sandbox-web-ide/backend/database/src/index.ts

import type { DrizzleD1Database } from "drizzle-orm/d1";
import { drizzle } from "drizzle-orm/d1";
import { json } from "itty-router-extras";
import { ZodError, z } from "zod";

import { user, sandbox, usersToSandboxes } from "./schema";
import * as schema from "./schema";
import { and, eq, sql } from "drizzle-orm";

export interface Env {
	DB: D1Database;
	STORAGE: any;
}

// https://github.com/drizzle-team/drizzle-orm/tree/main/examples/cloudflare-d1

// npm run generate
// npx wrangler d1 execute d1-sandbox --local --file=./drizzle/<FILE>

export default {
	async fetch(request: Request, env: Env, ctx: ExecutionContext): Promise<Response> {
		const success = new Response("Success", { status: 200 });
		const invalidRequest = new Response("Invalid Request", { status: 400 });
		const notFound = new Response("Not Found", { status: 404 });
		const methodNotAllowed = new Response("Method Not Allowed", { status: 405 });

		const url = new URL(request.url);
		const path = url.pathname;
		const method = request.method;

		const db = drizzle(env.DB, { schema });

		if (path === "/api/sandbox") {
			if (method === "GET") {
				const params = url.searchParams;
				if (params.has("id")) {
					const id = params.get("id") as string;
					const res = await db.query.sandbox.findFirst({
						where: (sandbox, { eq }) => eq(sandbox.id, id),
						with: {
							usersToSandboxes: true,
						},
					});
					return json(res ?? {});
				} else {
					const res = await db.select().from(sandbox).all();
					return json(res ?? {});
				}
			} else if (method === "DELETE") {
				const params = url.searchParams;
				if (params.has("id")) {
					const id = params.get("id") as string;
					await db.delete(usersToSandboxes).where(eq(usersToSandboxes.sandboxId, id));
					await db.delete(sandbox).where(eq(sandbox.id, id));
					return success;
				} else {
					return invalidRequest;
				}
			} else if (method === "POST") {
				const initSchema = z.object({
					id: z.string(),
					name: z.string().optional(),
					visibility: z.enum(["public", "private"]).optional(),
				});

				const body = await request.json();
				const { id, name, visibility } = initSchema.parse(body);
				const sb = await db.update(sandbox).set({ name, visibility }).where(eq(sandbox.id, id)).returning().get();

				return success;
			} else if (method === "PUT") {
				const initSchema = z.object({
					type: z.enum(["react", "node"]),
					name: z.string(),
					userId: z.string(),
					visibility: z.enum(["public", "private"]),
				});

				const body = await request.json();
				const { type, name, userId, visibility } = initSchema.parse(body);

				const allSandboxes = await db.select().from(sandbox).all();
				if (allSandboxes.length >= 8) {
					return new Response("You reached the maximum # of sandboxes.", { status: 400 });
				}

				const sb = await db.insert(sandbox).values({ type, name, userId, visibility }).returning().get();

				const initStorageRequest = new Request("https://storage.ishaan1013.workers.dev/api/init", {
					method: "POST",
					body: JSON.stringify({ sandboxId: sb.id, type }),
					headers: { "Content-Type": "application/json" },
				});
				const initStorageRes = await env.STORAGE.fetch(initStorageRequest);

				const initStorage = await initStorageRes.text();

				return new Response(sb.id, { status: 200 });
			} else {
				return methodNotAllowed;
			}
		} else if (path === "/api/sandbox/share") {
			if (method === "GET") {
				const params = url.searchParams;
				if (params.has("id")) {
					const id = params.get("id") as string;
					const res = await db.query.usersToSandboxes.findMany({
						where: (uts, { eq }) => eq(uts.userId, id),
					});

					const owners = await Promise.all(
						res.map(async (r) => {
							const sb = await db.query.sandbox.findFirst({
								where: (sandbox, { eq }) => eq(sandbox.id, r.sandboxId),
								with: {
									author: true,
								},
							});
							if (!sb) return;
							return { id: sb.id, name: sb.name, type: sb.type, author: sb.author.name, sharedOn: r.sharedOn };
						})
					);

