feat: beta version of role management for single user

2025-07-20 17:59:54 +02:00
parent 533e6ea6af
commit d35e5813b5
16 changed files with 680 additions and 177 deletions
--- a/queries/permissions.sql
+++ b/queries/permissions.sql
@ -22,27 +22,8 @@ WHERE name = $1 AND scope = $2;

 -- name: GetUserPermissions :many
 SELECT DISTINCT p.id,p.name,p.scope,p.description
-FROM permissions p
-- From roles assigned directly to the user
-LEFT JOIN role_permissions rp_user
-    ON p.id = rp_user.permission_id
-LEFT JOIN user_roles ur
-    ON rp_user.role_id = ur.role_id AND ur.user_id = $1
-- From roles assigned to user's groups
-LEFT JOIN user_groups ug
-    ON ug.user_id = $1
-LEFT JOIN group_roles gr
-    ON ug.group_id = gr.group_id
-LEFT JOIN role_permissions rp_group
-    ON gr.role_id = rp_group.role_id AND rp_group.permission_id = p.id
-- Direct permissions to user
-LEFT JOIN user_permissions up
-    ON up.user_id = $1 AND up.permission_id = p.id
-- Direct permissions to user's groups
-LEFT JOIN group_permissions gp
-    ON gp.group_id = ug.group_id AND gp.permission_id = p.id
-WHERE ur.user_id IS NOT NULL
-   OR gr.group_id IS NOT NULL
-   OR up.user_id IS NOT NULL
-   OR gp.group_id IS NOT NULL
+FROM user_roles ur
+JOIN role_permissions rp ON ur.role_id = rp.role_id
+JOIN permissions p ON rp.permission_id = p.id
+WHERE ur.user_id = $1
 ORDER BY p.scope;