2026-02-04 03:57:19 +05:30
|
|
|
from __future__ import annotations
|
|
|
|
|
|
2026-02-04 14:58:14 +05:30
|
|
|
from dataclasses import dataclass
|
|
|
|
|
from typing import Literal
|
|
|
|
|
|
2026-02-04 03:57:19 +05:30
|
|
|
from fastapi import Depends, HTTPException, status
|
2026-02-06 16:12:04 +05:30
|
|
|
from sqlmodel.ext.asyncio.session import AsyncSession
|
2026-02-04 03:57:19 +05:30
|
|
|
|
2026-02-04 14:58:14 +05:30
|
|
|
from app.core.agent_auth import AgentAuthContext, get_agent_auth_context_optional
|
|
|
|
|
from app.core.auth import AuthContext, get_auth_context, get_auth_context_optional
|
2026-02-04 03:57:19 +05:30
|
|
|
from app.db.session import get_session
|
2026-02-04 14:58:14 +05:30
|
|
|
from app.models.agents import Agent
|
2026-02-04 03:57:19 +05:30
|
|
|
from app.models.boards import Board
|
|
|
|
|
from app.models.tasks import Task
|
2026-02-04 14:58:14 +05:30
|
|
|
from app.models.users import User
|
2026-02-04 03:57:19 +05:30
|
|
|
from app.services.admin_access import require_admin
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def require_admin_auth(auth: AuthContext = Depends(get_auth_context)) -> AuthContext:
|
|
|
|
|
require_admin(auth)
|
|
|
|
|
return auth
|
|
|
|
|
|
|
|
|
|
|
2026-02-04 14:58:14 +05:30
|
|
|
@dataclass
|
|
|
|
|
class ActorContext:
|
|
|
|
|
actor_type: Literal["user", "agent"]
|
|
|
|
|
user: User | None = None
|
|
|
|
|
agent: Agent | None = None
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
def require_admin_or_agent(
|
|
|
|
|
auth: AuthContext | None = Depends(get_auth_context_optional),
|
|
|
|
|
agent_auth: AgentAuthContext | None = Depends(get_agent_auth_context_optional),
|
|
|
|
|
) -> ActorContext:
|
|
|
|
|
if auth is not None:
|
|
|
|
|
require_admin(auth)
|
|
|
|
|
return ActorContext(actor_type="user", user=auth.user)
|
|
|
|
|
if agent_auth is not None:
|
|
|
|
|
return ActorContext(actor_type="agent", agent=agent_auth.agent)
|
|
|
|
|
raise HTTPException(status_code=status.HTTP_401_UNAUTHORIZED)
|
|
|
|
|
|
|
|
|
|
|
2026-02-06 16:12:04 +05:30
|
|
|
async def get_board_or_404(
|
2026-02-04 03:57:19 +05:30
|
|
|
board_id: str,
|
2026-02-06 16:12:04 +05:30
|
|
|
session: AsyncSession = Depends(get_session),
|
2026-02-04 03:57:19 +05:30
|
|
|
) -> Board:
|
2026-02-06 16:12:04 +05:30
|
|
|
board = await session.get(Board, board_id)
|
2026-02-04 03:57:19 +05:30
|
|
|
if board is None:
|
|
|
|
|
raise HTTPException(status_code=status.HTTP_404_NOT_FOUND)
|
|
|
|
|
return board
|
|
|
|
|
|
|
|
|
|
|
2026-02-06 16:12:04 +05:30
|
|
|
async def get_task_or_404(
|
2026-02-04 03:57:19 +05:30
|
|
|
task_id: str,
|
|
|
|
|
board: Board = Depends(get_board_or_404),
|
2026-02-06 16:12:04 +05:30
|
|
|
session: AsyncSession = Depends(get_session),
|
2026-02-04 03:57:19 +05:30
|
|
|
) -> Task:
|
2026-02-06 16:12:04 +05:30
|
|
|
task = await session.get(Task, task_id)
|
2026-02-04 03:57:19 +05:30
|
|
|
if task is None or task.board_id != board.id:
|
|
|
|
|
raise HTTPException(status_code=status.HTTP_404_NOT_FOUND)
|
|
|
|
|
return task
|
