user/identities.go at main · tinywasm/user · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
//go:build !wasm

package user

import (
	"time"

	"github.com/tinywasm/orm"
	"github.com/tinywasm/unixid"
)

func createIdentity(db *orm.DB, userID, provider, providerID, email string) error {
	// Verify user exists to enforce relationship before insert
	qb := db.Query(&User{}).Where(User_.ID).Eq(userID)
	users, errRead := ReadAllUser(qb)
	if errRead != nil || len(users) == 0 {
		return ErrNotFound
	}

	u, err := unixid.NewUnixID()
	if err != nil {
		return err
	}

	id := u.GetNewID()
	now := time.Now().Unix()

	i := &Identity{
		ID:         id,
		UserID:     userID,
		Provider:   provider,
		ProviderID: providerID,
		Email:      email,
		CreatedAt:  now,
	}

	if err := db.Create(i); err != nil {
		if isUniqueViolation(err) {
			return err
		}
		return err
	}
	return nil
}

func getIdentityByProvider(db *orm.DB, provider, providerID string) (Identity, error) {
	qb := db.Query(&Identity{}).
		Where(Identity_.Provider).Eq(provider).
		Where(Identity_.ProviderID).Eq(providerID)

	results, err := ReadAllIdentity(qb)
	if err != nil {
		return Identity{}, err
	}
	if len(results) == 0 {
		return Identity{}, ErrNotFound
	}
	return *results[0], nil
}

func getIdentityByUserAndProvider(db *orm.DB, userID, provider string) (Identity, error) {
	qb := db.Query(&Identity{}).
		Where(Identity_.UserID).Eq(userID).
		Where(Identity_.Provider).Eq(provider)

	results, err := ReadAllIdentity(qb)
	if err != nil {
		return Identity{}, err
	}
	if len(results) == 0 {
		return Identity{}, ErrNotFound
	}
	return *results[0], nil
}

func (m *Module) GetUserIdentities(userID string) ([]Identity, error) {
	qb := m.db.Query(&Identity{}).Where(Identity_.UserID).Eq(userID)
	results, err := ReadAllIdentity(qb)
	if err != nil {
		return nil, err
	}

	var identities []Identity
	for _, i := range results {
		identities = append(identities, *i)
	}
	return identities, nil
}

func upsertIdentity(db *orm.DB, userID, provider, providerID, email string) error {
	qb := db.Query(&Identity{}).
		Where(Identity_.UserID).Eq(userID).
		Where(Identity_.Provider).Eq(provider)

	results, err := ReadAllIdentity(qb)
	if err == nil && len(results) > 0 {
		i := results[0]
		i.ProviderID = providerID
		i.Email = email
		return db.Update(i, orm.Eq(Identity_.ID, i.ID))
	} else if len(results) == 0 {
		return createIdentity(db, userID, provider, providerID, email)
	} else {
		return err
	}
}

func (m *Module) UnlinkIdentity(userID, provider string) error {
	identities, err := m.GetUserIdentities(userID)
	if err != nil {
		return err
	}

	found := false
	for _, id := range identities {
		if id.Provider == provider {
			found = true
			break
		}
	}
	if !found {
		return ErrNotFound
	}

	if len(identities) <= 1 {
		return ErrCannotUnlink
	}

	qb := m.db.Query(&Identity{}).Where(Identity_.UserID).Eq(userID).Where(Identity_.Provider).Eq(provider)
	results, err := ReadAllIdentity(qb)
	if err != nil {
		return err
	}
	if len(results) > 0 {
		return m.db.Delete(results[0], orm.Eq(Identity_.ID, results[0].ID))
	}
	return ErrNotFound
}