chore: Add the correct security and x attributes and create security schema, fix path routes and change schema to be defined as requested

matiasperrone · matiasperrone · commit 21e91d7b1f61 · 2025-11-26T21:57:46.000Z
diff --git a/app/Http/Controllers/Apis/Protected/Summit/OAuth2SummitRegistrationInvitationApiController.php b/app/Http/Controllers/Apis/Protected/Summit/OAuth2SummitRegistrationInvitationApiController.php
@@ -19,8 +19,10 @@
 use App\Http\Utils\EpochCellFormatter;
 use App\Jobs\Emails\Registration\Invitations\InviteSummitRegistrationEmail;
 use App\Jobs\Emails\Registration\Invitations\ReInviteSummitRegistrationEmail;
+use App\Models\Foundation\Main\IGroup;
 use App\Models\Foundation\Summit\Repositories\ISummitRegistrationInvitationRepository;
 use App\ModelSerializers\SerializerUtils;
+use App\Security\SummitScopes;
 use App\Services\Model\ISummitRegistrationInvitationService;
 use Illuminate\Http\Request as LaravelRequest;
 use Illuminate\Http\Response;
@@ -85,9 +87,21 @@ public function __construct
      */
     #[OA\Post(
         path: "/api/v1/summits/{id}/registration-invitations/csv",
+        operationId: 'ingestInvitations',
         summary: "Import registration invitations from CSV file",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -151,10 +165,21 @@ public function ingestInvitations(LaravelRequest $request, $summit_id)
      * @return \Illuminate\Http\JsonResponse|mixed
      */
     #[OA\Get(
-        path: "/api/v1/summits/registration-invitations/tokens/{token}",
+        path: "/api/v1/summits/registration-invitations/{token}",
+        operationId: 'getInvitationByToken',
         summary: "Get a registration invitation by token",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::ReadMyRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: "token",
@@ -222,9 +247,21 @@ protected function getChildFromSummit(Summit $summit, $child_id): ?IEntity
      */
     #[OA\Get(
         path: "/api/v1/summits/{id}/registration-invitations/{invitation_id}",
+        operationId: 'getRegistrationInvitation',
         summary: "Get a registration invitation by id",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::ReadAllSummitData,
+            SummitScopes::ReadRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -264,9 +301,21 @@ public function get($summit_id, $invitation_id)
      */
     #[OA\Get(
         path: "/api/v1/summits/{id}/registration-invitations",
+        operationId: 'getAllBySummit',
         summary: "Get all registration invitations for a summit",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::ReadAllSummitData,
+            SummitScopes::ReadRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -383,9 +432,21 @@ function () {
      */
     #[OA\Get(
         path: "/api/v1/summits/{id}/registration-invitations/csv",
+        operationId: 'getAllBySummitCSV',
         summary: "Export registration invitations to CSV",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::ReadAllSummitData,
+            SummitScopes::ReadRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -524,7 +585,7 @@ function () {
                     $columns = $allowed_columns;
                 return $columns;
             },
-            'summit-registration-invitations-'
+            'Summit Registration Invitations-'
         );
     }
 
