|
}
|
|
|
|
func emailFromModel(email *usr_model.Email) *management.UserEmail {
|
|
creationDate, err := ptypes.TimestampProto(email.CreationDate)
|
|
logging.Log("GRPC-d9ow2").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(email.ChangeDate)
|
|
logging.Log("GRPC-s0dkw").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserEmail{
|
|
Id: email.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: email.Sequence,
|
|
Email: email.EmailAddress,
|
|
IsEmailVerified: email.IsEmailVerified,
|
|
}
|
|
}
|
|
|
|
func emailViewFromModel(email *usr_model.Email) *management.UserEmailView {
|
|
creationDate, err := ptypes.TimestampProto(email.CreationDate)
|
|
logging.Log("GRPC-sKefs").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(email.ChangeDate)
|
|
logging.Log("GRPC-0isjD").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserEmailView{
|
|
Id: email.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: email.Sequence,
|
|
Email: email.EmailAddress,
|
|
IsEmailVerified: email.IsEmailVerified,
|
|
}
|
|
}
|
|
|
|
func updateEmailToModel(e *management.UpdateUserEmailRequest) *usr_model.Email {
|
|
return &usr_model.Email{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: e.Id},
|
|
EmailAddress: e.Email,
|
|
IsEmailVerified: e.IsEmailVerified,
|
|
}
|
|
}
|
|
|
|
func phoneFromModel(phone *usr_model.Phone) *management.UserPhone {
|
|
creationDate, err := ptypes.TimestampProto(phone.CreationDate)
|
|
logging.Log("GRPC-ps9ws").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(phone.ChangeDate)
|
|
logging.Log("GRPC-09ewq").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserPhone{
|
|
Id: phone.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: phone.Sequence,
|
|
Phone: phone.PhoneNumber,
|
|
IsPhoneVerified: phone.IsPhoneVerified,
|
|
}
|
|
}
|
|
|
|
func phoneViewFromModel(phone *usr_model.Phone) *management.UserPhoneView {
|
|
creationDate, err := ptypes.TimestampProto(phone.CreationDate)
|
|
logging.Log("GRPC-6gSj").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(phone.ChangeDate)
|
|
logging.Log("GRPC-lKs8f").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserPhoneView{
|
|
Id: phone.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: phone.Sequence,
|
|
Phone: phone.PhoneNumber,
|
|
IsPhoneVerified: phone.IsPhoneVerified,
|
|
}
|
|
}
|
|
func updatePhoneToModel(e *management.UpdateUserPhoneRequest) *usr_model.Phone {
|
|
return &usr_model.Phone{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: e.Id},
|
|
PhoneNumber: e.Phone,
|
|
IsPhoneVerified: e.IsPhoneVerified,
|
|
}
|
|
}
|
|
|
|
func addressFromModel(address *usr_model.Address) *management.UserAddress {
|
|
creationDate, err := ptypes.TimestampProto(address.CreationDate)
|
|
logging.Log("GRPC-ud8w7").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(address.ChangeDate)
|
|
logging.Log("GRPC-si9ws").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserAddress{
|
|
Id: address.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: address.Sequence,
|
|
Country: address.Country,
|
|
StreetAddress: address.StreetAddress,
|
|
Region: address.Region,
|
|
PostalCode: address.PostalCode,
|
|
Locality: address.Locality,
|
|
}
|
|
}
|
|
|
|
func addressViewFromModel(address *usr_model.Address) *management.UserAddressView {
|
|
creationDate, err := ptypes.TimestampProto(address.CreationDate)
|
|
logging.Log("GRPC-67stC").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(address.ChangeDate)
|
|
logging.Log("GRPC-0jSfs").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserAddressView{
|
|
Id: address.AggregateID,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: address.Sequence,
|
|
Country: address.Country,
|
|
StreetAddress: address.StreetAddress,
|
|
Region: address.Region,
|
|
PostalCode: address.PostalCode,
|
|
Locality: address.Locality,
|
|
}
|
|
}
|
|
|
|
func updateAddressToModel(address *management.UpdateUserAddressRequest) *usr_model.Address {
|
|
return &usr_model.Address{
|
|
ObjectRoot: models.ObjectRoot{AggregateID: address.Id},
|
|
Country: address.Country,
|
|
StreetAddress: address.StreetAddress,
|
|
