feat: merge auth&tester

internal/users/delivery.go

@@ -0,0 +1,14 @@
+package users
+
+import (
+	testerv1 "git.sch9.ru/new_gate/ms-tester/contracts/tester/v1"
+	"github.com/gofiber/fiber/v2"
+)
+
+type UsersHandlers interface {
+	ListUsers(c *fiber.Ctx, params testerv1.ListUsersParams) error
+	CreateUser(c *fiber.Ctx) error
+	DeleteUser(c *fiber.Ctx, id int32) error
+	GetUser(c *fiber.Ctx, id int32) error
+	UpdateUser(c *fiber.Ctx, id int32) error
+}

internal/users/delivery/rest/handlers.go

@@ -0,0 +1,204 @@
+package rest
+
+import (
+	"context"
+	testerv1 "git.sch9.ru/new_gate/ms-tester/contracts/tester/v1"
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+	"git.sch9.ru/new_gate/ms-tester/internal/users"
+	"git.sch9.ru/new_gate/ms-tester/pkg"
+	"github.com/gofiber/fiber/v2"
+)
+
+type Handlers struct {
+	usersUC users.UseCase
+}
+
+func NewHandlers(usersUC users.UseCase) *Handlers {
+	return &Handlers{
+		usersUC: usersUC,
+	}
+}
+
+const (
+	sessionKey = "session"
+)
+
+func sessionFromCtx(ctx context.Context) (*models.Session, error) {
+	const op = "sessionFromCtx"
+
+	session, ok := ctx.Value(sessionKey).(*models.Session)
+	if !ok {
+		return nil, pkg.Wrap(pkg.ErrUnauthenticated, nil, op, "")
+	}
+
+	return session, nil
+}
+
+func (h *Handlers) CreateUser(c *fiber.Ctx) error {
+	ctx := c.Context()
+
+	session, err := sessionFromCtx(ctx)
+	if err != nil {
+		return c.SendStatus(pkg.ToREST(err))
+	}
+
+	switch session.Role {
+	case models.RoleAdmin, models.RoleTeacher:
+		var req = &testerv1.CreateUserRequest{}
+		err := c.BodyParser(req)
+		if err != nil {
+			return c.SendStatus(fiber.StatusBadRequest)
+		}
+
+		id, err := h.usersUC.CreateUser(ctx,
+			&models.UserCreation{
+				Username: req.Username,
+				Password: req.Password,
+				Role:     models.RoleStudent,
+			},
+		)
+
+		if err != nil {
+			return c.SendStatus(pkg.ToREST(err))
+		}
+
+		return c.JSON(testerv1.CreateUserResponse{Id: id})
+	default:
+		return c.SendStatus(pkg.ToREST(pkg.NoPermission))
+	}
+}
+
+func (h *Handlers) GetUser(c *fiber.Ctx, id int32) error {
+	ctx := c.Context()
+
+	session, err := sessionFromCtx(ctx)
+	if err != nil {
+		return c.SendStatus(pkg.ToREST(err))
+	}
+
+	switch session.Role {
+	case models.RoleAdmin, models.RoleTeacher, models.RoleStudent:
+		user, err := h.usersUC.ReadUserById(c.Context(), id)
+		if err != nil {
+			return c.SendStatus(pkg.ToREST(err))
+		}
+
+		return c.JSON(testerv1.GetUserResponse{
+			User: UserDTO(*user),
+		})
+	default:
+		return c.SendStatus(pkg.ToREST(pkg.NoPermission))
