add clients

withinboredom · withinboredom · commit b6d0f5bcb6a0 · 2025-07-29T16:23:09.000+02:00
Signed-off-by: Robert Landers &lt;landers.robert@gmail.com&gt;
diff --git a/src/DurableClient.php b/src/DurableClient.php
@@ -158,4 +158,39 @@ public function grantEntityAccessToRole(EntityId $id, string $role, Operation $o
     {
         $this->entityClient->grantEntityAccessToRole($id, $role, $operation);
     }
+
+    public function revokeEntityAccessToUser(EntityId $id, string $user): void
+    {
+        $this->entityClient->revokeEntityAccessToUser($id, $user);
+    }
+
+    public function revokeEntityAccessToRole(EntityId $id, string $role): void
+    {
+        $this->entityClient->revokeEntityAccessToRole($id, $role);
+    }
+
+    public function shareOrchestrationOwnership(OrchestrationInstance $id, string $with): void
+    {
+        $this->orchestrationClient->shareOrchestrationOwnership($id, $with);
+    }
+
+    public function grantOrchestrationAccessToUser(OrchestrationInstance $id, string $user, Operation $operation): void
+    {
+        $this->orchestrationClient->grantOrchestrationAccessToUser($id, $user, $operation);
+    }
+
+    public function grantOrchestrationAccessToRole(OrchestrationInstance $id, string $role, Operation $operation): void
+    {
+        $this->orchestrationClient->grantOrchestrationAccessToRole($id, $role, $operation);
+    }
+
+    public function revokeOrchestrationAccessToUser(OrchestrationInstance $id, string $user): void
+    {
+        $this->orchestrationClient->revokeOrchestrationAccessToUser($id, $user);
+    }
+
+    public function revokeOrchestrationAccessToRole(OrchestrationInstance $id, string $role): void
+    {
+        $this->orchestrationClient->revokeOrchestrationAccessToRole($id, $role);
+    }
 }
diff --git a/src/EntityClientInterface.php b/src/EntityClientInterface.php
@@ -87,4 +87,8 @@ public function shareEntityOwnership(EntityId $id, string $with): void;
     public function grantEntityAccessToUser(EntityId $id, string $user, Operation $operation): void;
 
     public function grantEntityAccessToRole(EntityId $id, string $role, Operation $operation): void;
+
+    public function revokeEntityAccessToUser(EntityId $id, string $user): void;
+
+    public function revokeEntityAccessToRole(EntityId $id, string $role): void;
 }
diff --git a/src/OrchestrationClientInterface.php b/src/OrchestrationClientInterface.php
@@ -24,16 +24,18 @@
 
 namespace Bottledcode\DurablePhp;
 
+use Bottledcode\DurablePhp\Events\Shares\Operation;
 use Bottledcode\DurablePhp\State\OrchestrationInstance;
 use Bottledcode\DurablePhp\State\Status;
+use Generator;
 
 interface OrchestrationClientInterface
 {
     public function withAuth(string $token): void;
 
     public function getStatus(OrchestrationInstance $instance): Status;
 
-    public function listInstances(/* todo */): \Generator;
+    public function listInstances(/* todo */): Generator;
 
     public function purge(OrchestrationInstance $instance): void;
 
@@ -43,11 +45,21 @@ public function restart(OrchestrationInstance $instance): void;
 
     public function resume(OrchestrationInstance $instance, string $reason): void;
 
-    public function startNew(string $name, array $args = [], string|null $id = null): OrchestrationInstance;
+    public function startNew(string $name, array $args = [], ?string $id = null): OrchestrationInstance;
 
     public function suspend(OrchestrationInstance $instance, string $reason): void;
 
     public function terminate(OrchestrationInstance $instance, string $reason): void;
 
