Shifty/shifty-backend
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
shifty-backend/service/src/permission.rs
Simon Goller b4b926a8e4 Adjust shift plan based on authentication
2024-06-14 13:23:12 +02:00

165 lines
4.3 KiB
Rust
Raw Blame History

use std::fmt::Debug;
use std::sync::Arc;
use async_trait::async_trait;
use mockall::automock;
use crate::ServiceError;
pub const SALES_PRIVILEGE: &str = "sales";
pub const HR_PRIVILEGE: &str = "hr";
pub const SHIFTPLANNER_PRIVILEGE: &str = "shiftplanner";
/// For mocking the context locally since there is actually
/// no context.
#[derive(Clone, Debug, PartialEq, Eq)]
pub struct MockContext;
#[derive(Debug, PartialEq, Eq)]
pub struct User {
pub name: Arc<str>,
}
impl From<&dao::UserEntity> for User {
fn from(user: &dao::UserEntity) -> Self {
Self {
name: user.name.clone(),
}
}
}
#[derive(Debug, PartialEq, Eq)]
pub struct Role {
pub name: Arc<str>,
}
impl From<&dao::RoleEntity> for Role {
fn from(role: &dao::RoleEntity) -> Self {
Self {
name: role.name.clone(),
}
}
}
#[derive(Debug, PartialEq, Eq)]
pub struct Privilege {
pub name: Arc<str>,
}
impl From<&dao::PrivilegeEntity> for Privilege {
fn from(privilege: &dao::PrivilegeEntity) -> Self {
Self {
name: privilege.name.clone(),
}
}
}
#[derive(Clone, Debug, PartialEq, Eq)]
pub enum Authentication<Context: Clone + PartialEq + Eq + Send + Sync + Debug + 'static> {
Full,
Context(Context),
}
impl<Context: Clone + Debug + PartialEq + Eq + Send + Sync + 'static> From<Context>
for Authentication<Context>
{
fn from(context: Context) -> Self {
Self::Context(context)
}
}
#[automock(type Context=();)]
#[async_trait]
pub trait PermissionService {
type Context: Clone + PartialEq + Eq + Debug + Send + Sync + 'static;
async fn current_user_id(
&self,
context: Authentication<Self::Context>,
) -> Result<Option<Arc<str>>, ServiceError>;
async fn check_permission(
&self,
privilege: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn check_user(
&self,
user: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn get_privileges_for_current_user(
&self,
context: Authentication<Self::Context>,
) -> Result<Arc<[Privilege]>, ServiceError>;
async fn create_user(
&self,
user: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn user_exists(
&self,
user: &str,
context: Authentication<Self::Context>,
) -> Result<bool, ServiceError>;
async fn delete_user(
&self,
user: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn get_all_users(
&self,
context: Authentication<Self::Context>,
) -> Result<Arc<[User]>, ServiceError>;
async fn create_role(
&self,
role: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn delete_role(
&self,
role: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn get_all_roles(
&self,
context: Authentication<Self::Context>,
) -> Result<Arc<[Role]>, ServiceError>;
async fn create_privilege(
&self,
privilege: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn delete_privilege(
&self,
privilege: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn get_all_privileges(
&self,
context: Authentication<Self::Context>,
) -> Result<Arc<[Privilege]>, ServiceError>;
async fn add_user_role(
&self,
user: &str,
role: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn add_role_privilege(
&self,
role: &str,
privilege: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn delete_role_privilege(
&self,
role: &str,
privilege: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
async fn delete_user_role(
&self,
user: &str,
role: &str,
context: Authentication<Self::Context>,
) -> Result<(), ServiceError>;
}
Reference in a new issue View git blame Copy permalink