Contract-first API with DTOs, validation, and server-side OpenAPI post-processing

Add dedicated request/response DTOs for all controllers, replacing raw JsonNode parameters with validated types. Move OpenAPI path-prefix stripping and ProcessorNode children injection into OpenApiCustomizer beans so the spec served at /api/v1/api-docs is already clean — eliminating the need for the ui/scripts/process-openapi.mjs post-processing script. Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
2026-03-14 15:33:37 +01:00
parent 50bb22d6f6
commit 465f210aee
43 changed files with 1561 additions and 509 deletions
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentInstanceResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentInstanceResponse.java
@@ -0,0 +1,27 @@
+package com.cameleer3.server.app.dto;
+
+import com.cameleer3.server.core.agent.AgentInfo;
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+import java.time.Instant;
+import java.util.List;
+
+@Schema(description = "Agent instance summary")
+public record AgentInstanceResponse(
+        @NotNull String id,
+        @NotNull String name,
+        @NotNull String group,
+        @NotNull String status,
+        @NotNull List<String> routeIds,
+        @NotNull Instant registeredAt,
+        @NotNull Instant lastHeartbeat
+) {
+    public static AgentInstanceResponse from(AgentInfo info) {
+        return new AgentInstanceResponse(
+                info.id(), info.name(), info.group(),
+                info.state().name(), info.routeIds(),
+                info.registeredAt(), info.lastHeartbeat()
+        );
+    }
+}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRefreshRequest.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRefreshRequest.java
@@ -0,0 +1,7 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Agent token refresh request")
+public record AgentRefreshRequest(@NotNull String refreshToken) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRefreshResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRefreshResponse.java
@@ -0,0 +1,7 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Refreshed access token")
+public record AgentRefreshResponse(@NotNull String accessToken) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRegistrationRequest.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRegistrationRequest.java
@@ -0,0 +1,17 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+import java.util.List;
+import java.util.Map;
+
+@Schema(description = "Agent registration payload")
+public record AgentRegistrationRequest(
+        @NotNull String agentId,
+        @NotNull String name,
+        @Schema(defaultValue = "default") String group,
+        String version,
+        List<String> routeIds,
+        Map<String, Object> capabilities
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRegistrationResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AgentRegistrationResponse.java
@@ -0,0 +1,14 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Agent registration result with JWT tokens and SSE endpoint")
+public record AgentRegistrationResponse(
+        @NotNull String agentId,
+        @NotNull String sseEndpoint,
+        long heartbeatIntervalMs,
+        @NotNull String serverPublicKey,
+        @NotNull String accessToken,
+        @NotNull String refreshToken
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AuthTokenResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/AuthTokenResponse.java
@@ -0,0 +1,10 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "JWT token pair")
+public record AuthTokenResponse(
+        @NotNull String accessToken,
+        @NotNull String refreshToken
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandBroadcastResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandBroadcastResponse.java
@@ -0,0 +1,12 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+import java.util.List;
+
+@Schema(description = "Result of broadcasting a command to multiple agents")
+public record CommandBroadcastResponse(
+        @NotNull List<String> commandIds,
+        int targetCount
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandRequest.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandRequest.java
@@ -0,0 +1,12 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Command to send to agent(s)")
+public record CommandRequest(
+        @NotNull @Schema(description = "Command type: config-update, deep-trace, or replay")
+        String type,
+        @Schema(description = "Command payload JSON")
+        Object payload
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandSingleResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/CommandSingleResponse.java
@@ -0,0 +1,10 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Result of sending a command to a single agent")
+public record CommandSingleResponse(
+        @NotNull String commandId,
+        @NotNull String status
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/ErrorResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/ErrorResponse.java
@@ -0,0 +1,7 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "Error response")
+public record ErrorResponse(@NotNull String message) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcAdminConfigRequest.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcAdminConfigRequest.java
@@ -0,0 +1,16 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+
+import java.util.List;
+
+@Schema(description = "OIDC configuration update request")
+public record OidcAdminConfigRequest(
+        boolean enabled,
+        String issuerUri,
+        String clientId,
+        String clientSecret,
+        String rolesClaim,
+        List<String> defaultRoles,
+        boolean autoSignup
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcAdminConfigResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcAdminConfigResponse.java
@@ -0,0 +1,31 @@
+package com.cameleer3.server.app.dto;
+
+import com.cameleer3.server.core.security.OidcConfig;
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+import java.util.List;
+
+@Schema(description = "OIDC configuration for admin management")
+public record OidcAdminConfigResponse(
+        boolean configured,
+        boolean enabled,
+        String issuerUri,
+        String clientId,
+        boolean clientSecretSet,
+        String rolesClaim,
+        List<String> defaultRoles,
+        boolean autoSignup
+) {
+    public static OidcAdminConfigResponse unconfigured() {
+        return new OidcAdminConfigResponse(false, false, null, null, false, null, null, false);
+    }
+
+    public static OidcAdminConfigResponse from(OidcConfig config) {
+        return new OidcAdminConfigResponse(
+                true, config.enabled(), config.issuerUri(), config.clientId(),
+                !config.clientSecret().isBlank(), config.rolesClaim(),
+                config.defaultRoles(), config.autoSignup()
+        );
+    }
+}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcPublicConfigResponse.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcPublicConfigResponse.java
@@ -0,0 +1,13 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "OIDC configuration for SPA login flow")
+public record OidcPublicConfigResponse(
+        @NotNull String issuer,
+        @NotNull String clientId,
+        @NotNull String authorizationEndpoint,
+        @Schema(description = "Present if the provider supports RP-initiated logout")
+        String endSessionEndpoint
+) {}
--- a/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcTestResult.java
+++ b/cameleer3-server-app/src/main/java/com/cameleer3/server/app/dto/OidcTestResult.java
@@ -0,0 +1,10 @@
+package com.cameleer3.server.app.dto;
+
+import io.swagger.v3.oas.annotations.media.Schema;
+import jakarta.validation.constraints.NotNull;
+
+@Schema(description = "OIDC provider connectivity test result")
+public record OidcTestResult(
+        @NotNull String status,
+        @NotNull String authorizationEndpoint
+) {}