From 1b659d24c0d8ccb9585867e3d8369a6243883c17 Mon Sep 17 00:00:00 2001
From: Pjort Kat <pjort.kat@gmail.com>
Date: Mon, 7 Nov 2022 17:33:13 +0100
Subject: [PATCH] Added login user to get all allowed roles as param

---
 server/resolvers/login.go | 14 +++++++++-----
 1 file changed, 9 insertions(+), 5 deletions(-)

diff --git a/server/resolvers/login.go b/server/resolvers/login.go
index b597ada..0f07fdd 100644
--- a/server/resolvers/login.go
+++ b/server/resolvers/login.go
@@ -86,12 +86,16 @@ func LoginResolver(ctx context.Context, params model.LoginInput) (*model.AuthRes
 
 	currentRoles := strings.Split(user.Roles, ",")
 	if len(params.Roles) > 0 {
-		if !validators.IsValidRoles(params.Roles, currentRoles) {
-			log.Debug("Invalid roles: ", params.Roles)
-			return res, fmt.Errorf(`invalid roles`)
-		}
+		if params.Roles[0] = "all_allowed_roles" {
+			roles = currentRoles
+		} else {
+			if !validators.IsValidRoles(params.Roles, currentRoles) {
+				log.Debug("Invalid roles: ", params.Roles)
+				return res, fmt.Errorf(`invalid roles`)
+			}
 
-		roles = params.Roles
+			roles = params.Roles
+		}
 	}
 
 	scope := []string{"openid", "email", "profile"}