feat: Phase 6, Device provisioning and deployment of updates on git-pull

2026-02-27 04:42:41 +02:00
parent 32a2634739
commit 57259c2c2f
19 changed files with 1670 additions and 26 deletions
--- a/backend/admin/init.py
+++ b/backend/admin/init.py
--- a/backend/admin/router.py
+++ b/backend/admin/router.py
@@ -0,0 +1,64 @@
+import asyncio
+import hashlib
+import hmac
+import logging
+
+from fastapi import APIRouter, HTTPException, Request
+
+from config import settings
+
+logger = logging.getLogger("admin.deploy")
+
+router = APIRouter(prefix="/api/admin", tags=["admin"])
+
+
+@router.post("/deploy")
+async def deploy(request: Request):
+    """Gitea webhook endpoint — pulls latest code and rebuilds Docker containers.
+
+    Gitea webhook configuration:
+      URL:          https://<your-domain>/api/admin/deploy
+      Secret token: value of DEPLOY_SECRET env var
+      Content-Type: application/json
+      Trigger:      Push events only (branch: main)
+
+    Add to VPS .env:
+      DEPLOY_SECRET=<random-strong-token>
+      DEPLOY_PROJECT_PATH=/home/bellsystems/bellsystems-cp
+    """
+    if not settings.deploy_secret:
+        raise HTTPException(status_code=503, detail="Deploy secret not configured on server")
+
+    # Gitea sends the HMAC-SHA256 of the request body in X-Gitea-Signature
+    sig_header = request.headers.get("X-Gitea-Signature", "")
+    body = await request.body()
+    expected_sig = hmac.new(
+        key=settings.deploy_secret.encode(),
+        msg=body,
+        digestmod=hashlib.sha256,
+    ).hexdigest()
+    if not hmac.compare_digest(sig_header, expected_sig):
+        raise HTTPException(status_code=403, detail="Invalid webhook signature")
+
+    logger.info("Auto-deploy triggered via Gitea webhook")
+
+    project_path = settings.deploy_project_path
+    cmd = f"cd {project_path} && git pull origin main && docker compose up -d --build"
+    try:
+        proc = await asyncio.create_subprocess_shell(
+            cmd,
+            stdout=asyncio.subprocess.PIPE,
+            stderr=asyncio.subprocess.STDOUT,
+        )
+        stdout, _ = await asyncio.wait_for(proc.communicate(), timeout=300)
+        output = stdout.decode(errors="replace") if stdout else ""
+
+        if proc.returncode != 0:
+            logger.error(f"Deploy failed (exit {proc.returncode}):\n{output}")
+            raise HTTPException(status_code=500, detail=f"Deploy script failed:\n{output[-500:]}")
+
+        logger.info(f"Deploy succeeded:\n{output[-300:]}")
+        return {"ok": True, "output": output[-1000:]}
+
+    except asyncio.TimeoutError:
+        raise HTTPException(status_code=504, detail="Deploy timed out after 300 seconds")
--- a/backend/config.py
+++ b/backend/config.py
@@ -29,10 +29,18 @@ class Settings(BaseSettings):
    built_melodies_storage_path: str = "./storage/built_melodies"
    firmware_storage_path: str = "./storage/firmware"

+    # Email (Resend)
+    resend_api_key: str = "re_placeholder_change_me"
+    email_from: str = "noreply@yourdomain.com"
+
    # App
    backend_cors_origins: str = '["http://localhost:5173"]'
    debug: bool = True

+    # Auto-deploy (Gitea webhook)
+    deploy_secret: str = ""
+    deploy_project_path: str = "/app"
+
    @property
    def cors_origins(self) -> List[str]:
        return json.loads(self.backend_cors_origins)
--- a/backend/main.py
+++ b/backend/main.py
@@ -16,6 +16,7 @@ from helpdesk.router import router as helpdesk_router
 from builder.router import router as builder_router
 from manufacturing.router import router as manufacturing_router
 from firmware.router import router as firmware_router
+from admin.router import router as admin_router
 from mqtt.client import mqtt_manager
 from mqtt import database as mqtt_db
 from melodies import service as melody_service
@@ -48,6 +49,7 @@ app.include_router(staff_router)
 app.include_router(builder_router)
 app.include_router(manufacturing_router)
 app.include_router(firmware_router)
+app.include_router(admin_router)


