introduces Sheet models and auth flow

src/endpoints/sheet.py

@@ -2,23 +2,80 @@
 from fastapi import APIRouter, Depends, HTTPException
 from fastapi.responses import JSONResponse
 
-from loguru import logger
+from sqlalchemy import exc
+from sqlalchemy.orm import Session
 
-from core.config import ALLOW_ANY_EMAIL
-from web.security import get_token_or_user_auth
-from db import schemas
+from web.security import token_api_key_auth, get_active_user_auth
+from db import schemas, crud
+from db.database import get_db_dependency
 from worker.main import create_sheet_task
 
 sheet_router = APIRouter(prefix="/sheet", tags=["Google Spreadsheet operations"])
 
 
-@sheet_router.post("/archive", status_code=201, summary="Submit a Google Sheet archive request, starts a sheet archiving task.", response_description="task_id for the archiving task.")
-def archive_sheet(sheet:schemas.SubmitSheet, email = Depends(get_token_or_user_auth)) -> schemas.Task:
-    logger.info(f"SHEET TASK for {sheet=}")
-    if email == ALLOW_ANY_EMAIL:
-        email = sheet.author_id or "api-endpoint"
-    sheet.author_id = email
-    if not sheet.sheet_name and not sheet.sheet_id:
-        raise HTTPException(status_code=422, detail=f"sheet name or id is required")
+@sheet_router.post("/create", status_code=201, summary="Store a new Google Sheet for regular archiving.")
+def create_sheet(
+    sheet: schemas.SheetAdd,
+    email=Depends(get_active_user_auth),
+    db: Session = Depends(get_db_dependency),
+) -> schemas.SheetResponse:
+    user_groups_names = crud.get_user_groups(db, email)
+
+    if sheet.group_id not in user_groups_names:
+        raise HTTPException(status_code=403, detail="User does not have access to this group.")
+
+    if not crud.has_quota_sheet(db, email, user_groups_names):
+        raise HTTPException(status_code=429, detail="User has reached their sheet quota.")
+
+    try:
+        return crud.create_sheet(db, sheet.id, sheet.name, email, sheet.group_id, sheet.frequency)
+    except exc.IntegrityError as e:
+        raise HTTPException(status_code=400, detail="Sheet with this ID already exists.") from e
+
+
+@sheet_router.get("/mine", status_code=200, summary="Get the authenticated user's Google Sheets.")
+def get_user_sheets(
+    email=Depends(get_active_user_auth),
+    db: Session = Depends(get_db_dependency)
+) -> list[schemas.SheetResponse]:
+    return crud.get_user_sheets(db, email)
+
+
+@sheet_router.delete("/{id}", summary="Delete a Google Sheet by ID.")
+def delete_sheet(
+    id: str,
+    email=Depends(get_active_user_auth),
+    db: Session = Depends(get_db_dependency),
+) -> schemas.TaskDelete:
+    return JSONResponse({
+        "id": id,
+        "deleted": crud.delete_sheet(db, id, email)
+    })
+
+
+@sheet_router.post("/{id}/archive", status_code=201, summary="Trigger an archiving task for a GSheet you own.", response_description="task_id for the archiving task.")
+def archive_user_sheet(
+    id: str,
+    email=Depends(get_active_user_auth),
+    db: Session = Depends(get_db_dependency),
+) -> schemas.Task:
+
+    sheet = crud.get_user_sheet(db, email, sheet_id=id)
+    if not sheet:
+        raise HTTPException(status_code=403, detail="No access to this sheet.")
+
+    task = create_sheet_task.delay(schemas.SubmitSheet(sheet_id=id, author_id=email, group=sheet.group_id).model_dump_json())
+
+    return JSONResponse({"id": task.id}, status_code=201)
+
+
+@sheet_router.post("/archive", status_code=201, summary="Trigger an archiving task for any GSheet with an API token.", response_description="task_id for the archiving task.")
+def archive_sheet(
+    sheet: schemas.SubmitSheet, #TODO: replace with simpler model
+    auth=Depends(token_api_key_auth)
+) -> schemas.Task:
+    sheet.author_id = sheet.author_id or "api-endpoint"
+    if not sheet.sheet_id:
+        raise HTTPException(status_code=422, detail=f"sheet id is required")
     task = create_sheet_task.delay(sheet.model_dump_json())
-    return JSONResponse({"id": task.id}, status_code=201)
+    return JSONResponse({"id": task.id}, status_code=201)