mirror of
https://github.com/zitadel/zitadel.git
synced 2024-12-13 11:34:26 +00:00
a321d850ae
* fix logging * token verification * feat: assert roles * feat: add project role assertion on project and token type on app * id and access token role assertion * add project role check * user grant required step in login * update library * fix merge * fix merge * fix merge * update oidc library * fix tests * add tests for GrantRequiredStep * add missing field ProjectRoleCheck on project view model * fix project create * fix project create
69 lines
2.4 KiB
Go
69 lines
2.4 KiB
Go
package view
|
|
|
|
import (
|
|
proj_model "github.com/caos/zitadel/internal/project/model"
|
|
"github.com/caos/zitadel/internal/project/repository/view"
|
|
"github.com/caos/zitadel/internal/project/repository/view/model"
|
|
"github.com/caos/zitadel/internal/view/repository"
|
|
)
|
|
|
|
const (
|
|
projectRoleTable = "auth.project_roles"
|
|
)
|
|
|
|
func (v *View) ProjectRoleByIDs(projectID, orgID, key string) (*model.ProjectRoleView, error) {
|
|
return view.ProjectRoleByIDs(v.Db, projectRoleTable, projectID, orgID, key)
|
|
}
|
|
|
|
func (v *View) ProjectRolesByProjectID(projectID string) ([]*model.ProjectRoleView, error) {
|
|
return view.ProjectRolesByProjectID(v.Db, projectRoleTable, projectID)
|
|
}
|
|
|
|
func (v *View) ResourceOwnerProjectRolesByKey(projectID, resourceowner, key string) ([]*model.ProjectRoleView, error) {
|
|
return view.ResourceOwnerProjectRolesByKey(v.Db, projectRoleTable, projectID, resourceowner, key)
|
|
}
|
|
|
|
func (v *View) ResourceOwnerProjectRoles(projectID, resourceowner string) ([]*model.ProjectRoleView, error) {
|
|
return view.ResourceOwnerProjectRoles(v.Db, projectRoleTable, projectID, resourceowner)
|
|
}
|
|
|
|
func (v *View) SearchProjectRoles(request *proj_model.ProjectRoleSearchRequest) ([]*model.ProjectRoleView, uint64, error) {
|
|
return view.SearchProjectRoles(v.Db, projectRoleTable, request)
|
|
}
|
|
|
|
func (v *View) PutProjectRole(project *model.ProjectRoleView) error {
|
|
err := view.PutProjectRole(v.Db, projectRoleTable, project)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
return v.ProcessedProjectRoleSequence(project.Sequence)
|
|
}
|
|
|
|
func (v *View) DeleteProjectRole(projectID, orgID, key string, eventSequence uint64) error {
|
|
err := view.DeleteProjectRole(v.Db, projectRoleTable, projectID, orgID, key)
|
|
if err != nil {
|
|
return nil
|
|
}
|
|
return v.ProcessedProjectRoleSequence(eventSequence)
|
|
}
|
|
|
|
func (v *View) DeleteProjectRolesByProjectID(projectID string) error {
|
|
return view.DeleteProjectRolesByProjectID(v.Db, projectRoleTable, projectID)
|
|
}
|
|
|
|
func (v *View) GetLatestProjectRoleSequence() (*repository.CurrentSequence, error) {
|
|
return v.latestSequence(projectRoleTable)
|
|
}
|
|
|
|
func (v *View) ProcessedProjectRoleSequence(eventSequence uint64) error {
|
|
return v.saveCurrentSequence(projectRoleTable, eventSequence)
|
|
}
|
|
|
|
func (v *View) GetLatestProjectRoleFailedEvent(sequence uint64) (*repository.FailedEvent, error) {
|
|
return v.latestFailedEvent(projectRoleTable, sequence)
|
|
}
|
|
|
|
func (v *View) ProcessedProjectRoleFailedEvent(failedEvent *repository.FailedEvent) error {
|
|
return v.saveFailedEvent(failedEvent)
|
|
}
|