@app.on_event("startup")
--- a/backend/manufacturing/audit.py
+++ b/backend/manufacturing/audit.py
@@ -0,0 +1,41 @@
+import json
+import logging
+from mqtt.database import get_db
+
+logger = logging.getLogger("manufacturing.audit")
+
+
+async def log_action(
+    admin_user: str,
+    action: str,
+    serial_number: str | None = None,
+    detail: dict | None = None,
+):
+    """Write a manufacturing audit entry to SQLite.
+
+    action examples: batch_created, device_flashed, device_assigned, status_updated
+    """
+    try:
+        db = await get_db()
+        await db.execute(
+            """INSERT INTO mfg_audit_log (admin_user, action, serial_number, detail)
+               VALUES (?, ?, ?, ?)""",
+            (
+                admin_user,
+                action,
+                serial_number,
+                json.dumps(detail) if detail else None,
+            ),
+        )
+        await db.commit()
+    except Exception as e:
+        logger.error(f"Failed to write audit log: {e}")
+
+
+async def get_recent(limit: int = 20) -> list[dict]:
+    db = await get_db()
+    rows = await db.execute_fetchall(
+        "SELECT * FROM mfg_audit_log ORDER BY timestamp DESC LIMIT ?",
+        (limit,),
+    )
+    return [dict(r) for r in rows]
--- a/backend/manufacturing/models.py
+++ b/backend/manufacturing/models.py
@@ -59,3 +59,21 @@ class DeviceInventoryListResponse(BaseModel):
 class DeviceStatusUpdate(BaseModel):
    status: MfgStatus
    note: Optional[str] = None
+
+
+class DeviceAssign(BaseModel):
+    customer_email: str
+    customer_name: Optional[str] = None
+
+
+class RecentActivityItem(BaseModel):
+    serial_number: str
+    hw_type: str
+    mfg_status: str
+    owner: Optional[str] = None
+    updated_at: Optional[str] = None
+
+
+class ManufacturingStats(BaseModel):
+    counts: dict
+    recent_activity: List[RecentActivityItem]
--- a/backend/manufacturing/router.py
+++ b/backend/manufacturing/router.py
@@ -1,5 +1,6 @@
 from fastapi import APIRouter, Depends, Query
 from fastapi.responses import Response
+from fastapi.responses import RedirectResponse
 from typing import Optional

 from auth.models import TokenPayload
@@ -7,19 +8,48 @@ from auth.dependencies import require_permission
 from manufacturing.models import (
    BatchCreate, BatchResponse,
    DeviceInventoryItem, DeviceInventoryListResponse,
-    DeviceStatusUpdate,
+    DeviceStatusUpdate, DeviceAssign,
+    ManufacturingStats,
 )
 from manufacturing import service
+from manufacturing import audit

 router = APIRouter(prefix="/api/manufacturing", tags=["manufacturing"])


-@router.post("/batch", response_model=BatchResponse, status_code=201)
-def create_batch(
-    body: BatchCreate,
-    _user: TokenPayload = Depends(require_permission("manufacturing", "add")),
+@router.get("/stats", response_model=ManufacturingStats)
+def get_stats(
+    _user: TokenPayload = Depends(require_permission("manufacturing", "view")),
 ):
-    return service.create_batch(body)
+    return service.get_stats()
+
+
+@router.get("/audit-log")
+async def get_audit_log(
+    limit: int = Query(20, ge=1, le=100),
+    _user: TokenPayload = Depends(require_permission("manufacturing", "view")),
+):
+    entries = await audit.get_recent(limit=limit)
+    return {"entries": entries}
+
+
+@router.post("/batch", response_model=BatchResponse, status_code=201)
+async def create_batch(
+    body: BatchCreate,
+    user: TokenPayload = Depends(require_permission("manufacturing", "add")),
+):
+    result = service.create_batch(body)
+    await audit.log_action(
+        admin_user=user.email,
+        action="batch_created",
+        detail={
+            "batch_id": result.batch_id,
+            "board_type": result.board_type,
+            "board_version": result.board_version,
+            "quantity": len(result.serial_numbers),
+        },
+    )
+    return result


@router.get("/devices", response_model=DeviceInventoryListResponse)
@@ -50,22 +80,62 @@ def get_device(


@router.patch("/devices/{sn}/status", response_model=DeviceInventoryItem)
-def update_status(
+async def update_status(
    sn: str,
    body: DeviceStatusUpdate,
-    _user: TokenPayload = Depends(require_permission("manufacturing", "edit")),
+    user: TokenPayload = Depends(require_permission("manufacturing", "edit")),
 ):
-    return service.update_device_status(sn, body)
+    result = service.update_device_status(sn, body)
+    await audit.log_action(
+        admin_user=user.email,
+        action="status_updated",
+        serial_number=sn,
+        detail={"status": body.status.value, "note": body.note},
+    )
+    return result


