yuvabe-dev

Sleeping

App Files Files Community

yuvabe-dev / src /profile /router.py

Hp137

fix:payslip bug

310c607 17 days ago

raw

history blame contribute delete

20.7 kB

	from src.profile.schemas import UpdateProfileRequest
	from uuid import UUID
	from src.core.models import Assets
	from src.profile.schemas import AssetResponse
	from src.profile.schemas import LeaveDetailResponse
	from src.core.database import get_async_session
	from src.auth.utils import get_current_user
	from src.notifications.service import get_user_device_tokens
	from src.notifications.fcm import send_fcm
	from src.profile.models import Leave, LeaveType, LeaveStatus
	from src.auth.schemas import BaseResponse
	from sqlalchemy import desc
	from sqlalchemy.ext.asyncio.session import AsyncSession
	from fastapi.params import Depends
	from src.core.models import Users, Teams, Roles, UserTeamsRole
	from fastapi import APIRouter, Query, HTTPException, BackgroundTasks
	from fastapi.responses import RedirectResponse, JSONResponse
	from fastapi import APIRouter, Depends, HTTPException, status
	from sqlmodel.ext.asyncio.session import AsyncSession
	from src.auth.utils import get_current_user # adjust path
	from fastapi import APIRouter, Depends, HTTPException
	from sqlalchemy.ext.asyncio import AsyncSession
	from sqlmodel import select
	import uuid
	from src.core.models import Users
	from src.profile.schemas import (
	CreateLeaveRequest,
	LeaveResponse,
	ApproveRejectRequest,
	)
	from sqlalchemy import desc

	from datetime import datetime
	from src.profile.service import create_leave, mentor_decide_leave


	router = APIRouter(prefix="/profile", tags=["Profile"])


	@router.post("/request", response_model=LeaveResponse)
	async def request_leave_route(
	body: CreateLeaveRequest,
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	# convert user_id string -> UUID if needed
	try:
	user_uuid = uuid.UUID(user_id)
	except ValueError:
	raise HTTPException(status_code=400, detail="Invalid user id format")

	leave = await create_leave(session, user_uuid, body)

	return LeaveResponse(
	id=str(leave.id),
	leave_type=leave.leave_type,
	from_date=leave.from_date,
	to_date=leave.to_date,
	days=leave.days,
	reason=leave.reason,
	status=leave.status,
	mentor_id=str(leave.mentor_id),
	lead_id=str(leave.lead_id),
	)


	@router.post("/{leave_id}/mentor-decision", response_model=LeaveResponse)
	async def mentor_decision_route(
	leave_id: str,
	body: ApproveRejectRequest,
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	# validate leave_id + user_id UUIDs
	try:
	leave_uuid = uuid.UUID(leave_id)
	mentor_uuid = uuid.UUID(user_id)
	except ValueError:
	raise HTTPException(status_code=400, detail="Invalid UUID")

	# If rejected, comment must be provided
	if body.status == LeaveStatus.REJECTED and not body.comment:
	raise HTTPException(
	status_code=400,
	detail="Comment is required when rejecting leave",
	)

	try:
	leave = await mentor_decide_leave(session, mentor_uuid, leave_uuid, body)
	except PermissionError as e:
	raise HTTPException(status_code=403, detail=str(e))
	except ValueError as e:
	raise HTTPException(status_code=404, detail=str(e))

	return LeaveResponse(
	id=str(leave.id),
	leave_type=leave.leave_type,
	from_date=leave.from_date,
	to_date=leave.to_date,
	days=leave.days,
	reason=leave.reason,
	status=leave.status,
	mentor_id=str(leave.mentor_id),
	lead_id=str(leave.lead_id),
	)


	SICK_LIMIT = 10
	CASUAL_LIMIT = 10


	@router.get("/balance")
	async def get_leave_balance(
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	stmt = select(Leave).where(
	Leave.user_id == user_id, Leave.status == LeaveStatus.APPROVED
	)
	results = (await session.exec(stmt)).all()

	sick_used = sum(1 for l in results if l.leave_type == LeaveType.SICK)
	casual_used = sum(1 for l in results if l.leave_type == LeaveType.CASUAL)

	sick_remaining = SICK_LIMIT - sick_used
	casual_remaining = CASUAL_LIMIT - casual_used

	return {
	"code": 200,
	"message": "success",
	"data": {
	"sick_remaining": sick_remaining,
	"casual_remaining": casual_remaining,
	},
	}


