@guayaba/workflow-piece-google-cloud-storage 0.1.3

package/src/lib/actions/create-bucket-acl.ts

@@ -0,0 +1,56 @@
+import { createAction, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, aclEntityProperty, bucketAclRoleProperty, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const createBucketAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'create_bucket_acl',
+  displayName: 'Create Bucket ACL',
+  description: 'Add an ACL entry at bucket level. Perfect for granting permission to manage the bucket.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    entity: aclEntityProperty,
+    role: bucketAclRoleProperty,
+  },
+  async run(context) {
+    const { bucket, entity, role } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    const aclEntry = {
+      entity,
+      role,
+    };
+
+    try {
+      const response = await gcsCommon.makeRequest(
+        HttpMethod.POST,
+        `/b/${bucket}/acl`,
+        auth.access_token,
+        aclEntry
+      );
+
+      return {
+        success: true,
+        bucket,
+        acl: response,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support bucket ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.update permission to modify bucket ACLs.');
+      }
+      if (error.response?.status === 404) {
+        throw new Error(`Bucket "${bucket}" not found.`);
+      }
+      if (error.response?.status === 409) {
+        throw new Error(`ACL entry for entity "${entity}" already exists on bucket "${bucket}".`);
+      }
+      throw new Error(`Failed to create bucket ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/create-bucket-default-object-acl.ts

@@ -0,0 +1,56 @@
+import { createAction, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, aclEntityProperty, objectAclRoleProperty, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const createBucketDefaultObjectAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'create_bucket_default_object_acl',
+  displayName: 'Create Bucket Default Object ACL',
+  description: 'Set default ACLs for new objects added to a bucket. Perfect for automatically assigning permissions to new uploads.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    entity: aclEntityProperty,
+    role: objectAclRoleProperty,
+  },
+  async run(context) {
+    const { bucket, entity, role } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    const aclEntry = {
+      entity,
+      role,
+    };
+
+    try {
+      const response = await gcsCommon.makeRequest(
+        HttpMethod.POST,
+        `/b/${bucket}/defaultObjectAcl`,
+        auth.access_token,
+        aclEntry
+      );
+
+      return {
+        success: true,
+        bucket,
+        acl: response,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support default object ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.update permission to modify bucket default object ACLs.');
+      }
+      if (error.response?.status === 404) {
+        throw new Error(`Bucket "${bucket}" not found.`);
+      }
+      if (error.response?.status === 409) {
+        throw new Error(`Default object ACL entry for entity "${entity}" already exists on bucket "${bucket}".`);
+      }
+      throw new Error(`Failed to create bucket default object ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/create-bucket.ts

@@ -0,0 +1,73 @@
+import { createAction, Property, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { projectIdProperty, bucketNameProperty, locationProperty, storageClassProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const createBucket = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'create_bucket',
+  displayName: 'Create Bucket',
+  description: 'Create a new bucket in a specified location/configuration. Perfect for automating storage provisioning for new projects.',
+  props: {
+    projectId: projectIdProperty,
+    name: bucketNameProperty,
+    location: locationProperty,
+    storageClass: storageClassProperty,
+    versioning: Property.Checkbox({
+      displayName: 'Enable Versioning',
+      required: false,
+    }),
+    uniformBucketLevelAccess: Property.Checkbox({
+      displayName: 'Uniform Bucket Level Access',
+      required: false,
+    }),
+    labels: Property.Object({
+      displayName: 'Labels',
+      description: 'Key-value pairs for bucket labels',
+      required: false,
+    }),
+  },
+  async run(context) {
+    const { projectId, name, location, storageClass, versioning, uniformBucketLevelAccess, labels } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    const bucketConfig: any = {
+      name,
+      location: location || 'US',
+      storageClass: storageClass || 'STANDARD',
+    };
+
+    if (versioning) {
+      bucketConfig.versioning = { enabled: true };
+    }
+
+    if (uniformBucketLevelAccess !== undefined) {
+      bucketConfig.iamConfiguration = {
+        uniformBucketLevelAccess: {
+          enabled: uniformBucketLevelAccess,
+        },
+      };
+    }
+
+    if (labels) {
+      bucketConfig.labels = labels;
+    }
+
+    try {
+      const response = await gcsCommon.makeRequest(HttpMethod.POST, `/b?project=${projectId}`, auth.access_token, bucketConfig);
+      return response;
+    } catch (error: any) {
+      if (error.response?.status === 409) {
+        throw new Error(`Bucket "${name}" already exists. Bucket names must be globally unique.`);
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. Check your permissions for the selected project.');
+      }
+      if (error.response?.status === 400) {
+        throw new Error('Invalid bucket configuration. Check bucket name format and project settings.');
+      }
+      throw new Error(`Failed to create bucket: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/create-object-acl.ts