@router.get("/devices/{sn}/nvs.bin")
-def download_nvs(
+async def download_nvs(
    sn: str,
-    _user: TokenPayload = Depends(require_permission("manufacturing", "view")),
+    user: TokenPayload = Depends(require_permission("manufacturing", "view")),
 ):
    binary = service.get_nvs_binary(sn)
+    await audit.log_action(
+        admin_user=user.email,
+        action="device_flashed",
+        serial_number=sn,
+    )
    return Response(
        content=binary,
        media_type="application/octet-stream",
        headers={"Content-Disposition": f'attachment; filename="{sn}_nvs.bin"'},
    )
+
+
+@router.post("/devices/{sn}/assign", response_model=DeviceInventoryItem)
+async def assign_device(
+    sn: str,
+    body: DeviceAssign,
+    user: TokenPayload = Depends(require_permission("manufacturing", "edit")),
+):
+    result = service.assign_device(sn, body)
+    await audit.log_action(
+        admin_user=user.email,
+        action="device_assigned",
+        serial_number=sn,
+        detail={"customer_email": body.customer_email, "customer_name": body.customer_name},
+    )
+    return result
+
+
+@router.get("/devices/{sn}/firmware.bin")
+def redirect_firmware(
+    sn: str,
+    _user: TokenPayload = Depends(require_permission("manufacturing", "view")),
+):
+    """Redirect to the latest stable firmware binary for this device's hw_type.
+    Resolves to GET /api/firmware/{hw_type}/stable/{version}/firmware.bin.
+    """
+    url = service.get_firmware_url(sn)
+    return RedirectResponse(url=url, status_code=302)
--- a/backend/manufacturing/service.py
+++ b/backend/manufacturing/service.py
@@ -6,7 +6,7 @@ from shared.firebase import get_db
 from shared.exceptions import NotFoundError
 from utils.serial_number import generate_serial
 from utils.nvs_generator import generate as generate_nvs_binary
-from manufacturing.models import BatchCreate, BatchResponse, DeviceInventoryItem, DeviceStatusUpdate
+from manufacturing.models import BatchCreate, BatchResponse, DeviceInventoryItem, DeviceStatusUpdate, DeviceAssign, ManufacturingStats, RecentActivityItem

 COLLECTION = "devices"
 _BATCH_ID_CHARS = string.ascii_uppercase + string.digits
@@ -151,3 +151,77 @@ def get_nvs_binary(sn: str) -> bytes:
        hw_type=item.hw_type,
        hw_version=item.hw_version,
    )
+
+
+def assign_device(sn: str, data: DeviceAssign) -> DeviceInventoryItem:
+    from utils.email import send_device_assignment_invite
+
+    db = get_db()
+    docs = list(db.collection(COLLECTION).where("serial_number", "==", sn).limit(1).stream())
+    if not docs:
+        raise NotFoundError("Device")
+
+    doc_ref = docs[0].reference
+    doc_ref.update({
+        "owner": data.customer_email,
+        "assigned_to": data.customer_email,
+        "mfg_status": "sold",
+    })
+
+    send_device_assignment_invite(
+        customer_email=data.customer_email,
+        serial_number=sn,
+        customer_name=data.customer_name,
+    )
+
+    return _doc_to_inventory_item(doc_ref.get())
+
+
+def get_stats() -> ManufacturingStats:
+    db = get_db()
+    docs = list(db.collection(COLLECTION).stream())
+
+    all_statuses = ["manufactured", "flashed", "provisioned", "sold", "claimed", "decommissioned"]
+    counts = {s: 0 for s in all_statuses}
+
+    activity_candidates = []
+    for doc in docs:
+        data = doc.to_dict() or {}
+        status = data.get("mfg_status", "manufactured")
+        if status in counts:
+            counts[status] += 1
+
+        if status in ("provisioned", "sold", "claimed"):
+            # Use created_at as a proxy timestamp; Firestore DatetimeWithNanoseconds or plain datetime
+            ts = data.get("created_at")
+            if isinstance(ts, datetime):
+                ts_str = ts.strftime("%Y-%m-%dT%H:%M:%SZ")
+            else:
+                ts_str = str(ts) if ts else None
+
+            activity_candidates.append(RecentActivityItem(
+                serial_number=data.get("serial_number", ""),
+                hw_type=data.get("hw_type", ""),
+                mfg_status=status,
+                owner=data.get("owner"),
+                updated_at=ts_str,
+            ))
+
+    # Sort by updated_at descending, take latest 10
+    activity_candidates.sort(
+        key=lambda x: x.updated_at or "",
+        reverse=True,
+    )
+    recent = activity_candidates[:10]
+
+    return ManufacturingStats(counts=counts, recent_activity=recent)
+
+
+def get_firmware_url(sn: str) -> str:
+    """Return the FastAPI download URL for the latest stable firmware for this device's hw_type."""
+    from firmware.service import get_latest
+    item = get_device_by_sn(sn)
+    hw_type = item.hw_type.lower()
+    latest = get_latest(hw_type, "stable")
+    # download_url is a relative path like /api/firmware/vs/stable/1.4.2/firmware.bin
+    return latest.download_url
--- a/backend/mqtt/database.py
+++ b/backend/mqtt/database.py
@@ -65,6 +65,17 @@ SCHEMA_STATEMENTS = [
        created_at TEXT NOT NULL DEFAULT (datetime('now')),
        updated_at TEXT NOT NULL DEFAULT (datetime('now'))
    )""",
+    # Manufacturing audit log
+    """CREATE TABLE IF NOT EXISTS mfg_audit_log (
+        id INTEGER PRIMARY KEY AUTOINCREMENT,
+        timestamp TEXT NOT NULL DEFAULT (datetime('now')),
+        admin_user TEXT NOT NULL,
+        action TEXT NOT NULL,
+        serial_number TEXT,
+        detail TEXT
+    )""",
+    "CREATE INDEX IF NOT EXISTS idx_mfg_audit_time ON mfg_audit_log(timestamp)",
+    "CREATE INDEX IF NOT EXISTS idx_mfg_audit_action ON mfg_audit_log(action)",
 ]