@@ -548,9 +609,21 @@ protected function deleteChild(Summit $summit, $child_id): void
      */
     #[OA\Delete(
         path: "/api/v1/summits/{id}/registration-invitations/{invitation_id}",
+        operationId: 'deleteRegistrationInvitation',
         summary: "Delete a registration invitation",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -606,9 +679,21 @@ function getAddValidationRules(array $payload): array
      */
     #[OA\Post(
         path: "/api/v1/summits/{id}/registration-invitations",
+        operationId: 'addRegistrationInvitation',
         summary: "Create a registration invitation",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -671,9 +756,21 @@ protected function updateChild(Summit $summit, int $child_id, array $payload): I
      */
     #[OA\Put(
         path: "/api/v1/summits/{id}/registration-invitations/{invitation_id}",
+        operationId: 'updateRegistrationInvitation',
         summary: "Update a registration invitation",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -721,9 +818,21 @@ public function update($summit_id, $invitation_id)
      */
     #[OA\Delete(
         path: "/api/v1/summits/{id}/registration-invitations/all",
+        operationId: 'deleteAllRegistrationInvitations',
         summary: "Delete all registration invitations for a summit",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -759,9 +868,21 @@ public function deleteAll($summit_id)
      */
     #[OA\Put(
         path: "/api/v1/summits/{id}/registration-invitations/all/send",
+        operationId: 'sendRegistrationInvitations',
         summary: "Send registration invitation emails",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::WriteSummitData,
+            SummitScopes::WriteRegistrationInvitations,
+        ]]],
+        x: [
+            'authz_groups' => [
+                IGroup::SuperAdmins,
+                IGroup::Administrators,
+                IGroup::SummitAdministrators,
+                IGroup::SummitRegistrationAdmins,
+            ]
+        ],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -877,9 +998,12 @@ public function send($summit_id)
      */
     #[OA\Get(
         path: "/api/v1/summits/{id}/registration-invitations/me",
+        operationId: 'getMyRegistrationInvitation',
         summary: "Get my registration invitation for the current user",
-        security: [["Bearer" => []]],
-        tags: ["summit-registration-invitations"],
+        security: [['summit_registration_invitation_oauth2' => [
+            SummitScopes::ReadMyRegistrationInvitations,
+        ]]],
+        tags: ["Summit Registration Invitations"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -933,8 +1057,9 @@ function getMyInvitation($summit_id)
      */
     #[OA\Get(
         path: "/api/public/v1/summits/{id}/registration-invitations/{token}",
+        operationId: 'getInvitationBySummitAndToken',
         summary: "Get a registration invitation by summit and token (public endpoint)",
-        tags: ["summit-registration-invitations"],
+        tags: ["Summit Registration Invitations (Public)"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
@@ -985,8 +1110,9 @@ function getInvitationBySummitAndToken($summit_id, $token)
      */
     #[OA\Delete(
         path: "/api/public/v1/summits/{id}/registration-invitations/{token}/reject",
+        operationId: 'rejectInvitationBySummitAndToken',
         summary: "Reject a registration invitation by summit and token (public endpoint)",
-        tags: ["summit-registration-invitations"],
+        tags: ["Summit Registration Invitations (Public)"],
         parameters: [
             new OA\Parameter(
                 name: 'id',
diff --git a/app/Swagger/Security/SummitRegistrationInvitationAuthSchema.php b/app/Swagger/Security/SummitRegistrationInvitationAuthSchema.php
@@ -0,0 +1,28 @@
+<?php
+
+namespace App\Swagger\Security;
+
+use App\Security\SummitScopes;
+use OpenApi\Attributes as OA;
+
+#[
+    OA\SecurityScheme(
+        type: 'oauth2',
+        securityScheme: 'summit_registration_invitation_oauth2',
+        flows: [
+            new OA\Flow(
+                authorizationUrl: L5_SWAGGER_CONST_AUTH_URL,
+                tokenUrl: L5_SWAGGER_CONST_TOKEN_URL,
+                flow: 'authorizationCode',
+                scopes: [
+                    SummitScopes::ReadAllSummitData => 'Read All Summit Data',
+                    SummitScopes::WriteSummitData => 'Write Summit Data',
+                    SummitScopes::ReadRegistrationInvitations => 'Read Registration Invitations',
+                    SummitScopes::WriteRegistrationInvitations => 'Write Registration Invitations',
+                    SummitScopes::ReadMyRegistrationInvitations => 'Read My Registration Invitations',
+                ],
+            ),
+        ],
+    )
+]
+class SummitRegistrationInvitationAuthSchema {}
diff --git a/app/Swagger/SummitRegistrationSchemas.php b/app/Swagger/SummitRegistrationSchemas.php
@@ -22,11 +22,11 @@
         new OA\Property(property: "action_date", type: "integer", nullable: true),
         new OA\Property(property: "acceptance_criteria", type: "string", enum: ["ANY_TICKET_TYPE", "ALL_TICKET_TYPES"]),
         new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"]),
-        new OA\Property(property: "allowed_ticket_types", type: "array", items: new OA\Items(type: ["integer", "SummitTicketType"]), nullable: true),
-        new OA\Property(property: "tags", type: "array", items: new OA\Items(type: ["integer", "Tag"]), nullable: true)
+        new OA\Property(property: "allowed_ticket_types", type: "array", items: new OA\Items(type: "integer"), description: "Array of SummitTicketType IDs, full object when expanded", nullable: true),
+        new OA\Property(property: "tags", type: "array", items: new OA\Items(type: ["integer", "string"]), description: "Array of Tag IDs or names when expanded", nullable: true),
     ]
 )]
-class SummitRegistrationInvitation
+class SummitRegistrationInvitationSchema
 {
 }
 
@@ -45,7 +45,7 @@ class SummitRegistrationInvitation
         )
     ]
 )]
-class PaginatedSummitRegistrationInvitationsResponse
+class PaginatedSummitRegistrationInvitationsResponseSchema
 {
 }
 
@@ -63,7 +63,7 @@ class PaginatedSummitRegistrationInvitationsResponse
         new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"])
     ]
 )]
-class SummitRegistrationInvitationCreateRequest
+class SummitRegistrationInvitationCreateRequestSchema
 {
 }
 
