tideway 0.7.17

A batteries-included Rust web framework built on Axum for building SaaS applications quickly
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215

//! Admin storage trait.
//!
//! This module provides the trait abstraction for admin storage.
//! Applications implement this trait for their database layer.

use async_trait::async_trait;

use super::error::AdminError;
use super::types::{
    AuditEntry, AuditLogParams, CreatePlatformInvite, ListOrgsParams, ListPlatformInvitesParams,
    ListUsersParams, PaginatedResult, PlatformInvite, PlatformInviteConsumption, PlatformStats,
    UpdateUser,
};

/// Trait for platform admin storage operations.
///
/// Implement this trait for your database layer to enable admin functionality.
/// The `User` and `Organization` associated types are YOUR types from your application.
///
/// # Example
///
/// ```rust,ignore
/// use tideway::admin::{AdminStore, AdminError, ListUsersParams, PaginatedResult, PlatformStats};
/// use async_trait::async_trait;
///
/// struct MyAdminStore { db: DatabaseConnection }
///
/// #[async_trait]
/// impl AdminStore for MyAdminStore {
///     type User = MyUser;
///     type Organization = MyOrganization;
///
///     async fn is_platform_admin(&self, user_id: &str) -> Result<bool, AdminError> {
///         let user = self.db.find_user(user_id).await?;
///         Ok(user.map(|u| u.is_platform_admin).unwrap_or(false))
///     }
///
///     async fn list_users(&self, params: ListUsersParams) -> Result<PaginatedResult<Self::User>, AdminError> {
///         // Query users with pagination and search
///     }
///
///     // ... implement other methods
/// }
/// ```
#[async_trait]
pub trait AdminStore: Send + Sync {
    /// Your user type.
    ///
    /// This is the struct that represents a user in your application.
    /// It must be Send + Sync for async operations.
    type User: Send + Sync;

    /// Your organization type.
    ///
    /// This is the struct that represents an organization in your application.
    /// It must be Send + Sync for async operations.
    type Organization: Send + Sync;

    // === Admin identification ===

    /// Check if a user is a platform admin.
    ///
    /// Platform admins have access to the admin dashboard and can manage
    /// all users and organizations on the platform.
    async fn is_platform_admin(&self, user_id: &str) -> Result<bool, AdminError>;

    // === User management ===

    /// List all users with pagination and optional search.
    async fn list_users(
        &self,
        params: ListUsersParams,
    ) -> Result<PaginatedResult<Self::User>, AdminError>;

    /// Get a user by ID.
    async fn get_user(&self, user_id: &str) -> Result<Option<Self::User>, AdminError>;

    /// Update a user's properties.
    async fn update_user(&self, user_id: &str, updates: UpdateUser) -> Result<(), AdminError>;

    /// Delete a user.
    ///
    /// This should handle cascading deletes for memberships, etc.
    async fn delete_user(&self, user_id: &str) -> Result<(), AdminError>;

    // === Organization management ===

    /// List all organizations with pagination and optional search.
    async fn list_organizations(
        &self,
        params: ListOrgsParams,
    ) -> Result<PaginatedResult<Self::Organization>, AdminError>;

    /// Get an organization by ID.
    async fn get_organization(
        &self,
        org_id: &str,
    ) -> Result<Option<Self::Organization>, AdminError>;

    // === Platform statistics ===

    /// Get platform-wide statistics for the admin dashboard.
    async fn get_platform_stats(&self) -> Result<PlatformStats, AdminError>;

    // === Audit log (optional) ===

    /// Get audit log entries.
    ///
    /// Default implementation returns an empty list.
    /// Override this if your application tracks admin actions.
    async fn get_audit_log(&self, _params: AuditLogParams) -> Result<Vec<AuditEntry>, AdminError> {
        Ok(vec![])
    }

    /// Record an audit log entry.
    ///
    /// Default implementation is a no-op.
    /// Override this if your application tracks admin actions.
    async fn record_audit(
        &self,
        _user_id: &str,
        _action: &str,
        _details: Option<&str>,
        _ip_address: Option<&str>,
    ) -> Result<(), AdminError> {
        Ok(())
    }

    // === Platform Invitations ===

    /// Create a platform invitation.
    ///
    /// This creates an invitation record and returns the token that should
    /// be included in the invitation email. The token is used during signup
    /// to validate the invitation.
    ///
    /// Default implementation returns an error indicating invitations are not supported.
    async fn create_platform_invite(
        &self,
        _admin_user_id: &str,
        _invite: CreatePlatformInvite,
    ) -> Result<PlatformInvite, AdminError> {
        Err(AdminError::NotSupported(
            "Platform invitations not implemented".into(),
        ))
    }

    /// List platform invitations with pagination.
    ///
    /// Default implementation returns an empty list.
    async fn list_platform_invites(
        &self,
        _params: ListPlatformInvitesParams,
    ) -> Result<PaginatedResult<PlatformInvite>, AdminError> {
        Ok(PaginatedResult::new(vec![], 0, 1, 20))
    }

    /// Get a platform invitation by ID.
    ///
    /// Default implementation returns None.
    async fn get_platform_invite(
        &self,
        _invite_id: &str,
    ) -> Result<Option<PlatformInvite>, AdminError> {
        Ok(None)
    }

    /// Revoke a platform invitation.
    ///
    /// This marks the invitation as revoked so it can no longer be used.
    ///
    /// Default implementation returns an error.
    async fn revoke_platform_invite(&self, _invite_id: &str) -> Result<(), AdminError> {
        Err(AdminError::NotSupported(
            "Platform invitations not implemented".into(),
        ))
    }

    /// Resend a platform invitation email.
    ///
    /// This resets the expiration and sends a new email.
    ///
    /// Default implementation returns an error.
    async fn resend_platform_invite(&self, _invite_id: &str) -> Result<PlatformInvite, AdminError> {
        Err(AdminError::NotSupported(
            "Platform invitations not implemented".into(),
        ))
    }

    /// Validate and consume a platform invitation token during signup.
    ///
    /// This is called during user registration to validate an invite token.
    /// If valid, it returns the invitation details and marks it as consumed.
    ///
    /// Default implementation returns None (no valid invite).
    async fn consume_platform_invite(
        &self,
        _token: &str,
        _user_id: &str,
    ) -> Result<Option<PlatformInviteConsumption>, AdminError> {
        Ok(None)
    }

    /// Get a platform invitation by token (without consuming it).
    ///
    /// Used to validate tokens and pre-fill signup forms.
    ///
    /// Default implementation returns None.
    async fn get_platform_invite_by_token(
        &self,
        _token: &str,
    ) -> Result<Option<PlatformInvite>, AdminError> {
        Ok(None)
    }
}