// Copyright (c) 2022-2024 Niko Bonnieure, Par le Peuple, NextGraph.org developers // All rights reserved. // Licensed under the Apache License, Version 2.0 // // or the MIT license , // at your option. All files in the project carrying such // notice may not be copied, modified, or distributed except // according to those terms. //! Repository use crate::block_storage::*; use crate::errors::*; use crate::event::*; use crate::log::*; use crate::object::Object; use crate::store::Store; use crate::types::*; use crate::utils::generate_keypair; use crate::utils::sign; use core::fmt; use std::collections::HashMap; use std::collections::HashSet; use std::sync::Arc; impl RepositoryV0 { pub fn new(id: &PubKey, metadata: &Vec) -> RepositoryV0 { RepositoryV0 { id: id.clone(), metadata: metadata.clone(), verification_program: vec![], creator: None, } } } impl Repository { pub fn new(id: &PubKey, metadata: &Vec) -> Repository { Repository::V0(RepositoryV0::new(id, metadata)) } } #[derive(Debug)] pub struct UserInfo { /// list of permissions granted to user, with optional metadata pub permissions: HashMap>, pub id: UserId, } impl UserInfo { pub fn has_any_perm(&self, perms: &HashSet) -> Result<(), NgError> { //log_debug!("perms {:?}", perms); if self.has_perm(&PermissionV0::Owner).is_ok() { return Ok(()); } let is_admin = self.has_perm(&PermissionV0::Admin).is_ok(); //log_debug!("is_admin {}", is_admin); //is_delegated_by_admin let has_perms: HashSet<&PermissionV0> = self.permissions.keys().collect(); //log_debug!("has_perms {:?}", has_perms); for perm in perms { if is_admin && perm.is_delegated_by_admin() || has_perms.contains(perm) { return Ok(()); } } // if has_perms.intersection(perms).count() > 0 { // Ok(()) // } else { Err(NgError::PermissionDenied) } pub fn has_perm(&self, perm: &PermissionV0) -> Result<&Vec, NgError> { self.permissions.get(perm).ok_or(NgError::PermissionDenied) } } /// In memory Repository representation. With helper functions that access the underlying UserStore and keeps proxy of the values pub struct Repo { pub id: RepoId, /// Repo definition pub repo_def: Repository, pub signer: Option, pub members: HashMap, pub store: Arc, } impl fmt::Display for Repo { fn fmt(&self, f: &mut fmt::Formatter<'_>) -> fmt::Result { writeln!(f, "====== Repo ====== {}", self.id)?; write!(f, "== repo_def: {}", self.repo_def)?; if self.signer.is_some() { writeln!(f, "== signer: {:?}", self.signer)?; } writeln!(f, "== members: {:?}", self.members)?; Ok(()) } } impl Repo { #[cfg(any(test, feature = "testing"))] #[allow(deprecated)] pub fn new_with_perms(perms: &[PermissionV0], store: Arc) -> Self { let pub_key = PubKey::nil(); Self::new_with_member(&pub_key, &pub_key, perms, OverlayId::dummy(), store) } pub fn new_with_member( id: &PubKey, member: &UserId, perms: &[PermissionV0], overlay: OverlayId, store: Arc, ) -> Self { let mut members = HashMap::new(); let permissions = HashMap::from_iter( perms .iter() .map(|p| (*p, vec![])) .collect::)>>() .iter() .cloned(), ); members.insert( CommitContent::author_digest(member, overlay), UserInfo { id: *member, permissions, }, ); Self { id: id.clone(), repo_def: Repository::new(id, &vec![]), members, store, signer: None, } } pub fn verify_permission(&self, commit: &Commit) -> Result<(), NgError> { let content_author = commit.content_v0().author; // let body = commit.load_body(self.store.unwrap())?; // match self.members.get(&content_author) { // Some(info) => return info.has_any_perm(&body.required_permission()), // None => {} // } Err(NgError::PermissionDenied) } pub fn member_pubkey(&self, hash: &Digest) -> Result { match self.members.get(hash) { Some(user_info) => Ok(user_info.id), None => Err(NgError::NotFound), } } // pub(crate) fn get_store(&self) -> &Store { // self.store.unwrap() // } }