@@ -81,7 +81,7 @@ class SummitRegistrationInvitationCreateRequest
         new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"])
     ]
 )]
-class SummitRegistrationInvitationUpdateRequest
+class SummitRegistrationInvitationUpdateRequestSchema
 {
 }
 
@@ -94,7 +94,7 @@ class SummitRegistrationInvitationUpdateRequest
         new OA\Property(property: "acceptance_criteria", type: "string", enum: ["ANY_TICKET_TYPE", "ALL_TICKET_TYPES"])
     ]
 )]
-class SummitRegistrationInvitationCSVImportRequest
+class SummitRegistrationInvitationCSVImportRequestSchema
 {
 }
 
@@ -110,7 +110,7 @@ class SummitRegistrationInvitationCSVImportRequest
         new OA\Property(property: "outcome_email_recipient", type: "string", format: "email")
     ]
 )]
-class SendRegistrationInvitationsRequest
+class SendRegistrationInvitationsRequestSchema
 {
 }
 

Original file line number	Diff line number	Diff line change
`@@ -22,11 +22,11 @@`
`22`	`22`	`new OA\Property(property: "action_date", type: "integer", nullable: true),`
`23`	`23`	`new OA\Property(property: "acceptance_criteria", type: "string", enum: ["ANY_TICKET_TYPE", "ALL_TICKET_TYPES"]),`
`24`	`24`	`new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"]),`
`25`		`- new OA\Property(property: "allowed_ticket_types", type: "array", items: new OA\Items(type: ["integer", "SummitTicketType"]), nullable: true),`
`26`		`- new OA\Property(property: "tags", type: "array", items: new OA\Items(type: ["integer", "Tag"]), nullable: true)`
	`25`	`+ new OA\Property(property: "allowed_ticket_types", type: "array", items: new OA\Items(type: "integer"), description: "Array of SummitTicketType IDs, full object when expanded", nullable: true),`
	`26`	`+ new OA\Property(property: "tags", type: "array", items: new OA\Items(type: ["integer", "string"]), description: "Array of Tag IDs or names when expanded", nullable: true),`
`27`	`27`	`]`
`28`	`28`	`)]`
`29`		`-class SummitRegistrationInvitation`
	`29`	`+class SummitRegistrationInvitationSchema`
`30`	`30`	`{`
`31`	`31`	`}`
`32`	`32`
`@@ -45,7 +45,7 @@ class SummitRegistrationInvitation`
`45`	`45`	`)`
`46`	`46`	`]`
`47`	`47`	`)]`
`48`		`-class PaginatedSummitRegistrationInvitationsResponse`
	`48`	`+class PaginatedSummitRegistrationInvitationsResponseSchema`
`49`	`49`	`{`
`50`	`50`	`}`
`51`	`51`
`@@ -63,7 +63,7 @@ class PaginatedSummitRegistrationInvitationsResponse`
`63`	`63`	`new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"])`
`64`	`64`	`]`
`65`	`65`	`)]`
`66`		`-class SummitRegistrationInvitationCreateRequest`
	`66`	`+class SummitRegistrationInvitationCreateRequestSchema`
`67`	`67`	`{`
`68`	`68`	`}`
`69`	`69`
`@@ -81,7 +81,7 @@ class SummitRegistrationInvitationCreateRequest`
`81`	`81`	`new OA\Property(property: "status", type: "string", enum: ["Pending", "Accepted", "Rejected"])`
`82`	`82`	`]`
`83`	`83`	`)]`
`84`		`-class SummitRegistrationInvitationUpdateRequest`
	`84`	`+class SummitRegistrationInvitationUpdateRequestSchema`
`85`	`85`	`{`
`86`	`86`	`}`
`87`	`87`
`@@ -94,7 +94,7 @@ class SummitRegistrationInvitationUpdateRequest`
`94`	`94`	`new OA\Property(property: "acceptance_criteria", type: "string", enum: ["ANY_TICKET_TYPE", "ALL_TICKET_TYPES"])`
`95`	`95`	`]`
`96`	`96`	`)]`
`97`		`-class SummitRegistrationInvitationCSVImportRequest`
	`97`	`+class SummitRegistrationInvitationCSVImportRequestSchema`
`98`	`98`	`{`
`99`	`99`	`}`
`100`	`100`
`@@ -110,7 +110,7 @@ class SummitRegistrationInvitationCSVImportRequest`
`110`	`110`	`new OA\Property(property: "outcome_email_recipient", type: "string", format: "email")`
`111`	`111`	`]`
`112`	`112`	`)]`
`113`		`-class SendRegistrationInvitationsRequest`
	`113`	`+class SendRegistrationInvitationsRequestSchema`
`114`	`114`	`{`
`115`	`115`	`}`
`116`	`116`