Implement Collection-Cipher mapping

2025-09-12 19:45:58 +03:00 · 2018-05-09 11:55:05 +01:00
parent 032134aabc
commit 34f2aa68f4
8 changed files with 125 additions and 3 deletions
--- a/src/db/models/cipher.rs
+++ b/src/db/models/cipher.rs
@@ -98,7 +98,7 @@ impl Cipher {
            "OrganizationId": self.organization_uuid,
            "Attachments": attachments_json,
            "OrganizationUseTotp": false,
-            "CollectionIds": [],
+            "CollectionIds": self.get_collections(&conn),

            "Name": self.name,
            "Notes": self.notes,
@@ -241,4 +241,11 @@ impl Cipher {
            .select(ciphers::all_columns)
            .load::<Self>(&**conn).expect("Error loading ciphers")
    }
+
+    pub fn get_collections(&self, conn: &DbConn) -> Vec<String> {
+        ciphers_collections::table
+        .filter(ciphers_collections::cipher_uuid.eq(&self.uuid))
+        .select(ciphers_collections::collection_uuid)
+        .load::<String>(&**conn).unwrap_or(vec![])
+    }
 }
--- a/src/db/models/collection.rs
+++ b/src/db/models/collection.rs
@@ -2,7 +2,7 @@ use serde_json::Value as JsonValue;

 use uuid::Uuid;

-use super::Organization;
+use super::{Organization, UserOrganization};

 #[derive(Debug, Identifiable, Queryable, Insertable, Associations)]
 #[table_name = "collections"]
@@ -100,6 +100,27 @@ impl Collection {
            .select(collections::all_columns)
            .first::<Self>(&**conn).ok()
    }
+
+    pub fn is_writable_by_user(&self, user_uuid: &str, conn: &DbConn) -> bool {
+        match UserOrganization::find_by_user_and_org(&user_uuid, &self.org_uuid, &conn) {
+            None => false, // Not in Org
+            Some(user_org) => {
+               if user_org.access_all {
+                   true
+               } else {
+                   match users_collections::table.inner_join(collections::table)
+                   .filter(users_collections::collection_uuid.eq(&self.uuid))
+                   .filter(users_collections::user_uuid.eq(&user_uuid))
+                   .filter(users_collections::read_only.eq(false))
+                   .select(collections::all_columns)
+                   .first::<Self>(&**conn).ok() {
+                       None => false, // Read only or no access to collection
+                       Some(_) => true,
+                   }
+               }
+            }
+        }
+    }
 }

 use super::User; 
@@ -147,4 +168,40 @@ impl CollectionUsers {
            _ => false,
        }
    }
+}
+
+use super::Cipher; 
+
+#[derive(Debug, Identifiable, Queryable, Insertable, Associations)]
+#[table_name = "ciphers_collections"]
+#[belongs_to(Cipher, foreign_key = "cipher_uuid")]
+#[belongs_to(Collection, foreign_key = "collection_uuid")]
+#[primary_key(cipher_uuid, collection_uuid)]
+pub struct CollectionCipher {
+    pub cipher_uuid: String,
+    pub collection_uuid: String,
+}
+
+/// Database methods
+impl CollectionCipher {
+    pub fn save(cipher_uuid: &str, collection_uuid: &str, conn: &DbConn) -> bool {
+        match diesel::replace_into(ciphers_collections::table)
+            .values((
+                ciphers_collections::cipher_uuid.eq(cipher_uuid),
+                ciphers_collections::collection_uuid.eq(collection_uuid),
+            )).execute(&**conn) {
+            Ok(1) => true, // One row inserted
+            _ => false,
+        }
+    }
+
+    pub fn delete(cipher_uuid: &str, collection_uuid: &str, conn: &DbConn) -> bool {
+        match diesel::delete(ciphers_collections::table
+            .filter(ciphers_collections::cipher_uuid.eq(cipher_uuid))
+            .filter(ciphers_collections::collection_uuid.eq(collection_uuid)))
+            .execute(&**conn) {
+            Ok(1) => true, // One row deleted
+            _ => false,
+        }
+    }
 }
--- a/src/db/models/mod.rs
+++ b/src/db/models/mod.rs
@@ -14,4 +14,4 @@ pub use self::folder::{Folder, FolderCipher};
 pub use self::user::User;
 pub use self::organization::Organization;
 pub use self::organization::{UserOrganization, UserOrgStatus, UserOrgType};
-pub use self::collection::{Collection, CollectionUsers};
+pub use self::collection::{Collection, CollectionUsers, CollectionCipher};
--- a/src/db/schema.rs
+++ b/src/db/schema.rs
@@ -101,6 +101,13 @@ table! {
    }
 }

+table! {
+    ciphers_collections (cipher_uuid, collection_uuid) {
+        cipher_uuid -> Text,
+        collection_uuid -> Text,
+    }
+}
+
 table! {
    users_organizations (uuid) {
        uuid -> Text,
@@ -124,6 +131,8 @@ joinable!(folders_ciphers -> ciphers (cipher_uuid));
 joinable!(folders_ciphers -> folders (folder_uuid));
 joinable!(users_collections -> collections (collection_uuid));
 joinable!(users_collections -> users (user_uuid));
+joinable!(ciphers_collections -> collections (collection_uuid));
+joinable!(ciphers_collections -> ciphers (cipher_uuid));
 joinable!(users_organizations -> organizations (org_uuid));
 joinable!(users_organizations -> users (user_uuid));

@@ -137,5 +146,6 @@ allow_tables_to_appear_in_same_query!(
    organizations,
    users,
    users_collections,
+    ciphers_collections,
    users_organizations,
 );