npm - @studious-lms/server - Versions diffs - 1.0.4 → 1.0.7 - Mend

@studious-lms/server 1.0.4 → 1.0.7

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (101) hide show

package/API_SPECIFICATION.md +1117 -0
package/dist/exportType.js +1 -2
package/dist/index.js +25 -30
package/dist/lib/fileUpload.d.ts.map +1 -1
package/dist/lib/fileUpload.js +31 -29
package/dist/lib/googleCloudStorage.js +9 -14
package/dist/lib/prisma.js +4 -7
package/dist/lib/thumbnailGenerator.js +12 -20
package/dist/middleware/auth.d.ts.map +1 -1
package/dist/middleware/auth.js +17 -22
package/dist/middleware/logging.js +5 -9
package/dist/routers/_app.d.ts +3483 -1801
package/dist/routers/_app.d.ts.map +1 -1
package/dist/routers/_app.js +28 -27
package/dist/routers/agenda.d.ts +13 -8
package/dist/routers/agenda.d.ts.map +1 -1
package/dist/routers/agenda.js +14 -17
package/dist/routers/announcement.d.ts +4 -3
package/dist/routers/announcement.d.ts.map +1 -1
package/dist/routers/announcement.js +28 -31
package/dist/routers/assignment.d.ts +282 -196
package/dist/routers/assignment.d.ts.map +1 -1
package/dist/routers/assignment.js +256 -202
package/dist/routers/attendance.d.ts +5 -4
package/dist/routers/attendance.d.ts.map +1 -1
package/dist/routers/attendance.js +31 -34
package/dist/routers/auth.d.ts +1 -0
package/dist/routers/auth.d.ts.map +1 -1
package/dist/routers/auth.js +80 -75
package/dist/routers/class.d.ts +284 -14
package/dist/routers/class.d.ts.map +1 -1
package/dist/routers/class.js +435 -164
package/dist/routers/event.d.ts +47 -38
package/dist/routers/event.d.ts.map +1 -1
package/dist/routers/event.js +76 -79
package/dist/routers/file.d.ts +71 -1
package/dist/routers/file.d.ts.map +1 -1
package/dist/routers/file.js +267 -32
package/dist/routers/folder.d.ts +296 -0
package/dist/routers/folder.d.ts.map +1 -0
package/dist/routers/folder.js +693 -0
package/dist/routers/notifications.d.ts +103 -0
package/dist/routers/notifications.d.ts.map +1 -0
package/dist/routers/notifications.js +91 -0
package/dist/routers/school.d.ts +208 -0
package/dist/routers/school.d.ts.map +1 -0
package/dist/routers/school.js +481 -0
package/dist/routers/section.d.ts +1 -0
package/dist/routers/section.d.ts.map +1 -1
package/dist/routers/section.js +30 -33
package/dist/routers/user.d.ts +2 -1
package/dist/routers/user.d.ts.map +1 -1
package/dist/routers/user.js +21 -24
package/dist/seedDatabase.d.ts +22 -0
package/dist/seedDatabase.d.ts.map +1 -0
package/dist/seedDatabase.js +57 -0
package/dist/socket/handlers.js +26 -30
package/dist/trpc.d.ts +5 -0
package/dist/trpc.d.ts.map +1 -1
package/dist/trpc.js +35 -26
package/dist/types/trpc.js +1 -2
package/dist/utils/email.js +2 -8
package/dist/utils/generateInviteCode.js +1 -5
package/dist/utils/logger.d.ts.map +1 -1
package/dist/utils/logger.js +13 -9
package/dist/utils/prismaErrorHandler.d.ts +9 -0
package/dist/utils/prismaErrorHandler.d.ts.map +1 -0
package/dist/utils/prismaErrorHandler.js +234 -0
package/dist/utils/prismaWrapper.d.ts +14 -0
package/dist/utils/prismaWrapper.d.ts.map +1 -0
package/dist/utils/prismaWrapper.js +64 -0
package/package.json +17 -4
package/prisma/migrations/20250807062924_init/migration.sql +436 -0
package/prisma/migrations/migration_lock.toml +3 -0
package/prisma/schema.prisma +67 -0
package/src/index.ts +2 -2
package/src/lib/fileUpload.ts +16 -7
package/src/middleware/auth.ts +0 -2
package/src/routers/_app.ts +5 -1
package/src/routers/assignment.ts +82 -22
package/src/routers/auth.ts +80 -54
package/src/routers/class.ts +330 -36
package/src/routers/file.ts +283 -20
package/src/routers/folder.ts +755 -0
package/src/routers/notifications.ts +93 -0
package/src/seedDatabase.ts +66 -0
package/src/socket/handlers.ts +4 -4
package/src/trpc.ts +13 -0
package/src/utils/logger.ts +14 -4
package/src/utils/prismaErrorHandler.ts +275 -0
package/src/utils/prismaWrapper.ts +91 -0
package/tests/auth.test.ts +25 -0
package/tests/class.test.ts +281 -0
package/tests/setup.ts +98 -0
package/tests/startup.test.ts +5 -0
package/tsconfig.json +2 -1
package/vitest.config.ts +11 -0
package/dist/logger.d.ts +0 -26
package/dist/logger.d.ts.map +0 -1
package/dist/logger.js +0 -135
package/src/logger.ts +0 -163

