add: littleweb api + scopes

2025-07-07 16:32:18 -04:00 · 2025-07-07 16:32:18 -04:00 · 3fc0872867
commit 3fc0872867
parent c4de17058b
9 changed files with 598 additions and 11 deletions
--- a/crates/app/src/langs/en-US.toml
+++ b/crates/app/src/langs/en-US.toml
@ -267,3 +267,6 @@ version = "1.0.0"
 "journals:action.publish" = "Publish"
 "journals:action.unpublish" = "Unpublish"
 "journals:action.view" = "View"
+
+"littleweb:label.create_new" = "Create new site"
+"littleweb:label.my_services" = "My services"
--- a/crates/app/src/public/html/littleweb/services.lisp
+++ b/crates/app/src/public/html/littleweb/services.lisp
@ -0,0 +1,92 @@
+(text "{% extends \"root.html\" %} {% block head %}")
+(title
+    (text "My stacks - {{ config.name }}"))
+
+(text "{% endblock %} {% block body %} {{ macros::nav() }}")
+(main
+    ("class" "flex flex-col gap-2")
+    (text "{{ macros::timelines_nav(selected=\"littleweb\") }} {% if user -%}")
+    (div
+        ("class" "card-nest")
+        (div
+            ("class" "card small")
+            (b
+                (str (text "littleweb:label.create_new"))))
+        (form
+            ("class" "card flex flex-col gap-2")
+            ("onsubmit" "create_service_from_form(event)")
+            (div
+                ("class" "flex flex-col gap-1")
+                (label
+                    ("for" "name")
+                    (text "{{ text \"communities:label.name\" }}"))
+                (input
+                    ("type" "text")
+                    ("name" "name")
+                    ("id" "name")
+                    ("placeholder" "name")
+                    ("required" "")
+                    ("minlength" "2")
+                    ("maxlength" "32")))
+            (button
+                ("class" "primary")
+                (text "{{ text \"communities:action.create\" }}"))))
+    (text "{%- endif %}")
+    (div
+        ("class" "card-nest w-full")
+        (div
+            ("class" "card small flex items-center justify-between gap-2")
+            (div
+                ("class" "flex items-center gap-2")
+                (icon (text "panel-top"))
+                (span
+                    (str (text "littleweb:label.my_services")))))
+        (div
+            ("class" "card flex flex-col gap-2")
+            (text "{% for item in list %}")
+            (a
+                ("href" "/services/{{ item.id }}")
+                ("class" "card secondary flex flex-col gap-2")
+                (div
+                    ("class" "flex items-center gap-2")
+                    (icon (text "globe"))
+                    (b
+                        (text "{{ item.name }}")))
+                (span
+                    (text "Created ")
+                    (span
+                        ("class" "date")
+                        (text "{{ item.created }}"))
+                    (text "; {{ item.files|length }} files")))
+            (text "{% endfor %}"))))
+
+(script
+    (text "async function create_service_from_form(e) {
+        e.preventDefault();
+        await trigger(\"atto::debounce\", [\"services::create\"]);
+
+        fetch(\"/api/v1/services\", {
+            method: \"POST\",
+            headers: {
+                \"Content-Type\": \"application/json\",
+            },
+            body: JSON.stringify({
+                name: e.target.name.value,
+            }),
+        })
+            .then((res) => res.json())
+            .then((res) => {
+                trigger(\"atto::toast\", [
+                    res.ok ? \"success\" : \"error\",
+                    res.message,
+                ]);
+
+                if (res.ok) {
+                    setTimeout(() => {
+                        window.location.href = `/services/${res.payload}`;
+                    }, 100);
+                }
+            });
+    }"))
+
+(text "{% endblock %}")
--- a/crates/app/src/routes/api/v1/domains.rs
+++ b/crates/app/src/routes/api/v1/domains.rs
@ -0,0 +1,164 @@
+use crate::{
+    get_user_from_token,
+    routes::api::v1::{CreateDomain, UpdateDomainData},
+    State,
+};
+use axum::{
+    extract::{Path, Query},
+    response::IntoResponse,
+    http::StatusCode,
+    Extension, Json,
+};
+use axum_extra::extract::CookieJar;
+use tetratto_core::model::{littleweb::Domain, oauth, ApiReturn, Error};
+use serde::Deserialize;
+
+pub async fn get_request(
+    Path(id): Path<usize>,
+    Extension(data): Extension<State>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    match data.get_domain_by_id(id).await {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some(x),
+        }),
+        Err(e) => return Json(e.into()),
+    }
+}
+
+pub async fn list_request(jar: CookieJar, Extension(data): Extension<State>) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadDomains) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.get_domains_by_user(user.id).await {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some(x),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn create_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Json(req): Json<CreateDomain>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserCreateDomains) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data
+        .create_domain(Domain::new(req.name, req.tld, user.id))
+        .await
+    {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Domain created".to_string(),
+            payload: x.id.to_string(),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn update_data_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<UpdateDomainData>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageDomains) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.update_domain_data(id, &user, req.data).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Domain updated".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn delete_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageDomains) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.delete_domain(id, &user).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Domain deleted".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+#[derive(Deserialize)]
+pub struct GetFileQuery {
+    pub addr: String,
+}
+
+pub async fn get_file_request(
+    Extension(data): Extension<State>,
+    Query(props): Query<GetFileQuery>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let (subdomain, domain, tld, path) = Domain::from_str(&props.addr);
+
+    // resolve domain
+    let domain = match data.get_domain_by_name_tld(&domain, &tld).await {
+        Ok(x) => x,
+        Err(e) => {
+            return Err((StatusCode::BAD_REQUEST, e.to_string()));
+        }
+    };
+
+    // resolve service
+    let service = match domain.service(&subdomain) {
+        Some(id) => match data.get_service_by_id(id).await {
+            Ok(x) => x,
+            Err(e) => {
+                return Err((StatusCode::BAD_REQUEST, e.to_string()));
+            }
+        },
+        None => {
+            return Err((
+                StatusCode::NOT_FOUND,
+                Error::GeneralNotFound("service".to_string()).to_string(),
+            ));
+        }
+    };
+
+    // resolve file
+    match service.file(&path) {
+        Some(f) => Ok((
+            [("Content-Type".to_string(), f.mime.to_string())],
+            f.content,
+        )),
+        None => {
+            return Err((
+                StatusCode::NOT_FOUND,
+                Error::GeneralNotFound("file".to_string()).to_string(),
+            ));
+        }
+    }
+}
--- a/crates/app/src/routes/api/v1/mod.rs
+++ b/crates/app/src/routes/api/v1/mod.rs
@ -2,6 +2,7 @@ pub mod apps;
 pub mod auth;
 pub mod channels;
 pub mod communities;
+pub mod domains;
 pub mod journals;
 pub mod layouts;
 pub mod notes;
@ -9,6 +10,7 @@ pub mod notifications;
 pub mod reactions;
 pub mod reports;
 pub mod requests;
+pub mod services;
 pub mod stacks;
 pub mod uploads;
 pub mod util;
@ -28,6 +30,7 @@ use tetratto_core::model::{
    communities_permissions::CommunityPermission,
    journals::JournalPrivacyPermission,
    layouts::{CustomizablePage, LayoutPage, LayoutPrivacy},
+    littleweb::{DomainData, DomainTld, ServiceFsEntry},
    oauth::AppScope,
    permissions::{FinePermission, SecondaryPermission},
    reactions::AssetType,
@ -633,10 +636,22 @@ pub fn routes() -> Router {
            post(layouts::update_privacy_request),
        )
        .route("/layouts/{id}/pages", post(layouts::update_pages_request))
+        // services
+        .route("/services", get(services::list_request))
+        .route("/services", post(services::create_request))
+        .route("/services/{id}", get(services::get_request))
+        .route("/services/{id}", delete(services::delete_request))
+        .route("/services/{id}/files", post(services::update_files_request))
+        // domains
+        .route("/domains", get(domains::list_request))
+        .route("/domains", post(domains::create_request))
+        .route("/domains/{id}", get(domains::get_request))
+        .route("/domains/{id}", delete(domains::delete_request))
+        .route("/domains/{id}/data", post(domains::update_data_request))
 }

