feat: event proposal and approval workflow #9

Closed

padreug wants to merge 38 commits from feat/event-approval-workflow into main

pull from: feat/event-approval-workflow

merge into: aiolabs:main

aiolabs:main

aiolabs:ticket-scanner-nostr

aiolabs:backup/main-pre-v1.3-rebase-2026-05-05

aiolabs:fix/sqlite-ticket-extra-serialization

Conversation 1 Commits 38 Files changed 20

padreug commented 2026-04-27 07:05:33 +00:00

Owner

Copy link

Summary

Add an approval workflow so non-admin users can propose events that require admin review before going live. Closes #6.

Changes

Model + Migration:

• Add status field to Event model (proposed, approved, rejected)
• Default approved for backward compatibility — existing events unaffected
• Migration m008_add_event_status adds the column

CRUD:

• get_public_events() — returns approved, non-canceled events (replaces get_all_events in public endpoint)
• get_pending_events() — returns proposed events for admin review

API Endpoints:

• POST /api/v1/events/propose — submit event proposal (invoice key, any user)
• GET /api/v1/events/pending — list proposed events (admin key)
• PUT /api/v1/events/{id}/approve — approve event (admin key)
• PUT /api/v1/events/{id}/reject — reject event (admin key)
• GET /api/v1/events/public — now returns only approved, non-canceled events

Bug fix (included):

• Make promo_code and refund_address optional on the GET ticket endpoint

Test plan

• Existing events default to status=approved after migration
• POST /events/propose creates event with status=proposed
• Proposed events don't appear in /events/public
• PUT /events/{id}/approve transitions to approved, event appears in public listing
• PUT /events/{id}/reject transitions to rejected
• Approve/reject require admin key
• Propose requires invoice key (not admin)

## Summary Add an approval workflow so non-admin users can propose events that require admin review before going live. Closes #6. ## Changes **Model + Migration:** - Add `status` field to `Event` model (`proposed`, `approved`, `rejected`) - Default `approved` for backward compatibility — existing events unaffected - Migration `m008_add_event_status` adds the column **CRUD:** - `get_public_events()` — returns approved, non-canceled events (replaces `get_all_events` in public endpoint) - `get_pending_events()` — returns proposed events for admin review **API Endpoints:** - `POST /api/v1/events/propose` — submit event proposal (invoice key, any user) - `GET /api/v1/events/pending` — list proposed events (admin key) - `PUT /api/v1/events/{id}/approve` — approve event (admin key) - `PUT /api/v1/events/{id}/reject` — reject event (admin key) - `GET /api/v1/events/public` — now returns only approved, non-canceled events **Bug fix (included):** - Make `promo_code` and `refund_address` optional on the GET ticket endpoint ## Test plan - [ ] Existing events default to `status=approved` after migration - [ ] `POST /events/propose` creates event with `status=proposed` - [ ] Proposed events don't appear in `/events/public` - [ ] `PUT /events/{id}/approve` transitions to approved, event appears in public listing - [ ] `PUT /events/{id}/reject` transitions to rejected - [ ] Approve/reject require admin key - [ ] Propose requires invoice key (not admin)

padreug added 13 commits 2026-04-27 07:05:33 +00:00

Adds public events endpoint and user tickets ... c669da5822

Adds a public events endpoint that allows read-only access to all events.
Improves ticket management by adding support for user IDs as an identifier, alongside name and email.
This simplifies ticket creation for authenticated users and enhances security.
Also introduces an API endpoint to fetch tickets by user ID.

Merge remote-tracking branch 'upstream/main' 7cc622fc44

Imports Optional type hint ... 33977c53d6

Imports the `Optional` type hint from the `typing` module into `crud.py` and `models.py`.

This provides more explicit type annotations where values can be `None`.

