feat(api/topology): pending-only child CRUD for LANs, deckies, edges

2026-04-20 19:37:16 -04:00
parent 999113e3c3
commit ff0b2efbb0
6 changed files with 678 additions and 0 deletions
--- a/decnet/web/router/topology/init.py
+++ b/decnet/web/router/topology/init.py
@@ -11,9 +11,12 @@ from fastapi import APIRouter

 from .api_catalog import router as _catalog_router
 from .api_create_topology import router as _create_router
+from .api_decky_crud import router as _decky_router
 from .api_delete_topology import router as _delete_router
 from .api_deploy_topology import router as _deploy_router
+from .api_edge_crud import router as _edge_router
 from .api_get_topology import router as _get_router
+from .api_lan_crud import router as _lan_router
 from .api_list_topologies import router as _list_router

 topology_router = APIRouter(prefix="/topologies", tags=["topologies"])
@@ -28,6 +31,9 @@ topology_router.include_router(_list_router)
 topology_router.include_router(_create_router)
 topology_router.include_router(_deploy_router)
 topology_router.include_router(_delete_router)
+topology_router.include_router(_lan_router)
+topology_router.include_router(_decky_router)
+topology_router.include_router(_edge_router)
 topology_router.include_router(_get_router)


--- a/decnet/web/router/topology/_guards.py
+++ b/decnet/web/router/topology/_guards.py
@@ -0,0 +1,53 @@
+"""Shared helpers for the Phase-3 child-CRUD routes."""
+from __future__ import annotations
+
+from typing import Any
+
+from fastapi import HTTPException
+
+from decnet.topology.status import (
+    TopologyNotEditable,
+    TopologyStatus,
+    VersionConflict,
+)
+from decnet.web.dependencies import repo
+
+
+async def get_topology_or_404(topology_id: str) -> dict[str, Any]:
+    topo = await repo.get_topology(topology_id)
+    if topo is None:
+        raise HTTPException(status_code=404, detail="Topology not found")
+    return topo
+
+
+async def assert_pending_or_409(topology_id: str) -> dict[str, Any]:
+    """Ensure the topology exists and is in ``pending`` state.
+
+    The repo layer enforces the same rule inside mutation methods, but the
+    ``add_*`` helpers don't — re-check here so every write route agrees on
+    the pre-condition before any side effect.
+    """
+    topo = await get_topology_or_404(topology_id)
+    if topo["status"] != TopologyStatus.PENDING:
+        raise HTTPException(
+            status_code=409,
+            detail=(
+                f"Topology is {topo['status']!r}; free-form child edits are "
+                f"pending-only.  Use the mutation queue for active topologies."
+            ),
+        )
+    return topo
+
+
+def map_repo_exception(exc: Exception) -> HTTPException:
+    """Translate repo-layer exceptions to HTTP status codes."""
+    if isinstance(exc, TopologyNotEditable):
+        return HTTPException(status_code=409, detail=str(exc))
+    if isinstance(exc, VersionConflict):
+        return HTTPException(
+            status_code=409,
+            detail=f"Version conflict: expected {exc.expected}, current {exc.current}",
+        )
+    if isinstance(exc, ValueError):
+        return HTTPException(status_code=400, detail=str(exc))
+    return HTTPException(status_code=500, detail="Internal error")
--- a/decnet/web/router/topology/api_decky_crud.py
+++ b/decnet/web/router/topology/api_decky_crud.py
@@ -0,0 +1,136 @@
+"""Decky CRUD endpoints — pending-only child mutations.