					return json(owners ?? {});
				} else return invalidRequest;
			} else if (method === "POST") {
				const shareSchema = z.object({
					sandboxId: z.string(),
					email: z.string(),
				});

				const body = await request.json();
				const { sandboxId, email } = shareSchema.parse(body);

				const user = await db.query.user.findFirst({
					where: (user, { eq }) => eq(user.email, email),
					with: {
						sandbox: true,
						usersToSandboxes: true,
					},
				});

				if (!user) {
					return new Response("No user associated with email.", { status: 400 });
				}

				if (user.sandbox.find((sb) => sb.id === sandboxId)) {
					return new Response("Cannot share with yourself!", { status: 400 });
				}

				if (user.usersToSandboxes.find((uts) => uts.sandboxId === sandboxId)) {
					return new Response("User already has access.", { status: 400 });
				}

				await db.insert(usersToSandboxes).values({ userId: user.id, sandboxId, sharedOn: new Date() }).get();

				return success;
			} else if (method === "DELETE") {
				const deleteShareSchema = z.object({
					sandboxId: z.string(),
					userId: z.string(),
				});

				const body = await request.json();
				const { sandboxId, userId } = deleteShareSchema.parse(body);

				await db.delete(usersToSandboxes).where(and(eq(usersToSandboxes.userId, userId), eq(usersToSandboxes.sandboxId, sandboxId)));

				return success;
			} else return methodNotAllowed;
		} else if (path === "/api/sandbox/generate" && method === "POST") {
			const generateSchema = z.object({
				userId: z.string(),
			});
			const body = await request.json();
			const { userId } = generateSchema.parse(body);

			const dbUser = await db.query.user.findFirst({
				where: (user, { eq }) => eq(user.id, userId),
			});
			if (!dbUser) {
				return new Response("User not found.", { status: 400 });
			}
			if (dbUser.generations !== null && dbUser.generations >= 10) {
				return new Response("You reached the maximum # of generations.", { status: 400 });
			}

			await db
				.update(user)
				.set({ generations: sql`${user.generations} + 1` })
				.where(eq(user.id, userId))
				.get();

			return success;
		} else if (path === "/api/user") {
			if (method === "GET") {
				const params = url.searchParams;

				if (params.has("id")) {
					const id = params.get("id") as string;
					const res = await db.query.user.findFirst({
						where: (user, { eq }) => eq(user.id, id),
						with: {
							sandbox: true,
							usersToSandboxes: true,
						},
					});
					return json(res ?? {});
				} else {
					const res = await db.select().from(user).all();
					return json(res ?? {});
				}
			} else if (method === "POST") {
				const userSchema = z.object({
					id: z.string(),
					name: z.string(),
					email: z.string().email(),
				});

				const body = await request.json();
				const { id, name, email } = userSchema.parse(body);

				const res = await db.insert(user).values({ id, name, email }).returning().get();
				return json({ res });
			} else {
				return methodNotAllowed;
			}
		} else return notFound;
	},
};
studio working 2024-04-16 19:06:23 -04:00			`import type { DrizzleD1Database } from "drizzle-orm/d1";`
start backend db 2024-04-16 18:19:34 -04:00			`import { drizzle } from "drizzle-orm/d1";`
studio working 2024-04-16 19:06:23 -04:00			`import { json } from "itty-router-extras";`
			`import { ZodError, z } from "zod";`

sql schema update + start share logic 2024-05-01 01:29:16 -04:00			`import { user, sandbox, usersToSandboxes } from "./schema";`
fix db relations + display sandboxes on dash 2024-04-18 00:13:40 -04:00			`import * as schema from "./schema";`
add ai generations limit + random bug fixes 2024-05-05 16:51:30 -07:00			`import { and, eq, sql } from "drizzle-orm";`
split db and storage workers 2024-04-22 00:30:50 -04:00
start backend db 2024-04-16 18:19:34 -04:00			`export interface Env {`
			`DB: D1Database;`
add worker service binding + inactivity detection 2024-05-06 21:29:25 -07:00			`STORAGE: any;`
start backend db 2024-04-16 18:19:34 -04:00			`}`

