hesabixArc/hesabixAPI/adapters/api/v1/warehouses.py

from __future__ import annotations

from typing import Dict, Any
from fastapi import APIRouter, Depends, Request
from sqlalchemy.orm import Session

from adapters.db.session import get_db
from app.core.auth_dependency import get_current_user, AuthContext
from app.core.permissions import require_business_access
from app.core.responses import success_response, ApiError, format_datetime_fields
from adapters.api.v1.schemas import QueryInfo, PaginatedResponse
from adapters.api.v1.schema_models.warehouse import (
    WarehouseCreateRequest,
    WarehouseUpdateRequest,
)
from app.services.warehouse_service import (
    create_warehouse,
    list_warehouses,
    get_warehouse,
    update_warehouse,
    delete_warehouse,
    query_warehouses,
)


router = APIRouter(prefix="/warehouses", tags=["warehouses"])


@router.post("/business/{business_id}")
@require_business_access("business_id")
def create_warehouse_endpoint(
    request: Request,
    business_id: int,
    payload: WarehouseCreateRequest,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    if not ctx.has_business_permission("inventory", "write"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.write", http_status=403)
    result = create_warehouse(db, business_id, payload)
    return success_response(data=format_datetime_fields(result["data"], request), request=request, message=result.get("message"))


@router.get("/business/{business_id}")
@require_business_access("business_id")
def list_warehouses_endpoint(
    request: Request,
    business_id: int,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    if not ctx.can_read_section("inventory"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)
    result = list_warehouses(db, business_id)
    return success_response(data=format_datetime_fields(result, request), request=request)


@router.get("/business/{business_id}/{warehouse_id}")
@require_business_access("business_id")
def get_warehouse_endpoint(
    request: Request,
    business_id: int,
    warehouse_id: int,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    if not ctx.can_read_section("inventory"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)
    item = get_warehouse(db, business_id, warehouse_id)
    if not item:
        raise ApiError("NOT_FOUND", "Warehouse not found", http_status=404)
    return success_response(data=format_datetime_fields({"item": item}, request), request=request)


@router.put("/business/{business_id}/{warehouse_id}")
@require_business_access("business_id")
def update_warehouse_endpoint(
    request: Request,
    business_id: int,
    warehouse_id: int,
    payload: WarehouseUpdateRequest,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    if not ctx.has_business_permission("inventory", "write"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.write", http_status=403)
    result = update_warehouse(db, business_id, warehouse_id, payload)
    if not result:
        raise ApiError("NOT_FOUND", "Warehouse not found", http_status=404)
    return success_response(data=format_datetime_fields(result["data"], request), request=request, message=result.get("message"))


@router.delete("/business/{business_id}/{warehouse_id}")
@require_business_access("business_id")
def delete_warehouse_endpoint(
    request: Request,
    business_id: int,
    warehouse_id: int,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    if not ctx.has_business_permission("inventory", "delete"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.delete", http_status=403)
    ok = delete_warehouse(db, business_id, warehouse_id)
    return success_response({"deleted": ok}, request)


@router.post("/business/{business_id}/query")
def query_warehouses_endpoint(
    request: Request,
    business_id: int,
    payload: QueryInfo,
    ctx: AuthContext = Depends(get_current_user),
    db: Session = Depends(get_db),
) -> Dict[str, Any]:
    # دسترسی به کسب‌وکار و مجوز خواندن انبار
    if not ctx.can_access_business(int(business_id)):
        raise ApiError("FORBIDDEN", f"No access to business {business_id}", http_status=403)
    if not ctx.can_read_section("inventory"):
        raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)
    result = query_warehouses(db, business_id, payload)
    # تطبیق خروجی با ساختار DataTableResponse (items + pagination)
    data = {
        "items": format_datetime_fields(result["items"], request),
        "pagination": {
            "total": result["total"],
            "page": result["page"],
            "per_page": result["limit"],
            "total_pages": result["total_pages"],
            "has_next": result["page"] < result["total_pages"],
            "has_prev": result["page"] > 1,
        },
        "query_info": payload.model_dump(),
    }
    return success_response(data=data, request=request)
progress in documents 2025-10-27 22:17:45 +03:30			`from __future__ import annotations`

			`from typing import Dict, Any`
			`from fastapi import APIRouter, Depends, Request`
			`from sqlalchemy.orm import Session`