+	}
+}
+
+func (h *Handlers) UpdateUser(c *fiber.Ctx, id int32) error {
+	ctx := c.Context()
+
+	session, err := sessionFromCtx(ctx)
+	if err != nil {
+		return c.SendStatus(pkg.ToREST(err))
+	}
+
+	switch session.Role {
+	case models.RoleAdmin:
+		var req = &testerv1.UpdateUserRequest{}
+		err := c.BodyParser(req)
+		if err != nil {
+			return c.SendStatus(fiber.StatusBadRequest)
+		}
+
+		err = h.usersUC.UpdateUser(c.Context(), id, &models.UserUpdate{
+			Username: req.Username,
+			Role:     RoleDTO(req.Role),
+		})
+		if err != nil {
+			return c.SendStatus(pkg.ToREST(err))
+		}
+
+		return c.SendStatus(fiber.StatusOK)
+	default:
+		return c.SendStatus(pkg.ToREST(pkg.NoPermission))
+	}
+}
+
+func (h *Handlers) DeleteUser(c *fiber.Ctx, id int32) error {
+	ctx := c.Context()
+
+	session, err := sessionFromCtx(ctx)
+	if err != nil {
+		return c.SendStatus(pkg.ToREST(err))
+	}
+
+	switch session.Role {
+	case models.RoleAdmin:
+		ctx := c.Context()
+
+		err := h.usersUC.DeleteUser(ctx, id)
+		if err != nil {
+			return c.SendStatus(pkg.ToREST(err))
+		}
+
+		return c.SendStatus(fiber.StatusOK)
+	default:
+		return c.SendStatus(pkg.ToREST(pkg.NoPermission))
+	}
+}
+
+func (h *Handlers) ListUsers(c *fiber.Ctx, params testerv1.ListUsersParams) error {
+	ctx := c.Context()
+
+	session, err := sessionFromCtx(ctx)
+	if err != nil {
+		return c.SendStatus(pkg.ToREST(err))
+	}
+
+	switch session.Role {
+	case models.RoleAdmin, models.RoleTeacher:
+		usersList, err := h.usersUC.ListUsers(c.Context(), models.UsersListFilters{
+			PageSize: params.PageSize,
+			Page:     params.Page,
+		})
+		if err != nil {
+			return c.SendStatus(pkg.ToREST(err))
+		}
+
+		resp := testerv1.ListUsersResponse{
+			Users:      make([]testerv1.User, len(usersList.Users)),
+			Pagination: PaginationDTO(usersList.Pagination),
+		}
+
+		for i, user := range usersList.Users {
+			resp.Users[i] = UserDTO(*user)
+		}
+
+		return c.JSON(resp)
+	default:
+		return c.SendStatus(pkg.ToREST(pkg.NoPermission))
+	}
+}
+
+func RoleDTO(i *int32) *models.Role {
+	if i == nil {
+		return nil
+	}
+	ii := models.Role(*i)
+	return &ii
+}
+
+func PaginationDTO(p models.Pagination) testerv1.Pagination {
+	return testerv1.Pagination{
+		Page:  p.Page,
+		Total: p.Total,
+	}
+}
+
+// UserDTO sanitizes password
+func UserDTO(u models.User) testerv1.User {
+	return testerv1.User{
+		Id:         u.Id,
+		Username:   u.Username,
+		Role:       int32(u.Role),
+		CreatedAt:  u.CreatedAt,
+		ModifiedAt: u.UpdatedAt,
+	}
+}