Fix typos (#39) 44f2cb5a62

feat: add promo codes and conditional events (#40) ... a9ac6dcfc1

* add extra column
* add conditional events
* refunds
* conditional events working
* adding promo codes
* promo codes logic

---------

Co-authored-by: dni ⚡ <office@dnilabs.com>

Adds public events endpoint and user tickets ... 4fb6d90fcd

Adds a public events endpoint that allows read-only access to all events.
Improves ticket management by adding support for user IDs as an identifier, alongside name and email.
This simplifies ticket creation for authenticated users and enhances security.
Also introduces an API endpoint to fetch tickets by user ID.

Fix SQLite migration syntax error in m007 ... c49abdb53f

SQLite doesn't support adding multiple columns in a single ALTER TABLE
statement. Split into separate statements for each column.

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

fix: Use db.insert() for ticket creation to fix SQLite serialization ... a77145e08e

The previous implementation used db.execute() with a raw dict, which
failed on SQLite because the 'extra' field (TicketExtra model) was
passed as a Python dict that SQLite cannot serialize.

Using db.insert() with the Pydantic model ensures proper JSON
serialization of the extra field across all database backends
(SQLite, PostgreSQL, CockroachDB).

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

fix: Parse JSON extra field when reading tickets from database ... 68e6e3d02e

The previous fix used db.insert() which serializes the extra field to JSON.
However, the read functions (get_ticket, get_tickets, etc.) use fetchone/fetchall
without a model parameter, so the extra field comes back as a JSON string.

Added _parse_ticket_row() helper that:
- Converts empty strings to None for name/email (existing logic)
- Parses extra field from JSON string if needed (new)

The isinstance(extra, str) check ensures compatibility with both:
- SQLite: returns JSON as string
- PostgreSQL/CockroachDB: may return native JSONB as dict

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

feat: add status field to Event model for approval workflow ... 1dcff37df5

Add 'status' column (proposed/approved/rejected) to the events
table with default 'approved' for backward compatibility. Existing
events are unaffected.

Migration m008 adds the column.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: add CRUD functions for public and pending event queries ... 0c782e6239

- get_public_events(): returns approved, non-canceled events
- get_pending_events(): returns proposed events for admin review

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: add event proposal and approval API endpoints ... a41348df94

- POST /api/v1/events/propose — submit event for approval (invoice key)
- GET /api/v1/events/pending — list proposed events (admin key)
- PUT /api/v1/events/{id}/approve — approve proposed event (admin key)
- PUT /api/v1/events/{id}/reject — reject proposed event (admin key)
- GET /api/v1/events/public — now returns only approved, non-canceled events

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

fix: make promo_code and refund_address optional query params ... eb474b1390

These were required query params on the GET ticket endpoint,
causing 400 errors when not provided.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 07:08:33 +00:00

fix: resolve lint errors in views_api.py ... 41e64adfde

- Remove unused purge_unpaid_tickets import (add TODO comment)
- Break long line in ticket GET endpoint signature

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 08:32:20 +00:00

fix: make wallet optional in CreateEvent for propose endpoint ... 32ea79a137

The propose endpoint sets wallet from the authenticated user's
invoice key. Making wallet optional in the model allows the
request body to omit it. The admin create endpoint falls back
to the auth wallet if not provided.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug referenced this pull request 2026-04-27 08:34:00 +00:00

Add escrow payment mode for proposed events #10

padreug added 1 commit 2026-04-27 08:37:53 +00:00

feat: add pending approvals UI to admin panel ... 702ab70559

- Separate "Pending Approvals" card with approve/reject buttons
  (appears only when proposed events exist)
- Status badge column in events table (green/orange/red)
- Inline approve/reject buttons on proposed events in table
- Following castle extension's approval UI pattern

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 08:41:51 +00:00

fix: use v-text bindings instead of raw template tags in pending UI ... bdd49f8612

