fully implement acl backend and interface

internal/acl/service.go

@@ -1,7 +1,6 @@
 package acl
 
 import (
-	"errors"
 	"fmt"
 
 	"gorm.io/gorm"
@@ -40,75 +39,3 @@ func (s *Service) Init() error {
 	s.initialized = true
 	return nil
 }
-
-// Admin crud functions //
-
-// Resources
-
-// AssignResourceToRole assigns a resource to a role
-func (s *Service) AssignResourceToRole(roleID, resourceID uint) error {
-	if !s.isInitialized() {
-		return ErrNotInitialized
-	}
-	rr := RoleResource{
-		RoleID:     roleID,
-		ResourceID: resourceID,
-	}
-	return s.db.FirstOrCreate(&rr, RoleResource{RoleID: roleID, ResourceID: resourceID}).Error
-}
-
-// AssignRoleToUser assigns a role to a user
-func (s *Service) AssignRoleToUser(roleID, userID uint) error {
-	if !s.isInitialized() {
-		return ErrNotInitialized
-	}
-	ur := UserRole{
-		UserID: userID,
-		RoleID: roleID,
-	}
-	if err := s.db.Create(&ur).Error; err != nil {
-		if errors.Is(err, gorm.ErrDuplicatedKey) {
-			return fmt.Errorf("role already assigned to user")
-		}
-		return err
-	}
-	return nil
-}
-
-// RemoveResourceFromRole removes a resource from a role
-func (s *Service) RemoveResourceFromRole(roleID, resourceID uint) error {
-	if !s.isInitialized() {
-		return ErrNotInitialized
-	}
-	return s.db.Where("role_id = ? AND resource_id = ?", roleID, resourceID).Delete(&RoleResource{}).Error
-}
-
-// RemoveRoleFromUser removes a role from a user
-func (s *Service) RemoveRoleFromUser(roleID, userID uint) error {
-	if !s.isInitialized() {
-		return ErrNotInitialized
-	}
-	return s.db.Where("role_id = ? AND user_id = ?", roleID, userID).Delete(&UserRole{}).Error
-}
-
-// GetRoleResources returns all resources for a given role
-func (s *Service) GetRoleResources(roleID uint) ([]Resource, error) {
-	if !s.isInitialized() {
-		return nil, ErrNotInitialized
-	}
-	var resources []Resource
-	err := s.db.Joins("JOIN role_resources rr ON rr.resource_id = resources.id").
-		Where("rr.role_id = ?", roleID).Find(&resources).Error
-	return resources, err
-}
-
-// GetUserRoles returns all roles for a given user
-func (s *Service) GetUserRoles(userID uint) ([]Role, error) {
-	if !s.isInitialized() {
-		return nil, ErrNotInitialized
-	}
-	var roles []Role
-	err := s.db.Joins("JOIN user_roles ur ON ur.role_id = roles.id").
-		Where("ur.user_id = ?", userID).Find(&roles).Error
-	return roles, err
-}