flotte-user-management/src/database/roles.rs

use crate::database::models::Role;
use crate::database::role_permissions::RolePermissions;
use crate::database::{DatabaseResult, PostgresPool, Table};
use crate::utils::error::DBError;

#[derive(Clone)]
pub struct Roles {
    pool: PostgresPool,
    role_permission: RolePermissions,
}

impl Table for Roles {
    fn new(pool: PostgresPool) -> Self {
        Self {
            role_permission: RolePermissions::new(PostgresPool::clone(&pool)),
            pool,
        }
    }

    fn init(&self) -> DatabaseResult<()> {
        self.pool
            .get()?
            .batch_execute(
                "
            CREATE TABLE IF NOT EXISTS roles (
            id              SERIAL PRIMARY KEY,
            name            VARCHAR(128) UNIQUE NOT NULL,
            description     VARCHAR(512)
        );",
            )
            .map_err(DBError::from)
    }
}

impl Roles {
    pub fn create_role(
        &self,
        name: String,
        description: Option<String>,
        permissions: Vec<i32>,
    ) -> DatabaseResult<Role> {
        let mut connection = self.pool.get()?;
        let exists = connection.query_opt("SELECT id FROM roles WHERE name = $1", &[&name])?;

        if exists.is_some() {
            return Err(DBError::RecordExists);
        }
        log::trace!("Preparing transaction");
        let mut transaction = connection.transaction()?;
        let result: DatabaseResult<Role> = {
            let row = transaction.query_one(
                "INSERT INTO roles (name, description) VALUES ($1, $2) RETURNING *",
                &[&name, &description],
            )?;
            let role: Role = serde_postgres::from_row(&row)?;
            for permission in permissions {
                transaction.execute(
                    "INSERT INTO role_permissions (role_id, permission_id) VALUES ($1, $2);",
                    &[&role.id, &permission],
                )?;
            }
            if let Err(e) = transaction.execute(
                "INSERT INTO user_roles (user_id, role_id) VALUES ($1, $2)",
                &[&1, &role.id],
            ) {
                log::debug!("Failed to add role to admin user: {}", e);
            }

            Ok(role)
        };
        match result {
            Err(e) => {
                log::warn!("Failed to create role {}: {}", name, e);
                log::trace!("Rolling back...");
                transaction.rollback()?;
                log::trace!("Rolled back!");
                Err(e)
            }
            Ok(role) => {
                log::debug!("Successfully created role {} with id {}", name, role.id);
                log::trace!("Committing...");
                transaction.commit()?;
                log::trace!("Committed!");

                Ok(role)
            }
        }
    }
}
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`use crate::database::models::Role;`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`use crate::database::role_permissions::RolePermissions;`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`use crate::database::{DatabaseResult, PostgresPool, Table};`
Add getRoles method and return ttl for tokens Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`use crate::utils::error::DBError;`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago
			`#[derive(Clone)]`
			`pub struct Roles {`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`pool: PostgresPool,`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`role_permission: RolePermissions,`
			`}`

Add function to create a user Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`impl Table for Roles {`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`fn new(pool: PostgresPool) -> Self {`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`Self {`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`role_permission: RolePermissions::new(PostgresPool::clone(&pool)),`
			`pool,`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`}`
			`}`

Add redis connection to all models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`fn init(&self) -> DatabaseResult<()> {`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`self.pool`
			`.get()?`
Add redis connection to all models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`.batch_execute(`
			`"`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`CREATE TABLE IF NOT EXISTS roles (`
			`id SERIAL PRIMARY KEY,`
			`name VARCHAR(128) UNIQUE NOT NULL,`
			`description VARCHAR(512)`
			`);",`
Add redis connection to all models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`)`
Add getRoles method and return ttl for tokens Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`.map_err(DBError::from)`
Add data models Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`}`
			`}`
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago
			`impl Roles {`
			`pub fn create_role(`
			`&self,`
			`name: String,`
			`description: Option<String>,`
			`permissions: Vec<i32>,`
			`) -> DatabaseResult<Role> {`
Switch to pooled postgres client Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`let mut connection = self.pool.get()?;`
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`let exists = connection.query_opt("SELECT id FROM roles WHERE name = $1", &[&name])?;`

			`if exists.is_some() {`
			`return Err(DBError::RecordExists);`
			`}`
			`log::trace!("Preparing transaction");`
			`let mut transaction = connection.transaction()?;`
			`let result: DatabaseResult<Role> = {`
			`let row = transaction.query_one(`
			`"INSERT INTO roles (name, description) VALUES ($1, $2) RETURNING *",`
			`&[&name, &description],`
			`)?;`
			`let role: Role = serde_postgres::from_row(&row)?;`
			`for permission in permissions {`
			`transaction.execute(`
			`"INSERT INTO role_permissions (role_id, permission_id) VALUES ($1, $2);",`
			`&[&role.id, &permission],`
			`)?;`
			`}`
Change permission creation to return permissions even if they exist Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`if let Err(e) = transaction.execute(`
			`"INSERT INTO user_roles (user_id, role_id) VALUES ($1, $2)",`
			`&[&1, &role.id],`
			`) {`
			`log::debug!("Failed to add role to admin user: {}", e);`
			`}`
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago
			`Ok(role)`
			`};`
Change permission creation to return permissions even if they exist Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`match result {`
			`Err(e) => {`
			`log::warn!("Failed to create role {}: {}", name, e);`
			`log::trace!("Rolling back...");`
			`transaction.rollback()?;`
			`log::trace!("Rolled back!");`
			`Err(e)`
			`}`
			`Ok(role) => {`
			`log::debug!("Successfully created role {} with id {}", name, role.id);`
			`log::trace!("Committing...");`
			`transaction.commit()?;`
			`log::trace!("Committed!");`
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago
Change permission creation to return permissions even if they exist Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`Ok(role)`
			`}`
			`}`
Add method to create roles Signed-off-by: trivernis <trivernis@protonmail.com> 4 years ago			`}`
			`}`