@@ -0,0 +1,79 @@
+import {
+  createAction,
+  Property,
+  OAuth2PropertyValue,
+} from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import {
+  bucketDropdown,
+  objectDropdown,
+  aclEntityProperty,
+  objectAclRoleProperty,
+  projectIdProperty,
+} from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const createObjectAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'create_object_acl',
+  displayName: 'Create Object ACL',
+  description: 'Add an ACL entry to an object (grant a permission). Perfect for granting read/write access to a user or group.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    object: objectDropdown('bucket'),
+    entity: aclEntityProperty,
+    role: objectAclRoleProperty,
+    generation: Property.Number({
+      displayName: 'Generation',
+      description: 'Optional generation number for versioned objects',
+      required: false,
+    }),
+  },
+  async run(context) {
+    const { bucket, object, entity, role, generation } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    const aclEntry = {
+      entity,
+      role,
+    };
+
+    let path = `/b/${bucket}/o/${encodeURIComponent(object as string)}/acl`;
+    if (generation) {
+      path += `?generation=${generation}`;
+    }
+
+    try {
+      const response = await gcsCommon.makeRequest(
+        HttpMethod.POST,
+        path,
+        auth.access_token,
+        aclEntry
+      );
+
+      return {
+        success: true,
+        bucket,
+        object,
+        generation: generation || 'latest',
+        acl: response,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support object ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.objects.setIamPolicy permission or OWNER ACL permission on the object.');
+      }
+      if (error.response?.status === 404) {
+        throw new Error(`Object "${object}" not found in bucket "${bucket}".`);
+      }
+      if (error.response?.status === 409) {
+        throw new Error(`ACL entry for entity "${entity}" already exists on this object.`);
+      }
+      throw new Error(`Failed to create object ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/delete-bucket-acl.ts

@@ -0,0 +1,50 @@
+import { createAction, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, aclEntityProperty, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const deleteBucketAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'delete_bucket_acl',
+  displayName: 'Delete Bucket ACL',
+  description: 'Remove an ACL entry from a bucket. Perfect for revoking access for a user or group.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    entity: aclEntityProperty,
+  },
+  async run(context) {
+    const { bucket, entity } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    try {
+      await gcsCommon.makeRequest(
+        HttpMethod.DELETE,
+        `/b/${bucket}/acl/${encodeURIComponent(entity)}`,
+        auth.access_token
+      );
+
+      return {
+        success: true,
+        bucket,
+        entity,
+        message: `ACL entry for entity "${entity}" removed successfully from bucket "${bucket}"`,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support bucket ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.update permission to modify bucket ACLs.');
+      }
+      if (error.response?.status === 404) {
+        if (error.response?.data?.error?.message?.includes('ACL')) {
+          throw new Error(`ACL entry for entity "${entity}" not found on bucket "${bucket}".`);
+        }
+        throw new Error(`Bucket "${bucket}" not found.`);
+      }
+      throw new Error(`Failed to delete bucket ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/delete-bucket-default-object-acl.ts

