Merge branch 'worktree-agent-a22bd1a2' into worktree-agent-a6f1951d
This commit is contained in:
@@ -29,7 +29,7 @@ Requirements for this milestone. Each maps to roadmap phases.
|
|||||||
- [x] **MULTI-02**: User can only see and modify their own data (cross-user isolation)
|
- [x] **MULTI-02**: User can only see and modify their own data (cross-user isolation)
|
||||||
- [x] **MULTI-03**: Categories use composite unique constraint (userId + name)
|
- [x] **MULTI-03**: Categories use composite unique constraint (userId + name)
|
||||||
- [x] **MULTI-04**: Existing data is assigned to the original user during migration
|
- [x] **MULTI-04**: Existing data is assigned to the original user during migration
|
||||||
- [ ] **MULTI-05**: MCP tools operate within the authenticated user's scope
|
- [x] **MULTI-05**: MCP tools operate within the authenticated user's scope
|
||||||
- [x] **MULTI-06**: Settings are per-user rather than global
|
- [x] **MULTI-06**: Settings are per-user rather than global
|
||||||
|
|
||||||
### Image Storage
|
### Image Storage
|
||||||
@@ -130,7 +130,7 @@ Which phases cover which requirements. Updated during roadmap creation.
|
|||||||
| MULTI-02 | Phase 16 | Complete |
|
| MULTI-02 | Phase 16 | Complete |
|
||||||
| MULTI-03 | Phase 16 | Complete |
|
| MULTI-03 | Phase 16 | Complete |
|
||||||
| MULTI-04 | Phase 16 | Complete |
|
| MULTI-04 | Phase 16 | Complete |
|
||||||
| MULTI-05 | Phase 16 | Pending |
|
| MULTI-05 | Phase 16 | Complete |
|
||||||
| MULTI-06 | Phase 16 | Complete |
|
| MULTI-06 | Phase 16 | Complete |
|
||||||
| IMG-01 | Phase 17 | Pending |
|
| IMG-01 | Phase 17 | Pending |
|
||||||
| IMG-02 | Phase 17 | Pending |
|
| IMG-02 | Phase 17 | Pending |
|
||||||
|
|||||||
@@ -149,7 +149,7 @@ Plans:
|
|||||||
Plans:
|
Plans:
|
||||||
- [x] 16-01-PLAN.md — Schema foundation: users table, userId columns, auth middleware, test helper
|
- [x] 16-01-PLAN.md — Schema foundation: users table, userId columns, auth middleware, test helper
|
||||||
- [x] 16-02-PLAN.md — Service layer userId scoping
|
- [x] 16-02-PLAN.md — Service layer userId scoping
|
||||||
- [ ] 16-03-PLAN.md — Route handlers userId extraction
|
- [x] 16-03-PLAN.md — Route handlers userId extraction
|
||||||
- [ ] 16-04-PLAN.md — Test suite updates
|
- [ ] 16-04-PLAN.md — Test suite updates
|
||||||
|
|
||||||
### Phase 17: Object Storage
|
### Phase 17: Object Storage
|
||||||
|
|||||||
@@ -26,7 +26,7 @@ See: .planning/PROJECT.md (updated 2026-04-03)
|
|||||||
## Current Position
|
## Current Position
|
||||||
|
|
||||||
Phase: 16 of 18 (Multi-User Data Model)
|
Phase: 16 of 18 (Multi-User Data Model)
|
||||||
Plan: 2 of 4 in current phase
|
Plan: 3 of 4 in current phase
|
||||||
Status: Ready to execute
|
Status: Ready to execute
|
||||||
Last activity: 2026-04-05
|
Last activity: 2026-04-05
|
||||||
|
|
||||||
@@ -36,9 +36,9 @@ Progress: [#---------] 5% (v2.0 milestone)
|
|||||||
|
|
||||||
**Velocity:**
|
**Velocity:**
|
||||||
|
|
||||||
- Total plans completed: 1 (v2.0 milestone)
|
- Total plans completed: 2 (v2.0 milestone)
|
||||||
- Average duration: 8min
|
- Average duration: 7min
|
||||||
- Total execution time: 8min
|
- Total execution time: 14min
|
||||||
|
|
||||||
*Updated after each plan completion*
|
*Updated after each plan completion*
|
||||||
|
|
||||||
@@ -60,6 +60,9 @@ Key decisions made during v2.0 execution:
|
|||||||
- [Phase 16]: Category deletion uses dynamic getOrCreateUncategorized per user instead of hardcoded ID
|
- [Phase 16]: Category deletion uses dynamic getOrCreateUncategorized per user instead of hardcoded ID
|
||||||
- [Phase 16]: Candidate operations verify parent thread ownership for cross-user isolation
|
- [Phase 16]: Candidate operations verify parent thread ownership for cross-user isolation
|
||||||
- [Phase 16]: syncSetupItems validates both setup and item ownership via inArray
|
- [Phase 16]: syncSetupItems validates both setup and item ownership via inArray
|
||||||
|
- [Phase 16-03]: Non-null assertion on c.get("userId") since requireAuth guarantees it
|
||||||
|
- [Phase 16-03]: MCP session map stores userId alongside transport for session reuse
|
||||||
|
- [Phase 16-03]: Images route unchanged -- no user-scoped DB operations
|
||||||
|
|
||||||
### Pending Todos
|
### Pending Todos
|
||||||
|
|
||||||
@@ -73,5 +76,5 @@ None active.