Avoids Jinja/Vue template delimiter conflicts that cause Vue
compiler-30 errors (missing end tag from unescaped > in expressions).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 08:48:06 +00:00

fix: use explicit closing tags for Vue custom elements ... cdfcee39ae

Self-closing tags on custom elements (q-icon, q-badge) cause
Vue compiler-30 (missing end tag) errors in HTML-parsed templates.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:09:49 +00:00

fix: close remaining self-closing q-btn tags in pending approvals ... 3425097a5c

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:11:16 +00:00

fix: close self-closing q-badge tag in status column ... d740cb1f97

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:16:33 +00:00

fix: fetch pending events separately from admin's own events ... b467826622

Pending events from other users' wallets weren't visible because
getEvents() only returns events scoped to the admin's wallets.
Add separate getPendingEvents() that calls /events/pending endpoint.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:19:24 +00:00

feat: add admin endpoint to view all events across wallets ... 7843da21d8

- GET /api/v1/events/all — returns all events regardless of wallet (admin key)
- Admin UI tries /events/all first, falls back to own wallet events
- Approved events from other users now visible in admin events table

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:27:30 +00:00

fix: use check_admin for approval endpoints, not require_admin_key ... c1e66fbf7f

require_admin_key only checks that the API key is a wallet admin key,
which ANY user has. check_admin verifies the user is a LNbits admin
(super_user or lnbits_admin_users). JS updated to omit API key on
admin endpoints, relying on session cookie auth instead.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:35:03 +00:00

feat: separate admin view into own events and all users' events ... ba97205592

Admin sees two tables: "Events" (own wallet events) and "All Users'
Events" (events from other users' wallets, admin only). Non-admin
users only see their own events table.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 09:39:04 +00:00

feat: auto-propose events from non-admin users ... 920125aaee

Events created by non-admin users via POST /events are now set to
'proposed' status, requiring LNbits admin approval. Admin-created
events are auto-approved.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug referenced this pull request 2026-04-27 09:39:53 +00:00

Add admin-toggleable auto-approve setting for event proposals #11

padreug added 1 commit 2026-04-27 09:45:14 +00:00

fix: hide approve/reject buttons for non-admin users ... 1ad99aa3d6

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 5 commits 2026-04-27 15:24:20 +00:00

feat: add publish-only NostrClient and NostrEvent model ... f965cf07c9

Stripped-down Nostr client that connects to nostrclient's internal
WebSocket for publishing NIP-52 calendar events. No subscription
capabilities — publish queue only.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: add Nostr event tracking columns to events table ... f76e21e960

Migration m009 adds nostr_event_id and nostr_event_created_at to
track published NIP-52 calendar events. Enables correlation between
LNbits events and their Nostr representations.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: add NIP-52 calendar event builder and publisher ... 5013709be7

- build_nip52_event(): Event model → kind 31922 NostrEvent with
  d, title, start, end, image tags
- build_nip52_delete_event(): kind 5 delete with 'a' tag per NIP-09
- sign_nostr_event(): Schnorr signing via coincurve
- publish_event_to_nostr(): build + sign + publish, returns event
  for metadata storage. Graceful failure (returns None).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: wire NostrClient into events extension lifecycle ... e8fcecac40

Start a publish-only NostrClient as a background task (10s delay
for nostrclient readiness). Graceful degradation: if nostrclient
is unavailable, events extension continues without Nostr publishing.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: publish NIP-52 events on approve/create/update/cancel/delete ... 2db0102857

- On approve: publish kind 31922 calendar event to Nostr
- On admin create (auto-approved): publish immediately
- On update (approved event): republish (kind 31922 is replaceable)
- On cancel/delete: publish kind 5 delete event
- All Nostr calls are wrapped in try/except for graceful degradation
- Event creator's Account keypair used for signing

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 16:00:03 +00:00

feat: add admin-toggleable auto-approve setting ... d69ec7dda2

- Extension settings table with auto_approve boolean
- GET/PUT /api/v1/settings endpoints (LNbits admin only)
- Settings card in admin UI with toggle
- When auto_approve is enabled, non-admin events skip approval

