feat: add UserService and GroupService

Add CRUD services for TrueNAS user and group management via the
user.* and group.* API namespaces. Both services use the Caller
interface (synchronous operations only).

GroupService: Create, Get, GetByName, GetByGID, List, Update, Delete
UserService: Create, Get, GetByUsername, GetByUID, List, Update, Delete

Includes full test coverage for conversion logic, CRUD operations,
not-found handling, and mock/interface compliance.

Closes #7

Co-Authored-By: Mircea-Pavel Anton <contact@mirceanton.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

Author: 3 people

group.go

@@ -0,0 +1,15 @@
+package truenas
+
+// GroupResponse represents a group from the TrueNAS API.
+type GroupResponse struct {
+	ID                   int64    `json:"id"`
+	GID                  int64    `json:"gid"`
+	Name                 string   `json:"name"`
+	Builtin              bool     `json:"builtin"`
+	SMB                  bool     `json:"smb"`
+	SudoCommands         []string `json:"sudo_commands"`
+	SudoCommandsNopasswd []string `json:"sudo_commands_nopasswd"`
+	Users                []int64  `json:"users"`
+	Local                bool     `json:"local"`
+	Immutable            bool     `json:"immutable"`
+}

group_service.go

@@ -0,0 +1,201 @@
+package truenas
+
+import (
+	"context"
+	"encoding/json"
+	"fmt"
+)
+
+// Group is the user-facing representation of a TrueNAS group.
+type Group struct {
+	ID                   int64
+	GID                  int64
+	Name                 string
+	Builtin              bool
+	SMB                  bool
+	SudoCommands         []string
+	SudoCommandsNopasswd []string
+	Users                []int64
+	Local                bool
+	Immutable            bool
+}
+
+// CreateGroupOpts contains options for creating a group.
+type CreateGroupOpts struct {
+	Name                 string
+	GID                  int64 // 0 = auto-assign
+	SMB                  bool
+	SudoCommands         []string
+	SudoCommandsNopasswd []string
+}
+
+// UpdateGroupOpts contains options for updating a group.
+// GID is immutable and cannot be changed after creation.
+type UpdateGroupOpts struct {
+	Name                 string
+	SMB                  bool
+	SudoCommands         []string
+	SudoCommandsNopasswd []string
+}
+
+// GroupService provides typed methods for the group.* API namespace.
+type GroupService struct {
+	client  Caller
+	version Version
+}
+
+// NewGroupService creates a new GroupService.
+func NewGroupService(c Caller, v Version) *GroupService {
+	return &GroupService{client: c, version: v}
+}
+
+// Create creates a group and returns the full object.
+func (s *GroupService) Create(ctx context.Context, opts CreateGroupOpts) (*Group, error) {
+	params := groupCreateOptsToParams(opts)
+	result, err := s.client.Call(ctx, "group.create", params)
+	if err != nil {
+		return nil, err
+	}
+
+	var id int64
+	if err := json.Unmarshal(result, &id); err != nil {
+		return nil, fmt.Errorf("parse create response: %w", err)
+	}
+
+	return s.Get(ctx, id)
+}
+
+// Get returns a group by ID, or nil if not found.
+func (s *GroupService) Get(ctx context.Context, id int64) (*Group, error) {
+	result, err := s.client.Call(ctx, "group.get_instance", id)
+	if err != nil {
+		if isNotFoundError(err) {
+			return nil, nil
+		}
+		return nil, err
+	}
+
+	var resp GroupResponse
+	if err := json.Unmarshal(result, &resp); err != nil {
+		return nil, fmt.Errorf("parse get_instance response: %w", err)
+	}
+
+	group := groupFromResponse(resp)
