reviewer
4ad0f9e493
## Backend — Service Layer & Repository Refactoring ### Neue Services (21 neue Dateien) **Interfaces & Implementierungen:** - `IOpenClawGatewayClient` — Interface für OpenClawGatewayClient (DIP-Fix: DashboardController hing an konkreter Klasse) - `IAgentConfigService` / `AgentConfigService` — Agent-Config-File-I/O aus AgentsController extrahiert - `IProjectService` / `ProjectService` — Projekt-CRUD + Activity-Logging (SRP) - `ITaskService` / `TaskService` — Task-State-Machine, Approve/Reject, Dashboard-Operationen (eliminiert Duplikation zwischen TasksController und DashboardController) - `IDashboardService` / `DashboardService` — Queue-Aggregation, Priority-Normalisierung, Gateway-Delegation - `IOperationsService` / `OperationsService` — Metriken-Berechnung aus OperationsController - `ITeamService` / `TeamService` — IDENTITY.md-Lesen aus TeamController - `IMemoryService` / `MemoryService` — File-I/O aus MemoryController - `IIncidentService` / `IncidentService` — File-Parsing (Regex-Source-Generatoren) aus IncidentsController - `IDocService` / `DocService` — Directory-Scan aus DocsController - `ICalendarService` / `CalendarService` — Gateway-HTTP-Calls + Fallback-Daten aus CalendarController ### Repository-Fixes **IUserRepository / UserRepository:** - `SaveChangesAsync` entfernt (leaky abstraction — Caller sollten nie SaveChanges steuern) - `RevokeTokenAsync(tokenHash)` — atomares Token-Revoke inkl. SaveChanges - `RevokeFamilyAsync(familyId)` — Batch-Revoke einer Token-Familie inkl. SaveChanges - `RemoveExpiredTokensAsync` speichert jetzt selbst (war vorher dependent auf nachfolgenden Save) ### AuthService-Fixes - `GetUserAsync`: unnötiges `Task.Run` entfernt → direkt `_users.GetByIdAsync().AsTask()` - `RevokeAsync`: delegiert jetzt an `IUserRepository.RevokeTokenAsync` - `RefreshAsync`: Token-Reuse-Detection delegiert an `IUserRepository.RevokeFamilyAsync` ### Bug-Fix - `OpenClawGatewayClient.ReadAgentGoalAsync`: pre-existing `CS1656` behoben (`reader` war `using`-Variable und wurde neu zugewiesen — in `reader2` umbenannt) ### Controller (16 Stück — alle slim) Alle Controller reduziert auf: Input validieren → Service aufrufen → HTTP-Result zurückgeben. Kein Business-Logic, kein File-I/O, keine direkte Repository-Nutzung (außer AgentsController für Activity-Log). **Program.cs — neue Registrierungen:** - `AddHttpClient<IOpenClawGatewayClient, OpenClawGatewayClient>` (war vorher konkrete Klasse) - Scoped: IDashboardService, IProjectService, ITaskService, IOperationsService, ITeamService, ICalendarService - Singleton: IAgentConfigService, IMemoryService, IIncidentService, IDocService --- ## Frontend — Dashboard V2 Components **AgentDetailModal.vue, IrisChat.vue, TaskStrip.vue:** - V2 Design-System: Dark Space Theme, Glass-Panels, Gradient-Akzente - Stores (agents, chat, tasks) nutzen Service + Mapper-Pattern - NexusLayout, FlowBoard, Topbar — Layoutfixes für fullHeight-Route-Meta Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
87 lines
3.1 KiB
