d25d482dc2
Publish CLI Package / publish-npm (push) Waiting to run
Publish Python SDK / publish-pypi (push) Waiting to run
Publish TypeScript SDK / publish-npm (push) Waiting to run
CI / Migrate Dev DB (push) Has been skipped
CI / Detect Version (push) Has been cancelled
CI / Migrate DB (push) Has been cancelled
CI / Build Dev ECR (./docker/app.Dockerfile, ECR_APP) (push) Has been cancelled
CI / Build Dev ECR (./docker/db.Dockerfile, ECR_MIGRATIONS) (push) Has been cancelled
CI / Build Dev ECR (./docker/pii.Dockerfile, ECR_PII) (push) Has been cancelled
CI / Build Dev ECR (./docker/realtime.Dockerfile, ECR_REALTIME) (push) Has been cancelled
CI / Deploy Trigger.dev (Dev) (push) Has been cancelled
CI / Build AMD64 (./docker/app.Dockerfile, ECR_APP, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build AMD64 (./docker/db.Dockerfile, ECR_MIGRATIONS, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build AMD64 (./docker/pii.Dockerfile, ECR_PII, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build AMD64 (./docker/realtime.Dockerfile, ECR_REALTIME, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/app.Dockerfile, ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/db.Dockerfile, ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/pii.Dockerfile, ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Build ARM64 (GHCR Only) (./docker/realtime.Dockerfile, ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/migrations) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/pii) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/realtime) (push) Has been cancelled
CI / Create GHCR Manifests (ghcr.io/simstudioai/simstudio) (push) Has been cancelled
CI / Check Docs Changes (push) Has been cancelled
CI / Process Docs (push) Has been cancelled
CI / Create GitHub Release (push) Has been cancelled
CI / Test and Build (push) Has been cancelled
160 lines
5.1 KiB
TypeScript
160 lines
5.1 KiB
TypeScript
import { AuditAction, AuditResourceType, recordAudit } from '@sim/audit'
|
|
import { createLogger } from '@sim/logger'
|
|
import { type NextRequest, NextResponse } from 'next/server'
|
|
import { v1DeleteTableContract, v1GetTableContract } from '@/lib/api/contracts/v1/tables'
|
|
import { parseRequest } from '@/lib/api/server'
|
|
import { generateRequestId } from '@/lib/core/utils/request'
|
|
import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
|
|
import { deleteTable, type TableSchema } from '@/lib/table'
|
|
import { accessError, checkAccess, normalizeColumn } from '@/app/api/table/utils'
|
|
import {
|
|
checkRateLimit,
|
|
checkWorkspaceScope,
|
|
createRateLimitResponse,
|
|
} from '@/app/api/v1/middleware'
|
|
|
|
const logger = createLogger('V1TableDetailAPI')
|
|
|
|
export const dynamic = 'force-dynamic'
|
|
export const revalidate = 0
|
|
|
|
interface TableRouteParams {
|
|
params: Promise<{ tableId: string }>
|
|
}
|
|
|
|
/** GET /api/v1/tables/[tableId] — Get table details. */
|
|
export const GET = withRouteHandler(async (request: NextRequest, context: TableRouteParams) => {
|
|
const requestId = generateRequestId()
|
|
|
|
try {
|
|
const rateLimit = await checkRateLimit(request, 'table-detail')
|
|
if (!rateLimit.allowed) {
|
|
return createRateLimitResponse(rateLimit)
|
|
}
|
|
|
|
const userId = rateLimit.userId!
