permissions: homepage, sql + crate, add/remove/view for user

2023-05-08 17:15:21 +02:00 · 2023-05-08 17:15:21 +02:00 · 440f42ed2e
commit 440f42ed2e
parent 8dbeffddc9
26 changed files with 880 additions and 1 deletions
--- a/crates/database/src/tables.rs
+++ b/crates/database/src/tables.rs
@ -1,6 +1,7 @@
 mod apps;
 mod authorization_codes;
 mod keys;
+mod permissions;
 mod refresh_tokens;
 mod roles;
 mod settings;
@ -10,6 +11,7 @@ mod users;
 pub use apps::Apps;
 pub use authorization_codes::AuthorizationCodes;
 pub use keys::Keys;
+pub use permissions::Permissions;
 pub use refresh_tokens::RefreshTokens;
 pub use roles::Roles;
 pub use settings::Settings;
--- a/crates/database/src/tables/permissions.rs
+++ b/crates/database/src/tables/permissions.rs
@ -0,0 +1,82 @@
+use crate::error::{handle_error, Error};
+use sqlx::sqlite::SqliteQueryResult;
+use sqlx::types::chrono::{DateTime, Utc};
+use sqlx::{FromRow, SqliteExecutor};
+
+#[derive(FromRow)]
+pub struct Permissions {
+    pub user: String,
+    pub role: String,
+    pub created_at: DateTime<Utc>,
+}
+
+impl Permissions {
+    pub async fn get_all(
+        conn: impl SqliteExecutor<'_>,
+        user: Option<&str>,
+        role: Option<&str>,
+    ) -> Result<Vec<Self>, Error> {
+        match (user, role) {
+            (Some(user), Some(role)) => {
+                // Get all for user and role
+                sqlx::query_file_as!(
+                    Self,
+                    "queries/permissions/get_all_user_role.sql",
+                    user,
+                    role
+                )
+                .fetch_all(conn)
+                .await
+                .map_err(handle_error)
+            }
+            (Some(user), None) => {
+                // Get all for user
+                sqlx::query_file_as!(Self, "queries/permissions/get_all_user.sql", user)
+                    .fetch_all(conn)
+                    .await
+                    .map_err(handle_error)
+            }
+            (None, Some(role)) => {
+                // Get all for role
+                sqlx::query_file_as!(Self, "queries/permissions/get_all_role.sql", role)
+                    .fetch_all(conn)
+                    .await
+                    .map_err(handle_error)
+            }
+            (None, None) => {
+                // Get all permissions
+                sqlx::query_file_as!(Self, "queries/permissions/get_all.sql")
+                    .fetch_all(conn)
+                    .await
+                    .map_err(handle_error)
+            }
+        }
+    }
+
+    pub async fn add(
+        conn: impl SqliteExecutor<'_>,
+        user: &str,
+        role: &str,
+    ) -> Result<Option<()>, Error> {
+        let query: SqliteQueryResult = sqlx::query_file!("queries/permissions/add.sql", user, role)
+            .execute(conn)
+            .await
+            .map_err(handle_error)?;
+
+        Ok((query.rows_affected() == 1).then_some(()))
+    }
+
+    pub async fn delete(
+        conn: impl SqliteExecutor<'_>,
+        user: &str,
+        role: &str,
+    ) -> Result<Option<()>, Error> {
+        let query: SqliteQueryResult =
+            sqlx::query_file!("queries/permissions/delete.sql", user, role)
+                .execute(conn)
+                .await
+                .map_err(handle_error)?;
+
+        Ok((query.rows_affected() == 1).then_some(()))
+    }
+}