feat: add supertokens

modules/identity/routes/identities/get/handle.ts

@@ -1,16 +1,21 @@
 import { ForbiddenError, NotFoundError } from "@platform/relay";
+import { getPrincipalAttributes, getPrincipalRoles } from "@platform/supertoken/principal.ts";
+import { getUserById } from "@platform/supertoken/users.ts";
 
-import { getIdentityById } from "../../../database.ts";
 import route from "./spec.ts";
 
 export default route.access("session").handle(async ({ params: { id } }, { access }) => {
-  const identity = await getIdentityById(id);
-  if (identity === undefined) {
+  const user = await getUserById(id);
+  if (user === undefined) {
     return new NotFoundError("Identity does not exist, or has been removed.");
   }
-  const decision = await access.isAllowed({ kind: "identity", id: identity.id, attr: {} }, "read");
+  const decision = await access.isAllowed({ kind: "identity", id: user.id, attr: {} }, "read");
   if (decision === false) {
     return new ForbiddenError("You do not have permission to view this identity.");
   }
-  return identity;
+  return {
+    id: user.id,
+    roles: await getPrincipalRoles(id),
+    attr: await getPrincipalAttributes(id),
+  };
 });

modules/identity/routes/identities/get/spec.ts

@@ -1,12 +1,10 @@
 import { ForbiddenError, NotFoundError, route, UnauthorizedError } from "@platform/relay";
 import z from "zod";
 
-import { IdentitySchema } from "../../../models/identity.ts";
-
 export default route
-  .get("/api/v1/identities/:id")
+  .get("/api/v1/identity/:id")
   .params({
     id: z.string(),
   })
   .errors([UnauthorizedError, ForbiddenError, NotFoundError])
-  .response(IdentitySchema);
+  .response(z.any());