internal/users/pg_repository.go

@@ -0,0 +1,33 @@
+package users
+
+import (
+	"context"
+	"database/sql"
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+	"github.com/jmoiron/sqlx"
+)
+
+type Querier interface {
+	Rebind(query string) string
+	QueryxContext(ctx context.Context, query string, args ...interface{}) (*sqlx.Rows, error)
+	GetContext(ctx context.Context, dest interface{}, query string, args ...interface{}) error
+	ExecContext(ctx context.Context, query string, args ...any) (sql.Result, error)
+	SelectContext(ctx context.Context, dest interface{}, query string, args ...interface{}) error
+}
+
+type Tx interface {
+	Querier
+	Commit() error
+	Rollback() error
+}
+
+type Repository interface {
+	BeginTx(ctx context.Context) (Tx, error)
+	DB() Querier
+	CreateUser(ctx context.Context, q Querier, user *models.UserCreation) (int32, error)
+	ReadUserByUsername(ctx context.Context, q Querier, username string) (*models.User, error)
+	ReadUserById(ctx context.Context, q Querier, id int32) (*models.User, error)
+	UpdateUser(ctx context.Context, q Querier, id int32, update *models.UserUpdate) error
+	DeleteUser(ctx context.Context, q Querier, id int32) error
+	ListUsers(ctx context.Context, q Querier, filters models.UsersListFilters) (*models.UsersList, error)
+}

