feat: add show admin endpoint

Author: Yashin Santos

apps/rest_api/lib/controllers/admin/user.ex

@@ -26,4 +26,19 @@ defmodule RestAPI.Controller.Admin.User do
         error
     end
   end
+
+  def show(conn, %{"username" => _username} = params) do
+    params
+    |> ResourceManager.create_identity()
+    |> case do
+      {:ok, identity} when is_struct(identity) ->
+        conn
+        |> put_status(:created)
+        |> put_view(User)
+        |> render("show.json", response: identity)
+
+      {:error, error_reason} ->
+        error_reason
+    end
+  end
 end

apps/rest_api/lib/ports/resource_manager.ex

@@ -7,16 +7,25 @@ defmodule RestAPI.Ports.ResourceManager do
   @type possible_create_identity_response ::
           {:ok, struct()} | {:error, Ecto.Changeset.t() | :invalid_params}
 
+  @type possible_get_identity_responses ::
+          {:ok, struct()} | {:error, :not_found | :invalid_params}
+
   @doc "Delegates to ResourceManager.create_identity/1"
   @callback create_identity(input :: map()) :: possible_create_identity_response()
 
   @doc "Delegates to ResourceManager.password_allowed?/1"
   @callback password_allowed?(password :: String.t()) :: boolean()
 
+  @callback get_identity(input :: String.t()) :: possible_get_identity_responses()
+
   @doc "Create a new identity with it's credentials"
   @spec create_identity(input :: map()) :: possible_create_identity_response()
   def create_identity(input), do: implementation().create_identity(input)
 
+  @doc "Returns an user or application identity seaching by the given input"
+  @spec get_identity(input :: String.t()) :: possible_get_identity_responses()
+  def get_identity(input), do: implementation().get_identity(input)
+
   @doc "Checks if the given password is strong enough to be used"
   @spec password_allowed?(password :: String.t()) :: boolean()
   def password_allowed?(password), do: implementation().password_allowed?(password)

apps/rest_api/lib/views/admin/user.ex

@@ -13,4 +13,13 @@ defmodule RestAPI.Views.Admin.User do
       update_at: response.updated_at
     }
   end
+
+  def render("show.json", %{response: response}) do
+    %{
+      username: response.username,
+      status: response.status,
+      is_admin: response.is_admin,
+      blocked_until: response.blocked_until
+    }
+  end
 end

apps/rest_api/test/controllers/admin/user_test.exs

@@ -163,6 +163,79 @@ defmodule RestAPI.Controllers.Admin.User do
     end
   end
 
+  describe "GET #{@create_endpoint}" do
+    setup do
+      access_token = "my-access-token"
+      claims = default_claims()
+
+      {:ok, access_token: access_token, claims: claims}
+    end
+
+    test "should render user identity response", %{
+      conn: conn,
+      access_token: access_token,
+      claims: claims
+    } do
+      password = "MyP@ssword1234"
+
+      params = %{
+        "username" => "Shurato",
+        "password" => password,
+        "scopes" => [
+          "6a3a3771-9f56-4254-9497-927e441dacfc",
+          "8a235ba0-a827-4593-92c9-6248bef4fa06"
+        ]
+      }
+
+      expect(AuthenticatorMock, :validate_access_token, fn token ->
+        assert access_token == token
+        {:ok, claims}
+      end)
+
+      expect(AuthenticatorMock, :get_session, fn %{"jti" => jti} ->
+        assert claims["jti"] == jti
+        {:ok, success_session(claims)}
+      end)
+
+      expect(ResourceManagerMock, :password_allowed?, fn _input ->
+        true
+      end)
+
+      expect(AuthenticatorMock, :generate_hash, fn password_to_hash, :argon2 ->
+        assert password == password_to_hash
+        "password_hashed"
+      end)
+
+      expect(ResourceManagerMock, :create_identity, fn input ->
+        assert is_map(input)
+
+        {:ok,
+         %{
+           id: Ecto.UUID.generate(),
+           inserted_at: NaiveDateTime.utc_now(),
+           is_admin: false,
+           status: "active",
+           updated_at: NaiveDateTime.utc_now(),
+           username: "Shurato"
+         }}
+      end)
+
+      expect(AuthorizerMock, :authorize_admin, fn %Plug.Conn{} -> :ok end)
+
+      assert %{
+               "id" => _id,
+               "inserted_at" => _inserted_at,
+               "is_admin" => false,
+               "status" => "active",
+               "username" => "Shurato"
+             } =
+               conn
+               |> put_req_header("authorization", "Bearer #{access_token}")
+               |> post(@create_endpoint, params)
+               |> json_response(201)
+    end
+  end
+
   defp default_claims do
     %{
       "jti" => "03eds74a-c291-4b5f",