mirror of
https://github.com/cuigh/swirl
synced 2025-01-07 11:31:34 +00:00
122 lines
3.0 KiB
Go
122 lines
3.0 KiB
Go
package model
|
|
|
|
import (
|
|
"time"
|
|
|
|
"github.com/cuigh/auxo/data"
|
|
)
|
|
|
|
type UserType string
|
|
|
|
const (
|
|
// UserTypeInternal is internal user of swirl
|
|
UserTypeInternal UserType = "internal"
|
|
// UserTypeLDAP is external user of LDAP
|
|
UserTypeLDAP UserType = "ldap"
|
|
)
|
|
|
|
type UserStatus int32
|
|
|
|
const (
|
|
// UserStatusBlocked is the status which user is blocked
|
|
UserStatusBlocked UserStatus = 0
|
|
// UserStatusActive is the normal status
|
|
UserStatusActive UserStatus = 1
|
|
)
|
|
|
|
type Role struct {
|
|
ID string `bson:"_id" json:"id,omitempty"`
|
|
Name string `bson:"name" json:"name,omitempty" valid:"required"`
|
|
Description string `bson:"desc" json:"desc,omitempty"`
|
|
Perms []string `bson:"perms" json:"perms,omitempty"`
|
|
CreatedAt time.Time `bson:"created_at" json:"created_at,omitempty"`
|
|
UpdatedAt time.Time `bson:"updated_at" json:"updated_at,omitempty"`
|
|
}
|
|
|
|
type User struct {
|
|
ID string `bson:"_id" json:"id,omitempty"`
|
|
Name string `bson:"name" json:"name,omitempty" valid:"required"`
|
|
LoginName string `bson:"login_name" json:"login_name,omitempty" valid:"required"`
|
|
Password string `bson:"password" json:"password,omitempty"`
|
|
Salt string `bson:"salt" json:"salt,omitempty"`
|
|
Email string `bson:"email" json:"email,omitempty" valid:"required"`
|
|
Admin bool `bson:"admin" json:"admin,omitempty"`
|
|
Type UserType `bson:"type" json:"type,omitempty"`
|
|
Status UserStatus `bson:"status" json:"status,omitempty"`
|
|
Roles []string `bson:"roles" json:"roles,omitempty"`
|
|
CreatedAt time.Time `bson:"created_at" json:"created_at,omitempty"`
|
|
UpdatedAt time.Time `bson:"updated_at" json:"updated_at,omitempty"`
|
|
}
|
|
|
|
type UserListArgs struct {
|
|
// admins, active, blocked
|
|
Filter string `bind:"filter"`
|
|
Query string `bind:"query"`
|
|
PageIndex int `bind:"page"`
|
|
PageSize int `bind:"size"`
|
|
}
|
|
|
|
type Session struct {
|
|
UserID string `bson:"_id" json:"id,omitempty"`
|
|
Token string `bson:"token" json:"token,omitempty"`
|
|
Expires time.Time `bson:"expires" json:"expires,omitempty"`
|
|
UpdatedAt time.Time `bson:"updated_at" json:"updated_at,omitempty"`
|
|
}
|
|
|
|
type AuthUser struct {
|
|
user *User
|
|
roles []*Role
|
|
perms map[string]struct{}
|
|
}
|
|
|
|
func NewAuthUser(user *User, roles []*Role) *AuthUser {
|
|
if user == nil {
|
|
panic(111)
|
|
}
|
|
u := &AuthUser{
|
|
user: user,
|
|
roles: roles,
|
|
perms: make(map[string]struct{}),
|
|
}
|
|
for _, role := range roles {
|
|
for _, perm := range role.Perms {
|
|
u.perms[perm] = data.Empty
|
|
}
|
|
}
|
|
return u
|
|
}
|
|
|
|
func (u *AuthUser) ID() string {
|
|
return u.user.ID
|
|
}
|
|
|
|
func (u *AuthUser) Name() string {
|
|
return u.user.Name
|
|
}
|
|
|
|
func (u *AuthUser) Anonymous() bool {
|
|
return u.user.ID == ""
|
|
}
|
|
|
|
func (u *AuthUser) Admin() bool {
|
|
return u.user.Admin
|
|
}
|
|
|
|
func (u *AuthUser) IsInRole(roleID string) bool {
|
|
for _, role := range u.roles {
|
|
if role.ID == roleID {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
}
|
|
|
|
func (u *AuthUser) IsAllowed(perm string) bool {
|
|
if u.user.Admin {
|
|
return true
|
|
}
|
|
|
|
_, ok := u.perms[perm]
|
|
return ok
|
|
}
|