unified org user delete

mzieniukbw · mzieniukbw · commit ec60e1869a78 · 2026-04-30T19:50:18.000+01:00
diff --git a/src/Infrastructure.EntityFramework/AdminConsole/Repositories/OrganizationUserRepository.cs b/src/Infrastructure.EntityFramework/AdminConsole/Repositories/OrganizationUserRepository.cs
@@ -181,80 +181,7 @@ public async Task DeleteManyAsync(IEnumerable<Guid> organizationUserIds)
 
         try
         {
-            await dbContext.UserBumpAccountRevisionDateByOrganizationUserIdsAsync(targetOrganizationUserIds);
-
-            var organizationUsersToDelete = await dbContext.OrganizationUsers
-                .Where(ou => targetOrganizationUserIds.Contains(ou.Id))
-                .Include(ou => ou.User)
-                .ToListAsync();
-
-            var collectionUsers = await dbContext.CollectionUsers
-                .Where(cu => targetOrganizationUserIds.Contains(cu.OrganizationUserId))
-                .ToListAsync();
-
-            var collectionIds = collectionUsers.Select(cu => cu.CollectionId).Distinct().ToList();
-
-            var collections = await dbContext.Collections
-                .Where(c => collectionIds.Contains(c.Id))
-                .ToListAsync();
-
-            var collectionsToUpdate = collections
-                .Where(c => c.Type == CollectionType.DefaultUserCollection)
-                .ToList();
-
-            var collectionUserLookup = collectionUsers.ToLookup(cu => cu.CollectionId);
-
-            foreach (var collection in collectionsToUpdate)
-            {
-                var collectionUser = collectionUserLookup[collection.Id].FirstOrDefault();
-                if (collectionUser != null)
-                {
-                    var orgUser = organizationUsersToDelete.FirstOrDefault(ou => ou.Id == collectionUser.OrganizationUserId);
-
-                    if (orgUser?.User != null)
-                    {
-                        if (string.IsNullOrEmpty(collection.DefaultUserCollectionEmail))
-                        {
-                            var emailToUse = !string.IsNullOrEmpty(orgUser.Email)
-                                ? orgUser.Email
-                                : orgUser.User.Email;
-
-                            if (!string.IsNullOrEmpty(emailToUse))
-                            {
-                                collection.DefaultUserCollectionEmail = emailToUse;
-                            }
-                        }
-                        collection.Type = CollectionType.SharedCollection;
-                    }
-                }
-            }
-
-            await dbContext.CollectionUsers
-                .Where(cu => targetOrganizationUserIds.Contains(cu.OrganizationUserId))
-                .ExecuteDeleteAsync();
-
-            await dbContext.GroupUsers
-                .Where(gu => targetOrganizationUserIds.Contains(gu.OrganizationUserId))
-                .ExecuteDeleteAsync();
-
-            await dbContext.UserProjectAccessPolicy
-                .Where(ap => targetOrganizationUserIds.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
-
-            await dbContext.UserServiceAccountAccessPolicy
-                .Where(ap => targetOrganizationUserIds.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
-
-            await dbContext.UserSecretAccessPolicy
-                .Where(ap => targetOrganizationUserIds.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
-
-            await dbContext.OrganizationSponsorships
-                .Where(os => targetOrganizationUserIds.Contains(os.SponsoringOrganizationUserId))
-                .ExecuteDeleteAsync();
-
-            await dbContext.OrganizationUsers
-                .Where(ou => targetOrganizationUserIds.Contains(ou.Id)).ExecuteDeleteAsync();
+            await DeleteManyOrganizationUsersAndRelatedDataAsync(dbContext, targetOrganizationUserIds);
 
             await dbContext.SaveChangesAsync();
             await transaction.CommitAsync();
@@ -1123,34 +1050,88 @@ public DatabaseTransactionAction RemoveForPublicKeyPairRegeneration(
             using var scope = ServiceScopeFactory.CreateScope();
             var dbContext = GetTransactionalDatabaseContext(scope, connection, transaction);
 
