import { FastifyInstance } from 'fastify'; import { requirePermission } from '../../middleware/auth'; import { logAudit } from '../../services/audit'; import { success, error, parseId } from '../../utils/response'; import { parsePagination, buildPaginationMeta } from '../../utils/pagination'; import { parseBody } from '../../schemas/common'; import { CreateProjectSchema, UpdateProjectSchema, CreateProjectNoteSchema } from '../../schemas/projects.schema'; import { listProjects, getProject, createProject, updateProject, deleteProject, createProjectNote, deleteProjectNote, getNextProjectNumber, } from '../../services/projects.service'; export default async function projectsRoutes(fastify: FastifyInstance): Promise { fastify.get('/', { preHandler: requirePermission('projects.view') }, async (request, reply) => { const query = request.query as Record; const { page, limit, skip, sort, order, search } = parsePagination(query); const result = await listProjects({ page, limit, skip, sort, order, search, status: query.status ? String(query.status) : undefined, customer_id: query.customer_id ? Number(query.customer_id) : undefined, }); return reply.send({ success: true, data: result.data, pagination: buildPaginationMeta(result.total, page, limit) }); }); fastify.get<{ Params: { id: string } }>('/:id', { preHandler: requirePermission('projects.view') }, async (request, reply) => { const id = parseId(request.params.id, reply); if (id === null) return; const project = await getProject(id); if (!project) return error(reply, 'Projekt nenalezen', 404); return success(reply, project); }); fastify.post('/', { preHandler: requirePermission('projects.create') }, async (request, reply) => { const parsed = parseBody(CreateProjectSchema, request.body); if ('error' in parsed) return error(reply, parsed.error, 400); const project = await createProject(parsed.data); await logAudit({ request, authData: request.authData, action: 'create', entityType: 'project', entityId: project.id, description: `Vytvořen projekt ${project.name}` }); return success(reply, { id: project.id }, 201, 'Projekt byl vytvořen'); }); fastify.put<{ Params: { id: string } }>('/:id', { preHandler: requirePermission('projects.edit') }, async (request, reply) => { const id = parseId(request.params.id, reply); if (id === null) return; const parsed = parseBody(UpdateProjectSchema, request.body); if ('error' in parsed) return error(reply, parsed.error, 400); const existing = await updateProject(id, parsed.data); if (!existing) return error(reply, 'Projekt nenalezen', 404); await logAudit({ request, authData: request.authData, action: 'update', entityType: 'project', entityId: id, description: `Upraven projekt ${existing.name}` }); return success(reply, { id }, 200, 'Projekt byl uložen'); }); // POST /api/admin/projects/:id/notes fastify.post<{ Params: { id: string } }>('/:id/notes', { preHandler: requirePermission('projects.edit') }, async (request, reply) => { const projectId = parseId(request.params.id, reply); if (projectId === null) return; const parsed = parseBody(CreateProjectNoteSchema, request.body); if ('error' in parsed) return error(reply, parsed.error, 400); const authData = request.authData!; const note = await createProjectNote(projectId, { userId: authData.userId, firstName: authData.firstName, lastName: authData.lastName, content: parsed.data.content ?? undefined, }); return success(reply, { note }, 201, 'Poznámka byla přidána'); }); // GET /api/admin/projects/next-number — shared sequence with orders (matches PHP) fastify.get('/next-number', { preHandler: requirePermission('projects.create') }, async (_request, reply) => { const nextNumber = await getNextProjectNumber(); return success(reply, { next_number: nextNumber }); }); // DELETE /api/admin/projects/:id/notes/:noteId fastify.delete<{ Params: { id: string; noteId: string } }>('/:id/notes/:noteId', { preHandler: requirePermission('projects.edit') }, async (request, reply) => { const noteId = parseId(request.params.noteId, reply); if (noteId === null) return; const projectId = parseId(request.params.id, reply); if (projectId === null) return; const note = await deleteProjectNote(projectId, noteId); if (!note) return error(reply, 'Poznámka nenalezena', 404); await logAudit({ request, authData: request.authData, action: 'delete', entityType: 'project', entityId: projectId, description: `Smazána poznámka projektu` }); return success(reply, null, 200, 'Poznámka smazána'); }); fastify.delete<{ Params: { id: string } }>('/:id', { preHandler: requirePermission('projects.delete') }, async (request, reply) => { const id = parseId(request.params.id, reply); if (id === null) return; const result = await deleteProject(id); if (result && 'error' in result) { if (result.error === 'not_found') return error(reply, 'Projekt nenalezen', 404); if (result.error === 'has_order') return error(reply, 'Nelze smazat projekt propojený s objednávkou. Nejdříve smažte objednávku.', 400); } await logAudit({ request, authData: request.authData, action: 'delete', entityType: 'project', entityId: id, description: `Smazán projekt ${(result as any).name}` }); return success(reply, null, 200, 'Projekt smazán'); }); }