fix: fix encrypted field lookup in password update and return connectionId from create endpoint

The database column is stored encrypted and only decrypted in @afterload,
so querying by plaintext value would never match. Now fetches connections
by company and filters by decrypted database name in code. Also simplifies
create hosted connection response to return just the connectionId.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

Author: gugu

backend/src/microservices/saas-microservice/data-structures/common-responce.ds.ts

@@ -4,3 +4,8 @@ export class SuccessResponse {
 	@ApiProperty()
 	success: boolean;
 }
+
+export class CreatedConnectionResponse {
+	@ApiProperty()
+	connectionId: string;
+}

backend/src/microservices/saas-microservice/saas.controller.ts

@@ -24,7 +24,7 @@ import { UserEntity } from '../../entities/user/user.entity.js';
 import { InTransactionEnum } from '../../enums/in-transaction.enum.js';
 import { Messages } from '../../exceptions/text/messages.js';
 import { SentryInterceptor } from '../../interceptors/sentry.interceptor.js';
-import { SuccessResponse } from './data-structures/common-responce.ds.js';
+import { CreatedConnectionResponse, SuccessResponse } from './data-structures/common-responce.ds.js';
 import { CreateConnectionForHostedDbDto } from './data-structures/create-connecttion-for-selfhosted-db.dto.js';
 import { DeleteConnectionForHostedDbDto } from './data-structures/delete-connection-for-hosted-db.dto.js';
 import { RegisterCompanyWebhookDS } from './data-structures/register-company.ds.js';
@@ -292,12 +292,12 @@ export class SaasController {
 	@ApiBody({ type: CreateConnectionForHostedDbDto })
 	@ApiResponse({
 		status: 201,
-		type: CreatedConnectionDTO,
+		type: CreatedConnectionResponse,
 	})
 	@Post('/connection/hosted')
 	async createConnectionForHostedDb(
 		@Body() connectionData: CreateConnectionForHostedDbDto,
-	): Promise<CreatedConnectionDTO> {
+	): Promise<CreatedConnectionResponse> {
 		return await this.createConnectionForHostedDbUseCase.execute(connectionData);
 	}
 

backend/src/microservices/saas-microservice/use-cases/create-connection-for-hosted-db.use.case.ts

@@ -4,20 +4,19 @@ import { ConnectionTypesEnum } from '@rocketadmin/shared-code/dist/src/shared/en
 import AbstractUseCase from '../../../common/abstract-use.case.js';
 import { IGlobalDatabaseContext } from '../../../common/application/global-database-context.interface.js';
 import { BaseType } from '../../../common/data-injection.tokens.js';
-import { Messages } from '../../../exceptions/text/messages.js';
-import { slackPostMessage } from '../../../helpers/index.js';
-import { AccessLevelEnum } from '../../../enums/index.js';
 import { generateCedarPolicyForGroup } from '../../../entities/cedar-authorization/cedar-policy-generator.js';
-import { CreatedConnectionDTO } from '../../../entities/connection/application/dto/created-connection.dto.js';
 import { ConnectionEntity } from '../../../entities/connection/connection.entity.js';
 import { readSslCertificate } from '../../../entities/connection/ssl-certificate/read-certificate.js';
-import { buildCreatedConnectionDs } from '../../../entities/connection/utils/build-created-connection.ds.js';
+import { AccessLevelEnum } from '../../../enums/index.js';
+import { Messages } from '../../../exceptions/text/messages.js';
+import { slackPostMessage } from '../../../helpers/index.js';
+import { CreatedConnectionResponse } from '../data-structures/common-responce.ds.js';
 import { CreateConnectionForHostedDbDto } from '../data-structures/create-connecttion-for-selfhosted-db.dto.js';
 import { ICreateConnectionForHostedDb } from './saas-use-cases.interface.js';
 
 @Injectable({ scope: Scope.REQUEST })
 export class CreateConnectionForHostedDbUseCase
-	extends AbstractUseCase<CreateConnectionForHostedDbDto, CreatedConnectionDTO>
+	extends AbstractUseCase<CreateConnectionForHostedDbDto, CreatedConnectionResponse>
 	implements ICreateConnectionForHostedDb
 {
 	constructor(
@@ -27,17 +26,15 @@ export class CreateConnectionForHostedDbUseCase
 		super();
 	}
 
-	protected async implementation(inputData: CreateConnectionForHostedDbDto): Promise<CreatedConnectionDTO> {
+	protected async implementation(inputData: CreateConnectionForHostedDbDto): Promise<CreatedConnectionResponse> {
 		const { companyId, userId, databaseName, hostname, port, username, password } = inputData;
 
 		const connectionAuthor = await this._dbContext.userRepository.findOneUserById(userId);
 		if (!connectionAuthor) {
 			throw new InternalServerErrorException(Messages.USER_NOT_FOUND);
 		}
 