 pub fn lw_routes() -> Router {
-    Router::new()
+    Router::new().route("/file", get(domains::get_file_request))
 }

 #[derive(Deserialize)]
@ -1055,3 +1070,24 @@ pub struct UpdateLayoutPrivacy {
 pub struct UpdateLayoutPages {
    pub pages: Vec<LayoutPage>,
 }
+
+#[derive(Deserialize)]
+pub struct CreateService {
+    pub name: String,
+}
+
+#[derive(Deserialize)]
+pub struct UpdateServiceFiles {
+    pub files: Vec<ServiceFsEntry>,
+}
+
+#[derive(Deserialize)]
+pub struct CreateDomain {
+    pub name: String,
+    pub tld: DomainTld,
+}
+
+#[derive(Deserialize)]
+pub struct UpdateDomainData {
+    pub data: Vec<(String, DomainData)>,
+}
--- a/crates/app/src/routes/api/v1/services.rs
+++ b/crates/app/src/routes/api/v1/services.rs
@ -0,0 +1,104 @@
+use crate::{
+    get_user_from_token,
+    routes::api::v1::{UpdateServiceFiles, CreateService},
+    State,
+};
+use axum::{extract::Path, response::IntoResponse, Extension, Json};
+use axum_extra::extract::CookieJar;
+use tetratto_core::model::{littleweb::Service, oauth, ApiReturn, Error};
+
+pub async fn get_request(
+    Path(id): Path<usize>,
+    Extension(data): Extension<State>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    match data.get_service_by_id(id).await {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some(x),
+        }),
+        Err(e) => return Json(e.into()),
+    }
+}
+
+pub async fn list_request(jar: CookieJar, Extension(data): Extension<State>) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserReadServices) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.get_services_by_user(user.id).await {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Success".to_string(),
+            payload: Some(x),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn create_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Json(req): Json<CreateService>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserCreateServices) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.create_service(Service::new(req.name, user.id)).await {
+        Ok(x) => Json(ApiReturn {
+            ok: true,
+            message: "Service created".to_string(),
+            payload: x.id.to_string(),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn update_files_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+    Json(req): Json<UpdateServiceFiles>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageServices) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.update_service_files(id, &user, req.files).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Service updated".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}
+
+pub async fn delete_request(
+    jar: CookieJar,
+    Extension(data): Extension<State>,
+    Path(id): Path<usize>,
+) -> impl IntoResponse {
+    let data = &(data.read().await).0;
+    let user = match get_user_from_token!(jar, data, oauth::AppScope::UserManageServices) {
+        Some(ua) => ua,
+        None => return Json(Error::NotAllowed.into()),
+    };
+
+    match data.delete_service(id, &user).await {
+        Ok(_) => Json(ApiReturn {
+            ok: true,
+            message: "Service deleted".to_string(),
+            payload: (),
+        }),
+        Err(e) => Json(e.into()),
+    }
+}