|
|||||||
## Session Continuity
|
## Session Continuity
|
||||||
|
|
||||||
Last session: 2026-04-05T08:45:22.408Z
|
Last session: 2026-04-05T08:45:22.408Z
|
||||||
Stopped at: Completed 16-02-PLAN.md
|
Stopped at: Completed 16-03-PLAN.md
|
||||||
Resume file: None
|
Resume file: None
|
||||||
|
|||||||
124
.planning/phases/16-multi-user-data-model/16-03-SUMMARY.md
Normal file
124
.planning/phases/16-multi-user-data-model/16-03-SUMMARY.md
Normal file
@@ -0,0 +1,124 @@
|
|||||||
|
---
|
||||||
|
phase: 16-multi-user-data-model
|
||||||
|
plan: 03
|
||||||
|
subsystem: api
|
||||||
|
tags: [hono, mcp, userId, multi-user, routes, middleware]
|
||||||
|
|
||||||
|
# Dependency graph
|
||||||
|
requires:
|
||||||
|
- phase: 16-01
|
||||||
|
provides: "Schema with userId columns, auth middleware setting c.set('userId')"
|
||||||
|
- phase: 16-02
|
||||||
|
provides: "Service functions accepting userId as second parameter"
|
||||||
|
provides:
|
||||||
|
- "All route handlers extract userId from context and pass to services"
|
||||||
|
- "Settings routes use composite PK [userId, key] for per-user settings"
|
||||||
|
- "MCP server creation receives userId, all tool registrations pass userId"
|
||||||
|
- "MCP auth middleware resolves userId from API key and Bearer token"
|
||||||
|
affects: [16-04, tests, e2e]
|
||||||
|
|
||||||
|
# Tech tracking
|
||||||
|
tech-stack:
|
||||||
|
added: []
|
||||||
|
patterns: ["userId extraction pattern: const userId = c.get('userId')!", "MCP session stores userId alongside transport"]
|
||||||
|
|
||||||
|
key-files:
|
||||||
|
created: []
|
||||||
|
modified:
|
||||||
|
- src/server/routes/items.ts
|
||||||
|
- src/server/routes/categories.ts
|
||||||
|
- src/server/routes/threads.ts
|
||||||
|
- src/server/routes/setups.ts
|
||||||
|
- src/server/routes/settings.ts
|
||||||
|
- src/server/routes/totals.ts
|
||||||
|
- src/server/routes/auth.ts
|
||||||
|
- src/server/mcp/index.ts
|
||||||
|
- src/server/mcp/tools/items.ts
|
||||||
|
- src/server/mcp/tools/categories.ts
|
||||||
|
- src/server/mcp/tools/threads.ts
|
||||||
|
- src/server/mcp/tools/setups.ts
|
||||||
|
- src/server/mcp/resources/collection.ts
|
||||||
|
|
||||||
|
key-decisions:
|
||||||
|
- "Used non-null assertion (!) on c.get('userId') since requireAuth middleware guarantees it"
|
||||||
|
- "Stored userId alongside transport in MCP session map for session reuse"
|
||||||
|
- "Images route left unchanged -- image uploads have no user-scoped DB operations"
|
||||||
|
|
||||||
|
patterns-established:
|
||||||
|
- "Route handler pattern: const userId = c.get('userId')! after const db = c.get('db')"
|
||||||
|
- "MCP tool registration pattern: registerXTools(db, userId) with userId closure"
|
||||||
|
- "Settings composite key: [settings.userId, settings.key] for onConflictDoUpdate target"
|
||||||
|
|
||||||
|
requirements-completed: [MULTI-02, MULTI-05, MULTI-06]
|
||||||
|
|
||||||
|
# Metrics
|
||||||
|
duration: 6min
|
||||||
|
completed: 2026-04-05
|
||||||
|
---
|
||||||
|
|
||||||
|
# Phase 16 Plan 03: Route and MCP userId Wiring Summary
|
||||||
|
|
||||||
|
**Complete userId propagation chain from auth middleware through routes and MCP tools to service layer**
|
||||||
|
|
||||||
|
## Performance
|
||||||
|
|
||||||
|
- **Duration:** 6 min
|
||||||
|
- **Started:** 2026-04-05T08:46:34Z
|
||||||
|
- **Completed:** 2026-04-05T08:52:52Z
|
||||||
|
- **Tasks:** 2
|
||||||
|
- **Files modified:** 13
|
||||||
|
|
||||||
|
## Accomplishments
|
||||||
|
- All 36 route handler calls now extract userId from Hono context and pass to service functions
|
||||||
|
- Settings routes use composite primary key [userId, key] for per-user settings isolation
|
||||||
|
- MCP server creation receives userId, all 4 tool registration functions and collection summary pass userId
|
||||||
|
- MCP auth middleware resolves userId from both API key and Bearer token authentication
|
||||||
|
|
||||||
|
## Task Commits
|
||||||
|
|
||||||
|
Each task was committed atomically:
|
||||||
|
|
||||||
|
1. **Task 1: Update all route handlers to extract and pass userId** - `e780022` (feat)
|
||||||
|
2. **Task 2: Update MCP server and tool registrations with userId** - `d4bf4f5` (feat)
|
||||||
|
|
||||||
|
## Files Created/Modified
|
||||||
|
- `src/server/routes/items.ts` - Added userId extraction to all 8 handlers (CRUD + export/import/duplicate)
|
||||||
|
- `src/server/routes/categories.ts` - Added userId extraction to all 4 handlers
|
||||||
|
- `src/server/routes/threads.ts` - Added userId extraction to all 10 handlers (threads + candidates + reorder + resolve)
|
||||||
|
- `src/server/routes/setups.ts` - Added userId extraction to all 8 handlers (CRUD + items sync/classification/remove)
|
||||||
|
- `src/server/routes/settings.ts` - Added userId with composite key [userId, key] for reads and upserts
|
||||||
|
- `src/server/routes/totals.ts` - Added userId extraction to totals handler
|
||||||
|
- `src/server/routes/auth.ts` - Added userId extraction to API key management handlers
|
||||||
|
- `src/server/mcp/index.ts` - Updated createMcpServer(db, userId), MCP auth resolves userId, session map stores userId
|
||||||
|
- `src/server/mcp/tools/items.ts` - registerItemTools(db, userId) passes userId to all service calls
|
||||||
|
- `src/server/mcp/tools/categories.ts` - registerCategoryTools(db, userId) passes userId to all service calls
|
||||||
|
- `src/server/mcp/tools/threads.ts` - registerThreadTools(db, userId) passes userId to all service calls
|
||||||
|
- `src/server/mcp/tools/setups.ts` - registerSetupTools(db, userId) passes userId to all service calls
|
||||||
|
- `src/server/mcp/resources/collection.ts` - getCollectionSummary(db, userId) passes userId to all queries
|
||||||
|
|
||||||
|
## Decisions Made
|
||||||
|
- Used non-null assertion (`!`) on `c.get("userId")` since `requireAuth` middleware guarantees userId is set for all data routes
|
||||||
|
- Stored userId alongside transport in MCP session map to support session reuse without re-creating MCP server
|
||||||
|
- Left images route unchanged since image upload/fetch operations have no user-scoped database queries
|
||||||
|
|
||||||
|
## Deviations from Plan
|
||||||
|
|
||||||
|
None - plan executed exactly as written.
|
||||||
|
|
||||||
|
## Issues Encountered
|
||||||
|
None
|
||||||
|
|
||||||
|
## User Setup Required
|
||||||
|
None - no external service configuration required.
|
||||||
|
|
||||||
|
## Next Phase Readiness
|
||||||
|
- Complete userId propagation chain is in place: middleware -> routes/MCP -> services -> database
|
||||||
|
- Ready for Plan 04 (test updates) to verify the multi-user data isolation
|
||||||
|
|
||||||
|
## Self-Check: PASSED
|
||||||
|
|
||||||
|
All files verified present, all commits verified in history.