package/src/routers/file.ts CHANGED Viewed

@@ -1,9 +1,10 @@
 import { z } from "zod";
-import { createTRPCRouter, protectedProcedure } from "../trpc";
+import { createTRPCRouter, protectedProcedure, protectedTeacherProcedure } from "../trpc";
 import { TRPCError } from "@trpc/server";
-import { getSignedUrl } from "../lib/googleCloudStorage";
+import { getSignedUrl, deleteFile } from "../lib/googleCloudStorage";
 import type { User } from "@prisma/client";
 import { prisma } from "../lib/prisma";
+import { logger } from "../utils/logger";
 export const fileRouter = createTRPCRouter({
   getSignedUrl: protectedProcedure
@@ -48,6 +49,30 @@ export const fileRouter = createTRPCRouter({
                 }
               }
             }
+          },
+          annotations: {
+            include: {
+              student: true,
+              assignment: {
+                include: {
+                  class: {
+                    include: {
+                      teachers: true,
+                    }
+                  }
+                }
+              }
+            }
+          },
+          folder: {
+            include: {
+              class: {
+                include: {
+                  students: true,
+                  teachers: true
+                }
+              }
+            }
           }
         }
       });
@@ -59,20 +84,39 @@ export const fileRouter = createTRPCRouter({
         });
       }
-      // Check if user has access to the file
-      const hasAccess =
-        // File owner
-        file.userId === userId ||
-        // Assignment file - student in class or teacher
-        (file.assignment && (
-          file.assignment.class.students.some((s: User) => s.id === userId) ||
-          file.assignment.class.teachers.some((t: User) => t.id === userId)
-        )) ||
-        // Submission file - student who submitted or teacher of class
-        (file.submission && (
-          file.submission.student.id === userId ||
-          file.submission.assignment.class.teachers.some((t: User) => t.id === userId)
-        ));
+      // Check if user has access to this file
+      let hasAccess = false;
+      let classId: string | null = null;
+      // Check if user is a teacher of the class
+      if (file.assignment?.class) {
+        classId = file.assignment.class.id;
+        hasAccess = file.assignment.class.teachers.some(teacher => teacher.id === userId) || false;
+      }
+      if (file.submission?.assignment?.classId) {
+        classId = file.submission.assignment.classId;
+        hasAccess = file.submission?.studentId === userId || false;
+        if (!hasAccess) hasAccess = file.submission.assignment.class.teachers.some(teacher => teacher.id === userId) || false;
+      }
+      if (file.annotations?.assignment?.classId) {
+        classId = file.annotations?.assignment.classId;
+        hasAccess = file.annotations?.studentId === userId || false;
+        if (!hasAccess) hasAccess = file.annotations.assignment.class.teachers.some(teacher => teacher.id === userId) || false;
+      }
+      // Check if user is the file owner
+      if (file.userId === userId) {
+        hasAccess = true;
+      }
+      // Check if file is in a folder and user has access to the class
+      if (file.folder?.class) {
+        hasAccess = hasAccess || file.folder.class.teachers.some(teacher => teacher.id === userId);
+        hasAccess = hasAccess || file.folder.class.students.some(student => student.id === userId);
+      }
       if (!hasAccess) {
         throw new TRPCError({
@@ -82,15 +126,234 @@ export const fileRouter = createTRPCRouter({
       }
       try {
-        // Generate a signed URL with short expiration
         const signedUrl = await getSignedUrl(file.path);
-        return { signedUrl };
+        return { url: signedUrl };
       } catch (error) {
-        console.error('Error generating signed URL:', error);
+        logger.error('Error generating signed URL:', error as Record<string, any>);
         throw new TRPCError({
           code: "INTERNAL_SERVER_ERROR",
-          message: "Failed to generate signed URL",
+          message: "Failed to generate download URL",
+        });
+      }
+    }),
+  move: protectedTeacherProcedure
+    .input(z.object({
+      fileId: z.string(),
+      targetFolderId: z.string(),
+      classId: z.string(),
+    }))
+    .mutation(async ({ ctx, input }) => {
+      const { fileId, targetFolderId } = input;
+      // Get the file
+      const file = await prisma.file.findUnique({
+        where: { id: fileId },
+        include: {
+          folder: {
+            include: {
