rubis/apps/api/start/routes.ts

/*
|--------------------------------------------------------------------------
| Routes file
|--------------------------------------------------------------------------
|
| Toutes les routes sont sous /api/v1/. Les groupes auth et account sont
| importés depuis le contrôleur généré par Tuyau pour garantir le contrat
| client typé (cf. docs/tech/backend.md §8).
|
*/

import { middleware } from '#start/kernel'
import router from '@adonisjs/core/services/router'
import { controllers } from '#generated/controllers'

router.get('/', () => {
  return { hello: 'world' }
})

router
  .group(() => {
    /**
     * Auth — public.
     */
    router
      .group(() => {
        router.post('signup', [controllers.NewAccount, 'store']).as('signup')
        router.post('login', [controllers.AccessTokens, 'store']).as('login')
      })
      .prefix('auth')
      .as('auth')

    /**
     * Compte courant — auth requise.
     */
    router
      .group(() => {
        router.get('profile', [controllers.Profile, 'show']).as('profile.show')
        router.patch('profile', [controllers.Profile, 'update']).as('profile.update')
        router.post('logout', [controllers.AccessTokens, 'destroy']).as('logout')
      })
      .prefix('account')
      .as('account')
      .use(middleware.auth())

    /**
     * Organisation rattachée à l'utilisateur courant — auth requise.
     */
    router
      .group(() => {
        router.get('me', [controllers.Organizations, 'show']).as('show')
        router.patch('me', [controllers.Organizations, 'update']).as('update')
      })
      .prefix('organizations')
      .as('organizations')
      .use(middleware.auth())

    /**
     * Clients — auth requise, scope par organization de l'utilisateur courant.
     */
    router
      .group(() => {
        router.get('', [controllers.Clients, 'index']).as('index')
        router.post('', [controllers.Clients, 'store']).as('store')
        router.get(':id', [controllers.Clients, 'show']).as('show').where('id', router.matchers.uuid())
        router.patch(':id', [controllers.Clients, 'update']).as('update').where('id', router.matchers.uuid())
      })
      .prefix('clients')
      .as('clients')
      .use(middleware.auth())

    /**
     * Plans — auth requise. Lookup par slug (stable et lisible :
     * /parametres/plans/standard-30j). POST plan custom = V2.
     */
    router
      .group(() => {
        router.get('', [controllers.Plans, 'index']).as('index')
        router.get(':slug', [controllers.Plans, 'show']).as('show')
        router.patch(':slug', [controllers.Plans, 'update']).as('update')
      })
      .prefix('plans')
      .as('plans')
      .use(middleware.auth())

    /**
     * Invoices — auth requise. Note : /counts doit être déclaré AVANT
     * /:id (sinon `:id` matche "counts" et le param.id devient la string).
     */
    router
      .group(() => {
        router.get('', [controllers.Invoices, 'index']).as('index')
        router.post('', [controllers.Invoices, 'store']).as('store')
        router.get('counts', [controllers.Invoices, 'counts']).as('counts')
        router.get(':id', [controllers.Invoices, 'show']).as('show').where('id', router.matchers.uuid())
        router
          .post(':id/mark-paid', [controllers.Invoices, 'markPaid'])
          .as('mark-paid')
          .where('id', router.matchers.uuid())
      })
      .prefix('invoices')
      .as('invoices')
      .use(middleware.auth())
  })
  .prefix('/api/v1')