Added authorisation status to roleuser model. (#640)

sipsorcery · web-flow · commit 8ea20aff701a · 2025-08-28T10:02:54.000+01:00
diff --git a/src/NoFrixion.MoneyMoov/ApiClients/MerchantClient.cs b/src/NoFrixion.MoneyMoov/ApiClients/MerchantClient.cs
@@ -62,6 +62,10 @@ Task<RestApiResponse<MerchantPageResponse>> GetChildMerchantsAsync(string userAc
         int pageSize = 20,
         string? search = null,
         string? sort = null);
+
+    Task<RestApiResponse<RoleUser>> GetRoleUserAssignmentAsync(string userAccessToken, Guid roleUserID);
+
+    Task<RestApiResponse> AuthoriseRoleUserAssignmentAsync(string strongUserAccessToken, Guid roleUserID);
 }
 
 public class MerchantClient : IMerchantClient
@@ -403,4 +407,44 @@ public Task<RestApiResponse<MerchantPageResponse>> GetChildMerchantsAsync(string
             _ => Task.FromResult(new RestApiResponse<MerchantPageResponse>(HttpStatusCode.PreconditionFailed, new Uri(url), prob))
         };
     }
+
+    /// <summary>
+    /// Gets a specific role user assignment by its ID.
+    /// </summary>
+    /// <param name="userAccessToken">A user scoped JWT access token.</param>
+    /// <param name="roleUserID">The ID of the role user assignment to get.</param>
+    /// <returns>If successful, the role user assignment.</returns>
+    public Task<RestApiResponse<RoleUser>> GetRoleUserAssignmentAsync(string userAccessToken, Guid roleUserID)
+    {
+        var url = MoneyMoovUrlBuilder.MerchantsApi.MerchantRoleUserAssignmentsUrl(_apiClient.GetBaseUri().ToString(), roleUserID);
+
+        var prob = _apiClient.CheckAccessToken(userAccessToken, nameof(GetRolesAsync));
+
+        return prob switch
+        {
+            var p when p.IsEmpty => _apiClient.GetAsync<RoleUser>(url, userAccessToken),
+            _ => Task.FromResult(new RestApiResponse<RoleUser>(HttpStatusCode.PreconditionFailed, new Uri(url), prob))
+        };
+    }
+
+    /// <summary>
+    /// Calls the MoneyMoov merchant endpoint to authorise a role user assignment.
+    /// </summary>
+    /// <param name="strongUserAccessToken">The strong user access token acquired to authorise the role suer assignment. Strong
+    /// tokens can only be acquired from a strong customer authentication flow, are short lived (typically 5 minute expiry)
+    /// and are specific to the role user assignment.</param>
+    /// <param name="roleUserID">The ID of the role user assignment to authorise.</param>
+    /// <returns>An API response indicating the result of the authorise attempt.</returns>
+    public Task<RestApiResponse> AuthoriseRoleUserAssignmentAsync(string strongUserAccessToken, Guid roleUserID)
+    {
+        var url = MoneyMoovUrlBuilder.MerchantsApi.MerchantRoleUserAssignmentsUrl(_apiClient.GetBaseUri().ToString(), roleUserID);
+
+        var prob = _apiClient.CheckAccessToken(strongUserAccessToken, nameof(AuthoriseRoleUserAssignmentAsync));
+
+        return prob switch
+        {
+            var p when p.IsEmpty => _apiClient.PostAsync(url, strongUserAccessToken),
+            _ => Task.FromResult(new RestApiResponse(HttpStatusCode.PreconditionFailed, new Uri(url), prob))
+        };
+    }
 }
diff --git a/src/NoFrixion.MoneyMoov/Models/Roles/Role.cs b/src/NoFrixion.MoneyMoov/Models/Roles/Role.cs
@@ -27,6 +27,8 @@ public class Role
 
     public Guid MerchantID { get; set; }
 
+    public string? MerchantName { get; set; }
+
     public List<string> MerchantPermissions { get; set; } = null!;
 
     public List<string> AccountPermissions { get; set; } = null!;
diff --git a/src/NoFrixion.MoneyMoov/Models/Roles/RoleUser.cs b/src/NoFrixion.MoneyMoov/Models/Roles/RoleUser.cs
@@ -41,6 +41,13 @@ public class RoleUser
     
     public Role? Role { get; set; }
 
+    /// <summary>
+    /// The authorisation status for the role user assignment. It is used for assignments
+    /// that require authorisation before they can be enabled. It will not be populated in the 
+    /// case authorisation is not required.
+    /// </summary>
+    public AuthorisationStatus? AuthorisationStatus { get; set; }
+
     /// <summary>
     /// Gets a hash of the critical fields for the role user. This hash is
     /// used to ensure a role user's details are not modified between the time the
diff --git a/src/NoFrixion.MoneyMoov/MoneyMoovUrlBuilder.cs b/src/NoFrixion.MoneyMoov/MoneyMoovUrlBuilder.cs
@@ -58,6 +58,8 @@ public enum MoneyMoovResources
     roles,
 
     users,
+
+    roleusers
 }
 
 
@@ -153,6 +155,9 @@ public static string ChildMerchantsUrl(string moneyMoovBaseUrl, Guid parentMerch
             string? sort)
             => $"{moneyMoovBaseUrl}/{MoneyMoovResources.merchants}/{parentMerchantID}/childmerchants" +
                $"?pageNumber={pageNumber}&pageSize={pageSize}&search={search}&sort={sort}";
+
+        public static string MerchantRoleUserAssignmentsUrl(string moneyMoovBaseUrl, Guid roleUserID)
+            => $"{moneyMoovBaseUrl}/{MoneyMoovResources.merchants}/{MoneyMoovResources.roleusers}/{roleUserID}";
     }
 
     /// <summary>

Original file line number	Diff line number	Diff line change
`@@ -58,6 +58,8 @@ public enum MoneyMoovResources`
`58`	`58`	`roles,`
`59`	`59`
`60`	`60`	`users,`
	`61`	`+`
	`62`	`+ roleusers`
`61`	`63`	`}`
`62`	`64`
`63`	`65`
`@@ -153,6 +155,9 @@ public static string ChildMerchantsUrl(string moneyMoovBaseUrl, Guid parentMerch`
`153`	`155`	`string? sort)`
`154`	`156`	`=> $"{moneyMoovBaseUrl}/{MoneyMoovResources.merchants}/{parentMerchantID}/childmerchants" +`
`155`	`157`	`$"?pageNumber={pageNumber}&pageSize={pageSize}&search={search}&sort={sort}";`
	`158`	`+`
	`159`	`+ public static string MerchantRoleUserAssignmentsUrl(string moneyMoovBaseUrl, Guid roleUserID)`
	`160`	`+ => $"{moneyMoovBaseUrl}/{MoneyMoovResources.merchants}/{MoneyMoovResources.roleusers}/{roleUserID}";`
`156`	`161`	`}`
`157`	`162`
`158`	`163`	`/// <summary>`