+              class: true,
+            },
+          },
+        },
+      });
+      if (!file) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "File not found",
+        });
+      }
+      // Get the target folder
+      const targetFolder = await prisma.folder.findUnique({
+        where: { id: targetFolderId },
+        include: {
+          class: true,
+        },
+      });
+      if (!targetFolder) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "Target folder not found",
+        });
+      }
+      // Move the file
+      const updatedFile = await prisma.file.update({
+        where: { id: fileId },
+        data: {
+          folderId: targetFolderId,
+        },
+        include: {
+          user: {
+            select: {
+              id: true,
+              username: true,
+            },
+          },
+        },
+      });
+      return updatedFile;
+    }),
+  rename: protectedTeacherProcedure
+    .input(z.object({
+      fileId: z.string(),
+      newName: z.string(),
+      classId: z.string(),
+    }))
+    .mutation(async ({ ctx, input }) => {
+      const { fileId, newName, classId } = input;
+      // Verify user is a teacher of the class
+      const classData = await prisma.class.findFirst({
+        where: {
+          id: classId,
+          teachers: {
+            some: {
+              id: ctx.user!.id,
+            },
+          },
+        },
+      });
+      if (!classData) {
+        throw new TRPCError({
+          code: "FORBIDDEN",
+          message: "You must be a teacher of this class to rename files",
+        });
+      }
+      // Get the file
+      const file = await prisma.file.findUnique({
+        where: { id: fileId },
+        include: {
+          folder: {
+            include: {
+              class: true,
+            },
+          },
+        },
+      });
+      if (!file) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "File not found",
+        });
+      }
+      // Verify the file belongs to this class
+      if (file.folder?.classId !== classId) {
+        throw new TRPCError({
+          code: "FORBIDDEN",
+          message: "File does not belong to this class",
+        });
+      }
+      // Validate new name
+      if (!newName.trim()) {
+        throw new TRPCError({
+          code: "BAD_REQUEST",
+          message: "File name cannot be empty",
+        });
+      }
+      // Rename the file
+      const updatedFile = await prisma.file.update({
+        where: { id: fileId },
+        data: {
+          name: newName.trim(),
+        },
+        include: {
+          user: {
+            select: {
+              id: true,
+              username: true,
+            },
+          },
+        },
+      });
+      return updatedFile;
+    }),
+  delete: protectedTeacherProcedure
+    .input(z.object({
+      fileId: z.string(),
+      classId: z.string(),
+    }))
+    .mutation(async ({ ctx, input }) => {
+      const { fileId, classId } = input;
+      // Verify user is a teacher of the class
+      const classData = await prisma.class.findFirst({
+        where: {
+          id: classId,
+          teachers: {
+            some: {
+              id: ctx.user!.id,
+            },
+          },
+        },
+      });
+      if (!classData) {
+        throw new TRPCError({
+          code: "FORBIDDEN",
+          message: "You must be a teacher of this class to delete files",
         });
       }
+      // Get the file
+      const file = await prisma.file.findUnique({
+        where: { id: fileId },
+        include: {
+          folder: {
+            include: {
+              class: true,
+            },
+          },
+          thumbnail: true,
+        },
+      });
+      if (!file) {
+        throw new TRPCError({
+          code: "NOT_FOUND",
+          message: "File not found",
+        });
+      }
+      // Verify the file belongs to this class
+      if (file.folder?.classId !== classId) {
+        throw new TRPCError({
+          code: "FORBIDDEN",
+          message: "File does not belong to this class",
+        });
+      }
+      // Delete files from storage
+      try {
+        // Delete the main file
+        await deleteFile(file.path);
+        // Delete thumbnail if it exists
+        if (file.thumbnail) {
+          await deleteFile(file.thumbnail.path);
+        }
+      } catch (error) {
+        logger.warn(`Failed to delete file ${file.path}:`, error as Record<string, any>);
+      }
+      // Delete the file record from database
+      await prisma.file.delete({
+        where: { id: fileId },
+      });
+      return { success: true };
     }),
 });