Passport/pkg/internal/grpc/auth.go

package grpc

import (
	"context"
	"git.solsynth.dev/hypernet/nexus/pkg/nex"

	"git.solsynth.dev/hydrogen/passport/pkg/internal/database"
	"git.solsynth.dev/hydrogen/passport/pkg/internal/models"
	"github.com/samber/lo"

	"git.solsynth.dev/hydrogen/passport/pkg/internal/services"
	jsoniter "github.com/json-iterator/go"

	"git.solsynth.dev/hypernet/nexus/pkg/proto"
)

type authenticateServer struct {
	proto.UnimplementedAuthServiceServer
}

func (v *Server) Authenticate(_ context.Context, in *proto.AuthRequest) (*proto.AuthReply, error) {
	ticket, perms, err := services.Authenticate(uint(in.GetSessionId()))
	if err != nil {
		return &proto.AuthReply{
			IsValid: false,
		}, nil
	} else {
		user := ticket.Account
		userinfo := &proto.UserInfo{
			Id:        uint64(user.ID),
			Name:      user.Name,
			PermNodes: nex.EncodeMap(perms),
			Metadata:  nex.EncodeMap(user),
		}

		return &proto.AuthReply{
			IsValid: true,
			Info: &proto.AuthInfo{
				SessionId: uint64(ticket.ID),
				Info:      userinfo,
			},
		}, nil
	}
}

func (v *Server) EnsurePermGranted(_ context.Context, in *proto.CheckPermRequest) (*proto.CheckPermResponse, error) {
	ctx, err := services.GetAuthContext(uint(in.GetSessionId()))
	if err != nil {
		return nil, err
	}

	var heldPerms map[string]any
	rawHeldPerms, _ := jsoniter.Marshal(ctx.Account.PermNodes)
	_ = jsoniter.Unmarshal(rawHeldPerms, &heldPerms)

	var value any
	_ = jsoniter.Unmarshal(in.GetValue(), &value)
	perms := services.FilterPermNodes(heldPerms, ctx.Claims)
	valid := services.HasPermNode(perms, in.GetKey(), value)

	return &proto.CheckPermResponse{
		IsValid: valid,
	}, nil
}

func (v *Server) EnsureUserPermGranted(_ context.Context, in *proto.CheckUserPermRequest) (*proto.CheckUserPermResponse, error) {
	relation, err := services.GetRelationWithTwoNode(uint(in.GetUserId()), uint(in.GetOtherId()))
	if err != nil {
		return &proto.CheckUserPermResponse{
			IsValid: false,
		}, nil
	}

	defaultPerm := relation.Status == models.RelationshipFriend

	var value any
	_ = jsoniter.Unmarshal(in.GetValue(), &value)
	valid := services.HasPermNodeWithDefault(relation.PermNodes, in.GetKey(), value, defaultPerm)

	return &proto.CheckUserPermResponse{
		IsValid: valid,
	}, nil
}

func (v *Server) ListUserFriends(_ context.Context, in *proto.ListUserRelativeRequest) (*proto.ListUserRelativeResponse, error) {
	tx := database.C.Preload("Account").Where("status = ?", models.RelationshipFriend)

	if in.GetIsRelated() {
		tx = tx.Where("related_id = ?", in.GetUserId())
	} else {
		tx = tx.Where("account_id = ?", in.GetUserId())
	}

	var data []models.AccountRelationship
	if err := tx.Find(&data).Error; err != nil {
		return nil, err
	}

	return &proto.ListUserRelativeResponse{
		Data: lo.Map(data, func(item models.AccountRelationship, index int) *proto.UserInfo {
			val := &proto.UserInfo{
				Id:   uint64(item.AccountID),
				Name: item.Account.Name,
			}

			return val
		}),
	}, nil
}

func (v *Server) ListUserBlocklist(_ context.Context, in *proto.ListUserRelativeRequest) (*proto.ListUserRelativeResponse, error) {
	tx := database.C.Preload("Account").Where("status = ?", models.RelationshipBlocked)

	if in.GetIsRelated() {
		tx = tx.Where("related_id = ?", in.GetUserId())
	} else {
		tx = tx.Where("account_id = ?", in.GetUserId())
	}

	var data []models.AccountRelationship
	if err := tx.Find(&data).Error; err != nil {
		return nil, err
	}

	return &proto.ListUserRelativeResponse{
		Data: lo.Map(data, func(item models.AccountRelationship, index int) *proto.UserInfo {
			val := &proto.UserInfo{
				Id:   uint64(item.AccountID),
				Name: item.Account.Name,
			}

			return val
		}),
	}, nil
}
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`package grpc`

			`import (`
			`"context"`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`"git.solsynth.dev/hypernet/nexus/pkg/nex"`
:alien: Support new version dealer devkit 2024-09-11 15:04:14 +00:00
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`"git.solsynth.dev/hydrogen/passport/pkg/internal/database"`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`"git.solsynth.dev/hydrogen/passport/pkg/internal/models"`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`"github.com/samber/lo"`
:bug: Bug fixes in grpc unable to get avatar and banner url 2024-05-22 15:21:31 +00:00
:bug: Bug fixes on connection and package naming 2024-06-17 14:21:34 +00:00			`"git.solsynth.dev/hydrogen/passport/pkg/internal/services"`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`jsoniter "github.com/json-iterator/go"`
:recycle: Remove most of the dealer deps and move to nexus 2024-10-23 16:13:16 +00:00
			`"git.solsynth.dev/hypernet/nexus/pkg/proto"`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`)`

