feat(fullstack): Set user roles per orga, scope notification to orga and role, add orga and role to JWT

2025-09-15 19:23:06 +02:00
parent 83f1fa71b6
commit e3643d8318
25 changed files with 575 additions and 287 deletions
--- a/legalconsenthub-backend/src/main/kotlin/com/betriebsratkanzlei/legalconsenthub/user/UserService.kt
+++ b/legalconsenthub-backend/src/main/kotlin/com/betriebsratkanzlei/legalconsenthub/user/UserService.kt
@@ -4,13 +4,16 @@ import com.betriebsratkanzlei.legalconsenthub.error.UserAlreadyExistsException
 import com.betriebsratkanzlei.legalconsenthub.error.UserNotFoundException
 import com.betriebsratkanzlei.legalconsenthub.security.CustomJwtTokenPrincipal
 import com.betriebsratkanzlei.legalconsenthub_api.model.CreateUserDto
+import com.betriebsratkanzlei.legalconsenthub_api.model.UserDto
 import com.betriebsratkanzlei.legalconsenthub_api.model.UserStatus
+import jakarta.transaction.Transactional
 import org.springframework.security.core.context.SecurityContextHolder
 import org.springframework.stereotype.Service

@Service
 class UserService(
-    private val userRepository: UserRepository
+    private val userRepository: UserRepository,
+    private val roleConverter: UserRoleConverter
 ) {

    fun getCurrentUser(): User {
@@ -29,9 +32,13 @@ class UserService(
        val user = User(
            id = createUserDto.id,
            name = createUserDto.name,
-            status = createUserDto.status ?: UserStatus.ACTIVE,
-            role = createUserDto.role
+            status = createUserDto.status
        )
+
+        createUserDto.organizationRoles?.forEach { (orgId, roles) ->
+            roleConverter.setRolesForOrganization(user.organizationRoles, orgId, roles)
+        }
+
        return userRepository.save(user)
    }

@@ -40,6 +47,44 @@ class UserService(
            .orElseThrow { UserNotFoundException(userId) }
    }

+    @Transactional
+    fun updateUser(userId: String, userDto: UserDto): User {
+        val user = userRepository.findById(userId)
+            .orElseThrow { UserNotFoundException(userId) }
+
+        user.name = userDto.name
+        user.status = userDto.status
+
+        user.organizationRoles.clear()
+        userDto.organizationRoles.forEach { (orgId, roles) ->
+            roleConverter.setRolesForOrganization(user.organizationRoles, orgId, roles)
+        }
+
+        return userRepository.save(user)
+    }
+
+    @Transactional
+    fun updateUserFromJwt(userId: String, jwtOrganizationId: String?, jwtRoles: List<String>?): User {
+        val existingUser = userRepository.findById(userId)
+            .orElseThrow { UserNotFoundException(userId) }
+
+        if (jwtOrganizationId != null && !jwtRoles.isNullOrEmpty()) {
+            existingUser.organizationRoles.removeIf { it.organizationId == jwtOrganizationId }
+
+            jwtRoles.forEach { role ->
+                val normalizedRole = role.lowercase().replace("_", "_")
+                existingUser.organizationRoles.add(
+                    UserOrganizationRole(
+                        organizationId = jwtOrganizationId,
+                        role = normalizedRole
+                    )
+                )
+            }
+        }
+
+        return userRepository.save(existingUser)
+    }
+
    fun deleteUser(userId: String) {
        userRepository.deleteById(userId)
    }