package repository import ( "context" "database/sql" "sort" dbent "github.com/Wei-Shaw/sub2api/ent" dbuser "github.com/Wei-Shaw/sub2api/ent/user" "github.com/Wei-Shaw/sub2api/ent/userallowedgroup" "github.com/Wei-Shaw/sub2api/ent/usersubscription" "github.com/Wei-Shaw/sub2api/internal/pkg/pagination" "github.com/Wei-Shaw/sub2api/internal/service" "github.com/lib/pq" ) type userRepository struct { client *dbent.Client sql sqlExecutor begin sqlBeginner } func NewUserRepository(client *dbent.Client, sqlDB *sql.DB) service.UserRepository { return newUserRepositoryWithSQL(client, sqlDB) } func newUserRepositoryWithSQL(client *dbent.Client, sqlq sqlExecutor) *userRepository { var beginner sqlBeginner if b, ok := sqlq.(sqlBeginner); ok { beginner = b } return &userRepository{client: client, sql: sqlq, begin: beginner} } func (r *userRepository) Create(ctx context.Context, userIn *service.User) error { if userIn == nil { return nil } exec := r.sql txClient := r.client var sqlTx *sql.Tx var txClientClose func() error if r.begin != nil { var err error sqlTx, err = r.begin.BeginTx(ctx, nil) if err != nil { return err } exec = sqlTx txClient = entClientFromSQLTx(sqlTx) txClientClose = txClient.Close defer func() { _ = sqlTx.Rollback() }() } if txClientClose != nil { defer func() { _ = txClientClose() }() } created, err := txClient.User.Create(). SetEmail(userIn.Email). SetUsername(userIn.Username). SetWechat(userIn.Wechat). SetNotes(userIn.Notes). SetPasswordHash(userIn.PasswordHash). SetRole(userIn.Role). SetBalance(userIn.Balance). SetConcurrency(userIn.Concurrency). SetStatus(userIn.Status). Save(ctx) if err != nil { return translatePersistenceError(err, nil, service.ErrEmailExists) } if err := r.syncUserAllowedGroups(ctx, txClient, exec, created.ID, userIn.AllowedGroups); err != nil { return err } if sqlTx != nil { if err := sqlTx.Commit(); err != nil { return err } } applyUserEntityToService(userIn, created) return nil } func (r *userRepository) GetByID(ctx context.Context, id int64) (*service.User, error) { m, err := r.client.User.Query().Where(dbuser.IDEQ(id)).Only(ctx) if err != nil { return nil, translatePersistenceError(err, service.ErrUserNotFound, nil) } out := userEntityToService(m) groups, err := r.loadAllowedGroups(ctx, []int64{id}) if err == nil { if v, ok := groups[id]; ok { out.AllowedGroups = v } } return out, nil } func (r *userRepository) GetByEmail(ctx context.Context, email string) (*service.User, error) { m, err := r.client.User.Query().Where(dbuser.EmailEQ(email)).Only(ctx) if err != nil { return nil, translatePersistenceError(err, service.ErrUserNotFound, nil) } out := userEntityToService(m) groups, err := r.loadAllowedGroups(ctx, []int64{m.ID}) if err == nil { if v, ok := groups[m.ID]; ok { out.AllowedGroups = v } } return out, nil } func (r *userRepository) Update(ctx context.Context, userIn *service.User) error { if userIn == nil { return nil } exec := r.sql txClient := r.client var sqlTx *sql.Tx var txClientClose func() error if r.begin != nil { var err error sqlTx, err = r.begin.BeginTx(ctx, nil) if err != nil { return err } exec = sqlTx txClient = entClientFromSQLTx(sqlTx) txClientClose = txClient.Close defer func() { _ = sqlTx.Rollback() }() } if txClientClose != nil { defer func() { _ = txClientClose() }() } updated, err := txClient.User.UpdateOneID(userIn.ID). SetEmail(userIn.Email). SetUsername(userIn.Username). SetWechat(userIn.Wechat). SetNotes(userIn.Notes). SetPasswordHash(userIn.PasswordHash). SetRole(userIn.Role). SetBalance(userIn.Balance). SetConcurrency(userIn.Concurrency). SetStatus(userIn.Status). Save(ctx) if err != nil { return translatePersistenceError(err, service.ErrUserNotFound, service.ErrEmailExists) } if err := r.syncUserAllowedGroups(ctx, txClient, exec, updated.ID, userIn.AllowedGroups); err != nil { return err } if sqlTx != nil { if err := sqlTx.Commit(); err != nil { return err } } userIn.UpdatedAt = updated.UpdatedAt return nil } func (r *userRepository) Delete(ctx context.Context, id int64) error { _, err := r.client.User.Delete().Where(dbuser.IDEQ(id)).Exec(ctx) return err } func (r *userRepository) List(ctx context.Context, params pagination.PaginationParams) ([]service.User, *pagination.PaginationResult, error) { return r.ListWithFilters(ctx, params, "", "", "") } func (r *userRepository) ListWithFilters(ctx context.Context, params pagination.PaginationParams, status, role, search string) ([]service.User, *pagination.PaginationResult, error) { q := r.client.User.Query() if status != "" { q = q.Where(dbuser.StatusEQ(status)) } if role != "" { q = q.Where(dbuser.RoleEQ(role)) } if search != "" { q = q.Where( dbuser.Or( dbuser.EmailContainsFold(search), dbuser.UsernameContainsFold(search), dbuser.WechatContainsFold(search), ), ) } total, err := q.Clone().Count(ctx) if err != nil { return nil, nil, err } users, err := q. Offset(params.Offset()). Limit(params.Limit()). Order(dbent.Desc(dbuser.FieldID)). All(ctx) if err != nil { return nil, nil, err } outUsers := make([]service.User, 0, len(users)) if len(users) == 0 { return outUsers, paginationResultFromTotal(int64(total), params), nil } userIDs := make([]int64, 0, len(users)) userMap := make(map[int64]*service.User, len(users)) for i := range users { userIDs = append(userIDs, users[i].ID) u := userEntityToService(users[i]) outUsers = append(outUsers, *u) userMap[u.ID] = &outUsers[len(outUsers)-1] } // Batch load active subscriptions with groups to avoid N+1. subs, err := r.client.UserSubscription.Query(). Where( usersubscription.UserIDIn(userIDs...), usersubscription.StatusEQ(service.SubscriptionStatusActive), ). WithGroup(). All(ctx) if err != nil { return nil, nil, err } for i := range subs { if u, ok := userMap[subs[i].UserID]; ok { u.Subscriptions = append(u.Subscriptions, *userSubscriptionEntityToService(subs[i])) } } allowedGroupsByUser, err := r.loadAllowedGroups(ctx, userIDs) if err == nil { for id, u := range userMap { if groups, ok := allowedGroupsByUser[id]; ok { u.AllowedGroups = groups } } } return outUsers, paginationResultFromTotal(int64(total), params), nil } func (r *userRepository) UpdateBalance(ctx context.Context, id int64, amount float64) error { _, err := r.client.User.Update().Where(dbuser.IDEQ(id)).AddBalance(amount).Save(ctx) return err } func (r *userRepository) DeductBalance(ctx context.Context, id int64, amount float64) error { n, err := r.client.User.Update(). Where(dbuser.IDEQ(id), dbuser.BalanceGTE(amount)). AddBalance(-amount). Save(ctx) if err != nil { return err } if n == 0 { return service.ErrInsufficientBalance } return nil } func (r *userRepository) UpdateConcurrency(ctx context.Context, id int64, amount int) error { _, err := r.client.User.Update().Where(dbuser.IDEQ(id)).AddConcurrency(amount).Save(ctx) return err } func (r *userRepository) ExistsByEmail(ctx context.Context, email