Prepara versao dev 1.0

2025-12-08 21:47:38 -03:00
parent 512287698e
commit 190fde20c3
85 changed files with 7755 additions and 2317 deletions
--- a/backend/internal/service/agency_service.go
+++ b/backend/internal/service/agency_service.go
@@ -0,0 +1,191 @@
+package service
+
+import (
+	"aggios-app/backend/internal/config"
+	"aggios-app/backend/internal/domain"
+	"aggios-app/backend/internal/repository"
+	"fmt"
+
+	"github.com/google/uuid"
+	"golang.org/x/crypto/bcrypt"
+)
+
+// AgencyService handles agency registration and management
+type AgencyService struct {
+	userRepo   *repository.UserRepository
+	tenantRepo *repository.TenantRepository
+	cfg        *config.Config
+}
+
+// NewAgencyService creates a new agency service
+func NewAgencyService(userRepo *repository.UserRepository, tenantRepo *repository.TenantRepository, cfg *config.Config) *AgencyService {
+	return &AgencyService{
+		userRepo:   userRepo,
+		tenantRepo: tenantRepo,
+		cfg:        cfg,
+	}
+}
+
+// RegisterAgency creates a new agency (tenant) and its admin user
+// Only SUPERADMIN can call this
+func (s *AgencyService) RegisterAgency(req domain.RegisterAgencyRequest) (*domain.Tenant, *domain.User, error) {
+	// Validate password
+	if len(req.AdminPassword) < s.cfg.Security.PasswordMinLength {
+		return nil, nil, ErrWeakPassword
+	}
+
+	// Check if subdomain is available
+	exists, err := s.tenantRepo.SubdomainExists(req.Subdomain)
+	if err != nil {
+		return nil, nil, err
+	}
+	if exists {
+		return nil, nil, ErrSubdomainTaken
+	}
+
+	// Check if admin email already exists
+	emailExists, err := s.userRepo.EmailExists(req.AdminEmail)
+	if err != nil {
+		return nil, nil, err
+	}
+	if emailExists {
+		return nil, nil, ErrEmailAlreadyExists
+	}
+
+	// Create tenant
+	address := req.Street
+	if req.Number != "" {
+		address += ", " + req.Number
+	}
+	if req.Complement != "" {
+		address += " - " + req.Complement
+	}
+	if req.Neighborhood != "" {
+		address += " - " + req.Neighborhood
+	}
+
+	tenant := &domain.Tenant{
+		Name:        req.AgencyName,
+		Domain:      fmt.Sprintf("%s.%s", req.Subdomain, s.cfg.App.BaseDomain),
+		Subdomain:   req.Subdomain,
+		CNPJ:        req.CNPJ,
+		RazaoSocial: req.RazaoSocial,
+		Email:       req.AdminEmail,
+		Website:     req.Website,
+		Address:     address,
+		City:        req.City,
+		State:       req.State,
+		Zip:         req.CEP,
+		Description: req.Description,
+		Industry:    req.Industry,
+	}
+
+	if err := s.tenantRepo.Create(tenant); err != nil {
+		return nil, nil, err
+	}
+
+	// Hash password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(req.AdminPassword), bcrypt.DefaultCost)
+	if err != nil {
+		return nil, nil, err
+	}
+
+	// Create admin user for the agency
+	adminUser := &domain.User{
+		TenantID: &tenant.ID,
+		Email:    req.AdminEmail,
+		Password: string(hashedPassword),
+		Name:     req.AdminName,
+		Role:     "ADMIN_AGENCIA",
+	}
+
+	if err := s.userRepo.Create(adminUser); err != nil {
+		return nil, nil, err
+	}
+
+	return tenant, adminUser, nil
+}
+
+// RegisterClient creates a new client user for a specific agency
+// Only ADMIN_AGENCIA can call this
+func (s *AgencyService) RegisterClient(req domain.RegisterClientRequest, tenantID uuid.UUID) (*domain.User, error) {
+	// Validate password
+	if len(req.Password) < s.cfg.Security.PasswordMinLength {
+		return nil, ErrWeakPassword
+	}
+