internal/users/repository/pg_repository.go

@@ -0,0 +1,156 @@
+package repository
+
+import (
+	"context"
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+	"git.sch9.ru/new_gate/ms-tester/internal/users"
+	"git.sch9.ru/new_gate/ms-tester/pkg"
+	"github.com/jmoiron/sqlx"
+)
+
+type Repository struct {
+	_db *sqlx.DB
+}
+
+func NewRepository(db *sqlx.DB) *Repository {
+	return &Repository{
+		_db: db,
+	}
+}
+
+func (r *Repository) BeginTx(ctx context.Context) (users.Tx, error) {
+	tx, err := r._db.BeginTxx(ctx, nil)
+	if err != nil {
+		return nil, err
+	}
+
+	return tx, nil
+}
+
+func (r *Repository) DB() users.Querier {
+	return r._db
+}
+
+const CreateUserQuery = `
+INSERT INTO users
+    (username, hashed_pwd, role)
+VALUES ($1, $2, $3)
+RETURNING id
+`
+
+func (r *Repository) CreateUser(ctx context.Context, q users.Querier, user *models.UserCreation) (int32, error) {
+	const op = "Caller.CreateUser"
+
+	rows, err := q.QueryxContext(
+		ctx,
+		CreateUserQuery,
+		user.Username,
+		user.Password,
+		user.Role,
+	)
+	if err != nil {
+		return 0, pkg.HandlePgErr(err, op)
+	}
+
+	defer rows.Close()
+	var id int32
+	rows.Next()
+	err = rows.Scan(&id)
+	if err != nil {
+		return 0, pkg.HandlePgErr(err, op)
+	}
+
+	return id, nil
+}
+
+const ReadUserByUsernameQuery = "SELECT * from users WHERE username=$1 LIMIT 1"
+
+func (r *Repository) ReadUserByUsername(ctx context.Context, q users.Querier, username string) (*models.User, error) {
+	const op = "Caller.ReadUserByUsername"
+
+	var user models.User
+	err := q.GetContext(ctx, &user, ReadUserByUsernameQuery, username)
+	if err != nil {
+		return nil, pkg.HandlePgErr(err, op)
+	}
+	return &user, nil
+}
+
+const ReadUserByIdQuery = "SELECT * from users WHERE id=$1 LIMIT 1"
+
+func (r *Repository) ReadUserById(ctx context.Context, q users.Querier, id int32) (*models.User, error) {
+	const op = "Caller.ReadUserById"
+
+	var user models.User
+	err := q.GetContext(ctx, &user, ReadUserByIdQuery, id)
+	if err != nil {
+		return nil, pkg.HandlePgErr(err, op)
+	}
+	return &user, nil
+}
+
+const UpdateUserQuery = `
+UPDATE users
+SET username        = COALESCE($1, username),
+	role            = COALESCE($2, role)
+WHERE id = $3
+`
+
+func (r *Repository) UpdateUser(ctx context.Context, q users.Querier, id int32, update *models.UserUpdate) error {
+	const op = "Caller.UpdateUser"
+
+	_, err := q.ExecContext(
+		ctx,
+		UpdateUserQuery,
+		update.Username,
+		update.Role,
+		id,
+	)
+
+	if err != nil {
+		return pkg.HandlePgErr(err, op)
+	}
+	return nil
+}
+
+const DeleteUserQuery = "DELETE FROM users WHERE id = $1"
+
+func (r *Repository) DeleteUser(ctx context.Context, q users.Querier, id int32) error {
+	const op = "Caller.DeleteUser"
+
+	_, err := q.ExecContext(ctx, DeleteUserQuery, id)
+	if err != nil {
+		return pkg.HandlePgErr(err, op)
+	}
+
+	return nil
+}
+
+const (
+	ListUsersQuery  = "SELECT * FROM users LIMIT $1 OFFSET $2"
+	CountUsersQuery = "SELECT COUNT(*) FROM users"
+)
+
+func (r *Repository) ListUsers(ctx context.Context, q users.Querier, filters models.UsersListFilters) (*models.UsersList, error) {
+	const op = "Caller.ListUsers"
+
+	list := make([]*models.User, 0)
+	err := q.SelectContext(ctx, &list, ListUsersQuery, filters.PageSize, filters.Offset())
+	if err != nil {
+		return nil, pkg.HandlePgErr(err, op)
+	}
+
+	var count int32
+	err = q.GetContext(ctx, &count, CountUsersQuery)
+	if err != nil {
+		return nil, pkg.HandlePgErr(err, op)
+	}
+
+	return &models.UsersList{
+		Users: list,
+		Pagination: models.Pagination{
+			Total: models.Total(count, filters.PageSize),
+			Page:  filters.Page,
+		},
+	}, nil
+}

