use actix_web::{HttpResponse, web}; use serde::Deserialize; use utoipa::IntoParams; use crate::api::response::{ApiErrorResponse, ApiResponse}; use crate::error::AppError; use crate::service::AppService; use crate::session::Session; #[derive(Debug, Deserialize, IntoParams)] pub struct PathParams { /// Workspace name (unique identifier) pub workspace_name: String, /// Repository name (unique within the workspace) pub repo_name: String, /// Invitation ID (UUID) pub invitation_id: uuid::Uuid, } /// Revoke a repository invitation /// /// Cancels a pending invitation, preventing the invitee from accepting it. /// Requires Admin role or higher in the repository. /// /// Effects: /// - Invitation is marked as revoked /// - Invitee can no longer accept the invitation /// - Invitation email link becomes invalid /// /// Returns success message on completion. #[utoipa::path( delete, path = "/api/v1/workspaces/{workspace_name}/repos/{repo_name}/invitations/{invitation_id}", tag = "Repos", operation_id = "repoRevokeInvitation", params(PathParams), responses( (status = 200, description = "Invitation revoked successfully.", body = ApiResponse), (status = 401, description = "Authentication required or session expired", body = ApiErrorResponse), (status = 403, description = "Insufficient permissions (requires Admin role or higher)", body = ApiErrorResponse), (status = 404, description = "Repository, workspace, or invitation not found", body = ApiErrorResponse), (status = 500, description = "Internal server error", body = ApiErrorResponse), ), security( ("session_cookie" = []) ) )] pub async fn revoke_invitation( service: web::Data, session: Session, path: web::Path, ) -> Result { service .repo .repo_revoke_invitation( &session, &path.workspace_name, &path.repo_name, path.invitation_id, ) .await?; Ok(HttpResponse::Ok().json(ApiResponse::new( "Invitation revoked successfully".to_string(), ))) }