+
+    POST   /topologies/{id}/deckies
+    PATCH  /topologies/{id}/deckies/{uuid}
+    DELETE /topologies/{id}/deckies/{uuid}
+"""
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, HTTPException, Response, status
+
+from decnet.telemetry import traced as _traced
+from decnet.topology.status import (
+    TopologyNotEditable,
+    VersionConflict,
+)
+from decnet.web.db.models import DeckyCreateRequest, DeckyRow, DeckyUpdateRequest
+from decnet.web.dependencies import repo, require_admin
+
+from ._guards import assert_pending_or_409, map_repo_exception
+
+router = APIRouter()
+
+
+@router.post(
+    "/{topology_id}/deckies",
+    tags=["MazeNET Topologies"],
+    response_model=DeckyRow,
+    status_code=status.HTTP_201_CREATED,
+    responses={
+        400: {"description": "Malformed body or invalid decky fields"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.decky.create")
+async def api_create_decky(
+    topology_id: str,
+    body: DeckyCreateRequest,
+    _admin: dict = Depends(require_admin),
+) -> DeckyRow:
+    await assert_pending_or_409(topology_id)
+
+    payload = {
+        "topology_id": topology_id,
+        "name": body.name,
+        "services": body.services,
+        "decky_config": body.decky_config,
+        "x": body.x,
+        "y": body.y,
+    }
+    try:
+        decky_uuid = await repo.add_topology_decky(
+            payload, expected_version=body.expected_version
+        )
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+
+    rows = await repo.list_topology_deckies(topology_id)
+    row = next((r for r in rows if r["uuid"] == decky_uuid), None)
+    if row is None:  # pragma: no cover
+        raise HTTPException(status_code=500, detail="Decky insert vanished")
+    return DeckyRow(**row)
+
+
+@router.patch(
+    "/{topology_id}/deckies/{decky_uuid}",
+    tags=["MazeNET Topologies"],
+    response_model=DeckyRow,
+    responses={
+        400: {"description": "Malformed body"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology or decky not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.decky.update")
+async def api_update_decky(
+    topology_id: str,
+    decky_uuid: str,
+    body: DeckyUpdateRequest,
+    _admin: dict = Depends(require_admin),
+) -> DeckyRow:
+    await assert_pending_or_409(topology_id)
+
+    fields = body.model_dump(exclude_unset=True, exclude={"expected_version"})
+    try:
+        await repo.update_topology_decky(
+            decky_uuid,
+            fields,
+            expected_version=body.expected_version,
+            enforce_pending=True,
+        )
+    except (TopologyNotEditable, VersionConflict) as exc:
+        raise map_repo_exception(exc) from exc
+    except ValueError as exc:
+        raise HTTPException(status_code=404, detail=str(exc)) from exc
+
+    rows = await repo.list_topology_deckies(topology_id)
+    row = next((r for r in rows if r["uuid"] == decky_uuid), None)
+    if row is None:
+        raise HTTPException(status_code=404, detail="Decky not found")
+    return DeckyRow(**row)
+
+
+@router.delete(
+    "/{topology_id}/deckies/{decky_uuid}",
+    tags=["MazeNET Topologies"],
+    status_code=status.HTTP_204_NO_CONTENT,
+    responses={
+        400: {"description": "Malformed path"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology or decky not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.decky.delete")
+async def api_delete_decky(
+    topology_id: str,
+    decky_uuid: str,
+    _admin: dict = Depends(require_admin),
+) -> Response:
+    await assert_pending_or_409(topology_id)
+
+    rows = await repo.list_topology_deckies(topology_id)
+    if not any(r["uuid"] == decky_uuid for r in rows):
+        raise HTTPException(status_code=404, detail="Decky not found")
+
+    try:
+        await repo.delete_topology_decky(decky_uuid)
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+    return Response(status_code=status.HTTP_204_NO_CONTENT)
--- a/decnet/web/router/topology/api_edge_crud.py
+++ b/decnet/web/router/topology/api_edge_crud.py
@@ -0,0 +1,110 @@
+"""Edge CRUD endpoints — pending-only child mutations.
+
+    POST   /topologies/{id}/edges
+    DELETE /topologies/{id}/edges/{edge_id}
+
+Edges are the decky↔LAN membership table (bipartite).  Creating an
+edge attaches a decky to an additional LAN; deleting one detaches.
