Group Memberships WIP

Author: simonredfern

src/lib/config/navigation.ts

@@ -173,6 +173,16 @@ function buildRbacItems(): NavigationItem[] {
       label: "Create Group",
       iconComponent: Plus,
     },
+    {
+      href: "/rbac/memberships",
+      label: "Memberships",
+      iconComponent: Users,
+    },
+    {
+      href: "/rbac/memberships/create",
+      label: "Create Membership",
+      iconComponent: Plus,
+    },
     {
       href: "/rbac/entitlement-requests",
       label: "Entitlement Requests",

src/routes/(protected)/rbac/groups/[group_id]/+page.svelte

@@ -75,10 +75,10 @@
               <Edit size={16} />
               Edit
             </button>
-            <button class="btn-danger" disabled>
+            <a href="/rbac/groups/{group.group_id}/delete" class="btn-danger">
               <Trash2 size={16} />
               Delete
-            </button>
+            </a>
           </div>
         </div>
       </div>
@@ -98,7 +98,7 @@
                 <Building2 size={16} />
                 Bank ID
               </div>
-              <div class="info-value">{group.bank_id}</div>
+              <div class="info-value">{group.bank_id || "N/A"}</div>
             </div>
             <div class="info-item">
               <div class="info-label">Status</div>

src/routes/(protected)/rbac/groups/[group_id]/delete/+page.server.ts

@@ -0,0 +1,85 @@
+import type { PageServerLoad } from "./$types";
+import { error } from "@sveltejs/kit";
+import { createLogger } from "$lib/utils/logger";
+import { obp_requests } from "$lib/obp/requests";
+import { SessionOAuthHelper } from "$lib/oauth/sessionHelper";
+
+const logger = createLogger("DeleteGroupPageServer");
+
+interface Group {
+  group_id: string;
+  bank_id: string;
+  group_name: string;
+  group_description: string;
+  is_enabled: boolean;
+  list_of_roles?: string[];
+}
+
+export const load: PageServerLoad = async ({ locals, params }) => {
+  const session = locals.session;
+
+  if (!session?.data?.user) {
+    throw error(401, "Unauthorized");
+  }
+
+  const { group_id } = params;
+
+  if (!group_id) {
+    throw error(400, "Group ID is required");
+  }
+
+  // Get the OAuth session data
+  const sessionOAuth = SessionOAuthHelper.getSessionOAuth(session);
+  const accessToken = sessionOAuth?.accessToken;
+
+  // Get user entitlements from session for role checking
+  const userEntitlements = (session.data.user as any)?.entitlements?.list || [];
+
+  // Define required roles for deleting groups
+  const requiredRoles = [
+    {
+      role: "CanDeleteGroupAtAllBanks",
+      description: "Delete groups at all banks",
+      action: "delete groups",
+    },
+  ];
+
+  if (!accessToken) {
+    logger.warn("No access token available for delete group page");
+    return {
+      group: null,
+      userEntitlements,
+      requiredRoles,
+      hasApiAccess: false,
+      error: "No API access token available",
+    };
+  }
+
+  try {
+    logger.info("=== FETCHING GROUP FOR DELETION ===");
+    logger.info(`Group ID: ${group_id}`);
+    const endpoint = `/obp/v6.0.0/management/groups/${group_id}`;
+    logger.info(`Request: ${endpoint}`);
+
+    const response: Group = await obp_requests.get(endpoint, accessToken);
+
+    logger.info(`Response: Group ${response.group_name}`);
+
+    return {
+      group: response,
+      userEntitlements,
+      requiredRoles,
+      hasApiAccess: true,
+    };
+  } catch (err) {
+    logger.error("Error loading group:", err);
+
+    return {
+      group: null,
+      userEntitlements,
+      requiredRoles,
+      hasApiAccess: false,
+      error: err instanceof Error ? err.message : "Failed to load group",
+    };
+  }
+};