letsbe-orchestrator/app/playbooks/nextcloud.py

"""Nextcloud deployment playbook.

Defines the steps required to:
1. Set Nextcloud domain on a tenant server (v2: via NEXTCLOUD_SET_DOMAIN task)
2. Perform initial setup via Playwright automation (create admin account)

Tenant servers must have stacks and env templates under /opt/letsbe.
"""

import uuid
from typing import Any
from urllib.parse import urlparse

from pydantic import BaseModel, Field
from sqlalchemy.ext.asyncio import AsyncSession

from app.models.task import Task, TaskStatus


class CompositeStep(BaseModel):
    """A single step in a composite playbook."""

    type: str = Field(..., description="Task type (e.g., ENV_UPDATE, DOCKER_RELOAD)")
    payload: dict[str, Any] = Field(
        default_factory=dict, description="Payload for this step"
    )


# LetsBe standard paths
NEXTCLOUD_STACK_DIR = "/opt/letsbe/stacks/nextcloud"


# =============================================================================
# Initial Setup via Playwright
# =============================================================================


def build_nextcloud_initial_setup_step(
    *,
    base_url: str,
    admin_username: str,
    admin_password: str,
) -> dict[str, Any]:
    """
    Build a PLAYWRIGHT task payload for Nextcloud initial setup.

    This creates the admin account on a fresh Nextcloud installation.

    Args:
        base_url: The base URL for Nextcloud (e.g., "https://cloud.example.com")
        admin_username: Username for the admin account
        admin_password: Password for the admin account

    Returns:
        Task payload dict with type="PLAYWRIGHT"
    """
    # Extract domain from URL for allowlist
    parsed = urlparse(base_url)
    allowed_domain = parsed.netloc  # e.g., "cloud.example.com"

    return {
        "scenario": "nextcloud_initial_setup",
        "inputs": {
            "base_url": base_url,
            "admin_username": admin_username,
            "admin_password": admin_password,
        },
        "options": {
            "allowed_domains": [allowed_domain],
        },
        "timeout": 120,
    }


async def create_nextcloud_initial_setup_task(
    *,
    db: AsyncSession,
    tenant_id: uuid.UUID,
    agent_id: uuid.UUID,
    base_url: str,
    admin_username: str,
    admin_password: str,
) -> Task:
    """
    Create and persist a PLAYWRIGHT task for Nextcloud initial setup.

    Args:
        db: Async database session
        tenant_id: UUID of the tenant
        agent_id: UUID of the agent to assign the task to
        base_url: The base URL for Nextcloud
        admin_username: Username for the admin account
        admin_password: Password for the admin account

    Returns:
        The created Task object with type="PLAYWRIGHT"
    """
    payload = build_nextcloud_initial_setup_step(
        base_url=base_url,
        admin_username=admin_username,
        admin_password=admin_password,
    )

    task = Task(
        tenant_id=tenant_id,
        agent_id=agent_id,
        type="PLAYWRIGHT",
        payload=payload,
        status=TaskStatus.PENDING.value,
    )

    db.add(task)
    await db.commit()
    await db.refresh(task)

    return task


# =============================================================================
# Set Domain via NEXTCLOUD_SET_DOMAIN
# =============================================================================


def build_nextcloud_set_domain_steps(*, public_url: str, pull: bool) -> list[CompositeStep]:
    """
    Build the sequence of steps required to set Nextcloud domain (v2).

    Args:
        public_url: The public URL for Nextcloud (e.g., "https://cloud.example.com")
        pull: Whether to pull images before reloading the stack

    Returns:
        List of 2 CompositeStep objects:
        1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud via occ commands
        2. DOCKER_RELOAD - restarts the Nextcloud stack
    """
    steps = [
        # Step 1: Configure Nextcloud domain via occ
        CompositeStep(
            type="NEXTCLOUD_SET_DOMAIN",
            payload={
                "public_url": public_url,
            },
        ),
        # Step 2: Reload Docker stack
        CompositeStep(
            type="DOCKER_RELOAD",
            payload={
                "compose_dir": NEXTCLOUD_STACK_DIR,
                "pull": pull,
            },
        ),
    ]
    return steps


async def create_nextcloud_set_domain_task(
    *,
    db: AsyncSession,
    tenant_id: uuid.UUID,
    agent_id: uuid.UUID,
    public_url: str,
    pull: bool,
) -> Task:
    """
    Create and persist a COMPOSITE task for Nextcloud set-domain.

