Hugging Face's logo

Spaces:
AUXteam
/
Midday
Paused

App Files Community
Midday / apps /api /src /rest /routers /documents.ts
Jules
Final deployment with all fixes and verified content
c09f67c
raw
history blame contribute delete
6.84 kB
import type { Context } from "@api/rest/types";
import {
 deleteDocumentResponseSchema,
 deleteDocumentSchema,
 documentResponseSchema,
 documentsResponseSchema,
 getDocumentPreSignedUrlSchema,
 getDocumentSchema,
 getDocumentsSchema,
 preSignedUrlResponseSchema,
} from "@api/schemas/documents";
import { createAdminClient } from "@api/services/supabase";
import { validateResponse } from "@api/utils/validate-response";
import { createRoute, OpenAPIHono, z } from "@hono/zod-openapi";
const errorResponseSchema = z.object({
 error: z.string(),
});
import {
 deleteDocument,
 getDocumentById,
 getDocuments,
} from "@midday/db/queries";
import { signedUrl } from "@midday/supabase/storage";
import { withRequiredScope } from "../middleware";
const app = new OpenAPIHono<Context>();
app.openapi(
 createRoute({
 method: "get",
 path: "/",
 summary: "List all documents",
 operationId: "listDocuments",
 "x-speakeasy-name-override": "list",
 description: "Retrieve a list of documents for the authenticated team.",
 tags: ["Documents"],
 request: {
 query: getDocumentsSchema,
 },
 responses: {
 200: {
 description: "Retrieve a list of documents for the authenticated team.",
 content: {
 "application/json": {
 schema: documentsResponseSchema,
 },
 },
 },
 },
 middleware: [withRequiredScope("documents.read")],
 }),
 async (c) => {
 const db = c.get("db");
 const teamId = c.get("teamId");
 const { pageSize, cursor, sort, ...filter } = c.req.valid("query");
const result = await getDocuments(db, {
 teamId,
 pageSize,
 cursor,
 ...filter,
 });
return c.json(validateResponse(result, documentsResponseSchema));
 },
);
app.openapi(
 createRoute({
 method: "get",
 path: "/{id}",
 summary: "Retrieve a document",
 operationId: "getDocumentById",
 "x-speakeasy-name-override": "get",
 description:
 "Retrieve a document by its unique identifier for the authenticated team.",
 tags: ["Documents"],
 request: {
 params: getDocumentSchema.pick({ id: true }),
 },
 responses: {
 200: {
 description: "Retrieve a document by its unique identifier",
 content: {
 "application/json": {
 schema: documentResponseSchema,
 },
 },
 },
 },
 middleware: [withRequiredScope("documents.read")],
 }),
 async (c) => {
 const db = c.get("db");
 const teamId = c.get("teamId");
 const id = c.req.valid("param").id;
const result = await getDocumentById(db, {
 teamId,
 id,
 });
return c.json(validateResponse(result, documentResponseSchema));
 },
);
app.openapi(
 createRoute({
 method: "post",
 path: "/{id}/presigned-url",
 summary: "Generate pre-signed URL for document",
 operationId: "getDocumentPreSignedUrl",
 "x-speakeasy-name-override": "getPreSignedUrl",
 description:
 "Generate a pre-signed URL for accessing a document. The URL is valid for 60 seconds and allows secure temporary access to the document file.",
 tags: ["Documents"],
 request: {
 params: getDocumentPreSignedUrlSchema.pick({ id: true }),
 query: getDocumentPreSignedUrlSchema.pick({ download: true }),
 },
 responses: {
 200: {
 description: "Pre-signed URL generated successfully",
 content: {
 "application/json": {
 schema: preSignedUrlResponseSchema,
 },
 },
 },
 400: {
 description: "Bad request - Document file path not available",
 content: {
 "application/json": {
 schema: errorResponseSchema,
 },
 },
 },
 404: {
 description: "Document not found",
 content: {
 "application/json": {
 schema: errorResponseSchema,
 },
 },
 },
 500: {
 description:
 "Internal server error - Failed to generate pre-signed URL",
 content: {
 "application/json": {
 schema: errorResponseSchema,
 },
 },
 },
 },
 middleware: [withRequiredScope("documents.read")],
 }),
 async (c) => {
 const db = c.get("db");
 const teamId = c.get("teamId");
 const { id } = c.req.valid("param");
 const { download = true } = c.req.valid("query");
try {
 // First, verify the document exists and belongs to the team
 const document = await getDocumentById(db, {
 id,
 teamId,
 });
if (!document) {
 return c.json({ error: "Document not found" }, 404);
 }
if (!document.pathTokens || document.pathTokens.length === 0) {
 return c.json({ error: "Document file path not available" }, 400);
 }
// Create admin supabase client
 const supabase = await createAdminClient();
// Generate the pre-signed URL with 60-second expiration
 const filePath = document.pathTokens.join("/");
 const expireIn = 60; // 60 seconds
const { data, error } = await signedUrl(supabase, {
 bucket: "vault",
 path: filePath,
 expireIn,
 options: {
 download,
 },
 });
if (error || !data?.signedUrl) {
 return c.json({ error: "Failed to generate pre-signed URL" }, 500);
 }
// Calculate expiration timestamp
 const expiresAt = new Date(Date.now() + expireIn * 1000).toISOString();
const result = {
 url: data.signedUrl,
 expiresAt,
 fileName:
 document.pathTokens?.at(-1) ||
 document.name?.split("/").at(-1) ||
 null,
 };
return c.json(validateResponse(result, preSignedUrlResponseSchema), 200);
 } catch (_error) {
 return c.json({ error: "Failed to generate pre-signed URL" }, 500);
 }
 },
);
app.openapi(
 createRoute({
 method: "delete",
 path: "/{id}",
 summary: "Delete a document",
 operationId: "deleteDocument",
 "x-speakeasy-name-override": "delete",
 description:
 "Delete a document by its unique identifier for the authenticated team.",
 tags: ["Documents"],
 request: {
 params: deleteDocumentSchema,
 },
 responses: {
 200: {
 description: "Document deleted successfully",
 content: {
 "application/json": {
 schema: deleteDocumentResponseSchema,
 },
 },
 },
 },
 middleware: [withRequiredScope("documents.write")],
 }),
 async (c) => {
 const db = c.get("db");
 const teamId = c.get("teamId");
 const id = c.req.valid("param").id;
const result = await deleteDocument(db, { teamId, id });
return c.json(validateResponse(result, deleteDocumentResponseSchema));
 },
);
export const documentsRouter = app;