appks/api/workspace/review_approval.rs

use actix_web::{HttpResponse, web};
use serde::{Deserialize, Serialize};
use uuid::Uuid;

use crate::api::response::{ApiEmptyResponse, ApiErrorResponse};
use crate::error::AppError;
use crate::service::AppService;
use crate::session::Session;

#[derive(Deserialize, Serialize, utoipa::ToSchema)]
pub struct ReviewApprovalRequest {
    /// true to approve, false to reject.
    pub approved: bool,
}

#[utoipa::path(
    put,
    path = "/api/v1/workspaces/{workspace_name}/approvals/{approval_id}",
    tag = "Workspaces",
    operation_id = "workspaceReviewApproval",
    summary = "Review an approval request",
    description = "Approve or reject a pending approval request. Requires owner role.",
    params(
        ("workspace_name" = String, Path, description = "Workspace name."),
        ("approval_id" = Uuid, Path, description = "Approval record ID.")
    ),
    request_body(
        content = ReviewApprovalRequest,
        description = "Whether to approve or reject.",
        content_type = "application/json"
    ),
    responses(
        (status = 200, description = "Approval reviewed.", body = ApiEmptyResponse),
        (status = 401, description = "Unauthenticated or insufficient role.", body = ApiErrorResponse),
        (status = 404, description = "Approval not found or already reviewed.", body = ApiErrorResponse),
        (status = 500, description = "Database transaction failed.", body = ApiErrorResponse)
    )
)]
pub async fn handle(
    service: web::Data<AppService>,
    session: Session,
    path: web::Path<(String, Uuid)>,
    params: web::Json<ReviewApprovalRequest>,
) -> Result<HttpResponse, AppError> {
    let (ws_name, approval_id) = path.into_inner();
    let ws = service.workspace.find_workspace_by_name(&ws_name).await?;
    service
        .workspace
        .workspace_review_approval(&session, &ws, approval_id, params.approved)
        .await?;
    Ok(HttpResponse::Ok().json(ApiEmptyResponse::ok("approval reviewed")))
}