improve backend logic 2024-04-21 22:55:49 -04:00			`// https://github.com/drizzle-team/drizzle-orm/tree/main/examples/cloudflare-d1`

add sonner + project creation working 2024-04-27 16:22:35 -04:00			`// npm run generate`
			`// npx wrangler d1 execute d1-sandbox --local --file=./drizzle/<FILE>`

start backend db 2024-04-16 18:19:34 -04:00			`export default {`
refactor routes everywhere 2024-04-17 21:24:57 -04:00			`async fetch(request: Request, env: Env, ctx: ExecutionContext): Promise<Response> {`
fix worker + start create modal with logic 2024-04-23 01:53:37 -04:00			`const success = new Response("Success", { status: 200 });`
update schema + working sandbox creation route 2024-04-24 02:22:06 -04:00			`const invalidRequest = new Response("Invalid Request", { status: 400 });`
fix worker + start create modal with logic 2024-04-23 01:53:37 -04:00			`const notFound = new Response("Not Found", { status: 404 });`
			`const methodNotAllowed = new Response("Method Not Allowed", { status: 405 });`

refactor routes everywhere 2024-04-17 21:24:57 -04:00			`const url = new URL(request.url);`
			`const path = url.pathname;`
			`const method = request.method;`

fix db relations + display sandboxes on dash 2024-04-18 00:13:40 -04:00			`const db = drizzle(env.DB, { schema });`
refactor routes everywhere 2024-04-17 21:24:57 -04:00
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`if (path === "/api/sandbox") {`
			`if (method === "GET") {`
			`const params = url.searchParams;`
			`if (params.has("id")) {`
			`const id = params.get("id") as string;`
			`const res = await db.query.sandbox.findFirst({`
			`where: (sandbox, { eq }) => eq(sandbox.id, id),`
sharing logic 2024-05-01 01:53:49 -04:00			`with: {`
			`usersToSandboxes: true,`
			`},`
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`});`
			`return json(res ?? {});`
			`} else {`
			`const res = await db.select().from(sandbox).all();`
			`return json(res ?? {});`
			`}`
implement server actions for sandbox data mutation 2024-04-27 21:24:20 -04:00			`} else if (method === "DELETE") {`
			`const params = url.searchParams;`
			`if (params.has("id")) {`
			`const id = params.get("id") as string;`
updating logic 2024-05-01 02:28:39 -04:00			`await db.delete(usersToSandboxes).where(eq(usersToSandboxes.sandboxId, id));`
			`await db.delete(sandbox).where(eq(sandbox.id, id));`
implement server actions for sandbox data mutation 2024-04-27 21:24:20 -04:00			`return success;`
			`} else {`
			`return invalidRequest;`
			`}`
			`} else if (method === "POST") {`
			`const initSchema = z.object({`
			`id: z.string(),`
			`name: z.string().optional(),`
			`visibility: z.enum(["public", "private"]).optional(),`
			`});`

			`const body = await request.json();`
			`const { id, name, visibility } = initSchema.parse(body);`
			`const sb = await db.update(sandbox).set({ name, visibility }).where(eq(sandbox.id, id)).returning().get();`

			`return success;`
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`} else if (method === "PUT") {`
			`const initSchema = z.object({`
			`type: z.enum(["react", "node"]),`
			`name: z.string(),`
			`userId: z.string(),`
			`visibility: z.enum(["public", "private"]),`
			`});`
split db and storage workers 2024-04-22 00:30:50 -04:00
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`const body = await request.json();`
			`const { type, name, userId, visibility } = initSchema.parse(body);`
update schema + working sandbox creation route 2024-04-24 02:22:06 -04:00
add basic ratelimiting 2024-05-05 12:55:34 -07:00			`const allSandboxes = await db.select().from(sandbox).all();`
			`if (allSandboxes.length >= 8) {`
			`return new Response("You reached the maximum # of sandboxes.", { status: 400 });`
			`}`

