collabdocchat 1.2.12 → 2.0.0

package/server/routes/workflows.js

@@ -0,0 +1,380 @@
+import express from 'express';
+import { Workflow, WorkflowExecution, Approval } from '../models/Workflow.js';
+import Group from '../models/Group.js';
+import workflowEngine from '../utils/workflow-engine.js';
+import { authenticate, isAdmin } from '../middleware/auth.js';
+import { asyncHandler, ValidationError, NotFoundError, AuthorizationError } from '../middleware/errorHandler.js';
+
+const router = express.Router();
+
+// 创建工作流
+router.post('/', authenticate, asyncHandler(async (req, res) => {
+  const { name, description, groupId, trigger, steps } = req.body;
+
+  if (!name || !groupId) {
+    throw new ValidationError('工作流名称和群组ID不能为空');
+  }
+
+  // 验证群组
+  const group = await Group.findById(groupId);
+  if (!group) {
+    throw new NotFoundError('群组');
+  }
+
+  // 检查权限（只有管理员可以创建工作流）
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  if (!isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('只有管理员可以创建工作流');
+  }
+
+  const workflow = new Workflow({
+    name,
+    description: description || '',
+    group: groupId,
+    creator: req.user.userId,
+    trigger: trigger || { type: 'manual' },
+    steps: steps || [],
+    status: 'draft'
+  });
+
+  await workflow.save();
+
+  res.status(201).json({
+    success: true,
+    message: '工作流创建成功',
+    data: { workflow }
+  });
+}));
+
+// 获取群组的工作流列表
+router.get('/group/:groupId', authenticate, asyncHandler(async (req, res) => {
+  const { status } = req.query;
+
+  // 验证群组
+  const group = await Group.findById(req.params.groupId);
+  if (!group) {
+    throw new NotFoundError('群组');
+  }
+
+  // 检查用户是否在群组中
+  const isMember = group.members.some(m => m.toString() === req.user.userId);
+  if (!isMember) {
+    throw new AuthorizationError('您不在该群组中');
+  }
+
+  const query = { group: req.params.groupId };
+  if (status) query.status = status;
+
+  const workflows = await Workflow.find(query)
+    .populate('creator', 'username avatar')
+    .sort({ createdAt: -1 });
+
+  res.json({
+    success: true,
+    data: { workflows }
+  });
+}));
+
+// 获取工作流详情
+router.get('/:id', authenticate, asyncHandler(async (req, res) => {
+  const workflow = await Workflow.findById(req.params.id)
+    .populate('creator', 'username avatar')
+    .populate('group', 'name');
+
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  res.json({
+    success: true,
+    data: { workflow }
+  });
+}));
+
+// 更新工作流
+router.put('/:id', authenticate, asyncHandler(async (req, res) => {
+  const { name, description, trigger, steps, status } = req.body;
+
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  // 检查权限
+  const group = await Group.findById(workflow.group);
+  const isCreator = workflow.creator.toString() === req.user.userId;
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  
+  if (!isCreator && !isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('无权编辑此工作流');
+  }
+
+  if (name) workflow.name = name;
+  if (description !== undefined) workflow.description = description;
+  if (trigger) workflow.trigger = trigger;
+  if (steps) workflow.steps = steps;
+  if (status) workflow.status = status;
+
+  await workflow.save();
+
+  res.json({
+    success: true,
+    message: '工作流更新成功',
+    data: { workflow }
+  });
+}));
+
+// 删除工作流
+router.delete('/:id', authenticate, asyncHandler(async (req, res) => {
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  // 检查权限
+  const group = await Group.findById(workflow.group);
+  const isCreator = workflow.creator.toString() === req.user.userId;
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  
+  if (!isCreator && !isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('无权删除此工作流');
+  }
+
+  await Workflow.findByIdAndDelete(req.params.id);
+
+  res.json({
+    success: true,
+    message: '工作流删除成功'
+  });
+}));
+
+// 激活工作流
+router.post('/:id/activate', authenticate, asyncHandler(async (req, res) => {
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  // 检查权限
+  const group = await Group.findById(workflow.group);
+  const isCreator = workflow.creator.toString() === req.user.userId;
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  
+  if (!isCreator && !isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('无权激活此工作流');
+  }
+
+  workflow.status = 'active';
+  await workflow.save();
+
+  res.json({
+    success: true,
+    message: '工作流已激活',
+    data: { workflow }
+  });
+}));
+
+// 停用工作流
+router.post('/:id/deactivate', authenticate, asyncHandler(async (req, res) => {
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  // 检查权限
+  const group = await Group.findById(workflow.group);
+  const isCreator = workflow.creator.toString() === req.user.userId;
