feat(v1.1.5): files SDK + files:* triggers

Filesystem-backed blob storage as the fifth concrete trigger kind. - `files::collection(c).{create,head,get,update,delete,list}` Rhai SDK (blob in/out; metadata maps; missing-field throws naming the field). - `FilesService` trait in picloud-shared; `FsFilesRepo` (atomic write: temp→fsync→rename→fsync-dir→DB; single-pass SHA-256; checksum-verified reads → Corrupted) + `FilesServiceImpl` in manager-core. Metadata in Postgres (0018), bytes on disk under PICLOUD_FILES_ROOT with 0o700 shard dirs. - `files:*` trigger kind via the Layout-E pattern (0019: widen both CHECKs + files_trigger_details), TriggerEvent::Files (metadata only, no bytes), emit_files fan-out, dispatcher arm, admin endpoint POST /triggers/files (reuses validate_trigger_target). - AppFilesRead/AppFilesWrite capabilities → script:read/script:write (seven-scope commitment held). AppPubsubPublish reserved for v1.1.6. - Admin files API (list + delete) + dashboard Files view per app. Cross-app isolation keyed on cx.app_id at every layer. ~45 new tests (service in-memory, fs tempdir, bridge integration). No DB required for the suite. publish_ephemeral and the orphan sweep stay deferred. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
2026-06-03 21:18:17 +02:00
parent 03d03ea6e7
commit 6e132b6ee0
29 changed files with 3599 additions and 31 deletions
--- a/crates/manager-core/src/triggers_api.rs
+++ b/crates/manager-core/src/triggers_api.rs
@@ -16,7 +16,9 @@ use axum::http::StatusCode;
 use axum::response::{IntoResponse, Json, Response};
 use axum::routing::{delete, get, post};
 use axum::{Extension, Router};
-use picloud_shared::{AppId, DocsEventOp, KvEventOp, Principal, ScriptId, ScriptKind, TriggerId};
+use picloud_shared::{
+    AppId, DocsEventOp, FilesEventOp, KvEventOp, Principal, ScriptId, ScriptKind, TriggerId,
+};
 use serde::{Deserialize, Serialize};
 use serde_json::json;

@@ -25,8 +27,8 @@ use crate::authz::{require, AuthzDenied, AuthzError, AuthzRepo, Capability};
 use crate::repo::{ScriptRepository, ScriptRepositoryError};
 use crate::trigger_config::{BackoffShape, TriggerConfig};
 use crate::trigger_repo::{
-    CreateCronTrigger, CreateDeadLetterTrigger, CreateDocsTrigger, CreateKvTrigger, Trigger,
-    TriggerDispatchMode, TriggerRepo, TriggerRepoError,
+    CreateCronTrigger, CreateDeadLetterTrigger, CreateDocsTrigger, CreateFilesTrigger,
+    CreateKvTrigger, Trigger, TriggerDispatchMode, TriggerRepo, TriggerRepoError,
 };

 #[derive(Clone)]
@@ -54,6 +56,7 @@ pub fn triggers_router(state: TriggersState) -> Router {
        .route("/apps/{app_id}/triggers/kv", post(create_kv_trigger))
        .route("/apps/{app_id}/triggers/docs", post(create_docs_trigger))
        .route("/apps/{app_id}/triggers/cron", post(create_cron_trigger))
+        .route("/apps/{app_id}/triggers/files", post(create_files_trigger))
        .route(
            "/apps/{app_id}/triggers/dead_letter",
            post(create_dl_trigger),
@@ -139,6 +142,24 @@ fn default_timezone() -> String {
    "UTC".to_string()
 }

+/// v1.1.5 files trigger. Mirrors `CreateKvTriggerRequest`; `ops` uses
+/// `FilesEventOp` (`create` / `update` / `delete`).
+#[derive(Debug, Deserialize)]
+pub struct CreateFilesTriggerRequest {
+    pub script_id: ScriptId,
+    pub collection_glob: String,
+    #[serde(default)]
+    pub ops: Vec<FilesEventOp>,
+    #[serde(default = "default_dispatch")]
+    pub dispatch_mode: TriggerDispatchMode,
+    #[serde(default)]
+    pub retry_max_attempts: Option<u32>,
+    #[serde(default)]
+    pub retry_backoff: Option<BackoffShape>,
+    #[serde(default)]
+    pub retry_base_ms: Option<u32>,
+}
+
 #[derive(Debug, Deserialize)]
 pub struct CreateDeadLetterTriggerRequest {
    pub script_id: ScriptId,
@@ -328,6 +349,43 @@ async fn create_cron_trigger(
    Ok((StatusCode::CREATED, Json(created)))
 }