    Args:
        db: Async database session
        tenant_id: UUID of the tenant
        agent_id: UUID of the agent to assign the task to
        public_url: The public URL for Nextcloud
        pull: Whether to pull images before reloading

    Returns:
        The created Task object with type="COMPOSITE"
    """
    steps = build_nextcloud_set_domain_steps(public_url=public_url, pull=pull)

    task = Task(
        tenant_id=tenant_id,
        agent_id=agent_id,
        type="COMPOSITE",
        payload={"steps": [step.model_dump() for step in steps]},
        status=TaskStatus.PENDING.value,
    )

    db.add(task)
    await db.commit()
    await db.refresh(task)

    return task
feat: add Nextcloud set-domain playbook v2 Add endpoint POST /tenants/{tenant_id}/nextcloud/set-domain that creates a COMPOSITE task with two steps: 1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud domain via occ commands 2. DOCKER_RELOAD - restarts the Nextcloud stack Features: - Auto-resolves first online agent for tenant - Configurable pull flag for image updates - Full test coverage (unit + integration tests) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-04 14:04:21 +01:00			`"""Nextcloud deployment playbook.`

feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`Defines the steps required to:`
			`1. Set Nextcloud domain on a tenant server (v2: via NEXTCLOUD_SET_DOMAIN task)`
			`2. Perform initial setup via Playwright automation (create admin account)`
feat: add Nextcloud set-domain playbook v2 Add endpoint POST /tenants/{tenant_id}/nextcloud/set-domain that creates a COMPOSITE task with two steps: 1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud domain via occ commands 2. DOCKER_RELOAD - restarts the Nextcloud stack Features: - Auto-resolves first online agent for tenant - Configurable pull flag for image updates - Full test coverage (unit + integration tests) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-04 14:04:21 +01:00
feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`Tenant servers must have stacks and env templates under /opt/letsbe.`
feat: add Nextcloud set-domain playbook v2 Add endpoint POST /tenants/{tenant_id}/nextcloud/set-domain that creates a COMPOSITE task with two steps: 1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud domain via occ commands 2. DOCKER_RELOAD - restarts the Nextcloud stack Features: - Auto-resolves first online agent for tenant - Configurable pull flag for image updates - Full test coverage (unit + integration tests) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-04 14:04:21 +01:00			`"""`

			`import uuid`
			`from typing import Any`
feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`from urllib.parse import urlparse`
feat: add Nextcloud set-domain playbook v2 Add endpoint POST /tenants/{tenant_id}/nextcloud/set-domain that creates a COMPOSITE task with two steps: 1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud domain via occ commands 2. DOCKER_RELOAD - restarts the Nextcloud stack Features: - Auto-resolves first online agent for tenant - Configurable pull flag for image updates - Full test coverage (unit + integration tests) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-04 14:04:21 +01:00
			`from pydantic import BaseModel, Field`
			`from sqlalchemy.ext.asyncio import AsyncSession`

			`from app.models.task import Task, TaskStatus`


			`class CompositeStep(BaseModel):`
			`"""A single step in a composite playbook."""`

			`type: str = Field(..., description="Task type (e.g., ENV_UPDATE, DOCKER_RELOAD)")`
			`payload: dict[str, Any] = Field(`
			`default_factory=dict, description="Payload for this step"`
			`)`


			`# LetsBe standard paths`
			`NEXTCLOUD_STACK_DIR = "/opt/letsbe/stacks/nextcloud"`


feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`# =============================================================================`
			`# Initial Setup via Playwright`
			`# =============================================================================`


			`def build_nextcloud_initial_setup_step(`
			`*,`
			`base_url: str,`
			`admin_username: str,`
			`admin_password: str,`
			`) -> dict[str, Any]:`
			`"""`
			`Build a PLAYWRIGHT task payload for Nextcloud initial setup.`

			`This creates the admin account on a fresh Nextcloud installation.`

			`Args:`
			`base_url: The base URL for Nextcloud (e.g., "https://cloud.example.com")`
			`admin_username: Username for the admin account`
			`admin_password: Password for the admin account`

			`Returns:`
			`Task payload dict with type="PLAYWRIGHT"`
			`"""`
			`# Extract domain from URL for allowlist`
			`parsed = urlparse(base_url)`
			`allowed_domain = parsed.netloc # e.g., "cloud.example.com"`

			`return {`
fix: correct Playwright payload structure for Nextcloud setup - Change scenario name from 'nextcloud.initial_setup' to 'nextcloud_initial_setup' (underscore format) - Move allowed_domains from inputs to options (required by PlaywrightExecutor) - Update tests to match new payload structure 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-08 22:23:18 +01:00			`"scenario": "nextcloud_initial_setup",`
feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`"inputs": {`
			`"base_url": base_url,`
			`"admin_username": admin_username,`
			`"admin_password": admin_password,`
fix: correct Playwright payload structure for Nextcloud setup - Change scenario name from 'nextcloud.initial_setup' to 'nextcloud_initial_setup' (underscore format) - Move allowed_domains from inputs to options (required by PlaywrightExecutor) - Update tests to match new payload structure 🤖 Generated with [Claude Code](https://claude.ai/code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-08 22:23:18 +01:00			`},`
			`"options": {`
feat: add Nextcloud initial setup endpoint via Playwright Add POST /api/v1/tenants/{tenant_id}/nextcloud/setup endpoint that: - Creates a PLAYWRIGHT task for Nextcloud initial admin setup - Validates tenant has domain configured - Auto-resolves online agent for tenant - Performs health check against Nextcloud before creating task - Returns 409 if Nextcloud is unavailable Changes: - Add httpx for health checks - Add build_nextcloud_initial_setup_step() and create_nextcloud_initial_setup_task() - Add NextcloudInitialSetupRequest schema with username/password validation - Add check_nextcloud_availability() helper for health checks - Add comprehensive unit tests (42 tests total) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com> 2025-12-08 20:20:31 +01:00			`"allowed_domains": [allowed_domain],`
			`},`
			`"timeout": 120,`
			`}`


