Support two more endpoints

 * GET /api/users/without-permissions
 * POST /api/users/bulk-delete

Author: michaelklishin

src/api.rs

@@ -29,8 +29,8 @@ use crate::{
     commons::{BindingDestinationType, UserLimitTarget, VirtualHostLimitTarget},
     path,
     requests::{
-        self, EnforcedLimitParams, ExchangeParams, Permissions, PolicyParams, QueueParams,
-        RuntimeParameterDefinition, UserParams, VirtualHostParams, XArguments,
+        self, BulkUserDelete, EnforcedLimitParams, ExchangeParams, Permissions, PolicyParams,
+        QueueParams, RuntimeParameterDefinition, UserParams, VirtualHostParams, XArguments,
     },
     responses::{self, BindingInfo, DefinitionSet},
 };
@@ -241,6 +241,16 @@ where
         Ok(response)
     }
 
+    /// Lists users in the internal database that do not have access
+    /// to any virtual hosts.
+    pub async fn list_users_without_permissions(&self) -> Result<Vec<responses::User>> {
+        let response = self
+            .http_get("users/without-permissions", None, None)
+            .await?;
+        let response = response.json().await?;
+        Ok(response)
+    }
+
     /// Lists all client connections across the cluster.
     pub async fn list_connections(&self) -> Result<Vec<responses::Connection>> {
         let response = self.http_get("connections", None, None).await?;
@@ -614,6 +624,14 @@ where
         Ok(())
     }
 
+    pub async fn delete_users(&self, usernames: Vec<&str>) -> Result<()> {
+        let delete = BulkUserDelete { usernames };
+        let _response = self
+            .http_post(path!("users", "bulk-delete"), &delete, None, None)
+            .await?;
+        Ok(())
+    }
+
     pub async fn clear_permissions(
         &self,
         vhost: &str,

src/blocking_api.rs

@@ -19,8 +19,8 @@ use crate::{
     commons::{BindingDestinationType, UserLimitTarget, VirtualHostLimitTarget},
     path,
     requests::{
-        self, EnforcedLimitParams, ExchangeParams, Permissions, PolicyParams, QueueParams,
-        RuntimeParameterDefinition, UserParams, VirtualHostParams, XArguments,
+        self, BulkUserDelete, EnforcedLimitParams, ExchangeParams, Permissions, PolicyParams,
+        QueueParams, RuntimeParameterDefinition, UserParams, VirtualHostParams, XArguments,
     },
     responses::{self, BindingInfo, DefinitionSet},
 };
@@ -560,6 +560,12 @@ where
         Ok(())
     }
 
+    pub fn delete_users(&self, usernames: Vec<&str>) -> Result<()> {
+        let delete = BulkUserDelete { usernames };
+        let _response = self.http_post(path!("users", "bulk-delete"), &delete, None, None)?;
+        Ok(())
+    }
+
     pub fn clear_permissions(&self, vhost: &str, username: &str, idempotently: bool) -> Result<()> {
         let excludes = if idempotently {
             Some(StatusCode::NOT_FOUND)

src/requests.rs

@@ -321,6 +321,12 @@ impl<'a> ExchangeParams<'a> {
     }
 }
 
+#[derive(Serialize, Deserialize)]
+pub struct BulkUserDelete<'a> {
+    #[serde(borrow, rename = "users")]
+    pub usernames: Vec<&'a str>,
+}
+
 pub type RuntimeParameterValue = Map<String, Value>;
 
 /// Represents a [runtime parameter](https://rabbitmq.com/docs/parameters/).

tests/user_tests.rs

@@ -109,3 +109,34 @@ fn test_user_deletion() {
     let result2 = rc.delete_user(name, false);
     assert!(result2.is_ok());
 }
+
+#[test]
+fn test_bulk_user_deletion() {
+    let endpoint = endpoint();
+    let rc = Client::new(&endpoint, USERNAME, PASSWORD);
+
+    let salt = password_hashing::salt();
+    let password_hash =
+        password_hashing::base64_encoded_salted_password_hash_sha256(&salt, "del3te_me");
+
+    let name1 = "del3te_me_1";
+    let params1 = UserParams {
+        name: name1,
+        password_hash: &password_hash,
+        tags: "management",
+    };
+    let result1 = rc.create_user(&params1);
+    assert!(result1.is_ok());
+
+    let name2 = "del3te_me_2";
+    let params2 = UserParams {
+        name: name2,
+        password_hash: &password_hash,
+        tags: "management",
+    };
+    let result2 = rc.create_user(&params2);
+    assert!(result2.is_ok());
+
+    let result2 = rc.delete_users(vec![name1, name2]);
+    assert!(result2.is_ok());
+}