✨ Developer projects

2025-08-18 20:49:09 +08:00
parent 29550401fd
commit 665595b8b4
14 changed files with 752 additions and 52 deletions
--- a/DysonNetwork.Develop/Identity/CustomAppController.cs
+++ b/DysonNetwork.Develop/Identity/CustomAppController.cs
@@ -1,4 +1,5 @@
 using System.ComponentModel.DataAnnotations;
+using DysonNetwork.Develop.Project;
 using DysonNetwork.Shared.Proto;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
@@ -6,8 +7,8 @@ using Microsoft.AspNetCore.Mvc;
 namespace DysonNetwork.Develop.Identity;

 [ApiController]
-[Route("/api/developers/{pubName}/apps")]
-public class CustomAppController(CustomAppService customApps, DeveloperService ds) : ControllerBase
+[Route("/api/developers/{pubName}/projects/{projectId:guid}/apps")]
+public class CustomAppController(CustomAppService customApps, DeveloperService ds, DevProjectService projectService) : ControllerBase
 {
    public record CustomAppRequest(
        [MaxLength(1024)] string? Slug,
@@ -21,21 +22,28 @@ public class CustomAppController(CustomAppService customApps, DeveloperService d
    );

    [HttpGet]
-    public async Task<IActionResult> ListApps([FromRoute] string pubName)
+    public async Task<IActionResult> ListApps([FromRoute] string pubName, [FromRoute] Guid projectId)
    {
        var developer = await ds.GetDeveloperByName(pubName);
        if (developer is null) return NotFound();
-        var apps = await customApps.GetAppsByPublisherAsync(developer.Id);
+        
+        var project = await projectService.GetProjectAsync(projectId, developer.Id);
+        if (project is null) return NotFound();
+        
+        var apps = await customApps.GetAppsByProjectAsync(projectId);
        return Ok(apps);
    }

-    [HttpGet("{id:guid}")]
-    public async Task<IActionResult> GetApp([FromRoute] string pubName, Guid id)
+    [HttpGet("{appId:guid}")]
+    public async Task<IActionResult> GetApp([FromRoute] string pubName, [FromRoute] Guid projectId, [FromRoute] Guid appId)
    {
        var developer = await ds.GetDeveloperByName(pubName);
        if (developer is null) return NotFound();
+        
+        var project = await projectService.GetProjectAsync(projectId, developer.Id);
+        if (project is null) return NotFound();

-        var app = await customApps.GetAppAsync(id, developerId: developer.Id);
+        var app = await customApps.GetAppAsync(appId, projectId);
        if (app == null)
            return NotFound();

@@ -44,23 +52,40 @@ public class CustomAppController(CustomAppService customApps, DeveloperService d

    [HttpPost]
    [Authorize]
-    public async Task<IActionResult> CreateApp([FromRoute] string pubName, [FromBody] CustomAppRequest request)
+    public async Task<IActionResult> CreateApp(
+        [FromRoute] string pubName, 
+        [FromRoute] Guid projectId,
+        [FromBody] CustomAppRequest request)
    {
-        if (HttpContext.Items["CurrentUser"] is not Account currentUser) return Unauthorized();
+        if (HttpContext.Items["CurrentUser"] is not Account currentUser) 
+            return Unauthorized();
+
+        var developer = await ds.GetDeveloperByName(pubName);
+        var accountId = Guid.Parse(currentUser.Id);
+        if (developer is null || developer.Id != accountId)
+            return Forbid();
+            
+        var project = await projectService.GetProjectAsync(projectId, developer.Id);
+        if (project is null)
+            return NotFound("Project not found or you don't have access");

        if (string.IsNullOrWhiteSpace(request.Name) || string.IsNullOrWhiteSpace(request.Slug))
            return BadRequest("Name and slug are required");

-        var developer = await ds.GetDeveloperByName(pubName);
-        if (developer is null) return NotFound();
-
        if (!await ds.IsMemberWithRole(developer.PublisherId, Guid.Parse(currentUser.Id), PublisherMemberRole.Editor))
            return StatusCode(403, "You must be an editor of the developer to create a custom app");

        try
        {
-            var app = await customApps.CreateAppAsync(developer, request);
-            return Ok(app);
+            var app = await customApps.CreateAppAsync(projectId, request);
+            if (app == null)
+                return BadRequest("Failed to create app");
+                
+            return CreatedAtAction(
+                nameof(GetApp), 
+                new { pubName, projectId, appId = app.Id },
+                app
+            );
        }
        catch (InvalidOperationException ex)
        {
@@ -68,23 +93,30 @@ public class CustomAppController(CustomAppService customApps, DeveloperService d
        }
    }

-    [HttpPatch("{id:guid}")]
+    [HttpPatch("{appId:guid}")]
    [Authorize]
    public async Task<IActionResult> UpdateApp(
        [FromRoute] string pubName,
-        [FromRoute] Guid id,
+        [FromRoute] Guid projectId,
+        [FromRoute] Guid appId,
        [FromBody] CustomAppRequest request
    )
    {
-        if (HttpContext.Items["CurrentUser"] is not Account currentUser) return Unauthorized();
+        if (HttpContext.Items["CurrentUser"] is not Account currentUser) 
+            return Unauthorized();
        
        var developer = await ds.GetDeveloperByName(pubName);
-        if (developer is null) return NotFound();
-        
+        if (developer is null)
+            return NotFound("Developer not found");
+            
        if (!await ds.IsMemberWithRole(developer.PublisherId, Guid.Parse(currentUser.Id), PublisherMemberRole.Editor))
            return StatusCode(403, "You must be an editor of the developer to update a custom app");
+            
+        var project = await projectService.GetProjectAsync(projectId, developer.Id);
+        if (project is null)
+            return NotFound("Project not found or you don't have access");

-        var app = await customApps.GetAppAsync(id, developerId: developer.Id);
+        var app = await customApps.GetAppAsync(appId, projectId);
        if (app == null)
            return NotFound();

@@ -99,28 +131,36 @@ public class CustomAppController(CustomAppService customApps, DeveloperService d
        }
    }

-    [HttpDelete("{id:guid}")]
+    [HttpDelete("{appId:guid}")]
    [Authorize]
    public async Task<IActionResult> DeleteApp(
        [FromRoute] string pubName,
-        [FromRoute] Guid id
+        [FromRoute] Guid projectId,
+        [FromRoute] Guid appId
    )
    {
-        if (HttpContext.Items["CurrentUser"] is not Account currentUser) return Unauthorized();
+        if (HttpContext.Items["CurrentUser"] is not Account currentUser) 
+            return Unauthorized();
        
        var developer = await ds.GetDeveloperByName(pubName);
-        if (developer is null) return NotFound();
-        
+        if (developer is null)
+            return NotFound("Developer not found");
+            
        if (!await ds.IsMemberWithRole(developer.PublisherId, Guid.Parse(currentUser.Id), PublisherMemberRole.Editor))
            return StatusCode(403, "You must be an editor of the developer to delete a custom app");
+            
+        var project = await projectService.GetProjectAsync(projectId, developer.Id);
+        if (project is null)
+            return NotFound("Project not found or you don't have access");

-        var app = await customApps.GetAppAsync(id, developerId: developer.Id);
+        var app = await customApps.GetAppAsync(appId, projectId);
        if (app == null)
            return NotFound();

-        var result = await customApps.DeleteAppAsync(id);
+        var result = await customApps.DeleteAppAsync(appId);
        if (!result)
            return NotFound();
+            
        return NoContent();
    }
 }