+"""
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, HTTPException, Response, status
+
+from decnet.telemetry import traced as _traced
+from decnet.topology.status import (
+    TopologyNotEditable,
+    VersionConflict,
+)
+from decnet.web.db.models import EdgeCreateRequest, EdgeRow
+from decnet.web.dependencies import repo, require_admin
+
+from ._guards import assert_pending_or_409, map_repo_exception
+
+router = APIRouter()
+
+
+@router.post(
+    "/{topology_id}/edges",
+    tags=["MazeNET Topologies"],
+    response_model=EdgeRow,
+    status_code=status.HTTP_201_CREATED,
+    responses={
+        400: {"description": "Malformed body or unknown decky/LAN"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.edge.create")
+async def api_create_edge(
+    topology_id: str,
+    body: EdgeCreateRequest,
+    _admin: dict = Depends(require_admin),
+) -> EdgeRow:
+    await assert_pending_or_409(topology_id)
+
+    # Referential integrity: decky + LAN must belong to this topology.
+    deckies = await repo.list_topology_deckies(topology_id)
+    if not any(d["uuid"] == body.decky_uuid for d in deckies):
+        raise HTTPException(
+            status_code=400,
+            detail=f"decky {body.decky_uuid!r} not in topology {topology_id!r}",
+        )
+    lans = await repo.list_lans_for_topology(topology_id)
+    if not any(r["id"] == body.lan_id for r in lans):
+        raise HTTPException(
+            status_code=400,
+            detail=f"lan {body.lan_id!r} not in topology {topology_id!r}",
+        )
+
+    payload = {
+        "topology_id": topology_id,
+        "decky_uuid": body.decky_uuid,
+        "lan_id": body.lan_id,
+        "is_bridge": body.is_bridge,
+        "forwards_l3": body.forwards_l3,
+    }
+    try:
+        edge_id = await repo.add_topology_edge(
+            payload, expected_version=body.expected_version
+        )
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+
+    edges = await repo.list_topology_edges(topology_id)
+    row = next((e for e in edges if e["id"] == edge_id), None)
+    if row is None:  # pragma: no cover
+        raise HTTPException(status_code=500, detail="Edge insert vanished")
+    return EdgeRow(**row)
+
+
+@router.delete(
+    "/{topology_id}/edges/{edge_id}",
+    tags=["MazeNET Topologies"],
+    status_code=status.HTTP_204_NO_CONTENT,
+    responses={
+        400: {"description": "Malformed path"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology or edge not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.edge.delete")
+async def api_delete_edge(
+    topology_id: str,
+    edge_id: str,
+    _admin: dict = Depends(require_admin),
+) -> Response:
+    await assert_pending_or_409(topology_id)
+
+    edges = await repo.list_topology_edges(topology_id)
+    if not any(e["id"] == edge_id for e in edges):
+        raise HTTPException(status_code=404, detail="Edge not found")
+
+    try:
+        await repo.delete_topology_edge(edge_id)
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+    return Response(status_code=status.HTTP_204_NO_CONTENT)
--- a/decnet/web/router/topology/api_lan_crud.py
+++ b/decnet/web/router/topology/api_lan_crud.py
@@ -0,0 +1,149 @@
+"""LAN CRUD endpoints — pending-only child mutations.
+
+    POST   /topologies/{id}/lans
+    PATCH  /topologies/{id}/lans/{lan_id}
+    DELETE /topologies/{id}/lans/{lan_id}
+"""
+from __future__ import annotations
+
+from fastapi import APIRouter, Depends, HTTPException, Response, status
+
+from decnet.telemetry import traced as _traced
+from decnet.topology.allocator import reserved_subnets
+from decnet.topology.status import (
+    TopologyNotEditable,
+    VersionConflict,
+)
+from decnet.web.db.models import LANCreateRequest, LANRow, LANUpdateRequest
+from decnet.web.dependencies import repo, require_admin
+
+from ._guards import assert_pending_or_409, map_repo_exception
+
+router = APIRouter()
+
+
+@router.post(
+    "/{topology_id}/lans",
+    tags=["MazeNET Topologies"],
+    response_model=LANRow,
+    status_code=status.HTTP_201_CREATED,
+    responses={
+        400: {"description": "Malformed body or invalid LAN fields"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.lan.create")
+async def api_create_lan(
+    topology_id: str,
+    body: LANCreateRequest,
+    _admin: dict = Depends(require_admin),
+) -> LANRow:
+    await assert_pending_or_409(topology_id)
+
+    subnet = body.subnet
+    if subnet is None:
+        # Mint a free /24.  The allocator scans the claimed set and hands
+        # back the next free subnet base — same logic as the catalog
+        # /next-subnet endpoint, but inlined so create is atomic.
