more

n1ru4l · n1ru4l · commit 908ad7fc36da · 2025-04-29T14:48:34.000+02:00
diff --git a/integration-tests/testkit/flow.ts b/integration-tests/testkit/flow.ts
@@ -56,9 +56,13 @@ export function createOrganization(input: CreateOrganizationInput, authToken: st
                   }
                 }
                 memberRoles {
-                  id
-                  name
-                  locked
+                  edges {
+                    node {
+                      id
+                      name
+                      locked
+                    }
+                  }
                 }
                 rateLimit {
                   retentionInDays
@@ -655,11 +659,15 @@ export function createMemberRole(input: CreateMemberRoleInput, authToken: string
               id
               slug
               memberRoles {
-                id
-                name
-                description
-                locked
-                permissions
+                edges {
+                  node {
+                    id
+                    name
+                    description
+                    locked
+                    permissions
+                  }
+                }
               }
             }
           }
@@ -713,11 +721,15 @@ export function deleteMemberRole(input: DeleteMemberRoleInput, authToken: string
               id
               slug
               memberRoles {
-                id
-                name
-                description
-                locked
-                permissions
+                edges {
+                  node {
+                    id
+                    name
+                    description
+                    locked
+                    permissions
+                  }
+                }
               }
             }
           }
diff --git a/integration-tests/tests/api/organization/members.spec.ts b/integration-tests/tests/api/organization/members.spec.ts
@@ -150,9 +150,10 @@ const OrganizationInvitationsQuery = graphql(`
     organization: organizationBySlug(organizationSlug: $organizationSlug) {
       id
       invitations {
-        total
-        nodes {
-          id
+        edges {
+          node {
+            id
+          }
         }
       }
     }
diff --git a/packages/services/api/src/modules/auth/module.graphql.ts b/packages/services/api/src/modules/auth/module.graphql.ts
@@ -40,11 +40,11 @@ export default gql`
   }
 
   type User {
-    id: ID!
-    email: String!
+    id: ID! @tag(name: "public")
+    email: String! @tag(name: "public")
     fullName: String!
-    displayName: String!
-    provider: AuthProvider!
+    displayName: String! @tag(name: "public")
+    provider: AuthProviderType! @tag(name: "public")
     isAdmin: Boolean!
   }
 
@@ -53,17 +53,17 @@ export default gql`
     total: Int!
   }
 
-  enum AuthProvider {
-    GOOGLE
-    GITHUB
+  enum AuthProviderType {
+    GOOGLE @tag(name: "public")
+    GITHUB @tag(name: "public")
     """
     Username-Password-Authentication
     """
-    USERNAME_PASSWORD
+    USERNAME_PASSWORD @tag(name: "public")
     """
     OpenID Connect
     """
-    OIDC
+    OIDC @tag(name: "public")
   }
 
   enum OrganizationAccessScope {
diff --git a/packages/services/api/src/modules/organization/module.graphql.ts b/packages/services/api/src/modules/organization/module.graphql.ts
@@ -274,6 +274,16 @@ export default gql`
     organization: Organization!
   }
 
+  type MemberRoleEdge {
+    node: MemberRole! @tag(name: "public")
+    cursor: String!
+  }
+
+  type MemberRoleConnection {
+    edges: [MemberRoleEdge!]! @tag(name: "public")
+    pageInfo: PageInfo!
+  }
+
   type Organization {
     """
     Unique UUID of the organization
@@ -285,13 +295,13 @@ export default gql`
     slug: String! @tag(name: "public")
     cleanId: ID! @deprecated(reason: "Use the 'slug' field instead.")
     name: String! @deprecated(reason: "Use the 'slug' field instead.")
-    owner: Member!
+    owner: Member! @tag(name: "public")
     me: Member!
     members(first: Int @tag(name: "public"), after: String @tag(name: "public")): MemberConnection!
       @tag(name: "public")
-    invitations: OrganizationInvitationConnection
+    invitations: OrganizationInvitationConnection @tag(name: "public")
     getStarted: OrganizationGetStarted!
-    memberRoles: [MemberRole!]
+    memberRoles: MemberRoleConnection @tag(name: "public")
     """
     Whether the viewer should be able to access the settings page within the app
     """
@@ -331,7 +341,7 @@ export default gql`
     """
     List of available permission groups that can be assigned to users.
     """
-    availableMemberPermissionGroups: [PermissionGroup!]!
+    availableMemberPermissionGroups: [PermissionGroup!]! @tag(name: "public")
     """
     List of available permission groups that can be assigned to organization access tokens.
     """
@@ -368,9 +378,14 @@ export default gql`
     total: Int!
   }
 