:recycle: Remove most of the dealer deps and move to nexus 2024-10-23 16:13:16 +00:00			`type authenticateServer struct {`
			`proto.UnimplementedAuthServiceServer`
			`}`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`func (v Server) Authenticate(_ context.Context, in proto.AuthRequest) (*proto.AuthReply, error) {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`ticket, perms, err := services.Authenticate(uint(in.GetSessionId()))`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`if err != nil {`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.AuthReply{`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`IsValid: false,`
			`}, nil`
			`} else {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`user := ticket.Account`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`userinfo := &proto.UserInfo{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`Id: uint64(user.ID),`
			`Name: user.Name,`
			`PermNodes: nex.EncodeMap(perms),`
			`Metadata: nex.EncodeMap(user),`
:sparkles: Return affiliated to and automated by in userinfo grpc call 2024-08-24 16:08:06 +00:00			`}`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.AuthReply{`
:recycle: Basiclly moved to Dealer from Consul 2024-07-14 16:01:17 +00:00			`IsValid: true,`
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`Info: &proto.AuthInfo{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`SessionId: uint64(ticket.ID),`
			`Info: userinfo,`
:recycle: Basiclly moved to Dealer from Consul 2024-07-14 16:01:17 +00:00			`},`
:zap: Add a cache layer in auth to speed up auth 2024-03-22 16:28:27 +00:00			`}, nil`
			`}`
			`}`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00
:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`func (v Server) EnsurePermGranted(_ context.Context, in proto.CheckPermRequest) (*proto.CheckPermResponse, error) {`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`ctx, err := services.GetAuthContext(uint(in.GetSessionId()))`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`if err != nil {`
			`return nil, err`
			`}`

:bug: Fix decoding permission nodes from db 2024-05-17 12:34:34 +00:00			`var heldPerms map[string]any`
			`rawHeldPerms, _ := jsoniter.Marshal(ctx.Account.PermNodes)`
			`_ = jsoniter.Unmarshal(rawHeldPerms, &heldPerms)`

:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`var value any`
			`_ = jsoniter.Unmarshal(in.GetValue(), &value)`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`perms := services.FilterPermNodes(heldPerms, ctx.Claims)`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`valid := services.HasPermNode(perms, in.GetKey(), value)`

:recycle: Refactored relation system :arrow_up: Support new realm & relation api 2024-07-15 16:02:28 +00:00			`return &proto.CheckPermResponse{`
			`IsValid: valid,`
			`}, nil`
			`}`

			`func (v Server) EnsureUserPermGranted(_ context.Context, in proto.CheckUserPermRequest) (*proto.CheckUserPermResponse, error) {`
			`relation, err := services.GetRelationWithTwoNode(uint(in.GetUserId()), uint(in.GetOtherId()))`
			`if err != nil {`
			`return &proto.CheckUserPermResponse{`
			`IsValid: false,`
			`}, nil`
			`}`

			`defaultPerm := relation.Status == models.RelationshipFriend`

			`var value any`
			`_ = jsoniter.Unmarshal(in.GetValue(), &value)`
			`valid := services.HasPermNodeWithDefault(relation.PermNodes, in.GetKey(), value, defaultPerm)`

			`return &proto.CheckUserPermResponse{`
:sparkles: Check permissions GRPC method 2024-05-17 12:14:20 +00:00			`IsValid: valid,`
			`}, nil`
			`}`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00
			`func (v Server) ListUserFriends(_ context.Context, in proto.ListUserRelativeRequest) (*proto.ListUserRelativeResponse, error) {`
			`tx := database.C.Preload("Account").Where("status = ?", models.RelationshipFriend)`

			`if in.GetIsRelated() {`
			`tx = tx.Where("related_id = ?", in.GetUserId())`
			`} else {`
			`tx = tx.Where("account_id = ?", in.GetUserId())`
			`}`

			`var data []models.AccountRelationship`
			`if err := tx.Find(&data).Error; err != nil {`
			`return nil, err`
			`}`

			`return &proto.ListUserRelativeResponse{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`Data: lo.Map(data, func(item models.AccountRelationship, index int) *proto.UserInfo {`
			`val := &proto.UserInfo{`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`Id: uint64(item.AccountID),`
			`Name: item.Account.Name,`
:sparkles: Return affiliated to and automated by in userinfo grpc call 2024-08-24 16:08:06 +00:00			`}`

			`return val`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`}),`
			`}, nil`
			`}`

			`func (v Server) ListUserBlocklist(_ context.Context, in proto.ListUserRelativeRequest) (*proto.ListUserRelativeResponse, error) {`
			`tx := database.C.Preload("Account").Where("status = ?", models.RelationshipBlocked)`

			`if in.GetIsRelated() {`
			`tx = tx.Where("related_id = ?", in.GetUserId())`
			`} else {`
			`tx = tx.Where("account_id = ?", in.GetUserId())`
			`}`

			`var data []models.AccountRelationship`
			`if err := tx.Find(&data).Error; err != nil {`
			`return nil, err`
			`}`

			`return &proto.ListUserRelativeResponse{`
:recycle: Refactored more modules into nexus 2024-10-23 16:46:59 +00:00			`Data: lo.Map(data, func(item models.AccountRelationship, index int) *proto.UserInfo {`
			`val := &proto.UserInfo{`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`Id: uint64(item.AccountID),`
			`Name: item.Account.Name,`
:sparkles: Return affiliated to and automated by in userinfo grpc call 2024-08-24 16:08:06 +00:00			`}`

			`return val`
:arrow_up: Implement list user relative grpc function 2024-08-14 14:50:03 +00:00			`}),`
			`}, nil`
			`}`