internal/users/repository/pg_repository_test.go

@@ -0,0 +1,222 @@
+package repository_test
+
+import (
+	"context"
+	"database/sql"
+	"testing"
+	"time"
+
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+	"git.sch9.ru/new_gate/ms-tester/internal/users/repository"
+	"github.com/DATA-DOG/go-sqlmock"
+	"github.com/jmoiron/sqlx"
+	"github.com/stretchr/testify/assert"
+)
+
+// setupTestDB creates a mocked sqlx.DB and sqlmock instance for testing.
+func setupTestDB(t *testing.T) (*sqlx.DB, sqlmock.Sqlmock) {
+	db, mock, err := sqlmock.New(sqlmock.QueryMatcherOption(sqlmock.QueryMatcherEqual))
+	assert.NoError(t, err)
+	sqlxDB := sqlx.NewDb(db, "sqlmock")
+	return sqlxDB, mock
+}
+
+func TestRepository_CreateUser(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+
+		var expectedId int32 = 1
+		user := &models.UserCreation{
+			Username: "testuser",
+			Password: "hashed-password",
+			Role:     models.RoleAdmin,
+		}
+
+		mock.ExpectQuery(repository.CreateUserQuery).
+			WithArgs(user.Username, sqlmock.AnyArg(), user.Role).
+			WillReturnRows(sqlmock.NewRows([]string{"id"}).AddRow(expectedId))
+
+		id, err := repo.CreateUser(ctx, db, user)
+		assert.NoError(t, err)
+		assert.Equal(t, expectedId, id)
+	})
+}
+
+func TestRepository_ReadUserByUsername(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+
+		expected := &models.User{
+			Id:             1,
+			Username:       "testuser",
+			HashedPassword: "hashed-password",
+			CreatedAt:      time.Now(),
+			UpdatedAt:      time.Now(),
+			Role:           models.RoleAdmin,
+		}
+
+		columns := []string{
+			"id",
+			"username",
+			"hashed_pwd",
+			"created_at",
+			"updated_at",
+			"role",
+		}
+
+		rows := sqlmock.NewRows(columns).AddRow(
+			expected.Id,
+			expected.Username,
+			expected.HashedPassword,
+			expected.CreatedAt,
+			expected.UpdatedAt,
+			expected.Role,
+		)
+
+		mock.ExpectQuery(repository.ReadUserByUsernameQuery).WithArgs(expected.Username).WillReturnRows(rows)
+
+		user, err := repo.ReadUserByUsername(ctx, db, expected.Username)
+		assert.NoError(t, err)
+		assert.Equal(t, expected, user)
+	})
+
+	t.Run("not found", func(t *testing.T) {
+		ctx := context.Background()
+
+		username := "testuser"
+
+		mock.ExpectQuery(repository.ReadUserByUsernameQuery).WithArgs(username).WillReturnError(sql.ErrNoRows)
+
+		user, err := repo.ReadUserByUsername(ctx, db, username)
+		assert.Error(t, err)
+		assert.Nil(t, user)
+	})
+}
+
+func TestRepository_ReadUserById(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+
+		expected := &models.User{
+			Id:       1,
+			Username: "testuser",
+			Role:     models.RoleAdmin,
+		}
+
+		mock.ExpectQuery(repository.ReadUserByIdQuery).
+			WithArgs(expected.Id).
+			WillReturnRows(sqlmock.NewRows([]string{"id", "username", "role"}).
+				AddRow(expected.Id, expected.Username, expected.Role))
+
+		user, err := repo.ReadUserById(ctx, db, expected.Id)
+		assert.NoError(t, err)
+		assert.Equal(t, expected, user)
+	})
+
+	t.Run("not found", func(t *testing.T) {
+		ctx := context.Background()
+
+		userID := int32(1)
+
+		mock.ExpectQuery(repository.ReadUserByIdQuery).WithArgs(userID).WillReturnError(sql.ErrNoRows)
+
+		user, err := repo.ReadUserById(ctx, db, userID)
+		assert.Error(t, err)
+		assert.Nil(t, user)
+	})
+}
+
+func TestRepository_UpdateUser(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+
+		userID := int32(1)
+		username := "testuser"
+		role := models.RoleStudent
+		update := &models.UserUpdate{
+			Username: &username,
+			Role:     &role,
+		}
+
+		mock.ExpectExec(repository.UpdateUserQuery).
+			WithArgs(update.Username, update.Role, userID).
+			WillReturnResult(sqlmock.NewResult(0, 1))
+
+		err := repo.UpdateUser(ctx, db, userID, update)
+		assert.NoError(t, err)
+	})
+}
+
+func TestRepository_DeleteUser(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+		userID := int32(1)
+
+		mock.ExpectExec(repository.DeleteUserQuery).
+			WithArgs(userID).
+			WillReturnResult(sqlmock.NewResult(0, 1))
+
+		err := repo.DeleteUser(ctx, db, userID)
+		assert.NoError(t, err)
+	})
+}
+
+func TestRepository_ListUsers(t *testing.T) {
+	db, mock := setupTestDB(t)
+	defer db.Close()
+
+	repo := repository.NewRepository(db)
+
+	t.Run("success", func(t *testing.T) {
+		ctx := context.Background()
+
+		filters := models.UsersListFilters{
+			Page:     1,
+			PageSize: 10,
+		}
+		expectedUsers := []*models.User{
+			{Id: 1, Username: "user1", Role: models.RoleAdmin},
+			{Id: 2, Username: "user2", Role: models.RoleStudent},
+		}
+		totalCount := int32(2)
+
+		mock.ExpectQuery(repository.ListUsersQuery).
+			WithArgs(filters.PageSize, filters.Offset()).
+			WillReturnRows(sqlmock.NewRows([]string{"id", "username", "role"}).
+				AddRow(expectedUsers[0].Id, expectedUsers[0].Username, expectedUsers[0].Role).
+				AddRow(expectedUsers[1].Id, expectedUsers[1].Username, expectedUsers[1].Role))
+
+		mock.ExpectQuery(repository.CountUsersQuery).
+			WillReturnRows(sqlmock.NewRows([]string{"count"}).AddRow(totalCount))
+
+		result, err := repo.ListUsers(ctx, db, filters)
+		assert.NoError(t, err)
+		assert.Equal(t, expectedUsers, result.Users)
+		assert.Equal(t, models.Pagination{Total: 1, Page: 1}, result.Pagination)
+	})
+}