|
|
const parsed = await parseRequest(v1GetTableContract, request, context, {
|
|
validationErrorResponse: (error) => {
|
|
const hasInvalidTableId = error.issues.some((issue) => issue.path.includes('tableId'))
|
|
return NextResponse.json(
|
|
{
|
|
error: hasInvalidTableId
|
|
? 'Invalid table ID'
|
|
: 'workspaceId query parameter is required',
|
|
},
|
|
{ status: 400 }
|
|
)
|
|
},
|
|
})
|
|
if (!parsed.success) return parsed.response
|
|
|
|
const { tableId } = parsed.data.params
|
|
const { workspaceId } = parsed.data.query
|
|
|
|
const scopeError = await checkWorkspaceScope(rateLimit, workspaceId)
|
|
if (scopeError) return scopeError
|
|
|
|
const result = await checkAccess(tableId, userId, 'read')
|
|
if (!result.ok) return accessError(result, requestId, tableId)
|
|
|
|
const { table } = result
|
|
|
|
if (table.workspaceId !== workspaceId) {
|
|
return NextResponse.json({ error: 'Invalid workspace ID' }, { status: 400 })
|
|
}
|
|
|
|
const schemaData = table.schema as TableSchema
|
|
|
|
return NextResponse.json({
|
|
success: true,
|
|
data: {
|
|
table: {
|
|
id: table.id,
|
|
name: table.name,
|
|
description: table.description,
|
|
schema: {
|
|
columns: schemaData.columns.map(normalizeColumn),
|
|
},
|
|
rowCount: table.rowCount,
|
|
maxRows: table.maxRows,
|
|
createdAt:
|
|
table.createdAt instanceof Date
|
|
? table.createdAt.toISOString()
|
|
: String(table.createdAt),
|
|
updatedAt:
|
|
table.updatedAt instanceof Date
|
|
? table.updatedAt.toISOString()
|
|
: String(table.updatedAt),
|
|
},
|
|
},
|
|
})
|
|
} catch (error) {
|
|
logger.error(`[${requestId}] Error getting table:`, error)
|
|
return NextResponse.json({ error: 'Failed to get table' }, { status: 500 })
|
|
}
|
|
})
|
|
|
|
/** DELETE /api/v1/tables/[tableId] — Archive a table. */
|
|
export const DELETE = withRouteHandler(async (request: NextRequest, context: TableRouteParams) => {
|
|
const requestId = generateRequestId()
|
|
|
|
try {
|
|
const rateLimit = await checkRateLimit(request, 'table-detail')
|
|
if (!rateLimit.allowed) {
|
|
return createRateLimitResponse(rateLimit)
|
|
}
|
|
|
|
const userId = rateLimit.userId!
|
|
const parsed = await parseRequest(v1DeleteTableContract, request, context, {
|
|
validationErrorResponse: (error) => {
|
|
const hasInvalidTableId = error.issues.some((issue) => issue.path.includes('tableId'))
|
|
return NextResponse.json(
|
|
{
|
|
error: hasInvalidTableId
|
|
? 'Invalid table ID'
|
|
: 'workspaceId query parameter is required',
|
|
},
|
|
{ status: 400 }
|
|
)
|
|
},
|
|
})
|
|
if (!parsed.success) return parsed.response
|
|
|
|
const { tableId } = parsed.data.params
|
|
const { workspaceId } = parsed.data.query
|
|
|
|
const scopeError = await checkWorkspaceScope(rateLimit, workspaceId)
|
|
if (scopeError) return scopeError
|
|
|
|
const result = await checkAccess(tableId, userId, 'write')
|
|
if (!result.ok) return accessError(result, requestId, tableId)
|
|
|
|
if (result.table.workspaceId !== workspaceId) {
|
|
return NextResponse.json({ error: 'Invalid workspace ID' }, { status: 400 })
|
|
}
|
|
|
|
await deleteTable(tableId, requestId)
|
|
|
|
recordAudit({
|
|
workspaceId,
|
|
actorId: userId,
|
|
action: AuditAction.TABLE_DELETED,
|
|
resourceType: AuditResourceType.TABLE,
|
|
resourceId: tableId,
|
|
resourceName: result.table.name,
|
|
description: `Archived table "${result.table.name}"`,
|
|
request,
|
|
})
|
|
|
|
return NextResponse.json({
|
|
success: true,
|
|
data: {
|
|
message: 'Table archived successfully',
|
|
},
|
|
})
|
|
} catch (error) {
|
|
logger.error(`[${requestId}] Error deleting table:`, error)
|
|
return NextResponse.json({ error: 'Failed to delete table' }, { status: 500 })
|
|
}
|
|
})
|