mirror of
https://github.com/vitodeploy/vito.git
synced 2025-04-21 02:41:36 +00:00
115 lines
4.8 KiB
PHP
115 lines
4.8 KiB
PHP
<?php
|
|
|
|
namespace App\Http\Controllers\API;
|
|
|
|
use App\Actions\Database\CreateDatabaseUser;
|
|
use App\Actions\Database\LinkUser;
|
|
use App\Http\Controllers\Controller;
|
|
use App\Http\Resources\DatabaseUserResource;
|
|
use App\Models\DatabaseUser;
|
|
use App\Models\Project;
|
|
use App\Models\Server;
|
|
use Illuminate\Http\Request;
|
|
use Illuminate\Http\Resources\Json\ResourceCollection;
|
|
use Knuckles\Scribe\Attributes\BodyParam;
|
|
use Knuckles\Scribe\Attributes\Endpoint;
|
|
use Knuckles\Scribe\Attributes\Group;
|
|
use Knuckles\Scribe\Attributes\Response;
|
|
use Knuckles\Scribe\Attributes\ResponseFromApiResource;
|
|
use Spatie\RouteAttributes\Attributes\Delete;
|
|
use Spatie\RouteAttributes\Attributes\Get;
|
|
use Spatie\RouteAttributes\Attributes\Middleware;
|
|
use Spatie\RouteAttributes\Attributes\Post;
|
|
use Spatie\RouteAttributes\Attributes\Prefix;
|
|
|
|
#[Prefix('api/projects/{project}/servers/{server}/database-users')]
|
|
#[Middleware(['auth:sanctum', 'can-see-project'])]
|
|
#[Group(name: 'database-users')]
|
|
class DatabaseUserController extends Controller
|
|
{
|
|
#[Get('/', name: 'api.projects.servers.database-users', middleware: 'ability:read')]
|
|
#[Endpoint(title: 'list', description: 'Get all database users.')]
|
|
#[ResponseFromApiResource(DatabaseUserResource::class, DatabaseUser::class, collection: true, paginate: 25)]
|
|
public function index(Project $project, Server $server): ResourceCollection
|
|
{
|
|
$this->authorize('viewAny', [DatabaseUser::class, $server]);
|
|
|
|
$this->validateRoute($project, $server);
|
|
|
|
return DatabaseUserResource::collection($server->databaseUsers()->simplePaginate(25));
|
|
}
|
|
|
|
#[Post('/', name: 'api.projects.servers.database-users.create', middleware: 'ability:write')]
|
|
#[Endpoint(title: 'create', description: 'Create a new database user.')]
|
|
#[BodyParam(name: 'username', required: true)]
|
|
#[BodyParam(name: 'password', required: true)]
|
|
#[BodyParam(name: 'host', description: 'Host, if it is a remote user.', example: '%')]
|
|
#[ResponseFromApiResource(DatabaseUserResource::class, DatabaseUser::class)]
|
|
public function create(Request $request, Project $project, Server $server): DatabaseUserResource
|
|
{
|
|
$this->authorize('create', [DatabaseUser::class, $server]);
|
|
|
|
$this->validateRoute($project, $server);
|
|
|
|
$this->validate($request, CreateDatabaseUser::rules($server, $request->input()));
|
|
|
|
$databaseUser = app(CreateDatabaseUser::class)->create($server, $request->all());
|
|
|
|
return new DatabaseUserResource($databaseUser);
|
|
}
|
|
|
|
#[Get('{databaseUser}', name: 'api.projects.servers.database-users.show', middleware: 'ability:read')]
|
|
#[Endpoint(title: 'show', description: 'Get a database user by ID.')]
|
|
#[ResponseFromApiResource(DatabaseUserResource::class, DatabaseUser::class)]
|
|
public function show(Project $project, Server $server, DatabaseUser $databaseUser): DatabaseUserResource
|
|
{
|
|
$this->authorize('view', [$databaseUser, $server]);
|
|
|
|
$this->validateRoute($project, $server, $databaseUser);
|
|
|
|
return new DatabaseUserResource($databaseUser);
|
|
}
|
|
|
|
#[Post('{databaseUser}/link', name: 'api.projects.servers.database-users.link', middleware: 'ability:write')]
|
|
#[Endpoint(title: 'link', description: 'Link to databases')]
|
|
#[BodyParam(name: 'databases', description: 'Array of database names to link to the user.', required: true)]
|
|
#[ResponseFromApiResource(DatabaseUserResource::class, DatabaseUser::class)]
|
|
public function link(Request $request, Project $project, Server $server, DatabaseUser $databaseUser): DatabaseUserResource
|
|
{
|
|
$this->authorize('update', [$databaseUser, $server]);
|
|
|
|
$this->validateRoute($project, $server, $databaseUser);
|
|
|
|
$this->validate($request, LinkUser::rules($server, $request->all()));
|
|
|
|
$databaseUser = app(LinkUser::class)->link($databaseUser, $request->all());
|
|
|
|
return new DatabaseUserResource($databaseUser);
|
|
}
|
|
|
|
#[Delete('{databaseUser}', name: 'api.projects.servers.database-users.delete', middleware: 'ability:write')]
|
|
#[Endpoint(title: 'delete', description: 'Delete database user.')]
|
|
#[Response(status: 204)]
|
|
public function delete(Project $project, Server $server, DatabaseUser $databaseUser): \Illuminate\Http\Response
|
|
{
|
|
$this->authorize('delete', [$databaseUser, $server]);
|
|
|
|
$this->validateRoute($project, $server, $databaseUser);
|
|
|
|
$databaseUser->delete();
|
|
|
|
return response()->noContent();
|
|
}
|
|
|
|
private function validateRoute(Project $project, Server $server, ?DatabaseUser $databaseUser = null): void
|
|
{
|
|
if ($project->id !== $server->project_id) {
|
|
abort(404, 'Server not found in project');
|
|
}
|
|
|
|
if ($databaseUser && $databaseUser->server_id !== $server->id) {
|
|
abort(404, 'Database user not found in server');
|
|
}
|
|
}
|
|
}
|