feat(fc2b): add /api/allowlist and /api/aliases endpoints

Allowlist: list-all, get-one (404 if not listed), PATCH threshold
(range-validated), DELETE. Aliases: list-all (with canonical name),
create (idempotent, 201), DELETE by (string, category). Tests
integration-marked.

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
2026-05-15 07:46:38 -04:00
parent 07961dfe04
commit 46338a1f2e
5 changed files with 247 additions and 0 deletions
+4
View File
@@ -14,6 +14,8 @@ api_bp.add_url_rule("/health", view_func=health.get_health, methods=["GET"])
def all_blueprints() -> list[Blueprint]:
from .aliases import aliases_bp
from .allowlist import allowlist_bp
from .gallery import gallery_bp
from .import_admin import import_admin_bp
from .settings import settings_bp
@@ -26,4 +28,6 @@ def all_blueprints() -> list[Blueprint]:
settings_bp,
import_admin_bp,
suggestions_bp,
allowlist_bp,
aliases_bp,
]
+65
View File
@@ -0,0 +1,65 @@
"""Aliases API: list, create, remove."""
from quart import Blueprint, jsonify, request
from ..extensions import make_engine, make_session_factory
from ..services.ml.aliases import AliasService
aliases_bp = Blueprint("aliases", __name__, url_prefix="/api")
_engine = None
_Session = None
def _session_factory():
global _engine, _Session
if _engine is None:
_engine = make_engine()
_Session = make_session_factory(_engine)
return _Session
@aliases_bp.route("/aliases", methods=["GET"])
async def list_aliases():
Session = _session_factory()
async with Session() as session:
rows = await AliasService(session).list_all()
return jsonify(
[
{
"alias_string": r.alias_string,
"alias_category": r.alias_category,
"canonical_tag_id": r.canonical_tag_id,
"canonical_tag_name": r.canonical_tag_name,
}
for r in rows
]
)
@aliases_bp.route("/aliases", methods=["POST"])
async def create_alias():
body = await request.get_json()
required = {"alias_string", "alias_category", "canonical_tag_id"}
if not body or not required.issubset(body):
return jsonify({"error": f"required: {sorted(required)}"}), 400
Session = _session_factory()
async with Session() as session:
await AliasService(session).create(
body["alias_string"],
body["alias_category"],
body["canonical_tag_id"],
)
await session.commit()
return "", 201
@aliases_bp.route(
"/aliases/<alias_string>/<alias_category>", methods=["DELETE"]
)
async def remove_alias(alias_string: str, alias_category: str):
Session = _session_factory()
async with Session() as session:
await AliasService(session).remove(alias_string, alias_category)
await session.commit()
return "", 204
+74
View File
@@ -0,0 +1,74 @@
"""Allowlist API: list, adjust threshold, remove."""
from quart import Blueprint, jsonify, request
from ..extensions import make_engine, make_session_factory
from ..models import TagAllowlist
from ..services.ml.allowlist import AllowlistService
allowlist_bp = Blueprint("allowlist", __name__, url_prefix="/api")
_engine = None
_Session = None
def _session_factory():
global _engine, _Session
if _engine is None:
_engine = make_engine()
_Session = make_session_factory(_engine)
return _Session
@allowlist_bp.route("/allowlist", methods=["GET"])
async def list_allowlist():
Session = _session_factory()
async with Session() as session:
rows = await AllowlistService(session).list_all()
return jsonify(
[
{
"tag_id": r.tag_id,
"tag_name": r.tag_name,
"tag_kind": r.tag_kind,
"min_confidence": r.min_confidence,
}
for r in rows
]
)
@allowlist_bp.route("/tags/<int:tag_id>/allowlist", methods=["GET"])
async def get_one(tag_id: int):
Session = _session_factory()
async with Session() as session:
row = await session.get(TagAllowlist, tag_id)
if row is None:
return jsonify({"error": "not on allowlist"}), 404
return jsonify(
{"min_confidence": row.min_confidence, "added_at": row.added_at.isoformat()}
)
@allowlist_bp.route("/tags/<int:tag_id>/allowlist", methods=["PATCH"])
async def patch_threshold(tag_id: int):
body = await request.get_json()
if not body or "min_confidence" not in body:
return jsonify({"error": "min_confidence required"}), 400
mc = float(body["min_confidence"])
if not (0 < mc <= 1):
return jsonify({"error": "min_confidence must be in (0, 1]"}), 400
Session = _session_factory()
async with Session() as session:
await AllowlistService(session).update_threshold(tag_id, mc)
await session.commit()
return "", 204
@allowlist_bp.route("/tags/<int:tag_id>/allowlist", methods=["DELETE"])
async def remove(tag_id: int):
Session = _session_factory()
async with Session() as session:
await AllowlistService(session).remove(tag_id)
await session.commit()
return "", 204