1. 1
2. 2
3. 3
4. 4
5. 5
6. 6
7. 7
8. 8
9. 9
10. 10
11. 11
12. 12
13. 13
14. 14
15. 15
16. 16
17. 17
18. 18
19. 19
20. 20
21. 21
22. 22
23. 23
24. 24
25. 25
26. 26
27. 27
28. 28
29. 29
30. 30
31. 31
32. 32
33. 33
34. 34
35. 35
36. 36
37. 37
38. 38
39. 39
40. 40
41. 41
42. 42
43. 43
44. 44
45. 45
46. 46
47. 47
48. 48
49. 49
50. 50
51. 51

// Copyright 2025 Shota FUJI
//
// This source code is licensed under Zero-Clause BSD License.
// You can find a copy of the Zero-Clause BSD License at LICENSES/0BSD.txt
// You may also obtain a copy of the Zero-Clause BSD License at
// <https://opensource.org/license/0bsd>
//
// SPDX-License-Identifier: 0BSD

package setups

import (
	"crypto/rand"
	"database/sql"
	"fmt"

	"google.golang.org/protobuf/proto"

	"pocka.jp/x/event_sourcing_user_management_poc/gen/event"
)

// InitAdminCreationPassword inserts InitialAdminCreationPasswordCreated event then
// returns the generated password. As the database resets every server starts, this
// function does not check whether there are events in the stream. This would be
// inefficient in real-world use cases.
func InitAdminCreationPassword(db *sql.DB) (string, error) {
	password := rand.Text()

	passwordHash, salt := hashPassword(password)

	ev := &event.InitialAdminCreationPasswordCreated{
		PasswordHash: passwordHash,
		Salt:         salt,
	}

	data, err := proto.Marshal(ev)
	if err != nil {
		return "", fmt.Errorf("Failed to encode InitialAdminCreationPasswordCreated message: %s", err)
	}

	stmt, err := db.Prepare("INSERT OR ABORT INTO user_events (payload) VALUES (?)")
	if err != nil {
		return "", fmt.Errorf("Failed to prepare INSERT query: %s", err)
	}

	if _, err := stmt.Exec(data); err != nil {
		return "", fmt.Errorf("Failed to INSERT InitialAdminCreationPasswordCreated: %s", err)
	}

	return password, nil
}