use actix_web::{HttpResponse, web}; use uuid::Uuid; use crate::api::response::{ApiErrorResponse, ApiResponse}; use crate::error::AppError; use crate::models::workspaces::WorkspaceMember; use crate::service::AppService; use crate::service::workspace::members::UpdateMemberRoleParams; use crate::session::Session; #[utoipa::path( put, path = "/api/v1/workspaces/{workspace_name}/members/{member_id}/role", tag = "Workspaces", operation_id = "workspaceUpdateMemberRole", summary = "Update a member's role", description = "Change the role of a workspace member. Requires admin role. Cannot change owner role; use transfer-owner instead.", params( ("workspace_name" = String, Path, description = "Workspace name."), ("member_id" = Uuid, Path, description = "Member record ID.") ), request_body( content = UpdateMemberRoleParams, description = "New role value.", content_type = "application/json" ), responses( (status = 200, description = "Member role updated.", body = ApiResponse), (status = 400, description = "Invalid role, cannot change owner, or insufficient role.", body = ApiErrorResponse), (status = 401, description = "Unauthenticated or insufficient role.", body = ApiErrorResponse), (status = 404, description = "Member not found.", body = ApiErrorResponse), (status = 500, description = "Database transaction failed.", body = ApiErrorResponse) ) )] pub async fn handle( service: web::Data, session: Session, path: web::Path<(String, Uuid)>, params: web::Json, ) -> Result { let (ws_name, member_id) = path.into_inner(); let ws = service.workspace.find_workspace_by_name(&ws_name).await?; let data = service .workspace .workspace_update_member_role(&session, &ws, member_id, params.into_inner()) .await?; Ok(HttpResponse::Ok().json(ApiResponse::new(data))) }