Control-plane/internal/auth/repository.go

package auth

import (
	"context"
	"time"

	"github.com/google/uuid"
	"gorm.io/gorm"
)

type UserRepository interface {
	CreateUser(ctx context.Context, user *User) error
	FindByEmail(ctx context.Context, email string) (*User, error)
	FindByID(ctx context.Context, id string) (*User, error)
	CreateRefreshToken(ctx context.Context, doc *RefreshTokenDoc) error
	FindRefreshTokenByHash(ctx context.Context, hash string) (*RefreshTokenDoc, error)
	DeleteRefreshToken(ctx context.Context, id string) error
	DeleteRefreshTokenByHash(ctx context.Context, hash string) (bool, error)
	UpdateUserUsername(ctx context.Context, id, username string) error
	UpdateUserPassword(ctx context.Context, id, passwordHash string) error
	DeleteExpiredRefreshTokens(ctx context.Context) error
}

type Repository struct {
	db *gorm.DB
}

func NewRepository(db *gorm.DB) *Repository {
	return &Repository{db: db}
}

func (r *Repository) CreateUser(ctx context.Context, user *User) error {
	user.ID = uuid.New().String()
	user.CreatedAt = time.Now().UTC()
	return r.db.WithContext(ctx).Create(user).Error
}

func (r *Repository) FindByEmail(ctx context.Context, email string) (*User, error) {
	var user User
	err := r.db.WithContext(ctx).Where("email = ?", email).First(&user).Error
	if err != nil {
		return nil, err
	}
	return &user, nil
}

func (r *Repository) FindByID(ctx context.Context, id string) (*User, error) {
	var user User
	err := r.db.WithContext(ctx).Where("id = ?", id).First(&user).Error
	if err != nil {
		return nil, err
	}
	return &user, nil
}

func (r *Repository) CreateRefreshToken(ctx context.Context, doc *RefreshTokenDoc) error {
	doc.ID = uuid.New().String()
	doc.CreatedAt = time.Now().UTC()
	return r.db.WithContext(ctx).Create(doc).Error
}

func (r *Repository) FindRefreshTokenByHash(
	ctx context.Context,
	hash string,
) (*RefreshTokenDoc, error) {
	var doc RefreshTokenDoc
	err := r.db.WithContext(ctx).
		Where("token_hash = ? AND expires_at > NOW()", hash).
		First(&doc).
		Error
	if err != nil {
		return nil, err
	}
	return &doc, nil
}

func (r *Repository) DeleteRefreshToken(ctx context.Context, id string) error {
	return r.db.WithContext(ctx).Where("id = ?", id).Delete(&RefreshTokenDoc{}).Error
}

func (r *Repository) DeleteRefreshTokenByHash(ctx context.Context, hash string) (bool, error) {
	result := r.db.WithContext(ctx).Where("token_hash = ?", hash).Delete(&RefreshTokenDoc{})
	if result.Error != nil {
		return false, result.Error
	}
	return result.RowsAffected > 0, nil
}

func (r *Repository) UpdateUserUsername(ctx context.Context, id, username string) error {
	return r.db.WithContext(ctx).Model(&User{}).Where("id = ?", id).
		Update("username", username).Error
}

func (r *Repository) UpdateUserPassword(ctx context.Context, id, passwordHash string) error {
	return r.db.WithContext(ctx).Model(&User{}).Where("id = ?", id).
		Update("password_hash", passwordHash).Error
}

func (r *Repository) DeleteExpiredRefreshTokens(ctx context.Context) error {
	return r.db.WithContext(ctx).
		Where("expires_at <= NOW()").Delete(&RefreshTokenDoc{}).Error
}