|
||||||
|
|
||||||
|
---
|
||||||
|
*Phase: 16-multi-user-data-model*
|
||||||
|
*Completed: 2026-04-05*
|
||||||
@@ -17,32 +17,32 @@ import { registerThreadTools, threadToolDefinitions } from "./tools/threads.ts";
|
|||||||
|
|
||||||
type Db = typeof prodDb;
|
type Db = typeof prodDb;
|
||||||
|
|
||||||
function createMcpServer(db: Db): McpServer {
|
function createMcpServer(db: Db, userId: number): McpServer {
|
||||||
const server = new McpServer({ name: "GearBox", version: "1.0.0" });
|
const server = new McpServer({ name: "GearBox", version: "1.0.0" });
|
||||||
|
|
||||||
// Register item tools
|
// Register item tools
|
||||||
const itemHandlers = registerItemTools(db);
|
const itemHandlers = registerItemTools(db, userId);
|
||||||
for (const def of itemToolDefinitions) {
|
for (const def of itemToolDefinitions) {
|
||||||
const handler = itemHandlers[def.name as keyof typeof itemHandlers];
|
const handler = itemHandlers[def.name as keyof typeof itemHandlers];
|
||||||
server.tool(def.name, def.description, def.inputSchema, handler);
|
server.tool(def.name, def.description, def.inputSchema, handler);
|
||||||
}
|
}
|
||||||
|
|
||||||
// Register category tools
|
// Register category tools
|
||||||
const categoryHandlers = registerCategoryTools(db);
|
const categoryHandlers = registerCategoryTools(db, userId);
|
||||||
for (const def of categoryToolDefinitions) {
|
for (const def of categoryToolDefinitions) {
|
||||||
const handler = categoryHandlers[def.name as keyof typeof categoryHandlers];
|
const handler = categoryHandlers[def.name as keyof typeof categoryHandlers];
|
||||||
server.tool(def.name, def.description, def.inputSchema, handler);
|
server.tool(def.name, def.description, def.inputSchema, handler);
|
||||||
}
|
}
|
||||||
|
|
||||||
// Register thread tools
|
// Register thread tools
|
||||||
const threadHandlers = registerThreadTools(db);
|
const threadHandlers = registerThreadTools(db, userId);
|
||||||
for (const def of threadToolDefinitions) {
|
for (const def of threadToolDefinitions) {
|
||||||
const handler = threadHandlers[def.name as keyof typeof threadHandlers];
|
const handler = threadHandlers[def.name as keyof typeof threadHandlers];
|
||||||
server.tool(def.name, def.description, def.inputSchema, handler);
|
server.tool(def.name, def.description, def.inputSchema, handler);
|
||||||
}
|
}
|
||||||
|
|
||||||
// Register setup tools
|
// Register setup tools
|
||||||
const setupHandlers = registerSetupTools(db);
|
const setupHandlers = registerSetupTools(db, userId);
|
||||||
for (const def of setupToolDefinitions) {
|
for (const def of setupToolDefinitions) {
|
||||||
const handler = setupHandlers[def.name as keyof typeof setupHandlers];
|
const handler = setupHandlers[def.name as keyof typeof setupHandlers];
|
||||||
server.tool(def.name, def.description, def.inputSchema, handler);
|
server.tool(def.name, def.description, def.inputSchema, handler);
|
||||||
@@ -65,7 +65,7 @@ function createMcpServer(db: Db): McpServer {
|
|||||||
mimeType: "application/json",
|
mimeType: "application/json",
|
||||||
},
|
},
|
||||||
async () => {
|
async () => {
|
||||||
const summary = await getCollectionSummary(db);
|
const summary = await getCollectionSummary(db, userId);
|
||||||
return {
|
return {
|
||||||
contents: [
|
contents: [
|
||||||
{
|
{
|
||||||
@@ -81,12 +81,15 @@ function createMcpServer(db: Db): McpServer {
|
|||||||
return server;
|
return server;
|
||||||
}
|
}
|
||||||
|
|
||||||
// Store active transports by session ID
|
// Store active transports by session ID (with userId for session reuse)
|
||||||
const transports = new Map<string, WebStandardStreamableHTTPServerTransport>();
|
const transports = new Map<
|
||||||
|
string,
|
||||||
|
{ transport: WebStandardStreamableHTTPServerTransport; userId: number }
|
||||||
|
>();
|
||||||
|
|
||||||
export const mcpRoutes = new Hono();
|
export const mcpRoutes = new Hono();
|
||||||
|
|
||||||
// Auth middleware for all MCP requests
|
// Auth middleware for all MCP requests — resolves userId
|
||||||
mcpRoutes.use("/*", async (c, next) => {
|
mcpRoutes.use("/*", async (c, next) => {
|
||||||
const db = c.get("db") ?? prodDb;
|
const db = c.get("db") ?? prodDb;
|
||||||
|
|
||||||
@@ -94,7 +97,9 @@ mcpRoutes.use("/*", async (c, next) => {
|
|||||||
const authHeader = c.req.header("Authorization");
|
const authHeader = c.req.header("Authorization");
|
||||||
if (authHeader?.startsWith("Bearer ")) {
|
if (authHeader?.startsWith("Bearer ")) {
|
||||||
const token = authHeader.slice(7);
|
const token = authHeader.slice(7);
|
||||||
if (await verifyAccessToken(db, token)) {
|
const result = await verifyAccessToken(db, token);
|
||||||
|
if (result) {
|
||||||
|
c.set("userId", result.userId);
|
||||||
return next();
|
return next();
|
||||||
}
|
}
|
||||||
return c.json({ error: "invalid_token" }, 401);
|
return c.json({ error: "invalid_token" }, 401);
|
||||||
@@ -103,8 +108,9 @@ mcpRoutes.use("/*", async (c, next) => {
|
|||||||
// Try API key
|
// Try API key
|
||||||
const apiKey = c.req.header("X-API-Key");
|
const apiKey = c.req.header("X-API-Key");
|
||||||
if (apiKey) {
|
if (apiKey) {
|
||||||
const valid = await verifyApiKey(db, apiKey);
|
const result = await verifyApiKey(db, apiKey);
|
||||||
if (valid) {
|
if (result) {
|
||||||
|
c.set("userId", result.userId);
|
||||||
return next();
|
return next();
|
||||||
}
|
}
|
||||||
return c.json({ error: "Invalid API key" }, 401);
|
return c.json({ error: "Invalid API key" }, 401);
|
||||||
@@ -121,16 +127,17 @@ mcpRoutes.use("/*", async (c, next) => {
|
|||||||
|
|
||||||
mcpRoutes.post("/", async (c) => {
|
mcpRoutes.post("/", async (c) => {
|
||||||
const db = c.get("db") ?? prodDb;
|
const db = c.get("db") ?? prodDb;
|
||||||
|
const userId = c.get("userId") as number;
|
||||||
|
|
||||||
// Check for existing session
|
// Check for existing session
|
||||||
const sessionId = c.req.header("mcp-session-id");
|
const sessionId = c.req.header("mcp-session-id");
|
||||||
|
|
||||||
if (sessionId) {
|
if (sessionId) {
|
||||||
const transport = transports.get(sessionId);
|
const session = transports.get(sessionId);
|
||||||
if (!transport) {
|
if (!session) {
|
||||||
return c.json({ error: "Session not found" }, 404);
|
return c.json({ error: "Session not found" }, 404);
|
||||||
}
|
}
|
||||||
const response = await transport.handleRequest(c.req.raw);
|
const response = await session.transport.handleRequest(c.req.raw);
|
||||||
return response;
|
return response;
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -138,19 +145,19 @@ mcpRoutes.post("/", async (c) => {
|
|||||||
const transport = new WebStandardStreamableHTTPServerTransport({
|
const transport = new WebStandardStreamableHTTPServerTransport({
|
||||||
sessionIdGenerator: () => randomUUID(),
|
sessionIdGenerator: () => randomUUID(),
|
||||||
onsessioninitialized: (newSessionId) => {
|
onsessioninitialized: (newSessionId) => {
|
||||||
transports.set(newSessionId, transport);
|
transports.set(newSessionId, { transport, userId });
|
||||||
},
|
},
|
||||||
});
|
});
|
||||||
|
|
||||||
// Clean up on close
|
// Clean up on close
|
||||||
transport.onclose = () => {
|
transport.onclose = () => {
|
||||||
const sid = [...transports.entries()].find(
|
const sid = [...transports.entries()].find(
|
||||||
([_, t]) => t === transport,
|
([_, s]) => s.transport === transport,
|
||||||
)?.[0];
|
)?.[0];
|
||||||
if (sid) transports.delete(sid);
