-
Notifications
You must be signed in to change notification settings - Fork 171
/
write_assertions.go
62 lines (50 loc) · 1.71 KB
/
write_assertions.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
package commands
import (
"context"
"errors"
"github.com/openfga/openfga/internal/validation"
"github.com/openfga/openfga/pkg/logger"
serverErrors "github.com/openfga/openfga/pkg/server/errors"
"github.com/openfga/openfga/pkg/storage"
"github.com/openfga/openfga/pkg/typesystem"
openfgapb "go.buf.build/openfga/go/openfga/api/openfga/v1"
)
type WriteAssertionsCommand struct {
datastore storage.OpenFGADatastore
logger logger.Logger
}
func NewWriteAssertionsCommand(
datastore storage.OpenFGADatastore,
logger logger.Logger,
) *WriteAssertionsCommand {
return &WriteAssertionsCommand{
datastore: datastore,
logger: logger,
}
}
func (w *WriteAssertionsCommand) Execute(ctx context.Context, req *openfgapb.WriteAssertionsRequest) (*openfgapb.WriteAssertionsResponse, error) {
store := req.GetStoreId()
modelID := req.GetAuthorizationModelId()
assertions := req.GetAssertions()
model, err := w.datastore.ReadAuthorizationModel(ctx, store, modelID)
if err != nil {
if errors.Is(err, storage.ErrNotFound) {
return nil, serverErrors.AuthorizationModelNotFound(req.GetAuthorizationModelId())
}
return nil, serverErrors.HandleError("", err)
}
if !typesystem.IsSchemaVersionSupported(model.GetSchemaVersion()) {
return nil, serverErrors.ValidationError(typesystem.ErrInvalidSchemaVersion)
}
typesys := typesystem.New(model)
for _, assertion := range assertions {
if err := validation.ValidateUserObjectRelation(typesys, assertion.TupleKey); err != nil {
return nil, serverErrors.ValidationError(err)
}
}
err = w.datastore.WriteAssertions(ctx, store, modelID, assertions)
if err != nil {
return nil, serverErrors.HandleError("", err)
}
return &openfgapb.WriteAssertionsResponse{}, nil
}