+	// Check if email already exists
+	exists, err := s.userRepo.EmailExists(req.Email)
+	if err != nil {
+		return nil, err
+	}
+	if exists {
+		return nil, ErrEmailAlreadyExists
+	}
+
+	// Hash password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(req.Password), bcrypt.DefaultCost)
+	if err != nil {
+		return nil, err
+	}
+
+	// Create client user
+	client := &domain.User{
+		TenantID: &tenantID,
+		Email:    req.Email,
+		Password: string(hashedPassword),
+		Name:     req.Name,
+		Role:     "CLIENTE",
+	}
+
+	if err := s.userRepo.Create(client); err != nil {
+		return nil, err
+	}
+
+	return client, nil
+}
+
+// GetAgencyDetails returns tenant and admin information for superadmin view
+func (s *AgencyService) GetAgencyDetails(id uuid.UUID) (*domain.AgencyDetails, error) {
+	tenant, err := s.tenantRepo.FindByID(id)
+	if err != nil {
+		return nil, err
+	}
+	if tenant == nil {
+		return nil, ErrTenantNotFound
+	}
+
+	admin, err := s.userRepo.FindAdminByTenantID(id)
+	if err != nil {
+		return nil, err
+	}
+
+	protocol := "http://"
+	if s.cfg.App.Environment == "production" {
+		protocol = "https://"
+	}
+
+	details := &domain.AgencyDetails{
+		Tenant:    tenant,
+		AccessURL: fmt.Sprintf("%s%s", protocol, tenant.Domain),
+	}
+
+	if admin != nil {
+		details.Admin = admin
+	}
+
+	return details, nil
+}
+
+// DeleteAgency removes a tenant and its related resources
+func (s *AgencyService) DeleteAgency(id uuid.UUID) error {
+	tenant, err := s.tenantRepo.FindByID(id)
+	if err != nil {
+		return err
+	}
+	if tenant == nil {
+		return ErrTenantNotFound
+	}
+
+	return s.tenantRepo.Delete(id)
+}
--- a/backend/internal/service/auth_service.go
+++ b/backend/internal/service/auth_service.go
@@ -0,0 +1,170 @@
+package service
+
+import (
+	"errors"
+	"time"
+
+	"aggios-app/backend/internal/config"
+	"aggios-app/backend/internal/domain"
+	"aggios-app/backend/internal/repository"
+
+	"github.com/golang-jwt/jwt/v5"
+	"github.com/google/uuid"
+	"golang.org/x/crypto/bcrypt"
+)
+
+var (
+	ErrEmailAlreadyExists = errors.New("email already registered")
+	ErrInvalidCredentials = errors.New("invalid email or password")
+	ErrWeakPassword       = errors.New("password too weak")
+	ErrSubdomainTaken     = errors.New("subdomain already taken")
+	ErrUnauthorized       = errors.New("unauthorized access")
+)
+
+// AuthService handles authentication business logic
+type AuthService struct {
+	userRepo   *repository.UserRepository
+	tenantRepo *repository.TenantRepository
+	cfg        *config.Config
+}
+
+// NewAuthService creates a new auth service
+func NewAuthService(userRepo *repository.UserRepository, tenantRepo *repository.TenantRepository, cfg *config.Config) *AuthService {
+	return &AuthService{
+		userRepo:   userRepo,
+		tenantRepo: tenantRepo,
+		cfg:        cfg,
+	}
+}
+
+// Register creates a new user account
+func (s *AuthService) Register(req domain.CreateUserRequest) (*domain.User, error) {
+	// Validate password strength
+	if len(req.Password) < s.cfg.Security.PasswordMinLength {
+		return nil, ErrWeakPassword
+	}
+
+	// Check if email already exists
+	exists, err := s.userRepo.EmailExists(req.Email)
+	if err != nil {
+		return nil, err
+	}
+	if exists {
+		return nil, ErrEmailAlreadyExists
+	}
+
+	// Hash password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(req.Password), bcrypt.DefaultCost)
+	if err != nil {
+		return nil, err
+	}
+
