// Code generated by sqlc. DO NOT EDIT.
// versions:
//   sqlc v1.29.0
// source: permissions.sql

package repository

import (
	"context"

	"github.com/google/uuid"
)

const getUserPermissions = `-- name: GetUserPermissions :many
SELECT DISTINCT p.id,p.name,p.scope,p.description
FROM permissions p

LEFT JOIN role_permissions rp_user
    ON p.id = rp_user.permission_id
LEFT JOIN user_roles ur
    ON rp_user.role_id = ur.role_id AND ur.user_id = $1

LEFT JOIN user_groups ug
    ON ug.user_id = $1
LEFT JOIN group_roles gr
    ON ug.group_id = gr.group_id
LEFT JOIN role_permissions rp_group
    ON gr.role_id = rp_group.role_id AND rp_group.permission_id = p.id

LEFT JOIN user_permissions up
    ON up.user_id = $1 AND up.permission_id = p.id

LEFT JOIN group_permissions gp
    ON gp.group_id = ug.group_id AND gp.permission_id = p.id

WHERE ur.user_id IS NOT NULL
   OR gr.group_id IS NOT NULL
   OR up.user_id IS NOT NULL
   OR gp.group_id IS NOT NULL
ORDER BY p.scope
`

// From roles assigned directly to the user
// From roles assigned to user's groups
// Direct permissions to user
// Direct permissions to user's groups
func (q *Queries) GetUserPermissions(ctx context.Context, userID uuid.UUID) ([]Permission, error) {
	rows, err := q.db.Query(ctx, getUserPermissions, userID)
	if err != nil {
		return nil, err
	}
	defer rows.Close()
	var items []Permission
	for rows.Next() {
		var i Permission
		if err := rows.Scan(
			&i.ID,
			&i.Name,
			&i.Scope,
			&i.Description,
		); err != nil {
			return nil, err
		}
		items = append(items, i)
	}
	if err := rows.Err(); err != nil {
		return nil, err
	}
	return items, nil
}