--- a/backend/requirements.txt
+++ b/backend/requirements.txt
@@ -8,4 +8,5 @@ python-jose[cryptography]==3.3.0
 passlib[bcrypt]==1.7.4
 python-multipart==0.0.20
 bcrypt==4.0.1
-aiosqlite==0.20.0
+aiosqlite==0.20.0
+resend==2.10.0
--- a/backend/utils/email.py
+++ b/backend/utils/email.py
@@ -0,0 +1,87 @@
+import logging
+import resend
+from config import settings
+
+logger = logging.getLogger(__name__)
+
+
+def _get_client() -> resend.Resend:
+    return resend.Resend(api_key=settings.resend_api_key)
+
+
+def send_email(to: str, subject: str, html: str) -> None:
+    """Send a transactional email via Resend. Logs errors but does not raise."""
+    try:
+        client = _get_client()
+        client.emails.send({
+            "from": settings.email_from,
+            "to": to,
+            "subject": subject,
+            "html": html,
+        })
+        logger.info("Email sent to %s — subject: %s", to, subject)
+    except Exception as exc:
+        logger.error("Failed to send email to %s: %s", to, exc)
+        raise
+
+
+def send_device_assignment_invite(
+    customer_email: str,
+    serial_number: str,
+    customer_name: str | None = None,
+) -> None:
+    """Notify a customer that a Vesper device has been assigned to them."""
+    greeting = f"Hi {customer_name}," if customer_name else "Hello,"
+    html = f"""
+    <div style="font-family: sans-serif; max-width: 600px; margin: 0 auto;">
+      <h2 style="color: #111827;">Your Vesper device is ready</h2>
+      <p>{greeting}</p>
+      <p>A Vesper bell automation device has been registered and assigned to you.</p>
+      <p>
+        <strong>Serial Number:</strong>
+        <code style="background: #f3f4f6; padding: 2px 6px; border-radius: 4px; font-size: 14px;">{serial_number}</code>
+      </p>
+      <p>Open the Vesper app and enter this serial number to get started.</p>
+      <hr style="border: none; border-top: 1px solid #e5e7eb; margin: 24px 0;" />
+      <p style="color: #6b7280; font-size: 12px;">
+        If you did not expect this email, please contact your system administrator.
+      </p>
+    </div>
+    """
+    send_email(
+        to=customer_email,
+        subject=f"Your Vesper device is ready — {serial_number}",
+        html=html,
+    )
+
+
+def send_device_provisioned_alert(
+    admin_email: str,
+    serial_number: str,
+    hw_type: str,
+) -> None:
+    """Internal alert sent to an admin when a device reaches provisioned status."""
+    html = f"""
+    <div style="font-family: sans-serif; max-width: 600px; margin: 0 auto;">
+      <h2 style="color: #111827;">Device Provisioned</h2>
+      <p>A Vesper device has successfully provisioned and is ready to ship.</p>
+      <table style="border-collapse: collapse; width: 100%; margin-top: 16px;">
+        <tr>
+          <td style="padding: 6px 12px; font-weight: bold; background: #f9fafb;">Serial Number</td>
+          <td style="padding: 6px 12px; font-family: monospace;">{serial_number}</td>
+        </tr>
+        <tr>
+          <td style="padding: 6px 12px; font-weight: bold; background: #f9fafb;">Board Type</td>
+          <td style="padding: 6px 12px;">{hw_type.upper()}</td>
+        </tr>
+      </table>
+      <p style="margin-top: 24px;">
+        <a href="#" style="color: #2563eb;">View in Admin Console</a>
+      </p>
+    </div>
+    """
+    send_email(
+        to=admin_email,
+        subject=f"[Vesper] Device provisioned — {serial_number}",
+        html=html,
+    )