     public function waitForCompletion(OrchestrationInstance $instance): void;
+
+    public function shareOrchestrationOwnership(OrchestrationInstance $id, string $with): void;
+
+    public function grantOrchestrationAccessToUser(OrchestrationInstance $id, string $user, Operation $operation): void;
+
+    public function grantOrchestrationAccessToRole(OrchestrationInstance $id, string $role, Operation $operation): void;
+
+    public function revokeOrchestrationAccessToUser(OrchestrationInstance $id, string $user): void;
+
+    public function revokeOrchestrationAccessToRole(OrchestrationInstance $id, string $role): void;
 }
diff --git a/src/RemoteEntityClient.php b/src/RemoteEntityClient.php
@@ -200,4 +200,28 @@ public function grantEntityAccessToRole(EntityId $id, string $role, Operation $o
             throw new Exception('Failed to grant access');
         }
     }
+
+    public function revokeEntityAccessToUser(EntityId $id, string $user): void
+    {
+        $req = new Request("{$this->apiHost}/entity/{$id->name}/{$id->id}/grant/user/{$user}", 'DELETE');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
+
+    public function revokeEntityAccessToRole(EntityId $id, string $role): void
+    {
+        $req = new Request("{$this->apiHost}/entity/{$id->name}/{$id->id}/grant/role/{$role}", 'DELETE');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
 }
diff --git a/src/RemoteOrchestrationClient.php b/src/RemoteOrchestrationClient.php
@@ -27,6 +27,7 @@
 use Amp\Http\Client\HttpClient;
 use Amp\Http\Client\Request;
 use Amp\Http\Client\SocketException;
+use Bottledcode\DurablePhp\Events\Shares\Operation;
 use Bottledcode\DurablePhp\Proxy\SpyProxy;
 use Bottledcode\DurablePhp\State\Ids\StateId;
 use Bottledcode\DurablePhp\State\OrchestrationInstance;
@@ -147,7 +148,7 @@ public function startNew(string $name, array $args = [], ?string $id = null): Or
             throw new Exception($result->getBody()->buffer());
         }
 
-        return (new StateId($result->getHeader('X-Id')))->toOrchestrationInstance();
+        return StateId::fromString($result->getHeader('X-Id'))->toOrchestrationInstance();
     }
 
     #[Override]
@@ -192,4 +193,64 @@ public function withAuth(string $token): void
     {
         $this->userToken = $token;
     }
+
+    public function shareOrchestrationOwnership(OrchestrationInstance $id, string $with): void
+    {
+        $req = new Request("{$this->apiHost}/orchestration/{$id->instanceId}/{$id->executionId}/share/{$with}", 'PUT');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to share ownership');
+        }
+    }
+
+    public function grantOrchestrationAccessToUser(OrchestrationInstance $id, string $user, Operation $operation): void
+    {
+        $req = new Request("{$this->apiHost}/orchestration/{$id->instanceId}/{$id->executionId}/grant/user/{$user}/{$operation->value}", 'PUT');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
+
+    public function grantOrchestrationAccessToRole(OrchestrationInstance $id, string $role, Operation $operation): void
+    {
+        $req = new Request("{$this->apiHost}/orchestration/{$id->instanceId}/{$id->executionId}/grant/role/{$role}/{$operation->value}", 'PUT');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
+
+    public function revokeOrchestrationAccessToUser(OrchestrationInstance $id, string $user): void
+    {
+        $req = new Request("{$this->apiHost}/orchestration/{$id->instanceId}/{$id->executionId}/grant/user/{$user}", 'DELETE');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
+
+    public function revokeOrchestrationAccessToRole(OrchestrationInstance $id, string $role): void
+    {
+        $req = new Request("{$this->apiHost}/orchestration/{$id->instanceId}/{$id->executionId}/grant/role/{$role}", 'DELETE');
+        if ($this->userToken) {
+            $req->setHeader('Authorization', 'Bearer ' . $this->userToken);
+        }
+        $result = $this->client->request($req);
+        if ($result->getStatus() !== 200) {
+            throw new Exception('Failed to grant access');
+        }
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -87,4 +87,8 @@ public function shareEntityOwnership(EntityId $id, string $with): void;`
`87`	`87`	`public function grantEntityAccessToUser(EntityId $id, string $user, Operation $operation): void;`
`88`	`88`
`89`	`89`	`public function grantEntityAccessToRole(EntityId $id, string $role, Operation $operation): void;`
	`90`	`+`
	`91`	`+ public function revokeEntityAccessToUser(EntityId $id, string $user): void;`
	`92`	`+`
	`93`	`+ public function revokeEntityAccessToRole(EntityId $id, string $role): void;`
`90`	`94`	`}`