+	return &group, nil
+}
+
+// GetByName returns a group by name, or nil if not found.
+func (s *GroupService) GetByName(ctx context.Context, name string) (*Group, error) {
+	return s.queryOne(ctx, "group", name)
+}
+
+// GetByGID returns a group by GID, or nil if not found.
+func (s *GroupService) GetByGID(ctx context.Context, gid int64) (*Group, error) {
+	return s.queryOne(ctx, "gid", gid)
+}
+
+// List returns all groups.
+func (s *GroupService) List(ctx context.Context) ([]Group, error) {
+	result, err := s.client.Call(ctx, "group.query", nil)
+	if err != nil {
+		return nil, err
+	}
+
+	var responses []GroupResponse
+	if err := json.Unmarshal(result, &responses); err != nil {
+		return nil, fmt.Errorf("parse query response: %w", err)
+	}
+
+	groups := make([]Group, len(responses))
+	for i, resp := range responses {
+		groups[i] = groupFromResponse(resp)
+	}
+	return groups, nil
+}
+
+// Update updates a group and returns the full object.
+func (s *GroupService) Update(ctx context.Context, id int64, opts UpdateGroupOpts) (*Group, error) {
+	params := groupUpdateOptsToParams(opts)
+	_, err := s.client.Call(ctx, "group.update", []any{id, params})
+	if err != nil {
+		return nil, err
+	}
+
+	return s.Get(ctx, id)
+}
+
+// Delete deletes a group by ID. Does not delete member users.
+func (s *GroupService) Delete(ctx context.Context, id int64) error {
+	_, err := s.client.Call(ctx, "group.delete", []any{id, map[string]any{"delete_users": false}})
+	return err
+}
+
+// queryOne queries for a single group by field and value.
+func (s *GroupService) queryOne(ctx context.Context, field string, value any) (*Group, error) {
+	filter := [][]any{{field, "=", value}}
+	result, err := s.client.Call(ctx, "group.query", filter)
+	if err != nil {
+		return nil, err
+	}
+
+	var responses []GroupResponse
+	if err := json.Unmarshal(result, &responses); err != nil {
+		return nil, fmt.Errorf("parse query response: %w", err)
+	}
+
+	if len(responses) == 0 {
+		return nil, nil
+	}
+
+	group := groupFromResponse(responses[0])
+	return &group, nil
+}
+
+// groupCreateOptsToParams converts CreateGroupOpts to API parameters.
+func groupCreateOptsToParams(opts CreateGroupOpts) map[string]any {
+	params := map[string]any{
+		"name": opts.Name,
+		"smb":  opts.SMB,
+	}
+	if opts.GID != 0 {
+		params["gid"] = opts.GID
+	}
+	if opts.SudoCommands != nil {
+		params["sudo_commands"] = opts.SudoCommands
+	}
+	if opts.SudoCommandsNopasswd != nil {
+		params["sudo_commands_nopasswd"] = opts.SudoCommandsNopasswd
+	}
+	return params
+}
+
+// groupUpdateOptsToParams converts UpdateGroupOpts to API parameters.
+func groupUpdateOptsToParams(opts UpdateGroupOpts) map[string]any {
+	params := map[string]any{
+		"name": opts.Name,
+		"smb":  opts.SMB,
+	}
+	if opts.SudoCommands != nil {
+		params["sudo_commands"] = opts.SudoCommands
+	}
+	if opts.SudoCommandsNopasswd != nil {
+		params["sudo_commands_nopasswd"] = opts.SudoCommandsNopasswd
+	}
+	return params
+}
+
+// groupFromResponse converts a wire-format GroupResponse to a user-facing Group.
+func groupFromResponse(resp GroupResponse) Group {
+	return Group{
+		ID:                   resp.ID,
+		GID:                  resp.GID,
+		Name:                 resp.Name,
+		Builtin:              resp.Builtin,
+		SMB:                  resp.SMB,
+		SudoCommands:         resp.SudoCommands,
+		SudoCommandsNopasswd: resp.SudoCommandsNopasswd,
+		Users:                resp.Users,
+		Local:                resp.Local,
+		Immutable:            resp.Immutable,
+	}
+}