C#
87 lines
3.1 KiB
C#
using Microsoft.EntityFrameworkCore;
|
|
using Nexus.Api.Data;
|
|
|
|
namespace Nexus.Api.Repositories;
|
|
|
|
public sealed class UserRepository(NexusDbContext db) : IUserRepository
|
|
{
|
|
public ValueTask<NexusUser?> GetByIdAsync(Guid userId, CancellationToken ct = default)
|
|
=> db.Users.FindAsync([userId], ct);
|
|
|
|
public Task<NexusUser?> GetByEmailAsync(string normalizedEmail, CancellationToken ct = default)
|
|
=> db.Users.FirstOrDefaultAsync(u => u.NormalizedEmail == normalizedEmail, ct);
|
|
|
|
public Task<bool> AnyUsersAsync(CancellationToken ct = default)
|
|
=> db.Users.AnyAsync(ct);
|
|
|
|
public async Task<NexusUser> AddAsync(NexusUser user, CancellationToken ct = default)
|
|
{
|
|
db.Users.Add(user);
|
|
await db.SaveChangesAsync(ct);
|
|
return user;
|
|
}
|
|
|
|
public Task UpdateAsync(NexusUser user, CancellationToken ct = default)
|
|
=> db.SaveChangesAsync(ct);
|
|
|
|
public Task<RefreshToken?> GetRefreshTokenByHashAsync(string tokenHash, CancellationToken ct = default)
|
|
=> db.RefreshTokens
|
|
.Include(r => r.User)
|
|
.FirstOrDefaultAsync(r => r.TokenHash == tokenHash, ct);
|
|
|
|
public Task<List<RefreshToken>> GetActiveTokensByFamilyAsync(Guid familyId, CancellationToken ct = default)
|
|
=> db.RefreshTokens
|
|
.Where(r => r.FamilyId == familyId && r.RevokedAt == null)
|
|
.ToListAsync(ct);
|
|
|
|
public async Task AddRefreshTokenAsync(RefreshToken token, CancellationToken ct = default)
|
|
{
|
|
db.RefreshTokens.Add(token);
|
|
await db.SaveChangesAsync(ct);
|
|
}
|
|
|
|
public Task UpdateRefreshTokenAsync(RefreshToken token, CancellationToken ct = default)
|
|
=> db.SaveChangesAsync(ct);
|
|
|
|
public async Task RevokeTokenAsync(string tokenHash, CancellationToken ct = default)
|
|
{
|
|
var token = await db.RefreshTokens.FirstOrDefaultAsync(r => r.TokenHash == tokenHash, ct);
|
|
if (token is null || token.RevokedAt is not null) return;
|
|
|
|
token.RevokedAt = DateTimeOffset.UtcNow;
|
|
token.ConcurrencyStamp = Guid.NewGuid();
|
|
await db.SaveChangesAsync(ct);
|
|
}
|
|
|
|
public async Task RevokeFamilyAsync(Guid familyId, CancellationToken ct = default)
|
|
{
|
|
var activeTokens = await db.RefreshTokens
|
|
.Where(r => r.FamilyId == familyId && r.RevokedAt == null)
|
|
.ToListAsync(ct);
|
|
|
|
if (activeTokens.Count == 0) return;
|
|
|
|
var now = DateTimeOffset.UtcNow;
|
|
foreach (var token in activeTokens)
|
|
{
|
|
token.RevokedAt = now;
|
|
token.ConcurrencyStamp = Guid.NewGuid();
|
|
}
|
|
await db.SaveChangesAsync(ct);
|
|
}
|
|
|
|
public async Task RemoveExpiredTokensAsync(Guid userId, CancellationToken ct = default)
|
|
{
|
|
var cutoff = DateTimeOffset.UtcNow.AddDays(-30);
|
|
var oldTokens = await db.RefreshTokens
|
|
.Where(r => r.UserId == userId && (r.ExpiresAt < DateTimeOffset.UtcNow || r.RevokedAt < cutoff))
|
|
.ToListAsync(ct);
|
|
|
|
if (oldTokens.Count > 0)
|
|
{
|
|
db.RefreshTokens.RemoveRange(oldTokens);
|
|
await db.SaveChangesAsync(ct);
|
|
}
|
|
}
|
|
}
|