feat: add roles, activation, superuser fields on user (#38)

2022-10-09 09:44:13 -08:00 · 2022-10-09 09:44:13 -08:00 · 0c90b05dca
commit 0c90b05dca
parent a6d2fd45df
17 changed files with 705 additions and 12 deletions
--- a/backend/internal/migrations/migrations/20221009173029_add_user_roles.sql
+++ b/backend/internal/migrations/migrations/20221009173029_add_user_roles.sql
@ -0,0 +1,14 @@
+-- disable the enforcement of foreign-keys constraints
+PRAGMA foreign_keys = off;
+-- create "new_users" table
+CREATE TABLE `new_users` (`id` uuid NOT NULL, `created_at` datetime NOT NULL, `updated_at` datetime NOT NULL, `name` text NOT NULL, `email` text NOT NULL, `password` text NOT NULL, `is_superuser` bool NOT NULL DEFAULT false, `role` text NOT NULL DEFAULT 'user', `superuser` bool NOT NULL DEFAULT false, `activated_on` datetime NULL, `group_users` uuid NOT NULL, PRIMARY KEY (`id`), CONSTRAINT `users_groups_users` FOREIGN KEY (`group_users`) REFERENCES `groups` (`id`) ON DELETE CASCADE);
+-- copy rows from old table "users" to new temporary table "new_users"
+INSERT INTO `new_users` (`id`, `created_at`, `updated_at`, `name`, `email`, `password`, `is_superuser`, `group_users`) SELECT `id`, `created_at`, `updated_at`, `name`, `email`, `password`, `is_superuser`, `group_users` FROM `users`;
+-- drop "users" table after copying rows
+DROP TABLE `users`;
+-- rename temporary table "new_users" to "users"
+ALTER TABLE `new_users` RENAME TO `users`;
+-- create index "users_email_key" to table: "users"
+CREATE UNIQUE INDEX `users_email_key` ON `users` (`email`);
+-- enable back the enforcement of foreign-keys constraints
+PRAGMA foreign_keys = on;
--- a/backend/internal/migrations/migrations/atlas.sum
+++ b/backend/internal/migrations/migrations/atlas.sum
@ -1,3 +1,4 @@
-h1:JE1IHs4N6SqydqXavjqcO40KuPMZ4uA9q9eQmqeYI/o=
+h1:nN8ZUHScToap+2yJKsb+AnKu8o2DubUoiKc9neQJ93M=
 20220929052825_init.sql h1:ZlCqm1wzjDmofeAcSX3jE4h4VcdTNGpRg2eabztDy9Q=
 20221001210956_group_invitations.sql h1:YQKJFtE39wFOcRNbZQ/d+ZlHwrcfcsZlcv/pLEYdpjw=
+20221009173029_add_user_roles.sql h1:vWmzAfgEWQeGk0Vn70zfVPCcfEZth3E0JcvyKTjpYyU=
--- a/backend/internal/repo/repo_users.go
+++ b/backend/internal/repo/repo_users.go
@ -22,6 +22,7 @@ type (
 		Password    string    `json:"password"`
 		IsSuperuser bool      `json:"isSuperuser"`
 		GroupID     uuid.UUID `json:"groupID"`
+		IsOwner     bool      `json:"isOwner"`
 	}

 	UserUpdate struct {
@ -37,6 +38,7 @@ type (
 		GroupID      uuid.UUID `json:"groupId"`
 		GroupName    string    `json:"groupName"`
 		PasswordHash string    `json:"-"`
+		IsOwner      bool      `json:"isOwner"`
 	}
 )

@ -54,6 +56,7 @@ func mapUserOut(user *ent.User) UserOut {
 		GroupID:      user.Edges.Group.ID,
 		GroupName:    user.Edges.Group.Name,
 		PasswordHash: user.Password,
+		IsOwner:      user.Role == "owner",
 	}
 }

@ -77,6 +80,11 @@ func (e *UserRepository) GetAll(ctx context.Context) ([]UserOut, error) {
 }

 func (e *UserRepository) Create(ctx context.Context, usr UserCreate) (UserOut, error) {
+	role := user.RoleUser
+	if usr.IsOwner {
+		role = user.RoleOwner
+	}
+
 	entUser, err := e.db.User.
 		Create().
 		SetName(usr.Name).
@ -84,6 +92,7 @@ func (e *UserRepository) Create(ctx context.Context, usr UserCreate) (UserOut, e
 		SetPassword(usr.Password).
 		SetIsSuperuser(usr.IsSuperuser).
 		SetGroupID(usr.GroupID).
+		SetRole(role).
 		Save(ctx)
 	if err != nil {
 		return UserOut{}, err
--- a/backend/internal/services/service_user.go
+++ b/backend/internal/services/service_user.go
@ -49,18 +49,21 @@ func (svc *UserService) RegisterUser(ctx context.Context, data UserRegistration)
 		Msg("Registering new user")

 	var (
-		err   error
-		group repo.Group
-		token repo.GroupInvitation
+		err     error
+		group   repo.Group
+		token   repo.GroupInvitation
+		isOwner = false
 	)

-	if data.GroupToken == "" {
+	switch data.GroupToken {
+	case "":
+		isOwner = true
 		group, err = svc.repos.Groups.GroupCreate(ctx, "Home")
 		if err != nil {
 			log.Err(err).Msg("Failed to create group")
 			return repo.UserOut{}, err
 		}
-	} else {
+	default:
 		token, err = svc.repos.Groups.InvitationGet(ctx, hasher.HashToken(data.GroupToken))
 		if err != nil {
 			log.Err(err).Msg("Failed to get invitation token")
@ -76,6 +79,7 @@ func (svc *UserService) RegisterUser(ctx context.Context, data UserRegistration)
 		Password:    hashed,
 		IsSuperuser: false,
 		GroupID:     group.ID,
+		IsOwner:     isOwner,
 	}

 	usr, err := svc.repos.Users.Create(ctx, usrCreate)