|
if (sid) transports.delete(sid);
|
||||||
};
|
};
|
||||||
|
|
||||||
const server = createMcpServer(db);
|
const server = createMcpServer(db, userId);
|
||||||
await server.connect(transport);
|
await server.connect(transport);
|
||||||
|
|
||||||
const response = await transport.handleRequest(c.req.raw);
|
const response = await transport.handleRequest(c.req.raw);
|
||||||
@@ -163,12 +170,12 @@ mcpRoutes.get("/", async (c) => {
|
|||||||
return c.json({ error: "Session ID required" }, 400);
|
return c.json({ error: "Session ID required" }, 400);
|
||||||
}
|
}
|
||||||
|
|
||||||
const transport = transports.get(sessionId);
|
const session = transports.get(sessionId);
|
||||||
if (!transport) {
|
if (!session) {
|
||||||
return c.json({ error: "Session not found" }, 404);
|
return c.json({ error: "Session not found" }, 404);
|
||||||
}
|
}
|
||||||
|
|
||||||
const response = await transport.handleRequest(c.req.raw);
|
const response = await session.transport.handleRequest(c.req.raw);
|
||||||
return response;
|
return response;
|
||||||
});
|
});
|
||||||
|
|
||||||
@@ -178,12 +185,12 @@ mcpRoutes.delete("/", async (c) => {
|
|||||||
return c.json({ error: "Session ID required" }, 400);
|
return c.json({ error: "Session ID required" }, 400);
|
||||||
}
|
}
|
||||||
|
|
||||||
const transport = transports.get(sessionId);
|
const session = transports.get(sessionId);
|
||||||
if (!transport) {
|
if (!session) {
|
||||||
return c.json({ error: "Session not found" }, 404);
|
return c.json({ error: "Session not found" }, 404);
|
||||||
}
|
}
|
||||||
|
|
||||||
await transport.close();
|
await session.transport.close();
|
||||||
transports.delete(sessionId);
|
transports.delete(sessionId);
|
||||||
return c.text("", 200);
|
return c.text("", 200);
|
||||||
});
|
});
|
||||||
|
|||||||
@@ -7,12 +7,12 @@ import { getGlobalTotals } from "../../services/totals.service.ts";
|
|||||||
|
|
||||||
type Db = typeof prodDb;
|
type Db = typeof prodDb;
|
||||||
|
|
||||||
export async function getCollectionSummary(db: Db) {
|
export async function getCollectionSummary(db: Db, userId: number) {
|
||||||
const totals = await getGlobalTotals(db);
|
const totals = await getGlobalTotals(db, userId);
|
||||||
const categories = await getAllCategories(db);
|
const categories = await getAllCategories(db, userId);
|
||||||
const items = await getAllItems(db);
|
const items = await getAllItems(db, userId);
|
||||||
const setups = await getAllSetups(db);
|
const setups = await getAllSetups(db, userId);
|
||||||
const activeThreads = await getAllThreads(db, false);
|
const activeThreads = await getAllThreads(db, userId, false);
|
||||||
|
|
||||||
// Build items-by-category map
|
// Build items-by-category map
|
||||||
const itemsByCategory: Record<string, number> = {};
|
const itemsByCategory: Record<string, number> = {};
|
||||||
|
|||||||
@@ -37,11 +37,11 @@ export const categoryToolDefinitions = [
|
|||||||
},
|
},
|
||||||
];
|
];
|
||||||
|
|
||||||
export function registerCategoryTools(db: Db) {
|
export function registerCategoryTools(db: Db, userId: number) {
|
||||||
return {
|
return {
|
||||||
list_categories: async (): Promise<ToolResult> => {
|
list_categories: async (): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const cats = await getAllCategories(db);
|
const cats = await getAllCategories(db, userId);
|
||||||
return textResult(cats);
|
return textResult(cats);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -53,7 +53,7 @@ export function registerCategoryTools(db: Db) {
|
|||||||
icon?: string;
|
icon?: string;
|
||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const cat = await createCategory(db, args);
|
const cat = await createCategory(db, userId, args);
|
||||||
return textResult(cat);
|
return textResult(cat);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
|
|||||||
@@ -91,11 +91,11 @@ export const itemToolDefinitions = [
|
|||||||
},
|
},
|
||||||
];
|
];
|
||||||
|
|
||||||
export function registerItemTools(db: Db) {
|
export function registerItemTools(db: Db, userId: number) {
|
||||||
return {
|
return {
|
||||||
list_items: async (args: { categoryId?: number }): Promise<ToolResult> => {
|
list_items: async (args: { categoryId?: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const items = await getAllItems(db);
|
const items = await getAllItems(db, userId);
|
||||||
if (args.categoryId) {
|
if (args.categoryId) {
|
||||||
return textResult(
|
return textResult(
|
||||||
items.filter((i) => i.categoryId === args.categoryId),
|
items.filter((i) => i.categoryId === args.categoryId),
|
||||||
@@ -109,7 +109,7 @@ export function registerItemTools(db: Db) {
|
|||||||
|
|
||||||
get_item: async (args: { id: number }): Promise<ToolResult> => {
|
get_item: async (args: { id: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const item = await getItemById(db, args.id);
|
const item = await getItemById(db, userId, args.id);
|
||||||
if (!item) return errorResult(`Item ${args.id} not found`);
|
if (!item) return errorResult(`Item ${args.id} not found`);
|
||||||
return textResult(item);
|
return textResult(item);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
@@ -128,7 +128,7 @@ export function registerItemTools(db: Db) {
|
|||||||
imageSourceUrl?: string;
|
imageSourceUrl?: string;
|
||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const item = await createItem(db, args);
|
const item = await createItem(db, userId, args);
|
||||||
return textResult(item);
|
return textResult(item);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -148,7 +148,7 @@ export function registerItemTools(db: Db) {
|
|||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const { id, ...data } = args;
|
const { id, ...data } = args;
|
||||||
const item = await updateItem(db, id, data);
|
const item = await updateItem(db, userId, id, data);
|
||||||
if (!item) return errorResult(`Item ${id} not found`);
|
if (!item) return errorResult(`Item ${id} not found`);
|
||||||
return textResult(item);
|
return textResult(item);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
@@ -158,7 +158,7 @@ export function registerItemTools(db: Db) {
|
|||||||
|
|
||||||
delete_item: async (args: { id: number }): Promise<ToolResult> => {
|
delete_item: async (args: { id: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const item = await deleteItem(db, args.id);
|
const item = await deleteItem(db, userId, args.id);
|
||||||
if (!item) return errorResult(`Item ${args.id} not found`);
|
if (!item) return errorResult(`Item ${args.id} not found`);
|
||||||
return textResult({ deleted: true, item });
|
return textResult({ deleted: true, item });
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
|
|||||||
@@ -60,11 +60,11 @@ export const setupToolDefinitions = [
|
|||||||
},
|
},
|
||||||
];
|
];
|
||||||
|
|
||||||
export function registerSetupTools(db: Db) {
|
export function registerSetupTools(db: Db, userId: number) {
|
||||||
return {
|
return {
|
||||||
list_setups: async (): Promise<ToolResult> => {
|
list_setups: async (): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const setupList = await getAllSetups(db);
|
const setupList = await getAllSetups(db, userId);
|
||||||
return textResult(setupList);
|
return textResult(setupList);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -73,7 +73,7 @@ export function registerSetupTools(db: Db) {
|
|||||||
|
|
||||||
get_setup: async (args: { id: number }): Promise<ToolResult> => {