add sonner + project creation working 2024-04-27 16:22:35 -04:00			`const sb = await db.insert(sandbox).values({ type, name, userId, visibility }).returning().get();`
update schema + working sandbox creation route 2024-04-24 02:22:06 -04:00
add worker service binding + inactivity detection 2024-05-06 21:29:25 -07:00			`const initStorageRequest = new Request("https://storage.ishaan1013.workers.dev/api/init", {`
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`method: "POST",`
			`body: JSON.stringify({ sandboxId: sb.id, type }),`
			`headers: { "Content-Type": "application/json" },`
sandbox data route + cosmetic changes 2024-04-27 00:28:00 -04:00			`});`
add worker service binding + inactivity detection 2024-05-06 21:29:25 -07:00			`const initStorageRes = await env.STORAGE.fetch(initStorageRequest);`

			`const initStorage = await initStorageRes.text();`
add sonner + project creation working 2024-04-27 16:22:35 -04:00
			`return new Response(sb.id, { status: 200 });`
sandbox data route + cosmetic changes 2024-04-27 00:28:00 -04:00			`} else {`
add sonner + project creation working 2024-04-27 16:22:35 -04:00			`return methodNotAllowed;`
sandbox data route + cosmetic changes 2024-04-27 00:28:00 -04:00			`}`
unsharing logic 2024-05-01 02:22:02 -04:00			`} else if (path === "/api/sandbox/share") {`
shared with me page logic 2024-05-01 02:49:25 -04:00			`if (method === "GET") {`
			`const params = url.searchParams;`
			`if (params.has("id")) {`
			`const id = params.get("id") as string;`
			`const res = await db.query.usersToSandboxes.findMany({`
			`where: (uts, { eq }) => eq(uts.userId, id),`
			`});`

			`const owners = await Promise.all(`
			`res.map(async (r) => {`
			`const sb = await db.query.sandbox.findFirst({`
			`where: (sandbox, { eq }) => eq(sandbox.id, r.sandboxId),`
			`with: {`
			`author: true,`
			`},`
			`});`
			`if (!sb) return;`
improve share logic 2024-05-01 08:20:08 -04:00			`return { id: sb.id, name: sb.name, type: sb.type, author: sb.author.name, sharedOn: r.sharedOn };`
shared with me page logic 2024-05-01 02:49:25 -04:00			`})`
			`);`

			`return json(owners ?? {});`
			`} else return invalidRequest;`
			`} else if (method === "POST") {`
unsharing logic 2024-05-01 02:22:02 -04:00			`const shareSchema = z.object({`
			`sandboxId: z.string(),`
			`email: z.string(),`
			`});`
sharing logic 2024-05-01 01:53:49 -04:00
unsharing logic 2024-05-01 02:22:02 -04:00			`const body = await request.json();`
			`const { sandboxId, email } = shareSchema.parse(body);`

			`const user = await db.query.user.findFirst({`
			`where: (user, { eq }) => eq(user.email, email),`
			`with: {`
improve share logic 2024-05-01 08:20:08 -04:00			`sandbox: true,`
unsharing logic 2024-05-01 02:22:02 -04:00			`usersToSandboxes: true,`
			`},`
			`});`

			`if (!user) {`
			`return new Response("No user associated with email.", { status: 400 });`
			`}`

improve share logic 2024-05-01 08:20:08 -04:00			`if (user.sandbox.find((sb) => sb.id === sandboxId)) {`
			`return new Response("Cannot share with yourself!", { status: 400 });`
			`}`

unsharing logic 2024-05-01 02:22:02 -04:00			`if (user.usersToSandboxes.find((uts) => uts.sandboxId === sandboxId)) {`
			`return new Response("User already has access.", { status: 400 });`
			`}`
sql schema update + start share logic 2024-05-01 01:29:16 -04:00
improve share logic 2024-05-01 08:20:08 -04:00			`await db.insert(usersToSandboxes).values({ userId: user.id, sandboxId, sharedOn: new Date() }).get();`
sql schema update + start share logic 2024-05-01 01:29:16 -04:00
unsharing logic 2024-05-01 02:22:02 -04:00			`return success;`
			`} else if (method === "DELETE") {`
			`const deleteShareSchema = z.object({`
			`sandboxId: z.string(),`
			`userId: z.string(),`
			`});`