@@ -0,0 +1,50 @@
+import { createAction, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, aclEntityProperty, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const deleteBucketDefaultObjectAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'delete_bucket_default_object_acl',
+  displayName: 'Delete Bucket Default Object ACL',
+  description: 'Remove default ACL settings from a bucket. Perfect for reverting to default behavior.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    entity: aclEntityProperty,
+  },
+  async run(context) {
+    const { bucket, entity } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    try {
+      await gcsCommon.makeRequest(
+        HttpMethod.DELETE,
+        `/b/${bucket}/defaultObjectAcl/${encodeURIComponent(entity)}`,
+        auth.access_token
+      );
+
+      return {
+        success: true,
+        bucket,
+        entity,
+        message: `Default object ACL entry for entity "${entity}" removed successfully from bucket "${bucket}"`,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support default object ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.update permission to modify bucket default object ACLs.');
+      }
+      if (error.response?.status === 404) {
+        if (error.response?.data?.error?.message?.includes('ACL')) {
+          throw new Error(`Default object ACL entry for entity "${entity}" not found on bucket "${bucket}".`);
+        }
+        throw new Error(`Bucket "${bucket}" not found.`);
+      }
+      throw new Error(`Failed to delete bucket default object ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/delete-empty-bucket.ts

@@ -0,0 +1,40 @@
+import { createAction, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const deleteEmptyBucket = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'delete_empty_bucket',
+  displayName: 'Delete Empty Bucket',
+  description: 'Clean up unused buckets by deleting them if they contain no live objects.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+  },
+  async run(context) {
+    const { bucket } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    try {
+      await gcsCommon.makeRequest(HttpMethod.DELETE, `/b/${bucket}`, auth.access_token);
+
+      return {
+        success: true,
+        message: `Bucket "${bucket}" deleted successfully`,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 409) {
+        throw new Error(`Bucket "${bucket}" contains live or noncurrent objects and cannot be deleted. Remove all objects first.`);
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.delete permission to delete this bucket.');
+      }
+      if (error.response?.status === 404) {
+        throw new Error(`Bucket "${bucket}" not found. It may have already been deleted.`);
+      }
+      throw new Error(`Failed to delete bucket: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/delete-object-acl.ts

@@ -0,0 +1,62 @@
+import { createAction, Property, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, objectDropdown, aclEntityProperty, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const deleteObjectAcl = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'delete_object_acl',
+  displayName: 'Delete Object ACL',
+  description: 'Remove an ACL entry from an object. Perfect for revoking access for a user.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    object: objectDropdown('bucket'),
+    entity: aclEntityProperty,
+    generation: Property.Number({
+      displayName: 'Generation',
+      description: 'Optional generation number for versioned objects',
+      required: false,
+    }),
+  },
+  async run(context) {
+    const { bucket, object, entity, generation } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    let path = `/b/${bucket}/o/${encodeURIComponent(object as string)}/acl/${encodeURIComponent(entity as string)}`;
+    if (generation) {
+      path += `?generation=${generation}`;
+    }
+
+    try {
+      await gcsCommon.makeRequest(HttpMethod.DELETE, path, auth.access_token);
+
+      return {
+        success: true,
+        bucket,
+        object,
+        entity,
+        generation: generation || 'latest',
+        message: `ACL entry for entity "${entity}" removed successfully from object "${object}"`,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 400) {
+        if (entity.includes('user-') && entity.includes('@')) {
+          throw new Error('Cannot remove OWNER access from the object owner. The only way to remove owner access is to delete or replace the object.');
+        }
+        throw new Error('Bad request. This bucket may have uniform bucket-level access enabled, which doesn\'t support object ACLs. Use IAM policies instead.');
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.objects.setIamPolicy permission or OWNER ACL permission on the object.');
+      }
+      if (error.response?.status === 404) {
+        if (error.response?.data?.error?.message?.includes('ACL')) {
+          throw new Error(`ACL entry for entity "${entity}" not found on object "${object}".`);
+        }
+        throw new Error(`Object "${object}" not found in bucket "${bucket}".`);
+      }
+      throw new Error(`Failed to delete object ACL: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/delete-object.ts

