mirror of
https://github.com/absmach/supermq.git
synced 2026-06-23 07:40:17 +00:00
Nataly Musilah
87c390da4c
Signed-off-by: Musilah <nataleigh.nk@gmail.com> Signed-off-by: Felix Gateru <felix.gateru@gmail.com> Co-authored-by: Felix Gateru <felix.gateru@gmail.com>
210 lines
6.4 KiB
Go
210 lines
6.4 KiB
Go
// Copyright (c) Abstract Machines
|
|
// SPDX-License-Identifier: Apache-2.0
|
|
|
|
package auth
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"strings"
|
|
"time"
|
|
|
|
svcerr "github.com/absmach/magistrala/pkg/errors/service"
|
|
"github.com/absmach/magistrala/pkg/policies"
|
|
)
|
|
|
|
// Status represents Domain status.
|
|
type Status uint8
|
|
|
|
// Possible Domain status values.
|
|
const (
|
|
// EnabledStatus represents enabled Domain.
|
|
EnabledStatus Status = iota
|
|
// DisabledStatus represents disabled Domain.
|
|
DisabledStatus
|
|
// FreezeStatus represents domain is in freezed state.
|
|
FreezeStatus
|
|
|
|
// AllStatus is used for querying purposes to list Domains irrespective
|
|
// of their status - enabled, disabled, freezed, deleting. It is never stored in the
|
|
// database as the actual domain status and should always be the larger than freeze status
|
|
// value in this enumeration.
|
|
AllStatus
|
|
)
|
|
|
|
// String representation of the possible status values.
|
|
const (
|
|
Disabled = "disabled"
|
|
Enabled = "enabled"
|
|
Freezed = "freezed"
|
|
All = "all"
|
|
Unknown = "unknown"
|
|
)
|
|
|
|
// String converts client/group status to string literal.
|
|
func (s Status) String() string {
|
|
switch s {
|
|
case DisabledStatus:
|
|
return Disabled
|
|
case EnabledStatus:
|
|
return Enabled
|
|
case AllStatus:
|
|
return All
|
|
case FreezeStatus:
|
|
return Freezed
|
|
default:
|
|
return Unknown
|
|
}
|
|
}
|
|
|
|
// ToStatus converts string value to a valid Domain status.
|
|
func ToStatus(status string) (Status, error) {
|
|
switch status {
|
|
case "", Enabled:
|
|
return EnabledStatus, nil
|
|
case Disabled:
|
|
return DisabledStatus, nil
|
|
case Freezed:
|
|
return FreezeStatus, nil
|
|
case All:
|
|
return AllStatus, nil
|
|
}
|
|
return Status(0), svcerr.ErrInvalidStatus
|
|
}
|
|
|
|
// Custom Marshaller for Domains status.
|
|
func (s Status) MarshalJSON() ([]byte, error) {
|
|
return json.Marshal(s.String())
|
|
}
|
|
|
|
// Custom Unmarshaler for Domains status.
|
|
func (s *Status) UnmarshalJSON(data []byte) error {
|
|
str := strings.Trim(string(data), "\"")
|
|
val, err := ToStatus(str)
|
|
*s = val
|
|
return err
|
|
}
|
|
|
|
type DomainReq struct {
|
|
Name *string `json:"name,omitempty"`
|
|
Metadata *Metadata `json:"metadata,omitempty"`
|
|
Tags *[]string `json:"tags,omitempty"`
|
|
Alias *string `json:"alias,omitempty"`
|
|
Status *Status `json:"status,omitempty"`
|
|
}
|
|
type Domain struct {
|
|
ID string `json:"id"`
|
|
Name string `json:"name"`
|
|
Metadata Metadata `json:"metadata,omitempty"`
|
|
Tags []string `json:"tags,omitempty"`
|
|
Alias string `json:"alias,omitempty"`
|
|
Status Status `json:"status"`
|
|
Permission string `json:"permission,omitempty"`
|
|
CreatedBy string `json:"created_by,omitempty"`
|
|
CreatedAt time.Time `json:"created_at"`
|
|
UpdatedBy string `json:"updated_by,omitempty"`
|
|
UpdatedAt time.Time `json:"updated_at,omitempty"`
|
|
}
|
|
|
|
// Metadata represents arbitrary JSON.