			`const body = await request.json();`
			`const { sandboxId, userId } = deleteShareSchema.parse(body);`

			`await db.delete(usersToSandboxes).where(and(eq(usersToSandboxes.userId, userId), eq(usersToSandboxes.sandboxId, sandboxId)));`

			`return success;`
			`} else return methodNotAllowed;`
add ai generations limit + random bug fixes 2024-05-05 16:51:30 -07:00			`} else if (path === "/api/sandbox/generate" && method === "POST") {`
			`const generateSchema = z.object({`
			`userId: z.string(),`
			`});`
			`const body = await request.json();`
			`const { userId } = generateSchema.parse(body);`

			`const dbUser = await db.query.user.findFirst({`
			`where: (user, { eq }) => eq(user.id, userId),`
			`});`
			`if (!dbUser) {`
			`return new Response("User not found.", { status: 400 });`
			`}`
reduce # generations to 10 2024-05-17 22:25:55 -07:00			`if (dbUser.generations !== null && dbUser.generations >= 10) {`
add ai generations limit + random bug fixes 2024-05-05 16:51:30 -07:00			`return new Response("You reached the maximum # of generations.", { status: 400 });`
			`}`

			`await db`
			`.update(user)`
			.set({ generations: sql`${user.generations} + 1` })
			`.where(eq(user.id, userId))`
			`.get();`

			`return success;`
update schema + working sandbox creation route 2024-04-24 02:22:06 -04:00			`} else if (path === "/api/user") {`
pass data properly to userbutton 2024-04-18 15:25:20 -04:00			`if (method === "GET") {`
fix db relations + display sandboxes on dash 2024-04-18 00:13:40 -04:00			`const params = url.searchParams;`
pass data properly to userbutton 2024-04-18 15:25:20 -04:00
			`if (params.has("id")) {`
auth syncing 2024-04-17 22:55:02 -04:00			`const id = params.get("id") as string;`
fix db relations + display sandboxes on dash 2024-04-18 00:13:40 -04:00			`const res = await db.query.user.findFirst({`
			`where: (user, { eq }) => eq(user.id, id),`
			`with: {`
			`sandbox: true,`
sql schema update + start share logic 2024-05-01 01:29:16 -04:00			`usersToSandboxes: true,`
fix db relations + display sandboxes on dash 2024-04-18 00:13:40 -04:00			`},`
			`});`
auth syncing 2024-04-17 22:55:02 -04:00			`return json(res ?? {});`
			`} else {`
pass data properly to userbutton 2024-04-18 15:25:20 -04:00			`const res = await db.select().from(user).all();`
			`return json(res ?? {});`
auth syncing 2024-04-17 22:55:02 -04:00			`}`
pass data properly to userbutton 2024-04-18 15:25:20 -04:00			`} else if (method === "POST") {`
			`const userSchema = z.object({`
			`id: z.string(),`
			`name: z.string(),`
			`email: z.string().email(),`
			`});`

			`const body = await request.json();`
			`const { id, name, email } = userSchema.parse(body);`

			`const res = await db.insert(user).values({ id, name, email }).returning().get();`
			`return json({ res });`
refactor routes everywhere 2024-04-17 21:24:57 -04:00			`} else {`
split db and storage workers 2024-04-22 00:30:50 -04:00			`return methodNotAllowed;`
refactor routes everywhere 2024-04-17 21:24:57 -04:00			`}`
split db and storage workers 2024-04-22 00:30:50 -04:00			`} else return notFound;`
refactor routes everywhere 2024-04-17 21:24:57 -04:00			`},`
start backend db 2024-04-16 18:19:34 -04:00			`};`