+        from decnet.topology.allocator import SubnetAllocator
+
+        allocator = SubnetAllocator(
+            "10.0.0.0/16", reserved=await reserved_subnets(repo)
+        )
+        subnet = allocator.next_free()
+
+    payload = {
+        "topology_id": topology_id,
+        "name": body.name,
+        "subnet": subnet,
+        "is_dmz": body.is_dmz,
+        "x": body.x,
+        "y": body.y,
+    }
+    try:
+        lan_id = await repo.add_lan(
+            payload, expected_version=body.expected_version
+        )
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+
+    rows = await repo.list_lans_for_topology(topology_id)
+    row = next((r for r in rows if r["id"] == lan_id), None)
+    if row is None:  # pragma: no cover — would mean insert vanished
+        raise HTTPException(status_code=500, detail="LAN insert vanished")
+    return LANRow(**row)
+
+
+@router.patch(
+    "/{topology_id}/lans/{lan_id}",
+    tags=["MazeNET Topologies"],
+    response_model=LANRow,
+    responses={
+        400: {"description": "Malformed body or invalid LAN fields"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology or LAN not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.lan.update")
+async def api_update_lan(
+    topology_id: str,
+    lan_id: str,
+    body: LANUpdateRequest,
+    _admin: dict = Depends(require_admin),
+) -> LANRow:
+    await assert_pending_or_409(topology_id)
+
+    fields = body.model_dump(exclude_unset=True, exclude={"expected_version"})
+    try:
+        await repo.update_lan(
+            lan_id,
+            fields,
+            expected_version=body.expected_version,
+            enforce_pending=True,
+        )
+    except (TopologyNotEditable, VersionConflict) as exc:
+        raise map_repo_exception(exc) from exc
+    except ValueError as exc:
+        raise HTTPException(status_code=404, detail=str(exc)) from exc
+
+    rows = await repo.list_lans_for_topology(topology_id)
+    row = next((r for r in rows if r["id"] == lan_id), None)
+    if row is None:
+        raise HTTPException(status_code=404, detail="LAN not found")
+    return LANRow(**row)
+
+
+@router.delete(
+    "/{topology_id}/lans/{lan_id}",
+    tags=["MazeNET Topologies"],
+    status_code=status.HTTP_204_NO_CONTENT,
+    responses={
+        400: {"description": "Cannot delete: LAN has orphan-risking deckies"},
+        401: {"description": "Missing or invalid credentials"},
+        403: {"description": "Insufficient permissions"},
+        404: {"description": "Topology or LAN not found"},
+        409: {"description": "Topology not editable or version conflict"},
+    },
+)
+@_traced("api.topology.lan.delete")
+async def api_delete_lan(
+    topology_id: str,
+    lan_id: str,
+    _admin: dict = Depends(require_admin),
+) -> Response:
+    await assert_pending_or_409(topology_id)
+
+    rows = await repo.list_lans_for_topology(topology_id)
+    if not any(r["id"] == lan_id for r in rows):
+        raise HTTPException(status_code=404, detail="LAN not found")
+
+    try:
+        await repo.delete_lan(lan_id)
+    except (TopologyNotEditable, VersionConflict, ValueError) as exc:
+        raise map_repo_exception(exc) from exc
+    return Response(status_code=status.HTTP_204_NO_CONTENT)