backend/app/api/datasources.py

from typing import List, Dict, Any, Optional
from fastapi import APIRouter, HTTPException, Depends, status
from sqlalchemy.orm import Session
from app.database import get_db
from app.models.datasource import DataSource
from app.schemas.datasource import DataSourceCreate, DataSourceUpdate, DataSource as DataSourceSchema, DataSourceTestRequest
from app.core.security import get_current_user, get_admin_user, CurrentUser
from app.connectors.factory import get_connector_from_config
from pydantic import BaseModel

router = APIRouter()

@router.get("/datasources", response_model=List[DataSourceSchema])
def list_datasources(
    project_id: Optional[int] = None,
    skip: int = 0, 
    limit: int = 100, 
    db: Session = Depends(get_db),
    current_user: CurrentUser = Depends(get_current_user)
):
    query = db.query(DataSource)
    if project_id:
        query = query.filter(DataSource.project_id == project_id)
    
    # If not admin, check if user has access to the project
    if not current_user.is_admin and project_id:
        from app.models.project import Project
        project = db.query(Project).filter(Project.id == project_id).first()
        if not project or project.owner_id != current_user.id:
            raise HTTPException(status_code=403, detail="Not enough permissions for this project")

    datasources = query.offset(skip).limit(limit).all()
    
    # Hide sensitive info for non-admins if necessary, but config usually contains secrets.
    # Maybe we should return a sanitized version for regular users?
    # For now, return full config but only to admins? 
    # Or just assume the API is secure.
    # If regular users need to select datasource, they just need ID and Name.
    if not current_user.is_admin:
        # Sanitize config
        sanitized = []
        for ds in datasources:
            ds_dict = DataSourceSchema.from_orm(ds).dict()
            # Remove sensitive fields from config
            if ds_dict.get("config"):
                ds_dict["config"] = {k: v for k, v in ds_dict["config"].items() if k not in ["password", "api_key", "secret"]}
            sanitized.append(ds_dict)
        return sanitized
        
    return datasources

@router.post("/datasources", response_model=DataSourceSchema)
def create_datasource(
    datasource: DataSourceCreate, 
    db: Session = Depends(get_db),
    current_user: CurrentUser = Depends(get_current_user)
):
    # Check if project exists and user has access
    from app.models.project import Project
    project = db.query(Project).filter(Project.id == datasource.project_id).first()
    if not project:
        raise HTTPException(status_code=404, detail="Project not found")
    
    if not current_user.is_admin and project.owner_id != current_user.id:
        raise HTTPException(status_code=403, detail="Not enough permissions for this project")

    db_datasource = DataSource(**datasource.dict())
    db.add(db_datasource)
    db.commit()
    db.refresh(db_datasource)
    return db_datasource

@router.get("/datasources/{datasource_id}", response_model=DataSourceSchema)
def read_datasource(
    datasource_id: int, 
    db: Session = Depends(get_db),
    current_user: CurrentUser = Depends(get_current_user)
):
    db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()
    if db_datasource is None:
        raise HTTPException(status_code=404, detail="Data source not found")
    
    if not current_user.is_admin:
         ds_dict = DataSourceSchema.from_orm(db_datasource).dict()
         if ds_dict.get("config"):
             ds_dict["config"] = {k: v for k, v in ds_dict["config"].items() if k not in ["password", "api_key", "secret"]}
         return ds_dict
         
    return db_datasource

@router.put("/datasources/{datasource_id}", response_model=DataSourceSchema)
def update_datasource(
    datasource_id: int, 
    datasource: DataSourceUpdate, 
    db: Session = Depends(get_db),
    _: CurrentUser = Depends(get_admin_user)
):
    db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()
    if db_datasource is None:
        raise HTTPException(status_code=404, detail="Data source not found")
    
    update_data = datasource.dict(exclude_unset=True)
    for key, value in update_data.items():
        setattr(db_datasource, key, value)
    
    db.commit()
    db.refresh(db_datasource)
    return db_datasource

@router.delete("/datasources/{datasource_id}")
def delete_datasource(
    datasource_id: int, 
    db: Session = Depends(get_db),
    _: CurrentUser = Depends(get_admin_user)
):
    db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()
    if db_datasource is None:
        raise HTTPException(status_code=404, detail="Data source not found")
    
    db.delete(db_datasource)
    db.commit()
    return {"ok": True}

@router.post("/datasources/test")
def test_datasource_connection(
    request: DataSourceTestRequest,
    _: CurrentUser = Depends(get_admin_user)
):
    try:
        connector = get_connector_from_config(request.type, request.config)
        if connector.test_connection():
            return {"success": True, "message": "Connection successful"}
        else:
             raise HTTPException(status_code=400, detail="Connection failed")
    except Exception as e:
        import traceback
        import sys
        print(f"Datasource Test Error: {str(e)}\n{traceback.format_exc()}", file=sys.stderr)
        raise HTTPException(status_code=400, detail=f"Connection failed: {str(e)}")
feat: add project 2026-03-16 16:12:35 +08:00			`from typing import List, Dict, Any, Optional`
feat: add data source 2026-03-15 19:36:02 +08:00			`from fastapi import APIRouter, HTTPException, Depends, status`
			`from sqlalchemy.orm import Session`
			`from app.database import get_db`
			`from app.models.datasource import DataSource`
			`from app.schemas.datasource import DataSourceCreate, DataSourceUpdate, DataSource as DataSourceSchema, DataSourceTestRequest`
feat: add project 2026-03-16 16:12:35 +08:00			`from app.core.security import get_current_user, get_admin_user, CurrentUser`
feat: add data source 2026-03-15 19:36:02 +08:00			`from app.connectors.factory import get_connector_from_config`
			`from pydantic import BaseModel`

