reifydb_transaction/transaction/catalog/
granted_role.rs1use reifydb_core::interface::catalog::{
5 change::CatalogTrackGrantedRoleChangeOperations,
6 identity::{GrantedRole, RoleId},
7};
8use reifydb_type::{Result, value::identity::IdentityId};
9
10use crate::{
11 change::{
12 Change,
13 OperationType::{Create, Delete},
14 TransactionalGrantedRoleChanges,
15 },
16 interceptor::granted_role::{GrantedRolePostCreateContext, GrantedRolePreDeleteContext},
17 transaction::admin::AdminTransaction,
18};
19
20impl CatalogTrackGrantedRoleChangeOperations for AdminTransaction {
21 fn track_granted_role_created(&mut self, granted_role: GrantedRole) -> Result<()> {
22 self.interceptors.granted_role_post_create.execute(GrantedRolePostCreateContext::new(&granted_role))?;
23 let change = Change {
24 pre: None,
25 post: Some(granted_role),
26 op: Create,
27 };
28 self.changes.add_granted_role_change(change);
29 Ok(())
30 }
31
32 fn track_granted_role_deleted(&mut self, granted_role: GrantedRole) -> Result<()> {
33 self.interceptors.granted_role_pre_delete.execute(GrantedRolePreDeleteContext::new(&granted_role))?;
34 let change = Change {
35 pre: Some(granted_role),
36 post: None,
37 op: Delete,
38 };
39 self.changes.add_granted_role_change(change);
40 Ok(())
41 }
42}
43
44impl TransactionalGrantedRoleChanges for AdminTransaction {
45 fn find_granted_role(&self, identity: IdentityId, role: RoleId) -> Option<&GrantedRole> {
46 for change in self.changes.granted_role.iter().rev() {
47 if let Some(ir) = &change.post {
48 if ir.identity == identity && ir.role_id == role {
49 return Some(ir);
50 }
51 } else if let Some(ir) = &change.pre
52 && ir.identity == identity && ir.role_id == role
53 && change.op == Delete
54 {
55 return None;
56 }
57 }
58 None
59 }
60
61 fn find_granted_roles_for_identity(&self, identity: IdentityId) -> Vec<&GrantedRole> {
62 let mut result = Vec::new();
63 for change in &self.changes.granted_role {
64 if let Some(ir) = &change.post
65 && ir.identity == identity && change.op == Create
66 {
67 result.push(ir);
68 }
69 }
70 result
71 }
72
73 fn is_granted_role_deleted(&self, identity: IdentityId, role: RoleId) -> bool {
74 self.changes.granted_role.iter().rev().any(|change| {
75 change.op == Delete
76 && change
77 .pre
78 .as_ref()
79 .map(|ir| ir.identity == identity && ir.role_id == role)
80 .unwrap_or(false)
81 })
82 }
83}