GKaszewski/k-photos
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

domain: add Identity & Access entities (User, Role, Permission, Group)

Browse Source
This commit is contained in:
Gabriel Kaszewski
2026-05-31 03:20:18 +02:00
parent aa432e6594
commit 656da7e945
11 changed files with 234 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

60
crates/domain/src/entities/permission.rs Normal file
View File

@@ -0,0 +1,60 @@
use std::collections::HashSet;
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, serde::Serialize, serde::Deserialize)]
pub enum PermissionAction {
ReadAsset,
ReadMetadata,
ReadLocation,
ReadPerson,
WriteMetadata,
DeleteAsset,
ManageAccess,
ManageUsers,
ManageSystem,
}
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, serde::Serialize, serde::Deserialize)]
pub enum ResourceType {
Asset,
Album,
Collection,
Person,
Directory,
Global,
}
#[derive(Debug, Clone, Copy, PartialEq, Eq, Hash, serde::Serialize, serde::Deserialize)]
pub struct Permission {
pub action: PermissionAction,
pub resource_type: ResourceType,
}
impl Permission {
pub fn new(action: PermissionAction, resource_type: ResourceType) -> Self {
Self { action, resource_type }
}
}
pub fn viewer_permissions() -> HashSet<Permission> {
HashSet::from([
Permission::new(PermissionAction::ReadAsset, ResourceType::Global),
Permission::new(PermissionAction::ReadMetadata, ResourceType::Global),
])
}
pub fn contributor_permissions() -> HashSet<Permission> {
let mut perms = viewer_permissions();
perms.insert(Permission::new(PermissionAction::WriteMetadata, ResourceType::Global));
perms
}
pub fn admin_permissions() -> HashSet<Permission> {
let mut perms = contributor_permissions();
perms.insert(Permission::new(PermissionAction::DeleteAsset, ResourceType::Global));
perms.insert(Permission::new(PermissionAction::ManageAccess, ResourceType::Global));
perms.insert(Permission::new(PermissionAction::ManageUsers, ResourceType::Global));
perms.insert(Permission::new(PermissionAction::ManageSystem, ResourceType::Global));
perms.insert(Permission::new(PermissionAction::ReadLocation, ResourceType::Global));
perms.insert(Permission::new(PermissionAction::ReadPerson, ResourceType::Global));
perms
}