group_service_iface.go

@@ -0,0 +1,78 @@
+package truenas
+
+import "context"
+
+// GroupServiceAPI defines the interface for group operations.
+type GroupServiceAPI interface {
+	Create(ctx context.Context, opts CreateGroupOpts) (*Group, error)
+	Get(ctx context.Context, id int64) (*Group, error)
+	GetByName(ctx context.Context, name string) (*Group, error)
+	GetByGID(ctx context.Context, gid int64) (*Group, error)
+	List(ctx context.Context) ([]Group, error)
+	Update(ctx context.Context, id int64, opts UpdateGroupOpts) (*Group, error)
+	Delete(ctx context.Context, id int64) error
+}
+
+// Compile-time checks.
+var _ GroupServiceAPI = (*GroupService)(nil)
+var _ GroupServiceAPI = (*MockGroupService)(nil)
+
+// MockGroupService is a test double for GroupServiceAPI.
+type MockGroupService struct {
+	CreateFunc    func(ctx context.Context, opts CreateGroupOpts) (*Group, error)
+	GetFunc       func(ctx context.Context, id int64) (*Group, error)
+	GetByNameFunc func(ctx context.Context, name string) (*Group, error)
+	GetByGIDFunc  func(ctx context.Context, gid int64) (*Group, error)
+	ListFunc      func(ctx context.Context) ([]Group, error)
+	UpdateFunc    func(ctx context.Context, id int64, opts UpdateGroupOpts) (*Group, error)
+	DeleteFunc    func(ctx context.Context, id int64) error
+}
+
+func (m *MockGroupService) Create(ctx context.Context, opts CreateGroupOpts) (*Group, error) {
+	if m.CreateFunc != nil {
+		return m.CreateFunc(ctx, opts)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) Get(ctx context.Context, id int64) (*Group, error) {
+	if m.GetFunc != nil {
+		return m.GetFunc(ctx, id)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) GetByName(ctx context.Context, name string) (*Group, error) {
+	if m.GetByNameFunc != nil {
+		return m.GetByNameFunc(ctx, name)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) GetByGID(ctx context.Context, gid int64) (*Group, error) {
+	if m.GetByGIDFunc != nil {
+		return m.GetByGIDFunc(ctx, gid)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) List(ctx context.Context) ([]Group, error) {
+	if m.ListFunc != nil {
+		return m.ListFunc(ctx)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) Update(ctx context.Context, id int64, opts UpdateGroupOpts) (*Group, error) {
+	if m.UpdateFunc != nil {
+		return m.UpdateFunc(ctx, id, opts)
+	}
+	return nil, nil
+}
+
+func (m *MockGroupService) Delete(ctx context.Context, id int64) error {
+	if m.DeleteFunc != nil {
+		return m.DeleteFunc(ctx, id)
+	}
+	return nil
+}

group_service_iface_test.go

@@ -0,0 +1,58 @@
+package truenas
+
+import (
+	"context"
+	"testing"
+)
+
+func TestMockGroupService_ImplementsInterface(t *testing.T) {
+	var _ GroupServiceAPI = (*GroupService)(nil)
+	var _ GroupServiceAPI = (*MockGroupService)(nil)
+}
+
+func TestMockGroupService_DefaultsToNil(t *testing.T) {
+	mock := &MockGroupService{}
+	ctx := context.Background()
+
+	group, err := mock.Get(ctx, 1)
+	if err != nil {
+		t.Fatalf("expected nil error, got: %v", err)
+	}
+	if group != nil {
+		t.Fatalf("expected nil result, got: %v", group)
+	}
+
+	groups, err := mock.List(ctx)
+	if err != nil {
+		t.Fatalf("expected nil error from List, got: %v", err)
+	}
+	if groups != nil {
+		t.Fatalf("expected nil result from List, got: %v", groups)
+	}
+
+	err = mock.Delete(ctx, 1)
+	if err != nil {
+		t.Fatalf("expected nil error from Delete, got: %v", err)
+	}
+}
+
+func TestMockGroupService_CallsFunc(t *testing.T) {
+	called := false
+	mock := &MockGroupService{
+		GetFunc: func(ctx context.Context, id int64) (*Group, error) {
+			called = true
+			return &Group{ID: id, Name: "test"}, nil
+		},
+	}
+
+	group, err := mock.Get(context.Background(), 42)
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if !called {
+		t.Fatal("expected GetFunc to be called")
+	}
+	if group.ID != 42 {
+		t.Fatalf("expected ID 42, got %d", group.ID)
+	}
+}