|
|
type Metadata map[string]interface{}
|
|
|
|
type Page struct {
|
|
Total uint64 `json:"total"`
|
|
Offset uint64 `json:"offset"`
|
|
Limit uint64 `json:"limit"`
|
|
Name string `json:"name,omitempty"`
|
|
Order string `json:"-"`
|
|
Dir string `json:"-"`
|
|
Metadata Metadata `json:"metadata,omitempty"`
|
|
Tag string `json:"tag,omitempty"`
|
|
Permission string `json:"permission,omitempty"`
|
|
Status Status `json:"status,omitempty"`
|
|
ID string `json:"id,omitempty"`
|
|
IDs []string `json:"-"`
|
|
Identity string `json:"identity,omitempty"`
|
|
SubjectID string `json:"-"`
|
|
}
|
|
|
|
type DomainsPage struct {
|
|
Total uint64 `json:"total"`
|
|
Offset uint64 `json:"offset"`
|
|
Limit uint64 `json:"limit"`
|
|
Domains []Domain `json:"domains"`
|
|
}
|
|
|
|
func (page DomainsPage) MarshalJSON() ([]byte, error) {
|
|
type Alias DomainsPage
|
|
a := struct {
|
|
Alias
|
|
}{
|
|
Alias: Alias(page),
|
|
}
|
|
|
|
if a.Domains == nil {
|
|
a.Domains = make([]Domain, 0)
|
|
}
|
|
|
|
return json.Marshal(a)
|
|
}
|
|
|
|
type Policy struct {
|
|
SubjectType string `json:"subject_type,omitempty"`
|
|
SubjectID string `json:"subject_id,omitempty"`
|
|
SubjectRelation string `json:"subject_relation,omitempty"`
|
|
Relation string `json:"relation,omitempty"`
|
|
ObjectType string `json:"object_type,omitempty"`
|
|
ObjectID string `json:"object_id,omitempty"`
|
|
}
|
|
|
|
type Domains interface {
|
|
CreateDomain(ctx context.Context, token string, d Domain) (Domain, error)
|
|
RetrieveDomain(ctx context.Context, token string, id string) (Domain, error)
|
|
RetrieveDomainPermissions(ctx context.Context, token string, id string) (policies.Permissions, error)
|
|
UpdateDomain(ctx context.Context, token string, id string, d DomainReq) (Domain, error)
|
|
ChangeDomainStatus(ctx context.Context, token string, id string, d DomainReq) (Domain, error)
|
|
ListDomains(ctx context.Context, token string, page Page) (DomainsPage, error)
|
|
AssignUsers(ctx context.Context, token string, id string, userIds []string, relation string) error
|
|
UnassignUser(ctx context.Context, token string, id string, userID string) error
|
|
ListUserDomains(ctx context.Context, token string, userID string, page Page) (DomainsPage, error)
|
|
DeleteUserFromDomains(ctx context.Context, id string) error
|
|
}
|
|
|
|
// DomainsRepository specifies Domain persistence API.
|
|
//
|
|
//go:generate mockery --name DomainsRepository --output=./mocks --filename domains.go --quiet --note "Copyright (c) Abstract Machines"
|
|
type DomainsRepository interface {
|
|
// Save creates db insert transaction for the given domain.
|
|
Save(ctx context.Context, d Domain) (Domain, error)
|
|
|
|
// RetrieveByID retrieves Domain by its unique ID.
|
|
RetrieveByID(ctx context.Context, id string) (Domain, error)
|
|
|
|
// RetrievePermissions retrieves domain permissions.
|
|
RetrievePermissions(ctx context.Context, subject, id string) ([]string, error)
|
|
|
|
// RetrieveAllByIDs retrieves for given Domain IDs.
|
|
RetrieveAllByIDs(ctx context.Context, pm Page) (DomainsPage, error)
|
|
|
|
// Update updates the client name and metadata.
|
|
Update(ctx context.Context, id string, userID string, d DomainReq) (Domain, error)
|
|
|
|
// Delete
|
|
Delete(ctx context.Context, id string) error
|
|
|
|
// SavePolicies save policies in domains database
|
|
SavePolicies(ctx context.Context, pcs ...Policy) error
|
|
|
|
// DeletePolicies delete policies from domains database
|
|
DeletePolicies(ctx context.Context, pcs ...Policy) error
|
|
|
|
// ListDomains list all the domains
|
|
ListDomains(ctx context.Context, pm Page) (DomainsPage, error)
|
|
|
|
// CheckPolicy check policies in domains database.
|
|
CheckPolicy(ctx context.Context, pc Policy) error
|
|
|
|
// DeleteUserPolicies deletes user policies from domains database.
|
|
DeleteUserPolicies(ctx context.Context, id string) (err error)
|
|
}
|