Merging full service user feature into main (#819)

Merging full feature branch into main. Adding full support for service users including backend objects, persistence, verification and api endpoints.
2026-04-19 16:56:39 +00:00 · 2023-04-22 12:57:51 +02:00
parent c2e90a2a97
commit 6fec0c682e
11 changed files with 938 additions and 163 deletions
--- a/management/server/http/api/openapi.yml
+++ b/management/server/http/api/openapi.yml
@@ -77,6 +77,10 @@ components:
          description: Is true if authenticated user is the same as this user
          type: boolean
          readOnly: true
+        is_service_user:
+          description: Is true if this user is a service user
+          type: boolean
+          readOnly: true
      required:
        - id
        - email
@@ -115,10 +119,13 @@ components:
          type: array
          items:
            type: string
+        is_service_user:
+          description: Is true if this user is a service user
+          type: boolean
      required:
        - role
        - auto_groups
-        - email
+        - is_service_user
    PeerMinimum:
      type: object
      properties:
@@ -825,6 +832,12 @@ paths:
      tags: [ Users ]
      security:
        - BearerAuth: [ ]
+      parameters:
+        - in: query
+          name: service_user
+          schema:
+            type: boolean
+          description: Filters users and returns either normal users or service users
      responses:
        '200':
          description: A JSON array of Users
@@ -903,6 +916,30 @@ paths:
          "$ref": "#/components/responses/forbidden"
        '500':
          "$ref": "#/components/responses/internal_error"
+    delete:
+      summary: Delete a User
+      tags: [ Users ]
+      security:
+        - BearerAuth: [ ]
+      parameters:
+        - in: path
+          name: id
+          required: true
+          schema:
+            type: string
+          description: The User ID
+      responses:
+        '200':
+          description: Delete status code
+          content: { }
+        '400':
+          "$ref": "#/components/responses/bad_request"
+        '401':
+          "$ref": "#/components/responses/requires_authentication"
+        '403':
+          "$ref": "#/components/responses/forbidden"
+        '500':
+          "$ref": "#/components/responses/internal_error"
  /api/users/{userId}/tokens:
    get:
      summary: Returns a list of all tokens for a user
--- a/management/server/http/api/types.gen.go
+++ b/management/server/http/api/types.gen.go
@@ -677,6 +677,9 @@ type User struct {
 	// IsCurrent Is true if authenticated user is the same as this user
 	IsCurrent *bool `json:"is_current,omitempty"`

+	// IsServiceUser Is true if this user is a service user
+	IsServiceUser *bool `json:"is_service_user,omitempty"`
+
 	// Name User's name from idp provider
 	Name string `json:"name"`

@@ -696,7 +699,10 @@ type UserCreateRequest struct {
 	AutoGroups []string `json:"auto_groups"`

 	// Email User's Email to send invite to
-	Email string `json:"email"`
+	Email *string `json:"email,omitempty"`
+
+	// IsServiceUser Is true if this user is a service user
+	IsServiceUser bool `json:"is_service_user"`

 	// Name User's full name
 	Name *string `json:"name,omitempty"`
@@ -787,6 +793,12 @@ type PutApiRulesIdJSONBody struct {
 	Sources *[]string `json:"sources,omitempty"`
 }

+// GetApiUsersParams defines parameters for GetApiUsers.
+type GetApiUsersParams struct {
+	// ServiceUser Filters users and returns either normal users or service users
+	ServiceUser *bool `form:"service_user,omitempty" json:"service_user,omitempty"`
+}
+
 // PutApiAccountsIdJSONRequestBody defines body for PutApiAccountsId for application/json ContentType.
 type PutApiAccountsIdJSONRequestBody PutApiAccountsIdJSONBody