+  type OrganizationInvitationEdge {
+    node: OrganizationInvitation! @tag(name: "public")
+    cursor: String!
+  }
+
   type OrganizationInvitationConnection {
-    nodes: [OrganizationInvitation!]!
-    total: Int!
+    edges: [OrganizationInvitationEdge!]! @tag(name: "public")
+    pageInfo: PageInfo!
   }
 
   type OrganizationInvitation {
@@ -422,9 +437,9 @@ export default gql`
   }
 
   type MemberRole {
-    id: ID!
-    name: String!
-    description: String!
+    id: ID! @tag(name: "public")
+    name: String! @tag(name: "public")
+    description: String! @tag(name: "public")
     """
     Whether the role is a built-in role. Built-in roles cannot be deleted or modified.
     """
@@ -448,7 +463,7 @@ export default gql`
     """
     List of permissions attached to this member role.
     """
-    permissions: [String!]!
+    permissions: [String!]! @tag(name: "public")
   }
 
   input CreateMemberRoleInput {
@@ -563,11 +578,11 @@ export default gql`
 
   type Member {
     id: ID!
-    user: User!
-    isOwner: Boolean!
+    user: User! @tag(name: "public")
+    isOwner: Boolean! @tag(name: "public")
     canLeaveOrganization: Boolean!
-    role: MemberRole!
-    resourceAssignment: ResourceAssignment!
+    role: MemberRole! @tag(name: "public")
+    resourceAssignment: ResourceAssignment! @tag(name: "public")
     """
     Whether the viewer can remove this member from the organization.
     """
diff --git a/packages/services/api/src/modules/organization/providers/organization-manager.ts b/packages/services/api/src/modules/organization/providers/organization-manager.ts
@@ -1191,4 +1191,16 @@ export class OrganizationManager {
 
     return this.organizationMemberRoles.findViewerRoleByOrganizationId(selector.organizationId);
   }
+
+  async findOrganizationOwner(organization: Organization) {
+    await this.session.assertPerformAction({
+      action: 'member:describe',
+      organizationId: organization.id,
+      params: {
+        organizationId: organization.id,
+      },
+    });
+
+    return this.organizationMembers.findOrganizationOwner(organization);
+  }
 }
diff --git a/packages/services/api/src/modules/organization/resolvers/Organization.ts b/packages/services/api/src/modules/organization/resolvers/Organization.ts
@@ -39,7 +39,7 @@ export const Organization: Pick<
     return !!organization.id;
   },
   owner: async (organization, _, { injector }) => {
-    const owner = await injector.get(OrganizationMembers).findOrganizationOwner(organization);
+    const owner = await injector.get(OrganizationManager).findOrganizationOwner(organization);
     if (!owner) {
       throw new Error('Not found.');
     }
@@ -78,12 +78,31 @@ export const Organization: Pick<
     }
 
     return {
-      total: invitations.length,
-      nodes: invitations,
+      pageInfo: {
+        hasNextPage: false,
+        hasPreviousPage: false,
+        endCursor: '',
+        startCursor: '',
+      },
+      edges: invitations.map(node => ({
+        node,
+        cursor: '',
+      })),
     };
   },
-  memberRoles: (organization, _, { injector }) => {
-    return injector.get(OrganizationMemberRoles).getMemberRolesForOrganizationId(organization.id);
+  memberRoles: async (organization, _, { injector }) => {
+    const roles = await injector
+      .get(OrganizationMemberRoles)
+      .getMemberRolesForOrganizationId(organization.id);
+    return {
+      edges: roles.map(node => ({ node, cursor: node.id })),
+      pageInfo: {
+        hasNextPage: false,
+        hasPreviousPage: false,
+        endCursor: '',
+        startCursor: '',
+      },
+    };
   },
   cleanId: organization => organization.slug,
   viewerCanDelete: async (organization, _arg, { session }) => {
diff --git a/packages/services/storage/src/db/types.ts b/packages/services/storage/src/db/types.ts
@@ -180,6 +180,7 @@ export interface organization_invitations {
 export interface organization_member {
   assigned_resources: any | null;
   connected_to_zendesk: boolean;
+  created_at: Date;
   organization_id: string;
   role: user_role;
   role_id: string | null;
diff --git a/packages/web/app/src/components/organization/members/invitations.tsx b/packages/web/app/src/components/organization/members/invitations.tsx
@@ -61,11 +61,15 @@ const MemberInvitationForm_OrganizationFragment = graphql(`
     id
     slug
     memberRoles {
-      id
-      name
-      description
-      locked
-      canInvite
+      edges {
+        node {
+          id
+          name
+          description
+          locked
+          canInvite
+        }
+      }
     }
   }
 `);
@@ -94,7 +98,9 @@ function MemberInvitationForm(props: {
   const { toast } = useToast();
   const organization = useFragment(MemberInvitationForm_OrganizationFragment, props.organization);
   const [invitation, invite] = useMutation(MemberInvitationForm_InviteByEmail);
-  const viewerRole = organization.memberRoles?.find(r => r.name === 'Viewer');
+  const viewerRole = organization.memberRoles?.edges.find(
+    edge => edge.node.name === 'Viewer',
+  )?.node;
 