-		await slackPostMessage(
-			Messages.USER_TRY_CREATE_CONNECTION(connectionAuthor.email, ConnectionTypesEnum.postgres),
-		);
+		await slackPostMessage(Messages.USER_TRY_CREATE_CONNECTION(connectionAuthor.email, ConnectionTypesEnum.postgres));
 
 		const cert = await readSslCertificate();
 
@@ -85,21 +82,18 @@ export class CreateConnectionForHostedDbUseCase
 			savedConnection,
 			connectionAuthor,
 		);
-		createdAdminGroup.cedarPolicy = generateCedarPolicyForGroup(
-			savedConnection.id,
-			true,
-			{
-				connection: { connectionId: savedConnection.id, accessLevel: AccessLevelEnum.edit },
-				group: { groupId: createdAdminGroup.id, accessLevel: AccessLevelEnum.edit },
-				tables: [],
-			},
-		);
+		createdAdminGroup.cedarPolicy = generateCedarPolicyForGroup(savedConnection.id, true, {
+			connection: { connectionId: savedConnection.id, accessLevel: AccessLevelEnum.edit },
+			group: { groupId: createdAdminGroup.id, accessLevel: AccessLevelEnum.edit },
+			tables: [],
+		});
 		await this._dbContext.groupRepository.saveNewOrUpdatedGroup(createdAdminGroup);
 		delete createdAdminGroup.connection;
 		await this._dbContext.userRepository.saveUserEntity(connectionAuthor);
 		savedConnection.groups = [createdAdminGroup];
 
-		const foundCompany = await this._dbContext.companyInfoRepository.findCompanyInfoByCompanyIdWithoutConnections(companyId);
+		const foundCompany =
+			await this._dbContext.companyInfoRepository.findCompanyInfoByCompanyIdWithoutConnections(companyId);
 		if (foundCompany) {
 			const connectionToUpdate = await this._dbContext.connectionRepository.findOne({
 				where: { id: savedConnection.id },
@@ -108,11 +102,8 @@ export class CreateConnectionForHostedDbUseCase
 			await this._dbContext.connectionRepository.saveUpdatedConnection(connectionToUpdate);
 		}
 
-		await slackPostMessage(
-			Messages.USER_CREATED_CONNECTION(connectionAuthor.email, ConnectionTypesEnum.postgres),
-		);
+		await slackPostMessage(Messages.USER_CREATED_CONNECTION(connectionAuthor.email, ConnectionTypesEnum.postgres));
 
-		const connectionRO = buildCreatedConnectionDs(savedConnection, null, null);
-		return connectionRO;
+		return { connectionId: savedConnection.id };
 	}
 }

backend/src/microservices/saas-microservice/use-cases/saas-use-cases.interface.ts

@@ -5,7 +5,7 @@ import { SaasUsualUserRegisterDS } from '../../../entities/user/application/data
 import { FoundUserDto } from '../../../entities/user/dto/found-user.dto.js';
 import { UserEntity } from '../../../entities/user/user.entity.js';
 import { InTransactionEnum } from '../../../enums/in-transaction.enum.js';
-import { SuccessResponse } from '../data-structures/common-responce.ds.js';
+import { CreatedConnectionResponse, SuccessResponse } from '../data-structures/common-responce.ds.js';
 import { CreateConnectionForHostedDbDto } from '../data-structures/create-connecttion-for-selfhosted-db.dto.js';
 import { DeleteConnectionForHostedDbDto } from '../data-structures/delete-connection-for-hosted-db.dto.js';
 import { FreezeConnectionsInCompanyDS } from '../data-structures/freeze-connections-in-company.ds.js';
@@ -72,7 +72,7 @@ export interface ISaasSAMLRegisterUser {
 }
 
 export interface ICreateConnectionForHostedDb {
-	execute(inputData: CreateConnectionForHostedDbDto): Promise<CreatedConnectionDTO>;
+	execute(inputData: CreateConnectionForHostedDbDto): Promise<CreatedConnectionResponse>;
 }
 
 export interface IDeleteConnectionForHostedDb {

backend/src/microservices/saas-microservice/use-cases/update-hosted-connection-password.use.case.ts

@@ -28,9 +28,10 @@ export class UpdateHostedConnectionPasswordUseCase
 			throw new NotFoundException(Messages.COMPANY_NOT_FOUND);
 		}
 
-		const connection = await this._dbContext.connectionRepository.findOne({
-			where: { company: { id: companyId }, database: databaseName },
+		const companyConnections = await this._dbContext.connectionRepository.find({
+			where: { company: { id: companyId } },
 		});
+		const connection = companyConnections.find((conn) => conn.database === databaseName);
 		if (!connection) {
 			throw new NotFoundException(Messages.CONNECTION_NOT_FOUND);
 		}