phonograph/interim-server/src/routes/relations_single/settings_handler.rs

use askama::Template;
use axum::{
    debug_handler,
    extract::{Path, State},
    response::{Html, IntoResponse},
};
use interim_models::{
    workspace::Workspace,
    workspace_user_perm::{self, WorkspaceUserPerm},
};
use interim_pgtypes::pg_class::PgClass;
use serde::Deserialize;
use sqlx::postgres::types::Oid;
use uuid::Uuid;

use crate::{
    app::{App, AppDbConn},
    errors::{AppError, forbidden},
    navigator::Navigator,
    settings::Settings,
    user::CurrentUser,
    workspace_nav::{NavLocation, RelLocation, WorkspaceNav},
    workspace_pooler::{RoleAssignment, WorkspacePooler},
};

#[derive(Debug, Deserialize)]
pub(super) struct PathParams {
    rel_oid: u32,
    workspace_id: Uuid,
}

/// HTTP GET handler for table settings, including renaming, access control,
/// and deletion.
#[debug_handler(state = App)]
pub(super) async fn get(
    State(settings): State<Settings>,
    CurrentUser(user): CurrentUser,
    AppDbConn(mut app_db): AppDbConn,
    Path(PathParams {
        rel_oid,
        workspace_id,
    }): Path<PathParams>,
    navigator: Navigator,
    State(mut pooler): State<WorkspacePooler>,
) -> Result<impl IntoResponse, AppError> {
    // Check workspace authorization.
    let workspace_perms = WorkspaceUserPerm::belonging_to_user(user.id)
        .fetch_all(&mut app_db)
        .await?;
    if workspace_perms.iter().all(|p| {
        p.workspace_id != workspace_id || p.perm != workspace_user_perm::PermissionValue::Connect
    }) {
        return Err(forbidden!("access denied to workspace"));
    }
    // FIXME ensure workspace corresponds to rel/portal, and that user has
    // permission to access/alter both as needed.

    let workspace = Workspace::with_id(workspace_id)
        .fetch_one(&mut app_db)
        .await?;

    let mut workspace_client = pooler
        .acquire_for(workspace.id, RoleAssignment::User(user.id))
        .await?;

    let rel = PgClass::with_oid(Oid(rel_oid))
        .fetch_one(&mut workspace_client)
        .await?;

    #[derive(Debug, Template)]
    #[template(path = "relations_single/settings.html")]
    struct ResponseTemplate {
        rel: PgClass,
        settings: Settings,
        workspace_nav: WorkspaceNav,
    }
    Ok(Html(
        ResponseTemplate {
            workspace_nav: WorkspaceNav::builder()
                .navigator(navigator)
                .workspace(workspace)
                .populate_rels(&mut app_db, &mut workspace_client)
                .await?
                .current(NavLocation::Rel(Oid(rel_oid), Some(RelLocation::Sharing)))
                .build()?,
            rel,
            settings,
        }
        .render()?,
    ))
}
implement basic form editor 2025-10-01 22:36:19 -07:00			`use askama::Template;`
			`use axum::{`
			`debug_handler,`
			`extract::{Path, State},`
			`response::{Html, IntoResponse},`
			`};`
			`use interim_models::{`
			`workspace::Workspace,`
			`workspace_user_perm::{self, WorkspaceUserPerm},`
			`};`
			`use interim_pgtypes::pg_class::PgClass;`
			`use serde::Deserialize;`
			`use sqlx::postgres::types::Oid;`
			`use uuid::Uuid;`

			`use crate::{`
			`app::{App, AppDbConn},`
			`errors::{AppError, forbidden},`
			`navigator::Navigator,`
			`settings::Settings,`
			`user::CurrentUser,`
			`workspace_nav::{NavLocation, RelLocation, WorkspaceNav},`
			`workspace_pooler::{RoleAssignment, WorkspacePooler},`
			`};`

			`#[derive(Debug, Deserialize)]`
			`pub(super) struct PathParams {`
			`rel_oid: u32,`
			`workspace_id: Uuid,`
			`}`

			`/// HTTP GET handler for table settings, including renaming, access control,`
			`/// and deletion.`
			`#[debug_handler(state = App)]`
			`pub(super) async fn get(`
			`State(settings): State<Settings>,`
			`CurrentUser(user): CurrentUser,`
			`AppDbConn(mut app_db): AppDbConn,`
			`Path(PathParams {`
			`rel_oid,`
			`workspace_id,`
			`}): Path<PathParams>,`
			`navigator: Navigator,`
			`State(mut pooler): State<WorkspacePooler>,`
			`) -> Result<impl IntoResponse, AppError> {`
			`// Check workspace authorization.`
			`let workspace_perms = WorkspaceUserPerm::belonging_to_user(user.id)`
			`.fetch_all(&mut app_db)`
			`.await?;`
			`if workspace_perms.iter().all(\|p\| {`
			`p.workspace_id != workspace_id \|\| p.perm != workspace_user_perm::PermissionValue::Connect`
			`}) {`
			`return Err(forbidden!("access denied to workspace"));`
			`}`
			`// FIXME ensure workspace corresponds to rel/portal, and that user has`
			`// permission to access/alter both as needed.`

			`let workspace = Workspace::with_id(workspace_id)`
			`.fetch_one(&mut app_db)`
			`.await?;`

			`let mut workspace_client = pooler`
			`.acquire_for(workspace.id, RoleAssignment::User(user.id))`
			`.await?;`

			`let rel = PgClass::with_oid(Oid(rel_oid))`
			`.fetch_one(&mut workspace_client)`
			`.await?;`

			`#[derive(Debug, Template)]`
			`#[template(path = "relations_single/settings.html")]`
			`struct ResponseTemplate {`
			`rel: PgClass,`
			`settings: Settings,`
			`workspace_nav: WorkspaceNav,`
			`}`
			`Ok(Html(`
			`ResponseTemplate {`
			`workspace_nav: WorkspaceNav::builder()`
			`.navigator(navigator)`
			`.workspace(workspace)`
			`.populate_rels(&mut app_db, &mut workspace_client)`
			`.await?`
			`.current(NavLocation::Rel(Oid(rel_oid), Some(RelLocation::Sharing)))`
			`.build()?,`
			`rel,`
			`settings,`
			`}`
			`.render()?,`
			`))`
			`}`