   const form = useForm<MemberInvitationFormValues>({
     resolver: zodResolver(memberInvitationFormSchema),
@@ -204,9 +210,10 @@ function MemberInvitationForm(props: {
                   <FormItem>
                     <FormControl>
                       <RoleSelector
-                        roles={organization.memberRoles ?? []}
+                        roles={organization.memberRoles?.edges.map(edge => edge.node) ?? []}
                         defaultRole={
-                          organization.memberRoles?.find(r => r.id === field.value) ?? viewerRole
+                          organization.memberRoles?.edges.find(edge => edge.node.id === field.value)
+                            ?.node ?? viewerRole
                         }
                         isRoleActive={role => ({
                           active: role.canInvite,
@@ -407,9 +414,11 @@ const OrganizationInvitations_OrganizationFragment = graphql(`
     id
     slug
     invitations {
-      nodes {
-        id
-        ...Members_Invitation
+      edges {
+        node {
+          id
+          ...Members_Invitation
+        }
       }
     }
     ...MemberInvitationForm_OrganizationFragment
@@ -440,7 +449,7 @@ export function OrganizationInvitations(props: {
           organization={organization}
         />
       </SubPageLayoutHeader>
-      {organization.invitations.nodes.length > 0 ? (
+      {organization.invitations.edges.length > 0 ? (
         <table className="w-full table-auto divide-y-[1px] divide-gray-500/20">
           <thead>
             <tr>
@@ -451,10 +460,10 @@ export function OrganizationInvitations(props: {
             </tr>
           </thead>
           <tbody className="divide-y-[1px] divide-gray-500/20">
-            {organization.invitations.nodes.map(node => (
+            {organization.invitations.edges.map(edge => (
               <Invitation
-                key={node.id}
-                invitation={node}
+                key={edge.node.id}
+                invitation={edge.node}
                 organizationSlug={organization.slug}
                 refetchInvitations={props.refetchInvitations}
               />
diff --git a/packages/web/app/src/components/organization/members/member-role-picker.tsx b/packages/web/app/src/components/organization/members/member-role-picker.tsx
@@ -19,8 +19,12 @@ const MemberRolePicker_OrganizationFragment = graphql(`
     id
     slug
     memberRoles {
-      id
-      permissions
+      edges {
+        node {
+          id
+          permissions
+        }
+      }
     }
     ...ResourceSelector_OrganizationFragment
     ...MemberRoleSelector_OrganizationFragment
@@ -142,7 +146,8 @@ export function MemberRolePicker(props: {
   const [assignRoleState, assignRole] = useMutation(MemberRolePicker_AssignRoleMutation);
   const { toast } = useToast();
 
-  const selectedRole = organization.memberRoles?.find(role => role.id === selectedRoleId) ?? null;
+  const selectedRole =
+    organization.memberRoles?.edges?.find(edge => edge.node.id === selectedRoleId)?.node ?? null;
 
   return (
     <Sheet.SheetContent className="flex max-h-screen min-w-[800px] flex-col overflow-y-scroll">
diff --git a/packages/web/app/src/components/organization/members/member-role-selector.tsx b/packages/web/app/src/components/organization/members/member-role-selector.tsx
diff --git a/packages/web/app/src/components/organization/members/roles.tsx b/packages/web/app/src/components/organization/members/roles.tsx
diff --git a/packages/web/app/src/components/organization/settings/oidc-integration-section.tsx b/packages/web/app/src/components/organization/settings/oidc-integration-section.tsx

Original file line number	Diff line number	Diff line change
@@ -150,9 +150,10 @@ const OrganizationInvitationsQuery = graphql(`
`150`	`150`	`organization: organizationBySlug(organizationSlug: $organizationSlug) {`
`151`	`151`	`id`
`152`	`152`	`invitations {`
`153`		`- total`
`154`		`- nodes {`
`155`		`- id`
	`153`	`+ edges {`
	`154`	`+ node {`
	`155`	`+ id`
	`156`	`+ }`
`156`	`157`	`}`
`157`	`158`	`}`
`158`	`159`	`}`