feat: implement ticket/support

Bulletdev · Bulletdev · commit 5089fe6ba53a · 2026-03-23T11:39:15.000-03:00
diff --git a/Gemfile b/Gemfile
@@ -84,6 +84,9 @@ gem 'meilisearch', '~> 0.33'
 # LLM Integration for Support Chatbot
 gem 'ruby-openai', '~> 7.0'
 
+# S3-compatible storage for file uploads (Supabase Storage)
+gem 'aws-sdk-s3', '~> 1.0'
+
 # Linear algebra for AI draft analysis
 gem 'numo-narray', '~> 0.9'
 
diff --git a/Gemfile.lock b/Gemfile.lock
@@ -78,6 +78,25 @@ GEM
       activerecord (>= 3.2, < 8.0)
       rake (>= 10.4, < 14.0)
     ast (2.4.3)
+    aws-eventstream (1.4.0)
+    aws-partitions (1.1229.0)
+    aws-sdk-core (3.244.0)
+      aws-eventstream (~> 1, >= 1.3.0)
+      aws-partitions (~> 1, >= 1.992.0)
+      aws-sigv4 (~> 1.9)
+      base64
+      bigdecimal
+      jmespath (~> 1, >= 1.6.1)
+      logger
+    aws-sdk-kms (1.123.0)
+      aws-sdk-core (~> 3, >= 3.244.0)
+      aws-sigv4 (~> 1.5)
+    aws-sdk-s3 (1.217.0)
+      aws-sdk-core (~> 3, >= 3.244.0)
+      aws-sdk-kms (~> 1)
+      aws-sigv4 (~> 1.5)
+    aws-sigv4 (1.12.1)
+      aws-eventstream (~> 1, >= 1.0.2)
     base64 (0.3.0)
     bcrypt (3.1.20)
     bcrypt_pbkdf (1.1.2)
@@ -164,6 +183,7 @@ GEM
       pp (>= 0.6.0)
       rdoc (>= 4.0.0)
       reline (>= 0.4.2)
+    jmespath (1.6.2)
     json (2.18.1)
     json-schema (5.2.2)
       addressable (~> 2.8)
@@ -438,6 +458,7 @@ PLATFORMS
 
 DEPENDENCIES
   annotate
+  aws-sdk-s3 (~> 1.0)
   bcrypt (~> 3.1.7)
   blueprinter
   bootsnap
diff --git a/app/modules/support/controllers/tickets_controller.rb b/app/modules/support/controllers/tickets_controller.rb
@@ -155,7 +155,7 @@ def update_ticket_params
       end
 
       def message_params
-        params.require(:message).permit(:content, :is_internal, attachments: [])
+        params.require(:message).permit(:content, :is_internal, attachments: %i[key filename content_type size])
       end
 
