entity-derive 0.5.0

Derive macro for generating DTOs, repositories, and SQL from a single entity definition
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86

// SPDX-FileCopyrightText: 2025-2026 RAprogramm <andrey.rozanov.vl@gmail.com>
// SPDX-License-Identifier: MIT

use async_trait::async_trait;
use entity_derive::Entity;
use uuid::Uuid;

#[derive(Entity, Debug, Clone)]
#[entity(table = "orders", policy)]
pub struct Order {
    #[id]
    pub id: Uuid,

    #[field(create, response)]
    pub user_id: Uuid,

    #[field(create, update, response)]
    pub status: String,
}

/// Custom authorization error.
#[derive(Debug)]
pub struct AuthError(String);

impl std::fmt::Display for AuthError {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        write!(f, "{}", self.0)
    }
}

impl std::error::Error for AuthError {}

/// Request context for authorization.
pub struct RequestContext {
    pub user_id: Uuid,
    pub is_admin: bool,
}

/// Custom policy implementation.
struct OwnerPolicy;

#[async_trait]
impl OrderPolicy for OwnerPolicy {
    type Context = RequestContext;
    type Error = AuthError;

    async fn can_create(&self, dto: &CreateOrderRequest, ctx: &Self::Context) -> Result<(), Self::Error> {
        if dto.user_id == ctx.user_id || ctx.is_admin {
            Ok(())
        } else {
            Err(AuthError("cannot create order for another user".into()))
        }
    }

    async fn can_read(&self, _id: &Uuid, _ctx: &Self::Context) -> Result<(), Self::Error> {
        Ok(())
    }

    async fn can_update(&self, _id: &Uuid, _dto: &UpdateOrderRequest, ctx: &Self::Context) -> Result<(), Self::Error> {
        if ctx.is_admin {
            Ok(())
        } else {
            Err(AuthError("only admins can update".into()))
        }
    }

    async fn can_delete(&self, _id: &Uuid, ctx: &Self::Context) -> Result<(), Self::Error> {
        if ctx.is_admin {
            Ok(())
        } else {
            Err(AuthError("only admins can delete".into()))
        }
    }

    async fn can_list(&self, _ctx: &Self::Context) -> Result<(), Self::Error> {
        Ok(())
    }
}

fn main() {
    // Verify generated types exist
    let _: OrderAllowAllPolicy = OrderAllowAllPolicy;

    // Verify policy trait can be implemented
    let _policy: &dyn OrderPolicy<Context = RequestContext, Error = AuthError> = &OwnerPolicy;
}