refactor: rebuild backend around role-site authorization model

2026-04-02 23:58:13 +08:00
parent 0bc667847d
commit 2f92b94f59
43 changed files with 1593 additions and 2257 deletions
--- a/app/repositories/systems_repo.py
+++ b/app/repositories/systems_repo.py
@@ -1,4 +1,4 @@
-from sqlalchemy import func, select
+from sqlalchemy import func, or_, select
 from sqlalchemy.orm import Session

 from app.models.system import System
@@ -9,34 +9,51 @@ class SystemsRepository:
        self.db = db

    def get_by_key(self, system_key: str) -> System | None:
-        stmt = select(System).where(System.system_key == system_key)
-        return self.db.scalar(stmt)
+        return self.db.scalar(select(System).where(System.system_key == system_key))

    def get_by_id(self, system_id: str) -> System | None:
-        stmt = select(System).where(System.id == system_id)
-        return self.db.scalar(stmt)
+        return self.db.scalar(select(System).where(System.id == system_id))

-    def list(self, status: str | None = None, limit: int = 100, offset: int = 0) -> tuple[list[System], int]:
+    def list(self, *, keyword: str | None = None, status: str | None = None, limit: int = 100, offset: int = 0) -> tuple[list[System], int]:
        stmt = select(System)
        count_stmt = select(func.count()).select_from(System)
+        if keyword:
+            pattern = f"%{keyword}%"
+            cond = or_(System.system_key.ilike(pattern), System.name.ilike(pattern), System.idp_client_id.ilike(pattern))
+            stmt = stmt.where(cond)
+            count_stmt = count_stmt.where(cond)
        if status:
            stmt = stmt.where(System.status == status)
            count_stmt = count_stmt.where(System.status == status)
+
        stmt = stmt.order_by(System.created_at.desc()).limit(limit).offset(offset)
        return list(self.db.scalars(stmt).all()), int(self.db.scalar(count_stmt) or 0)

-    def create(self, system_key: str, name: str, status: str = "active") -> System:
-        item = System(system_key=system_key, name=name, status=status)
+    def create(self, *, system_key: str, name: str, idp_client_id: str, status: str = "active") -> System:
+        item = System(system_key=system_key, name=name, idp_client_id=idp_client_id, status=status)
        self.db.add(item)
        self.db.commit()
        self.db.refresh(item)
        return item

-    def update(self, item: System, *, name: str | None = None, status: str | None = None) -> System:
+    def update(
+        self,
+        item: System,
+        *,
+        name: str | None = None,
+        idp_client_id: str | None = None,
+        status: str | None = None,
+    ) -> System:
        if name is not None:
            item.name = name
+        if idp_client_id is not None:
+            item.idp_client_id = idp_client_id
        if status is not None:
            item.status = status
        self.db.commit()
        self.db.refresh(item)
        return item
+
+    def delete(self, item: System) -> None:
+        self.db.delete(item)
+        self.db.commit()