internal/users/usecase.go

@@ -0,0 +1,15 @@
+package users
+
+import (
+	"context"
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+)
+
+type UseCase interface {
+	CreateUser(ctx context.Context, user *models.UserCreation) (int32, error)
+	ReadUserById(ctx context.Context, id int32) (*models.User, error)
+	ReadUserByUsername(ctx context.Context, username string) (*models.User, error)
+	UpdateUser(ctx context.Context, id int32, update *models.UserUpdate) error
+	DeleteUser(ctx context.Context, id int32) error
+	ListUsers(ctx context.Context, filters models.UsersListFilters) (*models.UsersList, error)
+}

internal/users/usecase/usecase.go

@@ -0,0 +1,164 @@
+package usecase
+
+import (
+	"context"
+	"errors"
+	"git.sch9.ru/new_gate/ms-tester/internal/models"
+	"git.sch9.ru/new_gate/ms-tester/internal/sessions"
+	"git.sch9.ru/new_gate/ms-tester/internal/users"
+	"git.sch9.ru/new_gate/ms-tester/pkg"
+)
+
+type UsersUC struct {
+	sessionRepo sessions.ValkeyRepository
+	usersRepo   users.Repository
+}
+
+func NewUseCase(sessionRepo sessions.ValkeyRepository, usersRepo users.Repository) *UsersUC {
+	return &UsersUC{
+		sessionRepo: sessionRepo,
+		usersRepo:   usersRepo,
+	}
+}
+
+func (u *UsersUC) CreateUser(ctx context.Context, user *models.UserCreation) (int32, error) {
+	const op = "UseCase.CreateUser"
+
+	err := user.HashPassword()
+	if err != nil {
+		return 0, pkg.Wrap(pkg.ErrBadInput, err, op, "bad password")
+	}
+
+	id, err := u.usersRepo.CreateUser(ctx, u.usersRepo.DB(), user)
+	if err != nil {
+		return 0, pkg.Wrap(nil, err, op, "can't create user")
+	}
+
+	return id, nil
+}
+
+func (u *UsersUC) ListUsers(ctx context.Context, filters models.UsersListFilters) (*models.UsersList, error) {
+	const op = "UseCase.ListUsers"
+
+	usersList, err := u.usersRepo.ListUsers(ctx, u.usersRepo.DB(), filters)
+	if err != nil {
+		return nil, pkg.Wrap(nil, err, op, "can't list users")
+	}
+
+	return usersList, nil
+}
+
+func (u *UsersUC) UpdateUser(ctx context.Context, id int32, update *models.UserUpdate) error {
+	const op = "UseCase.UpdateUser"
+
+	tx, err := u.usersRepo.BeginTx(ctx)
+	if err != nil {
+		return pkg.Wrap(nil, err, op, "cannot start transaction")
+	}
+
+	err = u.usersRepo.UpdateUser(ctx, tx, id, update)
+	if err != nil {
+		return pkg.Wrap(nil, errors.Join(err, tx.Rollback()), op, "cannot update user")
+	}
+	err = u.sessionRepo.DeleteAllSessions(ctx, id)
+	if err != nil {
+		return pkg.Wrap(nil, errors.Join(err, tx.Rollback()), op, "cannot delete all sessions")
+	}
+	err = tx.Commit()
+	if err != nil {
+		return pkg.Wrap(nil, err, op, "cannot commit transaction")
+	}
+
+	return nil
+}
+
+// ReadUserByUsername is for login only. There are no permission checks! DO NOT USE IT AS AN ENDPOINT RESPONSE!
+func (u *UsersUC) ReadUserByUsername(ctx context.Context, username string) (*models.User, error) {
+	const op = "UseCase.ReadUserByUsername"
+
+	user, err := u.usersRepo.ReadUserByUsername(ctx, u.usersRepo.DB(), username)
+	if err != nil {
+		return nil, pkg.Wrap(nil, err, op, "can't read user by username")
+	}
+	return user, nil
+}
+
+func (u *UsersUC) ReadUserById(ctx context.Context, id int32) (*models.User, error) {
+	const op = "UseCase.ReadUserById"
+
+	user, err := u.usersRepo.ReadUserById(ctx, u.usersRepo.DB(), id)
+	if err != nil {
+		return nil, pkg.Wrap(nil, err, op, "can't read user by id")
+	}
+	return user, nil
+}
+
+func (u *UsersUC) DeleteUser(ctx context.Context, id int32) error {
+	const op = "UseCase.DeleteUser"
+
+	tx, err := u.usersRepo.BeginTx(ctx)
+	if err != nil {
+		return pkg.Wrap(nil, err, op, "cannot start transaction")
+	}
+
+	err = u.usersRepo.DeleteUser(ctx, tx, id)
+	if err != nil {
+		return pkg.Wrap(nil, errors.Join(err, tx.Rollback()), op, "cannot delete user")
+	}
+
+	err = u.sessionRepo.DeleteAllSessions(ctx, id)
+	if err != nil {
+		return pkg.Wrap(nil, errors.Join(err, tx.Rollback()), op, "cannot delete all sessions")
+	}
+	err = tx.Commit()
+	if err != nil {
+		return pkg.Wrap(nil, err, op, "cannot commit transaction")
+	}
+
+	return nil
+}
+
+/*
+func ValidEmail(str string) error {
+	emailAddress, err := mail.ParseAddress(str)
+	if err != nil || emailAddress.Address != str {
+		return errors.New("invalid email")
+	}
+	return nil
+}
+
+func ValidUsername(str string) error {
+	if len(str) < 5 {
+		return errors.New("too short username")
+	}
+	if len(str) > 70 {
+		return errors.New("too long username")
+	}
+	if err := ValidEmail(str); err == nil {
+		return errors.New("username cannot be an email")
+	}
+	return nil
+}
+
+func ValidPassword(str string) error {
+	if len(str) < 5 {
+		return errors.New("too short password")
+	}
+	if len(str) > 70 {
+		return errors.New("too long password")
+	}
+	return nil
+}
+
+func ValidRole(role models.Role) error {
+	switch role {
+	case models.RoleAdmin:
+		return nil
+	case models.RoleTeacher:
+		return nil
+	case models.RoleStudent:
+		return nil
+	}
+	return errors.New("invalid role")
+}
+*/