			`from adapters.db.session import get_db`
			`from app.core.auth_dependency import get_current_user, AuthContext`
			`from app.core.permissions import require_business_access`
			`from app.core.responses import success_response, ApiError, format_datetime_fields`
progress in cheques 2025-11-02 13:11:38 +03:30			`from adapters.api.v1.schemas import QueryInfo, PaginatedResponse`
progress in documents 2025-10-27 22:17:45 +03:30			`from adapters.api.v1.schema_models.warehouse import (`
			`WarehouseCreateRequest,`
			`WarehouseUpdateRequest,`
			`)`
			`from app.services.warehouse_service import (`
			`create_warehouse,`
			`list_warehouses,`
			`get_warehouse,`
			`update_warehouse,`
			`delete_warehouse,`
progress in cheques 2025-11-02 13:11:38 +03:30			`query_warehouses,`
progress in documents 2025-10-27 22:17:45 +03:30			`)`


			`router = APIRouter(prefix="/warehouses", tags=["warehouses"])`


			`@router.post("/business/{business_id}")`
			`@require_business_access("business_id")`
			`def create_warehouse_endpoint(`
			`request: Request,`
			`business_id: int,`
			`payload: WarehouseCreateRequest,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`if not ctx.has_business_permission("inventory", "write"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.write", http_status=403)`
			`result = create_warehouse(db, business_id, payload)`
			`return success_response(data=format_datetime_fields(result["data"], request), request=request, message=result.get("message"))`


			`@router.get("/business/{business_id}")`
			`@require_business_access("business_id")`
			`def list_warehouses_endpoint(`
			`request: Request,`
			`business_id: int,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`if not ctx.can_read_section("inventory"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)`
			`result = list_warehouses(db, business_id)`
			`return success_response(data=format_datetime_fields(result, request), request=request)`


			`@router.get("/business/{business_id}/{warehouse_id}")`
			`@require_business_access("business_id")`
			`def get_warehouse_endpoint(`
			`request: Request,`
			`business_id: int,`
			`warehouse_id: int,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`if not ctx.can_read_section("inventory"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)`
			`item = get_warehouse(db, business_id, warehouse_id)`
			`if not item:`
			`raise ApiError("NOT_FOUND", "Warehouse not found", http_status=404)`
			`return success_response(data=format_datetime_fields({"item": item}, request), request=request)`


			`@router.put("/business/{business_id}/{warehouse_id}")`
			`@require_business_access("business_id")`
			`def update_warehouse_endpoint(`
			`request: Request,`
			`business_id: int,`
			`warehouse_id: int,`
			`payload: WarehouseUpdateRequest,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`if not ctx.has_business_permission("inventory", "write"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.write", http_status=403)`
			`result = update_warehouse(db, business_id, warehouse_id, payload)`
			`if not result:`
			`raise ApiError("NOT_FOUND", "Warehouse not found", http_status=404)`
			`return success_response(data=format_datetime_fields(result["data"], request), request=request, message=result.get("message"))`


			`@router.delete("/business/{business_id}/{warehouse_id}")`
			`@require_business_access("business_id")`
			`def delete_warehouse_endpoint(`
			`request: Request,`
			`business_id: int,`
			`warehouse_id: int,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`if not ctx.has_business_permission("inventory", "delete"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.delete", http_status=403)`
			`ok = delete_warehouse(db, business_id, warehouse_id)`
			`return success_response({"deleted": ok}, request)`


progress in cheques 2025-11-02 13:11:38 +03:30
			`@router.post("/business/{business_id}/query")`
			`def query_warehouses_endpoint(`
			`request: Request,`
			`business_id: int,`
			`payload: QueryInfo,`
			`ctx: AuthContext = Depends(get_current_user),`
			`db: Session = Depends(get_db),`
			`) -> Dict[str, Any]:`
			`# دسترسی به کسب‌وکار و مجوز خواندن انبار`
			`if not ctx.can_access_business(int(business_id)):`
			`raise ApiError("FORBIDDEN", f"No access to business {business_id}", http_status=403)`
			`if not ctx.can_read_section("inventory"):`
			`raise ApiError("FORBIDDEN", "Missing business permission: inventory.read", http_status=403)`
			`result = query_warehouses(db, business_id, payload)`
			`# تطبیق خروجی با ساختار DataTableResponse (items + pagination)`
			`data = {`
			`"items": format_datetime_fields(result["items"], request),`
			`"pagination": {`
			`"total": result["total"],`
			`"page": result["page"],`
			`"per_page": result["limit"],`
			`"total_pages": result["total_pages"],`
			`"has_next": result["page"] < result["total_pages"],`
			`"has_prev": result["page"] > 1,`
			`},`
			`"query_info": payload.model_dump(),`
			`}`
			`return success_response(data=data, request=request)`