Region: address.Region,
|
|
PostalCode: address.PostalCode,
|
|
Locality: address.Locality,
|
|
}
|
|
}
|
|
|
|
func userSearchResponseFromModel(response *usr_model.UserSearchResponse) *management.UserSearchResponse {
|
|
timestamp, err := ptypes.TimestampProto(response.Timestamp)
|
|
logging.Log("GRPC-aBezr").OnError(err).Debug("unable to parse timestamp")
|
|
return &management.UserSearchResponse{
|
|
Offset: response.Offset,
|
|
Limit: response.Limit,
|
|
TotalResult: response.TotalResult,
|
|
Result: userViewsFromModel(response.Result),
|
|
ProcessedSequence: response.Sequence,
|
|
ViewTimestamp: timestamp,
|
|
}
|
|
}
|
|
|
|
func userViewsFromModel(users []*usr_model.UserView) []*management.UserView {
|
|
converted := make([]*management.UserView, len(users))
|
|
for i, user := range users {
|
|
converted[i] = userViewFromModel(user)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func userViewFromModel(user *usr_model.UserView) *management.UserView {
|
|
creationDate, err := ptypes.TimestampProto(user.CreationDate)
|
|
logging.Log("GRPC-dl9we").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(user.ChangeDate)
|
|
logging.Log("GRPC-lpsg5").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
lastLogin, err := ptypes.TimestampProto(user.LastLogin)
|
|
logging.Log("GRPC-dksi3").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
userView := &management.UserView{
|
|
Id: user.ID,
|
|
State: userStateFromModel(user.State),
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
LastLogin: lastLogin,
|
|
Sequence: user.Sequence,
|
|
ResourceOwner: user.ResourceOwner,
|
|
LoginNames: user.LoginNames,
|
|
PreferredLoginName: user.PreferredLoginName,
|
|
UserName: user.UserName,
|
|
}
|
|
if user.HumanView != nil {
|
|
userView.User = &management.UserView_Human{Human: humanViewFromModel(user.HumanView)}
|
|
}
|
|
if user.MachineView != nil {
|
|
userView.User = &management.UserView_Machine{Machine: machineViewFromModel(user.MachineView)}
|
|
|
|
}
|
|
return userView
|
|
}
|
|
|
|
func userMembershipSearchResponseFromModel(response *usr_model.UserMembershipSearchResponse) *management.UserMembershipSearchResponse {
|
|
timestamp, err := ptypes.TimestampProto(response.Timestamp)
|
|
logging.Log("GRPC-Hs8jd").OnError(err).Debug("unable to parse timestamp")
|
|
return &management.UserMembershipSearchResponse{
|
|
Offset: response.Offset,
|
|
Limit: response.Limit,
|
|
TotalResult: response.TotalResult,
|
|
Result: userMembershipViewsFromModel(response.Result),
|
|
ProcessedSequence: response.Sequence,
|
|
ViewTimestamp: timestamp,
|
|
}
|
|
}
|
|
|
|
func userMembershipViewsFromModel(memberships []*usr_model.UserMembershipView) []*management.UserMembershipView {
|
|
converted := make([]*management.UserMembershipView, len(memberships))
|
|
for i, membership := range memberships {
|
|
converted[i] = userMembershipViewFromModel(membership)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func userMembershipViewFromModel(membership *usr_model.UserMembershipView) *management.UserMembershipView {
|
|
creationDate, err := ptypes.TimestampProto(membership.CreationDate)
|
|
logging.Log("GRPC-Msnu8").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
changeDate, err := ptypes.TimestampProto(membership.ChangeDate)
|
|
logging.Log("GRPC-Slco9").OnError(err).Debug("unable to parse timestamp")
|
|
|
|
return &management.UserMembershipView{
|
|
UserId: membership.UserID,
|
|
AggregateId: membership.AggregateID,
|
|
ObjectId: membership.ObjectID,
|
|
MemberType: memberTypeFromModel(membership.MemberType),
|
|
DisplayName: membership.DisplayName,
|
|
Roles: membership.Roles,
|
|
CreationDate: creationDate,
|
|
ChangeDate: changeDate,
|
|
Sequence: membership.Sequence,
|
|
ResourceOwner: membership.ResourceOwner,
|
|
}
|
|
}
|
|
|
|
func mfasFromModel(mfas []*usr_model.MultiFactor) []*management.MultiFactor {
|
|
converted := make([]*management.MultiFactor, len(mfas))
|
|
for i, mfa := range mfas {
|
|
converted[i] = mfaFromModel(mfa)
|
|
}
|
|
return converted
|
|
}
|
|
|
|
func mfaFromModel(mfa *usr_model.MultiFactor) *management.MultiFactor {
|
|
