implemented

2025-12-19 10:12:55 +01:00 · 2025-12-19 10:12:55 +01:00 · 409e0df9a6
commit 409e0df9a6
parent 40ca82bb45
16 changed files with 2451 additions and 4 deletions
--- a/backend/main.py
+++ b/backend/main.py
@ -10,6 +10,7 @@ from sqlalchemy.ext.asyncio import AsyncSession

 from database import engine, get_db, Base
 from models import Counter, User, SumRecord, CounterRecord, Permission, Role, ROLE_REGULAR
+from validation import validate_profile_fields


 R = TypeVar("R", bound=BaseModel)
@ -323,3 +324,85 @@ async def get_sum_records(
        per_page=per_page,
        total_pages=total_pages,
    )
+
+
+# Profile endpoints
+class ProfileResponse(BaseModel):
+    """Response model for profile data."""
+    contact_email: str | None
+    telegram: str | None
+    signal: str | None
+    nostr_npub: str | None
+
+
+class ProfileUpdate(BaseModel):
+    """Request model for updating profile."""
+    contact_email: str | None = None
+    telegram: str | None = None
+    signal: str | None = None
+    nostr_npub: str | None = None
+
+
+def require_regular_user():
+    """Dependency that requires the user to have the 'regular' role."""
+    async def checker(
+        current_user: User = Depends(get_current_user),
+    ) -> User:
+        if ROLE_REGULAR not in current_user.role_names:
+            raise HTTPException(
+                status_code=status.HTTP_403_FORBIDDEN,
+                detail="Profile access is only available to regular users",
+            )
+        return current_user
+    return checker
+
+
+@app.get("/api/profile", response_model=ProfileResponse)
+async def get_profile(
+    current_user: User = Depends(require_regular_user()),
+):
+    """Get the current user's profile (contact details)."""
+    return ProfileResponse(
+        contact_email=current_user.contact_email,
+        telegram=current_user.telegram,
+        signal=current_user.signal,
+        nostr_npub=current_user.nostr_npub,
+    )
+
+
+@app.put("/api/profile", response_model=ProfileResponse)
+async def update_profile(
+    data: ProfileUpdate,
+    db: AsyncSession = Depends(get_db),
+    current_user: User = Depends(require_regular_user()),
+):
+    """Update the current user's profile (contact details)."""
+    # Validate all fields
+    errors = validate_profile_fields(
+        contact_email=data.contact_email,
+        telegram=data.telegram,
+        signal=data.signal,
+        nostr_npub=data.nostr_npub,
+    )
+    
+    if errors:
+        raise HTTPException(
+            status_code=422,
+            detail={"field_errors": errors},
+        )
+    
+    # Update fields
+    current_user.contact_email = data.contact_email
+    current_user.telegram = data.telegram
+    current_user.signal = data.signal
+    current_user.nostr_npub = data.nostr_npub
+    
+    await db.commit()
+    await db.refresh(current_user)
+    
+    return ProfileResponse(
+        contact_email=current_user.contact_email,
+        telegram=current_user.telegram,
+        signal=current_user.signal,
+        nostr_npub=current_user.nostr_npub,
+    )