TheArchive/zitadel
1
0
Fork 0
mirror of https://github.com/zitadel/zitadel.git synced 2024-12-12 11:04:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
d33a4fbb2f
zitadel/internal/query/projection/password_age_policy.go
Silvan f3e6f3b23b
feat: remove org (#4148) 
* feat(command): remove org

* refactor: imports, unused code, error handling

* reduce org removed in action

* add org deletion to projections

* add org removal to projections

* add org removal to projections

* org removed projection

* lint import

* projections

* fix: table names in tests

* fix: table names in tests

* logging

* add org state

* fix(domain): add Owner removed to object details

* feat(ListQuery): add with owner removed

* fix(org-delete): add bool to functions to select with owner removed

* fix(org-delete): add bools to user grants with events to determine if dependencies lost owner

* fix(org-delete): add unit tests for owner removed and org removed events

* fix(org-delete): add handling of org remove for grants and members

* fix(org-delete): correction of unit tests for owner removed

* fix(org-delete): update projections, unit tests and get functions

* fix(org-delete): add change date to authnkeys and owner removed to org metadata

* fix(org-delete): include owner removed for login names

* fix(org-delete): some column fixes in projections and build for queries with owner removed

* indexes

* fix(org-delete): include review changes

* fix(org-delete): change user projection name after merge

* fix(org-delete): include review changes for project grant where no project owner is necessary

* fix(org-delete): include auth and adminapi tables with owner removed information

* fix(org-delete): cleanup username and orgdomain uniqueconstraints when org is removed

* fix(org-delete): add permissions for org.remove

* remove unnecessary unique constraints

* fix column order in primary keys

* fix(org-delete): include review changes

* fix(org-delete): add owner removed indexes and chang setup step to create tables

* fix(org-delete): move PK order of instance_id and change added user_grant from review

* fix(org-delete): no params for prepareUserQuery

* change to step 6

* merge main

* fix(org-delete): OldUserName rename to private

* fix linting

* cleanup

* fix: remove org test

* create prerelease

* chore: delete org-delete as prerelease

Co-authored-by: Stefan Benz <stefan@caos.ch>
Co-authored-by: Livio Spring <livio.a@gmail.com>
Co-authored-by: Fabi <38692350+hifabienne@users.noreply.github.com>
Co-authored-by: Stefan Benz <46600784+stebenz@users.noreply.github.com>
2022-11-30 17:01:17 +01:00

