fixed doc env vars + mongo v2 migration

api/pkg/auth/internal/native/enforcer.go

@@ -9,8 +9,8 @@ import (
 	"github.com/tech/sendico/pkg/mlogger"
 	"github.com/tech/sendico/pkg/model"
 	"github.com/tech/sendico/pkg/mutil/mzap"
-	"go.mongodb.org/mongo-driver/bson/primitive"
-	"go.mongodb.org/mongo-driver/mongo"
+	"go.mongodb.org/mongo-driver/v2/bson"
+	"go.mongodb.org/mongo-driver/v2/mongo"
 	"go.uber.org/zap"
 )
 
@@ -44,7 +44,7 @@ func NewEnforcer(
 // Enforce checks if a user has the specified action permission on an object within a domain.
 func (n *Enforcer) Enforce(
 	ctx context.Context,
-	permissionRef, accountRef, organizationRef, objectRef primitive.ObjectID,
+	permissionRef, accountRef, organizationRef, objectRef bson.ObjectID,
 	action model.Action,
 ) (bool, error) {
 	if organizationRef.IsZero() {
@@ -118,13 +118,13 @@ func (n *Enforcer) Enforce(
 func (n *Enforcer) EnforceBatch(
 	ctx context.Context,
 	objectRefs []model.PermissionBoundStorable,
-	accountRef primitive.ObjectID,
+	accountRef bson.ObjectID,
 	action model.Action,
-) (map[primitive.ObjectID]bool, error) {
-	results := make(map[primitive.ObjectID]bool, len(objectRefs))
+) (map[bson.ObjectID]bool, error) {
+	results := make(map[bson.ObjectID]bool, len(objectRefs))
 
 	// Group objectRefs by organizationRef.
-	objectsByVenue := make(map[primitive.ObjectID][]model.PermissionBoundStorable)
+	objectsByVenue := make(map[bson.ObjectID][]model.PermissionBoundStorable)
 	for _, obj := range objectRefs {
 		organizationRef := obj.GetOrganizationRef()
 		objectsByVenue[organizationRef] = append(objectsByVenue[organizationRef], obj)
@@ -151,7 +151,7 @@ func (n *Enforcer) EnforceBatch(
 		}
 
 		// 2. Extract role description references
-		var roleRefs []primitive.ObjectID
+		var roleRefs []bson.ObjectID
 		for _, role := range roles {
 			roleRefs = append(roleRefs, role.DescriptionRef)
 		}
@@ -164,7 +164,7 @@ func (n *Enforcer) EnforceBatch(
 		}
 
 		// 4. Build a lookup map keyed by PermissionRef.
-		policyMap := make(map[primitive.ObjectID][]nstructures.PolicyAssignment)
+		policyMap := make(map[bson.ObjectID][]nstructures.PolicyAssignment)
 		for _, policy := range allPolicies {
 			policyMap[policy.DescriptionRef] = append(policyMap[policy.DescriptionRef], policy)
 		}
@@ -197,7 +197,7 @@ func (n *Enforcer) EnforceBatch(
 }
 
 // GetRoles retrieves all roles assigned to the user within the domain.
-func (n *Enforcer) GetRoles(ctx context.Context, accountRef, organizationRef primitive.ObjectID) ([]model.Role, error) {
+func (n *Enforcer) GetRoles(ctx context.Context, accountRef, organizationRef bson.ObjectID) ([]model.Role, error) {
 	n.logger.Debug("Fetching roles for user", mzap.ObjRef("account_ref", accountRef), mzap.ObjRef("organization_ref", organizationRef))
 	ra, err := n.rdb.Roles(ctx, accountRef, organizationRef)
 	if errors.Is(err, merrors.ErrNoData) {
@@ -224,7 +224,7 @@ func (n *Enforcer) Reload() error {
 }
 
 // GetPermissions retrieves all effective policies for the user within the domain.
-func (n *Enforcer) GetPermissions(ctx context.Context, accountRef, organizationRef primitive.ObjectID) ([]model.Role, []model.Permission, error) {
+func (n *Enforcer) GetPermissions(ctx context.Context, accountRef, organizationRef bson.ObjectID) ([]model.Role, []model.Permission, error) {
 	n.logger.Debug("Fetching policies for user", mzap.ObjRef("account_ref", accountRef), mzap.ObjRef("organization_ref", organizationRef))
 
 	roles, err := n.GetRoles(ctx, accountRef, organizationRef)
@@ -233,7 +233,7 @@ func (n *Enforcer) GetPermissions(ctx context.Context, accountRef, organizationR
 		return nil, nil, err
 	}
 
-	uniquePermissions := make(map[primitive.ObjectID]model.Permission)
+	uniquePermissions := make(map[bson.ObjectID]model.Permission)
 	for _, role := range roles {
 		perms, err := n.pdb.PoliciesForRole(ctx, role.DescriptionRef)
 		if err != nil {