|
get_setup: async (args: { id: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const setup = await getSetupWithItems(db, args.id);
|
const setup = await getSetupWithItems(db, userId, args.id);
|
||||||
if (!setup) return errorResult(`Setup ${args.id} not found`);
|
if (!setup) return errorResult(`Setup ${args.id} not found`);
|
||||||
return textResult(setup);
|
return textResult(setup);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
@@ -83,7 +83,7 @@ export function registerSetupTools(db: Db) {
|
|||||||
|
|
||||||
create_setup: async (args: { name: string }): Promise<ToolResult> => {
|
create_setup: async (args: { name: string }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const setup = await createSetup(db, args);
|
const setup = await createSetup(db, userId, args);
|
||||||
return textResult(setup);
|
return textResult(setup);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -98,14 +98,14 @@ export function registerSetupTools(db: Db) {
|
|||||||
try {
|
try {
|
||||||
let setup = null;
|
let setup = null;
|
||||||
if (args.name) {
|
if (args.name) {
|
||||||
setup = await updateSetup(db, args.id, { name: args.name });
|
setup = await updateSetup(db, userId, args.id, { name: args.name });
|
||||||
if (!setup) return errorResult(`Setup ${args.id} not found`);
|
if (!setup) return errorResult(`Setup ${args.id} not found`);
|
||||||
}
|
}
|
||||||
if (args.itemIds) {
|
if (args.itemIds) {
|
||||||
await syncSetupItems(db, args.id, args.itemIds);
|
await syncSetupItems(db, userId, args.id, args.itemIds);
|
||||||
}
|
}
|
||||||
// Return updated setup with items
|
// Return updated setup with items
|
||||||
const result = await getSetupWithItems(db, args.id);
|
const result = await getSetupWithItems(db, userId, args.id);
|
||||||
if (!result) return errorResult(`Setup ${args.id} not found`);
|
if (!result) return errorResult(`Setup ${args.id} not found`);
|
||||||
return textResult(result);
|
return textResult(result);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
|
|||||||
@@ -113,13 +113,17 @@ export const threadToolDefinitions = [
|
|||||||
},
|
},
|
||||||
];
|
];
|
||||||
|
|
||||||
export function registerThreadTools(db: Db) {
|
export function registerThreadTools(db: Db, userId: number) {
|
||||||
return {
|
return {
|
||||||
list_threads: async (args: {
|
list_threads: async (args: {
|
||||||
includeResolved?: boolean;
|
includeResolved?: boolean;
|
||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const threadList = await getAllThreads(db, args.includeResolved ?? false);
|
const threadList = await getAllThreads(
|
||||||
|
db,
|
||||||
|
userId,
|
||||||
|
args.includeResolved ?? false,
|
||||||
|
);
|
||||||
return textResult(threadList);
|
return textResult(threadList);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -128,7 +132,7 @@ export function registerThreadTools(db: Db) {
|
|||||||
|
|
||||||
get_thread: async (args: { id: number }): Promise<ToolResult> => {
|
get_thread: async (args: { id: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const thread = await getThreadWithCandidates(db, args.id);
|
const thread = await getThreadWithCandidates(db, userId, args.id);
|
||||||
if (!thread) return errorResult(`Thread ${args.id} not found`);
|
if (!thread) return errorResult(`Thread ${args.id} not found`);
|
||||||
return textResult(thread);
|
return textResult(thread);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
@@ -141,7 +145,7 @@ export function registerThreadTools(db: Db) {
|
|||||||
categoryId: number;
|
categoryId: number;
|
||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const thread = await createThread(db, args);
|
const thread = await createThread(db, userId, args);
|
||||||
return textResult(thread);
|
return textResult(thread);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -153,7 +157,12 @@ export function registerThreadTools(db: Db) {
|
|||||||
candidateId: number;
|
candidateId: number;
|
||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const result = await resolveThread(db, args.threadId, args.candidateId);
|
const result = await resolveThread(
|
||||||
|
db,
|
||||||
|
userId,
|
||||||
|
args.threadId,
|
||||||
|
args.candidateId,
|
||||||
|
);
|
||||||
if (!result.success) {
|
if (!result.success) {
|
||||||
return errorResult(result.error ?? "Failed to resolve thread");
|
return errorResult(result.error ?? "Failed to resolve thread");
|
||||||
}
|
}
|
||||||
@@ -177,7 +186,7 @@ export function registerThreadTools(db: Db) {
|
|||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const { threadId, ...data } = args;
|
const { threadId, ...data } = args;
|
||||||
const candidate = await createCandidate(db, threadId, data);
|
const candidate = await createCandidate(db, userId, threadId, data);
|
||||||
return textResult(candidate);
|
return textResult(candidate);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
return errorResult((err as Error).message);
|
return errorResult((err as Error).message);
|
||||||
@@ -200,7 +209,7 @@ export function registerThreadTools(db: Db) {
|
|||||||
}): Promise<ToolResult> => {
|
}): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const { id, ...data } = args;
|
const { id, ...data } = args;
|
||||||
const candidate = await updateCandidate(db, id, data);
|
const candidate = await updateCandidate(db, userId, id, data);
|
||||||
if (!candidate) return errorResult(`Candidate ${id} not found`);
|
if (!candidate) return errorResult(`Candidate ${id} not found`);
|
||||||
return textResult(candidate);
|
return textResult(candidate);
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
@@ -210,7 +219,7 @@ export function registerThreadTools(db: Db) {
|
|||||||
|
|
||||||
remove_candidate: async (args: { id: number }): Promise<ToolResult> => {
|
remove_candidate: async (args: { id: number }): Promise<ToolResult> => {
|
||||||
try {
|
try {
|
||||||
const candidate = await deleteCandidate(db, args.id);
|
const candidate = await deleteCandidate(db, userId, args.id);
|
||||||
if (!candidate) return errorResult(`Candidate ${args.id} not found`);
|
if (!candidate) return errorResult(`Candidate ${args.id} not found`);
|
||||||
return textResult({ deleted: true, candidate });
|
return textResult({ deleted: true, candidate });
|
||||||
} catch (err) {
|
} catch (err) {
|
||||||
|
|||||||
@@ -10,7 +10,7 @@ import {
|
|||||||
listApiKeys,
|
listApiKeys,
|
||||||
} from "../services/auth.service.ts";
|
} from "../services/auth.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const createKeySchema = z.object({ name: z.string().min(1) });
|
const createKeySchema = z.object({ name: z.string().min(1) });
|
||||||
|
|
||||||
@@ -33,7 +33,8 @@ app.get("/me", async (c) => {
|
|||||||
|
|
||||||
app.get("/keys", requireAuth, async (c) => {
|
app.get("/keys", requireAuth, async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const keys = await listApiKeys(db);
|
const userId = c.get("userId")!;
|
||||||
|
const keys = await listApiKeys(db, userId);
|
||||||
return c.json(keys);
|
return c.json(keys);
|
||||||
});
|
});
|
||||||
|
|
||||||
@@ -43,8 +44,9 @@ app.post(
|
|||||||
zValidator("json", createKeySchema),
|
zValidator("json", createKeySchema),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const { name } = c.req.valid("json");
|
const { name } = c.req.valid("json");
|
||||||
const result = await createApiKey(db, name);
|
const result = await createApiKey(db, userId, name);
|
||||||