195 lines
7.0 KiB
Go
Raw Blame History

package projection
import (
"context"
"github.com/zitadel/zitadel/internal/domain"
"github.com/zitadel/zitadel/internal/errors"
"github.com/zitadel/zitadel/internal/eventstore"
"github.com/zitadel/zitadel/internal/eventstore/handler"
"github.com/zitadel/zitadel/internal/eventstore/handler/crdb"
"github.com/zitadel/zitadel/internal/repository/instance"
"github.com/zitadel/zitadel/internal/repository/org"
"github.com/zitadel/zitadel/internal/repository/policy"
)
const (
PasswordAgeTable = "projections.password_age_policies2"
AgePolicyIDCol = "id"
AgePolicyCreationDateCol = "creation_date"
AgePolicyChangeDateCol = "change_date"
AgePolicySequenceCol = "sequence"
AgePolicyStateCol = "state"
AgePolicyIsDefaultCol = "is_default"
AgePolicyResourceOwnerCol = "resource_owner"
AgePolicyInstanceIDCol = "instance_id"
AgePolicyExpireWarnDaysCol = "expire_warn_days"
AgePolicyMaxAgeDaysCol = "max_age_days"
AgePolicyOwnerRemovedCol = "owner_removed"
)
type passwordAgeProjection struct {
crdb.StatementHandler
}
func newPasswordAgeProjection(ctx context.Context, config crdb.StatementHandlerConfig) *passwordAgeProjection {
p := new(passwordAgeProjection)
config.ProjectionName = PasswordAgeTable
config.Reducers = p.reducers()
config.InitCheck = crdb.NewTableCheck(
crdb.NewTable([]*crdb.Column{
crdb.NewColumn(AgePolicyIDCol, crdb.ColumnTypeText),
crdb.NewColumn(AgePolicyCreationDateCol, crdb.ColumnTypeTimestamp),
crdb.NewColumn(AgePolicyChangeDateCol, crdb.ColumnTypeTimestamp),
crdb.NewColumn(AgePolicySequenceCol, crdb.ColumnTypeInt64),
crdb.NewColumn(AgePolicyStateCol, crdb.ColumnTypeEnum),
crdb.NewColumn(AgePolicyIsDefaultCol, crdb.ColumnTypeBool, crdb.Default(false)),
crdb.NewColumn(AgePolicyResourceOwnerCol, crdb.ColumnTypeText),
crdb.NewColumn(AgePolicyInstanceIDCol, crdb.ColumnTypeText),
crdb.NewColumn(AgePolicyExpireWarnDaysCol, crdb.ColumnTypeInt64),
crdb.NewColumn(AgePolicyMaxAgeDaysCol, crdb.ColumnTypeInt64),
crdb.NewColumn(AgePolicyOwnerRemovedCol, crdb.ColumnTypeBool, crdb.Default(false)),
},
crdb.NewPrimaryKey(AgePolicyInstanceIDCol, AgePolicyIDCol),
crdb.WithIndex(crdb.NewIndex("owner_removed", []string{AgePolicyOwnerRemovedCol})),
),
)
p.StatementHandler = crdb.NewStatementHandler(ctx, config)
return p
}
func (p *passwordAgeProjection) reducers() []handler.AggregateReducer {
return []handler.AggregateReducer{
{
Aggregate: org.AggregateType,
EventRedusers: []handler.EventReducer{
{
Event: org.PasswordAgePolicyAddedEventType,
Reduce: p.reduceAdded,
},
{
Event: org.PasswordAgePolicyChangedEventType,
Reduce: p.reduceChanged,
},
{
Event: org.PasswordAgePolicyRemovedEventType,
Reduce: p.reduceRemoved,
},
{
Event: org.OrgRemovedEventType,
Reduce: p.reduceOwnerRemoved,
},
},
},
{
Aggregate: instance.AggregateType,
EventRedusers: []handler.EventReducer{
{
Event: instance.PasswordAgePolicyAddedEventType,
Reduce: p.reduceAdded,
},
{
Event: instance.PasswordAgePolicyChangedEventType,
Reduce: p.reduceChanged,
},
{
Event: instance.InstanceRemovedEventType,
Reduce: reduceInstanceRemovedHelper(AgePolicyInstanceIDCol),
},
},
},
}
}
func (p *passwordAgeProjection) reduceAdded(event eventstore.Event) (*handler.Statement, error) {
var policyEvent policy.PasswordAgePolicyAddedEvent
var isDefault bool
switch e := event.(type) {
case *org.PasswordAgePolicyAddedEvent:
policyEvent = e.PasswordAgePolicyAddedEvent
isDefault = false
case *instance.PasswordAgePolicyAddedEvent:
