-
Notifications
You must be signed in to change notification settings - Fork 0
/
user.go
106 lines (85 loc) · 2.67 KB
/
user.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
package v1
import (
"errors"
"github.com/atticuss/chefconnect/models"
"github.com/atticuss/chefconnect/services"
)
// GetAllUsers handles the business logic when a client requests all users
func (s *v1Service) GetAllUsers(callingUser *models.User) (*models.ManyUsers, *services.ServiceError) {
users, err := s.Repository.GetAllUsers()
if err != nil {
return users, &services.ServiceError{Error: err}
}
for _, user := range users.Users {
user.Password = ""
}
return users, &nilErr
}
// GetUser handles the business logic when a client requests a specific user
func (s *v1Service) GetUser(callingUser *models.User, id string) (*models.User, *services.ServiceError) {
user, err := s.Repository.GetUser(id)
if err != nil {
return user, &services.ServiceError{Error: err}
}
user.Password = ""
return user, &nilErr
}
// CreateUser handles the business logic when a client creates a new recipe
func (s *v1Service) CreateUser(callingUser *models.User, user *models.User) (*models.User, *services.ServiceError) {
authorized := false
for _, role := range callingUser.Roles {
if role.Name == services.Admin {
authorized = true
}
}
if !authorized {
return user, &services.ServiceError{Error: errors.New("unathorized"), ErrorCode: services.NotAuthorized}
}
user, err := s.Repository.CreateUser(user)
if err != nil {
return user, &services.ServiceError{Error: err}
}
return user, &nilErr
}
// UpdateUser handles the business logic when a client updates a user
func (s *v1Service) UpdateUser(callingUser *models.User, user *models.User) (*models.User, *services.ServiceError) {
authorized := false
for _, role := range callingUser.Roles {
if role.Name == services.Admin {
authorized = true
}
}
if callingUser.ID == user.ID {
authorized = true
}
if !authorized {
return user, &services.ServiceError{Error: errors.New("unathorized"), ErrorCode: services.NotAuthorized}
}
hash, err := hashPassword(user.Password)
if err != nil {
return user, &services.ServiceError{Error: err}
}
user.Password = hash
user, err = s.Repository.UpdateUser(user)
if err != nil {
return user, &services.ServiceError{Error: err}
}
return user, &nilErr
}
// DeleteUser handles the business logic when a client deletes a recipe
func (s *v1Service) DeleteUser(callingUser *models.User, id string) *services.ServiceError {
authorized := false
for _, role := range callingUser.Roles {
if role.Name == services.Admin {
authorized = true
}
}
if !authorized {
return &services.ServiceError{Error: errors.New("unathorized"), ErrorCode: services.NotAuthorized}
}
err := s.Repository.DeleteUser(id)
if err != nil {
return &services.ServiceError{Error: err}
}
return &nilErr
}