|
|
||||||
return c.json(
|
return c.json(
|
||||||
{
|
{
|
||||||
@@ -60,9 +62,10 @@ app.post(
|
|||||||
|
|
||||||
app.delete("/keys/:id", requireAuth, async (c) => {
|
app.delete("/keys/:id", requireAuth, async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid key ID" }, 400);
|
if (!id) return c.json({ error: "Invalid key ID" }, 400);
|
||||||
await deleteApiKey(db, id);
|
await deleteApiKey(db, userId, id);
|
||||||
return c.json({ ok: true });
|
return c.json({ ok: true });
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
@@ -12,20 +12,22 @@ import {
|
|||||||
updateCategory,
|
updateCategory,
|
||||||
} from "../services/category.service.ts";
|
} from "../services/category.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
app.get("/", async (c) => {
|
app.get("/", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const cats = await getAllCategories(db);
|
const userId = c.get("userId")!;
|
||||||
|
const cats = await getAllCategories(db, userId);
|
||||||
return c.json(cats);
|
return c.json(cats);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.post("/", zValidator("json", createCategorySchema), async (c) => {
|
app.post("/", zValidator("json", createCategorySchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const cat = await createCategory(db, data);
|
const cat = await createCategory(db, userId, data);
|
||||||
return c.json(cat, 201);
|
return c.json(cat, 201);
|
||||||
});
|
});
|
||||||
|
|
||||||
@@ -34,10 +36,11 @@ app.put(
|
|||||||
zValidator("json", updateCategorySchema.omit({ id: true })),
|
zValidator("json", updateCategorySchema.omit({ id: true })),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid category ID" }, 400);
|
if (!id) return c.json({ error: "Invalid category ID" }, 400);
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const cat = await updateCategory(db, id, data);
|
const cat = await updateCategory(db, userId, id, data);
|
||||||
if (!cat) return c.json({ error: "Category not found" }, 404);
|
if (!cat) return c.json({ error: "Category not found" }, 404);
|
||||||
return c.json(cat);
|
return c.json(cat);
|
||||||
},
|
},
|
||||||
@@ -45,9 +48,10 @@ app.put(
|
|||||||
|
|
||||||
app.delete("/:id", async (c) => {
|
app.delete("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid category ID" }, 400);
|
if (!id) return c.json({ error: "Invalid category ID" }, 400);
|
||||||
const result = await deleteCategory(db, id);
|
const result = await deleteCategory(db, userId, id);
|
||||||
|
|
||||||
if (!result.success) {
|
if (!result.success) {
|
||||||
if (result.error === "Cannot delete the Uncategorized category") {
|
if (result.error === "Cannot delete the Uncategorized category") {
|
||||||
|
|||||||
@@ -14,13 +14,14 @@ import {
|
|||||||
updateItem,
|
updateItem,
|
||||||
} from "../services/item.service.ts";
|
} from "../services/item.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
app.get("/export", async (c) => {
|
app.get("/export", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const csv = await exportItemsCsv(db);
|
const userId = c.get("userId")!;
|
||||||
|
const csv = await exportItemsCsv(db, userId);
|
||||||
c.header("Content-Type", "text/csv");
|
c.header("Content-Type", "text/csv");
|
||||||
c.header("Content-Disposition", 'attachment; filename="gearbox-export.csv"');
|
c.header("Content-Disposition", 'attachment; filename="gearbox-export.csv"');
|
||||||
return c.body(csv);
|
return c.body(csv);
|
||||||
@@ -28,6 +29,7 @@ app.get("/export", async (c) => {
|
|||||||
|
|
||||||
app.post("/import", async (c) => {
|
app.post("/import", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const body = await c.req.parseBody();
|
const body = await c.req.parseBody();
|
||||||
// Accept either "file" (direct) or "image" (via apiUpload helper)
|
// Accept either "file" (direct) or "image" (via apiUpload helper)
|
||||||
const file = body.file ?? body.image;
|
const file = body.file ?? body.image;
|
||||||
@@ -35,29 +37,32 @@ app.post("/import", async (c) => {
|
|||||||
return c.json({ error: "No CSV file provided" }, 400);
|
return c.json({ error: "No CSV file provided" }, 400);
|
||||||
}
|
}
|
||||||
const content = await file.text();
|
const content = await file.text();
|
||||||
const result = await importItemsCsv(db, content);
|
const result = await importItemsCsv(db, userId, content);
|
||||||
return c.json(result);
|
return c.json(result);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.get("/", async (c) => {
|
app.get("/", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const items = await getAllItems(db);
|
const userId = c.get("userId")!;
|
||||||
|
const items = await getAllItems(db, userId);
|
||||||
return c.json(items);
|
return c.json(items);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.get("/:id", async (c) => {
|
app.get("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
||||||
const item = await getItemById(db, id);
|
const item = await getItemById(db, userId, id);
|
||||||
if (!item) return c.json({ error: "Item not found" }, 404);
|
if (!item) return c.json({ error: "Item not found" }, 404);
|
||||||
return c.json(item);
|
return c.json(item);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.post("/", zValidator("json", createItemSchema), async (c) => {
|
app.post("/", zValidator("json", createItemSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const item = await createItem(db, data);
|
const item = await createItem(db, userId, data);
|
||||||
return c.json(item, 201);
|
return c.json(item, 201);
|
||||||
});
|
});
|
||||||
|
|
||||||
@@ -66,10 +71,11 @@ app.put(
|
|||||||
zValidator("json", updateItemSchema.omit({ id: true })),
|
zValidator("json", updateItemSchema.omit({ id: true })),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const item = await updateItem(db, id, data);
|
const item = await updateItem(db, userId, id, data);
|
||||||
if (!item) return c.json({ error: "Item not found" }, 404);
|
if (!item) return c.json({ error: "Item not found" }, 404);
|
||||||
return c.json(item);
|
return c.json(item);
|
||||||
},
|
},
|
||||||
@@ -77,18 +83,20 @@ app.put(
|
|||||||
|
|
||||||
app.post("/:id/duplicate", async (c) => {
|
app.post("/:id/duplicate", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
||||||
const newItem = await duplicateItem(db, id);
|
const newItem = await duplicateItem(db, userId, id);
|
||||||
if (!newItem) return c.json({ error: "Item not found" }, 404);
|
if (!newItem) return c.json({ error: "Item not found" }, 404);
|
||||||
return c.json(newItem, 201);
|
return c.json(newItem, 201);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.delete("/:id", async (c) => {
|
app.delete("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
if (!id) return c.json({ error: "Invalid item ID" }, 400);
|
||||||
const deleted = await deleteItem(db, id);
|
const deleted = await deleteItem(db, userId, id);
|
||||||
if (!deleted) return c.json({ error: "Item not found" }, 404);
|
if (!deleted) return c.json({ error: "Item not found" }, 404);
|
||||||
|
|
||||||
// Clean up image file if exists
|
// Clean up image file if exists
|
||||||
|
|||||||
@@ -1,24 +1,26 @@
|
|||||||
import { eq } from "drizzle-orm";
|
import { and, eq } from "drizzle-orm";
|
||||||
import { Hono } from "hono";
|
import { Hono } from "hono";
|
||||||
import { settings } from "../../db/schema.ts";
|
import { settings } from "../../db/schema.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