Closes aiolabs/events#11

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 16:05:30 +00:00

feat: add location and categories fields, simplify event creation ... 29045163a3

- Add location (text) and categories (JSON list) to Event model
- Make most CreateEvent fields optional: only title + start date required
- Default end_date to start_date, closing_date to end_date
- Categories stored as JSON text, parsed via validator
- NIP-52 publisher includes location tag and t tags for categories
- Migration m011 adds location and categories columns

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 16:16:46 +00:00

fix: check auto_approve setting in propose endpoint ... b4d7653988

The propose endpoint always set status to 'proposed' regardless of
the auto_approve setting. Now checks the setting and auto-approves
(+ publishes to Nostr) when enabled.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 1 commit 2026-04-27 16:24:15 +00:00

refactor: consolidate create and propose endpoints into single POST /events ... 4d91426e82

Remove separate /events/propose endpoint. POST /events now uses
invoice key (any user) and determines approval status based on:
- LNbits admin → auto-approved
- auto_approve setting → auto-approved
- Otherwise → proposed (requires admin approval)

Separate PUT /events/{id} for updates (admin key, event owner).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug added 3 commits 2026-04-27 16:30:04 +00:00

feat: upgrade NostrClient to bidirectional (publish + subscribe) ... 1bddb99132

Add receive queue, subscription management, and event deduplication
to support incoming NIP-52 calendar events from relays.

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: add NIP-52 event sync from Nostr relays ... e937883564

Subscribe to kind 31922/31923 events and upsert into local DB:
- New events discovered from relays are auto-approved
- Existing events are updated if incoming version is newer
- Deduplication via event ID and d-tag correlation
- Events from Nostr have empty wallet (not ticketed locally)

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

feat: wire Nostr subscription sync into extension lifecycle ... ef5d2dcfcf

Add background task that subscribes to kind 31922/31923 events
from relays and processes them into the local database. Starts
15s after NostrClient connects (sequenced after publish client).

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

padreug commented 2026-04-28 05:36:59 +00:00

Author

Owner

Copy link

Update: API consolidation

The separate POST /events/propose endpoint has been removed. There is now a single POST /events endpoint that handles all event creation:

• Auth: require_invoice_key (any authenticated user can call it)
• Status determination is handled by the backend:
  • LNbits admins → auto-approved
  • auto_approve setting enabled → auto-approved
  • Otherwise → proposed (requires admin approval)

The auto_approve toggle is exposed in the admin UI and accessible via:

• GET /api/v1/settings
• PUT /api/v1/settings

This simplifies the API surface (one endpoint instead of two) while preserving the same behavior. The webapp's TicketApiService.proposeEvent() was removed; createEvent() now uses the invoice key.

Closes #4, #5, #6, #11.

## Update: API consolidation The separate `POST /events/propose` endpoint has been removed. There is now a single `POST /events` endpoint that handles all event creation: - **Auth**: `require_invoice_key` (any authenticated user can call it) - **Status determination** is handled by the backend: - LNbits admins → auto-approved - `auto_approve` setting enabled → auto-approved - Otherwise → `proposed` (requires admin approval) The `auto_approve` toggle is exposed in the admin UI and accessible via: - `GET /api/v1/settings` - `PUT /api/v1/settings` This simplifies the API surface (one endpoint instead of two) while preserving the same behavior. The webapp's `TicketApiService.proposeEvent()` was removed; `createEvent()` now uses the invoice key. Closes #4, #5, #6, #11.

padreug closed this pull request 2026-04-28 05:38:25 +00:00

Some checks failed

Hide all checks

lint.yml / feat: wire Nostr subscription sync into extension lifecycle (pull_request) Failing after 0s

Details

lint.yml / feat: wire Nostr subscription sync into extension lifecycle (push) Failing after 0s

Details

Pull request closed

Please reopen this pull request to perform a merge.

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

aiolabs/events!9

No description provided.