template-monorepo/internal/model/permission/domain/repository/casbin_adapter.go

package repository

import "context"

// CasbinPolicyAdapter is the persistence interface used by the RBAC
// usecase to load/save Casbin policy for a single tenant. The Mongo /
// Redis implementations live under repository/.
//
// A "rule" is the stringified Casbin tuple, e.g.
//
//	["p", "tenant_admin", "/api/v1/permissions/*", "GET|POST"]
//	["g", "TENANT-100001", "tenant_admin"]
//
// Rule format mirrors casbin's [][]string convention exactly.
type CasbinPolicyAdapter interface {
	// LoadAll returns every rule for tenantID. An empty slice means
	// "tenant has no policy" — callers should still call
	// enforcer.LoadFilteredPolicy with the tenant filter.
	LoadAll(ctx context.Context, tenantID string) ([][]string, error)

	// SaveAll replaces all rules for tenantID with rules. Implementations
	// MUST do this atomically (Redis MULTI / Mongo transaction).
	SaveAll(ctx context.Context, tenantID string, rules [][]string) error

	// AddPolicy adds a single rule.
	AddPolicy(ctx context.Context, tenantID string, rule []string) error

	// RemovePolicy removes a single rule.
	RemovePolicy(ctx context.Context, tenantID string, rule []string) error

	// Clear empties all rules for tenantID (used by tests + tenant disable).
	Clear(ctx context.Context, tenantID string) error
}
feat(permission): add RBAC module with Casbin enforcement and policy reload - Multi-tenant RBAC: permission catalog, roles, role-permission mapping, user-role assignment, and external IdP role mapping (zitadel/ldap/scim). - Casbin enforcer with Redis-backed adapter and Pub/Sub reload for multi-instance policy sync; HTTP middleware enforces (tenant, role, path, method) with platform admin bypass. - /api/v1/permissions routes: catalog, me, policy/reload, roles CRUD, role permissions, user roles, role mappings. - New error scope (31) for Permission and biz code descriptions. - Wire Permission module into ServiceContext, config, mongo-index, and add cmd/permission-seed CLI plus etc/rbac.conf model. - Redis client gains lazy PubSubClient helper (go-zero wrapper lacks Subscribe). - Rewrite internal/model/member/README to cover Tenant/Member/Identity. Co-authored-by: Cursor <cursoragent@cursor.com> 2026-05-21 08:47:35 +00:00			`package repository`

			`import "context"`

			`// CasbinPolicyAdapter is the persistence interface used by the RBAC`
			`// usecase to load/save Casbin policy for a single tenant. The Mongo /`
			`// Redis implementations live under repository/.`
			`//`
			`// A "rule" is the stringified Casbin tuple, e.g.`
			`//`
			`// ["p", "tenant_admin", "/api/v1/permissions/*", "GET\|POST"]`
			`// ["g", "TENANT-100001", "tenant_admin"]`
			`//`
			`// Rule format mirrors casbin's [][]string convention exactly.`
			`type CasbinPolicyAdapter interface {`
			`// LoadAll returns every rule for tenantID. An empty slice means`
			`// "tenant has no policy" — callers should still call`
			`// enforcer.LoadFilteredPolicy with the tenant filter.`
			`LoadAll(ctx context.Context, tenantID string) ([][]string, error)`

			`// SaveAll replaces all rules for tenantID with rules. Implementations`
			`// MUST do this atomically (Redis MULTI / Mongo transaction).`
			`SaveAll(ctx context.Context, tenantID string, rules [][]string) error`

			`// AddPolicy adds a single rule.`
			`AddPolicy(ctx context.Context, tenantID string, rule []string) error`

			`// RemovePolicy removes a single rule.`
			`RemovePolicy(ctx context.Context, tenantID string, rule []string) error`

			`// Clear empties all rules for tenantID (used by tests + tenant disable).`
			`Clear(ctx context.Context, tenantID string) error`
			`}`