string) (bool, error) { return r.client.User.Query().Where(dbuser.EmailEQ(email)).Exist(ctx) } func (r *userRepository) RemoveGroupFromAllowedGroups(ctx context.Context, groupID int64) (int64, error) { if r.sql == nil { return 0, nil } joinAffected, err := r.client.UserAllowedGroup.Delete(). Where(userallowedgroup.GroupIDEQ(groupID)). Exec(ctx) if err != nil { return 0, err } arrayRes, err := r.sql.ExecContext( ctx, "UPDATE users SET allowed_groups = array_remove(allowed_groups, $1), updated_at = NOW() WHERE $1 = ANY(allowed_groups)", groupID, ) if err != nil { return 0, err } arrayAffected, _ := arrayRes.RowsAffected() if int64(joinAffected) > arrayAffected { return int64(joinAffected), nil } return arrayAffected, nil } func (r *userRepository) GetFirstAdmin(ctx context.Context) (*service.User, error) { m, err := r.client.User.Query(). Where( dbuser.RoleEQ(service.RoleAdmin), dbuser.StatusEQ(service.StatusActive), ). Order(dbent.Asc(dbuser.FieldID)). First(ctx) if err != nil { return nil, translatePersistenceError(err, service.ErrUserNotFound, nil) } out := userEntityToService(m) groups, err := r.loadAllowedGroups(ctx, []int64{m.ID}) if err == nil { if v, ok := groups[m.ID]; ok { out.AllowedGroups = v } } return out, nil } func (r *userRepository) loadAllowedGroups(ctx context.Context, userIDs []int64) (map[int64][]int64, error) { out := make(map[int64][]int64, len(userIDs)) if len(userIDs) == 0 { return out, nil } rows, err := r.client.UserAllowedGroup.Query(). Where(userallowedgroup.UserIDIn(userIDs...)). All(ctx) if err != nil { return nil, err } for i := range rows { out[rows[i].UserID] = append(out[rows[i].UserID], rows[i].GroupID) } for userID := range out { sort.Slice(out[userID], func(i, j int) bool { return out[userID][i] < out[userID][j] }) } return out, nil } func (r *userRepository) syncUserAllowedGroups(ctx context.Context, client *dbent.Client, exec sqlExecutor, userID int64, groupIDs []int64) error { if client == nil || exec == nil { return nil } // Keep join table as the source of truth for reads. if _, err := client.UserAllowedGroup.Delete().Where(userallowedgroup.UserIDEQ(userID)).Exec(ctx); err != nil { return err } unique := make(map[int64]struct{}, len(groupIDs)) for _, id := range groupIDs { if id <= 0 { continue } unique[id] = struct{}{} } legacyGroups := make([]int64, 0, len(unique)) if len(unique) > 0 { creates := make([]*dbent.UserAllowedGroupCreate, 0, len(unique)) for groupID := range unique { creates = append(creates, client.UserAllowedGroup.Create().SetUserID(userID).SetGroupID(groupID)) legacyGroups = append(legacyGroups, groupID) } if err := client.UserAllowedGroup. CreateBulk(creates...). OnConflictColumns(userallowedgroup.FieldUserID, userallowedgroup.FieldGroupID). DoNothing(). Exec(ctx); err != nil { return err } } // Phase 1 compatibility: keep legacy users.allowed_groups array updated for existing raw SQL paths. var legacy any if len(legacyGroups) > 0 { sort.Slice(legacyGroups, func(i, j int) bool { return legacyGroups[i] < legacyGroups[j] }) legacy = pq.Array(legacyGroups) } if _, err := exec.ExecContext(ctx, "UPDATE users SET allowed_groups = $1::bigint[] WHERE id = $2", legacy, userID); err != nil { return err } return nil } func applyUserEntityToService(dst *service.User, src *dbent.User) { if dst == nil || src == nil { return } dst.ID = src.ID dst.CreatedAt = src.CreatedAt dst.UpdatedAt = src.UpdatedAt }