	@router.get("/balance/{user_id}")
	async def get_leave_balance_for_user(
	user_id: str,
	session: AsyncSession = Depends(get_async_session),
	):
	stmt = select(Leave).where(
	Leave.user_id == user_id, Leave.status == LeaveStatus.APPROVED
	)
	results = (await session.exec(stmt)).all()

	sick_used = sum(1 for l in results if l.leave_type == LeaveType.SICK)
	casual_used = sum(1 for l in results if l.leave_type == LeaveType.CASUAL)

	sick_remaining = SICK_LIMIT - sick_used
	casual_remaining = CASUAL_LIMIT - casual_used

	return {
	"code": 200,
	"message": "success",
	"data": {
	"sick_remaining": sick_remaining,
	"casual_remaining": casual_remaining,
	},
	}


	@router.get("/notifications")
	async def list_notifications(
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):

	stmt = (
	select(Leave)
	.where(
	(Leave.user_id == user_id)
	\| (Leave.mentor_id == user_id)
	\| (Leave.lead_id == user_id)
	)
	.order_by(desc(Leave.updated_at))
	)

	results = (await session.exec(stmt)).all()

	notifications = []

	for leave in results:
	if leave.user_id == user_id:
	# user = leave owner
	title = f"Your leave was {leave.status}"
	body = f"{leave.leave_type} from {leave.from_date} to {leave.to_date}"
	elif leave.mentor_id == user_id:
	# mentor receives new leave request
	title = "New Leave Request"
	body = f"{leave.leave_type} requested by user"
	elif leave.lead_id == user_id:
	# lead receives updates
	title = f"Leave {leave.status}"
	body = f"{leave.leave_type} for user updated"
	else:
	title = "Leave Update"
	body = leave.reason or ""

	notifications.append(
	{
	"id": str(leave.id),
	"mentor_id": str(leave.mentor_id),
	"lead_id": str(leave.lead_id),
	"title": title,
	"body": body,
	"type": leave.status,
	"updated_at": leave.updated_at.isoformat(),
	"leave_type": leave.leave_type,
	"from_date": str(leave.from_date),
	"to_date": str(leave.to_date),
	"reject_reason": leave.reject_reason,
	"reason": leave.reason,
	"is_read": leave.is_read,
	}
	)

	return {"code": 200, "data": notifications}


	@router.get("/leave/{leave_id}", response_model=LeaveDetailResponse)
	async def get_leave_details(
	leave_id: str,
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	# Join Leave + Users table to get user_name
	stmt = (
	select(Leave, Users.user_name)
	.join(Users, Users.id == Leave.user_id)
	.where(Leave.id == uuid.UUID(leave_id))
	)

	row = (await session.exec(stmt)).first()

	if not row:
	raise HTTPException(status_code=404, detail="Leave not found")

	leave, user_name = row

	return {
	"code": 200,
	"data": {
	"id": str(leave.id),
	"user_id": str(leave.user_id),
	"user_name": user_name,
	"mentor_id": str(leave.mentor_id),
	"lead_id": str(leave.lead_id),
	"leave_type": leave.leave_type,
	"from_date": leave.from_date.isoformat(),
	"to_date": leave.to_date.isoformat(),
	"days": leave.days,
	"reason": leave.reason,
	"status": leave.status,
	"reject_reason": leave.reject_reason,
	"updated_at": leave.updated_at.isoformat() if leave.updated_at else None,
	},
	}


	@router.get("/mentor/pending")
	async def mentor_pending_leaves(
	session: AsyncSession = Depends(get_async_session),
	mentor_id: str = Depends(get_current_user),
	):
	mentor_uuid = uuid.UUID(mentor_id)

	print("🔥 mentor pending called for:", mentor_id)

	mentor_team = (
	await session.exec(
	select(UserTeamsRole).where(UserTeamsRole.user_id == mentor_uuid)
	)
	).first()

	if not mentor_team:
	raise HTTPException(404, "Mentor has no team")

	team_users = (
	await session.exec(
	select(UserTeamsRole.user_id).where(
	UserTeamsRole.team_id == mentor_team.team_id
	)
	)
	).all()

	team_user_ids = [u for u in team_users]

	stmt = (
	select(Leave, Users.user_name)
	.join(Users, Users.id == Leave.user_id)
	.where(
	Leave.user_id.in_(team_user_ids),
	Leave.status == LeaveStatus.PENDING,
	)
	.order_by(desc(Leave.updated_at))
	)

	rows = (await session.exec(stmt)).all()

	result = []

	for leave, user_name in rows:
	result.append(
	LeaveResponse(
	id=str(leave.id),
	leave_type=leave.leave_type,
	from_date=leave.from_date.isoformat(),
	to_date=leave.to_date.isoformat(),
	days=leave.days,
	reason=leave.reason,
	status=(
	leave.status.value
	if hasattr(leave.status, "value")
	else leave.status
	),
	mentor_id=str(leave.mentor_id),
	lead_id=str(leave.lead_id),
	user_name=user_name,
	updated_at=(leave.updated_at.isoformat() if leave.updated_at else None),
	)
	)