app.get("/:key", async (c) => {
|
app.get("/:key", async (c) => {
|
||||||
const database = c.get("db");
|
const database = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const key = c.req.param("key");
|
const key = c.req.param("key");
|
||||||
const [row] = await database
|
const [row] = await database
|
||||||
.select()
|
.select()
|
||||||
.from(settings)
|
.from(settings)
|
||||||
.where(eq(settings.key, key));
|
.where(and(eq(settings.userId, userId), eq(settings.key, key)));
|
||||||
if (!row) return c.json({ error: "Setting not found" }, 404);
|
if (!row) return c.json({ error: "Setting not found" }, 404);
|
||||||
return c.json(row);
|
return c.json(row);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.put("/:key", async (c) => {
|
app.put("/:key", async (c) => {
|
||||||
const database = c.get("db");
|
const database = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const key = c.req.param("key");
|
const key = c.req.param("key");
|
||||||
const body = await c.req.json<{ value: string }>();
|
const body = await c.req.json<{ value: string }>();
|
||||||
|
|
||||||
@@ -28,13 +30,16 @@ app.put("/:key", async (c) => {
|
|||||||
|
|
||||||
await database
|
await database
|
||||||
.insert(settings)
|
.insert(settings)
|
||||||
.values({ key, value: body.value })
|
.values({ userId, key, value: body.value })
|
||||||
.onConflictDoUpdate({ target: settings.key, set: { value: body.value } });
|
.onConflictDoUpdate({
|
||||||
|
target: [settings.userId, settings.key],
|
||||||
|
set: { value: body.value },
|
||||||
|
});
|
||||||
|
|
||||||
const [row] = await database
|
const [row] = await database
|
||||||
.select()
|
.select()
|
||||||
.from(settings)
|
.from(settings)
|
||||||
.where(eq(settings.key, key));
|
.where(and(eq(settings.userId, userId), eq(settings.key, key)));
|
||||||
return c.json(row);
|
return c.json(row);
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
@@ -18,7 +18,7 @@ import {
|
|||||||
updateSetup,
|
updateSetup,
|
||||||
} from "../services/setup.service.ts";
|
} from "../services/setup.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
@@ -26,41 +26,46 @@ const app = new Hono<Env>();
|
|||||||
|
|
||||||
app.get("/", async (c) => {
|
app.get("/", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const setups = await getAllSetups(db);
|
const userId = c.get("userId")!;
|
||||||
|
const setups = await getAllSetups(db, userId);
|
||||||
return c.json(setups);
|
return c.json(setups);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.post("/", zValidator("json", createSetupSchema), async (c) => {
|
app.post("/", zValidator("json", createSetupSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const setup = await createSetup(db, data);
|
const setup = await createSetup(db, userId, data);
|
||||||
return c.json(setup, 201);
|
return c.json(setup, 201);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.get("/:id", async (c) => {
|
app.get("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
||||||
const setup = await getSetupWithItems(db, id);
|
const setup = await getSetupWithItems(db, userId, id);
|
||||||
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
||||||
return c.json(setup);
|
return c.json(setup);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.put("/:id", zValidator("json", updateSetupSchema), async (c) => {
|
app.put("/:id", zValidator("json", updateSetupSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const setup = await updateSetup(db, id, data);
|
const setup = await updateSetup(db, userId, id, data);
|
||||||
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
||||||
return c.json(setup);
|
return c.json(setup);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.delete("/:id", async (c) => {
|
app.delete("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
||||||
const deleted = await deleteSetup(db, id);
|
const deleted = await deleteSetup(db, userId, id);
|
||||||
if (!deleted) return c.json({ error: "Setup not found" }, 404);
|
if (!deleted) return c.json({ error: "Setup not found" }, 404);
|
||||||
return c.json({ success: true });
|
return c.json({ success: true });
|
||||||
});
|
});
|
||||||
@@ -69,14 +74,15 @@ app.delete("/:id", async (c) => {
|
|||||||
|
|
||||||
app.put("/:id/items", zValidator("json", syncSetupItemsSchema), async (c) => {
|
app.put("/:id/items", zValidator("json", syncSetupItemsSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
if (!id) return c.json({ error: "Invalid setup ID" }, 400);
|
||||||
const { itemIds } = c.req.valid("json");
|
const { itemIds } = c.req.valid("json");
|
||||||
|
|
||||||
const setup = await getSetupWithItems(db, id);
|
const setup = await getSetupWithItems(db, userId, id);
|
||||||
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
if (!setup) return c.json({ error: "Setup not found" }, 404);
|
||||||
|
|
||||||
await syncSetupItems(db, id, itemIds);
|
await syncSetupItems(db, userId, id, itemIds);
|
||||||
return c.json({ success: true });
|
return c.json({ success: true });
|
||||||
});
|
});
|
||||||
|
|
||||||
@@ -85,21 +91,23 @@ app.patch(
|
|||||||
zValidator("json", updateClassificationSchema),
|
zValidator("json", updateClassificationSchema),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const setupId = parseId(c.req.param("id"));
|
const setupId = parseId(c.req.param("id"));
|
||||||
const itemId = parseId(c.req.param("itemId"));
|
const itemId = parseId(c.req.param("itemId"));
|
||||||
if (!setupId || !itemId) return c.json({ error: "Invalid ID" }, 400);
|
if (!setupId || !itemId) return c.json({ error: "Invalid ID" }, 400);
|
||||||
const { classification } = c.req.valid("json");
|
const { classification } = c.req.valid("json");
|
||||||
await updateItemClassification(db, setupId, itemId, classification);
|
await updateItemClassification(db, userId, setupId, itemId, classification);
|
||||||
return c.json({ success: true });
|
return c.json({ success: true });
|
||||||
},
|
},
|
||||||
);
|
);
|
||||||
|
|
||||||
app.delete("/:id/items/:itemId", async (c) => {
|
app.delete("/:id/items/:itemId", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const setupId = parseId(c.req.param("id"));
|
const setupId = parseId(c.req.param("id"));
|
||||||
const itemId = parseId(c.req.param("itemId"));
|
const itemId = parseId(c.req.param("itemId"));
|
||||||
if (!setupId || !itemId) return c.json({ error: "Invalid ID" }, 400);
|
if (!setupId || !itemId) return c.json({ error: "Invalid ID" }, 400);
|
||||||
await removeSetupItem(db, setupId, itemId);
|
await removeSetupItem(db, userId, setupId, itemId);
|
||||||
return c.json({ success: true });
|
return c.json({ success: true });
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
@@ -24,7 +24,7 @@ import {
|
|||||||
updateThread,
|
updateThread,
|
||||||
} from "../services/thread.service.ts";
|
} from "../services/thread.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
@@ -32,42 +32,47 @@ const app = new Hono<Env>();
|
|||||||
|
|
||||||
app.get("/", async (c) => {
|
app.get("/", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const includeResolved = c.req.query("includeResolved") === "true";
|
const includeResolved = c.req.query("includeResolved") === "true";
|
||||||
const threads = await getAllThreads(db, includeResolved);
|
const threads = await getAllThreads(db, userId, includeResolved);
|
||||||
return c.json(threads);
|
return c.json(threads);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.post("/", zValidator("json", createThreadSchema), async (c) => {
