refactor: put export endpoint in system controller

Author: nicotsx

app/client/api-client/sdk.gen.ts

@@ -430,7 +430,7 @@ export const downloadResticPassword = <ThrowOnError extends boolean = false>(opt
  * Export full configuration including all volumes, repositories, backup schedules, and notifications
  */
 export const exportFullConfig = <ThrowOnError extends boolean = false>(options?: Options<ExportFullConfigData, ThrowOnError>) => (options?.client ?? client).post<ExportFullConfigResponses, ExportFullConfigErrors, ThrowOnError>({
-    url: '/api/v1/config/export',
+    url: '/api/v1/system/export',
     ...options,
     headers: {
         'Content-Type': 'application/json',

app/client/api-client/types.gen.ts

@@ -3345,7 +3345,7 @@ export type ExportFullConfigData = {
     };
     path?: never;
     query?: never;
-    url: '/api/v1/config/export';
+    url: '/api/v1/system/export';
 };
 
 export type ExportFullConfigErrors = {

app/server/app.ts

@@ -12,7 +12,6 @@ import { volumeController } from "./modules/volumes/volume.controller";
 import { backupScheduleController } from "./modules/backups/backups.controller";
 import { eventsController } from "./modules/events/events.controller";
 import { notificationsController } from "./modules/notifications/notifications.controller";
-import { configExportController } from "./modules/lifecycle/config-export.controller";
 import { handleServiceError } from "./utils/errors";
 import { logger } from "./utils/logger";
 import { config } from "./core/config";
@@ -61,8 +60,7 @@ export const createApp = () => {
 		.route("/api/v1/backups", backupScheduleController)
 		.route("/api/v1/notifications", notificationsController)
 		.route("/api/v1/system", systemController)
-		.route("/api/v1/events", eventsController)
-		.route("/api/v1/config", configExportController);
+		.route("/api/v1/events", eventsController);
 
 	app.get("/api/v1/openapi.json", generalDescriptor(app));
 	app.get("/api/v1/docs", requireAuth, scalarDescriptor);

app/server/modules/lifecycle/config-export.controller.ts

@@ -3,6 +3,8 @@ import { validator } from "hono-openapi";
 import {
 	downloadResticPasswordBodySchema,
 	downloadResticPasswordDto,
+	fullExportBodySchema,
+	fullExportDto,
 	getUpdatesDto,
 	systemInfoDto,
 	type SystemInfoDto,
@@ -61,4 +63,20 @@ export const systemController = new Hono()
 				return c.json({ message: "Failed to read Restic password file" }, 500);
 			}
 		},
-	);
+	)
+	.post("/export", fullExportDto, validator("json", fullExportBodySchema), async (c) => {
+		const user = c.get("user");
+		const body = c.req.valid("json");
+
+		const [dbUser] = await db.select().from(usersTable).where(eq(usersTable.id, user.id));
+
+		if (!dbUser) {
+			return c.json({ message: "User not found" }, 401);
+		}
+
+		const isValid = await Bun.password.verify(body.password, dbUser.passwordHash);
+
+		if (!isValid) {
+			return c.json({ message: "Incorrect password" }, 401);
+		}
+	});

app/server/modules/lifecycle/config-export.dto.ts

@@ -79,3 +79,66 @@ export const downloadResticPasswordDto = describeRoute({
 		},
 	},
 });
+
+export const fullExportBodySchema = type({
+	includeMetadata: "boolean = false",
+	password: "string",
+});
+
+export type FullExportBody = typeof fullExportBodySchema.infer;
+
+const exportResponseSchema = type({
+	version: "number",
+	exportedAt: "string?",
+	recoveryKey: "string?",
+	volumes: "unknown[]?",
+	repositories: "unknown[]?",
+	backupSchedules: "unknown[]?",
+	notificationDestinations: "unknown[]?",
+	users: type({
+		id: "number?",
+		username: "string",
+		passwordHash: "string?",
+		createdAt: "number?",
+		updatedAt: "number?",
+		hasDownloadedResticPassword: "boolean?",
+	})
+		.array()
+		.optional(),
+});
+
+const errorResponseSchema = type({
+	error: "string",
+});
+
+export const fullExportDto = describeRoute({
+	description: "Export full configuration including all volumes, repositories, backup schedules, and notifications",
+	operationId: "exportFullConfig",
+	tags: ["Config Export"],
+	responses: {
+		200: {
+			description: "Full configuration export",
+			content: {
+				"application/json": {
+					schema: resolver(exportResponseSchema),
+				},
+			},
+		},
+		401: {
+			description: "Password required for export or authentication failed",
+			content: {
+				"application/json": {
+					schema: resolver(errorResponseSchema),
+				},
+			},
+		},
+		500: {
+			description: "Export failed",
+			content: {
+				"application/json": {
+					schema: resolver(errorResponseSchema),
+				},
+			},
+		},
+	},
+});