use actix_web::{HttpResponse, web}; use serde::Deserialize; use utoipa::IntoParams; use crate::api::response::{ApiErrorResponse, ApiResponse}; use crate::error::AppError; use crate::service::AppService; use crate::session::Session; #[derive(Debug, Deserialize, IntoParams)] pub struct PathParams { /// Workspace name (unique identifier) pub workspace_name: String, /// Repository name (unique within the workspace) pub repo_name: String, /// Deploy key ID (UUID) pub key_id: uuid::Uuid, } /// Delete a deploy key from a repository /// /// Removes an SSH deploy key from the repository, revoking its access. /// Requires Admin role or higher in the repository. /// /// Effects: /// - Deploy key is permanently removed from the repository /// - Key can no longer be used for Git operations /// - Automated systems using this key will lose access /// /// Returns success message on completion. #[utoipa::path( delete, path = "/api/v1/workspaces/{workspace_name}/repos/{repo_name}/deploy-keys/{key_id}", tag = "Repos", operation_id = "repoDeleteDeployKey", params(PathParams), responses( (status = 200, description = "Deploy key deleted successfully.", body = ApiResponse), (status = 401, description = "Authentication required or session expired", body = ApiErrorResponse), (status = 403, description = "Insufficient permissions (requires Admin role or higher)", body = ApiErrorResponse), (status = 404, description = "Repository, workspace, or deploy key not found", body = ApiErrorResponse), (status = 500, description = "Internal server error", body = ApiErrorResponse), ), security( ("session_cookie" = []) ) )] pub async fn delete_deploy_key( service: web::Data, session: Session, path: web::Path, ) -> Result { service .repo .repo_delete_deploy_key(&session, &path.workspace_name, &path.repo_name, path.key_id) .await?; Ok(HttpResponse::Ok().json(ApiResponse::new( "Deploy key deleted successfully".to_string(), ))) }