return &management.MultiFactor{
|
|
State: mfaStateFromModel(mfa.State),
|
|
Type: mfaTypeFromModel(mfa.Type),
|
|
}
|
|
}
|
|
|
|
func notifyTypeToModel(state management.NotificationType) usr_model.NotificationType {
|
|
switch state {
|
|
case management.NotificationType_NOTIFICATIONTYPE_EMAIL:
|
|
return usr_model.NotificationTypeEmail
|
|
case management.NotificationType_NOTIFICATIONTYPE_SMS:
|
|
return usr_model.NotificationTypeSms
|
|
default:
|
|
return usr_model.NotificationTypeEmail
|
|
}
|
|
}
|
|
|
|
func userStateFromModel(state usr_model.UserState) management.UserState {
|
|
switch state {
|
|
case usr_model.UserStateActive:
|
|
return management.UserState_USERSTATE_ACTIVE
|
|
case usr_model.UserStateInactive:
|
|
return management.UserState_USERSTATE_INACTIVE
|
|
case usr_model.UserStateLocked:
|
|
return management.UserState_USERSTATE_LOCKED
|
|
case usr_model.UserStateInitial:
|
|
return management.UserState_USERSTATE_INITIAL
|
|
case usr_model.UserStateSuspend:
|
|
return management.UserState_USERSTATE_SUSPEND
|
|
default:
|
|
return management.UserState_USERSTATE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func genderFromModel(gender usr_model.Gender) management.Gender {
|
|
switch gender {
|
|
case usr_model.GenderFemale:
|
|
return management.Gender_GENDER_FEMALE
|
|
case usr_model.GenderMale:
|
|
return management.Gender_GENDER_MALE
|
|
case usr_model.GenderDiverse:
|
|
return management.Gender_GENDER_DIVERSE
|
|
default:
|
|
return management.Gender_GENDER_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func memberTypeFromModel(memberType usr_model.MemberType) management.MemberType {
|
|
switch memberType {
|
|
case usr_model.MemberTypeOrganisation:
|
|
return management.MemberType_MEMBERTYPE_ORGANISATION
|
|
case usr_model.MemberTypeProject:
|
|
return management.MemberType_MEMBERTYPE_PROJECT
|
|
case usr_model.MemberTypeProjectGrant:
|
|
return management.MemberType_MEMBERTYPE_PROJECT_GRANT
|
|
default:
|
|
return management.MemberType_MEMBERTYPE_UNSPECIFIED
|
|
}
|
|
}
|
|
func genderToModel(gender management.Gender) usr_model.Gender {
|
|
switch gender {
|
|
case management.Gender_GENDER_FEMALE:
|
|
return usr_model.GenderFemale
|
|
case management.Gender_GENDER_MALE:
|
|
return usr_model.GenderMale
|
|
case management.Gender_GENDER_DIVERSE:
|
|
return usr_model.GenderDiverse
|
|
default:
|
|
return usr_model.GenderUnspecified
|
|
}
|
|
}
|
|
|
|
func mfaTypeFromModel(mfatype usr_model.MfaType) management.MfaType {
|
|
switch mfatype {
|
|
case usr_model.MfaTypeOTP:
|
|
return management.MfaType_MFATYPE_OTP
|
|
case usr_model.MfaTypeSMS:
|
|
return management.MfaType_MFATYPE_SMS
|
|
default:
|
|
return management.MfaType_MFATYPE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func mfaStateFromModel(state usr_model.MfaState) management.MFAState {
|
|
switch state {
|
|
case usr_model.MfaStateReady:
|
|
return management.MFAState_MFASTATE_READY
|
|
case usr_model.MfaStateNotReady:
|
|
return management.MFAState_MFASTATE_NOT_READY
|
|
default:
|
|
return management.MFAState_MFASTATE_UNSPECIFIED
|
|
}
|
|
}
|
|
|
|
func userChangesToResponse(response *usr_model.UserChanges, offset uint64, limit uint64) (_ *management.Changes) {
|
|
return &management.Changes{
|
|
Limit: limit,
|
|
Offset: offset,
|
|
Changes: userChangesToMgtAPI(response),
|
|
}
|
|
}
|
|
|
|
func userChangesToMgtAPI(changes *usr_model.UserChanges) (_ []*management.Change) {
|
|
result := make([]*management.Change, len(changes.Changes))
|
|
|
|
for i, change := range changes.Changes {
|
|
var data *structpb.Struct
|
|
changedData, err := json.Marshal(change.Data)
|
|
if err == nil {
|
|
data = new(structpb.Struct)
|
|
err = protojson.Unmarshal(changedData, data)
|
|
logging.Log("GRPC-a7F54").OnError(err).Debug("unable to marshal changed data to struct")
|
|
}
|
|
|
|
result[i] = &management.Change{
|
|
ChangeDate: change.ChangeDate,
|
|
EventType: message.NewLocalizedEventType(change.EventType),
|
|
Sequence: change.Sequence,
|
|
Data: data,
|
|
EditorId: change.ModifierID,
|
|
Editor: change.ModifierName,
|
|
}
|
|
}
|
|
|
|
return result
|
|
}
|