feat(api): .NET 10 multi-tenant REST API

Full backend implementation: - Multi-tenant cafe/restaurant management (menus, orders, tables, staff) - POS order flow with ZarinPal and Snappfood payment integration - OTP authentication via Kavenegar SMS - QR digital menu with public discover/finder endpoints - Customer loyalty, coupons, CRM - PostgreSQL via EF Core, Redis for caching/sessions - Background jobs, webhook handlers - Full migration history Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>
2026-05-27 21:33:48 +03:30
parent 03376b3ea1
commit ef15fd6247
472 changed files with 120358 additions and 0 deletions
@@ -0,0 +1,106 @@
+using FluentValidation;
+using Microsoft.AspNetCore.Mvc;
+using Meezi.API.Models.Crm;
+using Meezi.API.Services;
+using Meezi.Core.Interfaces;
+using Meezi.Shared;
+
+namespace Meezi.API.Controllers;
+
+[Route("api/cafes/{cafeId}/customers")]
+public class CustomersController : CafeApiControllerBase
+{
+    private readonly ICustomerService _customerService;
+    private readonly IValidator<CreateCustomerRequest> _createValidator;
+    private readonly IValidator<UpdateCustomerRequest> _updateValidator;
+
+    public CustomersController(
+        ICustomerService customerService,
+        IValidator<CreateCustomerRequest> createValidator,
+        IValidator<UpdateCustomerRequest> updateValidator)
+    {
+        _customerService = customerService;
+        _createValidator = createValidator;
+        _updateValidator = updateValidator;
+    }
+
+    [HttpGet]
+    public async Task<IActionResult> Search(
+        string cafeId,
+        [FromQuery] string? q,
+        ITenantContext tenant,
+        CancellationToken cancellationToken)
+    {
+        if (EnsureCafeAccess(cafeId, tenant) is { } denied) return denied;
+        var data = await _customerService.SearchAsync(cafeId, q, cancellationToken);
+        return Ok(new ApiResponse<IReadOnlyList<CustomerDto>>(true, data));
+    }
+
+    [HttpGet("{id}")]
+    public async Task<IActionResult> Get(
+        string cafeId,
+        string id,
+        ITenantContext tenant,
+        CancellationToken cancellationToken)
+    {
+        if (EnsureCafeAccess(cafeId, tenant) is { } denied) return denied;
+        var data = await _customerService.GetAsync(cafeId, id, cancellationToken);
+        if (data is null) return NotFoundError();
+        return Ok(new ApiResponse<CustomerDto>(true, data));
+    }
+
+    [HttpPost]
+    public async Task<IActionResult> Create(
+        string cafeId,
+        [FromBody] CreateCustomerRequest request,
+        ITenantContext tenant,
+        CancellationToken cancellationToken)
+    {
+        if (EnsureCafeAccess(cafeId, tenant) is { } denied) return denied;
+        var validation = await _createValidator.ValidateAsync(request, cancellationToken);
+        if (!validation.IsValid) return BadRequest(ValidationError(validation));
+
+        var data = await _customerService.CreateAsync(cafeId, request, cancellationToken);
+        if (data is null)
+            return BadRequest(new ApiResponse<object>(false, null,
+                new ApiError("DUPLICATE_PHONE", "A customer with this phone already exists.")));
+
+        return Ok(new ApiResponse<CustomerDto>(true, data));
+    }
+
+    [HttpPatch("{id}")]
+    public async Task<IActionResult> Update(
+        string cafeId,
+        string id,
+        [FromBody] UpdateCustomerRequest request,
+        ITenantContext tenant,
+        CancellationToken cancellationToken)
+    {
+        if (EnsureCafeAccess(cafeId, tenant) is { } denied) return denied;
+        var validation = await _updateValidator.ValidateAsync(request, cancellationToken);
+        if (!validation.IsValid) return BadRequest(ValidationError(validation));
+
+        var existing = await _customerService.GetAsync(cafeId, id, cancellationToken);
+        if (existing is null) return NotFoundError();
+
+        var data = await _customerService.UpdateAsync(cafeId, id, request, cancellationToken);
+        if (data is null)
+            return BadRequest(new ApiResponse<object>(false, null,
+                new ApiError("DUPLICATE_PHONE", "A customer with this phone already exists.")));
+
+        return Ok(new ApiResponse<CustomerDto>(true, data));
+    }
+
+    [HttpDelete("{id}")]
+    public async Task<IActionResult> Delete(
+        string cafeId,
+        string id,
+        ITenantContext tenant,
+        CancellationToken cancellationToken)
+    {
+        if (EnsureCafeAccess(cafeId, tenant) is { } denied) return denied;
+        var deleted = await _customerService.DeleteAsync(cafeId, id, cancellationToken);
+        if (!deleted) return NotFoundError();
+        return Ok(new ApiResponse<object>(true, new { id }));
+    }
+}