|
app.post("/", zValidator("json", createThreadSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const thread = await createThread(db, data);
|
const thread = await createThread(db, userId, data);
|
||||||
return c.json(thread, 201);
|
return c.json(thread, 201);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.get("/:id", async (c) => {
|
app.get("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
const thread = await getThreadWithCandidates(db, id);
|
const thread = await getThreadWithCandidates(db, userId, id);
|
||||||
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
||||||
return c.json(thread);
|
return c.json(thread);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.put("/:id", zValidator("json", updateThreadSchema), async (c) => {
|
app.put("/:id", zValidator("json", updateThreadSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const thread = await updateThread(db, id, data);
|
const thread = await updateThread(db, userId, id, data);
|
||||||
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
||||||
return c.json(thread);
|
return c.json(thread);
|
||||||
});
|
});
|
||||||
|
|
||||||
app.delete("/:id", async (c) => {
|
app.delete("/:id", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const id = parseId(c.req.param("id"));
|
const id = parseId(c.req.param("id"));
|
||||||
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!id) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
const deleted = await deleteThread(db, id);
|
const deleted = await deleteThread(db, userId, id);
|
||||||
if (!deleted) return c.json({ error: "Thread not found" }, 404);
|
if (!deleted) return c.json({ error: "Thread not found" }, 404);
|
||||||
|
|
||||||
// Clean up candidate image files
|
// Clean up candidate image files
|
||||||
@@ -89,15 +94,16 @@ app.post(
|
|||||||
zValidator("json", createCandidateSchema),
|
zValidator("json", createCandidateSchema),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const threadId = parseId(c.req.param("id"));
|
const threadId = parseId(c.req.param("id"));
|
||||||
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
|
|
||||||
// Verify thread exists
|
// Verify thread exists
|
||||||
const thread = await getThreadWithCandidates(db, threadId);
|
const thread = await getThreadWithCandidates(db, userId, threadId);
|
||||||
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
if (!thread) return c.json({ error: "Thread not found" }, 404);
|
||||||
|
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const candidate = await createCandidate(db, threadId, data);
|
const candidate = await createCandidate(db, userId, threadId, data);
|
||||||
return c.json(candidate, 201);
|
return c.json(candidate, 201);
|
||||||
},
|
},
|
||||||
);
|
);
|
||||||
@@ -107,10 +113,11 @@ app.put(
|
|||||||
zValidator("json", updateCandidateSchema),
|
zValidator("json", updateCandidateSchema),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const candidateId = parseId(c.req.param("candidateId"));
|
const candidateId = parseId(c.req.param("candidateId"));
|
||||||
if (!candidateId) return c.json({ error: "Invalid candidate ID" }, 400);
|
if (!candidateId) return c.json({ error: "Invalid candidate ID" }, 400);
|
||||||
const data = c.req.valid("json");
|
const data = c.req.valid("json");
|
||||||
const candidate = await updateCandidate(db, candidateId, data);
|
const candidate = await updateCandidate(db, userId, candidateId, data);
|
||||||
if (!candidate) return c.json({ error: "Candidate not found" }, 404);
|
if (!candidate) return c.json({ error: "Candidate not found" }, 404);
|
||||||
return c.json(candidate);
|
return c.json(candidate);
|
||||||
},
|
},
|
||||||
@@ -118,9 +125,10 @@ app.put(
|
|||||||
|
|
||||||
app.delete("/:threadId/candidates/:candidateId", async (c) => {
|
app.delete("/:threadId/candidates/:candidateId", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const candidateId = parseId(c.req.param("candidateId"));
|
const candidateId = parseId(c.req.param("candidateId"));
|
||||||
if (!candidateId) return c.json({ error: "Invalid candidate ID" }, 400);
|
if (!candidateId) return c.json({ error: "Invalid candidate ID" }, 400);
|
||||||
const deleted = await deleteCandidate(db, candidateId);
|
const deleted = await deleteCandidate(db, userId, candidateId);
|
||||||
if (!deleted) return c.json({ error: "Candidate not found" }, 404);
|
if (!deleted) return c.json({ error: "Candidate not found" }, 404);
|
||||||
|
|
||||||
// Clean up image file if exists
|
// Clean up image file if exists
|
||||||
@@ -142,10 +150,11 @@ app.patch(
|
|||||||
zValidator("json", reorderCandidatesSchema),
|
zValidator("json", reorderCandidatesSchema),
|
||||||
async (c) => {
|
async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const threadId = parseId(c.req.param("id"));
|
const threadId = parseId(c.req.param("id"));
|
||||||
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
const { orderedIds } = c.req.valid("json");
|
const { orderedIds } = c.req.valid("json");
|
||||||
const result = await reorderCandidates(db, threadId, orderedIds);
|
const result = await reorderCandidates(db, userId, threadId, orderedIds);
|
||||||
if (!result.success) return c.json({ error: result.error }, 400);
|
if (!result.success) return c.json({ error: result.error }, 400);
|
||||||
return c.json({ success: true });
|
return c.json({ success: true });
|
||||||
},
|
},
|
||||||
@@ -155,11 +164,12 @@ app.patch(
|
|||||||
|
|
||||||
app.post("/:id/resolve", zValidator("json", resolveThreadSchema), async (c) => {
|
app.post("/:id/resolve", zValidator("json", resolveThreadSchema), async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
|
const userId = c.get("userId")!;
|
||||||
const threadId = parseId(c.req.param("id"));
|
const threadId = parseId(c.req.param("id"));
|
||||||
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
if (!threadId) return c.json({ error: "Invalid thread ID" }, 400);
|
||||||
const { candidateId } = c.req.valid("json");
|
const { candidateId } = c.req.valid("json");
|
||||||
|
|
||||||
const result = await resolveThread(db, threadId, candidateId);
|
const result = await resolveThread(db, userId, threadId, candidateId);
|
||||||
if (!result.success) {
|
if (!result.success) {
|
||||||
return c.json({ error: result.error }, 400);
|
return c.json({ error: result.error }, 400);
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -4,14 +4,15 @@ import {
|
|||||||
getGlobalTotals,
|
getGlobalTotals,
|
||||||
} from "../services/totals.service.ts";
|
} from "../services/totals.service.ts";
|
||||||
|
|
||||||
type Env = { Variables: { db?: any } };
|
type Env = { Variables: { db?: any; userId?: number } };
|
||||||
|
|
||||||
const app = new Hono<Env>();
|
const app = new Hono<Env>();
|
||||||
|
|
||||||
app.get("/", async (c) => {
|
app.get("/", async (c) => {
|
||||||
const db = c.get("db");
|
const db = c.get("db");
|
||||||
const categoryTotals = await getCategoryTotals(db);
|
const userId = c.get("userId")!;
|
||||||
const globalTotals = await getGlobalTotals(db);
|
const categoryTotals = await getCategoryTotals(db, userId);
|
||||||
|
const globalTotals = await getGlobalTotals(db, userId);
|
||||||
return c.json({ categories: categoryTotals, global: globalTotals });
|
return c.json({ categories: categoryTotals, global: globalTotals });
|
||||||
});
|
});
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user