policyEvent = e.PasswordAgePolicyAddedEvent
isDefault = true
default:
return nil, errors.ThrowInvalidArgumentf(nil, "PROJE-CJqF0", "reduce.wrong.event.type %v", []eventstore.EventType{org.PasswordAgePolicyAddedEventType, instance.PasswordAgePolicyAddedEventType})
}
return crdb.NewCreateStatement(
&policyEvent,
[]handler.Column{
handler.NewCol(AgePolicyCreationDateCol, policyEvent.CreationDate()),
handler.NewCol(AgePolicyChangeDateCol, policyEvent.CreationDate()),
handler.NewCol(AgePolicySequenceCol, policyEvent.Sequence()),
handler.NewCol(AgePolicyIDCol, policyEvent.Aggregate().ID),
handler.NewCol(AgePolicyStateCol, domain.PolicyStateActive),
handler.NewCol(AgePolicyExpireWarnDaysCol, policyEvent.ExpireWarnDays),
handler.NewCol(AgePolicyMaxAgeDaysCol, policyEvent.MaxAgeDays),
handler.NewCol(AgePolicyIsDefaultCol, isDefault),
handler.NewCol(AgePolicyResourceOwnerCol, policyEvent.Aggregate().ResourceOwner),
handler.NewCol(AgePolicyInstanceIDCol, policyEvent.Aggregate().InstanceID),
}), nil
}
func (p *passwordAgeProjection) reduceChanged(event eventstore.Event) (*handler.Statement, error) {
var policyEvent policy.PasswordAgePolicyChangedEvent
switch e := event.(type) {
case *org.PasswordAgePolicyChangedEvent:
policyEvent = e.PasswordAgePolicyChangedEvent
case *instance.PasswordAgePolicyChangedEvent:
policyEvent = e.PasswordAgePolicyChangedEvent
default:
return nil, errors.ThrowInvalidArgumentf(nil, "PROJE-i7FZt", "reduce.wrong.event.type %v", []eventstore.EventType{org.PasswordAgePolicyChangedEventType, instance.PasswordAgePolicyChangedEventType})
}
cols := []handler.Column{
handler.NewCol(AgePolicyChangeDateCol, policyEvent.CreationDate()),
handler.NewCol(AgePolicySequenceCol, policyEvent.Sequence()),
}
if policyEvent.ExpireWarnDays != nil {
cols = append(cols, handler.NewCol(AgePolicyExpireWarnDaysCol, *policyEvent.ExpireWarnDays))
}
if policyEvent.MaxAgeDays != nil {
cols = append(cols, handler.NewCol(AgePolicyMaxAgeDaysCol, *policyEvent.MaxAgeDays))
}
return crdb.NewUpdateStatement(
&policyEvent,
cols,
[]handler.Condition{
handler.NewCond(AgePolicyIDCol, policyEvent.Aggregate().ID),
handler.NewCond(AgePolicyInstanceIDCol, policyEvent.Aggregate().InstanceID),
}), nil
}
func (p *passwordAgeProjection) reduceRemoved(event eventstore.Event) (*handler.Statement, error) {
policyEvent, ok := event.(*org.PasswordAgePolicyRemovedEvent)
if !ok {
return nil, errors.ThrowInvalidArgumentf(nil, "PROJE-EtHWB", "reduce.wrong.event.type %s", org.PasswordAgePolicyRemovedEventType)
}
return crdb.NewDeleteStatement(
policyEvent,
[]handler.Condition{
handler.NewCond(AgePolicyIDCol, policyEvent.Aggregate().ID),
handler.NewCond(AgePolicyInstanceIDCol, policyEvent.Aggregate().InstanceID),
}), nil
}
func (p *passwordAgeProjection) reduceOwnerRemoved(event eventstore.Event) (*handler.Statement, error) {
e, ok := event.(*org.OrgRemovedEvent)
if !ok {
return nil, errors.ThrowInvalidArgumentf(nil, "PROJE-edLs2", "reduce.wrong.event.type %s", org.OrgRemovedEventType)
}
return crdb.NewUpdateStatement(
e,
[]handler.Column{
handler.NewCol(AgePolicyChangeDateCol, e.CreationDate()),
handler.NewCol(AgePolicySequenceCol, e.Sequence()),
handler.NewCol(AgePolicyOwnerRemovedCol, true),
},
[]handler.Condition{
handler.NewCond(AgePolicyInstanceIDCol, e.Aggregate().InstanceID),
handler.NewCond(AgePolicyResourceOwnerCol, e.Aggregate().ID),
},
), nil
}
Reference in New Issue View Git Blame Copy Permalink