feat: extend problem fields

2024-10-17 00:34:43 +05:00 · 2024-10-17 00:34:43 +05:00 · 6dc8f05675
commit 6dc8f05675
parent 3ed195bb58
14 changed files with 70 additions and 362 deletions
--- a/internal/tester/usecase/all.rego
+++ b/internal/tester/usecase/all.rego
@ -1,44 +0,0 @@
-package problem.rbac
-
-import rego.v1
-
-spectator := 0
-participant := 1
-moderator := 2
-admin := 3
-
-permissions := {
-	"read": is_spectator,
-	"participate": is_participant,
-	"update": is_moderator,
-	"create": is_moderator,
-	"delete": is_moderator,
-}
-
-default allow := false
-
-allow if is_admin
-
-allow if {
-	permissions[input.action]
-}
-
-default is_admin := false
-is_admin if {
-	input.user.role == admin
-}
-
-default is_moderator := false
-is_moderator if {
-	input.user.role >= moderator
-}
-
-default is_participant := false
-is_participant if {
-	input.user.role >= participant
-}
-
-default is_spectator := true
-is_spectator if {
-	input.user.role >= spectator
-}
--- a/internal/tester/usecase/permission.go
+++ b/internal/tester/usecase/permission.go
@ -1,39 +0,0 @@
-package usecase
-
-import (
-	"context"
-	"git.sch9.ru/new_gate/ms-tester/internal/models"
-	"github.com/open-policy-agent/opa/rego"
-)
-
-type PermissionService struct {
-	query *rego.PreparedEvalQuery
-}
-
-func NewPermissionService() *PermissionService {
-	query, err := rego.New(
-		rego.Query("allow = data.problem.rbac.allow"),
-		rego.Load([]string{"./opa/problem.rego"}, nil),
-	).PrepareForEval(context.TODO())
-
-	if err != nil {
-		panic(err)
-	}
-
-	return &PermissionService{
-		query: &query,
-	}
-}
-
-func (s *PermissionService) Allowed(ctx context.Context, user *models.User, action string) bool {
-	input := map[string]interface{}{
-		"user":   user,
-		"action": action,
-	}
-
-	result, err := s.query.Eval(ctx, rego.EvalInput(input))
-	if err != nil {
-		panic(err)
-	}
-	return result[0].Bindings["allow"].(bool)
-}