cedros-login-server 0.0.9

Authentication server for cedros-login with email/password, Google OAuth, and Solana wallet sign-in
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49

//! Helper for assigning new users to the site-wide default organization.
//!
//! During setup, a default org is created and its ID stored in system_settings.
//! New user registrations join that org as members.

use std::sync::Arc;
use uuid::Uuid;

use crate::callback::AuthCallback;
use crate::errors::AppError;
use crate::repositories::OrgRole;
use crate::services::EmailService;
use crate::AppState;

/// Resolved org assignment for a new user.
pub struct OrgAssignment {
    /// The org the user should join
    pub org_id: Uuid,
    /// The role the user gets in that org
    pub role: OrgRole,
}

/// Resolve which org a new user should join.
///
/// Reads `default_org_id` from system_settings and returns that org ID
/// with Member role. Fails if setup hasn't been completed.
pub async fn resolve_org_assignment<C: AuthCallback, E: EmailService>(
    state: &Arc<AppState<C, E>>,
) -> Result<OrgAssignment, AppError> {
    let setting = state
        .system_settings_repo
        .get_by_key("default_org_id")
        .await?
        .ok_or_else(|| {
            AppError::Internal(anyhow::anyhow!(
                "default_org_id not configured — run setup first"
            ))
        })?;

    let org_id: Uuid = setting
        .value
        .parse()
        .map_err(|_| AppError::Internal(anyhow::anyhow!("Invalid default_org_id setting")))?;

    Ok(OrgAssignment {
        org_id,
        role: OrgRole::Member,
    })
}