Merge branch 'develop' into project_k8s_info

hack/endpoint-codegen.go

@@ -1,3 +1,5 @@
+//go:build ignore
+
 package main
 
 import (

internal/delivery/http/project.go

@@ -375,6 +375,8 @@ func (p ProjectHandler) UpdateProject(w http.ResponseWriter, r *http.Request) {
 }
 
 func (p ProjectHandler) DeleteProject(w http.ResponseWriter, r *http.Request) {
+	//ToDo: to donggyu. implement cleanup logic for k8s & keycloak
+
 	//TODO implement me
 }
 
@@ -498,6 +500,17 @@ func (p ProjectHandler) AddProjectMember(w http.ResponseWriter, r *http.Request)
 		return
 	}
 
+	pns, err := p.usecase.GetProjectNamespaces(organizationId, projectId)
+	if err != nil {
+		log.Error(err)
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	stackIds := make(map[string]struct{})
+	for _, pn := range pns {
+		stackIds[pn.StackId] = struct{}{}
+	}
+
 	now := time.Now()
 	for _, pmr := range projectMemberReq.ProjectMemberRequests {
 		pu, err := p.usecase.GetProjectUser(pmr.ProjectUserId)
@@ -534,6 +547,15 @@ func (p ProjectHandler) AddProjectMember(w http.ResponseWriter, r *http.Request)
 			ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
 			return
 		}
+
+		// tasks for keycloak & k8s
+		for stackId := range stackIds {
+			if err := p.usecase.AssignKeycloakClientRoleToMember(organizationId, projectId, stackId, pmId); err != nil {
+				log.Error(err)
+				ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+				return
+			}
+		}
 	}
 
 	out := domain.CommonProjectResponse{Result: "OK"}
@@ -769,6 +791,26 @@ func (p ProjectHandler) RemoveProjectMember(w http.ResponseWriter, r *http.Reque
 			"C_INVALID_PROJECT_MEMBER_ID", ""))
 		return
 	}
+
+	// tasks for keycloak & k8s
+	pns, err := p.usecase.GetProjectNamespaces(organizationId, projectId)
+	if err != nil {
+		log.Error(err)
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	stackIds := make(map[string]struct{})
+	for _, pn := range pns {
+		stackIds[pn.StackId] = struct{}{}
+	}
+	for stackId := range stackIds {
+		if err := p.usecase.UnassignKeycloakClientRoleToMember(organizationId, projectId, stackId, projectMemberId); err != nil {
+			log.Error(err)
+			ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+			return
+		}
+	}
+
 	if err := p.usecase.RemoveProjectMember(projectMemberId); err != nil {
 		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
 		return
@@ -813,8 +855,29 @@ func (p ProjectHandler) RemoveProjectMembers(w http.ResponseWriter, r *http.Requ
 		return
 	}
 
+	// tasks for keycloak & k8s
+	pns, err := p.usecase.GetProjectNamespaces(organizationId, projectId)
+	if err != nil {
+		log.Error(err)
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	stackIds := make(map[string]struct{})
+	for _, pn := range pns {
+		stackIds[pn.StackId] = struct{}{}
+	}
+
 	// TODO: change multi row delete
 	for _, pm := range projectMemberReq.ProjectMember {
+		// tasks for keycloak & k8s
+		for stackId := range stackIds {
+			if err := p.usecase.UnassignKeycloakClientRoleToMember(organizationId, projectId, stackId, pm.ProjectMemberId); err != nil {
+				log.Error(err)
+				ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+				return
+			}
+		}
+
 		if err := p.usecase.RemoveProjectMember(pm.ProjectMemberId); err != nil {
 			ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
 			return
@@ -880,6 +943,25 @@ func (p ProjectHandler) UpdateProjectMemberRole(w http.ResponseWriter, r *http.R
 		return
 	}
 
