anzar-shared 0.9.21

Anzar is a lightweight authentication and authorization framework that runs as a separate microservice
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44

use crate::error::Result;

use crate::domain::model::RolePermission;
use crate::intern::rbac::RbacService;

impl RbacService {
    #[tracing::instrument(
        name = "auth.insert_role_permission",
        skip(self, role_id, permission_id)
    )]
    pub async fn insert_role_permission(&self, role_id: &str, permission_id: &str) -> Result<()> {
        let role_permission = RolePermission::new(role_id, permission_id);

        self.role_permission_repository
            .insert(role_permission)
            .await
    }

    #[tracing::instrument(
        name = "auth.insert_role_permissions",
        skip(self, role_id, permission_ids)
    )]
    pub async fn upsert_role_permissions(
        &self,
        role_id: &str,
        permission_ids: Vec<String>,
    ) -> Result<()> {
        let role_permissions: Vec<RolePermission> = permission_ids
            .iter()
            .map(|p_id| RolePermission::new(role_id, p_id))
            .collect();

        self.role_permission_repository
            .upsert_many(role_permissions)
            .await
    }

    #[tracing::instrument(
        name = "auth.find_role_permission", skip(self), fields(user.id = user_id)
    )]
    pub async fn find_role_permissions(&self, user_id: &str) -> Result<RolePermission> {
        self.role_permission_repository.find(user_id).await
    }
}