-            await dbContext.CollectionUsers
-                .Where(cu => ids.Contains(cu.OrganizationUserId))
-                .ExecuteDeleteAsync();
+            await DeleteManyOrganizationUsersAndRelatedDataAsync(dbContext, ids);
+        };
+    }
+
+    private static async Task DeleteManyOrganizationUsersAndRelatedDataAsync(
+        DatabaseContext dbContext, List<Guid> organizationUserIds)
+    {
+        await dbContext.UserBumpAccountRevisionDateByOrganizationUserIdsAsync(organizationUserIds);
 
-            await dbContext.GroupUsers
-                .Where(gu => ids.Contains(gu.OrganizationUserId))
-                .ExecuteDeleteAsync();
+        var organizationUsersToDelete = await dbContext.OrganizationUsers
+            .Where(ou => organizationUserIds.Contains(ou.Id))
+            .Include(ou => ou.User)
+            .ToListAsync();
 
-            await dbContext.UserProjectAccessPolicy
-                .Where(ap => ids.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
+        var collectionUsers = await dbContext.CollectionUsers
+            .Where(cu => organizationUserIds.Contains(cu.OrganizationUserId))
+            .ToListAsync();
 
-            await dbContext.UserServiceAccountAccessPolicy
-                .Where(ap => ids.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
+        var collectionIds = collectionUsers.Select(cu => cu.CollectionId).Distinct().ToList();
 
-            await dbContext.UserSecretAccessPolicy
-                .Where(ap => ids.Contains(ap.OrganizationUserId!.Value))
-                .ExecuteDeleteAsync();
+        var collections = await dbContext.Collections
+            .Where(c => collectionIds.Contains(c.Id))
+            .ToListAsync();
 
-            await dbContext.OrganizationSponsorships
-                .Where(os => ids.Contains(os.SponsoringOrganizationUserId))
-                .ExecuteDeleteAsync();
+        var collectionsToUpdate = collections
+            .Where(c => c.Type == CollectionType.DefaultUserCollection)
+            .ToList();
 
-            await dbContext.OrganizationUsers
-                .Where(ou => ids.Contains(ou.Id))
-                .ExecuteDeleteAsync();
-        };
+        var collectionUserLookup = collectionUsers.ToLookup(cu => cu.CollectionId);
+
+        foreach (var collection in collectionsToUpdate)
+        {
+            var collectionUser = collectionUserLookup[collection.Id].FirstOrDefault();
+            if (collectionUser != null)
+            {
+                var orgUser = organizationUsersToDelete.FirstOrDefault(ou => ou.Id == collectionUser.OrganizationUserId);
+
+                if (orgUser?.User != null)
+                {
+                    if (string.IsNullOrEmpty(collection.DefaultUserCollectionEmail))
+                    {
+                        var emailToUse = !string.IsNullOrEmpty(orgUser.Email)
+                            ? orgUser.Email
+                            : orgUser.User.Email;
+
+                        if (!string.IsNullOrEmpty(emailToUse))
+                        {
+                            collection.DefaultUserCollectionEmail = emailToUse;
+                        }
+                    }
+                    collection.Type = CollectionType.SharedCollection;
+                }
+            }
+        }
+
+        await dbContext.CollectionUsers
+            .Where(cu => organizationUserIds.Contains(cu.OrganizationUserId))
+            .ExecuteDeleteAsync();
+
+        await dbContext.GroupUsers
+            .Where(gu => organizationUserIds.Contains(gu.OrganizationUserId))
+            .ExecuteDeleteAsync();
+
+        await dbContext.UserProjectAccessPolicy
+            .Where(ap => organizationUserIds.Contains(ap.OrganizationUserId!.Value))
+            .ExecuteDeleteAsync();
+
+        await dbContext.UserServiceAccountAccessPolicy
+            .Where(ap => organizationUserIds.Contains(ap.OrganizationUserId!.Value))
+            .ExecuteDeleteAsync();
+
+        await dbContext.UserSecretAccessPolicy
+            .Where(ap => organizationUserIds.Contains(ap.OrganizationUserId!.Value))
+            .ExecuteDeleteAsync();
+
+        await dbContext.OrganizationSponsorships
+            .Where(os => organizationUserIds.Contains(os.SponsoringOrganizationUserId))
+            .ExecuteDeleteAsync();
+
+        await dbContext.OrganizationUsers
+            .Where(ou => organizationUserIds.Contains(ou.Id))
+            .ExecuteDeleteAsync();
     }
 
 #nullable disable