+	// Create user
+	user := &domain.User{
+		Email:    req.Email,
+		Password: string(hashedPassword),
+		Name:     req.Name,
+	}
+
+	if err := s.userRepo.Create(user); err != nil {
+		return nil, err
+	}
+
+	return user, nil
+}
+
+// Login authenticates a user and returns a JWT token
+func (s *AuthService) Login(req domain.LoginRequest) (*domain.LoginResponse, error) {
+	// Find user by email
+	user, err := s.userRepo.FindByEmail(req.Email)
+	if err != nil {
+		return nil, err
+	}
+	if user == nil {
+		return nil, ErrInvalidCredentials
+	}
+
+	// Verify password
+	if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(req.Password)); err != nil {
+		return nil, ErrInvalidCredentials
+	}
+
+	// Generate JWT token
+	token, err := s.generateToken(user)
+	if err != nil {
+		return nil, err
+	}
+
+	response := &domain.LoginResponse{
+		Token: token,
+		User:  *user,
+	}
+
+	// If user has a tenant, get the subdomain
+	if user.TenantID != nil {
+		tenant, err := s.tenantRepo.FindByID(*user.TenantID)
+		if err == nil && tenant != nil {
+			response.Subdomain = &tenant.Subdomain
+		}
+	}
+
+	return response, nil
+}
+
+func (s *AuthService) generateToken(user *domain.User) (string, error) {
+	claims := jwt.MapClaims{
+		"user_id":   user.ID.String(),
+		"email":     user.Email,
+		"role":      user.Role,
+		"tenant_id": nil,
+		"exp":       time.Now().Add(time.Hour * 24 * 7).Unix(), // 7 days
+	}
+	
+	if user.TenantID != nil {
+		claims["tenant_id"] = user.TenantID.String()
+	}
+
+	token := jwt.NewWithClaims(jwt.SigningMethodHS256, claims)
+	return token.SignedString([]byte(s.cfg.JWT.Secret))
+}
+
+// ChangePassword changes a user's password
+func (s *AuthService) ChangePassword(userID string, currentPassword, newPassword string) error {
+	// Validate new password strength
+	if len(newPassword) < s.cfg.Security.PasswordMinLength {
+		return ErrWeakPassword
+	}
+
+	// Parse userID
+	uid, err := parseUUID(userID)
+	if err != nil {
+		return ErrInvalidCredentials
+	}
+
+	// Find user
+	user, err := s.userRepo.FindByID(uid)
+	if err != nil {
+		return err
+	}
+	if user == nil {
+		return ErrInvalidCredentials
+	}
+
+	// Verify current password
+	if err := bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(currentPassword)); err != nil {
+		return ErrInvalidCredentials
+	}
+
+	// Hash new password
+	hashedPassword, err := bcrypt.GenerateFromPassword([]byte(newPassword), bcrypt.DefaultCost)
+	if err != nil {
+		return err
+	}
+
+	// Update password
+	return s.userRepo.UpdatePassword(userID, string(hashedPassword))
+}
+
+func parseUUID(s string) (uuid.UUID, error) {
+	return uuid.Parse(s)
+}
--- a/backend/internal/service/company_service.go
+++ b/backend/internal/service/company_service.go
@@ -0,0 +1,73 @@
+package service
+
+import (
+	"errors"
+
+	"aggios-app/backend/internal/domain"
+	"aggios-app/backend/internal/repository"
+
+	"github.com/google/uuid"
+)
+
+var (
+	ErrCompanyNotFound = errors.New("company not found")
+	ErrCNPJAlreadyExists = errors.New("CNPJ already registered")
+)
+
+// CompanyService handles company business logic
+type CompanyService struct {
+	companyRepo *repository.CompanyRepository
+}
+
+// NewCompanyService creates a new company service
+func NewCompanyService(companyRepo *repository.CompanyRepository) *CompanyService {
+	return &CompanyService{
+		companyRepo: companyRepo,
+	}
+}
+
+// Create creates a new company
