Add categories and suppliers with CRUD routes

- category table with hierarchical parent_id, sort ordering, soft-delete - supplier table with contact info, account number, payment terms - CRUD routes for both with search on suppliers - Zod validation schemas in @forte/shared - Products will link to suppliers via join table (many-to-many) - 26 tests passing
2026-03-27 18:07:46 -05:00
parent 81894a5d23
commit 77a3a6baa9
12 changed files with 1345 additions and 1 deletions
--- a/packages/backend/src/routes/v1/inventory.ts
+++ b/packages/backend/src/routes/v1/inventory.ts
@@ -0,0 +1,99 @@
+import type { FastifyPluginAsync } from 'fastify'
+import {
+  CategoryCreateSchema,
+  CategoryUpdateSchema,
+  SupplierCreateSchema,
+  SupplierUpdateSchema,
+} from '@forte/shared/schemas'
+import { CategoryService, SupplierService } from '../../services/inventory.service.js'
+
+export const inventoryRoutes: FastifyPluginAsync = async (app) => {
+  // --- Categories ---
+
+  app.post('/categories', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const parsed = CategoryCreateSchema.safeParse(request.body)
+    if (!parsed.success) {
+      return reply.status(400).send({ error: { message: 'Validation failed', details: parsed.error.flatten(), statusCode: 400 } })
+    }
+    const category = await CategoryService.create(app.db, request.companyId, parsed.data)
+    return reply.status(201).send(category)
+  })
+
+  app.get('/categories', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const list = await CategoryService.list(app.db, request.companyId)
+    return reply.send(list)
+  })
+
+  app.get('/categories/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const category = await CategoryService.getById(app.db, request.companyId, id)
+    if (!category) return reply.status(404).send({ error: { message: 'Category not found', statusCode: 404 } })
+    return reply.send(category)
+  })
+
+  app.patch('/categories/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const parsed = CategoryUpdateSchema.safeParse(request.body)
+    if (!parsed.success) {
+      return reply.status(400).send({ error: { message: 'Validation failed', details: parsed.error.flatten(), statusCode: 400 } })
+    }
+    const category = await CategoryService.update(app.db, request.companyId, id, parsed.data)
+    if (!category) return reply.status(404).send({ error: { message: 'Category not found', statusCode: 404 } })
+    return reply.send(category)
+  })
+
+  app.delete('/categories/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const category = await CategoryService.softDelete(app.db, request.companyId, id)
+    if (!category) return reply.status(404).send({ error: { message: 'Category not found', statusCode: 404 } })
+    return reply.send(category)
+  })
+
+  // --- Suppliers ---
+
+  app.post('/suppliers', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const parsed = SupplierCreateSchema.safeParse(request.body)
+    if (!parsed.success) {
+      return reply.status(400).send({ error: { message: 'Validation failed', details: parsed.error.flatten(), statusCode: 400 } })
+    }
+    const supplier = await SupplierService.create(app.db, request.companyId, parsed.data)
+    return reply.status(201).send(supplier)
+  })
+
+  app.get('/suppliers', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const list = await SupplierService.list(app.db, request.companyId)
+    return reply.send(list)
+  })
+
+  app.get('/suppliers/search', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { q } = request.query as { q?: string }
+    if (!q) return reply.status(400).send({ error: { message: 'Query parameter q is required', statusCode: 400 } })
+    const results = await SupplierService.search(app.db, request.companyId, q)
+    return reply.send(results)
+  })
+
+  app.get('/suppliers/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const supplier = await SupplierService.getById(app.db, request.companyId, id)
+    if (!supplier) return reply.status(404).send({ error: { message: 'Supplier not found', statusCode: 404 } })
+    return reply.send(supplier)
+  })
+
+  app.patch('/suppliers/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const parsed = SupplierUpdateSchema.safeParse(request.body)
+    if (!parsed.success) {
+      return reply.status(400).send({ error: { message: 'Validation failed', details: parsed.error.flatten(), statusCode: 400 } })
+    }
+    const supplier = await SupplierService.update(app.db, request.companyId, id, parsed.data)
+    if (!supplier) return reply.status(404).send({ error: { message: 'Supplier not found', statusCode: 404 } })
+    return reply.send(supplier)
+  })
+
+  app.delete('/suppliers/:id', { preHandler: [app.authenticate] }, async (request, reply) => {
+    const { id } = request.params as { id: string }
+    const supplier = await SupplierService.softDelete(app.db, request.companyId, id)
+    if (!supplier) return reply.status(404).send({ error: { message: 'Supplier not found', statusCode: 404 } })
+    return reply.send(supplier)
+  })
+}