+async fn create_files_trigger(
+    State(s): State<TriggersState>,
+    Extension(principal): Extension<Principal>,
+    Path(app_id): Path<AppId>,
+    Json(input): Json<CreateFilesTriggerRequest>,
+) -> Result<(StatusCode, Json<Trigger>), TriggersApiError> {
+    ensure_app_exists(&*s.apps, app_id).await?;
+    require(
+        s.authz.as_ref(),
+        &principal,
+        Capability::AppManageTriggers(app_id),
+    )
+    .await?;
+
+    if input.collection_glob.trim().is_empty() {
+        return Err(TriggersApiError::Invalid(
+            "collection_glob must not be empty".into(),
+        ));
+    }
+    validate_trigger_target(&*s.scripts, app_id, input.script_id).await?;
+
+    let req = CreateFilesTrigger {
+        script_id: input.script_id,
+        collection_glob: input.collection_glob,
+        ops: input.ops,
+        dispatch_mode: input.dispatch_mode,
+        retry_max_attempts: input
+            .retry_max_attempts
+            .unwrap_or(s.config.retry_max_attempts),
+        retry_backoff: input.retry_backoff.unwrap_or(s.config.retry_backoff),
+        retry_base_ms: input.retry_base_ms.unwrap_or(s.config.retry_base_ms),
+        registered_by_principal: principal.user_id,
+    };
+    let created = s.triggers.create_files_trigger(app_id, req).await?;
+    Ok((StatusCode::CREATED, Json(created)))
+}
+
 async fn create_dl_trigger(
    State(s): State<TriggersState>,
    Extension(principal): Extension<Principal>,
@@ -484,13 +542,14 @@ mod tests {
    use super::*;
    use crate::app_repo::{AppLookup, AppRepository};
    use crate::trigger_repo::{
-        CreateCronTrigger, DeadLetterTriggerMatch, DocsTriggerMatch, KvTriggerMatch, Trigger,
-        TriggerDetails, TriggerRepo, TriggerRepoError,
+        CreateCronTrigger, CreateFilesTrigger, DeadLetterTriggerMatch, DocsTriggerMatch,
+        FilesTriggerMatch, KvTriggerMatch, Trigger, TriggerDetails, TriggerRepo, TriggerRepoError,
    };
    use async_trait::async_trait;
    use chrono::Utc;
    use picloud_shared::{
-        AdminUserId, App, AppRole, DocsEventOp, KvEventOp, ScriptId, TriggerId, UserId,
+        AdminUserId, App, AppRole, DocsEventOp, FilesEventOp, KvEventOp, ScriptId, TriggerId,
+        UserId,
    };
    use std::collections::HashMap;
    use tokio::sync::Mutex;
@@ -616,6 +675,34 @@ mod tests {
            self.inner.lock().await.insert(id, trigger.clone());
            Ok(trigger)
        }
+        async fn create_files_trigger(
+            &self,
+            app_id: AppId,
+            req: CreateFilesTrigger,
+        ) -> Result<Trigger, TriggerRepoError> {
+            let now = Utc::now();
+            let id = TriggerId::new();
+            let trigger = Trigger {
+                id,
+                app_id,
+                script_id: req.script_id,
+                kind: crate::trigger_repo::TriggerKind::Files,
+                enabled: true,
+                dispatch_mode: req.dispatch_mode,
+                retry_max_attempts: req.retry_max_attempts,
+                retry_backoff: req.retry_backoff,
+                retry_base_ms: req.retry_base_ms,
+                registered_by_principal: req.registered_by_principal,
+                created_at: now,
+                updated_at: now,
+                details: TriggerDetails::Files {
+                    collection_glob: req.collection_glob,
+                    ops: req.ops,
+                },
+            };
+            self.inner.lock().await.insert(id, trigger.clone());
+            Ok(trigger)
+        }
        async fn list_for_app(&self, app_id: AppId) -> Result<Vec<Trigger>, TriggerRepoError> {
            Ok(self
                .inner
@@ -648,6 +735,14 @@ mod tests {
        ) -> Result<Vec<DocsTriggerMatch>, TriggerRepoError> {
            Ok(vec![])
        }
+        async fn list_matching_files(
+            &self,
+            _app_id: AppId,
+            _collection: &str,
+            _op: FilesEventOp,
+        ) -> Result<Vec<FilesTriggerMatch>, TriggerRepoError> {
+            Ok(vec![])
+        }
        async fn list_matching_dead_letter(
            &self,
            _app_id: AppId,