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  
+  if (!isCreator && !isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('无权停用此工作流');
+  }
+
+  workflow.status = 'inactive';
+  await workflow.save();
+
+  res.json({
+    success: true,
+    message: '工作流已停用',
+    data: { workflow }
+  });
+}));
+
+// 手动触发工作流
+router.post('/:id/trigger', authenticate, asyncHandler(async (req, res) => {
+  const { triggerData } = req.body;
+
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  if (workflow.status !== 'active') {
+    throw new ValidationError('工作流未激活');
+  }
+
+  // 检查权限
+  const group = await Group.findById(workflow.group);
+  const isMember = group.members.some(m => m.toString() === req.user.userId);
+  if (!isMember) {
+    throw new AuthorizationError('您不在该群组中');
+  }
+
+  const execution = await workflowEngine.triggerWorkflow(
+    workflow._id,
+    triggerData || {},
+    req.user.userId
+  );
+
+  res.json({
+    success: true,
+    message: '工作流已触发',
+    data: { execution }
+  });
+}));
+
+// 获取工作流执行历史
+router.get('/:id/executions', authenticate, asyncHandler(async (req, res) => {
+  const { page = 1, limit = 20, status } = req.query;
+
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  const query = { workflow: req.params.id };
+  if (status) query.status = status;
+
+  const skip = (parseInt(page) - 1) * parseInt(limit);
+
+  const [executions, total] = await Promise.all([
+    WorkflowExecution.find(query)
+      .sort({ createdAt: -1 })
+      .skip(skip)
+      .limit(parseInt(limit))
+      .populate('triggeredBy', 'username avatar'),
+    WorkflowExecution.countDocuments(query)
+  ]);
+
+  res.json({
+    success: true,
+    data: {
+      executions,
+      pagination: {
+        total,
+        page: parseInt(page),
+        limit: parseInt(limit),
+        pages: Math.ceil(total / parseInt(limit))
+      }
+    }
+  });
+}));
+
+// 获取执行详情
+router.get('/executions/:executionId', authenticate, asyncHandler(async (req, res) => {
+  const execution = await WorkflowExecution.findById(req.params.executionId)
+    .populate('workflow')
+    .populate('triggeredBy', 'username avatar');
+
+  if (!execution) {
+    throw new NotFoundError('执行记录');
+  }
+
+  res.json({
+    success: true,
+    data: { execution }
+  });
+}));
+
+// 取消执行
+router.post('/executions/:executionId/cancel', authenticate, asyncHandler(async (req, res) => {
+  const execution = await WorkflowExecution.findById(req.params.executionId);
+  if (!execution) {
+    throw new NotFoundError('执行记录');
+  }
+
+  if (execution.status !== 'running' && execution.status !== 'pending') {
+    throw new ValidationError('只能取消运行中或待执行的工作流');
+  }
+
+  // 检查权限
+  const workflow = await Workflow.findById(execution.workflow);
+  const group = await Group.findById(workflow.group);
+  const isTriggeredBy = execution.triggeredBy.toString() === req.user.userId;
+  const isGroupAdmin = group.admin.toString() === req.user.userId;
+  
+  if (!isTriggeredBy && !isGroupAdmin && req.user.role !== 'admin') {
+    throw new AuthorizationError('无权取消此执行');
+  }
+
+  execution.status = 'cancelled';
+  execution.completedAt = new Date();
+  await execution.save();
+
+  res.json({
+    success: true,
+    message: '执行已取消',
+    data: { execution }
+  });
+}));
+
+// 获取待审批列表
+router.get('/approvals/pending', authenticate, asyncHandler(async (req, res) => {
+  const approvals = await Approval.find({
+    approver: req.user.userId,
+    status: 'pending'
+  })
+    .populate('workflow', 'name')
+    .populate('execution')
+    .sort({ createdAt: -1 });
+
+  res.json({
+    success: true,
+    data: { approvals }
+  });
+}));
+
+// 处理审批
+router.post('/approvals/:approvalId/decide', authenticate, asyncHandler(async (req, res) => {
+  const { decision, comment } = req.body;
+
+  if (!decision || !['approved', 'rejected'].includes(decision)) {
+    throw new ValidationError('审批决策必须是 approved 或 rejected');
+  }
+
+  const approval = await workflowEngine.handleApprovalDecision(
+    req.params.approvalId,
+    decision,
+    comment || '',
+    req.user.userId
+  );
+
+  res.json({
+    success: true,
+    message: decision === 'approved' ? '审批通过' : '审批拒绝',
+    data: { approval }
+  });
+}));
+
+// 获取工作流统计
+router.get('/:id/stats', authenticate, asyncHandler(async (req, res) => {
+  const workflow = await Workflow.findById(req.params.id);
+  if (!workflow) {
+    throw new NotFoundError('工作流');
+  }
+
+  const stats = {
+    ...workflow.stats.toObject(),
+    successRate: workflow.stats.totalExecutions > 0
+      ? (workflow.stats.successfulExecutions / workflow.stats.totalExecutions * 100).toFixed(2)
+      : 0
+  };
+
+  res.json({
+    success: true,
+    data: { stats }
+  });
+}));
+
+export default router;
+