       def serialize_ticket(ticket)
@@ -209,9 +209,34 @@ def serialize_message(message)
             id: message.user.id,
             name: message.user.full_name
           },
+          attachments: signed_attachments(message.attachments),
           created_at: message.created_at.iso8601
         }
       end
+
+      def signed_attachments(attachments)
+        return [] if attachments.blank?
+
+        s3 = s3_service
+        return [] unless s3
+
+        attachments.filter_map do |att|
+          url = s3.signed_url(att['key'])
+          next unless url
+
+          att.merge('url' => url)
+        end
+      rescue StandardError => e
+        Rails.logger.error("[Uploads] Failed to sign attachments: #{e.message}")
+        []
+      end
+
+      def s3_service
+        @s3_service ||= S3UploadService.new
+      rescue StandardError => e
+        Rails.logger.error("[Uploads] Failed to initialize S3 service: #{e.message}")
+        nil
+      end
     end
   end
 end
diff --git a/app/modules/support/controllers/uploads_controller.rb b/app/modules/support/controllers/uploads_controller.rb
@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+module Support
+  module Controllers
+    # Handles file uploads for support ticket attachments
+    class UploadsController < Api::V1::BaseController
+      # POST /api/v1/support/uploads
+      def create
+        file = params[:file]
+
+        return render_error(message: 'No file provided', status: :unprocessable_entity) unless file
+
+        service = S3UploadService.new
+        attachment = service.upload(file, prefix: "support/#{current_user.id}")
+
+        render_success({ attachment: attachment })
+      rescue ArgumentError => e
+        render_error(message: e.message, status: :unprocessable_entity)
+      rescue Aws::S3::Errors::ServiceError => e
+        Rails.logger.error("[Uploads] S3 error: #{e.message}")
+        render_error(message: 'Upload failed. Please try again.', status: :internal_server_error)
+      rescue KeyError => e
+        Rails.logger.error("[Uploads] Missing env var: #{e.message}")
+        render_error(message: 'Storage not configured', status: :internal_server_error)
+      end
+    end
+  end
+end
diff --git a/app/services/s3_upload_service.rb b/app/services/s3_upload_service.rb
@@ -0,0 +1,85 @@
+# frozen_string_literal: true
+
+# Handles file uploads to Supabase S3-compatible storage
+class S3UploadService
+  ALLOWED_CONTENT_TYPES = %w[
+    image/jpeg
+    image/png
+    image/gif
+    image/webp
+    application/pdf
+    text/plain
+    text/csv
+  ].freeze
+
+  MAX_SIZE_MB = 10
+  MAX_SIZE_BYTES = MAX_SIZE_MB * 1024 * 1024
+  SIGNED_URL_EXPIRY = 3600 # 1 hour
+
+  def initialize
+    @client = Aws::S3::Client.new(
+      access_key_id: ENV.fetch('SUPABASE_S3_ACCESS_KEY'),
+      secret_access_key: ENV.fetch('SUPABASE_S3_SECRET_KEY'),
+      region: ENV.fetch('SUPABASE_S3_REGION', 'sa-east-1'),
+      endpoint: ENV.fetch('SUPABASE_S3_ENDPOINT'),
+      force_path_style: true
+    )
+    @bucket = ENV.fetch('SUPABASE_S3_BUCKET')
+  end
+
+  # Upload a file and return its metadata (does not include signed URL)
+  #
+  # @param file [ActionDispatch::Http::UploadedFile] the uploaded file
+  # @param prefix [String] S3 key prefix (e.g. "support/user-uuid")
+  # @return [Hash] { key:, filename:, content_type:, size: }
+  def upload(file, prefix: 'support')
+    validate!(file)
+
+    key = generate_key(file.original_filename, prefix)
+
+    @client.put_object(
+      bucket: @bucket,
+      key: key,
+      body: file.read,
+      content_type: file.content_type,
+      content_disposition: "inline; filename=\"#{file.original_filename}\""
+    )
+
+    {
+      key: key,
+      filename: file.original_filename,
+      content_type: file.content_type,
+      size: file.size
+    }
+  end
+
+  # Generate a pre-signed GET URL for a stored object
+  #
+  # @param key [String] the S3 object key
+  # @param expires_in [Integer] expiry in seconds
+  # @return [String] signed URL
+  def signed_url(key, expires_in: SIGNED_URL_EXPIRY)
+    signer = Aws::S3::Presigner.new(client: @client)
+    signer.presigned_url(:get_object, bucket: @bucket, key: key, expires_in: expires_in)
+  rescue StandardError => e
+    Rails.logger.error("[S3UploadService] Failed to generate signed URL for #{key}: #{e.message}")
+    nil
+  end
+
+  private
+
+  def validate!(file)
+    unless ALLOWED_CONTENT_TYPES.include?(file.content_type)
+      raise ArgumentError, "File type not allowed. Allowed: #{ALLOWED_CONTENT_TYPES.join(', ')}"
+    end
+
+    return unless file.size > MAX_SIZE_BYTES
+
+    raise ArgumentError, "File too large. Maximum size is #{MAX_SIZE_MB}MB"
+  end
+
+  def generate_key(filename, prefix)
+    ext = File.extname(filename).downcase
+    "#{prefix}/#{SecureRandom.uuid}#{ext}"
+  end
+end
diff --git a/config/routes.rb b/config/routes.rb
@@ -162,6 +162,9 @@
           end
         end
 
+        # File uploads for attachments
+        post 'uploads', to: '/support/controllers/uploads#create'
+
         # Staff operations
         scope '/staff', as: 'staff' do
           get 'dashboard', to: '/support/controllers/staff#dashboard'
