feat: display user's raw permissions

2025-06-24 14:37:25 +02:00
parent 868337134d
commit 3281764eff
5 changed files with 47 additions and 18 deletions
--- a/internal/admin/permissions.go
+++ b/internal/admin/permissions.go
@ -6,17 +6,13 @@ import (
 	"net/http"
 	"gitea.local/admin/hspguard/internal/repository"
 	"gitea.local/admin/hspguard/internal/util"
 	"gitea.local/admin/hspguard/internal/web"
 	"github.com/go-chi/chi/v5"
 	"github.com/google/uuid"
 )
 func (h *AdminHandler) GetPermissions(w http.ResponseWriter, r *http.Request) {
-	userId, ok := util.GetRequestUserId(r.Context())
+	userId := chi.URLParam(r, "user_id")
 	if !ok {
 		web.Error(w, "failed to get user id from auth session", http.StatusInternalServerError)
 		return
 	}
 	permissions, err := h.repo.GetUserPermissions(r.Context(), uuid.MustParse(userId))
 	if err != nil {
--- a/internal/admin/routes.go
+++ b/internal/admin/routes.go
@ -42,7 +42,7 @@ func (h *AdminHandler) RegisterRoutes(router chi.Router) {
 		r.Get("/service-sessions", h.GetServiceSessions)
 		r.Patch("/service-sessions/revoke/{id}", h.RevokeUserSession)
-		r.Get("/permissions", h.GetPermissions)
+		r.Get("/permissions/{user_id}", h.GetPermissions)
 	})
 	router.Get("/api-services/client/{client_id}", h.GetApiServiceCID)
--- a/web/src/api/admin/permissions.ts
+++ b/web/src/api/admin/permissions.ts
@ -3,14 +3,15 @@ import { axios, handleApiError } from "..";
 export type FetchPermissionsResponse = AppPermission[];
-export const getPermissionsApi =
+export const getPermissionsApi = async (
-  async (): Promise<FetchPermissionsResponse> => {
+  userId: string,
-    const response = await axios.get<FetchPermissionsResponse>(
+): Promise<FetchPermissionsResponse> => {
-      "/api/v1/admin/permissions",
+  const response = await axios.get<FetchPermissionsResponse>(
-    );
+    `/api/v1/admin/permissions/${userId}`,
  );
-    if (response.status !== 200 && response.status !== 201)
+  if (response.status !== 200 && response.status !== 201)
-      throw await handleApiError(response);
+    throw await handleApiError(response);
-    return response.data;
+  return response.data;
-  };
+};
--- a/web/src/pages/Admin/Users/View/index.tsx
+++ b/web/src/pages/Admin/Users/View/index.tsx
@ -25,6 +25,7 @@ const InfoCard = ({
 const AdminViewUserPage: FC = () => {
  const { userId } = useParams();
  const user = useUsers((state) => state.current);
  const userPermissions = useUsers((s) => s.userPermissions);
  // const loading = useApiServices((state) => state.fetchingApiService);
  const loadUser = useUsers((state) => state.fetchUser);
@ -117,6 +118,10 @@ const AdminViewUserPage: FC = () => {
          </div>
        </InfoCard>
        <InfoCard title="Roles & Permissions">
          <pre>{JSON.stringify(userPermissions, null, 2)}</pre>
        </InfoCard>
        {/* 🚀 Actions */}
        <div className="flex flex-wrap gap-4 mt-6 justify-between items-center">
          <Link to="/admin/users">
--- a/web/src/store/admin/users.ts
+++ b/web/src/store/admin/users.ts
@ -1,10 +1,11 @@
 import { getPermissionsApi } from "@/api/admin/permissions";
 import {
  adminGetUserApi,
  adminGetUsersApi,
  postUser,
  type CreateUserRequest,
 } from "@/api/admin/users";
-import type { UserProfile } from "@/types";
+import type { AppPermission, UserProfile } from "@/types";
 import { create } from "zustand";
 export interface IUsersState {
@ -14,14 +15,18 @@ export interface IUsersState {
  current: UserProfile | null;
  fetchingCurrent: boolean;
  userPermissions: AppPermission[];
  fetchingPermissions: boolean;
  creating: boolean;
  createUser: (req: CreateUserRequest) => Promise<boolean>;
  fetchUsers: () => Promise<void>;
  fetchUser: (id: string) => Promise<void>;
  fetchUserPermissions: () => Promise<void>;
 }
-export const useUsers = create<IUsersState>((set) => ({
+export const useUsers = create<IUsersState>((set, get) => ({
  users: [],
  fetching: false,
@ -30,6 +35,9 @@ export const useUsers = create<IUsersState>((set) => ({
  current: null,
  fetchingCurrent: false,
  userPermissions: [],
  fetchingPermissions: false,
  createUser: async (req: CreateUserRequest) => {
    set({ creating: true });
@ -70,4 +78,23 @@ export const useUsers = create<IUsersState>((set) => ({
      set({ fetchingCurrent: false });
    }
  },
  fetchUserPermissions: async () => {
    const user = get().current;
    if (!user) {
      console.warn("Trying to fetch user permissions without selected user");
      return;
    }
    set({ fetchingPermissions: true });
    try {
      const response = await getPermissionsApi(user.id);
      set({ userPermissions: response });
    } catch (err) {
      console.log("ERR: Failed to fetch single user for admin:", err);
    } finally {
      set({ fetchingPermissions: false });
    }
  },
 }));