			`router = APIRouter()`

			`@router.get("/datasources", response_model=List[DataSourceSchema])`
			`def list_datasources(`
feat: add project 2026-03-16 16:12:35 +08:00			`project_id: Optional[int] = None,`
feat: add data source 2026-03-15 19:36:02 +08:00			`skip: int = 0,`
			`limit: int = 100,`
			`db: Session = Depends(get_db),`
			`current_user: CurrentUser = Depends(get_current_user)`
			`):`
feat: add project 2026-03-16 16:12:35 +08:00			`query = db.query(DataSource)`
			`if project_id:`
			`query = query.filter(DataSource.project_id == project_id)`

			`# If not admin, check if user has access to the project`
			`if not current_user.is_admin and project_id:`
			`from app.models.project import Project`
			`project = db.query(Project).filter(Project.id == project_id).first()`
			`if not project or project.owner_id != current_user.id:`
			`raise HTTPException(status_code=403, detail="Not enough permissions for this project")`

			`datasources = query.offset(skip).limit(limit).all()`
feat: add data source 2026-03-15 19:36:02 +08:00
			`# Hide sensitive info for non-admins if necessary, but config usually contains secrets.`
			`# Maybe we should return a sanitized version for regular users?`
			`# For now, return full config but only to admins?`
			`# Or just assume the API is secure.`
			`# If regular users need to select datasource, they just need ID and Name.`
			`if not current_user.is_admin:`
			`# Sanitize config`
			`sanitized = []`
			`for ds in datasources:`
			`ds_dict = DataSourceSchema.from_orm(ds).dict()`
			`# Remove sensitive fields from config`
			`if ds_dict.get("config"):`
			`ds_dict["config"] = {k: v for k, v in ds_dict["config"].items() if k not in ["password", "api_key", "secret"]}`
			`sanitized.append(ds_dict)`
			`return sanitized`

			`return datasources`

			`@router.post("/datasources", response_model=DataSourceSchema)`
			`def create_datasource(`
			`datasource: DataSourceCreate,`
			`db: Session = Depends(get_db),`
feat: add project 2026-03-16 16:12:35 +08:00			`current_user: CurrentUser = Depends(get_current_user)`
feat: add data source 2026-03-15 19:36:02 +08:00			`):`
feat: add project 2026-03-16 16:12:35 +08:00			`# Check if project exists and user has access`
			`from app.models.project import Project`
			`project = db.query(Project).filter(Project.id == datasource.project_id).first()`
			`if not project:`
			`raise HTTPException(status_code=404, detail="Project not found")`

			`if not current_user.is_admin and project.owner_id != current_user.id:`
			`raise HTTPException(status_code=403, detail="Not enough permissions for this project")`

feat: add data source 2026-03-15 19:36:02 +08:00			`db_datasource = DataSource(**datasource.dict())`
			`db.add(db_datasource)`
			`db.commit()`
			`db.refresh(db_datasource)`
			`return db_datasource`

			`@router.get("/datasources/{datasource_id}", response_model=DataSourceSchema)`
			`def read_datasource(`
			`datasource_id: int,`
			`db: Session = Depends(get_db),`
			`current_user: CurrentUser = Depends(get_current_user)`
			`):`
			`db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()`
			`if db_datasource is None:`
			`raise HTTPException(status_code=404, detail="Data source not found")`

			`if not current_user.is_admin:`
			`ds_dict = DataSourceSchema.from_orm(db_datasource).dict()`
			`if ds_dict.get("config"):`
			`ds_dict["config"] = {k: v for k, v in ds_dict["config"].items() if k not in ["password", "api_key", "secret"]}`
			`return ds_dict`

			`return db_datasource`

			`@router.put("/datasources/{datasource_id}", response_model=DataSourceSchema)`
			`def update_datasource(`
			`datasource_id: int,`
			`datasource: DataSourceUpdate,`
			`db: Session = Depends(get_db),`
			`_: CurrentUser = Depends(get_admin_user)`
			`):`
			`db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()`
			`if db_datasource is None:`
			`raise HTTPException(status_code=404, detail="Data source not found")`

			`update_data = datasource.dict(exclude_unset=True)`
			`for key, value in update_data.items():`
			`setattr(db_datasource, key, value)`

			`db.commit()`
			`db.refresh(db_datasource)`
			`return db_datasource`

			`@router.delete("/datasources/{datasource_id}")`
			`def delete_datasource(`
			`datasource_id: int,`
			`db: Session = Depends(get_db),`
			`_: CurrentUser = Depends(get_admin_user)`
			`):`
			`db_datasource = db.query(DataSource).filter(DataSource.id == datasource_id).first()`
			`if db_datasource is None:`
			`raise HTTPException(status_code=404, detail="Data source not found")`

			`db.delete(db_datasource)`
			`db.commit()`
			`return {"ok": True}`

			`@router.post("/datasources/test")`
			`def test_datasource_connection(`
			`request: DataSourceTestRequest,`
			`_: CurrentUser = Depends(get_admin_user)`
			`):`
			`try:`
			`connector = get_connector_from_config(request.type, request.config)`
			`if connector.test_connection():`
			`return {"success": True, "message": "Connection successful"}`
			`else:`
			`raise HTTPException(status_code=400, detail="Connection failed")`
			`except Exception as e:`
feat: add supabase db 2026-03-21 20:28:02 +08:00			`import traceback`
			`import sys`
			`print(f"Datasource Test Error: {str(e)}\n{traceback.format_exc()}", file=sys.stderr)`
feat: add data source 2026-03-15 19:36:02 +08:00			`raise HTTPException(status_code=400, detail=f"Connection failed: {str(e)}")`