	return {"code": 200, "data": result}


	@router.get("/my-leaves")
	async def my_leave_history(
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	stmt = (
	select(Leave, Users.user_name, Users.email_id)
	.join(Users, Users.id == Leave.mentor_id, isouter=True)
	.where(Leave.user_id == uuid.UUID(user_id))
	.order_by(desc(Leave.updated_at))
	)

	rows = (await session.exec(stmt)).all()

	result = []
	for leave, mentor_name, mentor_email in rows:
	result.append(
	{
	"id": str(leave.id),
	"leave_type": leave.leave_type,
	"from_date": leave.from_date.isoformat(),
	"to_date": leave.to_date.isoformat(),
	"days": leave.days,
	"reason": leave.reason,
	"status": leave.status,
	"mentor_name": mentor_name,
	"updated_at": (
	leave.updated_at.isoformat() if leave.updated_at else None
	),
	}
	)

	return {"code": 200, "data": result}


	@router.get("/mentor/team-leaves")
	async def team_leave_history(
	session: AsyncSession = Depends(get_async_session),
	mentor_id: str = Depends(get_current_user),
	):
	stmt = (
	select(Leave, Users.user_name)
	.join(Users, Users.id == Leave.user_id)
	.where(Leave.mentor_id == uuid.UUID(mentor_id))
	.order_by(desc(Leave.updated_at))
	)

	rows = (await session.exec(stmt)).all()

	result = []
	for leave, username in rows:
	result.append(
	{
	"id": str(leave.id),
	"user_name": username,
	"leave_type": leave.leave_type,
	"from_date": leave.from_date.isoformat(),
	"to_date": leave.to_date.isoformat(),
	"days": leave.days,
	"reason": leave.reason,
	"status": leave.status,
	"updated_at": (
	leave.updated_at.isoformat() if leave.updated_at else None
	),
	}
	)

	return {"code": 200, "data": result}


	@router.get("/contacts", response_model=BaseResponse)
	async def get_leave_contacts(
	current_user=Depends(get_current_user),
	session: AsyncSession = Depends(get_async_session),
	):
	# get_current_user returns a STRING user_id
	user_id = current_user

	if not user_id:
	raise HTTPException(status_code=400, detail="Invalid user token")

	# 1) Get user's team
	stmt = select(UserTeamsRole).where(UserTeamsRole.user_id == user_id)
	ut = (await session.exec(stmt)).first()

	if not ut:
	raise HTTPException(status_code=404, detail="User-Team mapping not found")

	# 2) Get Team Lead role
	lead_role = (
	await session.exec(select(Roles).where(Roles.name == "Team Lead"))
	).first()

	if not lead_role:
	raise HTTPException(status_code=500, detail="Team Lead role not found")

	# 3) Find Team Lead user in same team
	lead_user = (
	await session.exec(
	select(Users)
	.join(UserTeamsRole)
	.where(UserTeamsRole.team_id == ut.team_id)
	.where(UserTeamsRole.role_id == lead_role.id)
	)
	).all()

	if not lead_user:
	raise HTTPException(status_code=404, detail="Team lead not found")

	to_email = ", ".join([u.email_id for u in lead_user])

	# 4) HR CC emails
	hr_team = (await session.exec(select(Teams).where(Teams.name == "HR Team"))).first()

	cc = []
	if hr_team:
	hr_users = (
	await session.exec(
	select(Users)
	.join(UserTeamsRole)
	.where(UserTeamsRole.team_id == hr_team.id)
	)
	).all()

	cc = [str(row.email_id) for row in hr_users]

	return BaseResponse(code=200, message="success", data={"to": to_email, "cc": cc})


	@router.get("/details", response_model=BaseResponse)
	async def get_profile_details(
	current_user=Depends(get_current_user),
	session: AsyncSession = Depends(get_async_session),
	):
	user_id = current_user

	# 1) Get the user
	user = await session.get(Users, user_id)
	if not user:
	raise HTTPException(status_code=404, detail="User not found")

	# 2) Get user's team mapping
	user_team = (
	await session.exec(
	select(UserTeamsRole).where(UserTeamsRole.user_id == user_id)
	)
	).first()

	if not user_team:
	raise HTTPException(status_code=404, detail="User does not belong to any team")

	# 3) Get team name
	team = await session.get(Teams, user_team.team_id)

	# 4) Find mentor (team lead)
	lead_role = (
	await session.exec(select(Roles).where(Roles.name == "Mentor"))
	).first()

	mentor_users = (
	await session.exec(
	select(Users)
	.join(UserTeamsRole)
	.where(UserTeamsRole.team_id == user_team.team_id)
	.where(UserTeamsRole.role_id == lead_role.id)
	)
	).all()

	mentor_names = [u.user_name for u in mentor_users]
	mentor_emails = [u.email_id for u in mentor_users]

	return BaseResponse(
	code=200,
	message="success",
	data={
	"name": user.user_name,
	"email": user.email_id,
	"team_name": team.name,
	"mentor_name": ", ".join(mentor_names),
	"mentor_email": ", ".join(mentor_emails),
	"join_date": user.join_date,
	},
	)