@@ -0,0 +1,57 @@
+import { createAction, Property, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { bucketDropdown, objectDropdown, projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const deleteObject = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'delete_object',
+  displayName: 'Delete Object',
+  description: 'Permanently delete a specific object. Perfect for removing obsolete files.',
+  props: {
+    projectId: projectIdProperty,
+    bucket: bucketDropdown,
+    object: objectDropdown('bucket'),
+    generation: Property.Number({
+      displayName: 'Generation',
+      description: 'Optional generation number for versioned objects (permanently deletes a specific revision)',
+      required: false,
+    }),
+  },
+  async run(context) {
+    const { bucket, object, generation } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    let path = `/b/${bucket}/o/${encodeURIComponent(object as string)}`;
+    if (generation) {
+      path += `?generation=${generation}`;
+    }
+
+    try {
+      await gcsCommon.makeRequest(HttpMethod.DELETE, path, auth.access_token);
+
+      return {
+        success: true,
+        bucket,
+        object,
+        generation: generation || 'latest',
+        message: `Object "${object}" deleted successfully from bucket "${bucket}"`,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 404) {
+        throw new Error(`Object "${object}" not found in bucket "${bucket}". It may have already been deleted.`);
+      }
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.objects.delete permission to delete this object.');
+      }
+      if (error.response?.status === 412) {
+        throw new Error('Precondition failed. Object may have been modified or deleted by another process.');
+      }
+      if (error.response?.status === 400) {
+        throw new Error('Invalid request. Check object name and generation parameters.');
+      }
+      throw new Error(`Failed to delete object: ${error.message || 'Unknown error'}`);
+    }
+  },
+});

package/src/lib/actions/search-buckets.ts

@@ -0,0 +1,90 @@
+import { createAction, Property, OAuth2PropertyValue } from '@guayaba/workflows-framework';
+import { googleCloudStorageAuth } from '../common/auth';
+import { gcsCommon } from '../common/client';
+import { projectIdProperty } from '../common/props';
+import { HttpMethod } from '@guayaba/workflows-common';
+
+export const searchBuckets = createAction({
+  auth: googleCloudStorageAuth,
+  name: 'search_buckets',
+  displayName: 'Search Buckets',
+  description: 'Search buckets by name. Perfect for finding buckets in your project.',
+  props: {
+    projectId: projectIdProperty,
+    prefix: Property.ShortText({
+      displayName: 'Name Prefix',
+      description: 'Filter buckets whose names begin with this prefix',
+      required: false,
+    }),
+    includeSoftDeleted: Property.Checkbox({
+      displayName: 'Include Soft-Deleted',
+      description: 'Include soft-deleted bucket versions in results',
+      required: false,
+    }),
+    projection: Property.StaticDropdown({
+      displayName: 'Projection',
+      description: 'Set of properties to return',
+      required: false,
+      options: {
+        options: [
+          { label: 'No ACLs (faster)', value: 'noAcl' },
+          { label: 'Full (includes ACLs)', value: 'full' },
+        ],
+      },
+    }),
+    pageToken: Property.ShortText({
+      displayName: 'Page Token',
+      description: 'Token for pagination (from previous response)',
+      required: false,
+    }),
+    maxResults: Property.Number({
+      displayName: 'Max Results',
+      description: 'Maximum number of buckets to return',
+      required: false,
+    }),
+  },
+  async run(context) {
+    const {
+      projectId,
+      prefix,
+      includeSoftDeleted,
+      projection,
+      pageToken,
+      maxResults
+    } = context.propsValue;
+    const auth = context.auth as OAuth2PropertyValue;
+
+    const params = new URLSearchParams();
+    params.append('project', projectId!);
+    if (prefix) params.append('prefix', prefix);
+    if (includeSoftDeleted) params.append('softDeleted', 'true');
+    if (projection) params.append('projection', projection);
+    if (pageToken) params.append('pageToken', pageToken);
+    if (maxResults) params.append('maxResults', maxResults.toString());
+
+    const path = `/b?${params.toString()}`;
+
+    try {
+      const response = await gcsCommon.makeRequest(HttpMethod.GET, path, auth.access_token);
+
+      return {
+        success: true,
+        projectId,
+        items: response.items || [],
+        nextPageToken: response.nextPageToken,
+        totalBuckets: response.items?.length || 0,
+      };
+    } catch (error: any) {
+      if (error.response?.status === 403) {
+        throw new Error('Access denied. You need storage.buckets.list permission to search buckets in this project.');
+      }
+      if (error.response?.status === 404) {
+        throw new Error(`Project "${projectId}" not found or you don't have access to it.`);
+      }
+      if (error.response?.status === 400) {
+        throw new Error('Invalid search parameters. Check your project ID and other filters.');
+      }
+      throw new Error(`Failed to search buckets: ${error.message || 'Unknown error'}`);
+    }
+  },
+});