			`async def create_nextcloud_initial_setup_task(`
			`*,`
			`db: AsyncSession,`
			`tenant_id: uuid.UUID,`
			`agent_id: uuid.UUID,`
			`base_url: str,`
			`admin_username: str,`
			`admin_password: str,`
			`) -> Task:`
			`"""`
			`Create and persist a PLAYWRIGHT task for Nextcloud initial setup.`

			`Args:`
			`db: Async database session`
			`tenant_id: UUID of the tenant`
			`agent_id: UUID of the agent to assign the task to`
			`base_url: The base URL for Nextcloud`
			`admin_username: Username for the admin account`
			`admin_password: Password for the admin account`

			`Returns:`
			`The created Task object with type="PLAYWRIGHT"`
			`"""`
			`payload = build_nextcloud_initial_setup_step(`
			`base_url=base_url,`
			`admin_username=admin_username,`
			`admin_password=admin_password,`
			`)`

			`task = Task(`
			`tenant_id=tenant_id,`
			`agent_id=agent_id,`
			`type="PLAYWRIGHT",`
			`payload=payload,`
			`status=TaskStatus.PENDING.value,`
			`)`

			`db.add(task)`
			`await db.commit()`
			`await db.refresh(task)`

			`return task`


			`# =============================================================================`
			`# Set Domain via NEXTCLOUD_SET_DOMAIN`
			`# =============================================================================`


feat: add Nextcloud set-domain playbook v2 Add endpoint POST /tenants/{tenant_id}/nextcloud/set-domain that creates a COMPOSITE task with two steps: 1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud domain via occ commands 2. DOCKER_RELOAD - restarts the Nextcloud stack Features: - Auto-resolves first online agent for tenant - Configurable pull flag for image updates - Full test coverage (unit + integration tests) 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com> 2025-12-04 14:04:21 +01:00			`def build_nextcloud_set_domain_steps(*, public_url: str, pull: bool) -> list[CompositeStep]:`
			`"""`
			`Build the sequence of steps required to set Nextcloud domain (v2).`

			`Args:`
			`public_url: The public URL for Nextcloud (e.g., "https://cloud.example.com")`
			`pull: Whether to pull images before reloading the stack`

			`Returns:`
			`List of 2 CompositeStep objects:`
			`1. NEXTCLOUD_SET_DOMAIN - configures Nextcloud via occ commands`
			`2. DOCKER_RELOAD - restarts the Nextcloud stack`
			`"""`
			`steps = [`
			`# Step 1: Configure Nextcloud domain via occ`
			`CompositeStep(`
			`type="NEXTCLOUD_SET_DOMAIN",`
			`payload={`
			`"public_url": public_url,`
			`},`
			`),`
			`# Step 2: Reload Docker stack`
			`CompositeStep(`
			`type="DOCKER_RELOAD",`
			`payload={`
			`"compose_dir": NEXTCLOUD_STACK_DIR,`
			`"pull": pull,`
			`},`
			`),`
			`]`
			`return steps`


			`async def create_nextcloud_set_domain_task(`
			`*,`
			`db: AsyncSession,`
			`tenant_id: uuid.UUID,`
			`agent_id: uuid.UUID,`
			`public_url: str,`
			`pull: bool,`
			`) -> Task:`
			`"""`
			`Create and persist a COMPOSITE task for Nextcloud set-domain.`

			`Args:`
			`db: Async database session`
			`tenant_id: UUID of the tenant`
			`agent_id: UUID of the agent to assign the task to`
			`public_url: The public URL for Nextcloud`
			`pull: Whether to pull images before reloading`

			`Returns:`
			`The created Task object with type="COMPOSITE"`
			`"""`
			`steps = build_nextcloud_set_domain_steps(public_url=public_url, pull=pull)`

			`task = Task(`
			`tenant_id=tenant_id,`
			`agent_id=agent_id,`
			`type="COMPOSITE",`
			`payload={"steps": [step.model_dump() for step in steps]},`
			`status=TaskStatus.PENDING.value,`
			`)`

			`db.add(task)`
			`await db.commit()`
			`await db.refresh(task)`

			`return task`