baron-sso/backend/internal/domain/user.go

package domain

import (
	"time"

	"github.com/google/uuid"
	"gorm.io/gorm"
)

// User roles
const (
	RoleSuperAdmin  = "super_admin"  // 시스템 전역 관리자
	RoleTenantAdmin = "tenant_admin" // 테넌트 관리자
	RoleRPAdmin     = "rp_admin"     // 특정 앱(RP) 관리자
	RoleUser        = "user"         // 일반 사용자
)

// User represents the user model stored in PostgreSQL
type User struct {
	ID              string         `gorm:"primaryKey;type:uuid;default:gen_random_uuid()" json:"id"`
	Email           string         `gorm:"uniqueIndex;not null" json:"email"`
	PasswordHash    string         `gorm:"not null" json:"-"`
	Name            string         `gorm:"not null" json:"name"`
	Phone           string         `json:"phone"`
	Role            string         `gorm:"default:'user';not null" json:"role"` // super_admin, tenant_admin, rp_admin, user
	AffiliationType string         `json:"affiliationType"`
	CompanyCode     string         `json:"companyCode"`
	TenantID        *string        `gorm:"type:uuid;index" json:"tenantId,omitempty"`
	Tenant          *Tenant        `gorm:"foreignKey:TenantID" json:"tenant,omitempty"`
	RelyingPartyID  *string        `gorm:"type:uuid;index" json:"relyingPartyId,omitempty"` // RP Admin용
	Department      string         `json:"department"`
	Metadata        JSONMap        `gorm:"type:jsonb" json:"metadata,omitempty"`
	Status          string         `gorm:"default:'active'" json:"status"`
	CreatedAt       time.Time      `json:"createdAt"`
	UpdatedAt       time.Time      `json:"updatedAt"`
	DeletedAt       gorm.DeletedAt `gorm:"index" json:"-"`
}

// BeforeCreate hook to generate UUID if not present
func (u *User) BeforeCreate(tx *gorm.DB) (err error) {
	if u.ID == "" {
		u.ID = uuid.New().String()
	}
	return
}