refactor(identity): rename authentik_sub to user_sub and authentik_user_id to idp_user_id

app/repositories/permission_groups_repo.py

@@ -46,43 +46,43 @@ class PermissionGroupsRepository:
         self.db.refresh(item)
         return item
 
-    def add_member_if_not_exists(self, group_id: str, authentik_sub: str) -> PermissionGroupMember:
+    def add_member_if_not_exists(self, group_id: str, user_sub: str) -> PermissionGroupMember:
         existing = self.db.scalar(
             select(PermissionGroupMember).where(
-                PermissionGroupMember.group_id == group_id, PermissionGroupMember.authentik_sub == authentik_sub
+                PermissionGroupMember.group_id == group_id, PermissionGroupMember.user_sub == user_sub
             )
         )
         if existing:
             return existing
-        row = PermissionGroupMember(group_id=group_id, authentik_sub=authentik_sub)
+        row = PermissionGroupMember(group_id=group_id, user_sub=user_sub)
         self.db.add(row)
         self.db.commit()
         self.db.refresh(row)
         return row
 
-    def remove_member(self, group_id: str, authentik_sub: str) -> int:
+    def remove_member(self, group_id: str, user_sub: str) -> int:
         result = self.db.execute(
             delete(PermissionGroupMember).where(
-                PermissionGroupMember.group_id == group_id, PermissionGroupMember.authentik_sub == authentik_sub
+                PermissionGroupMember.group_id == group_id, PermissionGroupMember.user_sub == user_sub
             )
         )
         self.db.commit()
         return int(result.rowcount or 0)
 
-    def list_group_keys_by_member_sub(self, authentik_sub: str) -> list[str]:
+    def list_group_keys_by_member_sub(self, user_sub: str) -> list[str]:
         stmt = (
             select(PermissionGroup.group_key)
             .select_from(PermissionGroupMember)
             .join(PermissionGroup, PermissionGroup.id == PermissionGroupMember.group_id)
-            .where(PermissionGroupMember.authentik_sub == authentik_sub)
+            .where(PermissionGroupMember.user_sub == user_sub)
             .order_by(PermissionGroup.group_key.asc())
         )
         return [row[0] for row in self.db.execute(stmt).all()]
 
-    def replace_member_groups(self, authentik_sub: str, group_ids: list[str]) -> None:
-        self.db.execute(delete(PermissionGroupMember).where(PermissionGroupMember.authentik_sub == authentik_sub))
+    def replace_member_groups(self, user_sub: str, group_ids: list[str]) -> None:
+        self.db.execute(delete(PermissionGroupMember).where(PermissionGroupMember.user_sub == user_sub))
         for group_id in group_ids:
-            self.db.add(PermissionGroupMember(group_id=group_id, authentik_sub=authentik_sub))
+            self.db.add(PermissionGroupMember(group_id=group_id, user_sub=user_sub))
         self.db.commit()
 
     def grant_group_permission(
@@ -155,7 +155,7 @@ class PermissionGroupsRepository:
         self.db.execute(delete(PermissionGroupMember).where(PermissionGroupMember.group_id == group_id))
 
         for sub in normalized_member_subs:
-            self.db.add(PermissionGroupMember(group_id=group_id, authentik_sub=sub))
+            self.db.add(PermissionGroupMember(group_id=group_id, user_sub=sub))
 
         for site_key in normalized_sites:
             for action in normalized_actions:
@@ -199,9 +199,9 @@ class PermissionGroupsRepository:
 
     def list_group_member_subs(self, group_id: str) -> list[str]:
         stmt = (
-            select(PermissionGroupMember.authentik_sub)
+            select(PermissionGroupMember.user_sub)
             .where(PermissionGroupMember.group_id == group_id)
-            .order_by(PermissionGroupMember.authentik_sub.asc())
+            .order_by(PermissionGroupMember.user_sub.asc())
         )
         return [row[0] for row in self.db.execute(stmt).all()]
 
@@ -218,10 +218,10 @@ class PermissionGroupsRepository:
     def list_system_members(self, system_key: str) -> list[User]:
         stmt = (
             select(User)
-            .join(PermissionGroupMember, PermissionGroupMember.authentik_sub == User.authentik_sub)
+            .join(PermissionGroupMember, PermissionGroupMember.user_sub == User.user_sub)
             .join(PermissionGroupPermission, PermissionGroupPermission.group_id == PermissionGroupMember.group_id)
             .where(PermissionGroupPermission.system == system_key)
-            .order_by(User.email.asc(), User.authentik_sub.asc())
+            .order_by(User.email.asc(), User.user_sub.asc())
             .distinct()
         )
         return list(self.db.scalars(stmt).all())
@@ -239,10 +239,10 @@ class PermissionGroupsRepository:
     def list_module_members(self, system_key: str, module_name: str) -> list[User]:
         stmt = (
             select(User)
-            .join(PermissionGroupMember, PermissionGroupMember.authentik_sub == User.authentik_sub)
+            .join(PermissionGroupMember, PermissionGroupMember.user_sub == User.user_sub)
             .join(PermissionGroupPermission, PermissionGroupPermission.group_id == PermissionGroupMember.group_id)
             .where(PermissionGroupPermission.system == system_key, PermissionGroupPermission.module == module_name)
-            .order_by(User.email.asc(), User.authentik_sub.asc())
+            .order_by(User.email.asc(), User.user_sub.asc())
             .distinct()
         )
         return list(self.db.scalars(stmt).all())