	@router.post("/leave/{leave_id}/cancel")
	async def cancel_leave(
	leave_id: str,
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	leave = await session.get(Leave, uuid.UUID(leave_id))

	if not leave:
	raise HTTPException(status_code=404, detail="Leave not found")

	# User must own this leave
	if str(leave.user_id) != user_id:
	raise HTTPException(status_code=403, detail="Not your leave")

	# Only approved leaves can be cancelled
	if leave.status not in [LeaveStatus.APPROVED, LeaveStatus.PENDING]:
	raise HTTPException(
	status_code=400,
	detail="Only pending or approved leaves can be cancelled",
	)

	# Check if leave date is future
	from datetime import date

	if leave.from_date <= date.today():
	raise HTTPException(
	status_code=400,
	detail="Past or current day leaves cannot be cancelled",
	)

	# Update leave status
	leave.status = LeaveStatus.CANCELLED
	leave.updated_at = datetime.utcnow()
	await session.commit()

	user = await session.get(Users, leave.user_id)

	# Notify mentor
	mentor_tokens = await get_user_device_tokens(session, leave.mentor_id)
	await send_fcm(
	mentor_tokens,
	"Leave Cancelled",
	f"{user.user_name} cancelled their approved leave.",
	{"type": "leave_cancel", "leave_id": str(leave.id)},
	)

	# Notify Team Lead
	lead_tokens = await get_user_device_tokens(session, leave.lead_id)
	await send_fcm(
	lead_tokens,
	"Leave Cancelled",
	f"User {user.user_name} cancelled their approved leave.",
	{"type": "leave_cancel", "leave_id": str(leave.id)},
	)

	return {
	"code": 200,
	"message": "Leave cancelled successfully",
	"data": {
	"id": str(leave.id),
	"status": leave.status,
	},
	}


	@router.get("/assets", response_model=BaseResponse)
	async def get_profile(
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	# Fetch User
	result = await session.exec(select(Users).where(Users.id == UUID(user_id)))
	user = result.first()

	if not user:
	raise HTTPException(status_code=404, detail="User not found")

	# Fetch Assets for logged-in user
	assets_result = await session.exec(select(Assets).where(Assets.user_id == user.id))
	assets = assets_result.all()

	# Convert SQL rows → Pydantic
	assets_dto = [
	AssetResponse(
	id=a.id,
	user_id=a.user_id,
	name=a.name,
	type=a.type,
	status=a.status,
	)
	for a in assets
	]

	return BaseResponse(
	code=200,
	data={
	"user_id": str(user.id),
	"email": user.email_id,
	"name": user.user_name,
	"assets": assets_dto,
	},
	)


	@router.put("/update-profile", response_model=BaseResponse)
	async def update_profile(
	body: UpdateProfileRequest,
	session: AsyncSession = Depends(get_async_session),
	user_id: str = Depends(get_current_user),
	):
	# Get logged-in user
	user = await session.get(Users, user_id)
	if not user:
	raise HTTPException(status_code=404, detail="User not found")

	# --- Update basic profile fields ---
	if body.name is not None:
	user.user_name = body.name

	if body.email is not None:
	user.email_id = body.email

	if body.dob is not None:
	dob_str = body.dob.replace(".", "-") # convert dots to dashes
	try:
	user.dob = datetime.strptime(dob_str, "%Y-%m-%d").date()
	except ValueError:
	raise HTTPException(
	status_code=400, detail="DOB must be YYYY-MM-DD or YYYY.MM.DD"
	)

	if body.address is not None:
	user.address = body.address # ensure DB has this column

	# --- Handle password update ---
	if body.current_password and body.new_password:
	# Check current password matches
	from src.auth.utils import verify_password, hash_password

	if not verify_password(body.current_password, user.password):
	raise HTTPException(
	status_code=400,
	detail="Current password is incorrect",
	)

	# update password
	user.password = hash_password(body.new_password)

	elif body.new_password and not body.current_password:
	raise HTTPException(
	status_code=400,
	detail="Current password is required to set new password",
	)

	# Save
	await session.commit()
	await session.refresh(user)

	# Response matches frontend expectation
	return BaseResponse(
	code=200,
	data={
	"user": {
	"id": str(user.id),
	"name": user.user_name,
	"email": user.email_id,
	"dob": getattr(user, "dob", None),
	"address": getattr(user, "address", None),
	}
	},
	)