+	pns, err := p.usecase.GetProjectNamespaces(organizationId, projectId)
+	if err != nil {
+		log.Error(err)
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	stackIds := make(map[string]struct{})
+	for _, pn := range pns {
+		stackIds[pn.StackId] = struct{}{}
+	}
+	// tasks for keycloak & k8s. Unassign old role
+	for stackId := range stackIds {
+		if err := p.usecase.UnassignKeycloakClientRoleToMember(organizationId, projectId, stackId, projectMemberId); err != nil {
+			log.Error(err)
+			ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+			return
+		}
+	}
+
 	pm.ProjectRoleId = pmrReq.ProjectRoleId
 	pm.ProjectUser = nil
 	pm.ProjectRole = nil
@@ -889,6 +971,14 @@ func (p ProjectHandler) UpdateProjectMemberRole(w http.ResponseWriter, r *http.R
 		ErrorJSON(w, r, err)
 		return
 	}
+	// tasks for keycloak & k8s. Assign new role
+	for stackId := range stackIds {
+		if err := p.usecase.AssignKeycloakClientRoleToMember(organizationId, projectId, stackId, projectMemberId); err != nil {
+			log.Error(err)
+			ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+			return
+		}
+	}
 
 	ResponseJSON(w, r, http.StatusOK, domain.CommonProjectResponse{Result: "OK"})
 }
@@ -930,6 +1020,17 @@ func (p ProjectHandler) UpdateProjectMembersRole(w http.ResponseWriter, r *http.
 		return
 	}
 
+	pns, err := p.usecase.GetProjectNamespaces(organizationId, projectId)
+	if err != nil {
+		log.Error(err)
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	stackIds := make(map[string]struct{})
+	for _, pn := range pns {
+		stackIds[pn.StackId] = struct{}{}
+	}
+
 	for _, pmr := range projectMemberReq.ProjectMemberRoleRequests {
 		pm, err := p.usecase.GetProjectMember(pmr.ProjectMemberId)
 		if err != nil {
@@ -943,6 +1044,14 @@ func (p ProjectHandler) UpdateProjectMembersRole(w http.ResponseWriter, r *http.
 			return
 		}
 
+		for stackId := range stackIds {
+			if err := p.usecase.UnassignKeycloakClientRoleToMember(organizationId, projectId, stackId, pm.ID); err != nil {
+				log.Error(err)
+				ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+				return
+			}
+		}
+
 		pm.ProjectRoleId = pmr.ProjectRoleId
 		pm.ProjectUser = nil
 		pm.ProjectRole = nil
@@ -952,6 +1061,14 @@ func (p ProjectHandler) UpdateProjectMembersRole(w http.ResponseWriter, r *http.
 			ErrorJSON(w, r, err)
 			return
 		}
+
+		for stackId := range stackIds {
+			if err := p.usecase.AssignKeycloakClientRoleToMember(organizationId, projectId, stackId, pm.ID); err != nil {
+				log.Error(err)
+				ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+				return
+			}
+		}
 	}
 
 	ResponseJSON(w, r, http.StatusOK, domain.CommonProjectResponse{Result: "OK"})
@@ -1001,6 +1118,16 @@ func (p ProjectHandler) CreateProjectNamespace(w http.ResponseWriter, r *http.Re
 		CreatedAt:   now,
 	}
 
+	// tasks for keycloak & k8s
+	if err := p.usecase.EnsureRequiredSetupForCluster(organizationId, projectId, projectNamespaceReq.StackId); err != nil {
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	if err := p.usecase.CreateK8SNSRoleBinding(organizationId, projectId, projectNamespaceReq.StackId, projectNamespaceReq.Namespace); err != nil {
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+
 	if err := p.usecase.CreateProjectNamespace(organizationId, pn); err != nil {
 		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
 		return
@@ -1268,6 +1395,18 @@ func (p ProjectHandler) UpdateProjectNamespace(w http.ResponseWriter, r *http.Re
 // @Router      /organizations/{organizationId}/projects/{projectId}/namespaces/{projectNamespace}/stacks/{stackId} [delete]
 // @Security    JWT
 func (p ProjectHandler) DeleteProjectNamespace(w http.ResponseWriter, r *http.Request) {
+
+	//ToDo: from donggyu. uncomment lines below after implementing usecase.DeleteProjectNamespace.
+	// tasks for keycloak & k8s
+	/*if err := p.usecase.DeleteK8SNSRoleBinding(organizationId, projectId, stackId, projectNamespace); err != nil {
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}
+	if err := p.usecase.MayRemoveRequiredSetupForCluster(organizationId, projectId, stackId); err != nil {
+		ErrorJSON(w, r, httpErrors.NewInternalServerError(err, "", ""))
+		return
+	}*/
+
 	//TODO implement me
 
 	//vars := mux.Vars(r)