anzar-shared 0.9.21

Anzar is a lightweight authentication and authorization framework that runs as a separate microservice
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32

use crate::error::Result;

use crate::domain::model::Permission;
use crate::intern::rbac::RbacService;

impl RbacService {
    #[tracing::instrument(name = "auth.insert_permission", skip(self, name))]
    pub async fn upsert_permission(&self, name: &str) -> Result<String> {
        let permission = Permission::new(name);

        self.permission_repository.insert(permission).await
    }

    #[tracing::instrument(name = "auth.insert_permissions", skip(self, names))]
    pub async fn upsert_permissions(&self, names: Vec<String>) -> Result<Vec<String>> {
        let permissions: Vec<Permission> = names.iter().map(|n| Permission::new(n)).collect();

        self.permission_repository.upsert_many(permissions).await
    }

    #[tracing::instrument(name = "auth.find_permission", skip(self, role_id))]
    pub async fn find_permissions_by_role_id(&self, role_id: &str) -> Result<Vec<Permission>> {
        let role_permissions = self.role_permission_repository.find_all(role_id).await?;

        let permission_ids: Vec<String> = role_permissions
            .iter()
            .map(|rp| rp.permission_id.clone())
            .collect();

        self.permission_repository.find_by_ids(permission_ids).await
    }
}