+func (s *CompanyService) Create(req domain.CreateCompanyRequest, tenantID, userID uuid.UUID) (*domain.Company, error) {
+	// Check if CNPJ already exists for this tenant
+	exists, err := s.companyRepo.CNPJExists(req.CNPJ, tenantID)
+	if err != nil {
+		return nil, err
+	}
+	if exists {
+		return nil, ErrCNPJAlreadyExists
+	}
+
+	company := &domain.Company{
+		CNPJ:            req.CNPJ,
+		RazaoSocial:     req.RazaoSocial,
+		NomeFantasia:    req.NomeFantasia,
+		Email:           req.Email,
+		Telefone:        req.Telefone,
+		Status:          "active",
+		TenantID:        tenantID,
+		CreatedByUserID: &userID,
+	}
+
+	if err := s.companyRepo.Create(company); err != nil {
+		return nil, err
+	}
+
+	return company, nil
+}
+
+// GetByID retrieves a company by ID
+func (s *CompanyService) GetByID(id uuid.UUID) (*domain.Company, error) {
+	company, err := s.companyRepo.FindByID(id)
+	if err != nil {
+		return nil, err
+	}
+	if company == nil {
+		return nil, ErrCompanyNotFound
+	}
+	return company, nil
+}
+
+// ListByTenant retrieves all companies for a tenant
+func (s *CompanyService) ListByTenant(tenantID uuid.UUID) ([]*domain.Company, error) {
+	return s.companyRepo.FindByTenantID(tenantID)
+}
--- a/backend/internal/service/tenant_service.go
+++ b/backend/internal/service/tenant_service.go
@@ -0,0 +1,91 @@
+package service
+
+import (
+	"database/sql"
+	"errors"
+
+	"aggios-app/backend/internal/domain"
+	"aggios-app/backend/internal/repository"
+
+	"github.com/google/uuid"
+)
+
+var (
+	ErrTenantNotFound = errors.New("tenant not found")
+)
+
+// TenantService handles tenant business logic
+type TenantService struct {
+	tenantRepo *repository.TenantRepository
+}
+
+// NewTenantService creates a new tenant service
+func NewTenantService(tenantRepo *repository.TenantRepository) *TenantService {
+	return &TenantService{
+		tenantRepo: tenantRepo,
+	}
+}
+
+// Create creates a new tenant
+func (s *TenantService) Create(req domain.CreateTenantRequest) (*domain.Tenant, error) {
+	// Check if subdomain already exists
+	exists, err := s.tenantRepo.SubdomainExists(req.Subdomain)
+	if err != nil {
+		return nil, err
+	}
+	if exists {
+		return nil, ErrSubdomainTaken
+	}
+
+	tenant := &domain.Tenant{
+		Name:      req.Name,
+		Domain:    req.Domain,
+		Subdomain: req.Subdomain,
+	}
+
+	if err := s.tenantRepo.Create(tenant); err != nil {
+		return nil, err
+	}
+
+	return tenant, nil
+}
+
+// GetByID retrieves a tenant by ID
+func (s *TenantService) GetByID(id uuid.UUID) (*domain.Tenant, error) {
+	tenant, err := s.tenantRepo.FindByID(id)
+	if err != nil {
+		return nil, err
+	}
+	if tenant == nil {
+		return nil, ErrTenantNotFound
+	}
+	return tenant, nil
+}
+
+// GetBySubdomain retrieves a tenant by subdomain
+func (s *TenantService) GetBySubdomain(subdomain string) (*domain.Tenant, error) {
+	tenant, err := s.tenantRepo.FindBySubdomain(subdomain)
+	if err != nil {
+		return nil, err
+	}
+	if tenant == nil {
+		return nil, ErrTenantNotFound
+	}
+	return tenant, nil
+}
+
+// ListAll retrieves all tenants
+func (s *TenantService) ListAll() ([]*domain.Tenant, error) {
+	return s.tenantRepo.FindAll()
+}
+
+// Delete removes a tenant by ID
+func (s *TenantService) Delete(id uuid.UUID) error {
+	if err := s.tenantRepo.Delete(id); err != nil {
+		if errors.Is(err, sql.ErrNoRows) {
+			return ErrTenantNotFound
+		}
+		return err
+	}
+	return nil
+}